Senior Enterprise Infrastructure & Security Architect
Resume:
JAMES NAGATA, CISSP
510-***-**** *****.******@*******.***
SUMMARY
Senior infrastructure and security architect with 15+ years of experience designing and delivering scalable, resilient hybrid cloud and on-premises environments. Expertise spans network architecture (LAN/WAN/VPN), IAM, zero trust frameworks and NIST-aligned cybersecurity. Led ISO 27001 certification and established enterprise AI governance to enhance security posture and operational reliability.
AREAS OF EXPERTISE INCLUDE
• Cybersecurity & Risk: Cybersecurity Strategy & Governance, Enterprise Risk Management (ERM), Board & Executive Engagement, Risk Appetite Definition, ISO 27001, SOC 2, PCI DSS, HIPAA, SOX, 3rd-Party & Supply Chain Risk, Incident Response Management, Vulnerability Management, Security Architecture & Control Design, Identity & Access Management (IAM), Network
& Endpoint Security, Data Loss Prevention (DLP), Threat Detection, Security Automation, Zero Trust Foundations
• Infrastructure & Operations: IT Strategy, Hybrid Cloud Architecture (Azure, AWS, GCP), Platform Engineering, Site Reliability Engineering (SRE), SLIs/SLOs & Error Budgets, High Availability & Resilience, ITIL / ITSM, ServiceNow & AIOps, DevOps
& CI/CD, Infrastructure as Code (Terraform), End-User Computing (EUC), Helpdesk & Service Desk Operations, Capacity & Performance Engineering, Disaster Recovery & Business Continuity, Network Architecture, Cloud Platforms, Storage Technologies, Virtualization, Analytical Skills, Enterprise Architecture, POS Operations
• Emerging Technology & Governance: AI & Generative AI Governance (ISO 42001), Secure AI Adoption, Data Governance & Privacy Oversight, Secure SDLC & DevSecOps Foundations
• Leadership & Finance: Global Team Leadership, Talent Scaling, Budget Ownership, TCO-Based Decision Making, Vendor & Platform Rationalization, Client Security Assurance & RFP Support PROFESSIONAL EXPERIENCE
Armanino Advisory LLC Sep 2017 - Present
SENIOR DIRECTOR, CYBERSECURITY & IT INFRASTRUCTURE San Ramon, CA
• Led enterprise-wide cybersecurity, IT infrastructure, and risk strategy for a global professional services firm, acting as de facto CISO; applied cybersecurity frameworks, NIST and SOC 2 controls, platform-engineering practices, and high-availability design to improve security posture and cut critical incidents.
• Delivered ISO 27001 certification in under two years, significantly strengthening security posture, client trust, and enterprise sales enablement.
• Designed and implemented an enterprise AI governance framework (ISO 42001-aligned), enabling secure adoption of generative AI platforms, including Azure OpenAI and ChatGPT, while protecting data privacy and IP.
• Owned enterprise architecture across IAM, endpoint platforms, network architecture, cloud security, network segmentation, and data protection, aligning controls to NIST and ISO standards.
• Introduced SRE-aligned operating models, SLIs/SLOs, incident runbooks, and reliability reviews, improving service availability and reducing mean time to recovery.
• Modernized security and infrastructure operations through ServiceNow, Tines automation, and AIOps, improving SLA performance and operational visibility.
• Led executive incident response, vulnerability management, and crisis communications, maintaining zero material data breaches throughout tenure.
• Defined hybrid cloud strategy using AWS, Azure, and Terraform cloud platforms, balancing on-premises controls with cloud scalability, resilience, and cost governance.
• Partnered with C-suite and operating committees to define risk appetite, prioritize investments, and communicate cybersecurity and operational posture, resulting in a unified risk framework adopted across the organization.
• Built and scaled global security, infrastructure, and service desk teams while applying disciplined financial governance, reducing operational costs, and improving incident response time, leveraging automation.
• Established an enterprise-wide third-party risk management and client assurance program, standardizing vendor assessments, SOC/ISO evidence, and security questionnaires to accelerate client onboarding and revenue enablement.
• Led and institutionalized enterprise business continuity and disaster recovery (BC/DR), defining RTO/RPO targets, resilience architecture, and executing recurring recovery exercises that consistently restored critical services within objectives.
