Michael Welch Email & Phone Number

Chicago, IL, US

Chicago, IL, US

Mclean, VA, US

Kansas City, MO, US

Working as a center of excellence for internal & external clients to build trust as well as partnering to navigate complex business challenges related to regulatory compliance requirements, cybersecurity requirements and the develop risk management solutions together.

Mclean, VA, US

Managing Director of GRC and Strategy working with clients and partners globally. We are management and technology consulting firm that works with leading businesses and government to address critical cyber security, finance, technology, and business objectives. Organizations of all sizes turn to Morgan Franklin because we bring experienced, engaged.

New Orleans, LA, US

CyberSecurity Instructor at Loyola University New Orleans HackerU Program

Brentwood, Tennessee, US

CISO, Information Security Officer, Strategy, Planning, Cyber Security, Security Operations, Managed Services, GRC, Risk, Governance, Compliance, IAM.Vaco is a private-equity backed solutions company that provides consulting, managed services, staffing, and placement services globally. Established in 2002 by “Big 4” consulting veterans, Vaco now has over.

Kansas City, MO, US

Kansas City, MO, US

• Factory/Site Acceptance Testing
• Team lead for client engagements that involved Factory Acceptance Testing
• Team lead for client engagements that involved Site Acceptance Testingv3 Control Upgrades and v5 Transition Project Management
• Coordinate resources, plans, schedules, activities and budgets across DCS Controls (Emerson & GE) upgrades including the OEM Security Center for existing NERC CIP projects, this included acting as the compliance and.
• Coordinate resources, plans, schedules and activities across the generation fleet in preparation with the transition to v5/v6.
• Development of a top-down, bottom up methodology to identify BES Cyber Systems across client’s fleet. Based on the outcome of the methodology, development of a road-map to meet compliance with the April 2016 compliance.

Charlotte, North Carolina, US

• Hired as a contractor to provide Program Management as the company is shifting the NERC CIP Requirements into Control Groups to better sustain compliance supporting multiple functions in RFC, SERC, TRE and WECC.
• Develop and track mitigation plans for Possible Violations identified during audits or Self Reports
• Develop and/or consolidate process and procedures in order to sustain compliance.
• Provide comments, guidance and interpretations of new standards, Request for Interpretations (RFI) and Compliance Application Notices (CAN)
• Participate on the SDT Plus List
• Prepare Subject Matter Experts for Audit Preparation

• Working as an independent contractor in support of NERC CIP Compliance and Sustainability:
• Conducted 2-Day Training Course on Auditing NERC CIP Standards for professional services firms
• Providing insight to clients on the direction of the NERC CIP Standards
• Conducted Cyber Vulnerability Assessment per CIP005 R4 and CIP007 R8
• Provide guidance on Part A and Part B Technical Feasibility Exceptions
• Development of an eLearning NERC CIP Awareness Course

Senior NERC CIP Security and Compliance Analyst

Evaluation of NERC CIP002-009 standards and assist client to meet compliance; focus of assignment was the development of Methodologies, Policies and Procedures

CISSP, CISM, CISA, IAN, CHS-III

Chief Information Security Officer (Ciso) Certificate Program

Master Of Business Administration (Mba)

Bachelor'S Degree, Criminology

Ba, Criminal Justice