Kevin Fanberg

Provided Fractional and Virtual CISO and Security Consultant guidance to Executive Staff, Cloud Architects, and Engineering Teams. Defined, implemented, and managed strategic Security Roadmaps, conducted Security Risk Assessments, and supported First to Market initiatives in various industries. Validated security postures to meet compliance requirements including NIST RMF, ISO 27001, SOC 2, PCI, H

Managed all activities related to designing, implementing, documenting, and maintaining the appropriate security posture for Federal Government contracts. Provided guidance to Senior Project Managers and Team Members to ensure applicable security requirements were incorporated in systems. Created and published key authorization package documentation for compliance with NIST 800-53, FIPS, FedRAMP,

Provided Fractional and Virtual CISO and Security Consultant guidance to Executive Staff and Engineering Teams. Defined, implemented, and managed strategic Security Roadmaps, conducted Security Risk Assessments, and supported First to Market initiatives in various industries. Validated security postures to meet compliance requirements including NIST RMF, ISO 27001, SOC 2 Type 2, PCI, HIPAA, FedRAM

Managed all activities related to designing, implementing, documenting, and maintaining the appropriate security posture for DHS/FEMA, HHS/ACF, and Department of Transportation Federal Government contracts. Provided guidance to Senior Project Managers and Team Members for incorporating security requirements and attaining Authorization to Operate (ATO). Created and published key authorization packa

Led Client Engagements for technical and non-technical personnel, providing Vulnerability Assessments, Penetration Testing, System Security Testing and Certification and Accreditation (C&A). Provided Application Security and Software Development Consultation within the Agile Software Development process and implemented security protocols in various business sector regulations including Healthcare,

As the Lead Project Security Manager, provided Systems Security Engineering technical consultation to Senior Management for a variety of government programs. Developed and presented to Air Force Space Command (AFSPC) Certification and Accreditation System Security Authorization Agreements (SSAA) and detailed Vulnerability Risk Analyses for DAA C&A Final Approvals. Performed in-depth functional ana

Provided Systems Security Engineering technical consultation to Senior Management for a variety of government programs. Developed and presented Certification and Accreditation System Security Authorization Agreements (SSAA) and detailed Vulnerability Risk Analyses for DAA Final Approvals. Performed in-depth functional analysis and hands-on security testing and network vulnerability Risk Assessment

Effectively Managed the IT Security Team initiatives for the creation of secure environments in alignment with corporate objectives. Managed Facility Security Team with direct reports and assisted in the build out of a new secure facility. Provided Application Security and Infrastructure development design for customized Web Applications and executed Web Application security testing, static code a

Effectively managed the IT Security Team initiatives for the creation of secure environments in alignment with corporate objectives. Managed the Facility Security Team and assisted in the build out of a new secure facility. Provided Application Security and Infrastructure development design for customized Web Applications and executed various security testing methods.

Spearheaded the development and implementation of meeting PCI-DSS, SOC 2, SSAE 16, and ISO 27000 series security controls to ensure that organizational assets are properly protected. Led organization’s Incident Response policies and procedures to meet identified business goals regarding chain of custody and breach reporting standards. Managed the LogRhythm Security Information and Event Management

Spearheaded the development and implementation of meeting PCI-DSS, SOC 2, SSAE 16, and ISO 27000 series security controls. Led organization’s Incident Response policies and procedures to meet business goals regarding chain of custody and breach reporting. Managed the LogRhythm Security Information and Event Management (SIEM) and provided Web Application Security Testing.

Led the Information Security Team on improvement initiatives in an E-commerce Retail environment, governed by PCI-DSS and ISO 27000 series security requirements. Created maintenance processes for Partner Connectivity Agreements to ensure secure confidentiality for Data in Transit and Data at Rest. Developed and Published Security Awareness training, conducted regular Network and Web Application Vu

Managed a team of Security Engineers in the development and submission of security documentation needed to obtain formal Authorization to Operate (ATO) in FedRAMP approved AWS Cloud and Microsoft Azure environments. Managed all activities related to designing, implementing, documenting, and maintaining the appropriate security posture for Veteran Affairs (VA), Federal and State Government contract

Defined, Developed and Managed a large-scale Cyber Threat Intelligence and Analysis Program to proactively protect the overall integrity of the system. Managed the Splunk Security Information and Event Management (SIEM) System for optimal performance and effective compliance and monitor reporting. Identified new threat techniques and procedures utilized by threat actors and conducted correlation a

Defined, developed, and managed a large-scale Cyber Threat Intelligence and Analysis Program to proactively protect system integrity. Managed the Splunk Security Information and Event Management (SIEM) System for optimal performance and reporting. Identified new threat techniques and procedures and developed Weekly Threat Intelligence Reports detailing origin, attack types, and recon activity.

Led client engagements for technical and non-technical personnel, providing Vulnerability Assessments, Penetration Testing, and System Security Testing. Implemented security protocols across various business sectors including Healthcare, DoD, FISMA, NIST, HIPAA, SOX, and PCI DSS. Developed and managed System Security Plans (SSP) and orchestrated enterprise-wide Business Continuity, IT Contingency,

Led the Information Security Team on improvement initiatives in an E-commerce Retail environment governed by PCI-DSS and ISO 27000 series requirements. Created maintenance processes for Partner Connectivity Agreements to ensure secure confidentiality for Data in Transit and Data at Rest. Conducted regular Network and Web Application Vulnerability Security Testing and managed the Security Informati

Managed a team of Security Engineers in the development and submission of security documentation needed to obtain formal Authorization to Operate (ATO). Managed activities related to designing, implementing, and maintaining the security posture for Veteran Affairs and Federal/State Government contracts. Reviewed System Architecture and Design Documentation and performed initial and ongoing Risk As

Focused on advanced topics in computer science with a specialization in computer systems security. Gained in-depth knowledge of securing computer systems and networks.

Studied economic principles with a focus on business and economic forecasting. Developed analytical skills applicable to various business environments.

Focused on Computer Systems Security within the Computer Science program. Gained advanced knowledge in securing computer systems and networks.

Concentrated on Business and Economic Forecasting as part of the Economics degree. Developed analytical skills in economic trends and business predictions.