Michael Mclaurin, J.D. Email and Phone Number

Responsible for all aspects of the global Cybersecurity program at CoStar Group. * Vulnerability management* Incident identification and response* Application protection* Data protection* Compliance* Security training and information* Offensive security application and infrastructure testing* Cloud securityCoStar Group, Inc., Washington, DC Oct 2010 - presentHead of CybersecurityGlobal Real Estate Information Company (Apartments.com, LoopNet.com, CoStar.com $35 Billion Market Capitalization) ● Built Cybersecurity program from the ground up● Built IT Risk Management from the ground up● Hired, retained, and educated highly skilled cyber work force (college grads to senior level)● Achieved annual compliance (SOX, PCI DSS, GDPR, SOC2 types I & II)● Created the Incident Response Plan and Program● Hired incident response team, conducted training, ensured team spirit, and a culture of continuous improvement ● Integrated security into operations, changing the culture of the “Wild West” into one of security oversight while maintaining speed and agility consistent with the AGILE mentality● Developed world class training program for security, privacy, and phishing ● Created an Offensive Security program to proactively test our fleet of web applications for security gaps on a regular tempo with regular automated scans as well as threat modeling and deep application testing● Created world class security analytics program around our SIEM implementation. Several times competitors were caught attempting to steal intellectual property leading to suits amounting to > $500 M. in judgements supported in large part by security information● A trusted advisor to the C-Suite and General Counsel. Worked closely with all parts of the business ensuring a strong security message and “assistance getting there” to all business units

* Lead the security team at CoStar* Coordinate with other teams to implement and maintain cyber security initiatives* Ensure that cyber security processes are consistent, improved, repeatable and documented both inside the Cyber team and in other teams* With the Systems and Network team, define the Network Security Architecture as it matures * Ensure a consistent and improving Cyber Security Awareness program that engages the employees and focuses on where the real risks to the company are presented* Constantly identify new Cyber risks, internal and external, to the enterprise and develop strategies for the company to mitigate these risks* Meet with C-Suite executives concerning current and future cyber security initiatives as well as reviewing previous initiatives * Lead incident response teams and lead after action reviews of incident response in pursuit of constant improvement of the response teams and providing information up to the C-suite to further inform risk based judgments about cyber security improvements.* Mentored junior team members to improve our team and fostered new potential team members on other teams* Managed vendor relationships, partnerships and purchasing for the team* Managed, Sarbanes-Oxley, PCI DSS and other compliance initiatives for the company* Conducted audits of sensitive data in new acquisitions and worked with other teams to mitigate detected issues

* Head of the Information Security Team. * Responsible for the CoStar Group Information Security Program.* Conduct risk assessments and provide information and recommendation vis-à-vis risk to the management team.* Institute and manage the comprehensive vulnerability management program across the CoStar enterprise handling the vulnerability lifecycle including identification, coordination with other teams to remediate, monitoring the vulnerability until remediation or acceptance by management.* Identify and implement security awareness training for the entire CoStar enterprise. Coordinate with the Training Department to implement on the corporate LMS.* Identify products and complete competitive acquisition process for baseline security tools -- SIEM and Vulnerability/Penetration testing platforms. * Coordinate compliance efforts for CoStar - SOX and PCI DSS

Radiant Technology Consulting, Inc currently specializes in developing robust Web solutions for business. Cost effective and flexible solutions are developed based on Open Source platforms such as Joomla! for CMS solutions and ZenCart for eCommerce solutions.Radiant has expanded its capabilities and now includes IT Management, budgeting, Project Management, Networking, IT Assessments, Security Assessments and Engineering.

(Consultant for Court Appointed Administrator of the District of Columbia Public Schools Division of Transportation)* Performed assessment of the IT program of DCPS DOT and proposal to the administrator* Managed day to day IT operations and break fix at HQ and 4 bus lots* Managed vendor relationships for DCPS DOT (AVL, ADP etc.)* Coordinated the DCSP DOT migration to PeopleSoft in conjunction with the DC OCTO team* Managed the acceptance program for Automatic Vehicle Location technology and software

* Network and Systems Engineer* Lead security initiative from implementing firewalls and designing security solution for high-level government officials to implementing antivirus solutions* Respond to security incidents and lead efforts to clean up spyware and virus outbreaks at various assigned clients* As Managing Consultant led a team of consultants * Managed the day to day schedule of the team* Tasked with interviewing, hiring, firing, improving consulting staff* Acted as escalation point for my consultants * Negotiated new contracts with clients* Identified and suggested new projects to clients to improve their technology platforms and improve productivity and stability in their environments* Building networks with Novell and Microsoft technologies* Active directory and eDirectory* Implement and operate firewall systems (BorderManager, Sonicwall, NetScreen, PIX, ASA)* Implement and operate content filtering technologies (Websense and Sonicwall)* Implement and operate Internet messaging systems (GroupWise and Exchange)* Implement and operate file and printing systems based on Novell and Microsoft* Implement and operate DNS, DHCP and Radius servers* Implement and operate Cisco routers and switches * Architect network, system and directory designs to provide solutions for new and upgraded networks leveraging new technologies to improve employee productivity * Assist clients with IT budgeting to provide them with level IT expenditures that did not break the bank, but produced stably performing networks and systems without the "boom/bust" cycle of expenditures* Produced multi-year IT Strategies for larger clients to help them advance their technology and provide a framework for budgets and expenditures years into the future* Assisted clients with IT Director selection process

Managing the IT Program for NCCBudgeting for IT procurement, hands on systems engineering with Microsoft server, Citrix, WYSE terminals, networking with Cisco routers, switches and ASA firewall. IT project management managing server migrations and upgrades.Drafting new 3 year strategic technology plan for NCC.Identification and interviewing of permanent IT Director.

Associate Attorney practicing criminal defense, family law and collections in Northern Virginia

Performed all positions in an Infantry squad (Machine gunner, grenadier, Fire Team Leader, Radio-telephone operator).Bradley Fighting Vehicle driver and gunner. Clearance: Personnel Reliability Program for Nuclear and Chemical Surety; SECRET - Inactive