Waylon Krush: A Hands-on Cyber Security Leader
If you own a business and you have a website, network, product, or application then you should safeguard it from the hackers and accidental data breaches. When small businesses hear about network security it’s easy to think that “they’re only after big companies, we should be fine”. However, the majority of cyber-attacks are aimed at small and mid-size businesses. For over a decade, cybercriminals have targeted SMBs as a soft, easy target, as compared to the large companies with dedicated network security teams.
Waylon Krush, Founder & CEO of Lunarline, Inc.understood the need to fill this gap in the cyber-security industry and in 2004 founded Lunarline to help businesses fight back against cybercrime
Waylon’s Journey from a Cyber Security Expert to a Successful Cyber Entrepreneur
Waylon grew up in Box Elder, South Dakota, near Ellsworth Air Force Base. From kindergarten on Waylon had access to computers, learning the ins and outs of both software and hardware.
“I was lucky that Box Elder, was well let’s say entertainment challenged,” says Waylon. “This gave me plenty of time to focus on video games.”
Getting access to video games in Box Elder often required a bit of creativity. “We would buy ‘game books’ at rummage sales and the like. These were physical books of video game code that we would then hand type into a computer and try to compile. Of course, they never compiled successfully, and so we’d spend hours debugging the code until we could finally play.”
“This was my first real hands-on with programming and I was sold on what I wanted to do when I grew up.”
By the time Waylon joined the Army he was a skilled programmer. This proved useful during his military signals analysis courses, when his command of scripting languages earned him many free days on various Pensacola Florida beaches, as his instructors didn’t want him in class, sharing answers.
During his military career, Waylon refined his programming and networking skills and was an early pioneer in the art of identifying computer weaknesses and shutting down attacks. “After identifying the first ever live information operations attacks against US systems I was given an impact award and sent to Land Information Warfare Activity (LIWA) which is now 1st Information Operations command. Today we have different names and terms for these type events, but this would have been considered one of the first live identification of a nation-state attack and that was back in 1999. Here I was able to focus my skills and career in cyber security which lead to my first real job out of the military at AT&T. Shortly thereafter I started Lunarline.”
Lunarline: Pivoting to Cyber Success
Founded in 2004, Lunarline is a full spectrum cybersecurity company. They started out developing RFID technology for safety and security and, harkening back to Waylon’s Box Elder days, a platform that would use full-packet inspection to recognize when people were cheating on video games.
Grit in difficult times is Waylon’s forte, something he has made a key element of Lunarline’s corporate culture. Lunarline’s initial business plans failed to gain traction in the market., But Waylon successfully pivoted and transferred his company’s secure RFID expertise into a successful services business secure logistics systems in DoD. They also adapted the anti-cheating technologies they had developed for the video game sector and built a suite of cyber and privacy products for Federal and commercial clients. Lunarline now has a platform of solutions that help over 500 clients globally fight back against modern cyber-crime.
Emerging as a Leading Cyber Solutions Provider
Lunarline develops and delivers solutions to modern cyber and IT challenges. With over 500 clients across the intelligence, defense federal civilian and private sectors, their solutions help some of the world’s largest, most complex organizations fight back against cybercrime. But such rapid growth in so many diverse cyber disciplines creates its own challenges, particularly around branding. “I’ll admit, keeping pace with this fast of growth has been an interesting branding challenge. We’ve had a tough time keeping a consistent look and feel across such a broad and innovative portfolio,” says Waylon. “Many of our customers don’t even know that their tools, and training and services and managed services all come from one source. But we just embarked on a complete rebranding of all our capabilities to better tie them back to the Lunarline brand.”
Top 10 Healthcare IT Security Solutions Providers for 2017
November 2017 – Arlington VA: The healthcare industry continues to get threatened by risks to security in various forms—whether simple data breaches or massive ransomware. Combined with the updated rules of HIPAA, ensuring the security of Protected Health Information (PHI) now stands paramount.
Healthcare organizations have a pool of security considerations to choose from, that must be addressed to extend privacy and safety of personal data to patients. While maintaining healthcare IT security appears to be a daunting task, with the right planning strategies, it’s not impossible. A good amount of technical expertise, business knowledge, and strategic planning goes into securing any healthcare system; be it a solo practice, or a multi-location system. It is the only way security experts can effectively bring about a balance between the undying quench for impenetrable devices and the continuous demand for user-friendly, accessible tools and software by medical users.
To help CTOs, CIOs, and CMIOs find the right healthcare IT security solution, a distinguished selection panel comprising of CEOs, CIOs, VCs, industry analysts, and our magazine’s editorial board has selected a list of security solution providers that exhibit innovative technologies and strategies. We have considered the vendor’s ability in building solutions and services that can effectively yet economically account for a productive healthcare IT solution offering, keeping in mind the factor of time-focused delivery.
Top 10 Best Performing Big Data and Business Analytics Companies of 2017
August 15th 2017 – Arlington VA: You’ve probably heard it before—companies have to protect themselves against all kinds of attacks. But an attacker only needs to have one successful attempt. With those odds, you can’t just try to prevent attacks from happening. You also need to be able to detect them and respond—fast.
