About CompliantPop security program development
CompliantPop was established by a team of seasoned security professionals with roots at IBM, AT&T, and Cisco Systems Inc., collectively bringing 87 years of industry experience. Each founder contributes more than 25 years of specialized expertise in regulatory compliance and the design and execution of cybersecurity programs. We provide end-to-end services—including strategic planning, comprehensive frameworks, training, and hands-on guidance—covering every phase from inception to execution.
Our Team
Jonathan Ghahreman - Chief Executive Officer
Jonathan, a former Marine, brings a wealth of experience and disciplined leadership to cybersecurity. He was previously a partner in IBM's Security Intelligence Operation Center Consulting Group, where, over an 18-year career as an Information Security Consultant, he led significant projects for prominent organizations such as the Port of Los Angeles, Anderson Healthcare, and Honda VSOC.
His expertise spans the full spectrum of cybersecurity, including operations management, threat detection, incident response, governance, vulnerability management, and the development of security and defense architectures. Jonathan excels at aligning security strategies with business objectives, offering actionable recommendations, streamlining operations, and designing comprehensive policies and processes. He is also a trusted mentor and team leader, cultivating high-performing security teams.
At CompliantPop.com, Jonathan is positioned to guide the organization toward the next era of responsive, cost-efficient cybersecurity solutions. He empowers clients with the tools, knowledge, and leadership needed to strengthen their security frameworks independently. With a Master’s degree in IT and over 18 years in cybersecurity, his influence spans multiple sectors, including defense, government, education, financial services, and managed security services (MSS).
John Vu - Founder
John is a seasoned cybersecurity and information security leader with over 25 years of experience driving enterprise security strategy across government agencies and Fortune 500 companies. He has held senior consultant roles at IBM, Cisco Systems, AT&T, Verizon, Athena Health, McGraw-Hill Financial, Boeing, and Northrop Grumman. He holds the prestigious Certified Chief Information Security Officer (CCISO) designation, reflecting his proven expertise in executive-level security leadership.
He is also the author of three widely recognized cybersecurity books published on Amazon: Cybersecurity Incident Response Playbook, Automated Defender: Revolutionizing Security Operations, and Know Before You Get Hacked. These works highlight his practical expertise in incident response, automation, and proactive defense strategies.
In 2002, John co-founded PostYourHome.com, one of the first online “for sale by owner” real estate platforms—well before proptech became mainstream. As CEO and Chief Information Security Officer, he ensured the platform’s security and regulatory compliance while driving business development, strategic partnerships, and investor relations. The company was later acquired by Providential Holding Group Inc.
John graduated from the Stanford Advanced Cybersecurity Program at Stanford University’s School of Engineering and earned a Bachelor’s degree in Computer Science from the University of California, San Diego, combining deep technical knowledge with strategic leadership capabilities.
Michael Lee - Chief Compliance Officer
Michael's role as a seasoned Senior Information Technology Leader is marked by a profound dedication and over 25 years of enriched experience in the critical spheres of Governance, Risk, and Compliance (GRC). His extensive background is not just limited to enforcing IT security protocols and conducting thorough audits but also extends to the strategic development of disaster recovery frameworks and the implementation of forward-thinking business continuity plans.
Michael's expertise is further solidified by a distinguished collection of professional certifications, each representing a cornerstone in the vast landscape of information security and risk management.
Michael holds certifications in CISSP (Certified Information Systems Security Professional), CRISC (Certified in Risk and Information Systems Control), CISM (Certified Information Security Manager), Certified Information Privacy Professional (CIPP/US), and CISA (Certified Information Systems Auditor).
Tim Bryan-Montañez - Chief Information Officer
With nearly 30 years of experience, Tim is a seasoned technology expert whose strengths span IT, software, and network engineering. His ability to bridge technical domains enables him to deliver innovative, cost-effective solutions aligned with business goals.
Tim brings full-lifecycle project management expertise—from concept and planning to execution and integration—while keeping budgets on track and investments aligned with strategic objectives.
He holds an MBA and MS, along with certifications including PMP, CSM, CISSP, and SSCP, reflecting a strong foundation in project management, agile methodology, and cybersecurity.
Tim’s deep experience, leadership, and credentials make him a key asset for organizations aiming to harness technology for long-term success.
Stefan Tran - Chief Business Development Officer
Stefan brings over 15 years of financial analysis experience, backed by an MBA, CISA certification, and a Professional Security Certification from Stanford’s Advanced Cybersecurity Program. His background includes significant contributions to investment banking, with expertise in financial modeling, valuation, and statement analysis.
He has successfully valued companies using methods such as DCF, comparable company analysis, and precedent transactions, while integrating cybersecurity practices to safeguard sensitive financial data.
With a rare blend of finance and cybersecurity expertise, Stefan is well-equipped to support strategic, secure financial decision-making in today’s complex landscape.
Dan Vu - Chief Network Security Architect
Dan has a solid 20-year history of effective architectural design, deployment, and administration of enterprise-wide WAN/LAN, Data Center, SDWAN, Cisco Unified Communications Manage VoIP phones, and VMWare server infrastructures.
He is a Subject Matter Expert in MPLS, BGP, OSPF, and EIGRP protocol, Cisco routers ASR and ISR, Cisco switches Nexus 9000, catalyst 9000, Firepower firewall, Cisco VPN, and Palo Alto.
He holds a BS in Electrical Engineer as well as Cisco Certified (CCNP) ENTERPRISE, Cisco Certified (CCNP) DATA CENTER, Cisco Certified (CCNP) VOICE, Cisco Certified (CCSP) SECURITY, Cisco Certified Specialist - Enterprise SD-WAN Viptela Implementation, and Microsoft Certified System Engineer (MCSE).