Erik Graham
AeroLeads people directory · profile

Erik Graham Email & Phone Number

Security Incident & Investigations Manager at Marsh & McLennan Companies, Inc. at Marsh & McLennan Companies, Inc.
Location: Mesa, Arizona, United States 9 work roles 2 schools
2 work emails found @mmc.com 4 phones found area 602, 480, and 212 LinkedIn matched
✓ Verified Jul 2026 4 data sources Profile completeness 100%

Contact Signals · 2 work emails · 4 phones

Work email e****@mmc.com
Direct phone (602) ***-****
LinkedIn Profile matched
3 free lookups remaining · No credit card
Role
Security Incident & Investigations Manager at Marsh & McLennan Companies, Inc.
Location
Mesa, Arizona, United States

Who is Erik Graham? Overview

A concise factual answer block for searchers comparing this professional profile.

Quick answer

Erik Graham is listed as Security Incident & Investigations Manager at Marsh & McLennan Companies, Inc. at Marsh & McLennan Companies, Inc., based in Mesa, Arizona, United States. AeroLeads shows a work email signal at mmc.com, phone signal with area code 602, 480, 212, and a matched LinkedIn profile for Erik Graham.

Erik Graham previously worked as Security Incident & Investigations Manager at Marsh & Mclennan Companies, Inc. and Enterprise Security Architect / Senior Threat Intelligence Analyst at General Dynamics C4 Systems. Erik Graham holds Masters Of Science (Ms), Information Assurance (Ia) from Norwich University.

Company email context

Email format at Marsh & McLennan Companies, Inc.

This section adds company-level context without repeating Erik Graham's masked contact details.

egraham@mmc.com
79% confidence

AeroLeads found 2 current-domain work email signals for Erik Graham. Compare company email patterns before reaching out.

Profile bio

About Erik Graham

Information security expert/subject matter expert whose qualifications include a Master’s Degree in Information Assurance; CISSP, CISSP-ISSAP, CISM, CRISC and other industry certifications; detailed knowledge of multiple security architecture frameworks, technologies and regulatory compliance standards. Sixteen years of experience in the creation and deployment of solutions protecting networks, systems and information assets.Key Skills:Security Architecture Frameworks, Regulatory Compliance, Risk Assessment/Management, Threat Intelligence, Cloud Computing, Network & System Security, Vulnerability Assessments, Multitier Network Architectures, Malware Analysis and Identification, Mobile Device ManagementCertifications: CISSP, CISSP-ISSAP, CISM, CRISC, CWNA, MCNE, CNE, VCA, VCE, A+, Network+, Security+, 3Wizard, Certified locksmith … Special areas of interest / research include computer network attack (CNA) and threat intelligence.

Listed skills include Cissp, Information Security, Computer Security, Security, and 46 others.

Current workplace

Erik Graham's current company

Company context helps verify the profile and gives searchers a useful next step.

Marsh & McLennan Companies, Inc.
Marsh & Mclennan Companies, Inc.
Security Incident & Investigations Manager at Marsh & McLennan Companies, Inc.
AeroLeads page
9 roles · 38 years

Erik Graham work experience

A career timeline built from the work history available for this profile.

Security Incident & Investigations Manager

Current

New York, Ny, Us

Member of the Global Information Security Assessment and Incident Response team, responsible for ensuring the organization consistently adheres to its technology security policies and best practices through the implementation and use of various technical security risk assessment tools and methods.• Identify, Document, and communicate technical Information Security Risks in the organization’s data, networks, systems, and applications using standard company toolsets and assessment processes. Assist the development and refinement of global processes as required to ensure continued effectiveness;• Conduct Technical Risk and Change Reviews, enforcing Security Policies and ‘Smart’ best practices as required, ensuring information is appropriately secured. Engage business and project teams to clearly explain policies, decisions, and appropriate next steps to maximize efficiency and productivity of the Security Assessment process;• Review, contain and resolve information security incidents and conduct forensic investigations. Lead incident response calls and meetings with IT, legal/hr/compliance and other business staff in support of investigative activities;• Monitor and research information sources for 0-day and emerging Information Security threats and vulnerabilities impacting the organization and recommend, direct, and/or implement appropriate solutions to mitigate;• Influence technical and strategic direction of the Information Security function as it relates to keeping information secure and available for all MMC clients and staff.

Sep 2014 - Present

Enterprise Security Architect / Senior Threat Intelligence Analyst

Reston, Virginia, Us

• Member of the Enterprise Architecture Council responsible to define Principles, Target Architectures, Policies, Standards and Frameworks;• Determine security requirements by evaluating business strategies and requirements and comparing them to existing security standards;• Conduct system security and vulnerability analyses and risk assessments; • Study both deployed and proposed architecture and platforms; identify integration issues and prepare cost estimates;• Develop and maintain roadmaps for various security products and technologies;• Plan security systems by evaluating network and security technologies; • Develop requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices; • Promote the concepts of information life cycle management including proper information management techniques, minimizing redundancy, improving data and information quality, and fostering data and information stewardship;• Maintain a threat intelligence process to assess threats to the business so limited security resources can be focused on immediate threats to the business in a cost effective manner;• Have spoken numerous times at both local and national conferences on a variety of information security topics including classified and unclassified audiences;• Cleared for for Top Secret (TS) w/polygraph.

