Cybersecurity Assessor & Technology Entrepreneur

Barry
Morgan

I run AI-augmented security assessments for defense contractors, and build systems, sites, and ventures on the side.

Navy Submariner (USS Casimir Pulaski and USS Ohio) turned enterprise architect and DoD cybersecurity assessor. 20+ years securing systems from strategic weapons to commercial networks. Sourcing and embedding secure, offline frontier AI systems, CMMC/NIST compliance guardrails, and AI change management directly inside regulated defense environments.

80+
Assessments Completed
20+
Years in Tech
FDE
Forward-Deployed delivery
DoD
Vetted Professional
Barry Morgan
Priority Ventures

Active Ventures

Luxury Sourcing & Fine Goods
Bears Luxury
bearsluxury.com

Curated watches, designer bags, and sterling silver. A family-run collection built on physical inspection, hand authentication, and transparent provenance.

Embedded CMMC & CISO Services
Seattle CISO
seattleciso.com

Embedded CISO and compliance engineering for Pacific Northwest defense contractors. Integrating NIST SP 800-171, DFARS, and CMMC audit readiness directly into your operational perimeter.

Luxury Watches
Bears Watches
bearswatches.com

Curated luxury timepiece sourcing, sales, and consultation. Serving collectors and enthusiasts with access to exceptional watches across the prestige spectrum.

Frontier AI Systems
Barry's AI
barrys.ai

Secure, offline AI architectures and workflow automation. Developing local vector databases, air-gapped retrieval-augmented generation (RAG) models, and a process that works the same way every time.

Exotic Vehicles
Bears Exotics
bearsexotics.com

Exotic and luxury vehicle sourcing and concierge. Connecting buyers with extraordinary automobiles through an acquisition process I handle personally, start to finish.

Creative Services
Bears Creative
bearscreative.com

Creative strategy, branding, and digital production for businesses and entrepreneurs. The creative engine behind the Bears brand ecosystem.

Sales & Marketing
Hyper Local Sales
hyperlocalsales.com

Hyper-targeted local sales and marketing strategies. Helping businesses dominate their geographic markets through direct outreach to buyers who are looking, plus community-level engagement.

EV Technology
EV Wrench / EV Exam
evwrench.com

Electric vehicle inspection and service resources. Supporting the growing EV ecosystem with diagnostic tools, service guidance, and certification resources.

Mercedes Sprinter
Sprinter Resource Network
sprinteroil.com

A niche network of Mercedes Sprinter maintenance resources covering oil, DPF, DEF, brakes, and bulbs — serving the van community with authoritative, actionable guidance.

Property & Inspection
Pwn Inspect / NW Check
pwninspect.com

Property inspection and due-diligence services for the Pacific Northwest. Combining technical expertise with security-minded analysis for real estate and infrastructure review.

Watch Lot Strategy
Flea Market Watches
fleamarketwatches.com

Tiered valuation, inventory liquidation, and booth presentation models optimized for regional vintage mechanical and quartz timepiece markets.

Watch Sourcing
iSource Watches
isourcewatches.com

Looking for a specific high-end watch? Tell us what you want. We hunt it down for serious collectors and buyers, from the first email to the deal.

Strategy
Niche Site Monetization
Get in touch

Help for niche-site owners who want revenue that doesn't depend on ad rates. Across watches, exotic vehicles, and specialty equipment, the sites that win build direct buyer relationships and simple consulting or referral deals. I look at what the audience already responds to, then set up the shortest path to a transaction without burning reader trust.

Implementation
Build-Out & Brokering
Get in touch

Forms, landing pages, API integrations, and CRM handoffs across 35+ domains. Most of what breaks at that scale, I've already fixed. I also broker partnerships in field services, parts, fleet management, and local IT, where one warm introduction beats another month of ad spend.

Professional Experience

Career Timeline

2022 – Present
Cybersecurity Assessor
DCMA / DIBCAC — Defense Contract Management Agency

Pioneering and operationalizing a custom method to lead CMMC 2.0 readiness assessments and NIST SP 800-171 compliance validations of Defense Industrial Base (DIB) contractors. We verify control implementation and test DFARS 252.204-7012 systems boundaries.

  • Accelerated SSP Development: Used localized RAG models and iterative prompting to compile System Security Plans (SSPs) from client evidence repositories, shortening drafting time from weeks to hours.
  • Enhanced Audit Readiness & Gap Analysis: Drafted assessor-ready SSPs with precise in-line citations mapping control implementations to source documentation. Guided analysis to perform rapid gap analysis and generate preliminary POA&Ms.
  • Deep-Dive Control Verification: Conducted targeted analysis on complex controls including FIPS 140-2 validation and log retention, ensuring a detailed and defensible compliance posture for DIB contractors.
  • Thorough Assessment & Reporting: Synthesized diverse technical evidence to identify critical compliance gaps. Authored executive summaries and detailed assessment reports across 19 separate contractor audits.
  • Methodology Evangelism: Developed and delivered executive-level presentations on the AI-Augmented Assessment methodology to internal stakeholders and clients.
  • Joint Surveillance Program (JSP) Assessor: Evaluated C3PAO assessment activities to ensure consistency and adherence to DoD standards. (2 JSP assessments)
  • DIB Assessment Leadership: Coordinated pre-assessment activities, briefings, and documentation across enterprise-level engagements. (3 leadership assessments)
  • Physical & Environmental Controls: Evaluated contractor implementation and reporting of physical and environmental controls. (3 assessments)
NIST 800-171ACMMC 2.0DFARS 7012RAG AISSP AuthoringPOA&METM CertifiedDoD Vetted
Ongoing
Technology Entrepreneur & Domain Investor
Self-Directed — Seattle, WA

Building a multi-vertical portfolio of digital ventures spanning the Bears brand ecosystem, fractional CISO leadership, AI tooling, EV technology, and specialty automotive. Managing 35+ domain assets across strategic niches.

