IANS Faculty Presence at RSA 2020

Check out the IANS Faculty members who will be speaking at RSA this year.

Stop by our table at the Securosis Disaster Recovery Breakfast on February 27th to get some IANS swag!

Disaster Recovery Breakfast
Bryson Bort

Bryson Bort

ICS Sandbox

Tuesday, February 25, 2020 – Thursday, February 27, 2020
Moscone Center South, Level 2


ICS Village: RSAC Talk with Chris Krebs

Wednesday, February 26, 2020
3:40 PM – 4:10 PM
RSAC Sandbox Stage

Matt Chiodi

Matt Chiodi

Misconfigured and Exposed: 5 Proven Steps to Secure Your Cloud

Tuesday, February 25, 2020
11:00 AM – 11:50 AM
Moscone South

Josh Corman

Joshua Corman

Culture at a Cross Roads: Hacking Our Way from Vicious-to-Virtuous Cycle
Wednesday, February 26, 2020
2:50 PM – 3:40 PM
Moscone West

 

Tanya Janca

DevSecOps Workshop with Azure DevOps Pipelines

Tuesday, February 25, 2020
2:20 PM – 4:20 PM
Moscone South 312

Rich Mogull

Rich Mogull

Certificate of Cloud Security Knowledge (CCSK) Plus

Sunday, February 23, 2020 & Monday, February 24, 2020
9:00 AM – 5:00 PM
Moscone South


Break the Top 10 Cloud Attack Killchains

Tuesday, February 25, 2020
11:00 AM – 11:50 AM
Moscone West


Disaster Recovery Breakfast

Thursday, February 27, 2020
8:00 AM – 11:00 AM
Tabletop Tap House

Davi Ottenheimer

Davi Ottenheimer

Breaking Bad AI — Closing the Gaps Between Data Security and Science

Tuesday, February 25, 2020
3:40 PM – 4:30 PM
Moscone West

Teri Radichel

Teri Radichel

Serverless Attack Vectors

Wednesday, February 26, 2020
1:30 PM – 2:20 PM
Moscone West


Change and Risk Management in Cloud Environments

Thursday, February 27, 2020
2:50 PM – 3:40 PM
Moscone West

Mike Rothman

Mike Rothman

Disaster Recovery Breakfast

Thursday, February 27, 2020
8:00 AM – 11:00 AM
Tabletop Tap House

Adam Shostack

Adam Shostack

Imagining a Civilized Internet

Tuesday, February 25, 2020
11:00 AM – 11:50 AM
Moscone West

John Strand

John Strand

I Had My Mom Break into a Prison. Then, We Had Pie.

Wednesday, February 26, 2020
1:30 PM – 2:20 PM
Moscone West


Shadow IT and Shadow Remote Access. How to Find It (for free!)

Tuesday, February 25, 2020
2:50 AM – 3:40 AM
Moscone West

Kelli Tarala James Tarala

Kelli and James Tarala

SANS: Critical Security Controls: Planning, Implementing and Auditing

Sunday, February 23, 2020 & Monday, February 24, 2020
9:00 AM – 5:00 PM
Moscone South

Aaron Turner

Aaron Turner

Mobile MFA Madness: Mobile Device Hygiene and MFA Integrity Challenges

Wednesday, February 26, 2020
9:20 AM – 10:10 AM
Moscone West

Read the RSA Blog

Meet up with other IANS Faculty in attendance:

Justine Bone
Justine Bone

George Gerchow
George Gerchow

Wolfgang Goerlich
Wolfgang Goerlich

Ryan Leirvik
Ryan Leirvik

Raffael Marty
Raffael Marty

Chris Nickerson
Chris Nickerson

Tyler Shields
Tyler Shields

Mike Saurbaugh
Mike Saurbaugh

John Visneski
John Visneski

Justin Wilder
Justin Wilder

Jake Williams
Jake Williams

Sunday, March 3, 2019

9:00 AM – 5:00 PM

SANS: Critical Security Controls: Planning, Implementing and Auditing

with James Tarala and Kelli Tarala
6:00 PM – 9:00 PM

Gathering: CISO Manifesto: The Future of Security Metrics – Private Dinner

with Richard Seiersen | Four Seasons Private Den

Monday, March 4, 2019

9:00 AM – 5:00 PM

SANS: Critical Security Controls: Planning, Implementing and Auditing

with James Tarala and Kelli Tarala
1:30 PM – 4:30 PM

Judge – RSAC Innovation Sandbox Contest

with Richard Seiersen | Marriott Marquis (Yerba Buena Ballroom)


Wednesday, March 6, 2019



IANS at the Disaster Recovery Breakfast XII: (IM)MATURITY

with Securosis

Thursday, February 27 | 8:00 AM – 11:00 AM PT
Tabletop Tap House

Securosis has announced that this year's Disaster Recovery Breakfast theme is (IM)MATURITY to remind us that we're still in the very early stages of cloud disruption on IT.

