Mr. McGlone performs program and project management responsibilities for a wide range of activities in the engineering and construction field. With over 20 years of experience, specializing in Civil, Environmental, Cost and Value Engineering, Facility/Community Planning, Property Development, Budget Analysis, Contract Administration/Negotiation, Construction Management, Personnel Management, and Business Development. Mr. McGlone currently manages the Project Controls/Cost Engineering Department for his current company, where he oversees preparation and provides quality assurance of cost estimates for over $8.0 billion in construction value annually for various federal and state government and commercial clients. He has developed facility requirements valued at over $1 Billion for various government and commercial clients through information gathering charettes and produces comprehensive documentation with concept reports, drawings, and cost estimates. He has supervised project managers, engineers, architects, estimators, surveyors, draftsmen, and construction superintendents.
Information Security
MOCA Systems, Inc. implements a comprehensive information security program to ensure that our information systems, software, and data are securely maintained and align with all applicable laws, regulations, information security best practices, and industry standards.
MSI maintains the following certifications:
SOC 2 Type 2
Touchplan, the premier software offering of MSI, is certified annually by third-party audit against SOC 2 Type 2 information security standards.
ISO 27001:2022
MSI service and software offerings are certified annually by third-party audit against ISO 27001 information security standards.
CMMC Level 2 (C3PAO)
MSI maintains a secure CMMC Level 2 compliant environment audited and certified by a Certified Third-Party Assessor Organization (C3PAO)
GDPR
MSI maintains compliance with General Data Protection Regulation (GDPR) and other privacy laws, regulations, and requirements.
Security Practices:
MSI employs a layered information security approach to ensure threats are mitigated at multiple control points and the confidentiality, integrity, and availability of our systems and data are consistently and appropriately protected.
Governance
MSI’s security risk management strategy, expectations, and policy are established, communicated, and monitored.
Risk and Threat Identification
MSI implements security practices to identify and detect threats, risks, and vulnerabilities to our systems. Security processes include:
- Internal and external security audit
- Risk assessment (Internal and third-party)
- Security information and event management (SIEM)
- Penetration testing
- Continuous monitoring and event analysis
- Vulnerability scanning
- Static and dynamic code scanning
System and Data Protection
MSI implements security safeguards to ensure our systems and data are protected from risks, vulnerabilities, and threats. Security processes include:
- Secure identity management and authentication
- Role-based access controls
- User information security awareness training
- Data encryption (at rest and in transit)
- Data loss prevention mechanisms
- Secure system configuration
- Secure software development processes and procedures
- Endpoint monitoring and malware protection
- Firewall and conditional access policies
Response and Recovery
MSI implements response and recovery practices to ensure service continuity, system and data availability, and timely response to threats and incidents. Security processes include:
- Incident Response Plan
- Disaster Recovery and Business Continuity Plan
- Annual response and recovery plan testing
- Secure system and data backup
- Alert and event monitoring, analysis, and response processes and playbooks