Information about RESCOR and RESCOR services.

Andy Robinson is clearly one of the "founding fathers" of information security."

— Christopher Doggett,
Managing Director of Kaspersky Lab, Inc.

RESCOR is focused on providing innovative and affordable technology and consulting solutions to organizations of all sizes in critical industries.

  • Security
  • Technology Governance & Enterprise Architecture
  • Risk Assessment & Management
  • Compliance
  • Multi-platform information technology integration expertise
  • Web, mobile, cloud, and legacy software architecture & engineering

RESCOR offers these solutions to clients throughout the United States.

Andrew T. Robinson Thomas A Robinson (Tom)
Founder & CEO

Tom founded RESCOR to provide innovative and affordable technology and consulting solutions to all industries, and particularly businesses and organizations that serve local communities throughout the US.

Tom is a United States Marine Corps veteran, has 45 years of experience as a business owner, 50 years of information technology experience, and 20 years of experience supporting and using Internet technologies.

Andrew T. Robinson Andrew T. Robinson (Andy)
CISSP, CSSLP, CISM, CGEIT
Director of Professional Services & Product Development

Andy is responsible for all aspects of RESCOR product and service delivery, including direct consulting for clients and leading other RESCOR consultants in the execution of client projects.

Andy brings over 30 years of information technology experience and over 25 years of security, risk management, compliance, Internet, networking, telecommunications, and secure software expertise to RESCOR, working with small and medium-sized businesses and large enterprise up to $2.8 trillion US in assets.

Andy's experience includes the following (click on the arrowhead icon for more details):

Owner & Chief Consultant, NMI LLC (2012-2012-2024 —)
✓ Security & risk management consulting
✓ Secure technology & software engineering services
✓ Healthcare & financial services clients
✓ Clients in eastern U.S. from $100 million to $2.8 trillion US in assets
Executive Director, EGRC Conferences & Training (2003-2012-2024 —)
✓ Security, privacy, and GRC training organization
✓ Produced 11 annual conferences in Maine, New Hampshire, and Ohio
Owner, President & Consultant, netMAINE, Inc. (NMI, 1990-2012)
✓ One of first informations security consultancies in the world
✓ Security, governance, risk management, and compliance consulting
✓ Secure technology integration & software engineering services
✓ Over 400 clients in banking, healthcare, government, utility, others
✓ Led team of up to 19 consultants & support personnel
✓ Clients throughout U.S. from $1 million to $2.8 trillion US in assets
Director, ISACA New York Metropolitan Chapter (2009-2011)
✓ Nominated and appointed by chapter president
✓ Involved in training & certification committees
Executive Director, Information Security Foundation (ISF, 2003-2005)
✓ Operated Tiger Team program for high school students
✓ Reported in the New York Times, Christian Science Monitor, others
Co-Founder & CTO, maine.net inc. (1994)
✓ First commercial Internet service provider in Maine
✓ Offered leased line connectivity (56K and T1)
✓ Provided first Internet connections to CMP, GWI, Maine Yankee, others
Network Engineer, Corp. for Research & Educational Networking (1989-1990)
✓ Involved in migration of BITNET from NJE to TCP/IP protocols
✓ Developed Internet-based membership and routing software
✓ IBM mainframe systems programming & management
Product Manager, University of Maine (1983-1989)
✓ Conceived of and implemented UMNEWS social media project
✓ Led volunteer & student employee staff
✓ Provided systems and applications programming to University of Maine

RESCOR has extensive experience in every aspect security, governance, risk management, and compliance.

Risk Management & Compliance (20+ years)

All federal regulatory requirements, including:

  • GLBA Information Security Standards (12 CFR § 364 Appendix B)
  • HIPAA Security Standard (45 CFR § 164)
  • FERPA
  • FISMA
  • SOX 404

Security (25+ years)

All networking, information technology, and security architecture & engineering needs, including:

  • Firewalls & perimeter security
  • Fault-tolerant & high-availability Internet & WAN
  • Intrusion detection & prevention (IDS, IPS)
  • Secure network architecture (segmentation)
  • Endpoint security
  • Configuration management
  • Release & deployment management (RDM)
  • Data loss prevention (DLP)
  • Operational intelligence & security event & incident management (SEIM)
  • Web application security
  • Cloud services architecture & security
  • Virus & malicious software protection
  • Incident response
  • Forensic analysis
  • Security testing
    • Vulnerability analysis
    • Penetration testing
    • Configuration analysis
    • Application testing
    • Information Technology Audits

PCI DSS Compliance (9+ years)

Support for all twelve PCI DSS version 3.0+ requirements:

  1. Firewall installation & maintenance
  2. Authentication & security parameter configuration
  3. Protection of cardholder data
  4. Transit (in motion) encryption
  5. Virus & malicious software protection
  6. Secure system configuration & software release management
  7. Cardholder data protection (need-to-know)
  8. Identity management (unique identification requirement)
  9. Physical security of technology assets
  10. Audit trail design & monitoring
  11. Security testing
    • Vulnerability analysis
    • Penetration testing
    • Configuration analysis
    • Application testing
    • Information Technology Audits
  12. Security policy design & maintenance

Multi-Platform Information Technology Integration Expertise (30+ years)

Any platform, any network, any language, any time:

Computing Platforms

  • Android (mobile)
  • Apple OS X
  • Apple iOS (mobile)
  • IBM series i (AS/400)
  • IBM series z (z/OS, z/VM)
  • IBM series p (AIX)
  • Linux
  • Microsoft Windows
  • Oracle Solaris

Programming Languages & Environments

  • Adobe Flash & Action Script
  • Assembly language (z, Motorola, Intel, Power)
  • Java
  • Legacy languages (C/C++, COBOL, FORTRAN, RPG)
  • Perl
  • Rexx
  • Web authoring (CSS, HTML, HTML)
  • Web applications (AJAX, JavaScript, jQuery, PHP)

Simplified Total Risk Management, STORM & StrongCOR are trademarks of RESCOR; RAPID & RSK are trademarks of Andrew T. Robinson.