1.7K
Downloads
112
Episodes
Welcome to our podcast channel! On this site, our content deals with Cybersecurity. Our topics have ranged from cloak and dagger stories of Penetration Testing all the way to talking about the consequences of not being with the GDPR and the CCPA. We interview only top level experts, ranging from CIOs to CISOs to other Cybersecurity experts whom have been in the business for decades. Our recording studio is BiometricNews.Net, Inc., and it offers an entire range of podcasting services. Make sure to join and contribute to our Cybersecurity Forum at: www.cybersecurityforum.fm
Episodes
Friday May 22, 2020
Find Out About The Importance & Ramifications Of The CMMC
Friday May 22, 2020
Friday May 22, 2020
Greg Johnson is Founder and CEO of Webcheck Security, a world-class penetration testing and cyber services company.
He loves people and providing solutions with integrity. A BYU graduate, Greg began his technology career in the days of 64k, 5.25” floppy drives and Mac 128k’s. As the industry evolved, Greg moved into the cyber arena and learned a great deal about cyber controls, compliance, data breach and response, and in 2016 earned his PCIP or PCI Professional designation.
In his experience as VP of Business Development with A-LIGN, a multi-national cyber audit and certification firm, Greg consulted, guided and educated dozens of clients in compliance guidelines and certifications for standards such as:
- PCI
- ISO 27001
- SOC 1 and SOC 2
- GDPR
- FISMA
- FedRAMP
- HIPAA
- NIST
Greg also has worked on multiple executive teams over the years and been with notable companies such as WordPerfect/Novell, Global Access, Lancera, and Secuvant Security.
Also with us today, and perhaps the protagonist in today’s show, is Lori Crooks
Senior Consultant/PM for Webcheck and Founder of Security Compliance Solutions, Inc. d/b/a LB Compliance
Lori’s deep background includes having managing security and assurance assessment teams at growing cyber firm, A-LIGN, including but not limited to PCI, FISMA, FedRAMP, Penetration Tests, HIPAA, ISO 27001, SOC1 and SOC2. She also served as a Center of Excellence lead for PCI, FISMA and FedRAMP, as well as conducting quality reviews of HIPAA, ISO 27001, SOC1 and SOC2 reports. For a DoD contractor, Lori has:
- Developed the Governance, Risk and Compliance Program based on NIST 800-53 and 800-171
- Written the Information Security Policy, and associated policies/procedures
- Performed DFARS/NIST 800-171 self-assessments on all sites and hubs
- Worked closely with Project Management Office and Infrastructure & Operations Team to gather audit evidence and develop Plan of Action of Milestones (POA&Ms)
- Evaluated all evidence provided to meet the NIST 800-171 controls
- Created the System Security Plan (SSP) Template for NIST 800-171
- Assisted in completing the first SSP for the DoD contractor
- Performed DoD contractor’s first annual risk assessment
Lori has broad and deep knowledge of multiple cyber frameworks and subscribes to the Webcheck Way – meaning helpful customer communication and professionalism in all documentation and consulting.
Comments (0)
To leave or reply to comments, please download free Podbean or
No Comments
To leave or reply to comments,
please download free Podbean App.