Paul W. Hurley, CISSP
Chief Executive Officer and General Manager
Securicon’s security practices are based on the security assessment methodologies designed and created by Paul Hurley, our Chief Executive Officer and General Manager. With over 40 years of experience in telecommunications, information systems, and cyber security services, Paul’s expertise spans penetration testing and vulnerability assessments, risk analysis, security program management and even physical security.
Prior to joining Securicon, Paul was the Vice President of Professional Services at Riptech, where he cultivated the most skilled security professionals in the industry. Before that, he consulted with customers of Troy Systems and managing Troy’s penetration and vulnerability assessment team. Paul spent the first 20 years of his career in the U.S. Air Force, where he managed communications and performed special duty assignments with the Defense Logistics Agency (DLA) and with the Defense Information Systems Agency (DISA). Mr. Hurley was instrumental in growing the DLANET, and later, migrating it to a DoD-wide network.
Paul’s expertise also extends into public utilities. He has worked with more than three dozen utility clients with over 40 individual networks or System Control and Data Acquisition (SCADA) systems.
Michael Flemming, ISSAP, ISSMP, CISSP
President, Chief Operating Officer
As President, Chief Operating Officer, and joint owner of Securicon, Mike Flemming is responsible for operating one of the nation’s premier information security consulting companies. Mike is responsible for hiring and maintaining the best cyber security minds and delivering optimal cyber security solutions to Securicon customers. For over 15 years, he has helped Securicon grow into the thriving, respected company that it is today.
Prior to joining Securicon, Mike worked in various jobs as an information security and cyber security consulting expert; protecting the Department of Defense, the Federal Government, commercial entities, and many of our nation’s most critical infrastructures. From 2000 to 2002, while at Riptech/Symantec, Mike managed teams of highly skilled “ethical hackers” in performing penetration tests and security assessments for Fortune 500 companies and the Federal Government. Many of these assessments focused on the Energy Sector and ensuring the “lights stay on.” Prior to Riptech/Symantec, as a Computer Intrusion Security Specialist, he helped build and establish the newly formed U.S. Postal Service Office of Inspector General’s Computer Intrusion Unit. From 1986 to 1999, Mike worked for the Intelligence Community, performing and managing work in the areas of information assurance, incident response and forensics, network and telecommunications security, application design, software development, database development and programming. Mike was hand-picked to help staff a newly formed elite network intrusion and analysis unit in response to significant computer intrusions targeting the Department of Defense.
Vice President for Federal Business Development
Mr. Walters is the VP for Federal Business Development with the proven experience in leading BD strategies and business unit objectives as a structured capture process that forges strong business relationships and highly valued accounts, all supporting technology innovation solutions and partner collaborations. Mr. Walters has built an ecosystem of business relationships over the past 20 plus years providing services and technology solutions through such organizations as JMark Services, Terremark, and Bearing Point; his involvement in industry solutions and knowledge-based architectures is key for supporting today’s agency based cyber-security vulnerability and threat scenarios, risk assessment and mitigation protocols rooted in engineering service for federal Civilian, DoD and Intel communities. Mr. Walters education was through Pierce College in Business Management and continued involvement in cyber-security practices to industry trends and standards.
Sean McAllister, CISSP
VP, Risk Management Division
Sean McAllister manages all delivery of Federal Governance, Risk Management and Compliance services to Securicon’s customers. These include both Federal and commercial customers and are in increasing demand, especially with the current stress on compliance with NIST SP 800-171 and Cybersecurity Maturity Model Certification (CMMC).
After graduating from the University of Maryland with a degree in communications, Sean began as a Securicon Cybersecurity Analyst, then earned a promotion to Managing Consultant, and accepted increasing responsibility in Program Management. During this time, he continued his academic studies and earned an M.S. in Cyber Security, also from University of Maryland. Sean’s hard work resulted in customer success, and customers increasingly expanded their demands for the services of his team, which led to Sean becoming the Director of the Risk Management Services Branch. His branch continued to grow through customer demand and he now manages the Risk Management Division through multiple Directors of Risk Management Branches. However, Sean continues to maintain a heavy schedule of direct support to customers.
Sean provides Information Security consulting services to Securicon’s customers through testing, auditing and data analytics, and vulnerability assessment. In addition to this experience, he has assisted clients in creating Disaster Recovery Plans, and Business Continuity and Incident Response procedures. He has worked with numerous Federal clients throughout all stages of the security authorization process, applying the NIST methodology, including investigation, analysis, and documentation as a Federal Information Security Management Act (FISMA) compliance consultant. Sean is also a skilled technical writer and has experience in developing manuals, procedures, and policy documentation. He is always engaged in a number of business development activities including proposal development and responses to Requests for Proposals (RFPs). His skill set was also utilized during the creation of storyboard outlining and content detailing security policy development, security processes and procedures to be implemented during transition and implementation. His development of a regulatory requirement tracking matrix was used as the basis for the work plan to meet NIST/FISMA requirements. His experience in conducting Federal system assessments and authorizations has provided him with extensive knowledge of all stages of the security authorization process and of security documentation, to include System Security Authorization Agreement (SSAA), Concept of Operations, Security Waivers, Plan of Action and Milestones (POA&M), Information System Contingency Plans (ISCP), and System Security Plans (SSP). Mr. McAllister also has experience working with Digital Forensics Tools and Intrusion Detection and Prevention tools.
Harry Regan, CISSP, CISM, PSP
Technical Director, Security Services
Securicon’s Technical Director of Security Services, Harry Regan, is a security, Information Technology (IT), and operations professional with over 30 years of commercial, industrial, federal, and defense experience. He manages the Securicon commercial security consulting team and is responsible for overseeing the successful execution of commercial engagements.
In addition to enterprise security environments, Harry has extensive experience in industrial and process control systems protection, cyber and physical security programs, and operations in critical infrastructure organizations and for regulated industries. Harry has direct experience in defensive and offensive security techniques; technology-based countermeasures; System Control and Data Acquisition (SCADA) systems; building and industrial infrastructure systems; NERC Critical Infrastructure Protection (NERC-CIP); and a number of regulatory compliance programs. Throughout his career, he has gained subject-matter expertise in areas such as emergency response, disaster recovery and business continuity planning, and regulatory compliance.
Harry has been featured in interviews on CNN and NBC regarding a variety of security technologies and has been a prolific speaker at the RSA Security Conference, DEFCON, DerbyCon and other security conferences. His insight and knowledge allow Securicon to successfully deliver security services to our customers on a daily basis.