"Don't mind us as we admire the peach fuzz on the face of cloud security, while you kick back with your friends and enjoy your annual fix of coffee, food, bacon, aspirin, antacids, and (as always) an open bar."

Make sure to check out the Cloud Security Maturity Model developed in partnership with Securosis. We'll have the model on hand as well as an online diagnostic where you can do a self-assessment against the model.

 

Faculty Bios

Faculty Directory

Matt Chiodi

IANS Faculty

Matt is the Chief Security Officer of Public Cloud at Palo Alto Networks where works with organizations to develop and implement security strategy for public cloud adoption and maturity. He has extensive experience in information security leadership and blogging. Matt currently leads the Cloud Threat team which is an elite group of security researchers exclusively focused on public cloud concerns. He also serves as an advisory board member for Rutgers University's Cybersecurity Certificate program.

Achievements & Noteworthy Contributions

  • Presenter at information security conferences such as RSA and BSides
  • Former CISO & VP at RedLock, a cloud security threat defense startup
  • Former Board VP and Governor of InfraGard’s Philadelphia chapter
  • Former Director and Global Head of Cloud Security Advisory Services at Cognizant
  • Former Senior Consultant and Senior Security Architect at Deloitte Consulting

Certifications & Credentials

  • BS, Business Information Systems – Messiah College
  • CISSP – (ISC)2
  • CCSK – Cloud Security Alliance

Hobbies & Fun Facts

Matt identifies as a personal growth junkie who enjoys exercising in his free time. For his first job, he directly approached the CEO of Johnson & Johnson and got the job!

Joshua Corman

IANS Faculty

Josh is the Chief Security Officer and SVP at PTC, a global computer software and services company that provides CAD modeling, Internet of Things, and Augmented Reality software products. He is also a Co-Founder of @IamTheCavalry and @RuggedSoftware to encourage new security approaches in response to the world’s increasing dependence on digital infrastructure. Additionally, Josh serves as an adjunct faculty for Carnegie Mellon’s Heinz College.

Achievements & Noteworthy Contributions

  • Member of the 2016 HHS Cybersecurity Task Force
  • Speaker at TEDxNaperville - “Swimming with Sharks –Security in the Internet of Things” (2013)
  • Former Director of Cyber Statecraft Initiative for Atlantic Council’s Brent Scowcroft Center on International Security
  • Former CTO at Sonatype, a company that develops an integrated open source governance platform
  • Former Director of Security Intelligence at Akamai Technologies
  • Former Research Director of Enterprise Security at 451 Group, a technology-focused research and advisory firm
  • Former Principal Security Strategist and Technical Product Manager at IBM

Certifications & Credentials

  • BA, Philosophy –University of New Hampshire

Hobbies & Fun Facts

Josh is a film enthusiast who also enjoys cooking and diving in his free time.

Tanya Janca

IANS Faculty

Tanya Janca is independent security consultant specializing in software and cloud security. Her obsession with securing software runs deep, from starting her company, to running her own OWASP chapter for 4 years and founding the OWASP DevSlop open-source and education project. With her countless blog articles, workshops and talks, her focus is clear. Tanya is also an advocate for diversity and inclusion, co-founding the international women’s organization WoSEC, starting the online #MentoringMonday initiative, and personally mentoring, advocating for and enabling countless other women in her field. As a professional computer geek of 20+ years, she is a person who is truly fascinated by the ‘science’ of computer science.

Achievements & Noteworthy Contributions

  • * 2019 Hacker of the Year - CSWY Awards
  • CISO for 2015 Canadian General Election
  • Co-Founder: WoSEC, OWASP DevSlop, #MentoringMonday & Leader: OWASP Ottawa chapter
  • 13.5 year’s service to the Canadian Public (Government)
  • Public Speaking Award - Algonquin College
  • Spoken and keynoted at security conferences, meetups and training events the world over
  • Currently authoring first book; Alice and Bob Learn Application Security

Certifications & Credentials

  • BA, Business Management – Malone University
  • CISSP – (ISC)2
  • Qualified Security Assessor (QSA) – PCI Security Standards Council
  • ISO/IEC 27001 Certified – ISO
  • GSEC - GIAC
  • Certificate Professional (OSCP) & Certified Expert (OSCE) – Offensive Security
  • Global Information Assurance Gold Certification
  • Microsoft Certified Solutions Expert (MCSE) – Microsoft

Hobbies & Fun Facts

Tanya is also a musician, has released 5 solo albums, plays guitar and drums and will sing karaoke any chance she gets.

