CISSP, CCISO, CEH
Vijay A. D’Souza joined Cotton & Company in 2021 as a partner after 20 years with the U.S. Government Accountability Office (GAO), where he led a diverse set of audits and reviews of government cybersecurity and information technology (IT) issues. He specializes in cybersecurity assurance and advisory efforts. Vijay leads the company’s efforts related to the Department of Defense’s (DoD’s) Cybersecurity Maturity Model Certification (CMMC) program.
Before joining Cotton & Company, Vijay’s work at GAO included efforts related to ransomware, DoD cybersecurity, the SolarWinds breach, use of the National Institute of Standards and Technology (NIST) Cybersecurity Framework, and IT modernization efforts at the U.S. Department of Agriculture (USDA). Vijay also led GAO’s Center for Enhanced Cybersecurity, which provides advanced technical support for GAO’s cybersecurity audits. He previously led GAO’s data analytics activities, as well as served as a director in GAO’s Health Care Team. Vijay has testified before Congress several times, as well as appeared in both national and local media as an expert in cybersecurity issues.
Vijay received his M.B.A. from the University of California Berkeley, as well as a B.S. in Engineering from the University of Maryland College Park. He is a Certified Chief Information Security Officer (CCISO), Certified Information Systems Security Professional (CISSP), and Certified Ethical Hacker (CEH).
A D.C.-area native, Vijay lives in the District with his spouse and dog.