Kathleen Whalen
Details
Kratos Defense and Security Solutions
Manager, Cybersecurity Services
2017 : 2018
Toastmasters international - District 29
Area Director
FedRAMP Assessment Manager and SME for the Mission Cyber and Intelligence Solutions (MCIS)
Overseeing the assessments of Cloud Service Providers (CSP) attempting to obtain a Provisional Authorization to Operate (P-ATO) or maintain the CSPs P-ATO. Managing and actively participating in assessments of PaaS, IaaS and SaaS solutions. Managing monthly Continuous Monitoring activities of CSPs. Oversee and manage the assessment team activities throughout all three phases of the FedRAMP process. Currently overseeing the P-ATO assessment of several CSPs as part of the FedRAMP Accelerated Program.
* FedRAMP Assessment Lead
* FedRAMP Assessor
* FedRAMP Program Readiness
* FedRAMP Gap Analysis/Assessment
* NIST/FedRAMP Advisor
* NIST/FedRAMP Consultant
* All things NIST & FISMA
2015 : 2017
ManTech International Corporation (working at KCG, a wholly Owned Subsidiary)
Sr. Commercial Cybersecurity Consultant/Manager
Worked as a technical project lead on NIST and FedRAMP contracts. Created FedRAMP packages for commercial customers. Managed teams on project to create authorization packages for both commercial and Federal clients. Participated in security assessment projects for annual NIST assessments for Federal clients. Created project plans for accomplishing all tasks. Successfully managed personnel resources to completed projects on time and under the allotted billable hours. Managed teams to create templates and procedures for completing FedRAMP packages. Managed teams to perform annual NIST assessments for federal customers. Created a knowledge base for FedRAMP and NIST facts for personnel to reference when preparing packages and doing assessments.
2015 : 2015
Veris Group, LLC
Technical Project Lead - Subcontractor
Working as a subcontractor on a 6-month contract for Veris Group performing a variety of vulnerability assessment activities for FISMA, FedRAMP and Corporate and industry compliance requirements.
2015 : 2015
The Goal
Senior Technical Assessment Specialist
About
I have been writing policies and procedures based on NIST guidances starting with the NIST SP 800-26 back in 2001. I have had multiple analyst and technical writing jobs. I quickly became a subject matter expert (SME) in everything FISMA and related to FISMA assessments. Around2014 I began working on FedRAMP and cloud assessments. I am now both a FISMA/FedRAMP SME. I am an expert in interpreting the NIST 800-53 controls and in assessing the controls for PaaS, IaaS and SaaS.
On my current job I am the Delivery Manager on the assessments my company (a 3PAO) performs for various cloud service providers (CSP). I am leading teams of 3-4 members in the review and revision of policies and procedures. I am leading teams in assessing the management, operational and technical controls. In addition, I coordinate the activities of the teams with the penetration testing team. Lastly, I coordinate with the Project Managers to manage the project deliverable delivery dates, the project schedule and billable hours of each project.
The teams that I manage are responsible for developing the required deliverables for all phases of the Risk Management Framework. The teams I manage successfully delivery on time and within budget the Readiness Assessment Reports, Security Assessment Plans, FedRAMP Assessment Test Procedures (test cases) and Security Assessment Reports.
In addition to my work as a FedRAMP Delivery Manager, I am actively involved in several Toastmaster clubs. I currently serve as the Area Director for Area 64 in District 29. As the Area Director, I mentor and advise four (4) clubs. I have coordinated and hosted 2 Toastmasters Area Contests for Area 64. I am striving to be a better public speaker and to obtain my Advanced Leadership and Advanced Communication education awards.
My goal …. to give a TED talk. About what? I have not yet decided :-)
Profile Photo
