Detailed information about M. E. Kabay's professional work.

*For those deprived of the infinite joy (!) of having studied Latin in their youth (!), the words curriculum vitae mean literally, the course of life.



What I do as a consultant:

My motto in consulting is Progress Towards Autonomy**: I generally ask to work closely with someone from the client organization who will learn why I am approaching problems as I do and who will be able to carry the knowledge and methodology into the organization permanently after I finish the contract.

Contrary to popular belief, I'm not a "just" a security consultant: I'm an operations-management consultant and statistician whose security expertise threatens to consume my professional life. So, with no particular rank or order, here are some of the ways I am useful to consulting clients:

  • Operations management analysis and optimization
  • Facilities security assessments from perimeters to architecture
  • Security policy: assessment, development and improvement
  • Organizational dynamics: analysis of problems, resolution of conflicts [using Real-Time Notes (TM), Computer-Aided Consensus (TM) and Computer-Aided Thematic Analysis (TM)]
  • Experimental design and analysis: biological, social and physical sciences
  • Market research: survey design and analysis, focus groups, interviews
  • Technical writing and editing: white papers, journalism, textbooks, RFPs, prospectuses for new companies
  • Medical informatics: hospital/clinic/individual practice information & physical security
  • Course development and delivery: in situ and online applications
  • Membership in Advisory Boards: new corporations in information technology
  • Serving as an expert witness in legal proceedings

739 exhausting words of self-laudatory prose (third person for use in conference bios and the like):

M. E. Kabay began teaching his high school classmates how to use the slide rule in 1963 (NOT the ideal way of being popular) and began programming IBM 1401 computers in assembly language in 1965. In 1976, he completed his PhD from Dartmouth College in applied statistics and invertebrate zoology and then taught statistics, programming and biology as a university professor in Canada and overseas.

He began teaching applied statistics at Dartmouth College in 1975 in a course for Biology graduate students and served as adjunct faculty in the University of Ottawa Institute for Government Informatics Professionals, the John Abbot College Programmers’ Course and their Technical Support Program, and the McGill University Management Institute before joining Norwich University.

In 1979, he joined a compiler team for a new 4GL and RDBMS in the U.S. and then joined Hewlett-Packard Canada in 1980 as an operating systems and database performance specialist, winning the Systems Engineer of the Year Award in 1982 and teaching MPE operating system, IMAGE/3000 database and VPLUS/3000 GUI-design courses as well as serving as support engineer to HP’s hospital and university customers and managing HP’s bilingual call center (Phone-In Consulting Service) for Québec and the Maritime provinces.

He taught database and technical support courses for a decade at John Abbott College in Ste Anne de Bellevue on the West end of Montreal Island in the 1980s through the mid 1990s. He founded his own company, JINBU Corporation, in 2006; much of his consulting work in that firm was database performance analysis and redesign for optimization. Other assignments included overall operating system analysis and optimization for improved performance to meet service-level agreements for quality of service.

He served as Director of Education for the National Computer Security Association (NCSA, later ICSA and then TruSecure) from 1991 to 1999 and then worked briefly with Adario/AtomicTangerine where he supported the International Institute for Information Integrity® (I-4®).

He was a member of the committees defining the Common Body of Knowledge for the Certified Information Systems Security Professional (CISSP) designation in the mid-1990s and earned his CISSP in 1997.

Since 1986 (and as of early 2017), he has published over 2,000 articles in operations management and security, written a college textbook on enterprise security (McGraw-Hill, 1996), and served as Technical Editor of the 4th (2002), 5th (2009) and 6th (2014) editions of the Computer Security Handbook (Wiley). He wrote two security-management columns a week distributed by Network World < >fromFebruary 2000 to September 2011 and one per week for InfoSec Perception < > from October 2011 to the end of 2013. His public Website has a total of over 2,000 PDF files and over 500 instructional PowerPoint files freely available to anyone for non-commercial use.

He has been an invited lecturer at the United States War College, the Pentagon, NATO HQ in Brussels, and at NATO Counterintelligence training in Germany. He was inducted into the Information Systems Security Association (ISSA) Hall of Fame in December 2004 and earned his Information Systems Security Management Professional (ISSMP) designation in November 2005.

From 2002 to 2009, he was the creator and Director of the Master's Program in Information Assurance (MSIA) in the College of Graduate and Continuing Studies (CGCS) at Norwich University, Northfield, Vermont where he was also the Chief Technical Officer of the CGCS from 2007 to 2009. Returning full time to the School of Business & Management in 2009, he was promoted to Professor of Computer Information Systems in May 2011 and was appointed Associate Director of the Norwich University Center for Advanced Computing and Digital Forensics in July 2011.

Dr Kabay also serves as Strategic Advisor, Information Assurance for a high-tech company, On Point Cyber <!team/cjg9 >. His LinkedIn page is < > and his Website is < >.

Students and everyone else are welcome to friend him on Facebook (but to protect their privacy he generally does not follow students) for a stream of links to interesting information security and high-technology articles (mostly from The Guardian, BBC News and National Public Radio) with occasional forays into politics, culture, science, and puns.

He is looking forward to retiring on 30 June 2021 after teaching at Norwich for 20 years. He is keen on using his free time to write novels, give concerts as a bass-baritone soloist, read stories and poems at public libraries, earn money with dramatic reading for audio books, and teach applied-statistics courses for fun.


CV, honors, publications and teaching... a single file for those prepared to wade through the detail (CV, publications, teaching)      PDF

List of publications in one PDF file
** Progress Towards Autonomy was the motto of my company, JINBU CORPORATION, in Canada from 1986 through 1998 when I closed it upon moving to the United States.

Copyright © 2017 M. E. Kabay.  All rights reserved.

The opinions expressed in any of the writings on this Web site represent the authorís opinions and do not necessarily represent the opinions or positions of his employers, associates, colleagues, students, relatives, friends, enemies, cats, dog or plants. Materials copyrighted by M. E. Kabay from this Website may be freely used for non-commercial teaching (i.e., specifically in any courses for academic credit or in free industry training at workshops or within organizations) but may not be re-posted on any Website or used in commercial training (where participants must pay fees for participation in the conference or workshop or where the instructor is paid) without express written permission. Any unauthorized sale of these copyrighted materials will be prosecuted to the full extent of the law.

Updated 2017-01-03