Jonathan Cox

Jonathan brings a deep understanding of information security controls and compliance framework mandates to his clients.

He has been responsible for leading the security efforts of several companies and their clients servicing the Banking, Healthcare, Legal, Insurance, Manufacturing, Telecommunications, and DoD Industries, performing gap assessments against NIST 800-171. From the gap assessment, Jonathan and his team assist organizations in implementing all the missing controls, which included:

  • Audit Assessment
  • Internal Audit
  • Audit readiness 
  • Information Security Plans, Policies, and Procedures
  • Risk Assessment
  • System Security Plan
  • Incident Response Plan, Training and Testing
  • Configuration Management Plans
  • Firewall Review and Update
  • Change/Patch Management Review
  • System Security Plans
  • Compliance Gap Assessments
  • Plan of Action and Milestone Development and Management
  • Risk Register Management
  • Pen Testing
  • Internal and External Security Scanning

Prior to consulting for GoldSky Security, Jonathan served as Chief Operations Officer for Medicat. He was responsible for developing and managing Medicat’s SaaS EMR software platform that services over 500 Colleges and University’s Student Health Centers.

Jonathan led the companies efforts to achieve SSAE 18 SOC 2 Type II and +HITRUST CSF 8.1 certification. He also led the compliance support efforts for several clients and their audits based on the NIST 800-53 rev. 4, FedRAMP, FISMA, PCI, ISO 27001, NIST 800-30, and HIPAA/HITECH audits.

Throughout Jonathan’s career, he has consulted with companies in providing his expertise in ISO 27001 gap analysis, policy and procedure development, security assessments, and security framework development. Additionally, Jonathan was responsible for creating an Information Security Training Program for all employees and managing third-party and customer readiness audits, including SSAE 18, PCI DSS, ITAR, and FISMA.

GoldSky Security is a full-service cyber security solutions firm catering exclusively to small-mid-size businesses. Our services are custom-designed for the smaller business needs while still providing the protection options of large businesses and governments. Our objective for all of the companies we partner with is to identify IT security vulnerabilities and provide the professional resources necessary to reduce the risk of cyber-attacks, malware threats, and data theft.

Jonathan Cox is GoldSky Security's COO and Managing Partner. GoldSky provides a diverse portfolio of services including; IT Security, Cloud Security, Security Risk Assessments, Incident Response Advisory, IT Audit and Compliance Support, Mobile Security, Chief Information Security Officers as a service (CSOaaS), Vulnerability Assessment services, and CMMC-AB - Registered Provider Organization (RPO).

GoldSky services clients across the US and currently has offices in Boston, Orlando in Denver, Tampa, and Washington D.C.

GoldSky’s passion, cause and purpose is to EDUCATETRANSFORM and PROTECT our clients.

We Support IT Compliance Frameworks including: