Information security and technology professional with hands-on corporate, government, and academic experience. I am passionate about building organizations and people to be the best they can be. I have extensive experience in helping companies assess their cyber risks and manage those risks across the intricate landscape of technology, business, and people. I merge technical, communication and leadership skills to successfully solve some of today's toughest security issues.
Videos, Blogs, Podcasts, Webinars: https://www.cyber-aaa.com/gallery
Whether performing information security risk assessments, working alongside CIOs & CISOs to set and communicate strategic security priorities, or advising board members on effective governance of cyber risks, I love working with business leaders to improve their organization's cybersecurity and risk posture.
Certifications: CISSP, CISM
Connect with me: https://linktr.ee/cyberron
TECHNICAL EXPERTISE
• Information security leadership, management, administration, consulting, coaching, and analysis - acting CISO / vCISO
• Risk management methodologies/frameworks (FAIR, NIST RMF/CSF, ISACA COBIT/RiskIT)
• Compliance (HIPAA, HITECH, ISO 27001/2/5, NIST SP800-53 & 800-171, DFARS/FedRAMP, PCI DSS)
• Security assessment tools: NMap, Nessus (Tenable), Metasploit, Social Engineering Toolkit (SET), Wireshark, OWASP ZAP
• Computer forensics tools: Forensics Toolkit (FTK), OSForensics, The Sleuth Kit
• Network operations / security (Cisco, Splunk, Checkpoint)
• Windows and Unix / Linux (All distributions) operating system administration
• Security education, training, and awareness - CISSP, CISM and Security+ instructor
Website: https://www.cyber-aaa.com/