Jun 2011 - Aug 2014

Principle Information Security Engineer / Threat Intelligence Analyst

Fairfax, Va, Us

• Planned security systems by evaluating network and security technologies; developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices; designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; adhering to industry standards;• Designed and evaluated the security elements of a large private cloud environment;• Maintained a threat intelligence process to assess threats to the business so limited security resources can be focused on immediate threats to the business in a cost effective manner;• Developed and maintained roadmaps for various security products and technologies (HIPS, NIPS, encryption, anti-malware);• Converted legacy security policy and standards to meet NIST 800-53 Rev 3 (FISMA) moderate controls;• Certified and accredited several projects / applications with federal customer;• Spoke at both local and national conferences on a variety of information security topics;• Enhanced security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members;• Updated job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations;• Cleared for Top Secret (TS) w/polygraph.

Jul 2009 - Jun 2011

Information Security Manager

Fairfax, Va, Us

• Responsible for all aspects of information security within the General Dynamics business unit, C4 Systems; • Led a 6 person team whose responsibility was to protect the confidentiality, integrity and availability of C4 Systems informational assets of over 13,000 devices used by approximately 8,000 individuals; • Developed, documented and deployed a NIST based information risk assessment methodology; • Extended the risk assessment methodology to cover the evaluation and assessment of network protocols to determine the security risks posed by the protocol and methods to mitigate those risks where possible; • Extended the risk assessment methodology to cover the evaluation and assessment of both commercial as well as open source software packages to determine the security risks posed by the software and methods to mitigate those risks where possible;• Developed a threat intelligence process to assess threats to the business so limited security resources can be focused on immediate threats to the business in a cost effective manner;• Analyzed and evaluated the security of the enterprise Voice Over IP (VOIP) deployment to identify the risks posed by the design/deployment and recommended appropriate changes to ensure the security policy and standards of C4 Systems were met; • Analyzed and evaluated the security of VLANs, 802.11 and other technologies and protocols to identify the risks posed by the technology/protocol and provide guidance as to how to secure the technology/protocol;• Analyzed the business requirements for both email and file/folder encryption and then developed and deployed a standard file, folder encryption tool across the business unit; • Ensured informational assets met FISMA, SOX, HIPAA, California SB 1386, and other state, federal and international laws and regulations as required;• Spoke at both local and national conferences on a variety of information security topics;• Cleared for Top Secret (TS) w/polygraph.

Aug 2001 - Jul 2009

It Security Engineer

Chicago, Illinois, Us

• Responsible for all aspects of workstation (Win 9x, WinNT, Win2000, Unix) and server (WinNT, Win2000, Unix) security to include vulnerability testing, and designing/implementing security policies and procedures; • Led the project to design, develop and deploy an enterprise wide public key infrastructure project (PKI). Responsibilities on the PKI project included analyzing business needs, analyzing possible solutions and designing, testing and deploying the final solution; • Led the team responsible to develop and document the security standards for Windows 2000 Active Directory, Server and Workstation; • Led the penetration testing team responsible for performing both internal and external penetration test across the enterprise; • Worked as part of a team to design and implement a network and host based intrusion detection system; • Developed and implemented an incident response policy for computer security incidents; • Worked as an investigator, providing computer forensics for security incidents; • Provided support to HR, Legal and physical security on computer related incidents; • Tested and deployed encryption packages for use on multiple email and file systems; • Provided support for anti-virus applications across multiple platforms; • Responsible for vulnerability testing on Novell NetWare servers, Microsoft Windows NT workstations/servers, Windows 2000 workstations/servers and provided additional consultation to resolve those issues discovered;• Cleared for secret (S).

2000 - 2001 ~1 yr

Senior Systems Engineer, Enterprise

Us

1994 - 1997 ~3 yrs

Infantry

Arlington, Virginia, Us

1989 - 1997 ~8 yrs
2 education records

Erik Graham education

Masters Of Science (Ms), Information Assurance (Ia)

Norwich University

Bachelor Of Science (Bs), Information Technology (It)

University Of Phoenix
FAQ

Frequently asked questions about Erik Graham

Quick answers generated from the profile data available on this page.

What company does Erik Graham work for?

Erik Graham works for Marsh & McLennan Companies, Inc..

What is Erik Graham's role at Marsh & McLennan Companies, Inc.?

Erik Graham is listed as Security Incident & Investigations Manager at Marsh & McLennan Companies, Inc. at Marsh & McLennan Companies, Inc..

What is Erik Graham's email address?

AeroLeads has found 2 work email signals at @mmc.com for Erik Graham at Marsh & McLennan Companies, Inc..

What is Erik Graham's phone number?

AeroLeads has found 4 phone signal(s) with area code 602, 480, 212 for Erik Graham at Marsh & McLennan Companies, Inc..

Where is Erik Graham based?

Erik Graham is based in Mesa, Arizona, United States while working with Marsh & McLennan Companies, Inc..

What companies has Erik Graham worked for?

Erik Graham has worked for Marsh & Mclennan Companies, Inc., General Dynamics C4 Systems, Motorola - Corporate, Vanstar, and Us Army.

How can I contact Erik Graham?

You can use AeroLeads to view verified contact signals for Erik Graham at Marsh & McLennan Companies, Inc., including work email, phone, and LinkedIn data when available.

What schools did Erik Graham attend?

Erik Graham holds Masters Of Science (Ms), Information Assurance (Ia) from Norwich University.

What skills is Erik Graham known for?

Erik Graham is listed with skills including Cissp, Information Security, Computer Security, Security, Network Security, Vulnerability Assessment, Computer Forensics, and Information Assurance.

Find 750M verified contacts

Search by job title, company, industry, location, and seniority. Export verified B2B contact data when you need it.