Eric D McMillen, Chief Security Architect
Eric is the Chief Security Architect with The McMillen Group, LLC in Plano, Texas. He has been providing consulting services for clients in a wide variety of industries for the last 19 years. Eric’s primary responsibilities are leading risk assessments, information security assessments, incident response, penetration testing, and vulnerability assessments using both cutting-edge technologies and old school techniques for clients in various industries. Prior to forming The McMillen Group, he was a Manager in both the Network Security and Infrastructure practice and the National Information Systems Assurance practice for BDO Seidman, LLP, an international accounting and consulting practice; previously, he was the Chief Technology Officer for an international consulting firm, specializing in the Accounting and Professional Services sector.
Relevant Project Experience:
Internal Controls Assessments – Managed and executed, both as an external auditor and as a
consultant to the internal audit department, numerous IT internal control audits /
assessments to ensure compliance with Sarbanes- Oxley Section 404.
Network Security and Vulnerability Assessments – Managed and executed multiple security consulting engagements for customers in varying technical environments.
Security Architecture Development – Designed and implemented network security
architectures for multiple customers in numerous industries. Developed firewall architecture,
security policies, and risk management procedures.
FFIEC Technology Assessments – Managed and performed numerous IT Systems Assessments, Internet Banking Assessments, as well as Internal and External Penetration and Vulnerability Testing for both State and National Banks.
IT Plan and Budget Development – Designed three-year technology strategies and
budgets for numerous clients. Facilitated the strategies implementation; including, but not
limited to, network security architecture, end-user usage policies, disaster recovery and
business continuation plans, and IT Department management procedures.
University of Kansas, Bachelor of Arts
International Information Systems Security Certification Consortium (ISC)²
Information Systems Audit and Control Association (ISACA) Information Systems Security Association
The Society of Payment Security Professionals (SPSP)
Computer Security Institute (CSI)