NAICS CODES
334111 – Electronic Computer Manufacturing
334118 - Computer Terminal and Other Computer
334419 – Other Electronic Component Manufacturing
334290 – Other Communications Equipment Manufacturing
541511 – Custom Computer Programming Services
541512 – Computer Systems Design Services
541519 – Other Computer Related Services
541611 – Administrative Management and General Management Consulting Services
541690 – Other Scientific and Technical Consulting Services
541715 – Research and Development in the Physical Engineering
CORE COMPENTENCIES
Cybersecurity Supply Chain Risk Management (C-SCRM)
Third-party vendor risk assessments, supply chain security framework development aligned to NIST SP 800-161, and ICT supply chain risk mitigation strategies for federal and commercial clients managing complex supplier ecosystems.
Enterprise Security Governance & RMF Management (ISSM/ISSO)
Comprehensive security governance, compliance oversight, and continuous monitoring support across classified and unclassified environments. Expertise in implementing and managing enterprise security programs aligned with NIST RMF, DoD 8500 series, CNSSI 1253, FedRAMP, and agency-specific security directives. Skilled in developing and maintaining security authorization packages, leading control assessments, managing POA&Ms, coordinating with AO/DAO stakeholders, and ensuring systems maintain ongoing compliance throughout their lifecycle. Proven ability to guide organizations through accreditation, sustainment, and modernization activities while strengthening security posture, reducing risk, and ensuring mission readiness.
Cybersecurity Assessments & Penetration Testing (Red/Blue Team)
Advanced security testing and adversarial simulation capabilities including internal/external penetration testing, Red Team operations, Blue Team defensive evaluations, Purple Team collaborations, vulnerability assessments, cloud security posture reviews, and social engineering testing. Expertise aligned with NIST SP 800-115, NIST SP 800-53, NIST SP 800-171, CMMC, OWASP, CIS Controls, and MITRE ATT&CK to identify exploitable weaknesses, validate defensive readiness, and strengthen enterprise security posture.
Program & Project Management
Leadership and governance of complex, multi‑workstream initiatives across cybersecurity, IT modernization, and risk management domains. Expertise in defining strategic objectives, developing integrated project plans, managing scope, schedule, and budget, and driving execution through structured methodologies. Skilled in stakeholder engagement, cross‑functional coordination, performance measurement, risk mitigation, and delivery of mission‑critical outcomes aligned with federal policies, organizational priorities, and industry best practices (PMBOK, Agile, and Lean).

