Brett C. Don, CISM
Chief Information & Security Officer (CIO / CISO) at Stradley Ronon- Claim this Profile
Click to upgrade to our gold package
for the full feature experience.
Topline Score
Bio
Chris Marett
I had the great pleasure of working closely with Brett Don on the Board of Trustees of The Barnesville School for three years. He was been nothing short of an extraordinary colleague, Board member, Audit Committee Chair and Executive Committee participant. The breadth of his experience, the creativity of his approach, and the quality of his insights in areas as far reaching as technology, business process and business strategy were instrumental in the school developing and advancing an innovative strategic plan designed to generate significant institutional growth. Brett is a fantastic collaborator and insightful leader who would make any group he was a part of stronger and more effective.
Val Stoyanov
I reported to Brett in a function that was new to the Firm - an IT Security Manager. It was one of the first such roles in the Legal Industry and came as a result of Brett's vision, foresight and strategic thinking about the importance of Information Security. Through strategy sessions that Brett personally organized and conducted, I had the opportunity to learn about successful process and organizational improvement. Brett empowered the management team and staff through a combination of excellence, a high drive to succeed and a clear sense of direction. I found Brett's management style both inspiring and motivating and If I were to sum it up in three words, it would be - visionary, strategist and a leader. I highly recommend Brett and if I had an opportunity to work with him again, I would not hesitate.
Chris Marett
I had the great pleasure of working closely with Brett Don on the Board of Trustees of The Barnesville School for three years. He was been nothing short of an extraordinary colleague, Board member, Audit Committee Chair and Executive Committee participant. The breadth of his experience, the creativity of his approach, and the quality of his insights in areas as far reaching as technology, business process and business strategy were instrumental in the school developing and advancing an innovative strategic plan designed to generate significant institutional growth. Brett is a fantastic collaborator and insightful leader who would make any group he was a part of stronger and more effective.
Val Stoyanov
I reported to Brett in a function that was new to the Firm - an IT Security Manager. It was one of the first such roles in the Legal Industry and came as a result of Brett's vision, foresight and strategic thinking about the importance of Information Security. Through strategy sessions that Brett personally organized and conducted, I had the opportunity to learn about successful process and organizational improvement. Brett empowered the management team and staff through a combination of excellence, a high drive to succeed and a clear sense of direction. I found Brett's management style both inspiring and motivating and If I were to sum it up in three words, it would be - visionary, strategist and a leader. I highly recommend Brett and if I had an opportunity to work with him again, I would not hesitate.
Chris Marett
I had the great pleasure of working closely with Brett Don on the Board of Trustees of The Barnesville School for three years. He was been nothing short of an extraordinary colleague, Board member, Audit Committee Chair and Executive Committee participant. The breadth of his experience, the creativity of his approach, and the quality of his insights in areas as far reaching as technology, business process and business strategy were instrumental in the school developing and advancing an innovative strategic plan designed to generate significant institutional growth. Brett is a fantastic collaborator and insightful leader who would make any group he was a part of stronger and more effective.
Val Stoyanov
I reported to Brett in a function that was new to the Firm - an IT Security Manager. It was one of the first such roles in the Legal Industry and came as a result of Brett's vision, foresight and strategic thinking about the importance of Information Security. Through strategy sessions that Brett personally organized and conducted, I had the opportunity to learn about successful process and organizational improvement. Brett empowered the management team and staff through a combination of excellence, a high drive to succeed and a clear sense of direction. I found Brett's management style both inspiring and motivating and If I were to sum it up in three words, it would be - visionary, strategist and a leader. I highly recommend Brett and if I had an opportunity to work with him again, I would not hesitate.
Chris Marett
I had the great pleasure of working closely with Brett Don on the Board of Trustees of The Barnesville School for three years. He was been nothing short of an extraordinary colleague, Board member, Audit Committee Chair and Executive Committee participant. The breadth of his experience, the creativity of his approach, and the quality of his insights in areas as far reaching as technology, business process and business strategy were instrumental in the school developing and advancing an innovative strategic plan designed to generate significant institutional growth. Brett is a fantastic collaborator and insightful leader who would make any group he was a part of stronger and more effective.
