Meet Eric Smith
FireOak's Chief Technologist & Information Security Officer
Eric Smith is FireOak’s Chief Technologist and Information Security Officer, where he provides technical oversight for client projects and internal initiatives. With over twenty years of experience in information security, cloud computing, systems administration, and network engineering, Eric brings a wealth of strategic, tactical, and technical expertise to FireOak and our clients.
Since joining FireOak Strategies, Eric has launched the FireOak Tech Lab, where he can likely be found with a soldering iron in his hand, fine-tuning one of our 3D printers, or making parts for a FireOak Acorn on the laser cutter.
Eric serves as the technical lead for our consulting engagements. In this capacity, he is often traveling to client sites to meet with staff, examine a client’s technical infrastructure, or conduct a cybersecurity assessment.
Prior to becoming FireOak’s Chief Technologist, Eric Smith served in various roles in information technology in higher education, most recently as the Chief Information Security Officer (CISO) for Franklin & Marshall College, Susquehanna University, and Bucknell University. Eric began his career as a network engineer in the private sector.
In his spare time, Eric is likely spending time rearing queens for his honeybee colonies. Eric is a certified Master Beekeeper.
Certifications, Awards, and Memberships
Eric Smith holds a number of industry certifications including:
- (ISC)2 Certified Information Systems Security Professional (CISSP)
- Amazon Web Services (AWS) Solutions Architect
- RedHat Linux Certified Engineer (RHCE)
- Cisco Certified Network Professional (CCNP)
- Microsoft Certified Systems Engineer (MCSE)
- Salesforce Administrator & Platform Developer
Eric also holds a Defcon Black Badge, awarded for winning the wireless security competition at the world’s largest and longest-operating information security conference.
Eric is a member of InfraGard, a public-private partnership with the FBI, a community of practice for individuals working in security-related areas, designed to encourage knowledge sharing and exchange to promote the security of the U.S. critical infrastructure.
Research, Writing, and Presentations
Eric’s current research focuses on designing systems to enhance the findability and discoverability of knowledge while protecting the confidentiality, integrity, and availability of data assets. He has written several articles and presented at various national and regional security-focused events.
Recent presentations include:
- "Issues Surrounding Security, Privacy, and Ethics in Enterprise Search," a panel at KMWorld
- "Spotlight on Solutions" at the Office 365 Symposium
- "Technologies of Privacy and Analysis," a session at the CGIAR Big Data in Agriculture Convention
- "Security Presentations that Keep Your Campus Awake at Night," a presentation at the Coalition of Liberal Arts Colleges (CLAC) Annual Meeting
- "Bring Your Own Cloud," a presentation at the Educause Security Conference
Recent articles and blog posts:
- "Scan This or Scan Me? User Privacy & Barcode-Scanning Applications," a guest blog post on Freedom to Tinker
- "The Security Dilemma: Desktop Access to ERP System," published in Educause Review
- "iPhone Applications & Privacy Issues: An Analysis of Application Transmission of iPhone Unique Device Identifiers," a white paper that was highlighted in Ars Technica, Engadget, Slashdot, and other international tech news venues