AeroLeads people directory · profile

Bruce Marshall Email & Phone Number

Founder at PasswordResearch.com
Location: Wichita, Kansas, United States 6 work roles
1 work email found @commercebank.com 3 phones found area 816 and 800 LinkedIn matched
✓ Verified Jul 2026 4 data sources Profile completeness 86%

Contact Signals · 1 work email · 3 phones

Work email b****@commercebank.com
Direct phone (816) ***-****
LinkedIn Profile matched
3 free lookups remaining · No credit card
Current company
PasswordResearch.com
Role
Founder
Location
Wichita, Kansas, United States

Who is Bruce Marshall? Overview

A concise factual answer block for searchers comparing this professional profile.

Quick answer

Bruce Marshall is listed as Founder at PasswordResearch.com, based in Wichita, Kansas, United States. AeroLeads shows a work email signal at commercebank.com, phone signal with area code 816, 800, and a matched LinkedIn profile for Bruce Marshall.

Bruce Marshall previously worked as Security Analyst IV at Commerce Bancshares, Inc and Director of Network Security Services at Security Ps.

Company email context

Email format at PasswordResearch.com

This section adds company-level context without repeating Bruce Marshall's masked contact details.

{first}.{last}@commercebank.com
86% confidence

AeroLeads found 1 current-domain work email signal for Bruce Marshall. Compare company email patterns before reaching out.

Profile bio

About Bruce Marshall

Presented on the following topics:- "Proactive Password Leak Processing" at PasswordsCon 16 / BSidesLV- "How Secure Are Multi-Word Random Passphrases"​ at PasswordsCon 15 / BSidesLV- "How Forced Password Expiration Affects Password Choice"​ at PasswordsCon 14 / BSidesLV- "A Review of Real World Security Questions & Answers"​ at PasswordsCon 13- "Avoiding Poor Challenge Question Authentication"​ at OWASP KC meeting 2007- "2007 Security Threatscape"​ at ITEC Kansas City in 2006- "Combating Common Web Application Authentication Threats"​ and "Evaluating Alternatives to Passwords"​ at NEbraskaCERT 2005- "Evaluating Authentication Solutions"​ at WebSec 2004- "The Realities of Windows 2000 Security"​, "Windows 2000 Authentication"​, and facilitated the Telecommunications Birds of a Feather session with George Dolicker at InfoSec World 2001- "Windows 2000 Encrypting File System (EFS)"​ and facilitated the Windows 2000 Security Birds of a Feather conference session at SANS Baltimore 2001 - "Authentication Solutions Besides PKI"​ and "Planning Active Directory Security in Windows 2000"​ at the Annual Conference & Expo on Control and Audit of Information Technology- "Reusable Passwords and Authentication Alternatives" at Black Hat 1998- Presented, and facilitated round table discussions, at ISSA chapter meeting around the country on the topics of authentication, Windows security, VPNs, and passwords- Created and delivered online web seminars at INS/Lucent and Security PS on various security topics and service offeringsParticipated in these organizations:- Former Chapter Leader, OWASP Kansas City chapter- Former Vice President, ISSA Kansas City chapter- Former Vice President, AITP Wichita chapterCompleted certifications: CISSP, NSA-IAM, CISA, MCSE: Security, SPI Certified Instructor (WebInspect), Security+, CCDA, CCNA, LCTE +Internetworking

Listed skills include Ccna, Ccda, Cisa, Penetration Testing, and 33 others.

Current workplace

Bruce Marshall's current company

Company context helps verify the profile and gives searchers a useful next step.

PasswordResearch.com
Passwordresearch.Com
Founder
6 roles · 25 years

Bruce Marshall work experience

A career timeline built from the work history available for this profile.

Founder

Current
Passwordresearch.Com

Kansas City, Missouri Area

I created this site to consolidate the important information for dealing with password and authentication risks. I seek out and collect the research of security professionals and academics discussing practices for authentication system management. Over the past decades I have expanded this library to over a thousand papers and studies. My goal is to promote better use of the existing body of knowledge as well as encourage new collaborations between those in the academic and commercial circles.I have also conducted my own research on passwords and related authentication practices, the results of which I publish on the site and regularly discuss at security conferences. My expert commentary has been featured in articles by news organizations like BBC News, The Wall Street Journal, New York Post, Infosecurity Magazine, and Ars Technica,

