Paul W. Hurley, CISSP

Chief Executive Officer and General Manager

Securicon’s security practices are based on the security assessment methodologies designed and created by Paul Hurley, our Chief Executive Officer and General Manager. With over 40 years of experience in telecommunications, information systems, and cyber security services, Paul’s expertise spans penetration testing and vulnerability assessments, risk analysis, security program management and even physical security.

Prior to joining Securicon, Paul was the Vice President of Professional Services at Riptech, where he cultivated the most skilled security professionals in the industry. Before that, he consulted with customers of Troy Systems and managing Troy’s penetration and vulnerability assessment team. Paul spent the first 20 years of his career in the U.S. Air Force, where he managed communications and performed special duty assignments with the Defense Logistics Agency (DLA) and with the Defense Information Systems Agency (DISA). Mr. Hurley was instrumental in growing the DLANET, and later, migrating it to a DoD-wide network.

Paul’s expertise also extends into public utilities. He has worked with more than three dozen utility clients with over 40 individual networks or System Control and Data Acquisition (SCADA) systems.


Michael Flemming,  ISSAP, ISSMP, CISSP

President, Chief Operating Officer 

As President, Chief Operating Officer, and joint owner of Securicon, Mike Flemming is responsible for operating one of the nation’s premier information security consulting companies. Mike is responsible for hiring and maintaining the best cyber security minds and delivering optimal cyber security solutions to Securicon customers. For over 15 years, he has helped Securicon grow into the thriving, respected company that it is today.

Prior to joining Securicon, Mike worked in various jobs as an information security and cyber security consulting expert; protecting the Department of Defense, the Federal Government, commercial entities, and many of our nation’s most critical infrastructures. From 2000 to 2002, while at Riptech/Symantec, Mike managed teams of highly skilled “ethical hackers” in performing penetration tests and security assessments for Fortune 500 companies and the Federal Government. Many of these assessments focused on the Energy Sector and ensuring the “lights stay on.” Prior to Riptech/Symantec, as a Computer Intrusion Security Specialist, he helped build and establish the newly formed U.S. Postal Service Office of Inspector General’s Computer Intrusion Unit. From 1986 to 1999, Mike worked for the Intelligence Community, performing and managing work in the areas of information assurance, incident response and forensics, network and telecommunications security, application design, software development, database development and programming. Mike was hand-picked to help staff a newly formed elite network intrusion and analysis unit in response to significant computer intrusions targeting the Department of Defense.

 

 


Sean McAllister, CISSP

VP, Risk Management Division

Sean McAllister manages all delivery of Federal Governance, Risk Management and Compliance services to Securicon’s customers. These include both Federal and commercial customers and are in increasing demand, especially with the current stress on compliance with NIST SP 800-171 and Cybersecurity Maturity Model Certification (CMMC).

After graduating from the University of Maryland with a degree in communications, Sean began as a Securicon Cybersecurity Analyst, then earned a promotion to Managing Consultant, and accepted increasing responsibility in Program Management. During this time, he continued his academic studies and earned an M.S. in Cyber Security, also from University of Maryland. Sean’s hard work resulted in customer success, and customers increasingly expanded their demands for the services of his team, which led to Sean becoming the Director of the Risk Management Services Branch. His branch continued to grow through customer demand and he now manages the Risk Management Division through multiple Directors of Risk Management Branches. However, Sean continues to maintain a heavy schedule of direct support to customers.

Sean provides Information Security consulting services to Securicon’s customers through testing, auditing and data analytics, and vulnerability assessment. In addition to this experience, he has assisted clients in creating Disaster Recovery Plans, and Business Continuity and Incident Response procedures. He has worked with numerous Federal clients throughout all stages of the security authorization process, applying the NIST methodology, including investigation, analysis, and documentation as a Federal Information Security Management Act (FISMA) compliance consultant. Sean is also a skilled technical writer and has experience in developing manuals, procedures, and policy documentation. He is always engaged in a number of business development activities including proposal development and responses to Requests for Proposals (RFPs). His skill set was also utilized during the creation of storyboard outlining and content detailing security policy development, security processes and procedures to be implemented during transition and implementation. His development of a regulatory requirement tracking matrix was used as the basis for the work plan to meet NIST/FISMA requirements. His experience in conducting Federal system assessments and authorizations has provided him with extensive knowledge of all stages of the security authorization process and of security documentation, to include System Security Authorization Agreement (SSAA), Concept of Operations, Security Waivers, Plan of Action and Milestones (POA&M), Information System Contingency Plans (ISCP), and System Security Plans (SSP). Mr. McAllister also has experience working with Digital Forensics Tools and Intrusion Detection and Prevention tools.