// CISO · CISSP · Principal Engineer

Matthew
Karro

Chief Information Security Officer

25+ years securing critical systems across defense, aerospace, and commercial sectors. From missile defense contracts to cloud-native architectures — I translate complex cyber risk into decisive strategy.

What makes me different is that I don't just manage risk on paper — I've written the code, run the vulnerability scans, hardened the systems, and migrated the infrastructure to the cloud. That means when I sit in the boardroom and tell leadership what it will take to secure their organization, I know exactly what I'm talking about. If you're looking for someone who can bridge the gap between technical execution and strategic security leadership, that's exactly what I do.

25+ Years Experience
$600M+ Contract Contribution
3 Certifications
Get in Touch View Experience

core competencies

Where I Create Impact

🛡️

Strategic Risk Management

Architecting cybersecurity frameworks that translate technical threat landscapes into executive-level risk posture visibility and actionable mitigation roadmaps.

☁️

Secure Cloud Migration

Leading AWS cloud migrations for legacy defense systems with hardened configuration baselines, IAM controls, and high-availability architectures.

📋

Compliance & Governance

Deep expertise in NIST frameworks, STIGs, CMMI, and federal accreditation processes — ensuring systems meet and maintain regulatory standards.

🔐

Secure Software Development

25 years building hardened software across defense, embedded, and web domains — from missile defense systems to secure web portals and mobile security apps.

👥

Team Leadership

Six years directing high-performing engineering teams to deliver resilient, security-first solutions under demanding timelines and compliance requirements.

🔍

Vulnerability Management

Proven track record remediating vulnerabilities from Fortify scans, code reviews, and SOVTs — prioritizing critical risks to reduce attack surface systematically.

career history

Professional Timeline

JAN 2026 – PRESENT

Chief Information Security Officer

Global Integrity

FEB 2022 – JAN 2026

Principal Software Engineer

Raytheon Technologies · Richardson, TX

  • Directed Fortify-driven vulnerability remediation on legacy systems, ensuring timely mitigation of critical risks.
  • Spearheaded secure AWS cloud migration with IAM controls and high-availability architecture.
  • Led Java 8→17 upgrades incorporating security best practices and compliance hardening.
  • Designed executive BI dashboards tracking risk posture, remediation progress, and compliance metrics.

AUG 2019 – FEB 2022

Principal Software Engineer

L3 Harris · Plano, TX

  • Architected real-time navigation displays integrated with Inertial Navigation Systems and RF devices, applying encryption and secure communication protocols.
  • Developed embedded C/C++ drivers and Python automation for specialized test equipment.
  • Built data analysis tools providing flight test effectiveness visuals to operators.

JAN 2017 – AUG 2019

Engineer/Scientist 5

ManTech International · Charleston, SC

  • Directed SOVTs validating security controls at multiple US Naval Observatory sites.
  • Drove STIG compliance initiatives for OS and application hardening during system upgrades.
  • Architected secure SharePoint platform with access governance, encryption, and audit trails.

JUN 2015 – OCT 2016

Senior Software Engineer

Temporal Defense Systems · Charleston, SC

  • Built secure web portal for vulnerability management and automated ingestion pipelines.
  • Developed Android security libraries and device scanning applications for mobile risk assessments.
  • Led production deployments to AWS with high-availability and security group configurations.

JUL 2014 – JUN 2015

Independent Consultant

George Mason University

  • Led development of crowdsourced vulnerability scoring portal for community-driven threat intelligence.
  • Architected secure APIs with authentication, encryption, and DDoS-resistant AWS deployments.

JUN 2000 – MAY 2015

Software Engineer 4

Northrop Grumman Corporation · Various Locations

  • Led prototype missile defense development contributing to a $600M+ contract award.
  • Spearheaded junior engineering teams designing secure radar and launcher software interfaces.
  • Engineered cryptographic protocols for mission-critical message integrity over unreliable networks.
  • Achieved 100% code coverage on safety-critical systems through comprehensive JUnit frameworks.

credentials

Certifications

✦ Active

CISSP

Certified Information Systems Security Professional

Valid through Aug 2026

✦ Active

CKAD

Certified Kubernetes Application Developer

Valid through Feb 2027

✦ Completed

AWS Developer – Associate

Amazon Web Services

Mar 2022 – Mar 2025

Education

Graduate Certificate in Cybersecurity · The Citadel (2017–2019)

BS in Computer Engineering · NC State University (1996–2000)

technical toolkit

Skills & Technologies

// Languages

C++JavaPython C#JavaScriptSQL HTMLPHPPerl XMLVisual Basic

// Cloud & DevOps

AWSKubernetesJenkins Docker/VMWareGitJIRA BambooBitbucket

// Databases

SQL ServerMySQL PostgreSQLMongoDBCassandra

// Security & Compliance

NISTSTIGsCMMI FortifyWiresharkCISSP IAMCryptography

// Operating Systems

Linux (RHEL/Ubuntu)Unix WindowsAndroid

// Methodologies

Agile/ScrumUML Requirements AnalysisThreat Modeling Automated Testing

let's connect

Ready to Build Something
Secure.

Whether you're looking for cybersecurity leadership, a strategic security assessment, or a technical partner with deep defense sector experience — let's talk.

mpkarro@gmail.com (202) 316-7794 📍 Garland, TX