THE OFFICIAL CONFERENCE OF THE CYBER AB
That’s why we created the CEIC conference. We have carefully designed CEIC so it has something for everyone in the broader CMMC ecosystem! Whether you are a CMMC novice looking for help getting started, a seasoned pro looking for advanced training and continuing education units ("CEUs")*, or a service provider who wants a sneak peek into next-generation solutions to help you more efficiently maintain CMMC-compliant environments at scale, CEIC East has something for everyone. Join us November 21-22 to learn the latest updates on the CMMC program and much more!
Koren Wise, Certified CMMC Professional (CCP), Certified CMMC Assessor (CCA), Provisional Instructor (PI) Wise Technical Innovations
Thomas Graham, Registered Practitioner (RP), Certified CMMC Professional (CCP), Certified CMMC Assessor (CCA), Redspin
Amira Armond, Certified CMMC Professional (CCP), Certified CMMC Assessor (CCA), Provisional Instructor (PI), Kieri Solutions LLC
John Nolan, Registered Practitioner (RP), ISI Enterprises
Shawn Duffy, CISSP & C3PAO Candidate, Duffy Compliance Services
Bill Wootton, Chief Revenue Officer, C3
Alex Imani, Certified CMMC Assessor (CCA), Forvis Mazars
George Perezdiaz, Registered Practitioner (RP), Certified CMMC Professional (CCP), Certified CMMC Assessor (CCA), CISA, CRISC, CCSK, Cuick Trac by Beryllium InfoSec
David Bedard, Certified CMMC Professional (CCP), Security+, Certified CMMC Assessor (CCA), A+, KTL Solutions
Jerry Leishman, Vice-Chair of CMMC Industry Standards Council (CISC), Certified CMMC Assessor, Certified CMMC Professional, (CCA), Certified CMMC Professional (CCP), Professional CMMC Assessor
Tara Lemieux, CMMC Certified Assessor and Instructor
The OSC's Threat Response
CMMC Threat Management Requirements
Beth Ball, CISSP, GICSP and others, Cyturus Technologies, Inc
Stuart Itkin, Provisional Instructor ("PI"), and Exec responsible for MSP, RPO, and C3PAO, NeoSystems
Joy Beland, CISM, QTE, SSAP, CMMC CCA & PI, Summit7
Adam Evans, CISSP, Axiom
Justin Hensley, Certified CMMC Professional (CCP), CloudfitSoftware
Regan Edens, Certified CMMC Professional (CCP), Provisional Instructor (PI), DTC Global
Ken Fanger, Registered Practitioner (RP), OnTechnologies Partners
Amy Williams, Certified CMMC Professional (CCP), Certified CMMC Assessor (CCA), Provisional Instructor (PI), Coalfire Federal
Thad Wellin, Certified CMMC Professional (CCP), Certified CMMC Assessor (CCA), TRW Security Solutions
James Goepel, Certified CMMC Professional (CCP), Certified CMMC Assessor (CCA), Future Feed
Jacob Nix, Registered Practitioner (RP), RISC Point
Carley Salmon, Senior Security Technical Specialist, Microsoft
Carly Logan, Certified CMMC Assessor (CCA), Summit7
Rachel Leidy, Certified CMMC Professional (CCP) and Certified CMMC Assessor (CCA), PA/PI, CISSP, Network+, Security+, Linux+, CyberSage Solutions
Matt Titcombe, Founder of Peak InfoSec
Fernando Machado, Managing Principal & Chief Information Security Officer, Cybersec Investments
CEIC 2024 will be held at the Gaylord National Harbor Resort & Convention Center in Maryland. Learn more.
NSA Cybersecurity Directorate
Ms. Kristina Walter is the Director of NSA’s Cybersecurity Collaboration Center, in this role she is responsible for leading NSA’s open private sector relationships, in collaboration with our government partners to protect our critical government supply chain. Ms. Walter integrates NSA’s unique intelligence insights and technical expertise to defend the Defense Industrial Base and our National Security Systems from cyber threats.
With over 15 years of experience at NSA, Ms. Walter has continuously prioritized the strategic overview of NSA’s missions. Prior to rejoining the Cybersecurity Collaboration Center, she led NSA’s Future-Ready Workforce Initiative highlighting the criticality of NSA’s “people-first” mission. As well as serving as the Senior Strategist for NSA, to showcase and implement the Director’s visions through meaningful mission outcomes.