Rich Mogull

IANS Faculty

Rich is the CEO and an Analyst for Securosis, an information security research and advisory firm, in addition to Founder and Vice President of Product at DisruptOPS, a cloud environment monitoring platform. Prior to founding Securosis, he was Research Vice President for Gartner’s security team where he also served as Research Co-Chair for the Gartner Security Summit. Additionally,Rich has served as an independent consultant, web application developer, software development manager, and a systems and network administrator.

Achievements & Noteworthy Contributions

  • Primary Author of the Cloud Security Alliance Security Guidance for Critical Areas of Focus in Cloud Computing
  • Principle course designer for the Cloud Security Alliance CCSK training
  • Security Editor of the online media platform, TidBITS
  • Published writer in Dark Reading, Information Security Magazine, and Macworld
  • Presenter at information security conferences such as RSA and DEF CON
  • Paramedic First Responder for US Department of Health and Human Services

Certifications & Credentials

  • BA, History –University of Colorado
  • CISSP –(ISC)2

Hobbies & Fun Facts

In his free time, Rich enjoys cycling and most outdoor sports capable of causing serious bodily injury. He is also a member of the 501st Legion (a Star Wars charity group).

Davi Ottenheimer

IANS Faculty

Davi is Security Architect at Inrupt, Inc., a company that supports Solid, a web decentralization project founded by the inventor of the World Wide Web, Tim Berners-Lee. He is also the Founder and President of flying penguin LLC, an information security consulting firm that focuses on risk mitigation and incident response solutions. Additionally, he serves as a Visiting Lecturer at St Pölten University of Applied Sciences (Fachhochschule St Pölten) in Austria, an Affiliate for the Policy Innovation Lab of Tomorrow (PILOT) at Penn State University, as well as an Advisory Board Member at Cyral, Anjuana Security, and Accenture. Davi has helped serve customer data protection needs across many industries including data storage and management, software, investment, banking, international retail, as well as higher education, healthcare and aerospace.

Achievements & Noteworthy Contributions

  • Author of Realities of Securing Big Data(2020)
  • Co-author of Securing the Virtual Environment: How to Defend the Enterprise Against Attack(2012)
  • Established the RSA Conference Excellence in Humanitarian Service Award
  • Former Board Member for the Payment Card Industry Security Alliance and the Silicon Valley chapters of ISACA and OWASP
  • Former VP of Trust and Digital Ethics at MongoDB, a database for cloud-based application development
  • Former Global Manager of Communications Security at Barclays Global Investors (now Black Rock)
  • Former Senior Director of Trust at EMC
  • Led the redesign and launch of http://security.yahoo.comwhile serving as Dedicated Paranoid
  • Founder and Chairman of the Board at poetry.org

Certifications & Credentials

  • MSc, International History –The London School of Economics and Political Science
  • BA, Philosophy & Political Science –Macalester College
  • CISSP – (ISC)2
  • CISM – ISACA
  • PA-QSA, QSA – PCI SSC

Teri Radichel

IANS Faculty

Teri is the CEO of 2nd Site Lab, a cloud security training and consulting company. As an international trainer and prolific speaker, her students come from Fortune 150 and multinational companies in addition to major cloud providers and government organizations. Teri has authored multiple whitepapers, articles, and information security courses. Currently, she is writing a book on cyber security for executives. You can follow her on Twitter @TeriRadichel.

Achievements & Noteworthy Contributions

  • Winner of the SANS Differences Makers Award in 2017
  • Organizer of Seattle AWS meetup which has almost 3,000 members
  • Presenter at information security conferences such as RSA, AWS re:Invent, Microsoft Build, ISACA Congress, OWASP AppSec Day, ServerlessDays London, and BSides
  • Published writer in Dark Reading, Infosecurity Magazine, Secplicity.com, and her own cloud security blog (https://medium.com/cloud-security)
  • Founding member of SANS Cloud Security Curriculum Advisory Board
  • Former Instructor at the SANS Institute
  • Author of widely referenced papers in the SANS Institute reading room

Certifications & Credentials

  • BA, Business – University of Washington
  • MA, Software Engineering – Seattle University
  • MA, Information Security Engineering – SANS Technology Institute
  • AWS Hero – Amazon
  • GSE, GSEC, GCIH, GCIA, GCPM, GCCC, GREM, GPEN, GXPN – GIAC

Hobbies & Fun Facts

Teri is an avid traveler and has visited all 50 states in the US. She also taught herself to program TI Basic in grade school.

