About Us

About Us

What is Sera-Brynn?

Sera-Brynn® is a global Cybersecurity Audit and Advisory firm.

Our team of professionals is dedicated to helping our clients secure their computing and network environments and meet applicable, and in some cases mandatory, industry and government compliance requirements. We believe cyber security demands a holistic approach, which is why we routinely work with legal counsel, the insurance industry, accounting firms, and law enforcement at all levels to provide the best protection possible to our clients.  Additionally, Sera-Brynn offers Penetration Testing, Incident Response, Post-Breach Forensics, DFARS Compliance and Security Consulting

Who is Sera-Brynn?

We are a team of certified compliance auditors, security engineers, computer forensics examiners, security consultants, security researchers, and trainers with in-depth expertise and decades of experience. Many of us come from the national intelligence and military information security community where we designed, protected, and countered threats to the most complex and sensitive network infrastructures in the world. We apply those skills, tactics and techniques to the benefit of our private sector clientele.

We provide support to clients across the globe, to include Fortune 500 companies, global technology enterprises, state and local governments, large healthcare organizations, law firms, Captives and Risk Retention Groups, higher education, financial institutions, international joint ventures, insurance carriers, non-profits, and mid-market retail merchants, all of whom rely on Sera-Brynn as a trusted advisor and extension of their information technology team.

Our Leadership Team

Rob Hegedus, CEORob Hegedus, CEO Rob S. Hegedus is a co-founder and Chief Executive Officer of Sera-Brynn. In 2012, Mr. Hegedus oversaw the certification of Sera-Brynn as one of the Payment Card Industry’s Qualified Security Assessor firms. He currently leads the company’s strategic growth initiatives supporting critical security and compliance operations for multiple business markets, to include Fortune 1000, HealthCare, Financial Services, Retail and Government.

Prior to starting Sera-Brynn, Mr. Hegedus was the Managing Partner of Entrepreneur Outfitters Venture Partners, and early-stage venture capital firm focused on providing investment capital and executive leadership assistance in information technology, renewable energy and government contracting markets. In 2003, he was also the founder and President of the Broadspere Group, a Department of Defense contractor that provided specialized intelligence support to the Global War on Terrorism. Mr. Hegedus served as an intelligence officer in the United States Air Force and supported multiple mission areas worldwide.

John Kipp, COOJohn Kipp, COO John Kipp is a co-founder and Chief Operating Officer of Sera-Brynn. In 2012, Mr. Kipp oversaw the development of Sera-Brynn’s cyber security services, compliance capabilities, and associated staffing. He currently manages the firm’s operational capabilities supporting critical security and compliance operations for multiple business markets, to include Fortune 1000, Healthcare, Maritime Logistics, and Government. Prior to starting Sera-Brynn, Mr. Kipp managed several multi-million dollar contracts while working for Booz Allen Hamilton in support of the Defense Intelligence Agency. Mr. Kipp served in the United States Navy as a Cryptologic Technician, Collecting (CTR) primarily in locations throughout the Pacific.

Darek Dabbs, CTODarek Dabbs, CTO Darek Dabbs, CISSP/PCI-QSA, is Sera-Brynn’s Chief Technology Officer. Mr. Dabbs has over 15 years of experience supporting multi-tiered and highly-classified information security efforts in both the Federal and Private Sector. He oversees all information security engagements for Sera-Brynn’s Fortune 500, large Healthcare, and Enterprise-level clients. As Sera-Brynn’s lead PCI Qualified Security Assessor, Mr. Dabbs further manages the company’s PCI and HIPAA assessment efforts.

Heather Engel, CSOHeather Engel, CSO As Chief Strategy Officer at Sera-Brynn, Ms. Engel provides risk management and business intelligence to clients across a wide variety of industries. She has over 17 years of experience in risk management, information assurance, system integration, incident response, disaster recovery, security policy, business continuity planning, crisis communications, and security testing and evaluation. Prior to Sera-Brynn, Ms. Engel assisted government agencies and the Department of Defense in securing advanced information systems and coordinating cyber warfare exercises. She is a Certified Information Systems Security Professional, a Payment Card Industry Qualified Security Assessor, and a Fully Qualified Navy Validator. Ms. Engel holds a Bachelor of Arts from the Pennsylvania State University and an MBA from Florida Institute of Technology. She is a 2015 Inside Business Women in Business Honoree. In the past year, she has been a featured or keynote speaker at numerous conferences across the country, authored several journal articles, and served on cybersecurity panels with Vice President Joe Biden and Governor Terry McAuliffe.

What Does Sera-Brynn Mean?

We get this question all the time!

Sera – Taken from the Sera Monastery in Tibet which is one of the three great monasteries of the Geluk school of Tibetan Buddhism.

Brynn – English spelling of the Welsh word “bryn” meaning “hill” or “mound.” Historically, only the strongest get to claim a bryn as their own.

We chose this unique combination for the name of our company in order reflect two important values of cyber security: the relentless pursuit of knowledge and excellence within one’s discipline, and strength through preparedness and resilience.

Our Credentials

Sera-Brynn is ranked #9 worldwide on the Cybersecurity 500.

Sera-Brynn is the only cybersecurity firm in North America directly partnered with a multi-billion-dollar financial institution. This provides us unique insight and experience into the regulatory landscape and compliance parameters of the financial services industry, to include the ever-increasing number of state mandated cybersecurity requirements.

Sera-Brynn is one of only a handful of companies globally to be both a certified FedRAMP assessor and PCI Qualified Security Assessor. Cybersecurity Audit and Advisory services support compliance mandates. Compliance infers, at a minimum, a modicum of risk transfer, which in turn necessitates the appropriate certifications.

Sera-Brynn audits the auditors. Our clients include the largest and most recognized global audit and advisory firms. When they need third party validation of their cybersecurity compliance posture, they turn to us.

Sera-Brynn’s team maintains the following industry certifications:

  • Payment Card Industry Qualified Security Assessor (PCI QSA)
  • ISO/IEC 17020:2012 and FedRAMP Certified Assessor (FedRAMP)
  • Certified Information Systems Security Professional (CISSP)
  • Information Systems Security Architecture Professional (CISSP-ISSAP)
  • Information Systems Security Management Professional (CISSP-ISSMP)
  • Computer Hacking Forensic Investigator (CHFI)
  • Certified Information and Certified Information Security Manager (CISM)
  • Certified Information Systems Auditor (CISA)
  • Check Point Certified Security Expert (CCSE)
  • Check Point Certified Security Administrator (CCSA)
  • Cisco Certified Network Associate (CCNA)
  • Private Investigator
  • Fully Qualified Navy Validator

Personal Service

All of our clients enjoy a one-on-one relationship with our Auditors and Security Engineers. Unlike traditional auditors, Sera-Brynn works directly with clients to secure their environment and meet compliance criteria in the most efficient and economical means possible. Many of our clients enjoy the benefits of a direct relationship with an industry auditor as they navigate the increasingly complex cybersecurity regulatory environment.

Our Incident Response and Forensics services include liaison support with our clients’ insurance representatives, legal counsel, crisis management representatives, and law enforcement as applicable and if requested to ensure the most advantageous recovery following a data breach.