Ms. Walter earned her Master’s in Business Administration from the University of Maryland, as well as a Bachelor’s in Marketing and Logistics & Supply Chain Management. Although she is a Pennsylvania native, Ms. Walter is currently a Maryland resident, alongside her husband and two children.
As VP Security and Safety, Chief Security Officer (CSO) for Sierra Nevada Company (SNC), Robert Daugherty leads a holistic Security Program that includes SNC’s Security Operations Center (SOC), Classified Networks and Programs, Classified Facilities, Counterintelligence, Cybersecurity, Insider Risk, Personnel Security, Operational Security, Business Continuity, Crisis Management, and Safety. Since joining SNC in early 2018, Robert has built a world-class Security Program that is recognized by the USG as being one of the top performing (1%) in all of industry with multiple Defense Counterintelligence Security Agency (DCSA) Cogswell Awards for program excellence.
Armed with an MBA, BCompSc, and CISSP, CISM certifications, Robert’s extensive background includes 25+ years of moving organizations toward excellence by leveraging technology securely to improve mission in rapidly evolving high-growth startup business units, highly matrixed enterprises, critical infrastructure, and the Defense and Intelligence sectors.
Robert’s security mantra is “assume breach”; organizations must adopt a proactive counterintelligence, data-driven and risk-based mindset, constantly hunting for and quickly detecting anomalous internal and external activity.
Huntington Ingalls Industries
Assistant General Counsel, Cyber / A.I. / Privacy at Huntington Ingalls Industries, Inc.
C3 Integrated Solutions
Bill Wootton is a co-Founder and Chief Revenue Officer of C3 Integrated Solutions, a full-service IT provider that accelerates CMMC compliance by designing, implementing, and managing IT & cybersecurity solutions purpose-built for the U.S. Defense Industrial Base. Through its Steel Root Platform, C3 delivers an expertly managed environment that brings together everything contractors require to confidently meet CMMC requirements. A graduate of Drexel University and Georgetown McDonough School of Business, Bill is passionate about bringing cyber awareness and maturity to the DIB, working with clients to help them achieve CMMC and NIST 800-171 compliance. Bill lives in Arlington with his partner Sharon and their dogs Brooks and Lemmy.
National Institute of Standards and Technology, (NIST)
Dr. Jyoti K. Malhotra serves as the Division Chief for National Programs with the Hollings Manufacturing Extension Partnership (MEP) at the National Institute of Standards and Technology (NIST). She is a member of NIST MEP’s senior leadership team, responsible for strategic planning, operations, and building partnerships with public and private sector stakeholders such as NIST labs, federal and state agencies, industry trade groups, educational institutions, Manufacturing USA institutes, nonprofits, and other organizations.
The NIST MEP National Programs Division is the primary interface with the MEP National Network, helping develop and deploy products, technology innovations, and business services for small and medium-sized manufacturers (SMMs). The division conducts industry analyses for emerging markets and technologies to determine which services can advance SMMs to be competitive in the global market.
Dr. Malhotra provides direction for national initiatives, including implementation of the MEP National Network 2023-2027 Strategic Plan as it relates to technology innovation for U.S. manufacturers. The diverse partnerships developed by this division support the strategic plan’s supply chain and workforce goals.
Dr. Malhotra has vast experience in interdisciplinary materials and devices research, product development, manufacturing, and commercialization. Her work includes applications in semiconductor, electronics packaging, energy storage, microelectromechanical systems, flexible printed electronics, LED lighting and medical devices. She is an inventor with multiple U.S. patents and many scientific publications.
Before joining NIST MEP, she worked at the Saint Louis University, directing industry partnerships for the university’s Office of the Vice President for Research and Partnerships. She worked with faculty university-wide and launched new industry partnerships that advanced both the research and academic goals of varied disciplines.
Eric frequently speaks to industry groups regarding government contract, business, and technology issues and related litigation and intellectual property issues.
Focus Areas: Government contracts litigation (including bid protests, subcontractor/prime contractor disputes, DOL litigation including Service Contract Act (SCA) & FLSA investigations), technology and Internet law, complex commercial litigation, intellectual property litigation, employment litigation, and appellate law.
Please note that this may be considered attorney advertising. Also, past results do not guarantee a similar outcome.
