CyberESI Consulting Group personnel have pioneered security automation for nearly two decades.  Some activities and accomplishments include:

Now, CyberESI Consulting Group is extending these security automation experiences to security controls using the National Institute of Standards and Technology (NIST) Open Security Controls Assessment Language (OSCAL).  In a recent project, CyberESI Consulting Group automated the creation of OSCAL Control Catalogs for all frameworks listed in the NIST Cybersecurity and Privacy Reference Tool (CPRT).

Who We Are

CyberESI CG services are designed to prevent cybersecurity incidents, based on our expertise in successfully processing thousands of criminal and nation-state cybersecurity incidents at the Defense Cyber Crime Center Center (DC3) – the world’s largest accredited computer forensics laboratory. Each service is also aligned to the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) – one of the most successful and prevalent approaches to cybersecurity risk management. Our backgrounds supporting DC3 and NIST give us an expert understanding of what needs to be done to stop threat actors and adversaries.

Our corporate objective is to inform proactive cybersecurity risk management with our expert knowledge of threat trends and adversary behavior. Our architects, engineers, and analysts help clients design, implement, and operate effective solutions for detection & response, continuous monitoring, and other security operations center activities.


CyberESI CG provides a suite of cybersecurity services which provide an in-depth defense of network systems, allowing you to constantly assess your IT needs and vulnerabilities and develop effective solutions to mitigate the risk of data breaches. CyberESI CG provides practical, specific, and prioritized recommendations with every service. With our support you will know exactly where to start to reduce risk, address an issue, and improve security posture.

Risk Assessment

Managed Detection and Response

Security Operations Center

Incident Response Services

Vulnerability Assessment and Penetration Testing

Policy and Compliance Analysis

Training and Awareness

Cybersecurity Consulting


Our Team

Get expert insight from professionals who helped design the CSF, write the NIST SP 800-150 standard, and who have performed thousands of successful incident responses.

See our latest career opportunities.

Why Us?

  • You don’t have to be an expert in everything. Let us fill in the gaps! “Augmenting your team with experts can provide the talent and ‘surge capacity’ that small businesses need.” – Cyber Security and the Small Business, Frost & Sullivan

  • One size does not fit all. Our team becomes familiar with your specific needs and resources and crafts our solutions to help. The result is a much-reduced risk of data breach and a far better return on your investment.

  • The Cyber Security Framework (CSF) is the most successful and prevalent approach to cybersecurity risk management. The five Functions of CSF – Identify, Protect, Detect, Respond, and Recover – remind us of the need to balance preventative measures with preparations should something go wrong. CyberESI CG helps you gain visibility into all five CSF Functions and reduce risk.

  • CyberESI CG can leverage your existing team and tools or augment them with our powerful in-house resources.

  • Just take a look at the Testimonials below from:

    – Matt Grayson, Chief Information Officer, American Postal Workers Union Health Plan

    – David Downs, Senior Director of Information Technology, Analytical Graphics, Inc.


  • “CyberESI CG has been able to work with our organization to help advance our security program, increasing our overall posture. By integrating with our established program, we have been able to replace systems and maintain compliance. This partnership grants admins time to focus on internal priorities. Our security program continues to mature and evolve in today's aggressive landscape. CyberESI CG helps us stay ahead of potential threats, as a result, we can sleep at night.”

    – Matt Grayson, Chief Information Officer,
    American Postal Workers Union Health Plan

  • We appreciate how supportive CyberESI CG is of our in-house team and talent. They don’t just give us recommendations; they help us learn and become better in our areas of responsibility. As I like to say, “CyberESI CG doesn’t fish for you, they help you learn to fish.”

    – David Downs, Senior Director of Information Technology
    Analytical Graphics, Inc.


    • This field is for validation purposes and should be left unchanged.