E. Scott Wright CISSP, CISSR, CCP, CBCP

Scott Wright is the Senior Project Manger for the Morningtown Group where he is additionally responsible for project executive briefings, site readiness planning, resource coordination, information security, policy development, contingency planning, and training programs. With more than twenty years experience in project management, information security, and training, Mr. Wright is well versed in the practical application of project design and implementation. Mr. Wright’s experience ranges from implementing government and commercial projects to teaching at the University level. Mr. Wright also has extensive training experience using the Instructional Systems Design (ISD) model including course analysis, design, development, implementation, and review.

In his career, Mr. Wright has been responsible for managing projects such as developing government and business contingency plans, information system security policies, critical infrastructure protection, security awareness programs, network penetration testing, security risk assessment, threat and vulnerability analysis, and education programs for organizations throughout the World. Clients include the City of Pasadena, Social Security Administration, Cumberland County Government, DaimlerChrysler Corporation (Germany), Alverno Health System, Blue Cross Blue Shield, Booze Allan Hamilton, Brigham Young University, and the Federal Reserve Bank. As a well known consultant in the government and intelligence community, Mr. Wright has managed projects to designed and teach information security courses for the Department of Transportation, State Department, Central Intelligence Agency (CIA), and National Reconnaissance Office (NRO). His information security courses are well respected and have been attended by employees from many corporations around the world including Wells Fargo, Raytheon, General Electric, and SAIC. Mr. Wright is also a frequent contributor to the major information security magazines including Contingency Planning & Management, ZDnet, C/net, Computerworld, Wireless Review, and Yahoo News.

In his project management and information security career Mr. Wright has managed computer security projects for a 2,000-person organization in a classified environment. In this office he supervised computer security departmental supervisors in projects including risk analysis, software security design, media control, developing information security policies, and ongoing operational security.

Mr. Wright has project skills commensurate with PMI CAPM (but not currently certified), is Certified Information Systems Security Representative (CISSR), a Certified Computer Professional (CCP), a Certified Information Systems Security Professional (CISSP), a Certified Business Contingency Planner (CBCP) and holds a Bachelors Degree in Microbiology as well as a Master of Science degree in business management. Mr. Wright is a lead instructor for the CBK (CISSP certification training) course, and a staff trainer for the MIS Training institute. Mr. Wright is the co-author of the “Orange Book” series supplement entitled Trusted Distribution, for the National Computer Security Center, which provides guidelines for secure distributed systems.

Timothy J. Wright, CISSP, CBCP

TIMOTHY J. WRIGHT is a Senior Security Consultant for The Morningtown Group, LLC (MTG), where he provides professional security consulting services. Mr. Wright has over seven years experience in information security (IS) and contingency planning, as well as extensive experience in information technology knowledge transfer implementation. He has held technical training positions in both the private and public sectors.

In his career spanning several network security organizations, Mr. Wright has been responsible for developing disaster recovery plans, security and privacy policies, network penetration testing, threat and vulnerability analysis, and education programs for organizations throughout the United States. His disaster recovery and IS experience with high profile organizations like the National Security Exchange Commission, WellPoint Healthcare, Nikken International, Pennsylvania Association of County Affiliated Homes, Orange County Health Department and CA Health Department brings real world experience and practical knowledge to his consulting and knowledge transfer engagements.

As a consultant with MTG, Mr. Wright has been well vetted in the specific information security needs of the healthcare industry. Last year, in just one month alone, he performed over a dozen onsite HIPAA and IS best practice risk/gap assessment to hospitals across Pennsylvania and Minnesota with excellent reviews from his clients. These assessments included technical reviews and testing of the client’s LANs/WANSs. Mr. Wright has experienced in using a multitude of network scanning tools and is also skilled in performing administrative and physical security reviews.

As a state employee, before joining MTG, Mr. Wright designed and administered the most advanced public education computer network in the state of Utah. Mr. Wright also taught courses for staff and faculty throughout the district on network security and network administration issues. On the University level, Mr. Wright taught several technology courses and was voted “Best Teacher” at the Skills USA National Technology Teacher Training Conference, Kansas City, KS. (2000)

In the private sector as training manager for Ideanetics, Inc., Mr. Wright was responsible for government and private technical training throughout the United States. As networking engineer manager at Ideanetics, his responsibilities also included research and development of new computer network applications.

Mr. Wright is a Certified Novell Administrator (CNA), an A+ Hardware and Software Certified Professional, and has a CompTIA Network and Internet certification. Mr. Wright also holds three Applied Technology Certifications from the Utah State Board of Education and has a Master of Science degree from the School of Technology at Brigham Young University. Mr. Wright is a resource contributor to the Utah State Office of Education’s Design and Development Standards Book and is the author of Avoiding Unsolicited Email an online guide published by MLN.com.

Dan Loder, CISSP, CCSE, CCNA

Dan Loder is a Senior Security Consultant for The Morningtown Group, LLC (MTG). He has extensive experience in performing a wide variety of technical security assessments in a variety of industries, e.g., hospitals, financial, retail, and manufacturing, with very large networks, and with very large Information Technology organizations.

Mr. Loder brings over eighteen years of experience in Information Security Consulting and Network Engineering. In the past he has dealt with security and network infrastructure needs of both large and small organizations. He has demonstrated the ability to find the root problems in complex networks and help solve the problems. Recently Dan has been performing risk assessments and gap analyses to assist healthcare organizations in complying with the standards proscribed under the Health Insurance Portability and Accountability Act (HIPAA). Vulnerability scanning has been an integral part of these assignments, scanning networks with over 13,000 nodes. He has also been involved in network infrastructure projects including designing network upgrades, implementing a WAN upgrade of over 800 branch offices, and migrating networks of merged entities to meet existing corporate standards under change control.

Prior to joining MTG, Mr. Loder was a Network Engineer, for Michelin North America. He has an extensive background in network problem determination and solution implementation. As a consultant, Mr. Loder has had the opportunity to provide consulting services for many Fortune 500 companies, as well as many government agencies. He has been effective at technical knowledge transfer, teaching people of various technical abilities the knowledge and tools they need to perform their jobs. Mr. Loder has also written a wide variety of documentation including network audits and plans for resolving existing network issues, test plans, and training plans and documentation.

Mr. Loder has a Bachelor of Science in Broadcast Engineering, and is a Certified Information Systems Security Professional (CISSP), Certified Checkpoint Security Engineer (CCSE), and a Cisco Certified Network Associate (CCNA).