Crowell & Moring LLP
Michael G. Gruden, a counsel at Crowell & Moring LLP’s Washington, D.C. office, is a former Pentagon information technology acquisition branch chief and a leading cybersecurity lawyer who helps government contractors navigate privacy, cybersecurity, and contract compliance requirements. Drawing from his experience at the U.S. Department of Defense and U.S. Department of Homeland Security where he worked nearly 15 years, Gruden represents some of the nation's largest defense contractors and tech companies as they prepare to meet CMMC requirements and mitigate cyber threats. Michael leads incident response efforts including privileged IT forensic investigations and notifying government regulators. He also advises companies through cybersecurity diligence in corporate transactions. Michael is a Certified Information Privacy Professional with a U.S. government concentration (CIPP/G). He is also a Registered Practitioner under the Cybersecurity Maturity Model Certification (CMMC) framework. Michael chairs the ABA Science & Technology Section's Homeland Security Committee and the Coalition for Government Procurement’s Cybersecurity Committee.
Eric frequently speaks to industry groups regarding government contract, business, and technology issues and related litigation and intellectual property issues.
Focus Areas: Government contracts litigation (including bid protests, subcontractor/prime contractor disputes, DOL litigation including Service Contract Act (SCA) & FLSA investigations), technology and Internet law, complex commercial litigation, intellectual property litigation, employment litigation, and appellate law.
Please note that this may be considered attorney advertising. Also, past results do not guarantee a similar outcome.
Holland and Knight
Eric is a Partner at Holland & Knight specializing in Government Contracts, Internet/Technology Law, and representing businesses of all shapes and sizes, was named a Super Lawyers Rising Star. This honor is only given to the top 2.5% of attorneys who meet certain criteria. Eric has appeared as a guest on Fox News, Government Matters, NPR, Federal News Radio and has been quoted in numerous publications including Newsweek, Washington Lawyer and the Washington Business Journal.
Eric is a proven trial attorney in state and federal court.
Aside from his recent accomplishments, Eric has extensive experience in litigating all stages of complex multi-million dollar matters in various state and federal courts from commencement through trial and verdict. In addition, Eric has successfully represented contractors before the Government Accountability Office (GAO), the United States Court of Federal Claims (COFC), the Department of Labor and various governmental boards. Eric has also briefed and argued appeals in state and federal court.
Eric frequently speaks to industry groups regarding government contract, business, and technology issues and related litigation and intellectual property issues.
Focus Areas: Government contracts litigation (including bid protests, subcontractor/prime contractor disputes, DOL litigation including Service Contract Act (SCA) & FLSA investigations), technology and Internet law, complex commercial litigation, intellectual property litigation, employment litigation, and appellate law.
Please note that this may be considered attorney advertising. Also, past results do not guarantee a similar outcome.
KTL Solutions
David is a Certified CMMC Professional and service as the Lead Security and Compliance Analyst at KTL. He works with DIB clients on compliance efforts in aligning with DFARS 7012 and NIST 800-171 requirements.
Assisted KTL leadership with the concept that lead to the creation and development of a secure enclave used by the 1st Authorized C3PAO.
Summit 7
I specialize in innovative and engaging cybersecurity training and education. I am passionate about the human element - taking the people and process of security to the level of complimenting the technology, not working against technical controls. In my work with large vendors and businesses of all sizes, I leverage consensus, trust and a clear roadmap to transform culture and make our digital lives safer, one click at a time.
FutureFeed.co
I am a cybersecurity expert turned lawyer turned cybersecurity expert, and I have experience that runs the gamut from high-level public policy and organization design to hands-on technical implementation, fundraising, business management, and sales.
I am now the General Counsel and the Director of Education and Content at Continuous Compliance LLC dba FutureFeed. In that capacity, I often help the owners and practice leaders of MSPs, consultancies, etc. to build cyber compliance as a service offerings.
Previously, I helped build the CMMC Accreditation Body (CMMC-AB - now the CyberAB). This included creating the CyberAB’s Registered Practitioner training program. Since stepping down from the CyberAB, I earned Provisional Instructor, Certified CMMC Assessor, and Certified CMMC Professional certifications.
FutureFeed.co
Experienced leader, CIO and entrepreneur with a demonstrated history of working in the information services industry. Skilled in Sales, Entrepreneurship, Strategic Planning, Business Development, and Marketing Strategy. Strong entrepreneurship professional with an MBA Loyola College in Maryland.
