Mr. Devlin is the Managing Partner of international Cyber Security Programs. In his position as Managing Partner he serves as the company’s thought and process leader when it comes to identifying, evaluating, protecting against and reporting on information security risks in a manner that meets compliance and regulatory requirements and aligns with and supports the risk posture of the current client base. He is responsible for the development of the visionary technology architectures that enable information security technologies, practices, and policies and their application in the real world. He oversees security audits for the Federal Cloud Infrastructure as a Service (IaaS), and conducts audits in accordance to OMB A-130, FISMA and the OIG to ensure IaaS security compliance as required in VA6500 regulations.He has architected and engineered cyber security activity for the DHS, TSA, CBP, CIS, ICE HQ, NPPD, inclusive of understanding and communicating the current state of enterprise security across all technologies and environments globally (e.g. network, endpoint, cloud, etc); conducting market research to evaluate enterprise security posture and control effectiveness beyond compliance and standards requirements for NexGen security technology. He has managed the Library of Congress (LOC) Information Technology Group multiple task orders in support of security advisement in the completion of assessment and authorization (A&A) for all systems to achieve an authority to operate (ATO). He is responsible for the overall management of the specific task orders and ensuring that the technical and schedules are developed and delivered in accordance to LOC applicable compliance directives, laws, and policies. Reports directly to the LOC Chief Information Security Officer (CISO) and provides performance briefs on A&A activity.

Mr. Devlin is the Deputy Director for Cyber Security Programs and oversees the Commercial, Federal and International IT security programs development. His primary objectives is establish and implement new technologies and practices to achieve collaborative success in Cyber Security programs, which include; Establishing flexible, risk-based cybersecurity standards of practice (such as a Cybersecurity Framework) that provides a foundation for measuring the growing maturity of an organization’s security program; Accelerating the adoption of continuous monitoring and data analytics; Creating an information sharing broker (or brokers) to help government and industry share threat information efficiently and effectively; Revitalize the public-private partnership based on shared interests; and Explore and develop norms guiding the use of “active cyber defense.”

Mr. Devlin was responsible for developing a security practice focused on the Federal and Commercial client Information Assurance (IA) for implementing IT security integration and COBIT governance and ITIL modeling to achieve cyber security compliance reporting. He is currently responsible for managing corporate partner relations in support of physical and logical security consulting and is providing subject matter expertise (SME) for our commercial clients in developing information security (INFOSEC) strategy to comply with Sarbanes Oxley (SOX), NIST and ISO security requirements. Clients included National Institute of Health, Comcast, Time Warner, and multiple formal medical centers (i.e. Yale, John Hopkins, Baylor, Brown, Univ. of Florida, Univ. of Miami, Univ. of Mississippi, and many more).

Mr. Devlin was the Mach 1 Development (M1D) Partner and Program Executive (PE) for all IT security integration and governance modeling. Responsible for managing corporate partner relations in support of security consulting in the Middle East and the Casino Gaming Industry. Mr. Devlin’s was the Program Manager for 17 Information Security (INFOSEC) staff for the Mohegan Sun Resorts and is providing Executive Management advisory in developing strategy to comply with Sarbanes Oxley (SOX), NIST, PCI DSS, ITIL, ISO security requirements. Mr. Devlin was responsible for the administration of auditing of the National Indian Gaming Commission Minimum Internal Control Standards, Sarbanes-Oxley, and Title 31 compliance programs. Managed the BigFix project in implementing the patch management for all distributed software and endpoint agents within the Mohegan enterprise.

Mr. Devlin was the IBM Partner and Program Executive (PE) for 4 key business areas within the GBS/AIS/Public Sector/ Security, Privacy, Wireless and IT Governance practice. Mr. Devlin’s was the 2nd line manager for a staff of 251 Senior Managing Security Consultants with overall total contract value for all projects approximately at $530M for FY07. Mr. Devlin is responsible for the Delivery Excellence and Project Delivery liaison role supporting IBM discipline processes to satisfy client requirements with high quality work products within cost and schedule constraints. In addition, he developed the IBM physical security management platform for integrating systems for enhancing the airport passenger experience, maintaining security, while improving business and operational processes and squeezing greater returns from capital assets in use of central control management built from service oriented architecture.

Mr. Devlin was responsible for operational management for IBM, Veridian, DynCorp, and SAIC Managed Services for approximately 400+ locations, inclusive of a SOC, NOC, SPOC, Hosting Center, and Headquarters. In the delivery of security compliance he managed forty-one IA security professionals. He worked on a security practice development team for concept strategy plans to ensure OMB-300, A-130, business processes, and certification and accreditation processes were met in accordance FISCAM NIST 800-26 audit requirements. Mr. Devlin also, developed compliance base-line standard measurements for EA architecture requirements and current policy procedure mandates issued by Department of Homeland Security (DHS); and presented security findings on a weekly basis to the Under Secretary of TSA in a PM status meeting. Also, he managed and established security level service agreements to meet security requirements for the TSA ITMS contract through implementation of ITIL requirements.

Mr. Devlin provided specialized program management skills and expertise in a variety of disciplines critical for the Director of Operations operational mission and managed OCONUS staff security professionals. Mr. Devlin’s primary duty was to orchestrate and implement a broad range of mission critical support, including planning and implementing special operational programs regional terrorism activity, manage counter proliferation programs, and develop liaison agreements with host government intelligence services.