Val Stoyanov
I reported to Brett in a function that was new to the Firm - an IT Security Manager. It was one of the first such roles in the Legal Industry and came as a result of Brett's vision, foresight and strategic thinking about the importance of Information Security. Through strategy sessions that Brett personally organized and conducted, I had the opportunity to learn about successful process and organizational improvement. Brett empowered the management team and staff through a combination of excellence, a high drive to succeed and a clear sense of direction. I found Brett's management style both inspiring and motivating and If I were to sum it up in three words, it would be - visionary, strategist and a leader. I highly recommend Brett and if I had an opportunity to work with him again, I would not hesitate.
Credentials
-
Legal Lean Sigma Yellow Belt
Legal Lean Sigma Institute LLCJan, 2022- Nov, 2024 -
Certified Information Security Manager (CISM)
ISACAFeb, 2017- Nov, 2024
Experience
-
Stradley Ronon
-
United States
-
Law Practice
-
300 - 400 Employee
-
Chief Information & Security Officer (CIO / CISO)
-
Feb 2017 - Present
Executive responsibility for the information technology and security services at a large, multi-office professional services firm. CHALLENGE: Transform the Information Technology (IT) & Security (InfoSec) Departments of this 400-person, multi-office professional services firm from an operational, reactive service model to a proactive, customer-facing, advisory model. ROLE: Use consulting skills and C-Level experience to drive operational excellence, align IT decisions with… Show more Executive responsibility for the information technology and security services at a large, multi-office professional services firm. CHALLENGE: Transform the Information Technology (IT) & Security (InfoSec) Departments of this 400-person, multi-office professional services firm from an operational, reactive service model to a proactive, customer-facing, advisory model. ROLE: Use consulting skills and C-Level experience to drive operational excellence, align IT decisions with business needs and architect security operations to meet client requirements. Manage $8M budget and 20 business and technology professionals. • Strategic Alignment of IT | Continuously raise profile of IT through Board briefings, customer group meetings and innovation workshops. Formalized approach to IT planning that includes benchmarking against similar businesses and a sensible, tactical plan. Built consensus for a new team comprised of internal consultants to deliver targeted solutions (people, process and technology) that have measurable impact on profitability and client service. • Mature IT Operations | Created and continuously refine IT operating procedures including change control and management of incidents, assets, budgets, projects, patching and vendor services. Leverage vendor managed services for the routine, elevating internal talent for strategic work. • Modernize Technology Services | Manage a large project portfolio including the introduction of select Cloud services (Azure AD, O365, etc.), modernized data center operations (Nimble SAN, etc.) and customer-facing technology (Windows 10, iManage 10, O365, etc.). • Strategic Alignment of InfoSec | Created and continuously refine an end-to-end Information Security Program through various risk assessments (CIS 20, NYDFS, HIPAA). Program is based on financial industry client security requirements and ISO 27001-2 standards and covers policies, procedures, awareness training, vendor audits, and technical controls. Show less Executive responsibility for the information technology and security services at a large, multi-office professional services firm. CHALLENGE: Transform the Information Technology (IT) & Security (InfoSec) Departments of this 400-person, multi-office professional services firm from an operational, reactive service model to a proactive, customer-facing, advisory model. ROLE: Use consulting skills and C-Level experience to drive operational excellence, align IT decisions with… Show more Executive responsibility for the information technology and security services at a large, multi-office professional services firm. CHALLENGE: Transform the Information Technology (IT) & Security (InfoSec) Departments of this 400-person, multi-office professional services firm from an operational, reactive service model to a proactive, customer-facing, advisory model. ROLE: Use consulting skills and C-Level experience to drive operational excellence, align IT decisions with business needs and architect security operations to meet client requirements. Manage $8M budget and 20 business and technology professionals. • Strategic Alignment of IT | Continuously raise profile of IT through Board briefings, customer group meetings and innovation workshops. Formalized approach to IT planning that includes benchmarking against