I work at the intersection of technology, product, and regulatory/security requirements, bringing structure to complex situations across product, engineering, operations, legal, and security/regulatory compliance teams so work moves forward cleanly and holds up under real-world pressure. 

My background spans three decades across product development, technology, and program leadership, with recent work focused on cybersecurity compliance, third-party risk, and governance in complex environments.

1. Security Compliance: Implementation and program structuring for ISO 27001, SOC 2, NIST CSF, and CMMC Level 2 / NIST 800-171.

2. Third-Party Risk Management (TPRM): Strengthening supply chain security practices and vendor risk governance.

3. Regulatory Compliance: Privacy expertise and program leadership for highly regulated sectors, including the space industry.

4. Contract Compliance:

• Reverse-Engineering: Translating existing contractual security obligations into cohesive, actionable security programs.

• RFPs & Bids: Identifying remediation gaps or demonstrating full compliance to support winning proposals.

📅 Book a meeting with me

📲 514-663-3223

📧 jf@jfcharland.ca

LinkedIn: https://www.linkedin.com/in/jfcharland/