AeroLeads people directory · profile

Timothy Medlock, Cissp Email & Phone Number

Cybersecurity Manager (Compliance & Governance) at BAE Systems, Inc.
Location: Escondido, California, United States 15 work roles 2 schools
1 work email found @att.net 17 phones found area 760, 619, 209, 442, and 714 LinkedIn matched
✓ Verified July 2026 4 data sources Profile completeness 86%

Contact Signals · 1 work email · 17 phones

Work email t****@att.net
Direct phone (760) ***-****
LinkedIn Profile matched
3 free lookups remaining · No credit card
Current company
Role
Cybersecurity Manager (Compliance & Governance)
Location
Escondido, California, United States

Who is Timothy Medlock, Cissp? Overview

A concise factual answer block for searchers comparing this professional profile.

Quick answer

Timothy Medlock, Cissp is listed as Cybersecurity Manager (Compliance & Governance) at BAE Systems, Inc., based in Escondido, California, United States. AeroLeads shows a work email signal at att.net, phone signal with area code 760, 619, 209, 442, 714, and a matched LinkedIn profile for Timothy Medlock, Cissp.

Timothy Medlock, Cissp previously worked as Cybersecurity Manager at Bae Systems, Inc. and Cybersecurity Manager at Computer Technologies Consultants, Inc. (Ctc, Inc.) (At Bae Systems, Inc. - San Diego, Ca). Timothy Medlock, Cissp holds Master Of Science - Ms, Cybersecurity & Information Assurance from National University.

Company email context

Email format at BAE Systems, Inc.

This section adds company-level context without repeating Timothy Medlock, Cissp's masked contact details.

*@att.net
68% confidence

AeroLeads found 1 current-domain work email signal for Timothy Medlock, Cissp. Compare company email patterns before reaching out.

Profile bio

About Timothy Medlock, Cissp

Savvy cybersecurity leader with nearly 30 years of expertise in securing systems throughout entire lifecycle, identifying security needs, developing computer security architecture, implementing security procedures, tracking incidents, and testing security solutions. Proven success in leading high-performing teams and overhauling cybersecurity programs to meet evolving security demands, ensuring compliance with NIST and RMF frameworks. Expertise in cloud security, Zero-Trust architecture, and endpoint protection across multi-level security environments. Strong ability to bridge technical and business functions, deliver strategic solutions, maintain governance, and foster cross-functional collaboration. Known for driving successful cybersecurity integrations in cloud environments, risk assessments, and third-party audits, ensuring continuous improvement in security posture. Seeking to leverage extensive cybersecurity knowledge and leadership skills in a dynamic commercial sector role.

Current workplace

Timothy Medlock, Cissp's current company

Company context helps verify the profile and gives searchers a useful next step.

BAE Systems, Inc.
Bae Systems, Inc.
Cybersecurity Manager (Compliance & Governance)
AeroLeads page
15 roles

Timothy Medlock, Cissp work experience

A career timeline built from the work history available for this profile.

Cybersecurity Manager

Current

Falls Church, Virginia, Us

• Completely overhauled the cybersecurity program of one of the largest legacy programs in the U.S. Government inventory ► Program was over 20 years old and required a drastic cybersecurity overhaul ► Implemented a holistic, ground-up cybersecurity program that included regular Operating Systems patching, secure configuration implementations, configuration management, updated policy & procedures (to include security-relevant content), and rewrite of many security-related documents, such as Security Control Implementation Plan (SCIP), Security Test Plan (STP), Continuous Monitoring Plan (ConMon), and System Security Plan (SSP) ► Built numerous relationships with internal and external stakeholders and customers, which included buyoff from internal development, engineering, test, and operations team leads, to develop a comprehensive integrated cybersecurity program • Identify cyber security issues within the software engineering process and provide solutions to applicable leadership. This includes interacting with internal and external subcontractor technical staff and external representatives concerning risk and impact to cost, performance, and schedule• Responsible for maintaining Risk Management Framework (RMF) compliance which includes ensuring applicable documentation such as the System Security Plan (SSP), Continuous Monitoring (ConMon) Plan, and applicable policies and procedures are updated• Currently leading a cybersecurity effort to employ Zero-Trust Architecture within the cloud environment, which includes both securing and accrediting the system.

