Risk Management Information Technology

William Barnett, Jr. Clearance: Top Secret/SCI

Email: ******@****.*** Last update: 06/23/2025

Phone: 540-***-****

EXPERIENCE SUMMARY

Cybersecurity & IT Governance Professional

Certified expert in IT governance, cybersecurity policy, and risk management with a track record of driving strategic initiatives, enhancing compliance, and optimizing technology solutions. Advisor on cybersecurity and AI policy with 20+ years translating technical complexity into actionable, high-impact guidance for senior stakeholders across defense and civilian sectors. Leader of risk assessments and information assurance teams. I continue to advance my AI governance and risk management skills to help organizations adopt AI and other technologies in responsible and secure implementations.

Core Competencies

IT Governance & Policy Development (CGEIT/COBIT, NIST CSF and FISMA, NIST Standards)

Cybersecurity, Information Assurance & Risk Management (AI, Zero Trust, IoT)

Emerging Technology Scouting and Assessment

AI & Security Compliance Frameworks: NIST, RMF and AI RMF, CSF, GDPR, EU AI Act

AI Governance (training in NIST AI RMF, EU AI Act, bias mitigation, responsible deployment, GenAI Ethics, Credo.AI)

Program Leadership & Performance Management

Strategic relationships management with industry and academia for tech scouting and research direction setting

Enterprise Policy Writing & Technical Documentation

Notable Impacts

Shaped Global Network Operations & Security Center (GNOSC) strategy, Concept of Operations, and Implementation Plan adopted by US Air Force Mission Partner Capabilities Office

Contributed to modernization of compliance documentation for CISA

Authored Enterprise Architecture Whitepaper for United States Postal Service

PROFESSIONAL EXPERIENCE

Cybersecurity Policy Analyst Booz Allen Hamilton March 2025 – June 2025

Supporting US Air Force initiatives to strengthen information system security and regulatory compliance.

Rewrote System Security Plan, aligning documentation with security controls and compliance standards

Collaborated with engineering teams to resolve policy and risk discrepancies, ensuring adherence to DISA STIG requirements

Streamlined audit preparation by improving documentation consistency and security verification processes

Cybersecurity Governance & Policy Consultant Booz Allen Hamilton 2015 – 2025

Led policy development and governance initiatives for federal agencies, advancing cybersecurity maturity and compliance.

Developed Log Management governance and advised on Splunk analytics for behavioral threat detection (Bureau of Fiscal Service)

Developed strategic cybersecurity policy frameworks and enhanced directive compliance and risk management (Department of Veterans Affairs and CISA)

Delivered strategic recommendations shaping agency directives on cybersecurity to balance the need for mission support with requirements for compliance and achieving target metrics

Developed a Global Network and Security Operations Support Center (GNOSC) Strategy, CONOPS, and Implementation Plan (US Air Force MPCO)

Developed guidance documents including, Interconnection Security Agreement, Enterprise Services Management Plan, Incident Handling Plan, Information Security Continuous Monitoring Plan, Account Management Plan, Fast Track ATO Assessment Process, and Vulnerability Management Plan (US Air Force MPCO)

Facilitated cross-functional collaborations to modernize security policies, leading to measurable improvements in efficiency and risk mitigation (Federal Clients)

Delivered high-impact technical documentation, including cybersecurity strategies, implementation plans, and compliance SOPs (Federal Clients)

Innovation Program Lead for Emerging Technology & Cyber Strategy Booz Allen Hamilton 2000 – 2015

Managed technology innovation and cybersecurity strategy development for federal clients.

Led emerging technology assessments, advising on escalation of force, energy, Office of the Future, Oval Office of the Future, AI, cybersecurity tools, and material sciences

Designed governance models to integrate Continuous Diagnostics & Mitigation (CDM) initiatives into federal cybersecurity frameworks

Supported the use and marketing of Booz Allen’s OSIRIS open-source threat intelligence tool based in Splunk and open source tools

Directed high-profile innovation programs, advising executive leadership on strategic tech adoption and engaging staff across the firm in emerging technology discussions

Education & Certifications

B.A., English Literature – George Mason University

Artificial Intelligence Governance Professional (AIGP)

Certified Information System Security Professional (CISSP)

Certified in the Governance of Enterprise IT (CGEIT)

Ongoing Coursework: Coursera – IBM Generative AI Engineering Professional Certificate

Contact this candidate