2002 - Present ~24 yrs 6 mos

Security Analyst Iv

Managed the web application security program for the bank, which involved identifying gaps between our program standards and regulatory / industry practices, improving our assessment methodologies, and documenting procedures. Created custom reports to communicate vulnerability findings with in-house developers or outside vendors, and to track issues to their resolution. Balanced business objectives with security goals.Performed manual penetration testing and automated scanning of 100+ customer-facing and internal web apps (primarily Java, C#, or JavaScript based), web services, open source projects, and some infrastructure components. Reviewed vulnerability assessment reports from tools and from third-party consultants to determine their accuracy, risk rating, and our remediation plan.Represented IT Security in application and infrastructure projects. Provided task scoping and process feedback to project teams. Documented, tracked, and communicated risks to IT and business units. Evaluated vendor security program maturity and product design.Collaborated with software development teams, which included delivering an annual secure development course and hosting quarterly secure development roundtables to discuss app vulnerabilities, internal standard changes, and Secure SDLC process integration. Also trained IT Security dept staff on web application security fundamentals, processes, and tool use.

Sep 2008 - Apr 2018

Director Of Network Security Services

Kansas City, Missouri Area

Performed security consulting services for clients, primarily in the financial industry. These projects included network vulnerability assessments, penetration tests, gap analysis, web application security assessments, incident response, and policy development. I managed these projects, wrote technical reports, and presented the findings to IT and executive management.Directed the network security services practice by creating new company service offerings to meet changing industry demands (PCI DSS, FFIEC guidelines, etc.) and developing the methodologies to deliver them. Managed other consultants on client projects. Supported business development with sales meetings, project scoping, and proposal creation. Started the Security PS blog and wrote technical content for it.Created and taught several day-long or multi-day information security training courses for clients, which covered subjects such as Windows & Active Directory security, web application security, information security fundamentals, and WebInspect. Presented at conferences, chapter meetings, and webcasts. Provided security subject matter expertise to Microsoft in the creation of their own course and certification exam content.

Jan 2004 - Jun 2008

Principal Consultant

Kansas City, Missouri Area

Continued work mentioned below as INS was spun off as independent company from Lucent Technologies.

Aug 2002 - Jan 2004

Distinguished Member Of Consulting Staff

Kansas City, Missouri Area

Provided security, networking, and Windows consulting services to clients such asSprint, Conoco-Phillips, Radio Shack, and American Express. Worked on high profile projects and solved problems related to Cisco routing/switching equipment & protocols, Windows 2000 / XP / .NET Servers & Active Directory, Public Key Infrastructures (PKI), authentication protocols & practices, and IP network optimization. Managed these projects, wrote both technical and summary reports, and presented the findings in person to IT and executive management.Developed and facilitated technical training for customers and peers, improved our consulting project methodologies, and supported business development efforts. Presented on technical topics at national conferences, seminars, and webcasts.Led fellow consultants through formal and informal mentoring, technical practice management, and client project management. Represented the consulting staff in company leadership meetings and projects (such as technical bio template creation).

Sep 1999 - Jul 2002

Senior Consultant

Kansas City, Missouri Area

I consulted with clients on topics of information security, internetworking, and Microsoft technologies. INS was acquired by Lucent Technologies where I've documented my accomplishments and responsibilities.

Jul 1999 - Sep 1999
FAQ

Frequently asked questions about Bruce Marshall

Quick answers generated from the profile data available on this page.

What company does Bruce Marshall work for?

Bruce Marshall works for PasswordResearch.com.

What is Bruce Marshall's role at PasswordResearch.com?

Bruce Marshall is listed as Founder at PasswordResearch.com.

What is Bruce Marshall's email address?

AeroLeads has found 1 work email signal at @commercebank.com for Bruce Marshall at PasswordResearch.com.

What is Bruce Marshall's phone number?

AeroLeads has found 3 phone signal(s) with area code 816, 800 for Bruce Marshall at PasswordResearch.com.

Where is Bruce Marshall based?

Bruce Marshall is based in Wichita, Kansas, United States while working with PasswordResearch.com.

What companies has Bruce Marshall worked for?

Bruce Marshall has worked for Passwordresearch.Com, Commerce Bancshares, Inc, Security Ps, International Network Services (Ins), and Lucent Technologies.

How can I contact Bruce Marshall?

You can use AeroLeads to view verified contact signals for Bruce Marshall at PasswordResearch.com, including work email, phone, and LinkedIn data when available.

What skills is Bruce Marshall known for?

Bruce Marshall is listed with skills including Ccna, Ccda, Cisa, Penetration Testing, Vulnerability Management, Cissp, Security+, and Information Security Management.

Find 750M verified contacts

Search by job title, company, industry, location, and seniority. Export verified B2B contact data when you need it.

People with similar names

Check these profiles if this is not the Bruce Marshall you were looking for.

View similar profiles