Lately, the most effective defenses against cyber intrusions are Big Data and Analytics. Better, faster, actionable security information reduces the critical time from detection to remediation, enabling cyber warfare specialists to proactively defend and protect your network.
In early 2004, Lunarline, Inc., was developed to help solve a colossal security problem prevalent in both the government and private sectors: systems and software were being designed, developed, and deployed into sensitive environments, and then security was added as an afterthought, if at all.
50 Most Valuable Brands of the Year for 2017
Arlington VA May 25th, 2017 – Lunarline, Inc., a leading provider of cybersecurity products, services, and training, was recently recognized by Silicon Review as one of the 50 Most Valuable Brands of 2017.
“Lunarline has helped more than 500 clients in the Intelligence, Defense, Federal Civilian and private sector communities fight back against cybercrime,” said Lunarline founder and CEO Waylon Krush. “We owe our internationally-known brand – recognized by Silicon Review as one of the 50 Most Valuable Brands of 2017 – to the 100s of talented Lunarliners who have given it their all to make us one of the world’s leading providers of cybersecurity products, services, and training.”
Founded in 2004, Lunarline grew rapidly and now supports clients on five continents. From Health-IT security to financial sector security, to cloud security, to transportation security and government security, Lunarline helps complex organizations navigate an ever-changing cyber landscape.
“We help our clients develop tailored approaches to their unique cyber challenges,” says Mr. Krush. “We have invested millions in the development of advanced capabilities, including managed security services and a 24x7x365 cyber intelligence team that monitors the darkest corners of the web to protect our clients and their VIPs. Our School of Cybersecurity (SCS) offers dozens of certifications covering the most advanced topics in the cyber discipline. And our penetration testing team goes way beyond basic techniques, writing custom exploits to test our clients’ defenses against the most advanced attacks.”
Mr. Krush points to an exponential increase in demand for advanced security products and services as a major brand value driver. Lunarline has implemented innovative cybersecurity solutions for some of the country’s most technologically advanced organizations and is viewed by the private and public sectors as a trusted advisor in all matters related to cyber defense and compliance.
Perspicacious and Prominent Services
Cloud computing represents one of the most significant and exciting changes in technology since the emergence of the Internet. For commercial CSPs implementing the Federal Risk and Authorization Management Program (FedRAMP) security requirements in their environment, a FedRAMP approved Third Party Assessment Organization (3PAO) must be hired to perform the independent assessment and provide the security assessment package to the FedRAMP Joint Authorization Board (JAB) for review.
As an official Third Party Assessment Organization (3PAO), Lunarline is uniquely qualified to independently validate and verify that all FedRAMP requirements have been met. Lunarline’s Cloud Security Consultants will develop a cloud security strategy roadmap designed to guide you through the security and privacy concerns of cloud computing and help you implement a secure cloud strategy.
Origination of Lunarline
In early 2004, Lunarline, Inc., a Service Disabled Veteran Owned Small Business and FedRAMP-accredited 3PAO, was developed to help solve a colossal security problem prevalent in both the government and private sectors: systems and software were being designed, developed, and deployed into sensitive environments, and then security was added as an afterthought, if at all. Lunarline was created to provide the customers with solutions and securities to the people for all the data they store, transmit, or process.
Pro-Active and Persistent Leader
Waylon Krush, Co-Founder, and CEO, Lunarline Inc., is not the sit-at-his-desk type. He’s happier out in the field, helping clients fight back against an ever more threatening cyber world.
Prior to becoming Lunarline’s fearless leader, Waylon was a senior information security engineer in AT&T’s Advanced Systems Division and chief of the information assurance group for GRC-TSC. A veteran of the US Army, Waylon held various Intel- and security-related technical and leadership roles, including serving as the lead technical member of the Land and Information Warfare Activity Information Systems Security Monitoring, Vulnerability Assessment Blue Team, and Red Team.
For his contributions to National Security, he was named a Knowlton Award Winner, one of the Intelligence Community’s highest honors. He was also recognized as the 718th Military Intelligence Soldier of the Year, the NSA Professional of the Quarter, received the Voice of America Award and is a two-time winner of the American Legion Award.
Lunarline: Light and Direction to Solve Cyber Issues
The team at Lunarline has worked on one of the first secure cloud pilots for the US Government and many of their commercial clients. They were asked to take several open source applications and components, and develop custom secure baselines that would meet Federal security requirements, but more importantly, needed to be hardened to meet the risk appetite of the executives they were supporting.
As cloud was a new technology, and the executives would not be controlling anything from the gate guards to the hypervisor, their risk appetite was very low. So the team ended up conducting supply chain risk assessments, through software assurance reviews, pen testing, and creating fixes for security and privacy issues that had not been published.
Their extra work paid off shortly after launch as a few zero-day attacks hit the Content Management System (CMS) they were using, but since they uncovered and fixed the security issues when they reviewed the code and tuned their customers’ Web Application Firewalls (WAF) the attack did not affect them or their customers.