  • Portfolio Architecture: Designed and deployed a 37-domain portfolio spanning cybersecurity consulting, luxury goods sourcing, EV technology, specialty automotive maintenance, property inspection, and creative services. Each site operates as an independent authority hub with its own lead capture, content strategy, and monetization pathway.
  • Fractional CISO Operations: Delivering embedded Chief Information Security Officer services to Pacific Northwest defense contractors. Building compliance programs from initial gap analysis through full CMMC 2.0 certification readiness, including SSP authoring, POA&M tracking, and evidence repository management.
  • AI Workflow Automation: Developing air-gapped retrieval-augmented generation (RAG) systems for sensitive environments. Building a process that works the same way every time so defense contractors can adopt frontier AI capabilities without exposing controlled unclassified information (CUI) to external cloud services.
Fractional CISODomain PortfolioLuxury ConciergeEV TechnologyNiche Publishing
2000s – 2022
Enterprise Technology & IT Security Professional
Seattle Area | Various Enterprises

20+ years of hands-on enterprise technology experience: maintaining, repairing, securing, and transforming infrastructure across industries, from commercial fitness equipment to mission-critical enterprise systems.

  • Infrastructure Transformation: Led multi-site network overhauls including server migrations, firewall rule consolidation, and endpoint protection rollouts. Managed transitions from legacy on-premises infrastructure to hybrid cloud environments while maintaining uptime requirements for 24/7 operations.
  • Security Program Development: Built information security programs from the ground up for organizations with no prior formal security posture. Implemented access controls, incident response procedures, vulnerability scanning schedules, and employee security awareness training across organizations ranging from 50 to 500 employees.
Enterprise ITInfrastructureInformation SecuritySystems Integration
Submarine Service
Submariner | Weapons Department
United States Navy

Served in the weapons department of U.S. Navy ballistic missile submarines USS Casimir Pulaski (SSBN 633) and USS Ohio (SSBN 726), maintaining Trident C-4 missile and weapons systems. Developed the discipline and systems thinking required for absolute reliability under pressure.

Military ServiceUSS Casimir Pulaski (SSBN 633)USS Ohio (SSBN 726)Trident C-4 Systems
Domain & Project Portfolio

39+ Domains

A strategic portfolio of digital assets spanning cybersecurity, luxury travel, exotic vehicles, timepieces, creative services, automotive, EV technology, property inspection, AI, and more.

bearsluxury.combearswatches.combearsexotics.combearscreative.comseattleciso.comhyperlocalsales.comhyperlocalsales.netbarrys.aibarrys.cocmmctoolset.commorgsec.commorgllc.commorgc.comevwrench.comevexam.comwattfix.comsprinteroil.comsprinterdpf.comsprinterdef.comsprinterbulbs.comsprinterbrakes.compwninspect.comnwcheck.comportlandcrane.comtechrealm.comtechnologywillfail.combackupsoftwareonline.comtrilliondollardeal.compromob8.compromobait.comprb8.compuppytrainingbible.comahorseclipper.comtreatpalace.comdirtedtank.comfleamarketwatches.comisourcewatches.comspatulamaker.combearswatchs.com
Find Barry Online

Social Channels

Background

About Barry

This Barry Morgan currently lives in Washington State and vacations in Michigan. Born and raised in the Midwest, he trained in the weapons department of U.S. Navy ballistic missile submarines.

For over two decades since settling in the Seattle area, he has secured, managed, and transformed enterprise technology systems. The philosophy is simple:make technology more transparent, secure, sustainable, and valuable for everyone.

Today that means leading AI-augmented cybersecurity assessments for the Defense Industrial Base, while building the Bears brand ecosystem — luxury travel, exotic vehicles, curated watches, and creative services — plus fractional CISO leadership and a growing portfolio of 35+ digital properties.

Note for other Barry Morgans: Barry has received your bank statements, vacation plans, and at least one mistress's information. He has, with impressive restraint, forwarded them unopened.

🔐
U.S. Government Vetted
Active federal background investigation & suitability determination
Submarine Warfare Qualified (SS)
Submarine Warfare Qualified (SS)
Attained through cross-functional systems walkthroughs and a rigorous evaluation board (Silver Dolphins)
📋
Financial Disclosure Current
Federal ethics compliance (OGE reporting obligations met)
🎖️
ETM Certified
Engineering & Tech Management / Foundational Acquisition

Core Expertise

Cybersecurity & Compliance
NIST SP 800-171ACMMCDFARS 252.204-7012SSP AuthoringPOA&MDIBCACC3PAO EvaluationAudit ReadinessGap Analysis
AI & Technology
RAG AI ModelsPrompt EngineeringAI-Augmented WorkflowsEnterprise ITSystems Integration
Leadership & Business
Fractional CISOExecutive PresentationsProgram ManagementDomain InvestingVenture Building
Assessments Completed
80+ Total19 Full CMMC Audits7 IT Vulnerability3 Leadership Roles2 JSP Assessments

Let's Connect

Best reasons to reach out: fractional CISO work, AI workflow problems that need solving, niche-site monetization, or sourcing something specific (watches, exotics, hard-to-find parts).

AREAS OF INTEREST: