Mr. Kevin Dulany is the Chief, Risk Management Oversight Division at the Defense-wide Information Assurance Program (DIAP) Office. His duties include the oversight of DoD Continuous Monitoring and Risk Scoring efforts, DoD’s Certification and Accreditation (C&A) transformation efforts, DoD’s Cloud Security efforts, and the DoD’s support to the Federal Risk and Authorization Management Program (FedRAMP). Mr. Dulany also co-chairs the Joint Continuous Monitoring Working Group, and provides support to other CIO Council’s Information Security and Identity Management Committee (ISIMC) led efforts as directed.
Mr. Dulany is a retired U.S. Marine (Master Sergeant) who held the IA Technician Military Occupational Specialty (MOS) and was the USMC Information Assurance Chief for his final of 4 years prior to retirement. After retirement, he worked at the Joint Interoperability Test Command (JITC) and was the Exercise Support Team Lead which conducted IA/Computer Network Defense (CND)/Cybersecurity assessments during Combatant Command Exercises (the largest and most notable was Bulwark Defender). Mr. Dulany was also responsible for the oversight of external Certification and Accreditation taskings, IA Metrics development, as well as provided IA policy support to US Africa Command.
Mr. Dulany has been in the IT career field (programming, networking, IA/Cybersecurity) since1988; focusing on IA/CND since 2000. Mr. Dulany holds numerous commercial certifications to include the Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), and Certified Authorization Professional (CAP).