From human risk management to holistic risk management, it all boils down to risk quantification. And it's not about a risk score, it's about dollars and cents. It's the language of business and we need to communicate risk in the language of business.I'm proud to be joining Cybersaint as Chief Product Officer to continue the cyber risk quantification journey and helping our customers, partners, and the industry bridge the gap between cyber risks and business risks.

When John Chirhart called with a way to solve non-repudiation at scale, my first question was which industry first? Email Security it is! After decades of failures, it's time to create a verification system for emails that works, scales, and is cost-effective. It's an honor to be a board member of the company he created.

Always great to fill-in for one of the hosts on Paul's Security Weekly, Enterprise Security Weekly, or Startup Security Weekly. We have lots of fun together...

After almost 2 years of accelerated revenue and profitability growth, we have been acquired by CyberRisk Alliance. Paul and I are off to bigger and better things...Security Weekly is the security podcast network for the security community, distributing free podcasts and media since 2005. We connect the security industry and the security community through our security market validation programs. We view our relationships with the security industry as partnerships, not sponsorships. Security Weekly works closely with each partner to help you achieve your marketing goals and gain traction in the security market.

Proud to join Xiid as a Strategic Advisor to help Steve Visconti and the team continue their growth. We all know the limitations of usernames and passwords and Xiid is revolutionizing the future of identity. Learn more at www.xiid.com.

Proud to join Automox as a Strategic Advisor to help Jay Prassl and the team continue their growth. I'm a big believer in automation and Automox's Automated System Protection solutions enable organizations to deliver confidence by improving their security and compliance posture through simplified system patching and updates. Learn more at www.automox.com.

Although humans are still the biggest cybersecurity threat, it's time for me to take on my next challenge. The team is in great hands and I look forward to great things to come from Living Security.

Congratulations to the Armorblox team on their acquisition by Cisco!

After successfully growing our Business Intelligence Unit in 2021, I've been asked to head-up our Foresight business unit to integrate all of the SC Media and Security Weekly capabilities into horizontally aligned programs for our sponsors, including digital advertising, podcast advertising, newsletters, webcasts, research, custom content, and demand generation.

After a successful integration of Security Weekly into the CyberRisk Alliance portfolio, it's time to build our next business unit, Business Intelligence Unit, that combines custom research and custom content into a single, integrated team.

After the acquisition of Security Weekly, I'm excited to join CyberRisk Alliance to continue our growth trajectory for both Security Weekly and CyberRisk Alliance. Lots of new opportunities ahead...

Congratulations Accurics on your acquisition by Tenable!

Advising a few companies while I search for my next permanent position...

Congratulations Cloudneeti on your acquisition by Zscaler!

After 10 months working with Layered Insight, I'm proud of the successful acquisition by Qualys. Great technology just went to a great company. Although I'm not going over, I wish the team best of luck on their journey ahead.Layered Insight, the pioneer and global leader in Container Native Application Protection, enables organizations to unify DevOps and SecOps by providing complete visibility and control of containerized applications. Using the industry's first embedded security approach, Layered Insight solves the challenges of container performance and protection by providing accurate insight into container images, adaptive analysis of running containers, and automated enforcement of container behavior. Balance the speed and agility of Devops with the security and compliance of SecOps by visiting www.layeredinsight.com.

Proud to join Layered Insight as their Interim Chief Marketing Officer to help Asif Awan and the team revamp their messaging and go-to-market strategy to continue their growth. I'm a big believer in protecting next-generation, container-native applications and Layered Insight's Container Native Application Protection solutions enable organizations to unify DevOps and SecOps by providing complete visibility and control of containerized applications. Learn more at www.layeredinsight.com.

Led Strategy, Research, and Competitive Intelligence teams. Activities included:- Developed Go-to-Market strategy for the launch of Tenable.io, including naming, pricing, and licensing.- Completed two technology acquisitions to support our application security strategy and introduce container security capabilities.- Developed MSSP strategy, including feature enhancements, pricing, and licensing, to leverage Nessus Cloud (now Tenable.io) as a platform for MSSPs to offer managed VM services.- While owning product management and product marketing, revamped corporate and product messaging and introduced new solutions for sales enablement to support the strategy.- Developed 5 year product, marketing, and business strategy.- Modified pricing and licensing for both the Nessus and SecurityCenter product lines, including a move from perpetual to subscription pricing to support a recurring revenue stream for accelerated growth.- Various industry presentations on the future of security, including keynotes at RSA Singapore 2015 and 2016, RSA Abu Dhabi 2015 and 2016, and RSA USA 2016; presentations at InfoSecurity Europe 2015, BlackHat Asia 2016 and 2017, and BlackHat USA 2016; and various partner and local presentations throughout the world.

After developing the initial two year strategy for Archer, focused on product strategy and messaging for Archer, including:- Oversight for EMEA GRC market supporting customer meetings, local events, and workshops.- Strategic oversight within Shell's IRM Next Generation Cluster supporting Archer and other security initiatives.- Development of Risk Intelligence messaging and its roll-out at the 2014 RSA Archer GRC Summit..- Chairman and MC for the 2014 RSA Archer GRC Summit in Phoenix, AZ which attracted over 1,000 attendees.- Various industry presentations on the future of GRC as part of our Risk Intelligence message.

After researching "Big Data" options for Archer, developed strategies for both "Big Archer" and "Big Data" use cases. Also, led strategic planning initiatives developing two year strategy and roadmap for Archer.

Moving over to Product Management to help set the strategy for Policy Compliance.

Building strong compliance partners to leverage Qualys' Policy Compliance capabilities.

Employed through acquisition of ControlPath to establish and offer enterprise governance, risk management, and compliance solutions. Oversee companywide efforts to identify and document new requirements for internal use and enterprise clients. Collaborating with internal teams and developing requirements for new service offerings specific to the Payment Card Industry (PCI).

Promoted to Chief Technology Officer during spin-out from Accuvant. Designing system requirements and architecture to support new versions of ControlPath, formerly known as AccuCERTT. Managing system development team charged with developing new software versions. Performing release testing of new versions; providing final approval for fully functional commercial software.

Providing comprehensive compliance service offerings; addressing risk and compliance needs of clients. Designing system requirements and architecture to build a compliance and risk application known as AccuCERTT.

Organizing and operating an independent consultancy specializing in Information Security and Risk Management.