As a information security leader for over a decade I have seen the attack surface change many times. Proactively protecting assets for companies and deriving business value by avoiding risk is a key tenant of my cybersecurity risk management strategy.

I attended Carnegie Mellon University’s world renown Masters of Science in Information Technology program. My primary focus in this program was Information Security and Assurance, aka Cybersecurity. I learned from the leaders of the U.S. Computer Emergency Readiness Team about advanced Cybersecurity attacks and developing secure computing systems

I also received formal education on risk management, studying the OCTAVE risk management framework, which was invented at the Software Engineering Institute at Carnegie Mellon.

Currently I hold numerous industry leading cybersecurity certifications including CCISO, CISSP, CCSP, and CISM.

I have successfully led multinational companies through numerous ISO27001, SOC1, and SOC2 audits.

Areas of Expertise

• Cloud Security
• Risk Management.
• ISO27001 / SOC1 / SOC2
• Asset Security.
• Security Architecture and Engineering.
• Communications and Network Security.
• Identity and Access Management.
• Security Assessment and Testing.
• Security Operations.
• Software Development Security.