PDF of resume Available: HERE

Senior Cyber Security Strategist Resume / CV

Dedicated strategist bridging the business/cyber security barrier through clear strategic vision backed by a solid technical foundation

Facilitator, educator, incident responder, and analyst with a particular talent for reframing problems and with a history of both substantial responsibility and public visibility

Contributor to the information security community for 14 years and an active participant in national critical infrastructure cyber security initiatives for 7 years


  • Presently assisting a large, well-known government financial services organization develop a sector-wide cyber security risk management framework and maturity model
  • Presently teaching a recurring class to executives and practitioners on “Reframing cyber security for better effect” using 10 years of personally developed content
  • Recent participant in several NATO/internationally sponsored initiatives to minimize instability in cyber space – including developing confidence building measures (CBMs) and international norms – resulting in an Atlantic Council report citation on these topics
  • Significant experience improving the US government critical infrastructure cyber security public/private partnership relationship with the transportation industry (including Pipelines)
  • Expert at briefing high-profile stakeholders (in the government, industry, and media) and coordinating successful conclusions to emergency situations
  • Past technical experience includes national control systems cyber incident response (ICS-CERT/INL/NCCIC/DHS), network monitoring R&D, data visualization, large-scale data analysis, and SOC operations leadership
  • Significant public speaking experience including, most recently, talks at Digital Bond’s S4x16, the Society of Information Risk Analysts (SIRA) conference, and at Cybersec EU in Krakow, Poland
  • Former clearances include Secret at TSA (approx. 2011), TS/SCI by DHS (2009) via DOE Q clearance perm cert, and a DoD Top Secret (approx. 2003-2005)


Energysec/NESCO | 07/2012 – Present

Senior Strategist

Largely self-directed development and delivery of a non-profit organization’s educational and strategic cyber security products, services, and capabilities by engaging in activities such as:

  • Participating in formal national and international dialogues on critical infrastructure and global cyber security (see “Speaking Engagements”, below)
  • Teaching a “Cybersecurity Framework Theory and Application” class based on 10 years of my own experiences and which uses the new NIST Cybersecurity Framework and the DOE Capability Maturity Model (C2M2) as the basis for examples
  • Extensive participation in all six of the NIST Cybersecurity Framework Development Workshops across the country. Was invited by name to the White House release event
  • Facilitating a series of workshops to create internal report on Small & Medium electric utility Incident Response needs using the NIST Framework and NERC CIP as supporting context.
  • Supporting the National Electric Sector Cybersecurity Organization (NESCO) until program end

TSA | 11/2010 – 07/2012

National Cyber Critical Infrastructure Protection Transportation Lead (GS-14)

Enhanced TSA’s cyber security role with private industry as the Transportation Sector Specific Agency (SSA) under the National Infrastructure Protection Plan (NIPP)/Homeland Security Presidential Directive 7 (HSPD-7). Responsibilities and successes included:

  • Developed strategic consensus on cyber security topics across multiple organizations, industries, stakeholder seniority levels, and backgrounds
  • Facilitated identification, prioritization and coordination of federal cyber security activities within transportation sector
  • Designed and gained support for implementation of subsector-wide risk management program
  • Promoted and coordinated cyber security awareness of owners, operators
  • Provided program level guidance for Critical Infrastructure protection to transportation and cross-sector communities and encouraged private industry participation in non-mandatory initiatives
  • Facilitated development of sector information sharing programs and mechanisms
  • Developed agendas for and co-lead monthly national Transportation Systems Sector Cybersecurity Working Group (TSSCWG)
  • Provided substantial input into and direction of the first ever national transportation cyber security exercise and co-organized the 2011 Cyber Security in Transportation Summit with 300+ attendees from private industry and government and 30+ international speakers from hackers to senior government officials such as the CIO of the CIA
  • Provided cybersecurity training, outreach, and education to TSA’s entire federal workforce (50,000+), with a focus on TSO’s stationed at airports throughout the country
  • Winner of TSA’s “Honorary Award” – the highest award given by the agency

Kingfisher Systems – TSA Contract | 08/2010 – 11/2010

National Critical Infrastructure Cyber Security Expert

Contracted to enhance TSA’s cyber security role with private industry as the Transportation Sector Specific Agency (SSA) under the National Infrastructure Protection Plan (NIPP)/Homeland Security Presidential Directive 7 (HSPD-7)

Securicon (1099) | 06/2010 – 07/2010

Control Systems Incident Consultant

Short 1099 contract to Securicon to investigate customer control systems (SCADA) incident. Utilized technical log analysis, scripting, visualization, presentation, and control systems security knowledge to determine potential root cases and present to executive leadership.

