Managing Principal, Information Technology Security

Eugene Dorns, CCSE is an Information Assurance and Cyber Security leader with an extensive background in information security, network security and information technology. Mr. Dorns has over twenty years of experience in Infornation Security/Assurance to include security architecture, penetration testing, security test and evaluation, certification and accreditation, and operational security. He has performed managerial, task lead, and senior engineering roles on multiple security tasks and technical security engineering engagements. Mr. Dorns has led multiple security engagements ranging from operational security support to performing risk and vulnerability assessments. His work has occurred at multiple security classification levels, across intra- and inter-agency boundaries, and has involved full life-cycle security support. Mr. Dorns has performed full life-cycle support at the Defense, Federal and commercial entities. He has performed security services and security design and analysis for enterprise architecture consisting of multiple Wide Area Networks, layered firewall and intrusion prevention technologies, virtual private networks, and end-to-end data encryption.

Mr. Dorns has prior experience performing risk management services for commercial clients to include large financial corporations and Internet Service Providers. The risk management service offering was based on audit techniques using the CoBiT methodology to bridge gaps between the client’s business risk, technical issues, control needs and performance requirements. His audit experience includes compliance audits and substantive vulnerability/penetration testing. Automated and manual vulnerability tools and techniques were employed during the testing portions of his audits.

In addition to his consulting engagements, Mr. Dorns has provided training and instructions on security technologies for practical, hands-on security courses offered by Rockwell University and the USDA Graduate School.

Managing Principal, Information Technology Security

Rasaan James, CISSP, PMP, ITILv.3 is an Information Assurance and Cyber Security leader with an extensive background driving proactive security initiatives in a variety of organizations while participating in the development of progressive security architectures and policy framework solutions which directly support business objectives. For more than 15 years, Mr. James has generated a successful track record in the application of enterprise risk management across industry verticals to ensure the security posture of mission critical systems with various organizations. He has served in a variety of roles to include network engineer, security administrator, project manager, system certifies and system integrator. Each of these roles has contributed to the breadth of experience Mr. James maintains in the areas of Enterprise Information Security Risk Management, Healthcare IT, Payment Card Industry Security, IT Governance, Security Organization Development and Management and Federal Information Assurance and Compliance.

Prior to his role at MCGlobalTech, Mr. James served as Lead Security Compliance and Vulnerability Assessment Engineer for a mid-sized government and commercial consulting firm where he provided IT and applications controls reviews, system security subject matter expertise, security and compliance auditing and engineering in a variety of industries. He successfully lead projects to develop and implement core cyber capabilities including security architecture, enterprise risk management, security and risk assessments, independent verification and validation, FISMA support and program management, software assurance, incident response, continuous monitoring and assessment and authorizations (C&A).

Mr. James is a member of the following industry professional organizations: The Howard County Technology Council (HTC), The Greater Baltimore Technology Council (GBTC), The Northeastern Maryland Technology Council (NMTC), and The Chesapeake Region Technology Council (CRTC). In addition, he is a member of the Maryland Infragard chapter and the Project Management Institute (PMI) Baltimore Chapter.

Featured Insights

Building a better security program

As a business leader,
you are responsible for ensuring the protection of your organization’s assets; this includes its mission critical data, the systems used to store, process and transport them and the employees that utilize and depend on them. To do this in a cost-effective, efficient, and effective manner, you need an enterprise information security management program. A security program provides the framework for establishing, implementing and maintaining an acceptable level of security risk to your organization’s assets and…

Written on Wednesday, 08 October 2014 19:55