Stacey is CEO and Co-Founder of QoS Consulting Solutions, an RPO company. Having over 15 years of industry experience in the information security industry, QoS Consulting Solutions' consultants have supported private/public/commercial sector, civilian federal agencies, and Department of Defense (DoD) agencies’ both classified and unclassified environments. They have supported a variety of compliance and privacy initiatives such as DoD Information Technology Security Certification and Accreditation Process (DITSCAP), DoD Information Assurance Certification and Accreditation Process (DIACAP), DISA’s Computer Network Defense Service Provider (CNDSP) program, Federal Information Security Management Act (FISMA), Federal Risk and Authorization Management Program (FedRAMP), FBI Criminal Justice Information Services (CJIS), North America Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP), Payment Card Industry Data Security Standards (PCI DSS), International Organization for Standardization (ISO 27001/2), Health Information Portability Accountability Act (HIPAA), Service Organization Controls 2 (SOC 2), Sarbanes-Oxley (SOX), Australian Signals Directive's (ASD) Information Security Registered Assessors Program (IRAP), NIST SP 800-171 (DFARS), China Cybersecurity License, Privacy Shield, EU General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA) and Cybersecurity Maturity Model Certification (CMMC) readiness.
Within the aforementioned compliance standards, QoS is able to provide support in identifying applicable security requirements, designing, documenting, and implementing associated security controls, readiness/gap assessments, and information management system assessments against a targeted standard. QoS consultants also provide assistance with developing processes/procedures across a variety of security domains by leveraging existing processes for efficient and optimized solutions.