Brian Burnett

• Works to ensure overall security of NCEMC's IT and OT environment by evaluating organization's adherence to published standards and industry practices
• Develop polices and procedures per desired cybersecurity framework
• Established a formal cybersecurity program
• Manages staff of cybersecurity analysts
• Develops cybersecurity program policies and procedures
• Work directly with CEO and Executive staff on business needs around security
• Assesses compliance with regulatory requirements
• Coordinates security assessments with outside vendors and internal departments
• Work with cross-functional teams to drive security and technical development
• Manages and maintains Incident Response Plan
• Translate strategy into actionable cybersecurity goals
• Stay connected to current trends and develop training for engineers and analysts
• Ensures that IT staff follow cybersecurity practices through audits, security assessments, documentation review, and observation
• Prepares and manages cybersecurity budget
• First cybersecurity leader for organization / Formalized full program

• Provide instruction in an online environment for Cybersecurity and Digital
• Forensics courses
• Interact within discussion forums to assure growing discussion takes place
• Develop assignments for each course taught to keep content fresh - Assist with course development and maintain communication - Support students to ensure success in course work and provide guidance
• Research developing threat trends to keep content current

• Manage the Litigation Hold process - Provide Information Security advisory services to Legal, HR and Privacy teams - Lead Security Investigation - Identify and analyze logs and evidence - Secure and preserve evidence, both physical and logical - Propose and implement improvements to technical security safeguards - Producing relevant management information reports - Contribute to effectiveness of the Information Security Operations team
• Ran a global cybersecurity team across multiple time zones and increased efficiency

• Perform SOC 2 Audit engagements for a wide range of clients and provide
• Cybersecurity insight
• Assist with SOC 1 engagements for financial audit reviews and provide
• Cybersecurity insight - Develop Digital forensic capability from the ground up to develop for service line
• Assist with contracted Fraud investigations
• Conducted cybersecurity audit across multiple sectors assuring compliance

• Work with the Director of IT and the CTO in planning for all information security related initiatives including but not limited to: SOC2 Audit, DLP, Vulnerability & Risk
• Assessments, Third Party Risk Assessment
• Create white papers, policy and procedure documents as needed
• Respond to all customer security and vulnerability audit requests
• Conduct internal IT & Security audits and make security improvement recommendations
• Plan and coordinate IT & Security Disaster Recovery
• Implement and manage physical security solutions for all locations
• Develop and Deploy Internal Security Awareness Training
• Create and Maintain all Information Security Policies and Procedures, as well as perform updates and annual reviews
• Assure compliance with all regulatory concerns that could impact current and future customers
• Correct Identified security gaps and prepare for SOC2 audit
• Research and recommend security tooling for the changing business taking place
• Assured compliance with NYDFS as well as GDPR and other regulatory needs

• Perform digital forensic investigations as needed
• Work directly with corporate legal department assisting with E Discovery - Develop and maintain policies and procedures ensuring best practices
• Assurance compliance and data retention for all regulatory needs
• Train new forensic personnel in all operations and practices
• Develop and maintain mobile forensic capabilities
• Redesigned the digital forensics and cybersecurity program and increased efficiency

• Perform computer forensic analysis in support of E Discovery requests for commercial and federal government contracts
• Assisted on a large-scale commercial project developing chain of custody and evidence handling procedures for all incoming digital evidence
• Developed and implemented mobile forensic practices and procedures for assigned projects
• Perform analysis on laptop and other mobile digital devices, as well as create procedures for changing technologies
• Co-Ran the largest Digital Forensics investigation is U.S
• History
• Computer Crimes Detective, Conducted fraud investigations involving ID theft, credit card and check fraud
• Internet based harassment, stalking etc
• Provide forensic examination of computers and cell phones that are seized for criminal investigations
• Work in a lab environment where various software tools are utilized to image and acquire data from computers, cell phones and other devices that are utilized in a wide range of criminal activities
• Developed and maintained policies and procedures to assure work consistency and continuity
• Developed and ran the departments first digital forensics unit www.enhancv.comPowered by

· Conducted fraud investigations involving ID theft, credit card and check fraud, Internet based harassment, stalking etc.

· Provide forensic examination of computers and cell phones that are seized for criminal investigations.

· Work in a lab environment where various software tools are utilized to image and acquire data from computers, cell phones and other devices that are utilized in a wide range of criminal activities.

· Developed and maintained policies and procedures to assure work consistency and continuity Developed and ran the departments first digital forensics unit Powered

· Worked with state and federal law enforcement agencies for a wide array of investigations.