Founder & Principal Advisor
Former CISO in financial services. Big 4 consulting background. I started Sidewalk Security Advisors because too many regulated organizations are being underserved by IT vendors who can't translate technical risk into the language your leadership, regulators, and customers need to hear.
Mission
To give regulated organizations the security leadership they need but don't yet have in place.
If your board, executive team, regulators, or customers are asking hard questions about security and you don't have a clear answer, I'd like to help you build one. My goal is simple: make security something that works for the entire organization, not just the IT department.
What I believe
Security programs should be built for the boardroom, not the server room.
Most organizations don't have a technology problem. They have a leadership gap. The tools exist. The frameworks exist. What's missing is someone who can sit across from the board, the examiner, the auditor, or the enterprise customer and articulate where the program stands, where the gaps are, and what the plan is to close them.
I believe the best security programs are the ones that the entire organization understands, not just the people running the firewalls. If your CFO can't explain your security posture in two sentences, the program isn't working yet.
I also believe that the vendor model is broken for mid-market regulated organizations. You don't need another tool. You need someone who has been in the seat, understands the regulatory landscape, and can build something that actually holds up when it matters.
Track record
Built and led security programs that have withstood FDIC, NCUA, and state regulatory examinations
Designed governance frameworks for organizations ranging from community banks to global enterprises across government, finance, manufacturing, and healthcare
Managed security, risk, and compliance across multi-entity fintech portfolios where a single gap could cascade across the entire platform
Advised boards and executive teams on translating security posture into the language regulators and examiners expect to hear
Media
The Virtual CISO Moment
with Greg Schaffer
Jeremy joins Greg Schaffer to discuss the realities of building a fractional CISO practice, how regulated organizations can build security programs that hold up under examiner scrutiny, and why the traditional vendor model is failing mid-market companies.
