top of page

Why Deer Brook?

The human factor. We've sat where you sit.

Deer Brook's team includes academic leaders who know the regulatory and compliance landscape like no other.


Our cyber professionals, with years of experience in cyber security, have institutional knowledge at universities, regional colleges, and community college systems.

How can Deer Brook help my academic institution?

  • Deer Brook ensures educational institutions meet FTC, FERPA, security, and regulatory privacy requirements.  

  • Fractional Security Officers and Virtual Security Teams to assist your organization’s staffing needs with affordable options.  

  • We perform penetration testing and vulnerability management services to address the FTC’s regulation changes in the Education sector. 

  • We perform risk assessments, compliance guidance, policy development, and procedure development related to FTC and FERPA. 

  • We perform RFI, EOI/ROI, RFP/RFO, RFT, RFQ, and selection of Student Information Systems. 

  • We have Implemented Student Information Systems, Learning Management, and integrated financial Platforms. 

Learn more about:


We focus on providing superior governance, cyber-readiness and threat preparedness in managing data and technology, all while mitigating risk.


Ande Smith

President and Principal

Ande leverages his wealth of government and private sector experience to support higher education. He's currently the contracted CIO of the Maine Community College System and is the head of a multi-year project to modernize its Student Information System.

In the past, Ande has served as CIO for the state of Maine and CTO for the state of Connecticut. He's also acted as CISO for large private sector organizations that had regulatory obligations similar to those of the Gramm-Leach-Bliley/FTC Safeguards and PCI DSS.


He accepted his BS in Nuclear Engineering from Rensselaer Polytechnic Institute, a Masters of Public Affairs from the University of Connecticut, and earned a Juris Doctor from the University of Maine School of Law. He is a Certified Information Security Manager and a CMMC-RP Registered Practitioner.


Arthur Ream

Principal/Academic Practice Lead

Arthur's extensive background includes healthcare services, application development, and auditing.

He serves as a professor at Bentley University for Information Process Management, and Cybersecurity and Information Technology. He's also a regular speaker at forums and conferences for healthcare IT security.

He earned his BS in Information Technology, minoring in Business, from the University of Massachusetts Lowell. He earned his MBA at Bentley University. He is a Certified CMMC-RP Registered Practitioner, an ISACA Certified Information Security Auditor (CISA), and a Certified Scrum Master.


Mary Natale

Chief Operating Officer

Mary provides support for Delivery Services and Operations.

She has over 30+ years of extensive IT, Cybersecurity, Risk, Compliance & Audit and Regulatory experience.


Her previous experience with a multinational global bank allows her to offer Deer Brook's leadership team a unique and effective perspective.


Mary earned her BSBA in Computer Information Systems from Suffolk University.

bottom of page