Julius Tubbs, CISM, CRISC, CCSP

Chief Information Security Officer at OneRail

Kissimmee, Florida, United States

About

I am a hands-on security and IT leader who believes in turning complex compliance challenges into business wins. My passion lies in building high-performing teams and creating practical security programs that actually work. I'm known for straight talk on risk, engaging cross-functional teams, and making security make sense to everyone from developers to the board room. What drives me? Taking organizations from 'security as a roadblock' to 'security as a business enabler' through practical solutions and strong team development to elevate both resilience and trust, ensuring organizations are prepared for what’s next.

Experience

  • OneRail ()
    • Chief Information Security Officer
      Apr 2024 - Present · 2 yrs 4 mos

    • Senior Director, Information Security & Infrastructure
      Jul 2022 - Apr 2024 · 1 yr 10 mos

      • Led the organization through three SOC 2 Type II audits and achieved GDPR compliance. • Actively guiding the team towards ISO 27001 certification to enhance security posture. • Reduced cyber insurance costs for consecutive years while optimizing operational efficiency.

    • Principal Cyber Security Engineer
      May 2021 - Jul 2022 · 1 yr 3 mos

      • Led the Information Security and Infrastructure team, driving strategic initiatives in security, risk, and compliance. • Developed and managed the Information Security Program, ensuring alignment with organizational goals. • Conducted comprehensive risk assessments to identify vulnerabilities and formulate effective security strategies. • Supported project management efforts while ensuring adherence to ITIL principles for improved service delivery.

  • Member at Phi Beta Sigma Fraternity, Inc.
    Mar 2021 - Present · 5 yrs 5 mos

  • Senior Information Security Engineer at Citi
    May 2020 - May 2021 · 1 yr 1 mo

    • Developed and certified critical infrastructure solutions in alignment with corporate information security standards. • Conducted reverse engineering of enterprise solutions to assess vulnerabilities impacting confidentiality and integrity. • Tested various systems, including power and security, to identify vulnerabilities before production integration.

  • Senior Information Security Analyst at TEKsystems
    Nov 2019 - Apr 2020 · 6 mos

    During my 6-month contract at TEKsystems, I focused on enhancing endpoint security and vulnerability management for a financial institution. I implemented an asset management solution, fine-tuned security measures to reduce alert fatigue, and partnered with the risk management team to ensure compliance. My proactive research into emerging cyber threats helped strengthen our defenses against potential attacks.

  • Information Security Analyst at Inovalon
    Jul 2014 - Oct 2019 · 5 yrs 4 mos

    • Supported all security functions including operations, governance, compliance, and incident response at Inovalon. • Led PCI Compliance efforts for cardholder data, translating security concerns into business risks. • Managed vulnerability and remediation programs, transitioning from Alert Logic to Tenable for enhanced scanning. • Designed and delivered IT training projects for over 300 staff as a corporate IT trainer including security awareness and PCI DSS.