CISSP, GSEC, GCED, GCIH, GPEN, Has Successfully Completed the Fundamentals of Auditing for NERC Compliance Training Course
Senior Security Consultant
Professional Experience
Michael Chrisco has more than 20 years of experience providing consultative solutions to business at a variety of levels with more than 6 years of experience geared around security initiatives such as performing cyber vulnerability assessments, risk analyses, cyber security projects, and developing policies & procedures. Mr. Chrisco has experience in IP network design and operations and has strong project management skills. Mr. Chrisco’s excellent client-facing and communication skills have helped to build a record of success using new products and technologies to solve complex business problems and deliver on-time solutions for clients.
Credentials
- 20 years of Information Technology experience
- 6 years of focused experience on security initiatives such as performing cyber vulnerability assessments, risk analyses, cyber security projects, and developing policies & procedures
- Extensive experience in IP network design and operations with strong project management skills
- Has conducted hundreds of NERC CIP Technical Feasibility Exception (TFE) reviews as well as on-site Entity reviews as a Regional Entity Auditor
- Has performed numerous NERC CIP compliance projects to enable readiness for upcoming NERC CIP Audits
- Experience conveying & educating other security professionals on topics such as Hacker Techniques, Exploits & Incident Handling, Network Penetration Testing, Ethical Hacking, Intrusion Detection, Wireless Ethical Hacking, and Cyber Defenses
- Experienced in Perimeter Protection, Web Application Penetration Testing, Advanced Security Essentials – Enterprise Defender, Developing Exploits for Penetration Testers, and Cutting-Edge Hacking Techniques using tools such as Nessus, Mediceploit, and Tipping Point IPS evaluation tools
- Aided in design of a 70+ site WAN implementation
- Installed and monitored “appropriate usage” IPS monitoring system using Vericept’s security monitoring tools
- Assisted HR, Legal, and Authorities in evidence gathering
- Setup, maintained and monitored a distributed packet sniffer system utilizing Network Instruments Observer to monitor and log all network activity and alert on suspicious activity
- Setup and maintained physical security monitoring system using AXIS cameras and IMS equipment at 70 sites
Education and Certifications
- CISSP – Certified Information Systems Security Professional
- GIAC – Global Information Assurance Certifications
• GSEC – GIAC Security Essentials Certification
• GCED – GIAC Certified Enterprise Defender
• GCIH – GIAC Certified Incident Handler
• GPEN – GIAC Certified Penetration Tester
- Applied Science Degree, Electronic Technology – Metropolitan Community College
- Successful Completion of the Fundamentals of Auditing for NERC Compliance Training Course
Former Certifications
• CCNP – Cisco Certified Network Professional
• CCDA – Cisco Certified Design Associate
• MCSE – Microsoft Certified System Engineer
• CNE – Novell Certified NetWare Engineer