Redspin
Dr. Thomas Graham, Ph.D., is the VP and CISO at Redspin, a leading Cybersecurity Maturity Model Certification (CMMC) service provider. He is a recognized expert in CMMC and holds multiple certifications, including Certified Assessor (CCA) and CMMC Certified Professional (CCP). Dr. Graham played a pivotal role in Redspin becoming the first authorized C3PAO and conducting DIBCAC High CMMC assessments under JSVAP. With a Ph.D. in Information Assurance and Security, he oversees internal security matters at Redspin. Dr. Graham's accomplishments include receiving a FedHealthIT award while supporting the Defense Health Agency and speaking at industry events like the National Cyber Summit and ISC2 Security Congress.
NeoSystems
Stuart Itkin brings unique perspective to CMMC and the challenges organizations, both large and small face in satisfying government regulations and operating their businesses. As Vice President of NeoSystems, Itkin is focused on bringing managed IT services and managed security services to address the cybersecurity and compliance needs of small and medium businesses. Formerly Vice President of CMMC and FedRAMP Assurance at Coalfire Federal, Itkin led the company through its DIBCAC assessment and the process of becoming one of the first authorized C3PAOs.
Itkin earlier served as Vice President of Product Management and Marketing at Exostar, a Boeing, Lockheed Martin, Raytheon Technologies, BAE Systems, Rolls Royce formed joint venture company, where he had responsibility over the company’s compliance management, supply chain risk management, and secure collaboration platforms, and for establishing its CMMC practice area. Stuart was a member of the CMMC Standards Working Group and currently serves as a Director of MSPs for the Protection of Critical Infrastructure and for the CMMC Industry Standards Council.
Stuart has served in leadership roles with cybersecurity companies PivotPoint Risk Analytics, SAIFE, and ThreatTrack Security, as lead mentor at the Virginia State Government funded MACH37 cybersecurity product accelerator, and as an advisor and board member to several early and growth stage cybersecurity companies. Stuart earned a BA and an MA and is an ABD from the University of Illinois at Urbana-Champaign.
NeoSystems
Jerry is a board advisor, trusted cybersecurity & compliance expert and advocate for in-house counsel, compliance officers and senior leadership to ensure they can effectively navigate complex regulatory, legal, and contractual risks and obligations. Jerry is currently a Strategic Alliance Manager at NeoSystems Corp, supporting Defense and Critical Infrastructure suppliers of all sizes and cybersecurity postures. Prior to NeoSystems, Jerry was EVP & National Security & Compliance Director at CORTAC Group.
He is an expert at executive risk-based approaches embracing right-size outcomes that are cost-optimized to meet an organizations required security and compliance requirements. He is closely aligned with industry and technology leaders including Microsoft, AWS, and Google in delivering world- class solutions.
Jerry is active nationally as Co-Vice Chairman of the CMMC Standards Council (CISC), a Provisional CMMC Assessor (PA), Certified CMMC Assessor (CCA), and Certified CMMC Professional (CCP), and founding member of the CMMC AB Standards Workgroup.
Jerry speaks nationally on Cybersecurity and DFARS/CMMC impacts, supply chain, and partners with private/public organizations to increase the Pacific Northwest Defense and Aerospace manufacturer awareness and adoption. He also received a presidential volunteer award for his work on CMMC.
CyberSec Investments
CMMC Certified Assessor and Instructor, Lead Auditor ISO 9001:2015, ISO/IEC 27001, 20000-1, GDPR-PIMS Auditor; Certified SCRUM Master #128280.
30 years’ experience leading change within National Level, Military, and Commercial organizations. Author, creator, warrior and wanderer…
Summit 7
Carly served as cloud systems security officer/FedRAMP subject matter expert at Oak Ridge National Laboratory and has developed technical, policy, risk, and compliance expertise across multiple frameworks, such as NIST 800-53, NIST 800-171, ISO 9001 and the ISO 27000 series. Carly volunteers on the CMMC Industry Standards Council and supports Summit 7's managed services clients through compliance consulting and program development.
CyberSec Investments
Fernando is the Managing Principal & Chief Information Security Officer for Cybersec Investments, an Authorized CMMC 3rd Party Assessment Organization (C3PAO) and Service-Disabled Veteran-Owned Small Business (SDVOSB). Fernando is an Iraq War Veteran, Certified CMMC Assessor (CCA), and Certified CMMC Professional (CCP). Fernando was a member of the CMMC Accreditation Body’s Standards Management Industry Working Group, which helped develop guidance on CMMC’s assessment criteria & scoping with over 17,000 volunteer hours. His contributions led to being formally recognized by the President of the United States with the President’s Volunteer Service Award.
