Joseph M. Siegmann

Joseph M. Siegmann, CISSP
Chief Information Security Officer
30+ Years IT Experience

Learn More Get In Touch

About Me

As a Chief Information Security Officer (CISO) for an international organization operating in more than 150 countries, I have achieved over 27 professional certifications and maintained my Certified Information Systems Security Professional (CISSP) credential for more than 20 years.

With over 30 years of IT experience, I bring a proven record as a truly unique professional combining expertise as an entrepreneur, executive, IT security manager, and enterprise architect. My background spans information security management, governance, audit regulatory compliance, and hands-on technical implementation.

Throughout my career, I have developed a passion for building secure, scalable technology solutions that protect organizations while enabling business growth. I maintain active relationships with law enforcement at local and Federal (FBI) levels and volunteer as a forensic investigator supporting cyber crime investigations.

I have developed mastery in communication through extensive study of human linguistics and clinical psychology, enhancing my leadership skills and ability to communicate effectively with diverse audiences - from technical teams to executive boards.

Professional Experience Highlights

Over three decades of progressive IT and security leadership

Chief Information Security Officer (Current)

International Retail Organization (2012 - Present)
Leading enterprise security programs for a global organization operating in 150+ countries. Responsible for strategic leadership of information security program, managing multi-million dollar budgets, and directing compliance with GDPR, HIPAA, HiTrust, PCI-DSS, ITAR, NIST, SOX, and FISMA regulations. Oversee security engineering, compliance, forensics, and eDiscovery teams. Manage 300+ annual audits with 33% year-over-year increase. Built eDiscovery team saving organization $5MM+ through cost savings and risk mitigation.

Lead IT Security Analyst

International Retail Organization (2007 - 2012)
Led PCI compliance initiative bringing 7000+ retail stores into compliance. Architected enterprise encryption strategy, global Microsoft domain consolidation, whole disk encryption deployment, and enterprise-wide anti-virus implementation. Designed DMZ network architecture, Secure FTP infrastructure, and wireless security standards.

Owner/CEO - SiggySoft LLC

Software Development & IT Consulting (2005 - Present)
Founded and operate specialized IT consulting and software development firm. Developed pioneering telecommunication software consolidating 40+ call centers, saving millions. Created automated stock trading system processing $11MM+ in trades. Led internet marketing team grossing $2.8MM in single year. Provide PCI-DSS compliance consulting and specialized data recovery services.

Lead Security System Analyst

Cincinnati Children's Hospital (2004 - 2006)
Led IT Security team with management responsibilities. Primary individual responsible for HIPAA and FDA auditing and standards for patient systems. Designed single system for hospital-wide HIPAA auditing across 45+ applications. Performed vulnerability assessments, penetration testing, and forensic investigations. Reduced unsolicited bulk email by 70%.

Senior Global Systems Architect

Kendle International Inc. (1999 - 2004)
Managed enterprise-wide systems infrastructure covering 22 sites across North America, Asia/Pacific, Europe, Latin America and Australia. Set global IT security standards and policies worldwide. Designed and implemented global VPN solution, corporate firewall standards, and Enterprise Certificate Authority. Managed 2000+ user security infrastructure and led external penetration testing programs.

Areas of Expertise

Comprehensive security and technology leadership capabilities

Information Security Management

Security strategy, governance, risk management, compliance (PCI-DSS, HIPAA, GDPR, SOX), security program development, incident management, vulnerability management, forensics

Security Engineering

SIEM (1TB+ daily log analysis), threat intelligence, intrusion detection/prevention, firewall architecture, VPN, encryption, security monitoring, penetration testing, vulnerability scanning (10k+ hosts)

Audit & Compliance

Managing 300+ annual audits, PCI-ISA certification, regulatory compliance, policy development, vendor risk management, security attestation, third-party audits, customer security assessments

Forensics & eDiscovery

Digital forensics, incident response, breach investigation, eDiscovery program (saved $5MM+), evidence collection, malware analysis, FTK, EnCase, forensic tool expertise, law enforcement collaboration

