top of page
View from summit.JPG

Armstrong Risk Management LLC

"Get cyber strong with Armstrong"

virtual CISO Services

Security, Privacy, Compliance.


Grow Faster.

In today's business landscape, the demands of prospects, loyal customers, and valued partners are evolving. There is a growing emphasis on security and privacy. Meeting these evolving expectations is paramount for the success of your business.

Our commitment goes beyond helping you attain essential certifications like SOC 2 and ISO 27001. We tailor custom strategies to fortify your security posture and privacy measures.


Moreover, our expertise extends to providing your sales and marketing teams with valuable insights and education so that your customers will say "that organization really cares about my security and privacy."


Cybersecurity is one of the greatest business challenges of recent years, and yet for many it remains a mystery as to how to manage it. Hype and misinformation abound. Effective cybersecurity management requires a deep technical knowledge, accurate threat intelligence, experience, and strong soft skills. 


Increasing data collection, heightened cybersecurity threats, and an increasingly aware public mean that a strong Privacy program is essential.


Privacy regulations vary by nation, state, and province and right now new regulations are being added all of the time. Check out the International Association of Privacy Professional's State Privacy Legislation tracker to see what we mean!


HIPAA, GDPR, CCPA, FERPA, PHIPA, PIPEDA — Your organization may be subject to one or more of these regulations. It can be difficult to understand how to apply the regulations to the ever changing technologies of your business. We have extensive experience in the highly regulated Healthcare vertical in the United States, Canada, and the EU. 

Who We Serve

We provide exceptional consulting services tailored to the unique needs of our clients at a lower price point than you will find anywhere else. Contact us today to discuss how we can achieve immediate results for your organization.

Team Meeting

Organizations Like Yours

Wheelchair Guidance


blue, green, and yellow world map_edited

United States

We bring our experience from the challenging world of Healthcare to a variety of organizations:  small and mid-sized businesses, non-profits, startups, tech companies, pharmaceuticals, as well as Hospitals and Clinics of all sizes.

Why is our Healthcare experience relevant for your organization?

Healthcare organizations are extremely challenging to secure. Budgets are tight, regulations are complex, fines can be large, cyber-attacks are frequent, and the stakes have never been higher.

We primarily serve clients in the United States and have experience with Canadian and EU regulations.

Wondering what we can do for you?

Please contact us for a free consultation.

Email me at today!


Image by National Cancer Institute

A Demonstrated Commitment to Securing Healthcare!

Justin Armstrong is a respected security leader whose perspective and advice is sought by leadership at hospitals both large and small. He has provided guidance and thought leadership to Executives, and works closely with both Clinical and Technical teams.


Justin is actively involved within the security community and is an excellent presenter who can engage executive, clinical, technical, and general audiences. Well versed in HIPAA, GDPR, and Promoting Interoperability with over 25 years of Healthcare IT experience.

Social Media - JenEye Photography - 20220421 -  2022.04.21 - JenEyre Photography - IMG_789

Coming Up Next

Check out events where I will be speaking.

  • Ransomware and Breaches | Securing the Modern Organization
    Ransomware and Breaches | Securing the Modern Organization
    Fri, Jul 26
    Jul 26, 2024, 12:15 PM – 2:45 PM
    Canton, 777 Dedham St, Canton, MA 02021, USA
    Is your business prepared for the ever-evolving threat of ransomware and data breaches? Headlines about cyberattacks are constant and it's easy to feel overwhelmed, but what if we told you that you can take steps to protect your organization?

Past Events

Panel_Stories_from_the_SecureWorld_PHI_2024 v2.png
Philadelphia Panel.jpeg

Thank you to Anahi Santiago, Greg Garcia, Aaron Weismann, and Hugo Chun Hin Lai for such an engaging discussion at SecureWorld in Philadelphia! It was a very lively discussion and the audience appreciated your insights.

Thank you to Cam Sivesind for another well run event!

Boston SecureWorld Panel.jpeg

Thanks Esmond Kane, Brian Cayer, John Fanara, and Dave Heaney for an excellent discussion about ransomware in healthcare. Thanks Cam Sivesind and Clayton J. Gartner for such a well managed SecureWorld event here in beautiful Boston.

Frank Nydam

CEO, Tausight

"Justin handles difficult situations really well and maintains a professional attitude and demeanor at all times. He is trustworthy, discreet, and maintains confidentiality."

David Ting
Founder & CTO, Tausight

“Justin balances deep cybersecurity knowledge in healthcare with practical business challenges to securing the infrastructure, protected health information and staying compliant with all the regulations such as SOC 2, HIPAA and the various state and federal requirements that govern IT use. He was invaluable to us as a start-up in building out our security and compliance policies and ensuring we were able to meet the needs for our SOC 2 audit.”

Randy McCleese​​


"Justin has been a great cybersecurity resource for several years.  His knowledge is deep, he maintains a great attitude and he is very professional.  Justin’s work is thorough and he is ready to help others whenever possible. When he was at MEDITECH, he took the initiative to provide extensive valuable information to the Healthcare community via newsletters, webinars, conferences, and alerts." 

Axel Wirth


Chief Security Strategist, MedCrypt

"I have known Justin across multiple jobs and responsibilities (for both of us) and I always found him a consumate security professional that is always willing to contribute his great experience and provide a level view of the topic at hand. Over the years we have developed a deep professional relationship and Justin has been one of my go-to resources for security questions."

Check Out Our Blog - "This Just In"

Through our blog we share real life stories, actionable intelligence, and tested ideas that you can use to help secure your organization and enable business.

This is not a Spy Novel

It's early on a Sunday morning and something's wrong. Hannah, an ER physician, logs into a workstation to dictate patient notes and this message pops up "Your network has been penetrated and your files have been encrypted with strong encryption. We hold the key. Please contact us if you want to see your files again."


Learn How Security enables Business in these ways

1. Reputation Protection

2. Smooth Sales Process

3. Contracts

4. Reassure your Customers

5. Encourages Investment


Check out our Social Media Pages

Subscribe for Periodic Updates

Join our mailing list to receive notifications about new blog posts and the occasional urgent news item related to cybersecurity, privacy, or regulatory compliance. My goal is to provide you with actionable information and thought provoking articles.

Thanks for submitting!

Countryside Road



bottom of page