Co-Founder and Managing Principal, Information and Cyber Security

William J McBorrough, MSIA, CISSP, CRISC, CEH is an Information Assurance and Cyber Security leader with an extensive background managing, designing, and implementing medium and large enterprise physical and information technology security solutions and programs. For more than 19 years, Mr. McBorrough has demonstrated success as an administrator, engineer, architect, consultant, manager and practice leader developing cost effective solutions to enable and support strategic and operational goals of client organizations in the areas of Enterprise Information Security Risk Management, IT Governance, Security Organization Development and Management, and Government Information Assurance and Compliance. His experience spans the spectrum from small e-commerce start-ups to multi-campus state and federal agencies to global financial sector organizations.

Mr. McBorrough is also Founder of Next Gen Cyber LLC. Next Gen Cyber is a Cybersecurity Workforce Development Company dedicated to building the next generation of cybersecurity professionals. Next Gen Cyber was formed for one purpose — Bridging the cyber talent gap. He develops programs to help aspiring and current information security professionals gain access to career development coaching, discounted training and certifications, hand-on technical training, conferences and networking events, educational webinars, and job opportunities.

Additionally, his passion for education has driven him to serve on the faculty of various universities including University of Maryland University College, EC-Council University, George Mason University and Northern Virginia Community College where he has conducted research and taught graduate and undergraduate courses relating to cybersecurity, cybercrime, cyberterrorism, and information security and assurance.

Co-Founder and Managing Principal, Technology Management

Morris Cody, CBCP, CCSK, ITIL v3 is an expert in information technology infrastructure management. He has spent more than twenty-five years providing progressive IT leadership, strategic vision, and information technology management experience in diverse industries. His experience exhibits a record of strong achievements, thought leadership and significant contributions. He has been pivotal in developing relationships and synergies across IT organizations and business units, managing vendor relationships, implementing new technologies, developing departmental cost saving initiatives, and promoting innovative IT solutions to address business requirements. Mr. Cody has a passion for mentoring and building very effective senior IT & IS teams. Some of his competencies include, IT organizational leadership, vendor management, infrastructure management, Technology/Business Linkage, and Cybersecurity Policy / Governance. In addition, Mr. Cody develops and manage IS training and awareness programs, address security audit issues, manage the security risk analysis process, implement security policy management and configuration tools. He has been responsible for enterprise IS monitoring, investigation and analysis, identity management, and enterprise IS policies. He has also led major IT infrastructure projects such as data center relocation, data center consolidation, DR hot sites build outs, and implemented DR programs for large organizations and the federal government. He holds a Bachelors of Science in Organizational Management and a Masters of Science in Cybersecurity Policy. He is in Certified Information Technology Infrastructure Library (ITIL v3), Certified Business Continuity Professional (DRI CBCP), and Cloud Computing Security Knowledge Certification (CCSK).

Principal, Governance, Risk and Compliance

Regine Bonneau is a leading expert and practitioner in governance, risk management, compliance, and cybersecurity. Ms. Bonneau believes in order to create an effective governance, compliance and security culture there needs to be an understanding of each aspects of the phenomena in enterprise risk management and governance with insight and commitment at every level of an organization. Her career spans 20 years with a focus on people, process, and technology in the healthcare, financial, legal, government and energy sectors from small to large enterprises.

Ms. Bonneau has been instrumental in helping clients globally implement successful strategies, best practices, and technologies to support GRC programs as well as enterprise risk management, corporate compliance, and corporate responsibility focusing on cyber risk management, security assessments, Third Party Risk management, Vendor Management, and Privacy. She has developed and managed compliance frameworks, policies, and procedures. Directed large-scale, complex, and cross-functional Governance and Compliance Programs involving multiple internal and external stakeholders accountable for program structure and cadence. Developed and overseen annual and periodic risk assessments and the self-assessment program. And provided technical expertise in planning, execution, and leadership of program, projects, and initiatives. Ms. Bonneau brings a wealth of knowledge to our team and vast experience across regulations and compliance requirements.

Ms. Bonneau is a Certified Third Party Risk Professional (CTPRP). She is a speaker, writer and holds leadership roles in several technology industry and non-profit associations. Ms. Bonneau has been featured in the Orlando Sentinel, the Orlando Business Journal, Cyber World, and other prominent publications nationally and internationally. Ms. Bonneau holds a JSM/JD from Thomas Jefferson School of Law, MBA from Keller University and a Bachelor’s Degree from Strayer University in Business and Finance.

Areas of expertise
Governance, Risk management, Cyber Risk Management, Vulnerability Management, compliance, cyber security, Third Party Risk, Vendor Management, systems and technology, product development, anti-money laundering (AML) risk and control, Mergers& Acquisitions, business continuity, Education and Awareness training.

Featured Insights

Written by
William McBorrough 
Building a better security program
As a business leader,
you are responsible for ensuring the protection of your organization’s assets; this includes its mission critical data, the systems used to store, process and transport them and the employees that utilize and depend on them. To do this in a cost-effective, efficient, and effective manner, you need an enterprise information security management program. A security program provides the framework for establishing, implementing and maintaining an acceptable level of security risk to your organization’s assets and…

Written on Wednesday, 08 October 2014 19:55