Dec 2020 - Present

Cybersecurity Manager

Computer Technologies Consultants, Inc. (Ctc, Inc.) (At Bae Systems, Inc. - San Diego, Ca)

• Identify, quantify, and mitigate risks with networks and servers utilizing the NIST Risk Management Framework (RMF)• Routinely, conduct and respond to regulatory audits such as Federal Information Security Modernization Act (FISMA) and Command Cyber Operational Readiness Inspections (CCORI)• Routinely, conduct vulnerability scanning and analyze associated reports, then respond accordingly with the development or maintenance of Plan of Action and Milestones (PoA&M) which includes a mitigation strategy• Security Lead and representative for the organization Configuration Control Board (CCB)• Act as the primary contact between the Systems Engineering, Software Development, and Cyber Security Teams within an agile software development life-cycle

Feb 2020 - Dec 2020

Cybersecurity Manager

La Jolla Logic (At Bae Systems, Inc. - San Diego, Ca)

• Act as the primary contact between the Systems Engineering, Software Development, and Cyber Security Teams within an agile software development life-cycle• Lead and participate in progress review meetings to discuss cost, schedule, and technical performance with respect to implementing cyber security controls, policy/procedure adjustments, patching cycles, and configuration changes. Risk and impact are key considerations during this process.• Identify cyber security risk within the software engineering process and provide solutions to applicable leadership. This includes interacting with internal and external subcontractor technical staff and external representatives concerning risk and impact to cost, performance, and schedule.• Responsible for maintaining Intelligence Community Directive (ICD) 503/Risk Management Framework (RMF) compliance which includes ensuring applicable documentation such as the System Security Plan (SSP), Continuous Monitoring (ConMon) Plan, and applicable policies and procedures are updated at least annually.• Ensure that external representatives are supplied with applicable information to make executive-level decisions for granting approval to operate within a given environment.► Develop and disseminate Bodies of Evidence (BoE) which include Nessus vulnerability reports, STIG configuration reports, software code Fortify reports, and updated PoA&M► Confirm that the PoA&M is updated at least monthly• Developed and implemented an easily-trackable and maintainable process to track cyber security findings within multiple secure enclaves, with cross-domain solutions (CDS) between each enclave, and totaling approximately 1200 nodes . This process utilizes a database/spreadsheet/report format and significantly cut down the manpower required to maintain a multiple spreadsheet Plan of Action and Milestones (PoA&M).• Identify, quantify, and mitigate risks with networks and servers utilizing the NIST Risk Management Framework (RMF)

Dec 2017 - Feb 2020

Host-Based Security System (Hbss) Team Lead

San Diego, Ca, Us

• One of two leads that developed and executed the Host-Based Security System (HBSS)/McAfee ePO effort within the U.S. Navy's (PWM-160) CANES program• Provided installation, configuration, and policy development leadership for the ePolicy Orchestrator (ePO) server. This included support for all point products such as McAfee Agent, VirusScan Enterprise (VSE), Policy Auditor (PA), Asset Configuration Compliance Module (ACCM), and Firewall and Intrusion Prevention System (IPS) configuration and policy development for Host Intrusion Prevention System (HIPS)

Jun 2016 - Dec 2017

Executive-Level Tasking

San Diego, Ca, Us

• Participated in the preparation of proposals, and the development of new business► Participated on most levels of the proposal process to include: blue, pink, red, green, and gold teams► Routinely provide support for oral presentations on several of these efforts► Led several Small Business Innovative Research (SBIR) proposals• Provided interview and hiring support for new candidates and employees• Participated with support staff, project and program managers, and executive management to develop and implement current, annual and long-term technical, schedule, quality, and business objectives for the organization

Sep 2014 - Dec 2017

Application Security Integration Engineer

San Diego, Ca, Us

• Provided Assessment & Authorization (A&A) support to legacy DIACAP-accredited systems that connected to an Risk Management Framework (RMF)-accredited, Common Control Provider (CCP)• Developed a methodology and framework to allow legacy DIACAP-accredited systems to inherit controls from an RMF CCP. This included updates to all applicable documentation such as the System Security Plan (SSP) and Continuous Monitoring (ConMon) Plan.► Effort was defined for a specified amount of time and had a hard deadline

Sep 2014 - Jun 2016

Host-Based Security System (Hbss) Implementation Lead

San Diego, Ca, Us

• One of two leads that created and executed the Host-Based Security System (HBSS)/McAfee ePO methodology within the U.S. Navy's (PWM-160) CANES program for all ships receiving HBSS.► Developed and executed initial process for deploying HBSS/McAfee ePO within an afloat environment. This included initial installation and configuration of the ePolicy Orchestrator (ePO) Server and all applicable point products.► Additionally, this effort also included developing the policy tree, initial policies, and applicable documentation such as implementation and user's guide

Feb 2014 - Aug 2014

Assessment & Authorization Auditor

San Diego, Ca, Us

• Provided Assessment and Authorization support to the Navy's PMW-160 Consolidated Afloat Network and Enterprise Services (CANES) program► As a Risk Management Framework (RMF) pilot program, CANES was required to be accredited utilizing both DoD Information Assurance Certification and Accreditation Process (DIACAP) and RMF. Expertise in both paradigms was required.► Developed initial Security Control Traceability Matrix, Security Control Implementation Guide, and several drafts of the System Security Plan (SSP)► Developed and presented program briefs, security documentation, white papers, and Information Assurance briefs

Aug 2012 - Feb 2014

Cybersecurity Manager

San Diego, Ca, Us

• Developed a business plan and model which allowed the organization to organically grow a commercial cyber security service to world-wide customers utilizing a "Managed Service" model► Included developing business relationships with cyber security software vendors such as eEye, Core Security, and McAfee.► Managed service model included: vulnerability scanning, penetration testing, remediation of findings, and securing the business environment

