Jason Tugman

Jason Tugman

Associate Director, Cybersecurity Risk Management & Strategy

Mr. Tugman has over 15 years of extensive experience and expertise related to the fields of cybersecurity and risk management. In his current role at MCRA, He conducts cybersecurity risk assessments on medical devices, as well as supporting manufacturers’ cybersecurity strategy development along with system evaluation and validation efforts.


Mr. Tugman studied at Columbia College Chicago. He maintains a Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certificate of Cloud Security Knowledge (CCSK), and CERT Insider Threat Program Manager (ITPM). 


Prior to joining MCRA, Mr. Tugman has spent a large part of his career developing and performing cybersecurity assessments, including the development of a pre-binding cybersecurity assessment, and a metrics aggregation program for a $200mm Lloyd’s cyber insurance line slip. He led the data compatibility working group for the DOE’s Cybersecurity Capability Maturity Model version 2.0 update (C2M2v2). He was also a member of the API 1164 Pipeline Security Standard leadership and architecture team. Mr. Tugman is a veteran of the United States Marine Corps and is the author of the upcoming book ‘The Cybersecurity Assessment Handbook’.


Mr. Tugman works closely with both MCRA’s Regulatory and Quality Assurance departments, to support medical device manufacturers as they work to develop secure technology, analyze device security control measures, and to also implement robust security policies which are necessary to gain market access. 


Get in Touch