Clients and Partners

Our goal is to make our clients successful by meeting their business needs and providing them with high-quality consulting services. Our clients are Federal, state, commercial, and non-profit organizations with diverse missions and organizational cultures. Examples of our clients include:

 

U.S. DEPARTMENT OF AGRICULTURE | FOOD, NUTRITION, AND CONSUMER SERVICES

B&M is providing security operations, cybersecurity engineering, assessment, and program strengthening support to USDA FNCS through a comprehensive suite of cybersecurity services. Our team is providing technical security engineering, incident response (IR), and security operations support that includes configuring, maintaining, and enhancing the Agency's IT security tools; providing security engineering and architecture support, including zero trust implementation; providing 24/7 IR identification, investigation, and reporting support; performing web application scanning; designing and implementing ISCM capabilities and dashboards; and providing overall vulnerability management support for the Agency. B&M is providing RMF implementation and strengthening support; performing control assessments of Agency IT systems; providing ongoing compliance and audit liaison support.

U.S. DEPARTMENT OF AGRICULTURE | FOREST SERVICE

B&M is providing security and risk awareness support to the USDA Forest Service, including asset inventory development and maintenance, vulnerability dashboarding and reporting, secure configuration compliance monitoring, security architecture and engineering, application monitoring dashboarding and reporting, and monitoring of GFE laptops and phones provisioned for international travel.

U.S. DEPARTMENT OF HOMELAND SECURITY | OFFICE OF THE INSPECTOR GENERAL

B&M is providing advanced cybersecurity assessment and IT audit support services to the Department of Homeland Security Office of the Inspector General. Our support includes planning and conducting advanced cybersecurity assessments and penetration testing for critical DHS systems, applications, programs, and facilities.

500px-US-DeptOfTheTreasury-Seal.svg.png

U.S. DEPARTMENT OF THE TREASURY | OFFICE OF THE COMPTROLLER OF THE CURRENCY (OCC)

B&M is providing cybersecurity assessment, compliance, and program strengthening support to the OCC. Our support to OCC included ISCM strategy and transition plan development and implementation support; independent IT security and privacy assessment; OIG and internal audit liaison support; corrective action planning and validation support; CDM tool implementation and oversight support; IT policy and procedure review and optimization analyses; security documentation development and management support; and ongoing programmatic support to the Cyber Security Office.

FDIC logo.png
 

FEDERAL DEPOSIT INSURANCE CORPORATION (FDIC)

B&M provided program strengthening and consulting support to the FDIC through a systematic review and overhaul of internal controls, security services and procedures. B&M was asked to develop recommendations and strategies to strengthen IT program structures, policies, procedures, methodologies, and capabilities in alignment with Federal requirements, as well as leading industry practices. B&M also provided compliance program support that includes assistance with GAO/DHS/OMB data calls and reporting; audit liaison response support; and briefing development.

MCC.jpg

MILLENNIUM CHALLENGE CORPORATION (MCC)

B&M provided IT and internal control assessment and management consulting support to the MCC Department of Administration and Finance. Specific areas of support include IT and Process Internal Control Assessment and Reporting, as well as Program/Process Improvement.

14879469265_e46a805705_b.jpg

U.S. AGENCY FOR INTERNATIONAL DEVELOPMENT (USAID)

B&M supported USAID in planning for and conducting annual assessments of key IT security controls related to the Agency’s financial systems and processes. In this role, B&M provided IT subject matter expertise and guidance to USAID staff, and led and conducted annual assessments of key IT security controls for USAID’s network infrastructure and financial management systems, applications, interfaces, and external information system service providers. Assessment work was performed within the United States and overseas locations.

 OTHER CLIENTS INCLUDE:

Our partners include: