Jason Bevis - Director of Consulting

Foundstone Role

As Director of Consulting for Foundstone, Jason leads Foundstone’s Professional Services in the Northeastern region.  Jason is a mentor to consultants, assists in the sales process, and oversees client projects to ensure that quality and excellence are provided from start to finish.  Jason is also responsible for developing new business in the region, growing the practice, and providing cutting-edge risk management and security planning services to the Foundstone’s clients.

Experience

Prior to joining Foundstone, Jason was employed by BearingPoint (KPMG) as a senior manager, leading their northeast public services state and local information security solutions. He was responsible for the development of BearingPoint’s security management solution. Jason managed several information security engagements ranging from $50,000 to $4.2 million.

Jason’s security expertise includes development and implementation of programs for security management and governance, awareness, incident response, security policies, business continuity, and disaster recovery planning. He has tactical experience in architecting, designing, and implementing security controls for large-scale infrastructure environments including IDS/IPS, identity management, single sign-on, and vulnerability assessments.  He is also very versed in ISO 27001, SOX, HIPAA, COBIT, ITIL, PHIN, FFIEC, and other compliance regulations and standards.

Notable Accomplishments

As a senior manager at BearingPoint (KPMG) Jason lead their northeast public services state and local information security solutions. He was responsible for the development of BearingPoint’s security management solution. Jason managed several information security engagements ranging from $50,000 to $4.2 million.

Jason previously was the lead for a special national security event. He was selected as the acting CSO working directly with the US Secret Service and Computer Emergency Response Team (CERT) coordination center.  Jason also maintains a security blog at http://infosecalways.com.

Certifications and Training

Jason has completed the following courses and certifications:

• Introduction to the National Incident Management System (FEMA IS-700)
• Introduction to the Incident Command System (FEMA ICS 100)
• Carnegie Mellon SEI: Advanced Incident Handling for Technical Staff
• Carnegie Mellon SEI: Creating a Computer Security Incident Response Team (CSIRT)
• Carnegie Mellon SEI: Managing a Computer Security Incident Response Team (CSIRTS)
• Carnegie Mellon SEI: Information Security Training for Technical Staff (ISTTS)
• SANS Track 2: Firewalls, Perimeter Protection, and VPNs
• SANS Track 4: Incident Handling and Response
• SANS Reverse Engineering Malware, Hands on
• CISSP Certification, 2002; ISSMP Certification, 2004

Professional Education

Jason graduated from the University of Northern Colorado with a B.A. in computer information systems. 

home | services | company | education | resources | contact | privacy policy | site map | McAfee.com