Every engagement starts with a conversation, not a proposal. My goal is to understand your organization's specific situation, to understand your risk posture, your regulatory obligations, your team's capacity, and what's keeping leadership up at night. What follows is the range of ways I typically work with organizations.
I work with a small number of clients at a time. That's a deliberate choice. It means every client gets my full attention, not a sliver of it.
Information Security Program Development
Whether your organization is building its first security program or looking to mature what's already in place, I bring practitioner-level depth to every engagement. I built Hamilton College's program from an advisory group model to a comprehensive institutional function — and I know what it takes to do that in resource-constrained, mission-driven environments.
Services include:
Security program assessment and gap analysis (NIST-aligned)
Fractional CISO / vCISO retainer engagements
Policy development and implementation
Cyber insurance readiness preparation
Security awareness program design and phishing simulation strategy
Incident response planning and tabletop exercise facilitation
Data Privacy & Regulatory Compliance
Privacy compliance is not just a legal checkbox. Privacy is an ongoing operational and cultural commitment. I've navigated FERPA, GLBA, GDPR, CCPA, the NYS SHIELD Act, HIPAA, PCI, and more in ways that support organizational mission rather than fighting against it.
Services include:
Privacy program assessments
Fractional Privacy Officer retainer engagements
Regulatory compliance packages (GLBA, FERPA, PCI, HIPAA)
Data mapping and inventory
Vendor data processing agreement review
Privacy policy and notice development
AI Governance, Strategy & Workflow Integration
AI governance isn't just about writing policies. It’s understanding the language around AI. It’s understanding the roles and data. It's about figuring out where AI creates real value, where it creates real risk, and how to navigate both confidently. Drawing on current institutional AI framework leadership and strategy training, I help organizations build governance structures that enable responsible adoption and integrate AI meaningfully into how work gets done.
Services include:
AI governance framework development
AI workflow integration assessment - identifying where AI can reduce burden and improve outcomes
AI risk and vendor assessment
AI acceptable use policy development
Leadership and staff AI literacy workshops
AI strategy facilitation for senior teams
Strategic IT & Organizational Consulting
Technology decisions are organizational decisions. My MBA in Technology Management with a concentration in Human Resource Management, along with formal leadership training and experience, give me the vocabulary and frameworks to help leadership teams think through technology strategy, change management, and workforce planning in ways that connect to institutional mission and financial reality.
Services include:
IT strategic planning and technology roadmap development
Organizational change management for technology initiatives
Board and executive briefing preparation on technology risk
IT leadership coaching and mentoring
Technology vendor selection and RFP support
Project Management & Implementation
As a Certified ScrumMaster and Agile Leader, and having led enterprise-wide implementations at scale (including identity management modernization and MFA rollout for 5,000+ users) I know how to get complex IT projects across the finish line in environments where resources are limited and stakeholders are many.
Services include:
Fractional project management for defined IT initiatives
Project recovery assessment for stalled or off-track engagements
Agile coaching and Scrum implementation
Implementation planning for large-scale technology deployments
Post-implementation review and lessons learned