Alex Trafton is a Managing Director in Ankura’s National Security, Trade & Technology (NSTT) practice based in Irvine, CA. He has over 15 years of experience in finance, risk management, and cybersecurity. Alex leads the NSTT information security services function and serves as a subject matter expert in cybersecurity program design, implementation, and assessment, with a focus in foreign direct investment oversight (CFIUS), Defense Industrial Base (DIB) cybersecurity requirements (NIST SP 800-171 / CMMC), international trade control compliance program support (ITAR / EAR), and secure software development (SSDF). 

Alex has overseen the development and assessment of enterprise cybersecurity programs for high technology companies as both a fiduciary of CFIUS monitoring agencies (CMAs) in monitoring and auditing sensitive National Security Agreements (NSAs) and in a V-CISO role to Department of Defense (DOD) and Intelligence Community (IC) contractors. Specifically, Alex works extensively with DOD contractors to meet current DFARS cybersecurity requirements (NIST SP 800-171) as well as the incoming Cybersecurity Maturity Model Certification (CMMC). Currently he is working with a broad range of companies from different sectors including: aerospace and defense manufacturing, geospatial imaging and analytics, artificial intelligence,  internet of things (IoT), and software and SaaS development. 

Alex is focused on working with government contractors to build enterprise information security programs which harmonize disparate regulatory and contract cybersecurity requirements into a single efficient and cost-effective program to enable growth through customer and investor assurance. Alex works extensively with companies before, during, and after capital events (venture capital, private equity, and mergers and acquisitions) to help companies achieve synergies and bring new technologies and services to the defense market. 

Alex Holds the following degrees and certifications: 

Education 

B.A., U.C. Berkeley 

Certifications 

Certificate – Cybersecurity Risk Management, Harvard University 
Certificate – Finance, Harvard Business School 
ISO 27001 Lead Auditor  
ISO 27032 Lead Cybersecurity Manager 
ISO 31000 Lead Risk Manager 
CompTIA Security Analytics Professional (CSAP) 
CompTIA Cybersecurity Analyst (CySA+) 
CompTIA Security+ 
CompTIA Network+ 
Cyber AB (CMMC) Registered Practitioner