Mike Rothman

IANS Faculty

Mike is the President of Securosis, an information security research and advisory firm, as well as Co-Founder and President of DisruptOps, a cloud detection and response company. His breadth of experience in the information security space and bold perspectives are invaluable as companies determine effective strategies to grapple with the dynamic security threatscape. Mike started practicing and advising on security topics over 25 years ago, and he’s been trying to get out of the business ever since…to no avail.

Achievements & Noteworthy Contributions

  • Author of The Pragmatic CSO, which details how technical security practitioners can thrive as a CISO
  • Spearheaded META Group’s initial foray into information security research
  • Founded and acted as President of Security Incite, an information security analyst firm
  • Founded SHYM Technology, a pioneer in the PKI software market
  • Held Marketing and Strategy positions at CipherTrust, TruSecure, and eIQ Networks

Certifications & Credentials

  • BS, Operations Research and Industrial Engineering – Cornell University

Hobbies & Fun Facts

Mike has been to 23 of the past 24 RSA Conferences. Of the 1000+ talks Mike has given over the years, he is most proud of the mindfulness talk he gave at RSA in 2014 (Google "Rothman RSA Neurohacking”).

Adam Shostack

IANS Faculty

Adam is a leading expert on threat modeling, and a consultant, entrepreneur, technologist, author and game designer. He currently helps organizations improve their security via his independent information security solutions firm, Shostack & Associates, focused on delivering high-impact training and consulting in threat modeling, secure development, and DevSecOps. He also serves as a MACH37™ Stars Network Mentor and an advisor to many startups including NTrepid, Continuum, and Judo Security. Previously, he worked at Microsoft where he drove the Autorun fix into Windows Update, was the lead designer of the SDL Threat Modeling Tool v3 and creator of the "Elevation of Privilege" game.

Achievements & Noteworthy Contributions

  • Member of the Blackhat Review Board
  • Co-created the Common Vulnerabilities and Exposures (CVE®)
  • Lead designer of Microsoft SDL Threat Modeling Tool
  • Author of Threat Modeling: Designing for Security (2014)
  • Co-author of The New School of Information Security (2008)
  • Creator of Elevation of Privilege: The Threat Modeling Game

John Strand

IANS Faculty

John is the Owner of Black Hills Information Security (BHIS) where he leads the Hunt Teaming, Command & Control (C2)/Data Exfiltration and Pivot testing development. He is also a SANS Institute Senior Instructor. In these roles, John has both consulted and taught hundreds of organizations in the areas of security, regulatory compliance, and penetration testing.

Achievements & Noteworthy Contributions

  • Co-author of Offensive Countermeasures: The Art of Active Defense (2013)
  • Contributor to the Penetration Testing Execution Standard (PTES)
  • Contributor to the 20 Critical Controls frameworks
  • Former co-host of Hack Naked TV and Security Weekly podcasts
  • Presenter at information security conferences such as RSA and Black Hat
  • Author of Black Hat’s "Active Defense, Offensive Countermeasures, and Hacking Back" course
  • Author of SANS Institute’s "Hacker Tools, Techniques, Exploits and Incident Handling" course
  • Former Information Assurance lead at Northrop Grumman and Accenture Certifications & Credentials

Certifications & Credentials

  • CISSP – (ISC)2
  • GCIH – GIAC

Hobbies & Fun Facts

In his free time, John enjoys mountain biking, AT Skinning (or Ski Touring) and ranching.

James Tarala

IANS Faculty

James is Principal Consultant, Co-Founder, and President of Enclave Security, an information security consulting firm specializing in governance that is based in Venice Florida. As a consultant, he has focused on architecting and assessing large enterprise IT security and infrastructure architectures. He has also assisted organizations in security management, operational practices, and regulatory compliance issues. He often performs independent security audits and assists internal audit groups in developing their internal audit programs. James also serves as a Senior Instructor, Course Author, editor, and regular speaker with the SANS Institute.

