Highly Trained Professionals with Decades of Experience

Our experts include former senior-level FBI agents, chief information officers, chief information security officers, seasoned security analysts, and experienced risk/compliance professionals. Members of our team are certified in many of the most hard-to-achieve credentials in the cybersecurity industry. We are on the leading edge of cyber security and risk management and provide services to a wide range of clients, including insurers, online businesses, tech companies, law firms, accounting firms, and high net worth individuals.

  • Jonathan Brecheen
    Security Engineer

    Jonathan is a Security Engineer with over 20 years of experience spanning multiple disciplines in Information Security, Cybersecurity, and IT, including roles in Cybersecurity Engineering and Analysis, Vulnerability Analysis, Physical and Information Security, Server Administration, and Desktop Engineering and Administration. Jonathan has proven success in organizations of all sizes in many industries, including law, oil and gas, finance, tech, healthcare, state and federal government, and law enforcement, and he has a passion for utilizing Information Security principles to protect data without impacting productivity. Jonathan's certifications include CrowdStrike Certified Falcon Administrator (CCFA), Security+, Network+, ISO 27001, and ITILv4.

  • James Clark
    Sr. Risk & Audit Analyst

    James Clark is a Sr. IT Risk & Audit Analyst. James has 15+ years of Information Technology experience with 11+ of those years in IT Security including risk & governance and SecOps. He’s worked for multiple fortune 500 companies across the financial, technology and consulting and outsourcing industries to name a few.  He expertise is directing risk management initiatives while establishing, implementing and enhancing key information security objectives and control frameworks to maximize productivity. James has a B.S. in Information Technology with a concentration in Network Security, a CompTIA Security+ Certification, and an ISO 27001 Foundation Certification.

  • Lee Conquest
    Manager of Security Operations

    Lee Conquest is currently serving as the Manager of Security Operations.  He has almost 20 years of experience in IT, serving in numerous roles including Security Engineering, Network and Telephony Engineering and Security, System and Storage Administration, and CITRIX administration.  During this time he has been able to apply the practices of security engineering and architecture to a myriad of different technologies and technical disciplines, including disaster planning and recovery and data privacy/protection.  Lee holds a BS from the Pennsylvania State University in Management Science and Information Systems and is a certified and active CISSP.   


  • Kim Ercolani
    Risk & Audit Analyst

    Kimberly Ercolani is an IT Risk and Audit Analyst. Kimberly has 10 years of experience in Information Technology, including 5 years in the legal industry. She has experience across various industries including medical, legal, technology, and education. Kimberly has a unique blend of technical experience and is able to balance those requirements to meet the needs of an organization. Kimberly has a BS in Security and Risk Analysis with a concentration in Information and Cyber Security.

  • Lynnette D. Espy-Williams
    Chief Diversity, Equity & Inclusion Officer Member

    Lynnette serves as the firm's chief diversity officer. She has experience in litigating a wide variety of civil and commercial matters, including matters pertaining to mass and complex torts, professional liability, premises liability, product liability, contract disputes, and extracontractual disputes including defending bad faith claims.

  • Brian Gillam
    Chief Operating Officer, Ancillary Business Units

    Brian started securing computer systems as a software engineer at Lexis-Nexis in the 1990s.  Since then, he has served as a chief information security officer, chief information officer, and chief financial officer.  Today he serves as Cozen O’Connor’s chief operating officer of the ancillary business units, one of which is COSECURE.  Brian earned an M.B.A. from the Kellogg School of Management at Northwestern University.  He also holds a post-masters certificate in accounting and tax from Drexel University and a B.S. from Brigham Young University.

  • Zach Hockin
    Director of Client Engagement

    Zach Hockin is the Director of Client Engagement who helps small business clients navigate through choosing the right cyber security services for their business.

    Before starting at COSECURE, Zach worked for 20 years as a client-facing leader in the manufacturing and distribution industries, and as a Vice President of Sales Operations in the training services industry. After a successful career helping small and mid-size business owners and operators as well as educators, health professionals, and security professionals, Zach now advises clients on how to understand and process through the increasingly complex cyber security industry.

