[Podcast] HaystackID® in the EDRM Illumination Zone: Jeffrey Fleming, Managing Director
Editor’s Note: In this episode of the EDRM Illumination Zone, Jeffrey Fleming, Managing Director at HaystackID®, shared how a career that began in emergency services informs his work in cybersecurity today. Drawing from experience as a 911 operator, EMT, and police officer, Fleming explained why preparation must start well before an incident: what he calls the “left-of-breach” approach. He detailed how risk assessments, incident response planning, and regulatory readiness all depend on executive alignment and organization-wide participation. He also outlined key initiatives at HaystackID, including serving as the Independent Security Inspector for TikTok U.S. Data Security (USDS) and expanding services for data subject access requests (DSARs). Throughout the conversation, he tied cyber readiness to measurable business impact, helping leaders see security not as an expense but as an investment. His core message: know your most critical assets, and prepare for when, not if, an incident happens.
[Podcast] HaystackID® in the EDRM Illumination Zone: Jeffrey Fleming
By HaystackID Staff
In the fast-moving world of cybersecurity, preparation can’t start after an incident—it has to be built in from the start. Jeffrey Fleming, Managing Director at HaystackID, knows this well. His focus: helping organizations shift from asking if an incident will happen to preparing for when it will. In this EDRM Illumination Zone episode, Fleming connected with hosts Kaylee Walstad, Mary Mack, and Holley Robinson about his path from first responder to cybersecurity leader, and how that experience shapes his approach to keeping organizations ready.
Fleming’s career began in emergency services—working as a 911 operator, EMT, and police officer—before moving into IT and cybersecurity through the National Guard. That hands-on, high-pressure background still guides his thinking. “When it happens, you’re not shocked—you’re prepared,” he said, describing the mindset needed for effective response.
At HaystackID, Fleming is part of the Global Advisory group, where he focuses on left-of-breach work: the planning, assessments, and governance that happen before an attack occurs. This work includes risk assessments that tie technical vulnerabilities to business consequences, incident response playbooks that involve legal, compliance, and communications teams, and readiness for a growing maze of state, federal, and international regulations. “It’s not just an IT issue—it’s an organization-wide responsibility,” he explained.
A central theme in the discussion is leadership buy-in. “Executives may not understand packet captures or malware signatures, but they understand dollars and cents,” Fleming noted. Connecting cyber risks to measurable business impact—such as lost customers, revenue, or market share—helps leadership make informed decisions and invest in prevention rather than paying more after a breach.
Fleming also emphasized the difference between going through the motions and truly preparing. Tabletop exercises, he said, should be realistic, involve actual decision-makers, and test the whole organization, not just IT. “A cyber incident isn’t a turn-based board game—your adversaries are moving in real time, and so should you.”
Looking ahead, Fleming highlighted two major initiatives: serving as the Independent Security Inspector for TikTok U.S. Data Security (USDS) and expanding services for DSARs. Both leverage HaystackID’s deep eDiscovery expertise and cybersecurity capabilities to help clients stay ahead of evolving threats and regulatory demands.
Listen to the full episode for more on Fleming’s approach to building a culture of readiness, what makes an organization truly resilient, and how left-of-breach strategies can become a lasting advantage.
More About Jeffrey Fleming
Jeffrey Fleming is an experienced cybersecurity professional with a proven track record of delivering excellence in client relations and operational success. With over a decade of experience in contract oversight and strategic leadership, he specializes in transforming challenges into solutions that yield exceptional results. Fleming’s ability to navigate complex contractual landscapes and build strong client relationships has been instrumental in driving organizational growth and success. As an adjunct professor, he is passionate about sharing his knowledge and expertise in cybersecurity with the next generation of professionals. By providing hands-on guidance and mentorship, Fleming empowers students to excel in navigating the ever-evolving cybersecurity landscape and contribute meaningfully to the industry. In addition to his expertise in contract management and cybersecurity, Fleming brings a wealth of knowledge in cloud solutions architecture. Leveraging his background in cloud technologies, he integrates innovative solutions to optimize operations, enhance efficiency, and drive strategic initiatives forward. By staying abreast of the latest advancements in cloud computing, Fleming ensures that organizations are equipped with the tools and resources needed to thrive in today’s digital age.
The podcast is available on your favorite listening app, including Spotify, Apple Podcasts, and Google Play. The podcast is available on the EDRM website and is provided below for convenience.
Join HaystackID’s experts as they share actionable insights on today’s most critical topics— from how GenAI is reshaping legal data strategies to the latest approaches in digital forensics. Explore our full library of EDRM Illumination Zone podcast episodes.
About the Electronic Discovery Reference Model
Empowering the global leaders of e-discovery, the Electronic Discovery Reference Model (EDRM) creates practical global resources to improve e-discovery, privacy, security, and information governance. Since 2005, EDRM has delivered leadership, standards, tools, guides, and test datasets to strengthen best practices throughout the world. EDRM has an international presence in 136 countries, spanning six continents. EDRM provides an innovative support infrastructure for individuals, law firms, corporations, and government organizations seeking to improve the practice and provision of data and legal discovery with 19 active projects. Learn more at EDRM.net.
About HaystackID®
HaystackID® solves complex data challenges related to legal, compliance, regulatory, and cyber requirements. Core offerings include Global Advisory, Cybersecurity, Core Intelligence AI™, and ReviewRight® Global Managed Review, supported by its unified CoreFlex™ service interface. Recognized globally by industry leaders, including Chambers, Gartner, IDC, and Legaltech News, HaystackID helps corporations and legal practices manage data gravity, where information demands action, and workflow gravity, where critical requirements demand coordinated expertise, delivering innovative solutions with a continual focus on security, privacy, and integrity. Learn more at HaystackID.com.
Assisted by GAI and LLM technologies.
Source: HaystackID