Program Manager (Zero Trust)
Sonny Wink serves as a Program Manager responsible for the delivery of Zero Trust services and overall contract performance for a Federal client. In this capacity, Sonny manages technical assessments of high-value assets, provides a broad range of technology expertise, and supports the independent oversight of the Zero Trust requirements. Working closely with Federal clients and system stakeholders, Sonny provides prioritized recommendations to reduce cyber exposure and offers technical advice to advance the adoption and implementation of Zero Trust cybersecurity principles.
Since he began at BreakPoint Labs in 2016, Sonny has led a technical workforce conducting enterprise-level vulnerability scanning and management, endpoint detection and response (EDR), and insider threat user activity monitoring (UAM) functions supporting a DoD cybersecurity service provider (CSSP). Sonny, in concert with a technically proficient workforce, manages large-scale, multi-tenant implementations of several commercial-off-the-shelf (COTS) tools, including DoD Assured Compliance Assessment Solution (ACAS – Tenable SecurityCenter and Nessus), Endpoint Security Solution (ESS – Trellix ePO), Automated Continuous Endpoint Monitoring (ACEM – Tanium), Comply-to-Connect (C2C – Forescout and Cisco ISE), in accordance with DoD cybersecurity requirements. Sonny is a recognized expert in DoD cybersecurity assessment methodologies and has successfully provided technical leadership to six DoD CSSP evaluations.
Prior to joining BreakPoint Labs, Sonny provided cybersecurity services to cleared defense contractors (CDCs) in the areas of network-based vulnerability scanning, vulnerability management, and endpoint security. In this capacity, Sonny delivered remote inspection technical guidance for command cyber readiness inspections (CCRIs) and successfully assisted hundreds of defense contractors in completing their assessments.
Sonny earned a Bachelor of Science in Cybersecurity Management and Policy from the University of Maryland Global Campus and holds various industry certifications, including CISSP, GCIH, GMON, GCTI, OSWP, CEH, Security+, Linux+, Network+, and A+.