HALOCK SECURITY LABS
Information Security Advisors
HALOCK is the only information security consulting advisory firm that combines the thought leadership and diagnostic capabilities of the premiere management consulting firms with deep technical expertise and a proven ability to get things done. Unlike other information security firms, HALOCK is both your strategic and technical security partner, demonstrating excellence in both analysis and execution.
HALOCK prioritizes and optimizes security investments by applying just the right amount of security to protect critical business assets and to satisfy compliance requirements and corporate goals. We call this Purpose Driven Security®.
Your business is like no other. Let HALOCK custom design security solutions that are just right for you.
HALOCK is a U.S.-based information security consultancy that is privately owned and operated out of its headquarters in Schaumburg, IL since 1996. From mid-sized to the Fortune 100, HALOCK’s clients span a variety of industries including financial services, healthcare, legal, education, energy, SaaS/cloud, enterprise retail, and many others. HALOCK strives to be your security partner, providing both strategic and technical security offerings. HALOCK combines strong thought leadership, diagnostic capabilities, and deep technical expertise with a proven ability to get things done. HALOCK helps clients prioritize and optimize their security investments by applying just the right amount of security to protect critical business assets while satisfying compliance requirements and corporate goals.
HALOCK Security Labs and CIS (Center for Internet Security) have co-developed the CIS Risk Assessment Method (RAM) to help organizations find their balance between security and business while evaluating and implementing the CIS Controls. CIS RAM helps organizations define their acceptable level of risk, and determine whether their use of the CIS Controls is risk-appropriate. This new method is the first to be based on the Duty of Care Risk Analysis Standard (DoCRA) so it helps organizations evaluate cyber risk in a way that is clear to legal authorities, regulators, executives, lay people, and security practitioners.
CIS RAM is an information security risk assessment method that helps organizations design and evaluate their implementation of the CIS Controls. CIS RAM provides instructions, examples, templates, and exercises for conducting risk assessments. And because CIS RAM is based on the DoCRA Standard, its risk assessments meet the requirements of established information security risk assessment standards and demonstrate whether safeguards are “reasonable” and “appropriate” as regulators and judges often require.
HALOCK partners with organizations looking to transform their business through proactive security measures to stay ahead of the threat landscape. If you are looking for an information security advisor that can diagnose and treat the risks that are threatening your business, contact a HALOCK security consultant today. We can help you achieve your information security goals.
Jim Mirochnik, CEO & Senior Partner
Jim Mirochnik is a certified PMP, QSA, ISO 27001 Auditor. Jim is a Board Member of The DoCRA Council and a contributing author of the CIS Risk Assessment Method (RAM). He is an innovative business leader with over 25 years of technology and management consulting experience. Jim holds a double-concentration MBA in Finance and Marketing from the University of Chicago Booth School of Business. He has architected and been accountable for large-scale technology programs exceeding $100 Million in budget.
Terry Kurzynski, Founder & Senior Partner
With a background in security, networking, application development, audit, project management, and consulting, Terry has a unique skill set in providing strategic advice to clients. Terry is a Board Member of The DoCRA Council and a contributing author of the CIS Risk Assessment Method (RAM). Terry is a CISSP, CISA, PCI QSA, and ISO 27001 Auditor with over 25 years of experience in IT and Security Consulting. He Graduated from the University of Wisconsin with a B.S. in Computer Science.
David Andrew, Partner and COO
David is a PMP and ISO 27001 Auditor with has over 20 years of information technology experience with 10 years in information security-related fields. He is a partner and COO of HALOCK Security Labs and a Board Member of The DoCRA Council. David is a contributing author of the CIS Risk Assessment Method (RAM). David is responsible for leading complex engagements, performing risk assessments, policy development, risk and audit methodology creation, and security awareness training. David has a Bachelor of Arts in Cognitive Science from Northwestern University.
Chris Cronin, Partner & Principal Consultant
Chris Cronin is an ISO 27001 Auditor and has over 15 years of experience helping organizations with policy design, security controls, audit, risk assessment and information security management systems within a cohesive risk management process. Chris is Chair of The DoCRA Council and the principal author of CIS Risk Assessment Method (RAM). He is a frequent speaker and presenter at information security conferences and events. Chris earned his Masters of Arts from Case Western Reserve University.
Ryan Bentley, Partner
Ryan is a PMP, QSA, CISSP, CISA, CEH, CEI and leads the vulnerability assessment services practice for HALOCK Security Labs. He has conducted thousands of vulnerability assessments for companies of all sizes across many industries. Ryan has over 19 years of practical experience within the information security field, which includes 15 years of professional services.
3,756 total views, 7 views today