Cybersecurity Division
Any digital landscape, anywhere in the world, we ensure your cybersecurity solutions align perfectly with your business needs—protecting what matters most, 24/7.
Global cybercrime increasing 10-20% YOY 🚨 Daily Cyber Attacks averaging 1 attack every 39 seconds⌛ Ransomware attacks trending towards over 75% of organizations worldwide 🏢 The average global cost of a data breach is nearly $5M per incident 💰 Healthcare sector averaging $10.93 million breach cost per incident 🏥 Cybercriminals leveraging AI to create phishing attacks and deepfakes 🌐
About
TMC's Cyber Division delivers top-tier cybersecurity, governance, and compliance solutions, backed by decades of experience across government, enterprise, and public sectors. We specialize NIST, FISMA, and Zero Trust, ensuring an alignment with PCI DSS, HIPAA, and ISO 27001 standards. Our expertise in incident response, risk management, cloud security, and business continuity has driven success in complex environments, including federal agencies, airports, and large institutions. With industry-leading certifications and a focus on scalable, resilient solutions, TMC is a trusted partner for securing critical infrastructures and enabling digital transformations.
Explore our services to see how TMC can help improve your security posture.
AI Transformation
We help secure AI enabled workflows to maintain compliance.
Privacy
We perform privacy impact assessments in alignment with your cyber security solutions and implementations.
Security
We help design layered security solutions around your solutions and implementations.
Governance
We help solve the complexities of risk, compliance, security and privacy.
Risk
We perform risk assessments to ensure your data is secure.
Compliance
We help ensure your cyber security solution deployments are regulatory compliant.
Full Service Areas
TMC's Cyber Division offers Gap Analysis & Assessments in all areas of Governance, Risk, Compliance, Security and Privacy for any sized company. The purpose is to identify and uncover the risks and gaps in your current environment and enable you to make the proper business decision regarding the gaps identified in our intro analysis. Our services include IT security posture assessments, ISO27001/27002 readiness, HIPAA, NY-DFS, and CMMC compliance, GDPR, U.S. state privacy law assessments, privacy impact assessments (PIA), data sensitivity evaluations, PCI audits, SOC2 readiness, and NIST 800-53 audits.
01
Gap Analyses & Assessments
TMC's Cyber Division can provide comprehensive security assessments and penetration testing across various IT environments. Our services include external and internal system vulnerability scans, intrusive penetration tests, and web application testing following OWASP standards. TMC can also conduct mobile application security assessments and thorough Wi-Fi infrastructure evaluations, identifying rogue access points and vulnerabilities. These assessments help organizations strengthen their defenses and address potential security risks proactively.
02
Security Testing
TMC can also provide hands-on, certified network or security engineers to assist with security design, configuration, and audits. This includes network security, next-gen firewalls, IDS/IPS, and other threat management tools and applications.
03
Hands-On Security Engineering
TMC can help organizations develop a Governance function to address on-going risk, compliance, security, and privacy business decision making. We can assist with setting up a meeting structure, incorporation of risk management program tasks, conduct quarterly meetings, capture meeting minutes, and review risk register progress reviews.
04
Governance & Advisory Services
TMC’s Cyber Division can assist clients with their AI transformation complexities given the risks and threats that AI applications can bring to an organization. This is especially true if your organization is under regulatory compliance laws. TMC can conduct AI application risk assessments to determine the impact the AI application will have on compliance, security and privacy whether it is utilized for front-office or back-office workflow.
05
AI Transformation
TMC’s Cyber Division helps organizations understand their business requirements and priorities first, before building any plans. This starts with a carefully crafted Business Impact Analysis (BIA) using quantitative or qualitative approaches. The BIA will help define the Maximum Tolerable Downtime (MTD), Recovery Time Objective (RTO), and Recovery Point Objective (RPO). The BIA will also provide the metrics for the Business Continuity Plan (BCP) and Disaster Recovery Plan (DRP) with training and tabletop exercises, tailored to the customer’s unique environment.
06
Continuity of Operations Plans (COOP) & Training
Decades of Proven Expertise
With over 35 years of experience, we’ve built a reputation for delivering high-impact cyber security solutions across diverse industries, including healthcare, aviation, education, and government.
Specialists in SLED & Federal Projects
Our team leverages its extensive experience in governance, risk, compliance, security and privacy to support State, Local, Education (SLED), and Federal projects with precision and reliability. With a proven track record of success across government agencies, educational institutions, and large public-sector projects, we deliver scalable, compliant, and resilient solutions tailored to the unique needs of SLED and Federal environments.