Achievements & Noteworthy Contributions

  • Speaker at information security conferences such as RSA
  • Lead Technical Editor of the Center for Internet Security’s Critical Security Controls
  • Author of the Open Threat Taxonomy open source project
  • Creator of tools at AuditScripts.com

Certifications & Credentials

  • MA, Information Security Engineering – SANS Technology Institute
  • Master’s Certificate, Information Assurance – University of Maryland Global Campus
  • BS, Linguistics - Cairn University (Formerly Philadelphia Biblical University)

Hobbies & Fun Facts

In his free time, James enjoys the Florida sunshine, spending time outdoors (away from computer screens), running, and exercising.

Kelli Tarala

IANS Faculty

Kelli is a Principal Consultant and Co-Founder of Enclave Security, an information security consulting firm specializing in governance. As a security architect and project manager, she specializes in IT audit, governance, policy library development, and information assurance strategies. She is a courseware author for the SANS Institute as well as one of the lead technical editors for the Center for Internet Security’s Critical Security Controls. She is also the lead author for many of the governance resources and creator of tools and policies at AuditScripts.com. You can follow her on Twitter @KelliTarala

Achievements & Noteworthy Contributions

  • Former Senior Enterprise Security Engineer for WPS Health Insurance
  • Former IT Project Manager for Kerry Group
  • Former Senior Network Architect for Integrated Information Systems Inc

Certifications & Credentials

  • Master’s Certificate, Information Technology Project Management – University of Wisconsin, Madison
  • BFA, English Language and Literature – University of Wisconsin, Eau Claire
  • BA, English – Technical Writing – University of Wisconsin, Eau Claire
  • Project Management Professional (PMP)
  • CISSP, HCISSP – (ISC)2
  • CISA, CGEIT – ISACA
  • GCCC, GSEC – GIAC

Hobbies & Fun Facts

Kelli enjoys the Florida lifestyle including kayaking, paddle boarding, and snorkeling. She also likes to run and read mysteries and science fiction.

Aaron Turner

IANS Faculty

Aaron Turner is the President & Chief Security Officer of HighSide, a distributed identity and secure collaboration technology company. He is also President and CEO of Integricell, an information security consulting firm which focuses on helping customers better manage the risks associated with global-scale business. Aaron also serves on the RSA Program Committee, helping select the educational content presented at the yearly RSA Conference.

Achievements & Noteworthy Contributions

  • Congressional witness to help set policy for US critical infrastructure protection
  • Winner of SC Media's 2019 Top Executive Leaders of the Last 30 Years award
  • Information security leader for the Government of Luxemborg’s Technoport® business incubation program
  • Testified before the US House of Representatives to help shape national critical infrastructure protection strategy in 2007
  • Interviewed for NBC Washington News and AP News on cellular network vulnerabilities
  • VP of Security Research and Development at Verifone after 2015 Terreo acquisition
  • Former Co-Founder and CEO of Terreo, an IoT security company focused on credit card skimming detection
  • Former Co-Founder and CEO of RFinity, a mobile payment technology company that was eventually sold to a global mobile network operator in 2010
  • Former Security Strategist at the Department of Energy’s Idaho National Laboratory investigating the impact of system vulnerabilities in commodity software on public utilities funded by the DHS, DOE, and DOD. He was on the team which conducted the ‘Aurora’ attack against a simulated power grid.
  • Founding Member of many Microsoft information security teams (1999-2006) and coordinated field security testing of Microsoft technologies such as Active Directory, SQL Server, Exchange Server, BitLocker, Windows Update, and Windows Firewall.
  • Recognized by Bill Gates for technical excellence and leadership during security incidents involving Microsoft technologies in 2000 and 2003

Certifications & Credentials

  • JD Candidate – Dedman School of Law, Southern Methodist University
  • BA, Spanish Linguistics – Brigham Young University

Hobbies & Fun Facts

In his free time, Arron enjoys restoring 1960's split-window VW buses and arranging and recording vocal music with his brothers and daughters. Aaron has also completed several Condon Bleu culinary education programs and volunteers as a real-time Spanish translator for immigration courts. Additionally, he is an avid traveler who has visited over 75 countries.

Justine Bone

IANS Faculty

Justine is the CEO of MedSec, a company focused on medical device security management and the delivery of security solutions to healthcare delivery organizations and medical device manufacturing companies. She also serves as a member of HP’s Security Advisory Board, a member of BlackHat’s USA Guest Review Board, and as an advisor to technology startups.

