Jeffrey Wheatman is a Research VP in Gartner Research, where Mr. Wheatman regularly advises clients on a wide range of security and IT risk management issues, with a focus on strategy, team building, metrics and reporting, communicating techniques and risk management. As an experienced analyst within Gartner's S&RM team, he works with senior security and risk management leaders to help them identify, assess and treat IT-related risks within their environments.
Prior to his current role, Mr. Wheatman served as a Leadership Partner in Gartner's Enterprise IT Leaders program, where he partnered with security and risk management executives to build, run, grow and transform security management programs. He is a seasoned IT-related risk management practitioner with significant expertise as a hands-on technologist, as well as an extensive background in strategy and program development. He has more than nine years of experience in consulting for Fortune 500 and Global 200 organizations in numerous vertical markets, where he has managed teams responsible for constructing, deploying and managing security and risk management programs and solutions.
During his nine years in consulting, he was responsible for successfully developing and managing information security consulting practices for several regional professional services providers in the northeast United States. He has significant hands-on experience in multiple areas within technology and security, including network operations, end-user support, network architecture, telecommunications and systems analysis.
Gotham Technology Group
Practice Manager - Information Security
Brute Force Security
CSO, Principal Consultant
Martha Stewart Living
AVP, Network & Information Security
Security and Risk Management Leaders
Information Security Management Program (retired)
M.B.A., Computer Information Systems, Zicklin School of Business
B.A., Economics, Queens College
1Building a security program from scratch or fix one that is underperforming
2Security and risk metrics and reporting
3Presenting to the board of directors and senior business leaders
4Build, improve, mature and leverage processes for security and risk management
5How can SRM leaders more effectively communicate with non-IT stakeholders