Rogers Joseph O’Donnell
Bob Metzger heads the Washington, D.C. office of Rogers Joseph O’Donnell, a law firm. Bob was a member of the Defense Science Board task force that produced the “Cyber Supply Chain Report” in April 2017 and is a co-author of the 2018 MITRE “Deliver Uncompromised” Report which has influenced subsequent DoD cyber and supply chain security measures, including CMMC. As a Consultant to MITRE, Bob worked on cyber, supply chain, and digital asset crimes projects between 2017 - 2022. Bob was a 2016 “Federal 100” awardee.
His legal practice includes cyber, supply chain, and national security matters. In 2024, Bob was honored in Lawdragon's inaugural “500 Leading Global Cyber Lawyers” guide and he was named a “Top Voice” by LinkedIn. The international lawyer ranking firm, Chambers, afforded “Band 1” recognition to Bob, in its USA Government Contracts: Cybersecurity (USA — Nationwide) rankings. This is the highest Chambers ranking an attorney can receive. Bob also has been recognized by Chambers for Government Contracts (USA – Nationwide) for 14 consecutive years, and presently is ranked in Band 2.
Bob is active in the Science and Technology Section of the American Bar Association and serves as vice chair of the Information Security Committee and co-chair of the Trust and Risk Committee.
IsI Enterprises
John serves as the Vice President of IT Operations for ISI Enterprises overseeing the compliance, engineering, and cybersecurity operations for the company’s Managed Service Provider (MSP) operations.
Holding roles in Engineering, Cybersecurity, Compliance, and Project Management, John has contributed to nearly all verticals the IT field has to offer over the last 23 years. He has spent the last 15 years in the MSP world, dedicating ten of those direct to Department of Defense contractors supporting their unique needs and IT infrastructure.
John has been engaged with CMMC since its inception, working with clients to ensure their compliance posture and journey have kept up with the ever-evolving landscape demanded by the standard. Along with his team, John has overseen over 150 CMMC gap assessment and remediation projects, personally assisting C3PAO candidates on their journey to become certified assessors including leading those candidates through successful DCSA led CMMC assessments.
A graduate from the University of Maryland, College Park in 2004, John currently resides in Southern Maryland with his wife and two children.
Microsoft
Carley Salmon is a Senior Security Technical Specialist for Microsoft Federal, where she helps Defense customers meet data security and compliance standards. She has a background in cybersecurity and military service, which gives her a unique perspective on information technology and its challenges.
Before joining Microsoft, Carley was a Team Chief and Cybersecurity Assessor for the Defense Industrial Base Cybersecurity Assessment Center (DIBCAC), where she developed and executed cybersecurity assessments for defense contractors. She also served as an Army Blackhawk helicopter pilot, leading a platoon and participating in warfighting operations in the USANG.
Peak InfoSec
As the founder of Peak InfoSec, Matt left the Federal government sector as an Air Force Program Manager to reapply his 25+ years of Information Security & Technology experience to the commercial sector. Matt now leads an organization that specializes in Information Security Turn Around efforts supporting federal and commercial sectors. Matt has been brought in to consult with organizations across the globe like United Launch Alliance, Sony, ConocoPhillips, and Munich Re-Insurance. His commitment to supporting the military and Defense Industrial Base did not stop when he left the Air Force.
Matt is a recognized leader in the DoD’s new Cybersecurity Maturity Model Certification (CMMC). His leadership efforts led him to lead one of the first Authorized CMMC 3rd Party Assessor Organizations (C3PAO); being certified as a CMMC Provisional Assessor; volunteering on the CMMC Accreditation Body Industry Standards Working Group; and, as a Subject Matter Expert, helping several institutions develop CMMC training curricula.
The Cyber AB
Mr. Travis is the first chief executive officer of the Cyber Accreditation Body (the Cyber AB). Previously, Travis served as the first deputy director of the Cybersecurity and Infrastructure Security Agency (CISA), the nation’s leading civilian cybersecurity agency. There he oversaw the day-to-day operations of the $2+ billion, 2000+ employee organization across the full range of its mission in cybersecurity, infrastructure protections and emergency communications. Prior to this position, he was the deputy undersecretary for national protection (NPPD) within the Department of Homeland Security.
