RWX Security Solutions brings a unique blend of technology and leadership to secure critical infrastructure, data, and information systems. We specialize in IT Security / Cybersecurity, Risk Management, Compliance, and Security testing using over 20 years of international experience with small, medium, large and Fortune 200 companies.
Led by Ron Woerner, RWX is your Trusted Cybersecurity Advisor who is here to help you, your organization and your clients be safe and secure while meeting business objectives.
See his LinkedIn Profile, RSA Conference page and Twitter.
Contact him at ron . woerner @ rwxsecurity.com or through LinkedIn.
Ron Woerner BIO
Ron Woerner is one of the leading trusted advisors in information security with over 25 years of industry experience in the information technology, cyber security, and risk management fields. Ron provides world-class security consulting services to world clients on security risk management, compliance, cybersecurity operations, and technologies. Ron has established security practices for multiple international organizations, state government, and small-medium businesses. He has worked with organizations on a variety of information security projects including Enterprise Risk Assessments, Threat Analysis, Penetration Testing, Social Engineering and Information Security Awareness Programs. With a background in Computer Science, Systems Administration and Management Information Systems, Ron successfully combines technical and analytical capabilities to assist organizations with improvements to their overall security posture.
In addition to tackling cybersecurity programs, Ron supports a variety of compliance initiatives such as Payment Card Industry Data Security Standards (PCI DSS), International Organization for Standardization (ISO 27001/2), Health Information Portability Accountability Act (HIPAA) Security and Privacy, North America Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP), Sarbanes-Oxley (SOX), National Institute of Standards and Technology (NIST), Federal Financial Institutions Examination Council (FFIEC), General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679), Defense Federal Acquisition Regulation Supplement (DFARS), Federal Information Security Management Act (FISMA), and Federal Risk and Authorization Management Program (FedRAMP). Within the aforementioned compliance standards, Ron advises organizations in identifying applicable security requirements, designing, documenting and implementing associated security controls, gap assessments and information management system audits against a targeted standard.
Ron has over 20 years of direct, hands-on experience in multiple business sectors including Department of Defense, Academia, State Government, Financial and Insurance, Engineering and Architecture, Manufacturing, Hospitality, and Consulting. Ron worked for a major Defense Contractor as a Senior Cybersecurity Consultant where he assessed NIST compliance and advised on security technologies and practices for over 50 supply chain companies. Ron also worked at an international hospitality company where he led all security architecture, policy, monitoring and incident response initiatives.
Ron also has extensive experience leading a University as a National Security Agency (NSA) Center of Academic Excellence in Cybersecurity. In that role, he developed over 30 undergraduate and graduate courses covering all cybersecurity domains. He advised and instructed over a thousand students who have gone on to become Chief Information Security Officers for major companies around the globe.
P rior to his academic career, Ron worked as a Senior Information Security Specialist for an international architecture and engineering firm, a Security Engineering and Compliance Manager for a global investment company, an Information Security Analyst for a worldwide food manufacturer, an Information Security Administrator for a large service management company, Information Security Officer at a major State Agency, and a United States Air Force (USAF) Intelligence Officer.
Ron is also a noted speaker and writer in the Security industry. He has been a featured speaker at the (ISC)2 Congress, ISACA CSX, Secure360, Infotec and RSA conferences. He has written for CSOOnline, IBM Security Intelligence, and Tripwire. Ron has been a part of the security blogger network since 2007 and has been interviewed for articles. He is also a part of the Palo Alto Networks Cyber Security Canon Committee.
Mr. Woerner was awarded the Air Force Association Mentor of the Year in 2014 for his work with US CyberPatriot. He has been a mentor for that organization since 2011 where he has mentored over 100 high school students.
Ron has been a featured speaker at the RSA, Secure360, ISC2, and ISACA Conferences where he has been presenting for over 10 years.
In 2016, Ron was part of the official cybersecurity journalists’ delegation to Israel where he met with Israeli business and corporate leaders on information security.
Certifications and Training
Ron was granted the (ISC)2 Certified Information Systems Security Professional (CISSP) certification in 2001, the EC-Council Certified Ethical Hacker (CEH) certification in 2006, and the ISACA Certified Information Security Manager (CISM) certification in 2014 and PCI QSA in 2018.
Ron is currently a CISSP instructor for CyberVista and an Instructor for Bellevue University along with his RWX responsibilities.
Ron holds Bachelor of Science degree in Computer Science from Michigan State University as a four-year USAF ROTC scholarship awardee.
Ron also holds a Master of Science degree in Management Information Systems from Syracuse University and a Bachelor of Science degree in Computer Science from Michigan State University.
Enterprise Information Security Program development, Security and Risk Management. Quantitative Risk Analysis, Threat Modeling, Vulnerability Analysis, Security Administration, Digital Forensics and Incident Response (DFIR), Penetration Testing, Social Engineering, Security Awareness, Gap assessments and/or audits against the following control frameworks: PCI DSS, SOC, NIST SP 800-53(FISMA), NIST SP 800-171(DFARS), FedRAMP, ISO 27001, RMF for DoD IT, FFIEC, Red Flag Rules, GDPR, and HIPAA/HITECH.