Kelly O’Brien

Kelly O’Brien

Kelly O’Brien is a Senior Cybersecurity Practitioner at Compass IT Compliance, bringing over 20 years of experience in information technology and cybersecurity. Throughout her career, Kelly has developed deep expertise across cyber risk, compliance, and strategic security initiatives. She holds multiple respected industry certifications and is an active member of several professional cybersecurity organizations, demonstrating her ongoing commitment to staying at the forefront of the field. In addition to her professional work, Kelly has volunteered with The Honor Foundation, where she serves as a career coach for transitioning U.S. Special Operations Forces personnel. In this role, she helps guide veterans into successful careers in the private sector, with a focus on Cyber Risk & Compliance—a field where her insight and mentorship make a meaningful impact.

Posts by Kelly O’Brien

What Does It Mean to Be CJIS Compliant?

by Kelly O’Brien on December 1, 2022 at 3:00 PM

CJIS Compliance

If your organization is involved with government entities and operations, chances are you have heard of Criminal Justice Information Services (CJIS) compliance. The term is commonly used in law enforcement but can also apply to civil entities.

Read Story

Topics: Compliance Government CJIS

Are You Protecting Your Attack Surface?

by Kelly O’Brien on August 25, 2022 at 1:00 PM

An empty office with mostly gray tones

Does your organization understand its attack surface? Gartner, Inc., a technological research and consulting firm, recently published the top trends in Cybersecurity for 2022, with attack surface expansion coming in at number one.

Read Story

Topics: Vendor Management Security Awareness Training Vulnerability Scanning Risk Management Social Engineering

Ignorance Is Not Bliss When It Comes to Security Assessments

by Kelly O’Brien on May 6, 2022 at 4:00 PM

Ignorance Is Not Bliss When It Comes to Security Assessments

It is no surprise that bad actors constantly seek to take advantage of current events and changing circumstances to exploit vulnerabilities and gaps in the security of organizations across a myriad of industry verticals and sizes.

Read Story

Topics: Compliance Penetration Testing Vulnerability Scanning Risk Management Risk Assessment

Bypassing Multi-Factor Authentication via Prompt Bombing

by Kelly O’Brien on April 27, 2022 at 1:00 PM

A woman logs into Facebook on her phone

It is the middle of the night, and you have finally fallen asleep, only to be awakened by the constant beeping of your phone. Bleary-eyed, you look at your phone to see it is prompting you to agree to log in on one of your accounts. You half wonder if you are dreaming and may instinct …

Read Story

Topics: Security Awareness Training Social Engineering Vishing

Cyber & Physical Security: Why You Need Both

by Kelly O’Brien on January 27, 2022 at 2:30 PM

Cyber & Physical Security: Why You Need Both

Cybersecurity attracts an enormous amount of attention due to cyberattacks that are publicized daily. As more devices are connected to the Internet, they become attractive targets for criminals; therefore, the attack surface increases exponentially.

Read Story

Topics: Information Security Cybersecurity Social Engineering Internet of Things Asset Management

Is Your Head in the Cloud? Traditional Security vs. Cloud Security

by Kelly O’Brien on December 31, 2021 at 3:30 PM

Is Your Head in the Cloud? Traditional Security vs. Cloud Security

When someone asks you if your head is in the clouds, there is an implication of being impractical. However, in a cloud-based environment, or in those organizations that conduct part or all of their operations in the cloud, the question has quite the opposite meaning.

Read Story

Topics: Security Cloud
1 2 3

See all

See all

Subscribe by email