Practical Cyber Security, Governace, and Privacy Consulting
Founded by E.J. Hilbert- Cyber Security & Privacy Professional and former FBI Cyber and Counterterrorism Agent
20+ years of Cyber and Privacy Expertise
There is little in the cyber security or privacy arena that I have not seen, dealt with or mitigated.
About Us
Our Approach
After over 20+ years working for various firms and companies around the world addressing cyber, security and privacy concerns I have decided to start my own firm. My career history began with teaching high school and shifted into addressing Information Security, Physical Security and Privacy by serving as one of the first FBI Cyber and Counterterror Special Agents, then security strategy entrepreneur, incident responder and builder of corporate governance, compliance and regulatory programs for clients around the world. I have served as the de facto CISO for my employers as well as for clients in advisory roles. I can honestly say there is no cyber threat that I have not seen, fought against, consulted on or remediated.
KCE Cyber is committed to helping businesses ranging from startups and mid-market companies to multi-national Fortune 500 companies identify and address critical cyber and privacy issues in an effective and proactive way.
KCECyber offers the following:
- Cyber Security Governance – Though Compliance is not Security it is a measurable risk indicator. We will assess your companies cyber security posture against industry recognized standards and regulations such as ISO 27000, NIST 800-171, CIS CSC, CMMC and others. The assessment will seek to identify any gaps that may exists and provide clear and practical recommendations to remediate the associated risks to achieve regulatory and contractual compliance.
- Incident Management – When a company suffers a cyber attack or cyber based incident, most thing Incident Response; discovery, containment, eradication and rebuild. Few address the logistics of making that happen. We will serve as the Incident advisor addressing how to work with the IR team, controlling internal and external communication, coordinating the involvement of Law Enforcement and if needed negotiating with the attackers.
- Privacy Program Assessments and Builds – Similar to the security assessment, we will review the current privacy program against the GDPR, CCPA/CPRA and other data privacy regulation regulations to identify actual risks. We will then provide clear and practical recommendations to fix any issues identified. For those companies without a Privacy program in place, we have a proven methodology to follow to build a program.
- Security Awareness and Privacy Training – We will provide in-person or virtual live training of your employees on real cyber and privacy risks from a personal impact perspective. We have provided training to corporations, government entities and universities. Are training method is unique and quite simply fun.
- vCISO or vDPO – The Virtual Chief Information Security Officer (vCISO) or Virtual Data Privacy Officer (vDPO) offering is designed to help companies that can not afford or do not require a full time Information Security or Privacy leaders but have a need to address information security and data privacy concerns. The vCISO/vDPO will work to understand the company’s business model, security and privacy risks, and security posture. We will then build and deploy a strategy to address those risks and concerns. We will also be the advisor to the C-suite on any security or privacy issue related to the company and its products.
- Corporate Advisor – Some companies just need a person to call for understanding and clarification. We are happy to play that role. Just having an expert you can call gives firms and their management piece of mind.
Cyber Security Awareness Training
Cyber Security Readiness Assessments and Audits