Mr. Tom Conkle is the Commercial service lead at G2, Inc. Through his 17 years of experience as a cybersecurity engineer, Tom has assisted organizations in assessing their cybersecurity effectiveness through formal security assessments using industry standards such as NIST SP 800-53, ISO 27001, HIPAA, SOC2, and the Cybersecurity Framework. Tom has assisted dozens of commercial and governmental organizations in implementing security requirements to address risk within the cybersecurity program. Tom is the co-author of ISACA’s guide for implementing the NIST Cybersecurity Framework, a book which assists organizations in connecting the principles of the Cybersecurity Framework and COBIT 5 to achieve an effective cybersecurity program. Additionally, he was a principle architect and subject matter expert in the development of the CMMI Cybermaturity Platform, a self-assessment SaaS tool that helps organizations identify a risk informed cybersecurity program and track their progress as the program is implemented.
Mr. Greg Witte, a Senior Security Engineer, supports both federal and commercial clientele, including extensive work as an Associate for the NIST IT Laboratory. Drawing on nearly 40 years' IT experience, including 25 in information security, Greg has helped to author and expand use of many recognized business and security frameworks such as the NIST Cybersecurity Framework, the NICE Workforce Framework, ISACA's COBIT, CMMI’s Cybermaturity Platform, and the Baldrige Cybersecurity Excellence Builder. As an architect of these models, Greg helps to shape and implement the concepts foundational to building a high-level structure for fostering communications, documenting good cybersecurity practices, and applying roadmaps for continuous improvement.
Ms. Kelly Hood is a cybersecurity engineer at G2 Inc. Kelly supports organizations across sectors to develop and implement strategies to manage the cybersecurity risks to their business. Kelly also works with organizations to meet cybersecurity best practices, controls, and standards including the NIST Cybersecurity Framework, SP 800-53, SP 800-171, ISO 27001, and many others. As a member of the Cybersecurity Framework team at NIST, Kelly also assists in the evolution and outreach of the Cybersecurity Framework. Recently, Kelly has supported the CMMI Institute in their development and expansion of the CMMI Cybermaturity Platform. The patent pending approach she helped develop for CMMI translates cybersecurity risk to cybermaturity goals and identifies mitigation strategies to help organizations improve their cybersecurity capabilities.