Garrett Smiley

Chief Information Security Officer Serco, Inc.

Summary of Current Role: Oversight and governance for all information and cyber related compliance, risk management, and security within Serco, Inc. The major areas of focus thus far have included protecting unclassified federal government data on Serco equipment (e.g., DoD CMMC/DFARS 252.204-7012/NIST SP 800-171/171B compliance), helping to maintain our Special Security Agreement (SSA) with the Defense Security Service (DSS), and increasing security for systems under ETSS.Career Summary (Highlights) Curriculum Development – Developed and published dozens of IT and InfoSec related e-learning materials including books, Computer Based Training (CBT)/Learning Management Systems (LMS) courses, exam banks, instructor’s guides, hands-on labs, presentations, and video courses Cyber Scorecards – increased compliance scores for several agencies as much as 79% in just several months’ time Dissertation Chair – helped dozens of students earn their PhDs in business and technically focused areas for the past six years Information Assurance (IA) – Obtained and maintained Authority to Operate (ATO) for hundreds of federal systems Professional Certification – managed seven of the professional certification programs for (ISC)2, including the CISSP, the gold standard in the InfoSec industry Professional Development – earned five degrees, including four IT and InfoSec focused degrees ending with a PhD as well as maintaining roughly 50 professional certifications Program Development – established dozens of programs from scratch for disciplines such as Information Assurance and Supply Chain Risk.