Ryan Duncan
About Ryan Duncan
Ryan Duncan serves as the Cybersecurity Governance, Risk, & Compliance Manager at ECS, where he has worked since 2020. He holds a Bachelor of Science in Business Administration and a Master of Science in Information Technology, and has extensive experience in cybersecurity and IT project management.
Work at ECS
Ryan Duncan has been serving as the Cybersecurity Governance, Risk, & Compliance Manager at ECS since 2020. In this role, he is responsible for creating and maintaining enterprise-wide cybersecurity program documentation, which includes policies and standards. He also assists in managing the cybersecurity awareness working group and the tabletop incident response working group. His work involves collaboration with the Cybersecurity Compliance team to plan and conduct key stakeholder meetings, ensuring that cybersecurity measures align with organizational goals.
Education and Expertise
Ryan Duncan holds a Bachelor of Science in Business Administration with a focus on Management Information Systems from Chicago State University, where he studied from 2009 to 2012. He furthered his education by obtaining a Master of Science in Information Technology, specializing in Information Security and Digital Forensics, from Middle Georgia State University between 2017 and 2018. His educational background provides a strong foundation for his expertise in cybersecurity governance, risk management, and compliance.
Background
Before joining ECS, Ryan Duncan accumulated significant experience in the field of IT and cybersecurity. He worked at Capgemini as an IT Service Delivery Manager from 2015 to 2019 and as a Senior Cybersecurity Consultant from 2018 to 2020. Prior to that, he was employed at AT&T as an IT Project Manager from 2013 to 2015. His diverse roles in these organizations have equipped him with a comprehensive understanding of IT service delivery and cybersecurity practices.
Achievements
In his current role and previous positions, Ryan Duncan has conducted internal assessments to ensure compliance with various cybersecurity frameworks, including CMMC and NIST 800-171. His contributions to managing cybersecurity initiatives and compliance efforts demonstrate his commitment to enhancing organizational security posture. His involvement in key stakeholder meetings and working groups further highlights his proactive approach to cybersecurity governance.