Before entering government service in 2018, Travis served as vice president of homeland security for Cadmus, a security, energy, and environmental professional services firm. He joined Cadmus when the security consultancy he co-founded, Obsidian Analysis, Inc., was acquired by Cadmus in 2016.
A former naval officer, Travis served as an engineering auxiliaries officer aboard the guided-missile frigate U.S.S. CARR (FFG 52). He then served a tour as White House Liaison to the Secretary of the Navy and was also a White House Military Aide. He is a 1991 graduate of the University of Notre Dame and holds a master’s in national security studies from Georgetown University. He has appeared on both CNN and MSNBC in providing analysis of cybersecurity and homeland security issues.
Coalfire Federal
Amy Williams, PhD, CISSP, CMMC-PA, PI, is Vice President of CMMC for Coalfire Federal where she leads the RPO and C3PAO teams in development and management of advisory and assessment services, respectively. She was previously the Senior Director of Proactive Services at BlueVoyant where she established and managed CMMC and CIS-based consulting practices.
Prior to BlueVoyant, she was VP of Cybersecurity for Unlimited Technologies where she built a cyber consulting practice and managed an IT Managed Services group. She also served as Director of Cyber for the NY Citizens Crime Commission where she launched and managed the Commission’s alliance with the FBI’s Cyber Division. She is recognized for her innovative and diplomatic leadership skills in IT and Cybersecurity as well as for her ability to effectively communicate and translate complex security concepts.
Wise Technical Solutions
Koren is a Certified CMMC Assessor, Provisional Instructor, and the CEO of Wise Technical Solutions in Norfolk, VA. She has participated in the Joint Surveillance Voluntary Assessment Program as both assessor and implementor. She recently created the compliance program and GCCH Azure Gov enclave for Jaco Aerospace, leading them to the JSVA where they scored the perfect “110”. WTI is a Licensed Training Provider for the Cyber AB. WTI is awarded on the GSA HACS schedule for High Value Assessments, Risk and Vulnerability Assessment, Cyber Hunt, Incident Response, and Penetration Testing.
Koren is qualified by the Department of Homeland Security/CISA as Lead Assessor for High Value Asset, Cyber Resiliency Review, and External Dependency Management Assessment Program. Koren specializes in standing up cybersecurity programs within organizations to meet applicable NIST controls or comply to 800-53 overlays. Additionally, she specialized in business continuity planning, business impact analysis, and risk-based approaches, such as the Cybersecurity Framework (CSF). She is skilled in using 800-53, RMF, 800-30, and 800-37, eDiscovery, root-cause analysis, and threat hunt techniques.
Koren has enjoyed a 23-year career in IT and network security which has resulted in a deep knowledge of disaster recovery, hardening infrastructures, and risk assessment. She started Wise Technical Solutions in 2004 and has been helping both commercial and government organizations meet business goals and maintain highly secure environments ever since. She has a strong passion for teaching and has contributed to the IT community on the podium throughout her career. She is CISSP and PMP certified with a master's degree in education.
Focus Areas:
• CMMC Assessments \ Building secure enclaves and comprehensive CMMC programs
• Business Impact Analysis using the Risk Management Framework / NIST Guidelines
• eDiscovery
• Forensic/Legal Cybersecurity Investigation Assistance
• High Value Asset (HVA) Assessments
• Risk and vulnerability Assessment (RVA)
• Cyber Hunt
• Incident Response
• Penetration Testing
Cyturus Technologies
Beth Ball is a distinguished cybersecurity expert with over 24 years of industry experience. As the Director of Client Compliance and Services at Cyturus Technologies, she possesses an in-depth understanding of the intricate risk and cybersecurity landscape. Her expertise spans IT and OT compliance, risk and security assessments, and program and policy development, with a keen focus on aligning technology with business objectives.
Beth's cybersecurity journey began in the US Navy as a Cryptologic Technician specializing in cyber operations. She has since honed her skills on various Red Teams, simulating real-world cyber threats, conducting incident response and forensic activities, and collaborating with government agencies and Fortune 500 companies to develop robust cybersecurity and compliance programs. Beth holds a bachelor’s degree from Park University as well as multiple security certifications.