Achievements & Noteworthy Contributions

  • Organizer for The Pwnies, an annual awards ceremony for information security practitioners
  • Former CISO at Dow Jones, a news and information company that publishes the Wall Street Journal
  • Former Global Head of Risk Management at Bloomberg LP
  • Former X-Force Researcher and Consultant at IBM
  • Former Executive Director & CTO of American Diamond Mint
  • Former CEO of Immunity Inc. (now Cyxtera), a security research firm
  • Chair of the Miami Children Corp’s Board of Directors

Certifications & Credentials

  • BS, Computer Science –University of Otago

Hobbies & Fun Facts

Justine is a New Zealander by origin, an ex-professional ballet dancer, and mother of three boys.

Bryson Bort

IANS Faculty

Bryson is the CEO and Founder of SCYTHE, a start-up building a next generation attack emulation platform, Chairman, Founder, and Former CEO of GRIMM (SMFS, Inc.), a boutique cybersecurity consultancy, and Co-Founder of the ICS Village, a non-profit advancing awareness of industrial control system security. He is also an Advisor to The Army Cyber Institute at West Point and a National Security Institute Fellow. Formerly, as a U.S. Army Officer, Bryson served as a tank commander and a leader of a tactical communications platoon as well as a Battle Captain and Brigade Engineering Officer supporting Operation Iraqi Freedom.

Achievements & Noteworthy Contributions

  • Board Advisor to the Army Cyber Institute
  • Fellow at the National Security Institute
  • Contributor to Forbes magazine
  • Presenter at information security conferences such as Black Hat, DEF CON, RSA, and ShmooCon
  • Former VP at ManTech, and information security technology and service company
  • Former Global IT Asset Manager for Smiths Group plc, a FTSE100 technology group

Certifications & Credentials

  • MBA, Business Administration and Management – University of Florida
  • MS, Telecommunications Management – University of Maryland
  • MS, Electrical Engineering and Computer Science – University of Texas
  • BS, Computer Science – United States Military Academy at West Point
  • ITIL Master

Hobbies & Fun Facts

In his free time, Bryson competes in Jiujitsu. He also was an amateur clown.

George Gerchow

IANS Faculty

George is Chief Security Officer at Sumo Logic, a secure, cloud-native, machine data analytics service provider. George has extensive experience in board and executive communications serving as a Board Member for ANTIVIUM, Inc., a cloud monitoring and analytic startup, and VENZA, a data protection company. Likewise, George is an Adjunct Faculty member at University of Denver and Cloud Academy, in addition to a Participant in the US Technical Advisory Group: Privacy by Design, which aims to define an international standard for consumer protection as part of ISO Project Committee 317.

Achievements & Noteworthy Contributions

  • Co-Founder of VMware Center for Policy and Compliance
  • Co-Author of Center for Internet Security QuickStart Cloud Infrastructure Benchmark v1.0.0
  • Author of the MIS|TI Fundamentals in Cloud Security course
  • Speaker at information security conferences such as RSA, AWS reInvent, Cloud Expo Silicon Valley, SANS Institute Cloud Security Summit
  • Former Global Director of Security Evangelism and Product Strategy and Director of VMware Policy and Compliance at VMware
  • Former Cloud Business Director at EMC

Hobbies & Fun Facts

George’s first language is Spanish. He is an avid snowboarder, golfer, and yogi who is always looking for the best sandwich and IPA in any city that he visits.

J Wolfgang Goerlich

IANS Faculty

Wolf is an Advisory CISO of Duo Security, the leading provider of unified access security and multi-factor authentication delivered through the cloud. He has held senior management roles in IT and IT security in the financial services and healthcare verticals. In addition, Wolf has held senior leadership roles in consulting firms specializing in identity and access management, governance risk and compliance, and security programs. Wolf advises clients primarily in risk management, incident response, business continuity, and secure development.

Achievements & Noteworthy Contributions

  • Former organizer of annual BSides and Converge conferences in Detroit
  • Former Senior VP of Strategic Security Programs at CBI, an information security solutions firm
  • Former VP of Consulting Services at VioPoint Inc., an information security consulting firm

Certifications & Credentials

  • CISSP - (ISC)2
  • Certified Information Systems Auditor (CISA) - ISACA

Ryan Leirvik

IANS Faculty

Ryan is a Principal at GRIMM, a boutique cybersecurity consultancy. He has spent the better part of two decades enhancing cybersecurity programs at the world's largest institutions. He focuses largely on providing advanced capabilities for CISO's, as well as testing for best possible security practices at board of directors' requests.

Ryan’s C-level work experience also includes developing Board level metrics to measure and manage enterprise cyber risk; developed and instructed a C-Suite cyber risk management course; and established functional reporting metrics for rapidly assessing cyber readiness.

