John is the Director of GridSecurity, GridSME’s cyber security services division. John and the cyber security team assist clients with all aspects of Critical Infrastructure Protection (CIP), as well as general cybersecurity support outside the scope of CIP.
In this role, John manages both day-to-day operations and long-term projects, while simultaneously building out the supporting business processes and strategic goals. In addition to John’s management role, he has hands-on experience implementing security controls in the field, conducting vulnerability assessments in production SCADA environments, network monitoring, and incident response.
From past roles at GridSME, John also has extensive knowledge of NERC compliance, specifically as it relates to Generator Owners and Generator Operators. John has experience assisting renewable energy entities develop and implement compliance programs—these efforts include policy and procedure writing, technical standards support and advisory, training delivery, gap assessments, and audit support. John has knack for pragmatically balancing compliance obligations with security needs by employing a risk-based approach on all of his engagements.