Tom Coffy - Cisa

Tom Coffy is a highly experienced professional in the field of information security. Tom has held various roles in different organizations, showcasing their expertise and knowledge in the field.

Currently, Tom is working as the Chief Information Security Office - Contractor Assurance Lead at CONSOLIDATED NUCLEAR SECURITY, LLC. In this role, they are responsible for ensuring the security of the organization's information and systems.

Prior to their current position, Tom worked as a Senior Cybersecurity Analyst at the University of Tennessee from 2015 to 2022. Tom directed information security operations, led incident response, and managed the SIEM system across all campuses. Tom also created the first formal information security program for the university, incorporating various frameworks and standards.

Before that, Tom worked as a Senior Security Engineer at TeamHealth from 2014 to 2015, where they performed internal audits, vulnerability analysis, and managed the SIEM system. Tom also played a role in reverse-engineering malicious code and documents.

Tom has also worked at Scripps Networks Interactive as an Information Systems Security Engineer, where they advised the company on risk mitigation and IT security solutions. Tom supported M&A transactions and positioned the IT Security function as a partner to the business.

Additionally, Tom has experience in the government sector, having worked at the United States Department of Defense as a Senior Information Assurance Engineer, and at NASA as a Senior Engineer of IT Security. In these roles, they designed, implemented, and maintained security tools and processes and mentored systems engineers in security engineering principles.

Earlier in their career, Tom worked at Parrish Medical Center as a Network Manager Information Systems and at Excell Agent Services as a Technology Consultant. Tom also has experience as a Senior Network Engineer and Project Manager at Agilent Technologies, and as a Network Administrator at SAFCO.

Overall, Tom Coffy has a diverse range of experience in information security, having worked in various industries and organizations. Tom'sexpertise includes incident response, vulnerability management, compliance, and program development, among others.

Tom Coffy holds a Master's degree in Information Technology Management from Webster University and a Bachelor of Science degree in Information Technology from Barry University. Tom has obtained certifications such as Certified LogRhythm Security Analyst from LogRhythm in 2020 and CRISC from ISACA in 2010. In addition, they also hold certifications in CISA, CISM, CISSP from ISACA, and FITSP from FITSI Foundation.