49. How to become a NIST Cyber Security Professional

Patrick is a consultant and educator with more than 30 years of experience helping organizations adopt and adapt best practice frameworks.

His areas of expertise include IT service management, governance, information security, project management and Agile practices, and organizational change management.

Patrick holds certifications as many disciplines including ITSM, governance, project management, Agile, etc.  He is an expert speaker at many national and global industry events, and has authored a wide variety of published articles, including being host of the Making IT Work vlog on YouTube.

Patrick lists his proudest achievement as having had the privilege of working with more than 400 organizations to help them get better results using best practice framework...and having the bruises to prove it!

• 3x business owner delivering consultancy, training and professional development opportunity to organisations and individuals worldwide.
• Owner of Mile House Consulting Ltd, delivering training and consultancy to organisations throughout the UK and beyond.
• Owner of CySec Professionals Ltd, an APMG International Accredited Training Organisation, NCSC Certified Training Provider and CMMC-AB Approved Licensed Training Provider. Through its wholly owned professionals, graduates and academy focused websites as well as growing and engaged global social media networks, CySec Professionals Ltd aims to enable opportunity, inspiration and education for existing and future cybersecurity professionals worldwide.

Steven's proudest achievements?

• There are many, given my personal background but the achievement of a self-funded MSc was something I promised myself when younger which has been realised.
• Creating two successful businesses that enable me to give back to underprivileged and underrepresented groups in cyber, and military and law-enforcement veterans as well as sponsorship for local sports clubs and provision of educational tools to local primary schools has to be up there as well.

Dave is currently the Executive Director of the DVMS Institute LLC. The institute’s mission is to enable organisations to create, protect, and deliver digital business value through a curated portfolio of content and programs that bring value to its member stakeholders. Dave's role is to work with the industry’s leading practitioners in risk management, service management, cybersecurity, assurance, and business leadership to produce industry-leading guidance and programs that will enable organisations to survive and thrive in a digital business world.

• Qualified in Submarines, US Navy July 1971
• itSMF International, 2001 Innovative Product of the Year
• Fundamentals of Adopting the NIST Cybersecurity Framework, April 2022 TSO

Proudest achievement?

• One moment that stands out for me is when I qualified submarines. I often say I spent “my formative years” on submarines because that experience had such a profound impact on my professional development and career.

David is an experienced software developer and consultant with expertise in management, agile methodologies, and change management. His unique perspective on team building, organizational change, and risk identification is informed by his military background. He is the lead author of two books, Fundamentals of Adopting the NIST Cybersecurity Framework and A Practitioner’s Guide to Adapting the NIST Cybersecurity Framework, both published by TSO. In his role as the content architect of the DVMS Institute, he actively works with subject matter experts to develop relevant content for organizational leaders and practitioners.

David is an NCP (NIST Cybersecurity Professional) Practitioner and a NCP Specialist. 

David's proudest professional achievement includes pre-dating ITIL version 1, rescuing an 18-month behind-schedule project, finishing it in 8.5 months using what today would be recognized as agile and ITIL. On a personal level, David believes that his proudest achievement is setting off his daughters and their families on the right path, a joy which he shares with his wife. 

With 15+ years in senior operational security roles, Richard is a cyber expert with experience in the tech, defence, and financial service industries, and government.  Member of, and advisor to, industry and government cyber security bodies. Richard works with customers to build effective and successful learning solutions tailored for business needs, helping to solve business problems.

Richard designed and architected the ‘award winning’ UK NPCC National Cybercrime Programme.

Richard's career highlights include working to secure the UK’s first nationwide digital transformation across UK Air Defence infrastructure. Led multiple large scale critical national infrastructure (CNI) security programmes, including the design and delivery of the UK north smart metering solution. Designed and architected multiple cyber learning solutions for QA clients.