Dave Fairburn is a Director at SunHawk Consulting. He is a seasoned cyber professional with more than 30 years of experience designing and implementing programmatic security solutions. He is an expert in security requirements including CMMC, FedRAMP, FISMA, NIST 800-53 R4 and 800-37 R1, NIST 800-171, HIPAA, GDPR, SOC 1, SOC2, and SOC 3.
In 2010, Dave served as the Project Manager for the Federal Risk and Authorization Management Program for the General Services Administration and the Federal CIO, where he developed the Security Program for the Federal Risk Authorization and Management Program (FedRAMP). Dave is now nationally known as the architect and author of FedRAMP, resulting in the first-ever government-wide implementation of FISMA. He also designed the Continuous Monitoring Program for FedRAMP, which has been leveraged, in part, by the Department of Energy.
Dave is routinely asked to provide Subject Matter Expertise to multiple federal and commercial entities in the fields of Cloud Computing, IT Security, Information Assurance, and Program Management. He is a strong advocate for continuous monitoring and establishing a risk management framework that can be utilized to manage risk in a “real world” environment. Dave received his Master’s Degree in Cyber Security from the University of Maryland.
Testimonials
Get In Touch
SunHawk Consulting
2550 E Rose Garden Ln.
Unit 72016
Phoenix, AZ 85050
info@sunhawkconsulting.com
Sign up for Our Newsletter
Your information is private and will NEVER be shared outside of SunHawk Consulting.
SunHawk Consulting specializes in professional consulting services and has a team of highly skilled subject matter experts with substantial backgrounds in:
* Healthcare Compliance: Statistical Sampling, Medical Coding Audits, Healthcare Compliance Programs, Evaluation of Compliance Programs and Risk Assessments, HIPAA Compliance Risk Assessments & Training, Corporate Integrity Agreement (CIA) Board Advisor, Independent Review Organization (IRO) Services, Interim Healthcare Compliance Support, Physical Security Assessment, Design and Implementation of Sunshine Act Compliance Programs, Enterprise Risk Management Optimization, Governance, Risk and Compliance (GRC) System Support, Electronic Health Record (EHR) System Implementation, Outsourced Audit Function Support, Medical Risk Adjustment Compliance (Medicare, Medicaid, Commercial), Policy, Procedure, Internal Control Development and Evaluation, FedRAMP Compliance;
* Corporate Investigations: Fraud Investigations and Forensic Accounting, Anti-money Laundering (AML), Bank Secrecy Act (BSA), Know Your Customer (KYC), Foreign Corrupt Practices Act, Third-party Due Diligence;
* Corporate Compliance: Evaluation and Design of Corporate Compliance Programs, Interim Compliance Support, Compliance Risk Assessments, Physical Security Assessment, Enterprise Risk Management, Private Equity Governance, GRC System Support, Audit Function Support, Fraud Risk Assessments, Investigations Program Assessment and Enhancements, Qui Tam Investigations, Hot Line Support;
* Litigation Disputes: Complex Litigation and Disputes, Mergers and Acquisitions: Regulatory Due Diligence, Expert Witness, Statistical Analysis, Healthcare Payment Disputes, Litigation Support, Physical Security Assessment, Neutral Party Data Analysis.