    Zach is available for your questions, including private consultations, and can be reached through the contact us page.

  • Terry Kufen
    Chief Information Officer

    Terry Kufen is our Chief Information Officer.  He has 25+ years of experience with IT systems and leadership.   He’s been hands-on in all aspects of IT from networking/security, systems development, disaster recovery, privacy/security, and risk/governance.  Terry holds a BS in Computer Science, MS in Information Sciences, is an accredited and active CISSP, and certified IS27001 Lead Implementer.


  • Trevor McGuinness
    Managing Director

    Trevor McGuinness concurrently serves as an EPAS Innovation Specialist at Cozen O’Connor; prior to joining Cozen O’Connor, Trevor was a principal at Hector Street, a hedge fund focused on systematic trading opportunities. Previous to that he worked four years as an Analyst in Portfolio Management and one year as an Associate in Financial Planning and Analysis for FS Investments, guiding the development of proprietary business-critical software and transition from legacy systems. Trevor majored in Science, Technology, and Society at the University of Pennsylvania School of Arts & Sciences, Class of 2012. Prior to that, he played on the professional squash circuit in Europe and served as the Director of Community Engagement with the SquashSmarts urban youth enrichment program.

  • Ronald Menold
    Director, Cybersecurity Services

    Dr. Menold retired from the Federal Bureau of Investigation after a 24-year career as a Supervisory Special Agent.  From 2010 to 2017, Dr. Menold was the Director of the New Jersey Regional Computer Forensic Laboratory (NJRCFL) where he was also an FBI-certified Digital Forensic Examiner and an FBI Certified Laboratory Director.  While at the FBI, Dr. Menold was on the Field Engineering Board and helped design one of the largest operational computer networks used by the FBI on a daily basis. 

    Dr. Menold holds both the Certified Information Systems Security Professional (CISSP) and the Certified Ethical Hacker (CEH) certifications from (ISC)2 and EC-Council respectively.  He also holds multiple SANS/GIAC certifications including GIAC Security Essentials (GSEC), GIAC Certified Forensic Examiner (GCFE), GIAC Certified Forensic Analyst (GCFA), and GIAC Reverse Engineering Malware (GREM).  Due to his exemplary performance on the certification examinations, Dr. Menold is also a member of the invitation-only GIAC Advisory Board.

    Dr. Menold has a bachelor's degree in Computer Engineering and a Doctorate in Computer and Information Security.  He is also an adjunct professor, teaching graduate classes in Digital Forensics at a U.S. university.

  • Dawn Romano
    Director of Risk and Audit

    Dawn Romano is the Director of IT Risk and Audit. Dawn has 30+ years of experience in internal and external audit and risk management. She’s worked as a consultant with Big 4 firms and as part of organizations across multiple industries including financial, healthcare, higher education, non-profit, retail, legal and utilities. Her specialty is assessing governance and regulatory compliance and balancing risk to meet those requirements while understanding a company’s needs to help ensure successful adoption. Dawn has an MBA in Management, BA in Computer Science  and Mathematics, and a CISA certification.  

  • Brad Schmidt
    Security Engineer

    Brad is a Security Engineer with years of experience in the field of cybersecurity. A former Security Operations Center Manager, Brad currently oversees vulnerability management and remediation. He is involved in incident response, threat hunting, and red-teaming. Brad has earned A+, Network+, Security+ and CySA+ certifications.


Mitre Att&ck Series

There are 1000 things you can do with the MITRE ATT&CK Framework. However, since this is an introduction, we will just talk about the easy things. The first thing you need to be introduced to is the concept of TTP which stands for Tactics, Techniques, and Procedures. TTP is a common military term as found in Joint Publication 1-02.


COSECURE, an ancillary business of Cozen O'Connor, has been on the leading edge of cyber security and risk management for over 20 years and are actively protecting global Fortune 100 companies, law & technology firms, and high net worth individuals.

© 2023 COSECURE Terms & Conditions Privacy Policy