similar businesses and a sensible, tactical plan. Built consensus for a new team comprised of internal consultants to deliver targeted solutions (people, process and technology) that have measurable impact on profitability and client service. • Mature IT Operations | Created and continuously refine IT operating procedures including change control and management of incidents, assets, budgets, projects, patching and vendor services. Leverage vendor managed services for the routine, elevating internal talent for strategic work. • Modernize Technology Services | Manage a large project portfolio including the introduction of select Cloud services (Azure AD, O365, etc.), modernized data center operations (Nimble SAN, etc.) and customer-facing technology (Windows 10, iManage 10, O365, etc.). • Strategic Alignment of InfoSec | Created and continuously refine an end-to-end Information Security Program through various risk assessments (CIS 20, NYDFS, HIPAA). Program is based on financial industry client security requirements and ISO 27001-2 standards and covers policies, procedures, awareness training, vendor audits, and technical controls. Show less
-
-
-
SDK | Risk+IT Advisors LLC
-
Information Technology & Services
-
Founder & Managing Consultant
-
Jul 2012 - Feb 2017
SDK | Risk+IT Advisors is a trusted partner to mid-size businesses including many of the leading trade associations, non-profits and professional service firms. CHALLENGE: Mid-market businesses are struggling with the rising costs of technology, the perceived value of the IT investment and the risks of doing business in a digital world. ROLE: Using two decades of expertise as a business consultant and technology executive, I advise executives on solutions that help their… Show more SDK | Risk+IT Advisors is a trusted partner to mid-size businesses including many of the leading trade associations, non-profits and professional service firms. CHALLENGE: Mid-market businesses are struggling with the rising costs of technology, the perceived value of the IT investment and the risks of doing business in a digital world. ROLE: Using two decades of expertise as a business consultant and technology executive, I advise executives on solutions that help their businesses manage risk and maximize investment in technology. • Manage complex projects across an expanded portfolio including fractional CIO/CISO services, project management, strategic technology planning, technology selection, policy development, security assessments, ISO gap analysis, HIPAA compliance, business continuity and incident response planning. • Recent hands-on contract and sub-contract consulting assignments include interim CIO for a 75-attorney law firm; fractional CIO/CISO for a 100-person non-profit, a comprehensive technology assessment for a 400-person think tank consulting firm, comprehensive security assessment for a 1100-person AMLAW 100 firm, business continuity planning for a 100-person Association, HIPAA risk assessment for a regional insurance company, ISO 27001 certification for a 600-person law firm, security awareness training for a 200-person law firm, project management for a 100-PC Windows 95 migration and information governance assessment and planning for a 200-student independent school. SERVICE PORTFOLIO INCLUDES: • FRACTIONAL CIO / CISO SERVICES • IT STRATEGIC PLANNING • SYSTEM EVALUATION & SELECTION • PROJECT MANAGEMENT • INFORMATION SECURITY PROGRAM • SECURITY AWARENESS TRAINING • ISO 27002 RISK ASSESSMENTS • HIPAA/HITECH COMPLIANCE • INFORMATION GOVERNANCE • BUSINESS CONTINUITY PLANNING • INCIDENT RESPONSE PLANNING • BUSINESS PROCESS ANALYSIS Show less SDK | Risk+IT Advisors is a trusted partner to mid-size businesses including many of the leading trade associations, non-profits and professional service firms. CHALLENGE: Mid-market businesses are struggling with the rising costs of technology, the perceived value of the IT investment and the risks of doing business in a digital world. ROLE: Using two decades of expertise as a business consultant and technology executive, I advise executives on solutions that help their… Show more SDK | Risk+IT Advisors is a trusted partner to mid-size businesses including many of the leading trade associations, non-profits and professional service firms. CHALLENGE: Mid-market businesses are struggling with the rising costs of technology, the perceived value of the IT investment and the risks of doing business in a digital world. ROLE: Using two decades of expertise as a business consultant and technology executive, I advise executives on solutions that help their businesses manage risk and maximize investment in technology. • Manage complex projects across an expanded portfolio including fractional CIO/CISO services, project management, strategic technology planning, technology selection, policy development, security assessments, ISO gap analysis, HIPAA compliance, business