Profiles search

Thomas W.

Cybersecurity Professional & Subject Matter Practitioner | Servant Leader | PMP | CISSP
Cedar City, UT, United States

Details

Education: Master of Science (M.S.)

Cybersecurity Policy

University of Maryland University College

2016 : 2018

Certified Information Systems Security Professional

Computer and Information Systems Security/Information Assurance

Self-educated

2022 : 2022

Project Management Professional

Project Management

Certification Academy

2022 : 2022

Bachelor of Science - BS

Cybersecurity

University of Maryland University College

2014 : 2016

Associate of Applied Science (AAS)

Cybersecurity

Hagerstown Community College

2012 : 2014
Experience: • Provided clientele with tailored organizational cybersecurity best practice guidance in accordance with applicable frameworks (NIST, CMMC).

• Provided risk management guidance and leadership to clientele through composition and testing of business continuity plans.

• Engaged clientele leadership to collaborate on risk assessment and risk management activities to more clearly identify the overall risk landscape.

2019 : Present

Morris Technology Partners

Chief Information Security Officer

• Led high-performing cybersecurity team responsible for a broad range of cybersecurity disciplines that included site assessments, vulnerability management, endpoint security, and incident response.

• Trained other team leaders on the use of tools and techniques to become more effective leaders.

• Led the administration of the Department of Homeland Security (DHS) Continuous Diagnostics and Mitigation (CDM) initiative which included the management and administration of Forescout, Splunk, and BigFix.

• Conducted vulnerability assessments and proactively led the vulnerability management efforts for high-profile federal clientele.

• Developed risk tracking processes to proactively identify and mitigate network environment exposures, enhancing endpoint detection & response.

• Conducted threat analysis of ongoing physical and logical threats to the customers’ network environment.

2020 :

ASM Research

Operations Security Manager

• Provided part-time cybersecurity consulting to GuardSight, an incident response/threat detection and threat intelligence company.

• Led vulnerability and patch management programs for high-profile clientele utilizing Nexpose, Secureworks, SentinelOne, WhiteHat Sentinel, Jira, ServiceNow, Tenable.IO, SumoLogic, InsightVM, BeyondTrust, Cylance/BlackBerry Protect & Optics, and QuickBase.

• Provided leadership to cybersecurity analysts; assisted with organizational guidance and direction.

• Assisted analysts with communication and collaboration training.

• Quadrupled the social media presence of the company in under 2 years.

• Composed the Business Continuity Plan for the organization.

• Assisted the organization in obtaining SOC2 Type 1 compliance.

2019 :

GuardSight, Inc.

Sr. Principal Cybersecurity Consultant

• Led the contract cybersecurity team in support of federal clientele which comprised three main sites and several remote site offices across the United States.

• Led the administration of the Department of Homeland Security (DHS) Continuous Diagnostics and Mitigation (CDM) through management of tools to include Forescout, Splunk, and BigFix.

• Led vulnerability assessment and management efforts to provide a more accurate portrayal of the threat and risk landscape.

• Enhanced and maintained communications with the federal executive leadership on current cybersecurity posture.

• Developed vulnerability tracking processes to proactively protect the network environment from exposures, enhancing endpoint detection and response.

• Conducted threat analysis of ongoing network physical and logical threats to the federal network environment.

• Updated and maintained the risk management framework for the Office of Science to correctly categorize and address risk within the environment.

• Served as deputy Program Manager with responsibility for the support contract for federal clients in the absence of the Program Manager.

2017 : 2020

22nd Century Technologies Inc.

Cybersecurity Lead/Manager

• Increased the levels of communication and collaboration through use of the tools available within the environment (Skype for Business 2015, Exchange, and ZOOM).

• Led the stabilization of the Exchange 2010 environment for federal customers.

• Led the migration efforts of the federal customers to Office 365 utilizing Exchange Online with minimal interruptions or issues.

• Led security investigations through the email environment upon request.

• Designed the architecture for the new Mobile Device Management/Enterprise Mobility Management (MDM/EMM) solution for federal customers aligning with NIST 800-53 Rev 4 guidelines.

• Created detailed project plans, environment diagrams, and design plans; briefed executive management and federal leadership on design details through in-person meetings and video teleconference sessions.

2015 : 2017

22nd Century Technologies Inc.

Exchange Engineer/Project Manager
Company: Morris Technology Partners
Years of Experience: 23

Skills

Access, Active Directory, Antivirus, Blackberry, Cisco Technologies, Computer Hardware, Computer Security, Customer Engagement, Customer Service, Cybersecurity, Data Center, Disaster Recovery, DNS, Firewalls, HP, Incident Management, Information Technology, Infrastructure, IT Management, IT Operations, IT Service Management, Long-term Customer Relationships, Lotus Notes, Management, Microsoft Certified Professional, Microsoft Exchange, Microsoft Technologies, Network Administration, Networking, Network Security, Operating Systems, Outsourcing, Risk Management, Security, Servers, SharePoint, Software Installation, System Administration, System Deployment, Technical Support, Troubleshooting, Virtualization, VMware, VPN, WAN, Windows, Windows 7, Windows Server, Wireless, XP

About

Human skill teacher, experienced servant leader, focused on the people first to ensure that the teams are inspired to accomplish the mission. I have years of experience managing teams within information technology and cybersecurity and, no matter the task or mission, the people involved are the key to success. My learned skills include enterprise risk management, cybersecurity policy, compliance, as well as other facets of cybersecurity including vulnerability management and incident response.



I am an experienced public speaker; whether it is guest-lecturing, being a panelist, or simply presenting to various cybersecurity or human-skill topics, I am grateful for each opportunity to share knowledge with others. Reach out if I can be of assistance, I would love to connect with you!



My why - To be a resource for others so that they may overcome challenges and thrive.