I have been involved in the IT security field since 1994 with a combination of commercial and military positions.
I joined Capgemini through its acquisition of Leidos Cyber in 2018, and currently focus on enterprise cybersecurity, defense against advanced threats, and regulatory compliance strategy. I have advised commercial clients in the Financial, Industrial, Energy, and other critical infrastructure industries, and also hold a patent for secure e-commerce technology.
I regularly advise my clients on advanced cyberdefense topics including Advanced Persistent Threat, nation-state adversaries, Identity and Access Management, and cloud solutions using SaaS, IaaS, and PaaS technologies. I have also performed cybersecurity assessments using the NIST CSF, FISMA, FedRAMP, HIPAA, FFIEC, CSC-20, and other frameworks.
I am a frequent public speaker and have presented on cybersecurity topics at RSA, MILCOM, HIMSS, (ISC)2, ISSA, the Smart Card Alliance, B-Sides and other forums.
I have co-authored four books on cybersecurity:
- Enterprise Cybersecurity: How to Build a Successful Cyberdefense Program (Apress)
- Enterprise Cybersecurity Study Guide (Apress)
- Understanding Security Issues (de Gruyter)
- Building an Effective Security Program (de Gruyter)
I am also a former Ranger-qualified paratrooper with the 82nd Airborne Division, and hold degrees in Computer Science and Information Assurance.