Infrastructure & Architecture

Cloud security, datacenter operations, enterprise architecture, network security, Active Directory, identity management, encryption, system hardening, global infrastructure (22+ sites)

Development & Automation

Software development (C#, .NET, PHP, Python, Perl), security automation, scripting (PowerShell, Bash, VBS), database security (SQL), web technologies, custom tool development

Professional Certifications

27+ industry certifications demonstrating technical expertise and security knowledge

CISSP

Certified Information Systems Security Professional (ISC2) - Maintained for 20+ years since 2002

CISM

Certified Information Security Manager (ISACA)

PCI Certifications

PCI-ISA (Internal Security Assessor), PCIP (PCI Professional)

GCIA

GIAC Certified Intrusion Analyst (SANS Institute)

HiTrust

HITRUST CSF Practitioner

ISO 27001

ISO27001:2022 Certified ISMS Foundation

Additional Certifications Include: MCSE+Security, MCSA+Security, MCDBA, CCNA, CCDA, MCT, CTT+, and 15+ additional Microsoft certifications

Featured Projects & Initiatives

Selected technology projects and entrepreneurial ventures

PasswordTotal

Co-founded security company focused on password auditing and validation solutions. Developed enterprise password security tools including audit systems and real-time validation (Gatekeeper) for Active Directory, Linux PAM, and custom applications. Provides turn-key password cracking infrastructure for organizations.

Enterprise Security Infrastructure

Architected and implemented comprehensive security solutions including global VPN infrastructure, enterprise SIEM processing 1TB+ daily logs, vulnerability management scanning 10k+ hosts monthly, and zero-breach external penetration testing record through enhanced scanning programs.

Telecommunication Software Platform

Developed pioneering telecommunication software used to consolidate over 40 call centers for Billy Graham Evangelistic Association into a handful of locations, saving the organization millions of dollars in operational costs.

Automated Trading System

Developed sophisticated automated stock trading system for equity markets, successfully executing over $11 million in trades in a single year with positive returns through algorithmic trading strategies.

Specialized Data Recovery

Provided data recovery services for highly specialized environments where traditional recovery methods failed, successfully recovering millions of documents thought to be lost, preventing potentially catastrophic business impact for organizations.

Leadership & Professional Engagement

Professional Memberships & Presentations

  • Infragard Digital Forensic Work Group (DFWG) - Member
  • High Technology Crime Investigation Association (HTCIA) - Member & Presenter
  • PCI Security Standards Council - Member
  • ISC2 - Member since 2002
  • CINPA Security Director - Multiple presentations on hacking, forensics, and network security
  • Regional Electronic Computer Investigation Unit (RECI) - Presenter

Speaking Engagements

  • DerbyCon (2015-2017) - Security conference presenter
  • Splunk Live & User Group Presentations
  • FBI & Law Enforcement - Computer crime and security topics
  • CISO Round Tables - Industry security leadership
  • Adjunct Instructor - Web Design & Network Administration
  • Multiple InfoGard presentations on security topics

Awards & Recognition

  • Award of Merit - Hamilton County Sheriff's Office for exceptional contribution in computer crime (2001)
  • Real Leader Award - Outstanding leadership for enterprise projects
  • Platinum Service Award - Honoring exceptional service delivery and capacity to serve others

Content Creator & Community Contributor

Sharing knowledge through YouTube and open-source projects

MiddleSiggy's Digital World

YouTube channel focused on technology tutorials, cybersecurity insights, home automation, and IT professional topics. With over 14,000 subscribers and more than 1 million views to date (as of January 2026), I share practical knowledge and real-world experience with the tech community.

Open Source Contributions

Active contributor to open-source projects including Security Onion tools, Home Assistant documentation, PGP encryption utilities, and Splunk demo applications for user group presentations. Focus on cybersecurity, home automation, and data analytics.

Passionate about sharing knowledge and giving back to the technical community through educational content, open-source contributions, and professional presentations.

Contact Me

Available for professional inquiries, consulting opportunities, and collaboration

joseph@siegmann.org

Connect on LinkedIn

View my work on GitHub

Watch my videos on YouTube