Apr 2012 - Aug 2012

Systems Engineer - Secure Test Lead

Falls Church, Va, Us

• Provided Program-level field test support to the U.S. government as a Subject Matter Expert (SME) in requirements validation, design validation, test observance and information assurance to theJoint Program Executive Office/Joint Tactical Radio System (JPEO-JTRS) program► Tasking included field certifying system could communicate securely within a tactical environment. This included ensuring that system was DoD Information Assurance Certification and Accreditation Process (DIACAP)-hardened and accredited.► Developed and presented program briefs, security documentation, white papers, and Information Assurance briefs► Reviewed system security packages delivered by contractors for completeness, accuracy, and DIACAP compliance► Provided initial support to Risk Management Framework (RMF) transition

Aug 2008 - Apr 2012

Executive-Level Tasking

Falls Church, Va, Us

• Routinely participated in the preparation of proposals, and the development of new business► Participated on most levels of the proposal process to include: blue, pink, red, green, and gold teams► Provided support for oral presentations on several of these efforts► As a result, won new business opportunities, totaling approximately $100 million, over the course of 5 years

Feb 2007 - Apr 2012

Systems Engineer/Acquisition Support

Falls Church, Va, Us

• Provided initial acquisition support for PMW-160 on the Consolidated Afloat Network and Enterprise Services (CANES) Program► Provided project management support that included organizing, planning, scheduling, and coordinating workloads to meet established milestones► Developed initial concept and hardware/software requirements and applicable documentation► Surge effort developed to be phased out over time as milestones were accomplished

Feb 2007 - Mar 2008

Secure Software Engineer

Chantilly, Us

• Utilized the Waterfall Software Development Lifecycle extensively to provide software engineering support for several Special Access Programs (SAP)► Utilizing Rational Requisite Pro to validate requirements traceability, wrote several levels of high-level, decomposed, and derived requirements► Contributed to both the high-level and detailed design which included applicable documents for each► Developed initial Graphical User Interface (GUI) concepts and operational documentation► Implemented software with C++, within the Linux environment

Apr 2004 - Feb 2007

Secure Software Engineer

Mclean, Va, Us

• Utilized the Waterfall Software Development Lifecycle extensively to develop tactical software applications for the U.S. Navy within the UNIX and Windows 2000 environments.► System was one of the very first NSA-Approved Service-Oriented Architecture Applications that were fielded► Developed several versions of software which included: readdressing system requirements, design, and test methodology. Additionally, updates to the applicable documentation were also required.

Jan 2001 - Apr 2004

Cryptologic Technician (Collection)

Washington, Dc, Us

• Provided system's engineering support to Space and Naval Warfare Center, Pacific (SSC-PAC)► Wrote several new requirements for software being developed► Tested and integrated tactical software for the U.S. Navy and Marine Corp

Feb 1996 - Feb 2001
2 education records

Timothy Medlock, Cissp education

Master Of Science - Ms, Cybersecurity & Information Assurance

National University

Bachelor Of Science, Computer Science

National University
FAQ

Frequently asked questions about Timothy Medlock, Cissp

Quick answers generated from the profile data available on this page.

What company does Timothy Medlock, Cissp work for?

Timothy Medlock, Cissp works for BAE Systems, Inc..

What is Timothy Medlock, Cissp's role at BAE Systems, Inc.?

Timothy Medlock, Cissp is listed as Cybersecurity Manager (Compliance & Governance) at BAE Systems, Inc..

What is Timothy Medlock, Cissp's email address?

AeroLeads has found 1 work email signal at @att.net for Timothy Medlock, Cissp at BAE Systems, Inc..

What is Timothy Medlock, Cissp's phone number?

AeroLeads has found 17 phone signal(s) with area code 760, 619, 209, 442, 714 for Timothy Medlock, Cissp at BAE Systems, Inc..

Where is Timothy Medlock, Cissp based?

Timothy Medlock, Cissp is based in Escondido, California, United States while working with BAE Systems, Inc..

What companies has Timothy Medlock, Cissp worked for?

Timothy Medlock, Cissp has worked for Bae Systems, Inc., Computer Technologies Consultants, Inc. (Ctc, Inc.) (At Bae Systems, Inc. - San Diego, Ca), La Jolla Logic (At Bae Systems, Inc. - San Diego, Ca), La Jolla Logic, and Taranet.

How can I contact Timothy Medlock, Cissp?

You can use AeroLeads to view verified contact signals for Timothy Medlock, Cissp at BAE Systems, Inc., including work email, phone, and LinkedIn data when available.

What schools did Timothy Medlock, Cissp attend?

Timothy Medlock, Cissp holds Master Of Science - Ms, Cybersecurity & Information Assurance from National University.

Find 750M verified contacts

Search by job title, company, industry, location, and seniority. Export verified B2B contact data when you need it.