Achievements & Noteworthy Contributions

  • Office of the Secretary of Defense Medal for Exceptional Civilian Service
  • DEFCON 2014 Wireless Capture the Flag competition winner
  • Presidential Management Follow

Hobbies & Fun Facts

  • Teacher, Junior Achievement Finance
  • Avid downhill skier in +4’ powder

Raffael Marty

IANS Faculty

Raffy is VP of Research and Intelligence at Forcepoint where he leads Forcepoint X-Labs, a specialized group dedicated to behavior-based security research and development of predictive intelligence to Forcepoint's human-centric product portfolio. Bringing more than 20 years of cybersecurity experience across engineering, analytics, research, and strategy, Raffy is one of the industry's most respected authorities on security data analytics, big data, and visualization. As such, he serves as an advisor to many technology startups. He is the author of Applied Security Visualization and is a frequent speaker at global academic and industry events. Additionally, Raffy has held key roles at IBM Research, ArcSight, and Splunk.

Achievements & Noteworthy Contributions

  • Author of Applied Security Visualization (2008)
  • Frequent speaker at global academic and industry events
  • Former VP of Security Analytics at Sophos, a leading endpoint and network security company
  • Former Founder of Pixicloud, a visual analytics platform
  • Former Founder of Loggly, a cloud-based log management solution

Certifications & Credentials

  • MS, Computer Science - ETH Zurich

Hobbies & Fun Facts

In his free time, Raffy practices Japanese traditional Zen Buddhism through Kōan study and meditation.

Chris Nickerson

IANS Faculty

Chris is the Co-Founder and CEO of LARES Consulting, an information security consulting firm that leverages a blend of assessment, testing, and coaching. He also serves on the Board of Directors at CREST, an international not-for-profit accreditation and certification body that represents and supports the technical information security market.

Achievements & Noteworthy Contributions

  • Appeared on Tiger Team on TruTV
  • TEDx Presenter, Hackers are all about curiosity, and security is just a feeling
  • Founding member of the Penetration Testing Execution Standard (PTES)
  • Co-founder of the BSides security conferences
  • Speaker at information security conferences such as DEFCON, CyberWeek, and BlackHat
  • Author of Red Team Testing: Offensive Security Techniques for Network Defense (2016)
  • Collaborator with the Red Team Alliance Training Collective
  • Former Senior Information Security Compliance Manager at Sprint

Certifications & Credentials

  • IEM, IAM –National Security Agency(NSA)
  • CISA – ISACA
  • CISSP – (ISC)2
  • BS7799

Hobbies & Fun Facts

In his free time, Chris can be found out on the ski slopes or playing with his dogs.

Tyler Shields

IANS Faculty

Tyler is Vice President of Strategy for Sonatype, a security and DevOps software vendor, headquartered in Fulton, Maryland. His previous roles include starting, leading, and growing security technology companies including CA Technologies, Signal Sciences, Veracode, Symantec, LURHQ, and @Stake. Tyler is an active investor, board member, and advisor to numerous young cyber security firms.

Achievements & Noteworthy Contributions

  • Authored and published research papers on the detection of rootkit and anti-debugging technology with static analysis techniques
  • Authored the world’s first mobile spyware system targeting Blackberry phones
  • Expert commentator featured in Rolling Stone, Bloomberg, Forbes, Reuters, and the LA Times
  • Contributor to multiple television and radio interviews for both National Public Radio and the BBC

Certifications & Credentials

  • MBA - University of North Carolina, Chapel Hill
  • MS, Computer Science - James Madison University
  • BS, Information Technology - Rochester Institute of Technology

Mike Saurbaugh

IANS Faculty

Mike is the director of technical alliances with Cofense (formerly PhishMe), a phishing defense solutions organization, as well as the founder and principal consultant of First Security Alliance LLC, an independent information security advisory and assessment consultancy. He also serves as a mentor with Queen City Fintech in Charlotte, NC and was a Stars Mentor with MACH37 Cyber Accelerator. Likewise, Mike has served on the Cybersecurity Curriculum Advisory Committee at Alfred State College and Corning Community College in addition to regularly volunteer teaching high school students in cybersecurity fundamentals.

