Resume

Bill Weber


Cyber risk doesn’t speak one language—I do. I help organizations bridge the gap between boardroom expectations and backend realities, translating cybersecurity into something leaders can act on (and auditors can’t poke holes in). Whether you’re navigating CMMC, modernizing a legacy stack, or building a global security program from scratch—I turn risk into clarity and compliance into competitive advantage.

Trusted by Fortune 500s, defense contractors, research powerhouses, and high-stakes clients, I deliver executive-ready strategy with hands-on technical depth—equal parts fixer, advisor, and decoder ring. My superpower? Knowing who to talk to, what to say, and how to get it done.

Let’s make cybersecurity make sense—and make progress.

Professional Experience

Cyber Foundry, 2017 – present
Founder (President) / Chief Information Security Officer (CISO)

  • Designed and scaled a boutique cybersecurity advisory practice, delivering virtual CISO services that align security strategy with business objectives—enabling clients to move securely into the cloud, modernize operations, and prepare for audits.
  • Led deployment of an enterprise-grade third-party risk management program for a large public-sector organization, reducing vendor-related vulnerabilities and streamlining compliance workflows.
  • Directed incident response and root-cause investigations across multiple breach engagements—accelerating threat containment and preventing repeat incidents.
  • Architected and implemented risk-based security frameworks for high-value businesses, embedding proactive controls that improved visibility, reduced exposure, and strengthened executive confidence in digital risk management.

Ultra Maritime, 2024 – present
Global Chief Information Security Officer (CISO)

  • Built a Global Cybersecurity Program: Spearheaded the design and rollout of a unified security framework across North American and international operations, ensuring consistent risk management and policy enforcement.
  • CMMC Compliance Leadership: Developed and executed a comprehensive roadmap for Cybersecurity Maturity Model Certification (CMMC) readiness—establishing policies, procedures, and audit-readiness processes to meet DoD supplier requirements in the U.S.
  • Security Operations Center (SOC) Creation: Founded a 24×7 SOC staffed with skilled analysts, deploying SIEM and advanced monitoring tools to detect, investigate, and respond to threats in real time.
  • Architecture & Engineering Practice: Assembled and led a cross-functional team of security architects and engineers to modernize network segmentation, implement zero-trust principles, and secure cloud and on-premise environments.
  • GRC Function Establishment: Launched a Governance, Risk & Compliance organization—developing risk assessment methodologies, policy management processes, and executive dashboards to provide clear visibility into security posture and drive continuous improvement.

Penn State University Applied Research Laboratory, 2023
Chief Information Security Officer (CISO)

New York University, 2022
Director of Detection, Response and Forensics (DCISO)

Massachusetts Institute of Technology (MIT) Lincoln Laboratory, 2018 – 2020
Cyber Security Sector Manager (CISO)

eSentire, 2016 – 2018
Principal Security Strategist / Virtual Chief Information Security Officer (vCISO)

Hewlett-Packard Enterprise (EDS), 2003 – 2016
Enterprise Architect / Virtual Chief Information Security Officer (vCISO)

Microsoft, 1999 – 2003
Engineer / Consultant

Education

Master of Business Administration (MBA)
University of Texas at Dallas

Master of Science (MS) Information Technology specializing in Security
Capella University

Bachelor of Science (BS) Computer Information Systems
Excelsior College

Certifications

CyberAB CAICO Certified CMMC Practitioner (CCP)
CyberAB CAICO Registered Practitioner Advanced (RP/RPA)
OneTrust Fellow of Privacy Technology #73644
(ISC)2 Certified Information Systems Security Professional (CISSP) #29867
ISACA Certified Information Security Manager (CISM) #1014442
ISACA Certified in Risk and Information Systems Controls (CRISC) #1004569
Microsoft Certified Systems Engineer (MCSE) #1793697
Microsoft Certified Information Technology Professional (MCITP) #1793697
Amazon Web Services Certified Cloud Practitioner (CCP) #01783372
Cisco Certified Network Associate / Design Associate (CCNA/CCDA) #CSCO010095762
NSA IS Sec Pro / System Admin / InfoSec Assessment Method (CNSS 4011/4013)
ICCP Certified Computing Professional (CCP) #240331
CompTIA A+ / i-Net+ / Network+ / Server+ / Cert Tech Trainer (CTT+) #COMP10445345
Certified Locksmith, Associated Locksmiths of America (ALOA) AFL

Honors & Volunteer Activities

BSides Bloomington Board Member / Speaker Manager
Mensa International High IQ Society / Security Special Interest Group Coordinator
TOOOL The Open Organization of Lockpickers
FCC Licensed HAM Radio General Operator KD9YTT
FBI InfraGard

Clearances

US Department of Defense /
US Department of Homeland Security

References

Please see LinkedIn for personal references.
https://linkedin.com/in/billrweber

CFI Bill Weber Resume 2025.05Download