Outside of her professional endeavors, Beth plays and coaches hockey. In 2022, she founded the "Shield Maidens", the first all-female disabled veteran hockey team under the USA Hockey Warrior discipline. The same year she co-founded the Atlanta Warriors Hockey program - a community of veterans supporting fellow veterans through camaraderie and mental health awareness initiatives.
Duffy Compliance Services
Duffy Compliance Services President and CEO Shawn Duffy has been involved in the IT security industry since the moment he left college in 1992. In one of his first roles, he became the lead administrator in support of an environment containing 250 remote sites. He has worked with early firewall appliances and built some of the first Access Control Lists (ACLs) before many network devices even had the capability to use them.
Shawn Duffy has a proven track record with extensive experience in leading and supporting Information Assurance and System Security programs. He has experience in sales, security engineering, and as a contributor with large contractors, such as Northrop Grumman and General Dynamics, as well as in risk and vulnerability management and government compliance. Focus areas include: CMMC, DFARS/CUI, FISMA, Threat Management, Vulnerability, Assessments and Penetration Testing.
CloudFit Software
Dr. Justin O. Hensley, PhD, CCP, CCSP, CEH, CISM, CISSP has 20 years of experience in information technology and cybersecurity both in practice and in the classroom. After many years in the higher education sector, Dr. Hensley migrated to the federal contractor industry and brought a love for teaching combined with years of policy and compliance expertise. In his role at CloudFit Software, Dr. Hensley leads the information security and compliance program for both the company and its customers and provides vision and guidance for the adoption of effective technical controls.
RISC Point
Jacob is the Founder and CEO of RISCPoint, based in Cleveland, Ohio and a proud graduate of Bowling Green State University. Jake is a "Big Four" alumnus, having served as an external assessor (financial, process and cyber) Jake moved into a National Innovation role at PwC and ultimately served as a Cyber and Control architect in EY’s Global Risk Transformation practice where he shaped firm methodology and designed innovative trust programs for Fortune 500 clients.
Jake founded RISCPoint with a vision to better integrate with customers and partners, a vision that has created an ecosystem that thrives from a collaborative mindset today where RISCPoint’s clients, partners, and vendors find mutually beneficial systems across the spectrum.
Jake has been instrumental in establishing RISCPoint’s CPA firm, FedRAMP 3PAO, and maintains active certifications including CPA, CISSP, Baltimore Cyberrange Qualified Assessor, CRISC, CISM, CISA, CDPSE, HITRUST CCSFP, Okta Certified Professional and AWS CCP.
Cuick Trac by Beryllium InfoSec
George focuses on assessing and mitigating threats to Controlled Unclassified Information (CUI), Covered Defense Information (CDI), and Federal Contract Information (FCI) through the implementation of secure and resilient controls. George also oversees all NIST Cybersecurity Framework (CSF), Cybersecurity Maturity Model Certification (CMMC), and FedRAMP engagements.
George has over twenty years of cybersecurity experience building, managing, and maintaining cyber risk and compliance programs, performing risk assessments, and developing risk treatment plans. He is a results-driven IT Risk and Compliance Management professional passionate about designing and implementing practical solutions to critical business problems. He is a US Air Force veteran and former GS-2210 Civilian with experience supporting the intelligence community, continuity of government operations, and nuclear command and control operations. He has experience designing and maintaining secure information systems for Fortune 500 companies in the specialty material, R&D, aerospace, and defense industries.
TRW Security Solutions
Mr. Wellin is a Subject Matter Expert for Governance, Risk Management and Compliance and Cyber Security. He is a Certified Information Systems Security Professional (CISSP) as well a Certified CMMC Professional (CCP) and Certified CMMC Auditor (CCA). He has his own consulting company, TRW Security Solutions, as well as the Chief Information Security Officer (CISO) for Shojiki Consulting and for Kieri Solutions. Mr. Wellin often presents at conferences such as InfoSec World, The Society of Industrial Security Professional Annual Seminar, CUI-CON and B-Sides. Mr. Wellin has a Master of Science in Information Security and Assurance from Norwich University.
On Technology Partners
Ken Fanger, President of On Technology Partners, a CMMC-RP, and a Cyber Reservist, has over 30 years’ experience specializing in cybersecurity and process management.
