Webinar Speakers
Jonathan Juchtman is a supervisor within the Security and Privacy Risk Consulting (SPRC) practice, specializing in a wide range of security and privacy engagements. His expertise spans PCI, NIST, ISO, INFOSEC, CCPA, GDPR, HIPAA, and IT-SOX standards and frameworks. Jonathan also has hands-on experience utilizing robotic process automation (RPA) to develop and implement multiple bots. His primary focus is addressing emerging technology risks and privacy concerns for organizations.
Jonathan combines technical expertise with business insights to deliver comprehensive security and privacy program evaluations across industries. He has served as a key advisor in assessing organizational maturity levels against standardized frameworks such as the NIST Cybersecurity Framework (NIST CSF), NIST Privacy Framework (NIST PF), and ISO standards, offering actionable recommendations to strengthen security and privacy postures.
In addition to framework evaluations, Jonathan has conducted compliance assessments tailored to regulatory requirements, including those involving third-party risk management, NIST, CCPA, GDPR, LGPD, and ISO. He is well-versed in leveraging industry-leading security and privacy tools such as AuditBoard, OneTrust, Osano, BigID, and TrustArc. Through these initiatives, Jonathan ensures his clients implement the right controls to align with regulatory standards and enhance their overall governance frameworks.
Grant Gucker is a supervisor in the Security and Privacy Risk Consulting (SPRC) practice, specializing in cybersecurity engagements. He has over six years of experience in risk advisory, audit, and consultancy services for clients in the financial services industry. Grant has a proven track record of identifying potential risks, recommending improvements to controls, policies, and procedures, and driving measurable results. His expertise spans cybersecurity, vulnerability management, IT security control design, effectiveness testing, compliance audits, and risk assessment services. Grant is also skilled in data analytics, leveraging industry-leading data analysis and visualization tools to enhance decision-making and risk management processes. He leads audits for financial institutions, focusing on control design and effectiveness testing to ensure regulatory compliance. He also has significant experience in leading ISO/IEC 27001:2022, NIST cybersecurity framework (CSF) 2.0 engagements, and SOC 1/SOC 2 Type 2 audit reporting.
Grant is a subject matter expert in third-party risk management (TPRM), leading teams in performing risk-based assessments and continuous monitoring efforts for clients in a wide range of sectors. His proficiency encompasses planning and executing TPRM due diligence, performing program audits, conducting maturity assessments, and ensuring adherence to industry standards such as ISO/IEC 27001 and the NIST CSF 2.0, thereby promoting compliance and best practices. Grant’s technical expertise in data analytics enables him to uncover critical trends, streamline risk gap identification, and validate controls with precision, enhancing business performance and strengthening risk management strategies.
Prior to joining RSM in 2021, Grant was with a top global bank in global procurement operations, where he executed sourcing activities and performed IT-related security audits on third parties assessing the cybersecurity environment and internal controls. Grant strives to optimize and drive efficiencies in his client’s organizations through communication with stakeholders and critical thinking.
