General IT and IT security projects. - Developing FedRAMP certification documents and advising on FedRAMP preparations for a mid-sized IT services company. - Developed technical sections for a government certification package based upon NIST series publications.- Performed testing and drafted reports for: . -- A FISMA assessment of a regional hospital association. . -- FISMA and HIPAA assessments for consulting firm in the government space. . -- PCI, SSAE-16, and SOC 2 readiness assessments. - Developed plan for and implemented most computer and network components for a new small business.

Information security consulting- Audit support- Advisory engagements- Direct projectsWorked with clients to support their security and compliance activities. Scope included SOC 1 and SOC 2, assessments, FedRAMP advisory projects, risk assessments, and security questionnaires.

Manager and then director of a wide variety of IT areas: data center operations, IT operations, IT services, corporate system support, IT security and IT audit.- Led establishment of first true data center (facility and organization). - Primary IT contact for the first several SAS 70s--from growing pains to business-as-usual. - Oversaw a variety of system and organizational implementations. - Head of IT security for much of my tenure.

Military career - IT positions beginning as a lead programmer and progressing to a CIO-equivalent executive position. - Coordinated move to government network (and did much of the work), saving over $600K in the first year. - Technical evaluator for selection of major computer system used throughout the USAF for over ten years.