In addition to the myriad of individual telecommunications certifications on the TruPoint team, we also have a team member with an advanced level cybersecurity certification under his belt. Bill Barton, our Director of Operations, obtained his CompTIA CASP+ certification in August 2020 and recently recertified to maintain his credentials through 2026.

Unfamiliar with the CompTIA CASP+ certification?

CASP+ validates advanced-level competency in the following areas:

• Risk Management & Compliance
• Enterprise Security Operations
• Enterprise IT Systems Architecture
• Research and Collaboration
• Integration of Enterprise Security

CASP+ is an intensive, hands-on, performance-based certification for security practitioners at an advanced skill level within the cybersecurity industry. While other cybersecurity certifications help identify policies, frameworks, and regulations; it is the CASP+ certified professional who figures out HOW to make it happen.

A CASP+ certified professional must understand regulatory compliance and cybersecurity frameworks such as NIST, ISO 27001/2, CIS, SOC2, PCI-DSS, COBIT, HITRUST, CMMC, and Cyber Essentials in order to implement the right tools, processes, and education within an organization.

Bill says it was, without question, the most difficult exam he’s ever sat for in his career – and he’s obtained quite a few!

In addition to his CASP+ certification, Bill spent nearly 4 years as a Cloud Architect for a US Government contractor, deeply involved in their cybersecurity posture. He led the charge to obtain a “FedRAMP Authorized” cloud service offering with Moderate Impact designation, which the contractor obtained shortly after he joined TruPoint. Bill was also involved in putting together initial parts of the framework toward the contractor’s CMMC 1.0 Level 4 designation.

The FedRAMP “Moderate Impact” security categorization level (based on FIPS 199) includes 325 cybersecurity controls across the entire NIST cybersecurity framework. Further, to comply with the particular governmental agency he was working with at the time, Bill also needed to help the organization implement 44 additional controls to comply with DoD IL4 requirements. He had to build the IaaS cloud infrastructure, harden the infrastructure, and document how the organization complied with each one of these combined 369 cybersecurity controls; ranging from hardening practices to security awareness training to risk management and business continuity. And then he had to have the solution and documentation (well over 1000 pages worth) validated by a 3rd party assessment organization! It was definitely not for the faint of heart!

And when it comes to cybersecurity knowledge, Bill claims he isn’t even the smartest person in TruPoint’s network of experts and advisors!

So, whether you are a small business or an enterprise corporation, your cybersecurity needs are unique, your compliance requirements are specific, and there is no such thing as one-size-fits-all. Let TruPoint help you navigate through the cybersecurity minefield and employ the best possible solution for your unique requirements.