About CompliantPop security program development
CompliantPop: Elite Cybersecurity, Simplified
Founded by veteran cybersecurity leaders from IBM, AT&T, and Cisco, CompliantPop combines over 85 years of experience in AI-driven threat intelligence, regulatory compliance, and program execution. We provide end-to-end solutions—from strategic planning and framework development to training and hands-on implementation—ensuring your organization stays secure, resilient, and always audit-ready.
Our Team
Jonathan Ghahreman - Chief Executive Officer
Jonathan is a former Marine and seasoned cybersecurity leader with over 20 years of experience driving security excellence for some of the world’s most prominent organizations. As a partner in IBM’s Security Intelligence Operation Center Consulting Group, he led critical initiatives for clients including the Port of Los Angeles, Anderson Healthcare, and Honda VSOC, delivering measurable improvements in threat detection, incident response, and security operations.
Jonathan’s expertise spans the full spectrum of cybersecurity: operations management, threat intelligence, incident response, governance, vulnerability management, and security architecture design. He is known for aligning security strategies with business objectives, providing actionable recommendations, streamlining processes, and building high-performing security teams.
At CompliantPop, Jonathan drives the organization’s mission to deliver responsive, cost-efficient cybersecurity solutions. He empowers clients with the strategies, tools, and leadership needed to strengthen security frameworks, reduce risk, and maintain operational resilience. With a Master’s in IT and experience across defense, government, education, financial services, and MSS, Jonathan combines deep technical expertise with disciplined leadership to protect organizations in today’s evolving threat landscape.
John Vu - Founder
John is a veteran cybersecurity and information security leader with over 25 years of experience shaping enterprise security strategies for government agencies and Fortune 500 companies. He has held senior consulting roles at IBM, Cisco, AT&T, Athena Health, McGraw-Hill Financial, and Northrop Grumman, bringing executive-level expertise to complex security challenges. John holds the Certified Chief Information Security Officer (CCISO) designation, reflecting his proven ability to lead at the highest levels of security governance.
An accomplished author, John has published three widely recognized cybersecurity books on Amazon: Cybersecurity Incident Response Playbook, Automated Defender: Revolutionizing Security Operations, and Know Before You Get Hacked, sharing practical guidance on incident response, automation, and proactive defense strategies.
In 2002, John co-founded PostYourHome.com, one of the earliest online “for sale by owner” real estate platforms—well before proptech became mainstream. As CEO and Chief Information Security Officer, he oversaw security, compliance, and business growth, including strategic partnerships and investor relations. The company was eventually acquired by Providential Holding Group Inc.
John holds a Bachelor’s degree in Computer Science from UC San Diego and completed the Stanford Advanced Cybersecurity Program at Stanford University’s School of Engineering, blending deep technical knowledge with strategic leadership skills.
Michael Lee - Chief Compliance Officer
Michael is a seasoned Senior IT and Cybersecurity Leader with over 25 years of experience driving Governance, Risk, and Compliance (GRC) across complex enterprise environments. He is recognized for blending technical expertise with strategic vision to design and implement robust security frameworks, disaster recovery programs, and business continuity plans that ensure operational resilience and regulatory compliance.
Throughout his career, Michael has guided organizations in proactively managing risk, conducting comprehensive audits, and implementing IT policies that balance security with business objectives. He is known for translating complex technical challenges into actionable strategies that protect critical systems while enabling organizational growth.
Michael’s professional credentials reflect his deep expertise in information security, privacy, and risk management. He holds CISSP, CRISC, CISM, CIPP/US, and CISA certifications, positioning him as a trusted advisor in IT governance and compliance.
Passionate about mentoring the next generation of IT professionals, Michael emphasizes building strong teams, fostering collaboration, and implementing forward-thinking solutions that anticipate emerging threats and industry trends. His leadership consistently drives measurable improvements in security posture, risk mitigation, and operational efficiency.
Tim Bryan-Montañez - Chief Information Officer
With nearly 30 years of experience, Tim is a seasoned technology leader with deep expertise across IT, software, and network engineering. His ability to bridge technical domains enables him to deliver innovative, cost-effective solutions that directly support and advance business objectives.
Tim brings full-lifecycle project management experience, guiding initiatives from concept and planning through execution and integration, all while maintaining budget discipline and ensuring technology investments drive strategic impact.
He holds an MBA and MS, along with PMP, CISM, CISSP, and SSCP certifications, reflecting a strong foundation in project management, agile methodologies, and cybersecurity best practices.
Tim’s combination of technical expertise, leadership, and strategic insight makes him a trusted partner for organizations aiming to leverage technology for sustainable, long-term success.
Stefan Tran - Chief Business Development Officer
Stefan combines over 15 years of financial analysis expertise with advanced cybersecurity knowledge, creating a unique edge in secure, strategic decision-making. He holds an MBA, CISA certification, and is a graduate of Stanford’s Advanced Cybersecurity Program, blending finance and security at a high level.
Stefan has made significant contributions in investment banking, excelling in financial modeling, company valuation, and statement analysis. He is experienced in DCF, comparable company, and precedent transaction analyses.
while consistently applying cybersecurity best practices to protect sensitive financial information.
With this rare combination of finance acumen and cybersecurity expertise, Stefan helps organizations make informed, secure, and forward-thinking financial decisions in today’s complex business environment.
Dan Vu - Chief Network Security Architect
Dan is a seasoned network and infrastructure expert with 20 years of experience designing, deploying, and managing enterprise WAN/LAN, data center, SD-WAN, Cisco Unified Communications, VoIP, and VMware server environments.
A Subject Matter Expert in MPLS, BGP, OSPF, and EIGRP, Dan has deep hands-on experience with Cisco ASR/ISR routers, Nexus and Catalyst switches, Firepower and Palo Alto firewalls, and VPN solutions. His expertise spans complex enterprise networks and modern communications systems, delivering reliable, scalable, and secure infrastructure solutions.
Dan holds a BS in Electrical Engineering and a robust portfolio of certifications, including CCNP, CCNP Data Center, CCNP Voice, CCSP Security, Cisco Enterprise SD-WAN Specialist, and MCSE, underscoring his technical mastery and commitment to excellence in enterprise networking.