Perspicacious and Prominent Services
Lunarline’s Cloud Security Consulting Services include- FedRAMP security controls assessment and validation performed by an accredited Third Party Assessment Organization (3PAO), Guidance throughout the FedRAMP assessment and provisional authorization process for infrastructure (IaaS), platform (PaaS), and software (SaaS) services offered by federal and commercial Cloud Service Providers (CSPs). They provide 24x7x365 Managed Active Response Security (MARS) Incident Response and Hunt Teams, and Develop high-level cloud computing security strategy along with Software Assurance, Penetration Testing, and custom security fixes and baselines.
Lunarline provides best practices for ensuring secure Private, Public, or Hybrid cloud environments and they also guide and educate on critical cloud security considerations.
Strategic Solutions Beneficial for Clientele
The team at Lunarline does not tie their solutions too closely to specific vendors. Their solutions have since become mostly vendor agnostic, and they have also found that they can be a force-multiplier by providing their customers with cyber and privacy training/certification.
Their hunt teams have uncovered significant breaches for their customers inside and outside their network and cloud instances. They have spent many years of profits to focus on bringing together their threat, malware, and vulnerability management along with their custom deep web, dark web, pen testing, and open source intelligence tools, they can get in front of many of the security issues and flaws their customers deal with daily. When their customers do have significant security events or inside threats or identify an indicator of compromise, they work with the customers to create a solution that meets their situation and budget. This includes training their internal incident response, compliance, and hunt teams. They love to train their customers to become part of the security solution.
Lunarline’s Future Roadmap
From a security perspective, cloud has been a force multiplier as it relates to security, but has also enabled adversaries to conduct significant operations and attacks at a very low cost.
Lunarline will continue to push their security and privacy automation, training, testing, and proactive monitoring/response services to support customers as they evolve increasingly of their sensitive operations to the cloud.
Top 20 Most Promising Cloud Solution Providers for 2016
CIO Review – Top 20 Most Promising Cloud Solution Providers -2016: An annual listing of 20 companies that are in the forefront of tackling challenges in the cloud space.
Top 10 Managed Security Service Providers For 2015
CSO Outlook – Top 10 Managed Security Service Providers 2015: An annual listing of 10 companies that are in the forefront of tackling Managed Security Services challenges and impacting the market place.
SmartCEO’s Future 50 Awards
Washington SmartCEO’s Future 50 Award: The honor is bestowed on 50 fast-growth companies in the Washington D.C. metro area. The winners of this award are chosen based on a three-year average of employee and revenue growth.
Lunarline Award Years:
2014 Virginia Chamber of Commerce Fantastic 50 Award: The Fantastic 50 program is the only statewide competition that recognizes the fastest-growing companies in Virginia.
Inc. 500|5000: Inc. magazine annually complies an exclusive list of the nation’s fastest-growing private companies. The list represents a comprehensive look at the most important segment of the economy: America’s independent entrepreneurs.
Lunarline’s national rankings include:
2013 – #2,393
2012 – #1,462
2011 – #1,846
2010 – #2,122
2012 Washington SmartCEO’s Voltage Award – Cyber Warrior/Small Business
SmartCEO’s VOLTAGE Awards celebrate the role technology plays in the business community, and the future impact the technology sector will have on economic growth. VOLTAGE Awards recognize leading innovators that are developing new technologies to improve operational efficiencies and companies that are using technology to enhance their competitive advantage.
DiversityBusiness.com: Each year DiversityBusiness.com collects and compiles the Top Business List on a state and national basis. Out of more than a million businesses surveyed, Lunarline was among a select few chosen based on annual gross revenue and business profile.
Lunarline’s rankings include:
2012 – #55 Top 500 Veteran-Owned Businesses in the U.S
2012 – #20 Top 100 Disabled Veteran-Owned Businesses in the U.S
2012 – #58 Top 100 Virginia Diversity-Owned Businesses
2013 – #47 Top 100 Disabled Veteran-Owned Business
2013 – #69 Top 100 Privately Held Business in Virginia
2014 – #18 – Top 50 Privately Held Business in Virginia
2014 – #61 – Top 100 Disabled Veteran Owned Business in USA
2014 – #147 – Top 500 Veteran Owned Business in USA
2014 – #336 – Top 500 Privately Held Business in USA
2011 U.S. Chamber of Commerce – Best of Washington in Data Communications Equipment
The USCC Best of Local Business Awards recognizes outstanding local businesses throughout the country. Each year, the USCC identifies companies it believes have achieved exceptional marketing success in their local community and business category. These are local companies that enhance the positive image of small business through service to their customers and community.
2011 Washington SmartCEO’s Smart 100 Award
Lunarline CEO Waylon Krush was recognized as a 2011 Smart100 CEO in the Washington D.C. metro area for his leadership, strategic vision and character in running a small business.
2008 Cyber Security Excellence Award
Lunarline CEO Waylon Krush was presented the Office of the Chief Information Officer U.S. Department of Transportation Cyber Security Excellence Award for his team participation in the Federal Railroad Administration’s (FRA) SharePoint System and Security Pilot Project, which resulted in the secure establishment of the OneDOT website.