Patty Ferson

IT Security Lead


Ms. Patty Ferson serves as the IT security liaison between CBIIT, NCI at Frederick, and NIH. In this role, she manages the day-to-day security operations of the Frederick IT systems, which includes the development of system security policy, handling compliance requirements, assessing security impacts, and reviewing/updating system security documentation. Prior to joining NCI, Ms. Ferson worked for over five years in the NIH Office of the Chief Information Officer (OCIO) as the Risk Management Lead, where she was responsible for providing guidance to OCIO external and internal IT audits. In addition, she managed the OCIO assessment and authorization team that established NIH security compliance requirements. Ms. Ferson brings with her over 15 years of experience in information technology and information security services, having supported numerous federal agencies throughout her career.


  • IT Security