Aaron B.
About Aaron B.
Aaron B. is a Senior Manager at Coalfire, specializing in IT Governance and the Federal Information Security Management Act (FISMA). With a background in IT advisory roles at KPMG LLP and extensive experience in risk assessments and federal regulations, he has developed a strong expertise in evaluating IT controls.
Work at Coalfire
Aaron B. has been employed at Coalfire since 2021, currently holding the position of Senior Manager. In this role, he is responsible for overseeing risk and vulnerability assessments for both commercial and Federal entities. His expertise includes evaluating IT general and application controls, as well as ensuring compliance with Federal regulations. Prior to his current role, he served as a Senior IT Security Consultant at Coalfire from 2016 to 2021.
Experience at KPMG LLP
Aaron B. worked at KPMG LLP for a total of seven years, holding various positions. He began as an Associate from 2007 to 2009, then advanced to IT Advisory Senior Associate from 2009 to 2013. He continued his career at KPMG as an IT Advisory Manager from 2013 to 2016. Throughout his tenure, he gained significant experience in IT governance and compliance with the Federal Information Security Management Act (FISMA).
Education and Expertise
Aaron B. earned his degree in Information Sciences & Technology from The Pennsylvania State University, studying from 2003 to 2007. His educational background laid the foundation for his specialization in IT governance and Federal regulations. He has developed expertise in evaluating IT controls and is knowledgeable about guidance from OMB and the GAO Yellow Book.
Professional Skills
Aaron B. specializes in IT governance and compliance, particularly regarding the Federal Information Security Management Act (FISMA). He is skilled in performing risk and vulnerability assessments and has extensive experience with Federal regulations and guidance. His professional skills include evaluating IT general and application controls, which are critical for ensuring the security and integrity of information systems.