Idaho National Lab (INL) | 09/2009 – 06/2010


Supported Industrial Control Systems CERT (ICS-CERT) at the DHS National Cybersecurity and Communications Integration Center (NCCIC). Responsibilities included: responding to and analyzing control systems (SCADA) related incidents, providing situational awareness in the form of actionable intelligence, coordinating the responsible disclosure of vulnerabilities/mitigations, sharing and coordinating vulnerability information and threat analysis through information products and alerts, contributing to ICS-CERT & NCCIC CONOPS, and providing ICS-CERT briefings to senior cyber leadership of DHS, FBI, DOD including ongoing investigations and onsite incident response efforts.

KCG – TSA Contract | 09/2006 – 09/2009

National Critical Infrastructure Protection Cyber Security Expert

Contracted to enhance TSA’s cyber security role with private industry as the Transportation Sector Specific Agency (SSA) under the National Infrastructure Protection Plan (NIPP)/Homeland Security Presidential Directive 7 (HSPD-7)

Senior Enterprise Information Security Architect

Contracted to utilize Federal Enterprise Architecture (FEA) and SABSA Enterprise Security Architecture knowledge to provide NIST and FISMA-driven security policy, engineering, and compliance services to TSA.

Lockheed Martin | 07/2006 – 09/2006

SOC Shift Lead

Contracted to use ArcSight SIEM correlation and SOC CONOPS experience to enhance the FBI’s internal SOC team. Work with ArcSight administrator, ESOC lead, and other team members to develop ArcSight rules, channels, and analysis methodology. Oversee second-shift contractors and provided senior level analysis escalation.

Netsec | 10/2003 – 07/2006

Correlation Architect, CSIRC Lead, Security Engineer, SOC Analyst

Hired by NetSec MSSP (now a part of Verizon Business) as a senior SOC analyst. Repeatedly rewarded for outstanding analysis capability and then promoted to multi-disciplinary Tier 3 team charged with improving the SOC through technology, process, training, and customer service. Specialized in developing analysis methodology, advanced automated data correlation and filtering techniques, and leading development/selection and integration of custom tools. Also led client operational relationship with large government Incident Response Coordination contract.

Perot Systems | 10/1998 – 10/2003

IT and Desktop Engineer

Provided desktop, IT, development, system administration to large IT consulting firm in multiple locations throughout the US, including an Army Depot location tasked with neutralizing VX nerve agent.


  • Identified by Tripwire as one of the top 10 Rising Stars and Hidden Gems in security education (2015)
  • Hiked 300 miles of the Appalachian Trail in late 2014
  • Chairman of the Board of a 501c3 “Art” non-profit (Art Outlet, 2007-2008)



  • Digital Bond S4x16, Into the Wilderness of ICS Security, FL


  • SIRAcon (Society of Information Risk Analysts), Anecdotally Yours, MI
  • Cybersec EU, The Role of Nations in Cyber Conflict, Krakow, Poland


  • Suits & Spooks in New York, Building More Effective Public/Private Partnerships, NY
  • MIT Round Table, Building International Cybernorms, MA
  • Atlantic Council Workshop, International Cyber Security Confidence Building Measures, Stockholm


  • FIRST Energy Summit, Small & Medium Sized Utility Cybersecurity Considerations, VA
  • B-Sides DC, Critical Infrastructure Protection Panel, DC
  • ISSA-DC, Introduction to National Cybersecurity and Critical Infrastructure Protection, DC
  • Florida Natural Gas Association, Cybersecurity Panel, FL
  • Energysec Summit, Using Frameworks to Enhance Security and Compliance, CO
  • Source Boston, Cyber Momentum – Understanding & leveraging the National Dialogue, MA


  • Cyber Security in Transportation Summit, Moderated Risk Management Panel, DC


  • NATO – Emerging Security Challenges, Cyber Security Isn’t Really Cyber, Tbilisi
  • B-Sides Chicago Hacker Con, Human Attribute Cyber Security, IL


  • Energysec Summit, Executive Responsibility in Cyber Security, CO, 2010
  • DoD/JTF-GNO, Data visualization for network security, DC, 2005
  • Recon, Massive Data Visualization for the purposes of monitoring IDS, Montreal, 2005
  • NEU ACM, Massive Data Visualization for the purposes of monitoring IDS, MA, 2005
  • Rubicon Hacker Con, Aggressive Honeypots, MI, 2003


  • Wrote software which makes art out of brainwaves recorded by consumer EEG-reading headset (2010)
  • Wrote open-source software implementing completely new method for visualizing network packet captures (Pkviz, 2008)
  • Large data security visualization methodologies ultimately used by ArcSight in developing their Interactive Discovery tool (2004/6)
  • Conceptualized and managed the development of a statistical anomaly detection & correlation add-on to ArcSight SIEM using long distance telephone fraud detection engine (2004/5)
  • Conceptualized, developed, used, and presented a groundbreaking open-source active-response honeypot security software (Bait and Switch, 2003)


Jack Whitsitt | @sintixerr | sintixerr@gmail.com | 703-409-9366 | Washington, DC