Brian is an independent consultant focused on Information Security Governance, Risk and Compliance. With a strong technical background in systems administration, enterprise architecture and IT operations, Brian transitioned into Information Security architecture, audit and security management. Brian is a SANS Certified Instructor.
Brian has experience with Fortune 100 companies, SMB and government which helps right-size solutions and focus for each customer and project.
Brian has experience with Fortune 100 companies, SMB and government which helps right-size solutions and focus for each customer and project.
Expertise
- Governance, Risk, and Compliance
- OS security (Active Directory, Unix/Linux, Windows, benchmarks)
- Building security programs (ex: vuln program, risk program)
- Risk management
- Vulnerability Management
Achievements & Contributions
- Speaker at information security conferences
- Board member for the Portland ISSA Chapter
- CIS advisory board member for Portland Community College
- Contributor to the CIS Controls (formerly Critical Security Controls)
- Former board member for the Portland OWASP Chapter
- Former Oregon CyberSecurity Advisory Board, advising the state on both internal and externally facing security programs for Oregon residents and local businesses.
Certifications & Credentials
- BS Information Technology and Security, WGU
- CISSP, GSEC, GCCC, GSLC, GCIH, GCIA, GCFA
Hobbies & Fun Facts
In his free time, Brian likes to build bicycles, bike around town – including daily commuting, and downhill skiing.