Tony Buenger is skilled and dedicated security and governance professional with decades of experience in the Department of Defense (DoD) cybersecurity consulting, planning and implementation. Tony is a retired Lieutenant Colonel with the U.S. Air Force with 22 years of service and spent 15 of those years working in the Pentagon and other DoD agencies to help modernize security infrastructure and systems. This work includes converting the USAF from DIACAP compliance to a more modern risk-based approach based on NIST and the Risk Management Framework (RMF).
As the Governance, Risk and Compliance Practice Lead with SecureStrux, Tony drives our consulting, remediation and managed services applying to NIST, ISO, CMMC and CCRI compliance.
Mr. Buenger is actively involved in the CMMC Ecosystem for close to two years as a CMMC Provisional Assessor (PA) and CMMC Provisional Instructor (PI). He has worked with the DoD and CMMC Accreditation Body (CMMC-AB) to develop the CMMC Certified Professional (CCP) and CMMC Certified Assessor (CCA) training and exam objectives. He has hands-on experience assisting an organization to achieve its CMMC Level 3 certification to become an Authorized CMMC 3rd Party Assessment Organization (C3PAO) as well as conducting many CMMC consulting engagements.
This experience has translated to other compliance frameworks and requirements within the academic, federal agency, commercial sector, and healthcare sectors where Tony is responsible for conducting comprehensive compliance assessment, risk assessments and remediation engagements.
Tony holds CCISO, CISSP and CISM certifications and has gained credentials as a Provisional CMMC Assessor and Instructor. His work also includes developing thought leadership content, training curriculum, exam objectives and other resources for the Certified CMMC Professional (CCP) training efforts.