Thomas Graham, PhD, Cissp, MBA
About Thomas Graham, PhD, Cissp, MBA
Thomas Graham, PhD, CISSP, MBA, is an accomplished cybersecurity professional and educator, currently serving as Vice President and CISO at Redspin and as Chair of the MIS Advisory Board at East Carolina University. He has extensive experience in information security, having held leadership roles at various organizations including CynergisTek and Sentar Inc.
Current Role at IANS
Thomas Graham serves as Faculty at IANS since 2023. In this role, he provides insights and information to organizations within the IANS network. His expertise in information security and risk management contributes to the educational resources offered by IANS, enhancing the knowledge base of its members.
Professional Experience
Thomas Graham has held various significant positions in the field of information security. He worked at Sentar Inc. as Lead - Mitigation from 2015 to 2018, and at CynergisTek, Inc. as Vice President and CISO from 2018 to 2022. He also served as a Senior Information Security Consultant at CynergisTek, Inc. from 2014 to 2015. Currently, he is the VP, CISO, CMMC Provisional Assessor, and Instructor at Redspin since 2020, and he has been the Chair of the MIS Advisory Board at East Carolina University since 2022.
Educational Background
Thomas Graham has an extensive academic background in information technology and business. He earned a Bachelor of Science in Business Administration (BSBA) with a focus on Management Information Systems from East Carolina University, where he studied from 1997 to 2007. He also holds a Master of Science in Technology Systems with a concentration in Information Security from East Carolina University, completed in 2012. Additionally, he achieved an MBA from East Carolina University from 2008 to 2010 and a Doctor of Philosophy (PhD) in Information Technology - Information Assurance and Security from Capella University, completed in 2021.
Previous Positions and Contributions
Throughout his career, Thomas Graham has contributed to various organizations in the field of information security. He worked at SPAWAR as part of the NAVMISSA Mitigation and Remediation Team from 2007 to 2009 and served as a Systems Security Engineer at NAVMISSA - SPAWAR from 2011 to 2013. He was also a Data Security Lead at Alion Science and Technology from 2013 to 2014 and participated in the HIMSS Cybersecurity, Privacy, and Security Committee from 2021 to 2022.
Key Skills and Expertise
Thomas Graham possesses a diverse skill set in information security, risk management, and cybersecurity. He has evaluated and selected multiple tool suites for risk-based mitigation decisions and designed automated tool-based security solutions for continuous monitoring and zero-trust initiatives. His expertise is recognized in various professional settings, enhancing security protocols and strategies.