People

Kenneth Mendelson CISSP, CIPP, CISA, PCIP

Kenneth Mendelson CISSP, CIPP, CISA, PCIP

Senior Managing Director

Ken Mendelson is an experienced consulting executive with more than 30 years of experience at the intersection of law, information technology and public policy. He excels at leading teams of technical and compliance professionals that produce high-quality results for clients facing legal, regulatory and media scrutiny.

As a member of Guidepost Solutions’ National Security Practice, Mr. Mendelson conducts monitorships and third-party compliance audits in connection with mitigation agreements enforced by the Committee on Foreign Investment in the United States (CFIUS) and Team Telecom. Pursuant to approval granted by the Federal Trade Commission (FTC) he conducts independent compliance reviews of information privacy programs mandated by the FTC.

Mr. Mendelson oversees the delivery of Guidepost’s cybersecurity and privacy services including virtual Chief Information Security Officer (vCISO) assignments, penetration/vulnerability testing, risk assessments, compliance assessments against a variety of regulatory requirements (e.g., NYDFS, HIPAA, GDPR, CCPA, CPRA, etc.) and frameworks (e.g., NIST CSF, ISO27001, CIS, PCI/DSS, etc.).  His practice involves assisting established and emerging companies, in industries ranging from healthcare to cryptocurrency, to implement and maintain cybersecurity and privacy programs.  His expertise comprises developing policies, procedures, and guidelines, conducting risk-based cybersecurity assessments, and undertaking investigations.

Prior to joining Guidepost Solutions, Mr. Mendelson worked for an international consulting firm where he originated and managed consulting engagements involving incident response, cyber security assessment, digital forensics, electronic discovery, and investigations . He also initiated and established a practice group that focused on CFIUS/Team Telecom compliance, mitigation, monitoring and auditing matters.

Earlier in his career, Mr. Mendelson served as counsel to the U.S. House of Representatives Committee on the Judiciary, where he advised committee members on a wide range of legal and policy issues, including digital surveillance, computer security, encryption, and new technologies.  He also served as investigative counsel to the U.S. Senate Select Committee on POW/MIA Affairs, where he conducted an intensive private sector-oversight investigation into matters relating to POW/MIA organizations, including the dissemination of false and misleading information, and fraudulent fundraising.

Prior to his government service, Mr. Mendelson was an associate attorney at Kaye Scholer in Washington, DC. He also holds two patents for computer program products that detect access to a memory device.

EDUCATION

  • Juris Doctor, Boston University School of Law
  • Master of Science, Broadcast Administration, Boston University
  • Bachelor of Arts, Communications cum laude, University of Pennsylvania

CERTIFICATIONS

  • Certified Information Systems Security Professional
  • Certified Information Privacy Professional
  • Payment Card Industry Professional
  • Certified Information Systems Auditor

Ken Mendelson is an experienced consulting executive with more than 30 years of experience at the intersection of law, information technology and public policy. He excels at leading teams of technical and compliance professionals that produce high-quality results for clients facing legal, regulatory and media scrutiny.

As a member of Guidepost Solutions’ National Security Practice, Mr. Mendelson conducts monitorships and third-party compliance audits in connection with mitigation agreements enforced by the Committee on Foreign Investment in the United States (CFIUS) and Team Telecom. Pursuant to approval granted by the Federal Trade Commission (FTC) he conducts independent compliance reviews of information privacy programs mandated by the FTC.

Mr. Mendelson oversees the delivery of Guidepost’s cybersecurity and privacy services including virtual Chief Information Security Officer (vCISO) assignments, penetration/vulnerability testing, risk assessments, compliance assessments against a variety of regulatory requirements (e.g., NYDFS, HIPAA, GDPR, CCPA, CPRA, etc.) and frameworks (e.g., NIST CSF, ISO27001, CIS, PCI/DSS, etc.).  His practice involves assisting established and emerging companies, in industries ranging from healthcare to cryptocurrency, to implement and maintain cybersecurity and privacy programs.  His expertise comprises developing policies, procedures, and guidelines, conducting risk-based cybersecurity assessments, and undertaking investigations.

Prior to joining Guidepost Solutions, Mr. Mendelson worked for an international consulting firm where he originated and managed consulting engagements involving incident response, cyber security assessment, digital forensics, electronic discovery, and investigations . He also initiated and established a practice group that focused on CFIUS/Team Telecom compliance, mitigation, monitoring and auditing matters.

Earlier in his career, Mr. Mendelson served as counsel to the U.S. House of Representatives Committee on the Judiciary, where he advised committee members on a wide range of legal and policy issues, including digital surveillance, computer security, encryption, and new technologies.  He also served as investigative counsel to the U.S. Senate Select Committee on POW/MIA Affairs, where he conducted an intensive private sector-oversight investigation into matters relating to POW/MIA organizations, including the dissemination of false and misleading information, and fraudulent fundraising.

Prior to his government service, Mr. Mendelson was an associate attorney at Kaye Scholer in Washington, DC. He also holds two patents for computer program products that detect access to a memory device.

EDUCATION

  • Juris Doctor, Boston University School of Law
  • Master of Science, Broadcast Administration, Boston University
  • Bachelor of Arts, Communications cum laude, University of Pennsylvania

CERTIFICATIONS

  • Certified Information Systems Security Professional
  • Certified Information Privacy Professional
  • Payment Card Industry Professional
  • Certified Information Systems Auditor