Jonathan Ruf is a seasoned Cybersecurity Executive with over two decades of experience in the Financial Services industry. As a leader in the field, he has a proven track record of developing and implementing robust cybersecurity strategies to safeguard organizations against evolving cyber threats. Jonathan’s expertise extends across various domains, including information protection, privacy, contract negotiation and review, incident response, and compliance.

In his current role as the Head of Cyber and Information Risk at Apple Bank, Jonathan is responsible for overseeing the organization’s cybersecurity risk posture. Regularly reporting to the Board, Jonathan provides comprehensive updates on the current threat landscape, potential vulnerabilities, and the effectiveness of existing cybersecurity measures. Jonathan’s ability to articulate complex technical concepts in a clear and concise manner enables the Board and executive senior management to make informed decisions regarding cybersecurity investments and risk mitigation strategies.

Jonathan’s technical knowledge and policy implementation is a cornerstone of his success. With a background in computer science and extensive hands-on experience, he possesses a deep understanding of cutting-edge cybersecurity technologies and methodologies. His proficiency extends to areas such as Information Security policy writing, defining procedure, and creating security standards. This technical acumen allows Jonathan to collaborate effectively with the organization’s IT teams, ensuring that security measures are seamlessly integrated into all facets of the business.

Throughout his career, Jonathan has navigated the rapidly evolving landscape of cybersecurity, staying ahead of emerging threats and compliance requirements. His commitment to continuous learning and professional development has positioned him as a thought leader in the industry. Whether building a security operation center, implementing a cloud application security broker (“CASB”) or crafting incident response plans, Jonathan’s strategic approach is guided by a thorough understanding of both the technical and business aspects of cybersecurity.

As a key liaison between the organization and regulatory bodies, Jonathan facilitates transparent communication, ensuring compliance without compromising security. His strategic vision and meticulous approach to the adoption of the Cyber Risk Institutes (CRI), Cyber Profile makes him a trusted leader in introducing the CRI Profile as the Bank’s cybersecurity assessment tool to interact with regulators demonstrating compliance and upholding industry standards.

In addition to his operational responsibilities, Jonathan is an active participant in industry conferences and forums. His thought leadership extends beyond the boardroom, contributing to the broader cybersecurity community through articles, presentations, and mentorship programs. Jonathan’s passion for fostering a culture of security awareness within organizations reflects his dedication to not only protecting digital assets but also cultivating a proactive cybersecurity mindset across all levels of the industry.

Prior to joining Apple Bank, prior to joining Apple Bank, Jonathan held multiple Senior Information Security and Cyber Risk Executive positions at JP Morgan Chase and Bank of New York Mellon.

Jonathan earned The CERT Certificate in Cyber-Risk Oversight, created in partnership with Ridge Global, National Association of Corporate Directors, and the CERT Division of the Software Engineering Institute at Carnegie Mellon University.

Certified National Association of Corporate Directors CERT in Cyber-Risk Oversight