Achievements & Noteworthy Contributions

  • Speaker at information security conferences such as InfoSec World, (ISC)2, SecTor, ISACA, and Evanta
  • Journal Author for ISACA
  • Former Research Director at SecurityCurrent an online, security-focused publication
  • Former Head of Information Security and Technology Services at Corning Credit Union

Certifications & Credentials

  • MS, Information Assurance – Walsh College
  • BSE, Education – State University of New York College at Cortland
  • Certificateof Study–Rochester Institute of Technology
  • CISSP – (ISC)2
  • CISM, CRISC – ISACA

Hobbies & Fun Facts

In his free time, he loves to spend time with his wife and two daughters, work out, drive his Jeep Wrangler, and cook.

John Visneski

IANS Faculty

John is the Director of Information Security and Data Protection Officer at The Pokémon Company International where he has built their security team and achieved GDPR Compliance. Before joining Pokémon, he served as a Cyberspace Operations Officer for the US Air Force where he supported operations in Iraq and Afghanistan. John also served as Chief of Executive Communications for the Chief of Staff and Secretary of the US Air Force supporting intelligence operations that shaped policy at the Pentagon.

Achievements & Noteworthy Contributions

  • Featured in the Wall Street Journal, Computerworld.com, and SiliconAngle.com
  • Featured on the Master of Data and Serverless Smarts podcasts
  • Interviewed for CloudAcademy.com and CIO Dive
  • Former Cyberspace Operations Officer at the US Air Force

Certifications & Credentials

  • BS, Computer Science – Seattle University
  • CISSP – (ISC)2

Hobbies & Fun Facts

John is a Seattle sports fan and enjoys running in his free time.

Justin Wilder

IANS Faculty

Justin is a Vice President at In-Q-Tel, a non-profit strategic investor serving the Intelligence Community, where he oversees a portfolio of innovative cybersecurity companies solving complex challenges at the intersection of National Security and Commercial Industry. He has also led research and technical diligence exploration for developmental investments that shape Digital Forensics, Behavioral Analytics, Endpoint Protection, Orchestration and Automation, and Software Assurance early-stage startups.

Achievements & Noteworthy Contributions

  • Former Operations Director and Principal Scientist at Siege Technologies, LLC
  • Former Principal Engineer at System Planning Cooperation supporting DARPA’s Information Operations Research and Development Programs
  • Former Information Assurance/Computer Network Defense, a global security and aerospace company
  • Former Project Manager and Security Engineer for Telos Corporation, an Intelligence-focused information security company

Certifications & Credentials

  • MS, Computer Science (Computer & Network Security) – George Washington University
  • BS, Electrical Engineering – University of Maryland

Jake Williams

IANS Faculty

Jake is the Founder, President, and Principal Analyst of Rendition Infosec, an information security consultancy. He also sits on the Vulnerability Review Board at Peerlyst, a startup social networking platform exclusively for security professionals. Jake is a prolific speaker and instructor on a variety of information security topics such as reverse engineering malware, memory forensics, threat intelligence, and advanced exploit development.

Achievements & Noteworthy Contributions

  • Two-Time Winner of the Annual DC3 Forensics Challenge
  • Speaker at information security conferences such as Black Hat, DEF CON, ShmooCon, RSA, and DC3
  • Designated a Master Computer Network Exploitation (CNE) Operator by the NSA
  • Former Vulnerability Analyst at US Department of Defense
  • Former Senior Systems Engineer at Dell Services

Certifications & Credentials

  • MSIA, Information Assurance –Capitol College
  • GSE, GSNA, GCFE, GREM, GCWN, GCIA, GCIH, GPEN, GCFA, GXPN, GSEC –GIAC

How can you engage with our Faculty?

We deliver what CISOs and their teams need most: unbiased, practical advice; the ability to speak with professionals who understand their challenges; and peer interaction to keep their knowledge and skills fresh and up-to-date.

Decision Support

End-User Decision Support is our flagship offering delivered through an annual subscription service designed for CISOs and their teams. IANS connects you with independent experts and practitioners who have 'been there, seen it, and done it,' enabling you to accelerate your capabilities and make informed decisions.

Learn More

Consulting

We work with you to shape engagements and provision them with the right IANS Faculty experts. Your project will never be staffed with junior level consultants. Our expertise is built from hands-on experience. We staff your project with doers who recommend actions, and then help you take them.

Learn More

Events

Our events feature IANS Faculty members who offer a breadth of in-the-weeds advice and high-level guidance for the entire security team. Designed for you to engage with like-minded security professionals in a supportive environment, you’ll learn from a variety of industry approaches and use cases.

Learn More
  
 

Want to know more? Let us know how we can help you.

Success! Thanks for filling out our form! Loading animation
 

* Required Fields