Skillset Questionnaire
Board Skillset Questionnaire
(ISC)2 Strategic Pillars
I would like to help Amplify the Core, by promoting the range of certifications offered, but particularly the CISSP specialty certifications (ISSAP, ISSMP, and ISSEP) as they seem to not have the participation that they should. I would also like to help with the review of the educational materials provided by ISC2 through courses, books and other means.
I am encouraged by the recent trend toward transparency between the Board and the membership and would like to promote that even more through regular participation in the Community section if the ISC2 website and through other channels. I would also like to see more participation (other than trade show booth) by ISC2 at major conferences such as RSA and Black Hat, in addition to the Security Congress.
Strategic Planning experience
Given the very technical nature of my career, strategic planning experience is admittedly a weak are for me. However, outside my career, I have been part of the long-term goals setting for my church, including the planning for and construction of a large addition to the church building, and with the calling of a new pastor on two occasions.
Professional Education
BSICS (Information and Computer Sciences), 1981 - Georgia Institute of Technology
MSCS (Computer Science), 1984 - Johns Hopkins University
CISSP, 1999
ISSAP, 2005
ISSEP, 2009
Board Experience
I am currently the Treasurer and Board member for the Courts of Four Seasons Homeowners Association
I served for many years as the Treasurer and member of the Executive Board for First Evangelical Lutheran Church of Odenton, Maryland.
I served as Treasurer and Leadership Committee member for Boy Scout Troop 769 for approximately 4 - 5 years.
Skills and Expertise
I was a charter member of the DoD Computer Security Center in 1981. Since then, I have worked in the area of standards (Rainbow series), cryptography, system evaluation and testing, development of security solutions, and Systems Security Engineering. My entire 40+ year career has been in the field of Information Security. Details are in m resume which has been submitted.
Your Goals and Objectives
Since the field of Information Security has provided me with a very nice career for the past 40 years, I would like to give back to the Community by sharing my experiences. I would like to see the Board continue becoming more transparent with the members. While there has been quite a bit of improvement in that area in the last several years, I think more can be done, and I plan to advocate for as much transparency as legally possible.
(ISC)2 Strategic Contribution
In addition to the 4 pillars, I would like to see involvement of ISC2 in the various Governmental and Commercial standards organizations. It would be useful for ISC2 to participate in the revisions to NIST 800-53 which are continually ongoing, as well as to promoting the use of those controls by organizations outside the US Government. This would be an an example of how ISC2 can actually help the development of technical criteria to then use to build more secure systems. I have participated in both IETF and NATO standards groups, and started my career 40 years ago as part of the group that developed the Rainbow Series of standards and guides.
Regional and Cultural Perspective
I have lived in the Unites States my entire life, all on the East Coast. While I don't have anything unique to offer in that respect, I am certainly in favor of growth in key markets around the world, as well as for cultural diversity.
Thought Leadership and Professional Recognition
Co-Author and Technical Lead, "Independent Technical Review of the Carnivore System", published by the IIT Research Institute for the Department of Justice, 12/8/2000.
Co-Author, "Data Mining – Critical Review & Technology Assessment Report", published by Information Assurance Technology Analysis Center, 3/15/2000.
The Carnivore report was quoted by numerous publications at the time due to the unique privacy concerns of the program. Mr. Mencik wrote a guest editorial for SearchSecurity.com (where he was the Network Security Expert for their "Ask the Experts" column), on CARNIVORE and the USA PATRIOT ACT. The Carnivore report has also been referenced in several books by others, as well as college course on Security and Privacy.
Spoke at the Secure Decisions conference in 2003 on the topic of NSA's Information Assessment Methodology (IAM).
Leadership or Management Experience
I was chief of a branch within the NSA Information Assurance Directorate, leading a team of security analysts in evaluating Government systems. I provided technical direction, managed travel and award budgets, wrote performance appraisals, developed training plans, and other managerial functions.
I was the Technical Director for a Division (multiple branches), overseeing the technical efforts of more than 30 analysts.
With regard to management of non-security related experiences, I also own and run 3 part-time businesses'; Mencik's Sportscards, JSweb Technology, and The Vacation Stop.
Volunteer Experience
While an NSA employee, I participated in the Math Education Partnership Program, in which I was the partner for Four Seasons Elementary School in Gambrills, MD. I guest taught various math related classes several times per month, and one summer completely rewired their entire computer lab.
Treasurer for First Evangelical Lutheran Church in Odenton, MD for 10 - 15 years (in different terms during the period of 1990 - 2015)
Treasurer for Boy Scout Troop 769 for about 4 years in the 2010 - 2015 time period.
Treasurer and Board Member for the Courts of Four Seasons Homeowners Association, 2020 - present.
Provided foster care for several dog rescue groups for at least 15 years, including Beagle Rescue of Southern Maryland, and Shih-Tzu and Fur-baby Rescue.
Letters of Recommendation
Chris Inglis - US National Cyber Director
Neal Frick - CEO, CyberCore Technologies