About CompliantPop security program development
CompliantPop: Elite Cybersecurity
Founded by veteran leaders from IBM, AT&T, and Cisco, CompliantPop brings decades of combined expertise in AI-driven threat intelligence, compliance, and security program execution. We deliver end-to-end solutions—from strategy and framework development to training and implementation—keeping your organization secure, resilient, and audit-ready.
Our Team
Jonathan Ghahreman - Chief Executive Officer
Jonathan is a former Marine and veteran cybersecurity leader with more than 20 years of experience strengthening security operations for major global organizations. As an Executive Consultant and SIOC leader at IBM, he led the North America SIOC consulting team, drove large-scale security initiatives, and built new consulting strategies that improved threat detection and operational maturity across multiple industries.
With a Master’s in Internet Security, Jonathan brings deep expertise in cyber operations, incident response, governance, vulnerability remediation, threat analysis, and security architecture. He developed insider-threat monitoring programs, led cyber-intelligence transformation efforts, expanded MITRE coverage, and enhanced consulting capabilities in metrics, reporting, organizational design, and SOC runbooks. He has also mentored security teams and guided full SOC assessments, builds, and maturity programs.
At CompliantPop, Jonathan drives practical, cost-efficient cybersecurity solutions. He gives clients the leadership, tools, and strategy needed to strengthen defenses, reduce risk, and stay resilient in today’s evolving threat landscape.
John Vu - Founder
John is a veteran cybersecurity leader with more than 25 years of experience shaping security strategy for government agencies and Fortune 500 companies. He has held senior roles at IBM, Cisco, AT&T, Athena Health, McGraw-Hill Financial, and Northrop Grumman, bringing executive-level insight to complex security challenges. He also holds the Certified Chief Information Security Officer (CCISO) credential.
He is the author of three cybersecurity books—Cybersecurity Incident Response Playbook, Automated Defender, and Know Before You Get Hacked—offering practical guidance on incident response, automation, and modern defense.
In 2002, John co-founded PostYourHome.com, one of the earliest online “for sale by owner” real estate platforms, serving as CEO and CISO until its acquisition by Providential Holding Group Inc.
John holds a B.S. in Computer Science from UC San Diego and completed the Stanford Advanced Cybersecurity Program through Stanford University’s School of Engineering, blending deep technical expertise with seasoned leadership.
Michael Lee - Chief Compliance Officer
Michael is a senior IT and cybersecurity leader with over 25 years of experience in Governance, Risk, and Compliance (GRC) across complex enterprises. He is known for combining technical expertise with strategic vision to build robust security frameworks, disaster recovery programs, and business continuity plans that ensure resilience and compliance.
He has guided organizations in risk management, audits, and IT policy implementation, translating complex challenges into actionable strategies that protect critical systems while supporting growth.
Michael holds CISSP, CRISC, CISM, CIPP/US, and CISA certifications, reflecting his deep expertise in security, privacy, and risk. He is also passionate about mentoring teams and driving forward-thinking solutions that strengthen security posture and operational efficiency.
Tim Bryan-Montañez - Chief Information Officer
Tim is a seasoned technology leader with nearly 30 years of experience spanning IT, software, and network engineering. He excels at bridging technical domains to deliver innovative, cost-effective solutions that advance business objectives.
With full-lifecycle project management experience, Tim guides initiatives from planning to execution while ensuring technology investments deliver strategic impact.
He holds an MBA and MS, along with PMP, CISM, CISSP, and SSCP certifications, combining technical expertise, leadership, and strategic insight to help organizations leverage technology for lasting success.
Stefan Tran - Chief Business Development Officer
Stefan brings over 20 years of financial analysis experience combined with advanced cybersecurity expertise, giving him a unique edge in secure, strategic decision-making. He holds an MBA, CISA certification, and has completed the Stanford Advanced Cybersecurity Program through Stanford University’s School of Engineering.
He has extensive experience in investment banking, including financial modeling, company valuation, DCF, comparable company, and precedent transaction analyses, all while applying cybersecurity best practices to protect sensitive data.
Stefan’s blend of finance and security expertise helps organizations make informed, secure, and forward-looking financial decisions.
Dan Vu - Chief Network Security Architect
Dan is a network and infrastructure expert with 20 years of experience designing and managing enterprise WAN/LAN, data center, SD-WAN, Cisco Unified Communications, VoIP, and VMware environments.
A specialist in MPLS, BGP, OSPF, and EIGRP, he has hands-on expertise with Cisco routers and switches, Firepower and Palo Alto firewalls, and VPN solutions, delivering secure, scalable, and reliable infrastructure.
Dan holds a BS in Electrical Engineering and certifications including CCNP, CCNP Data Center, CCNP Voice, CCSP Security, Cisco Enterprise SD-WAN Specialist, and MCSE, reflecting his technical mastery and dedication to excellence.