Certifications & Clearances
The team boasts an extensive array of certifications, including Fortinet Network Security Expert, PMP, ITIL, CISSP, and PCI QSA. With top-secret clearances and real-world expertise in frameworks like NIST, FISMA, and ISO standards, we are equipped to meet the highest security and compliance requirements.
AI Transformation & Governance Focus
TMC helps organizations transform workflows by identifying manual processes that can be automated with new AI tools. Our AI integration risk assessments ensure tools are vetted for data handling, risk, compliance, security, and privacy impacts before implementation. TMC will also define the compliance, security, and privacy requirements for generative AI deployments, ensuring their alignment with organizational policies prior to activation.
Real-World Impact with Large Scale Projects
The TMC Team has successfully delivered complex cybersecurity solutions for high-profile organizations, including federal agencies, international airports, and large enterprises. Our work has encompassed everything from multi-year security assessments to the design of Zero Trust architectures and incident response frameworks.
Collaborative and Transparent Partnerships
TMC believes in building strong, long-term relationships with industry leaders, to bring the best team and resources to our clients.
What Sets TMC Apart
Procurement Made Easy
Our SLED and Federal resources allow us to simplify procurement for clients. These pre-approved purchasing vehicles eliminate the need for lengthy RFP processes, ensuring compliance and reducing overhead.
State/Local Contracts
State and County level contracts in both Minnesota and Florida that can be used for easy purchasing of our services.
Federal GSA Schedule
Federal GSA Contract for SIN 54151S under Schedule 70 that can be utilized for any federal project requirements.
Extensive SLED Experience
Nearly four decades of experience working with SLED clients having services over 1,200 different SLED entities.
WBE/DBE/SBE Certifications
Woman-owned, small, disadvantaged certified in nearly all 50 states. We can help achieve direct diversity goals where needed.
Hear it from Our Clients
TMC goes above and beyond to provide service and support with our best interests as a top priority. Their team reacts and responds swiftly to our needs - sometimes with little notice, tight deadlines and difficult requirements. TMC finds a way to get it accomplished the right way and ensures our needs are addressed.
VP IT of Intl Airport
TMC was always ready to assist with advanced knowledge of cyber security and IT security. This firm is a valuable partner to have.
Information Security
Manager of a City
Partnering with TMC for low voltage technology has been seamless. Their expertise and reliability ensure we meet client expectations and timelines, while their foresight gives us confidence our designs will deliver the desired experience.
Principal of an Architecture Firm
Initiating Change
We offer Gap Analysis & Assessments in 15 different Risk, Security, Compliance and Privacy areas for any sized company. The purpose is to identify and uncover the risks and gaps in your current environment and enable you to make the proper business decision regarding the uncovered gaps in our intro analysis.
This is the space to describe the product. Write a short overview that includes important features, pricing and other relevant info for a potential buyer.
Small Businesses
This is the space to describe the product. Write a short overview that includes important features, pricing and other relevant info for a potential buyer.
Medium Businesses
This is the space to describe the product. Write a short overview that includes important features, pricing and other relevant info for a potential buyer.
Enterprises
Our Expert Cyber Leaders
Our team brings decades of experience in governance, risk, compliance, security and privacy with expertise in system design, risk management, NIST, FISMA, and Zero Trust. We excel in aligning with standards such as PCI DSS, HIPAA, and ISO 27001, while delivering robust solutions in incident response, cloud security, and vulnerability management. With a proven track record across government, airports, and enterprises, we are equipped to implement secure, scalable, and resilient cybersecurity initiatives.
Principal & CISO - GRC, Security & Privacy
David Kim, B.S.E.E
Over 35 years providing IT security and GRC services to government, airports, financial institutions, healthcare, and more. He specializes in board-level presentations, vulnerability assessments, penetration testing, and compliance audits using frameworks like NIST, ISO, HIPAA, PCI DSS, and SOX. He is also skilled in incident response, CSIRT training, real-time monitoring, and third-party risk assessments.
Principal - Security Project Management Office
Cheryl O'Brien
With 40+ years of experience, Cheryl leads cyber security projects in risk assessments, business continuity, network security, and compliance. She oversees security frameworks, aligning them with operations, and brings expertise in WAN/LAN, NOCs, cloud services, and risk mitigation, delivering cost savings while balancing security with business goals.
Lead PM - Security Project Management Office
Ted Siska
Over 35 years of IT experience focused on system design, network security, and project management. Ted specializes in physical and cyber security, telecommunications, and data networks, with expertise in designing secure infrastructures and supporting disaster recovery, business continuity, and large-scale technology deployments.
Partner Resources
We partner with some of the most accredited and experienced cyber security firms to bring even more resources to our clients.