continuity and incident response planning. • Recent hands-on contract and sub-contract consulting assignments include interim CIO for a 75-attorney law firm; fractional CIO/CISO for a 100-person non-profit, a comprehensive technology assessment for a 400-person think tank consulting firm, comprehensive security assessment for a 1100-person AMLAW 100 firm, business continuity planning for a 100-person Association, HIPAA risk assessment for a regional insurance company, ISO 27001 certification for a 600-person law firm, security awareness training for a 200-person law firm, project management for a 100-PC Windows 95 migration and information governance assessment and planning for a 200-student independent school. SERVICE PORTFOLIO INCLUDES: • FRACTIONAL CIO / CISO SERVICES • IT STRATEGIC PLANNING • SYSTEM EVALUATION & SELECTION • PROJECT MANAGEMENT • INFORMATION SECURITY PROGRAM • SECURITY AWARENESS TRAINING • ISO 27002 RISK ASSESSMENTS • HIPAA/HITECH COMPLIANCE • INFORMATION GOVERNANCE • BUSINESS CONTINUITY PLANNING • INCIDENT RESPONSE PLANNING • BUSINESS PROCESS ANALYSIS Show less
-
-
-
Dickstein Shapiro LLP
-
Law Practice
-
200 - 300 Employee
-
Chief Information & Risk Officer
-
Jan 2008 - Jul 2012
CHALLENGE | Transform IT into a strategic asset, differentiate the Firm’s eDiscovery services and improve the risk profile for this 900-person, $300M, multi-office law firm. ROLE | Shared COO role overseeing the day-to-day operations and strategic planning for ten administrative departments including information technology, applications development, information security, records, new business intake, library/research, knowledge management, docketing, managing clerk, and e-Discovery… Show more CHALLENGE | Transform IT into a strategic asset, differentiate the Firm’s eDiscovery services and improve the risk profile for this 900-person, $300M, multi-office law firm. ROLE | Shared COO role overseeing the day-to-day operations and strategic planning for ten administrative departments including information technology, applications development, information security, records, new business intake, library/research, knowledge management, docketing, managing clerk, and e-Discovery. • Oversaw a $3M revenue target, $26M capital/operating budgets, and 125 business and technical professionals through 5 direct reports. • Managed a large project portfolio to completion, on time and within budget, including NetApp SAN, Cisco UCS, VSphere ESX, iPhone/Android/iPad and Relativity. • Architected a hybrid cloud data center model with advanced technologies from Cisco, NetApp and VMWare aimed at reducing IT operating expenses and supporting the Firm’s growth strategy. • Developed an innovative eDiscovery product offering (www.esipredict.com) from concept to launch making litigation costs more predictable for clients and creating competitive advantage for the Firm. • Designed and delivered an Information Security Program using ISO 27K standards covering policy development, awareness campaigns and technical controls designed to protect client data. Show less CHALLENGE | Transform IT into a strategic asset, differentiate the Firm’s eDiscovery services and improve the risk profile for this 900-person, $300M, multi-office law firm. ROLE | Shared COO role overseeing the day-to-day operations and strategic planning for ten administrative departments including information technology, applications development, information security, records, new business intake, library/research, knowledge management, docketing, managing clerk, and e-Discovery… Show more CHALLENGE | Transform IT into a strategic asset, differentiate the Firm’s eDiscovery services and improve the risk profile for this 900-person, $300M, multi-office law firm. ROLE | Shared COO role overseeing the day-to-day operations and strategic planning for ten administrative departments including information technology, applications development, information security, records, new business intake, library/research, knowledge management, docketing, managing clerk, and e-Discovery. • Oversaw a $3M revenue target, $26M capital/operating budgets, and 125 business and technical professionals through 5 direct reports. • Managed a large project portfolio to completion, on time and within budget, including NetApp SAN, Cisco UCS, VSphere ESX, iPhone/Android/iPad and Relativity. • Architected a hybrid cloud data center model with advanced technologies from Cisco, NetApp and VMWare aimed at reducing IT operating expenses and supporting the Firm’s growth strategy. • Developed an innovative eDiscovery product offering (www.esipredict.com) from concept to launch making litigation costs more predictable for clients and creating competitive advantage for the Firm. • Designed and delivered an Information Security Program using ISO 27K standards covering policy development, awareness campaigns and technical controls designed to protect client data. Show less
-