Ken, a sought-after speaker, and award-winning author of RELAX A Guide to True Cybersecurity, is focused on “Humanizing Security”, a fundamental change toward a more holistic approach to cyber security. Ken is addressing the use of AI in cybersecurity, how AI and human engagement is bettering the world, and how misuse and over expectation is restricting our success. In Ken’s presentation AI The Good the Bad and the Ugly he addresses the power of AI and the fears and shortcomings.
Currently focused on the CMMC deployments within the manufacturing sector, Ken has also worked in the pharmaceutical, medical, nonprofit, and government fields. His MBA in Operations Management enables him to understand work/process flow, while allowing him to develop strategies for an organization’s future.
DTC Global
Regan Edens serves as the Chief Transformation & Compliance Officer and Co-Founder of DTC Global. Mr. Edens served as a founding Director on the CMMC-Accreditation Body, Board of Directors, as Chairman of the Standards Management Committee and Vice-Chairman of the Training Committee. He represented the CMMC-AB in the Federal CUI Stakeholder’s Working Group and led the CMMC Industry Working Group in collaboration with the DoD. He was one of four acting CMMC Certified Master Instructors.
Mr. Edens has served across various public and private capacities leading highly technical, complex, and extremely demanding DoD technology-driven transformation, operations, security, and intelligence activities. Mr. Edens has led the rapid implementation of over $4.5B integrated platforms systems. Mr. Edens is a plank holder member of the National Cyber Moonshot.
Mr. Edens led high performing organizations within the Special Operations and Intelligence Communities during multiple global deployments including Afghanistan and Iraq as a Senior DoD Intelligence Civilian, DoD contractor, and a US Army, active duty, Commissioned Officer. Under his leadership, activities were awarded 4 Defense Superior Civilian Service Awards (3rd highest award to a DoD Intel Civilian), 14 Bronze Stars, 12 Army Commendation Medals, and 6 Army Achievement Medals.
Cybersage Solutions
Rachel Leidy is the CEO, lead consultant and assessor at CyberSage Solutions, a Michigan-based firm specializing in cybersecurity for the DoD contractors. With over 15 years of experience in implementing and assessing cybersecurity frameworks, Rachel has extensive expertise in NIST SP 800-171, NIST SP 800-53, CMMC, among others. She has a proven track record of guiding organizations through complex compliance requirements, including DFARS 7012. As a CMMC Certified Professional and Assessor, Rachel is dedicated to helping clients achieve robust security postures while efficiently navigating regulatory demands. Her mission is to deliver tailored cybersecurity solutions that empower organizations to thrive in the digital age. Beyond her technical acumen, Rachel’s commitment to practical, cost-effective solutions reflects her dedication to advancing cybersecurity excellence.
Kieri Solutions LLC
As the founder of Kieri Solutions, a C3PAO authorized to conduct CMMC assessments, Amira Armond built a team of expert cybersecurity consultants and assessors who help defense contractors achieve compliance and security. Amira is the chief editor for CMMCaudit.org, a website that provides guidance and resources for the CMMC community. She is a CMMC Instructor and Assessor, holds CISSP and CISA certifications, and has an MBA and BS. Amira is passionate about advancing the cybersecurity and compliance standards for the defense industrial base and sharing her knowledge and experience through speaking and blogging.
Forvis Mazars
Alex is a CMMC Certified Assessor and has experience leading CMMC readiness assessments and remediation advisory, as well as more than eight Joint-Surveillance Voluntary Assessments (JSVA) for defense contractors of various sizes and geographies. Alex has directly provided CMMC assessment services to multiple engineering and design firms. He has also provided system security plan and policy enhancement assistance, including development of Plan of Action and Milestones.
Alex is a CISA and a CISSP. Alex is a graduate of UNC Wilmington, with B.S. and M.S.A. degrees in accounting information systems.
Axiom
Adam Evans is an experienced cybersecurity professional with over 10 years of experience in the MSP industry. During this time, he’s worked in many cybersecurity disciplines ranging from systems architecture, security program management, and incident response. This is where he found his passion for governance, risk, and compliance while specializing in CMMC.
Always up for a challenge, Adam has focused his career on building security programs for the SMB community allowing organizations to achieve their business goals safely. He strongly believes that we all have a role to play when it comes to cybersecurity and can often be found sharing his knowledge – having spoke at MSP Conferences such as IT Nation Secure, MSPGeekCon, & more.
In his role as the Compliance Officer at Axiom, Adam was instrumental in building the organization’s CMMC offerings, recently passing a gap assessment by a C3PAO with a score of 110.