Gib is a seasoned cybersecurity practitioner. He has been working in the information technology industry for more than twenty-five years in both the public and private sector. He is recognized for his expertise in industrial control system security, governance, risk management, and information security compliance where has helped government and commercial customers comply with FISMA, GLBA, HIPAA, and other legal obligations and minimize their risks. Additionally, he led projects involving NERC CIP, NEI 08-09, and security assessments of electric utilities. He is a frequent speaker at cybersecurity and energy conferences on a variety of issues including compliance, continuous monitoring, incident response, smart grid, e-discovery, and many others. He has authored numerous publications, including a book on smart grid security. His efforts have led to exponential growth in new business for his business unit in the energy industry.
Gib also holds a law degree, specializing in information security and privacy issues and electronic discovery. He has been active with the American Bar Association’s Information Security Committee for several years and has contributed to publications relating to PKI, information security liability, and electronic discovery.
Specialties: regulatory compliance, certification and accreditation, electronic discovery, information security law, cloud computing security, incident response, breach notification, data life cycle management and protection, data leak protection, smart grid security, SCADA security, NEI 08-09, NERC CIP, GLBA, ISO 27001, HIPAA, NIST 800-53, DIACAP, Sarbanes Oxley, COBIT, European Data Protection Directive, penetration testing, PCI, continuous monitoring, eGRC, application whitelisting, situational awareness