-
-
Wiley Rein LLP
-
Law Practice
-
300 - 400 Employee
-
Chief Information Officer (CIO)
-
Jul 2000 - Jan 2008
CHALLENGE | Stabilize a defective computer network to maximize attorney productivity, rebuild the IT organization to restore lost credibility and align technology with the needs of this $170M, 600-person, multi-office law firm. ROLE | Provided leadership, turnaround strategy and change management expertise to significantly reduce chronic system downtime. • Managed a capital/operating budget of $7.5 million and 30 professionals. • Managed a large project portfolio to… Show more CHALLENGE | Stabilize a defective computer network to maximize attorney productivity, rebuild the IT organization to restore lost credibility and align technology with the needs of this $170M, 600-person, multi-office law firm. ROLE | Provided leadership, turnaround strategy and change management expertise to significantly reduce chronic system downtime. • Managed a capital/operating budget of $7.5 million and 30 professionals. • Managed a large project portfolio to completion, on time and within budget, including NetWare to Windows Server, Notes Mail to Exchange, Cisco switching and routing, HP SAN, Windows XP/Office 2003 and Sharepoint. • Managed the development of a hosted information management system for a Broadcasting client allowing the Chief Legal Officer to reduce outside counsel fees and meet the Chief Executive Officer’s budget demands. • Redesigned file management work processes and implemented a custom content management system to drastically reduce wasted attorney/paralegal time searching for misplaced files. Show less CHALLENGE | Stabilize a defective computer network to maximize attorney productivity, rebuild the IT organization to restore lost credibility and align technology with the needs of this $170M, 600-person, multi-office law firm. ROLE | Provided leadership, turnaround strategy and change management expertise to significantly reduce chronic system downtime. • Managed a capital/operating budget of $7.5 million and 30 professionals. • Managed a large project portfolio to… Show more CHALLENGE | Stabilize a defective computer network to maximize attorney productivity, rebuild the IT organization to restore lost credibility and align technology with the needs of this $170M, 600-person, multi-office law firm. ROLE | Provided leadership, turnaround strategy and change management expertise to significantly reduce chronic system downtime. • Managed a capital/operating budget of $7.5 million and 30 professionals. • Managed a large project portfolio to completion, on time and within budget, including NetWare to Windows Server, Notes Mail to Exchange, Cisco switching and routing, HP SAN, Windows XP/Office 2003 and Sharepoint. • Managed the development of a hosted information management system for a Broadcasting client allowing the Chief Legal Officer to reduce outside counsel fees and meet the Chief Executive Officer’s budget demands. • Redesigned file management work processes and implemented a custom content management system to drastically reduce wasted attorney/paralegal time searching for misplaced files. Show less
-
-
-
Altman Weil, Inc.
-
United States
-
Business Consulting and Services
-
1 - 100 Employee
-
Senior Consultant | Business + IT
-
Oct 1996 - Jun 2000
Developed business, drafted proposals and delivered consulting services to CEOs, COOs, CLOs and General Counsel of large professional service organizations and Fortune 1000 corporations to address a wide array of business problems including organizational performance, reducing waste, profitability, technology assessments, controlling eDiscovery/litigation costs, managing data privacy risks and long-range planning. Developed business, drafted proposals and delivered consulting services to CEOs, COOs, CLOs and General Counsel of large professional service organizations and Fortune 1000 corporations to address a wide array of business problems including organizational performance, reducing waste, profitability, technology assessments, controlling eDiscovery/litigation costs, managing data privacy risks and long-range planning.
-
-
-
LaBrum & Doak LLP
-
Philadelphia, PA
-
Director, Information Systems
-
Jan 1995 - Oct 1996
Managed seven technical professionals and the delivery of all technology services for this 300-person law firm. Managed seven technical professionals and the delivery of all technology services for this 300-person law firm.
-
-
-
Archer & Greiner, P.C.
-
United States
-
Law Practice
-
200 - 300 Employee
-
Manager, Information Systems
-
May 1989 - Jan 1995
Managed two technical support professionals and the delivery of all technology services for this 200-person law firm. Managed two technical support professionals and the delivery of all technology services for this 200-person law firm.
-
-
Education
-
1984 - 1988
Widener University
BS -
1980 - 1984
Holy Cross Academy
Community
