Troy has been providing IT consulting services since 2001. He serves clients in a variety of industries, including government entities, communications and media organizations, various critical infrastructure sectors, health care organizations, publicly traded entities, private businesses, and higher education institutions.
Troy has extensive experience managing and leading technology security and compliance assessments using a number of different security frameworks, including the National Institute of Standards and Technology (NIST) Cybersecurity Framework, NIST Special Publication 800-53, ISO 27002, Cloud Controls Matrix, HIPAA Privacy and Security Rules, Payment Card Industry Data Security Standards (PCI DSS), and the HITRUST Common Security Framework, among others. He has extensive experience managing and leading IT security audits and assessments, social engineering campaigns and penetration testing, PCI DSS audits, HIPAA and HITRUST security and privacy assessments, disaster recovery planning, alternatives analysis, network design and implementation, IT co-sourcing, and SOC audits. In addition, Troy frequently leverages his security expertise to help clients determine areas of potential security weakness and infrastructure needs.