Dr. Thomas Graham, Ph.D., serves as VP and Chief Information Security Officer (CISO) at Redspin, a division of Clearwater. Redspin is a top cybersecurity consulting firm, the first authorized C3PAO, and one of the first organizations that has now conducted the majority of DIBCAC High CMMC (Cybersecurity Maturity Model Certification) assessments under the Joint Surveillance Assessment Program (JSVAP). Dr. Graham is a skilled CMMC professional, holding Certified Assessor (CCA), CMMC Certified Professional (CCP), and CMMC Certified Instructor certifications. Dr. Graham served as the lead architect in Redspin achieving the first C3PAO status, leads CMMC-certified training courses, and has helped numerous organizations obtain certification under the JSVAP and navigate their own CMMC journey. Dr. Graham is responsible for all internal security items for Redspin and its affiliates. Before Redspin, Dr. Graham supported the Defense Health Agency (DHA), where his team received a FedHealthIT award, presented to them at the National Press Club in Washington, DC. Dr. Graham holds a Ph.D. in Information Assurance and Security, an MBA, and a Master of Science degree in Technology Systems. He also serves as the Chair of the MIS Advisory Board for East Carolina University and has been a member of the HIMSS Cybersecurity, Privacy, and Security Committee. Dr. Graham regularly speaks at industry events including CIC, CMMC Day, Washington Technology Summit, ISC2 Security Congress, and more.