• Established enterprise-wide cost governance and cloud financial management (FinOps) practices, improving infrastructure cost transparency, forecasting accuracy, and investment prioritization while supporting rapid business growth. Jamba Juice May 2014 - Sep 2017
DIRECTOR OF SECURITY & INFRASTRUCTURE Emeryville, CA
• Led enterprise IT infrastructure (including helpdesk) and operations governance, ensuring platform stability, audit readiness, and regulatory alignment across corporate and retail environments, employing analytical skills to optimize performance.
• Architected secure, highly available infrastructure for hundreds of distributed retail locations, enabling reliable POS operations, payment processing, and WAN connectivity while meeting PCI and audit requirements.
• Standardized retail network, identity, and endpoint architecture across corporate and store environments, improving store uptime, accelerating new location rollouts, and simplifying security and operational support.
• Established an executive incident and operations governance model with ServiceNow workflows, formalized escalation paths, and decision authority, which reduced average outage resolution time and increased stakeholder confidence.
• Defined and delivered a hybrid cloud infrastructure strategy leveraging public and private cloud platforms, balancing security controls, scalability, and financial governance to support reliable, cost-effective enterprise operations.
• Designed and rolled out an enterprise-wide technology awareness and operational readiness program, improving adoption, resilience, and risk awareness across corporate and field locations.
• Built and led distributed infrastructure and operations teams across onshore and offshore locations, applying ITIL and service management practices to improve service reliability, response consistency, and operational maturity. SAE Institute Apr 2012 - May 2014
DIRECTOR OF INFORMATION TECHNOLOGY Emeryville, CA
• Owned enterprise platform engineering and operations, accountable for platform availability, performance, and service continuity across academic and administrative systems.
• Designed and executed a hybrid cloud architecture across Azure, AWS, and GCP, using Infrastructure as Code and storage technologies to meet on-premises performance requirements while delivering scalable cloud resources, resulting in faster provisioning and lower infrastructure costs.
• Modernized end-user computing and lab environments through virtualization and hybrid desktop platforms, improving uptime, scalability, and provisioning speed.
• Built and led infrastructure and operations teams, implementing ITIL-based service management, incident governance, and lifecycle planning to improve reliability and operational maturity. The Art Institute of California – Silicon Valley Feb 2011 - Apr 2012 SENIOR TECHNOLOGY MANAGER Sunnyvale, CA
•Led enterprise IT infrastructure and operations across multi-campus environments, ensuring availability and performance.
•Implemented infrastructure standards and governance to improve consistency and scalability.
•Delivered high-performance computers and network platforms to enable geo-expansion and support demanding workloads.
•Established operational documentation and support models to strengthen service reliability. Envestnet Jan 2008 - Feb 2011
INFORMATION TECHNOLOGY MANAGER Redwood City, CA
•Led enterprise infrastructure and operations supporting high-availability financial services platforms (BofA and Citibank).
•Modernized data center infrastructure through virtualization and consolidation to improve scalability and efficiency.
•Implemented standardized operations and governance practices to strengthen reliability and audit readiness. EDUCATION
Argosy University
Master of Business Administration, Management Information Systems
•GPA: 4.0
San Francisco State University
Bachelor of Science, International Business
•GPA: 3.75
Jun 2011 - Oct 2013
Feb 1992 - May 1996
CERTIFICATION
•CISSP ISC2 Silicon Valley Chapter ID 580614
•ISC2 AI Strategy for Cybersecurity
•CompTIA Security +
•Project Management Professional (PMP)
•ISACA CISA (Cybersecurity and Infrastructure Agency)
•AWS Solutions Architect Certification
VOLUNTEER - PUBLIC SECTOR
San Ramon Valley Unified School District (SRVUSD) 2024 - Present Technology Advisory Committee for AI Implementation
•Advise on the implementation of artificial intelligence tools and policies for a community of over 30,000 students and faculty.
•Evaluate emerging technologies and guide data governance, ethics, and accessibility in educational AI initiatives.
•Collaborate with cross-functional teams to align technology solutions with institutional goals and compliance standards.
Contact this candidate