Partner & Co-Founder
Brian has been driving security programs for two decades and brings a true practitioner's approach to the industry. He creates a more realistic way to address information security and data protection issues for organizations. Brian is a renowned speaker and expert on NIST guidance, threat intelligence implementations, and strategic organizational initiatives.
Partner & Co-Founder
Taylor’s been working in information security, privacy and risk for almost 20 years. His goal is to drive real, measurable results to organizations who need help overcoming cybersecurity issues and building resilient organizations who have the skills and capabilities to adjust to change quickly. He’s also known for his extensive work in all facets of healthcare and is very active in the community.
Sean K. Lowder has been a cyber security evangelist and practitioner in the industry for 20+ years. He has extensive experience building business-savvy cyber security programs that meet risk reduction requirements as set by the company. He has various industry certifications, including Certified Information Security Manager, Certified Information Systems Auditor, Certified in Risk and Information Systems Control, Certified Information Systems Security Professional, and others.
Mr. Lowder has extensive experience in preparing for SOC1, SOC2, HIPAA, PCI DSS, Hitrust and financial auditing for all information security areas. He specializes in the maturation of the risk and compliance management practices and development of a strategic plan and technology roadmap for all security technologies and practices.
Wesley is a seasoned cyber security professional who led security programs at the world’s largest banking, technology and reinsurance companies. He built locally customized security programs for offices in over 15 countries and is well versed in the legal, regulatory and cultural intricacies of building out cyber programs on an international scale. He specializes in integrating security into the fabric of the business and aligning security with revenue driving next generation business initiatives. He holds an Ivy League Executive Masters Degree in Cyber Security from Brown University as well as the CISSP, CCSP and CCSK certifications.
David has been a leader and communicator in national security and information security for two decades, with a particular focus on NIST framework, critical infrastructure security and advanced threat intelligence. He has built best-in-class, collaborative programs at local, federal and nonprofit institutions and has a passion for community service, change leadership and fostering inclusive organizational cultures.
David was most recently the CISO for the San Francisco Police Department and previously served as the Executive Officer of the CIA's Covert Action Staff, a CTO at L-3 MPRI and a founding member of Iraq and Afghanistan Veterans of America. He was technical consultant for Amazon's Jack Ryan.
Scott has spent the last 20+ years listening, learning, understanding and specializing in information security and risk management to enable successful business outcomes. He focuses on the security and protection of organizational data and processes. Scott has a collaborative spirit that allows him to build effective cybersecurity outcomes that drive effective change, innovative strategies and forward-thinking solutions. He delivers success with appropriate mitigation of cybersecurity risk.
Allan's a CISO three times over, with 20+ years experience in IT and Engineering. With a strong product security background, Alford believes that information security should protect, align with, and even generate revenue. Alford holds a CISM certification, is completing an MS in Information Systems & Security at Our Lady of the Lake University, is co-host of the "Defense in Depth" podcast, and is a frequent author and presenter in the information security community.
Eric Gauthier is a technology leader with twenty years’ experience architecting solutions and managing security, IT infrastructure, and devops teams. Eric has successfully led PCI, SOC, and GDPR compliance projects and built security programs in various settings including corporate, academic, and service provider. Eric’s current focus is addressing the unique security challenges for cloud-native organizations and driving the adoption of DevSecOps - the embedding of security into fast-paced IT, development and devops teams - particularly for eCommerce and SaaS providers.
Yael is passionate about helping companies establish a security culture to improve their overall cyber risk posture. She approaches security with business context and an emphasis on transparent, effective communication and coordination. She has spent 20 years working in Fortune 10 Financial Services and Technology companies building, growing and fixing corporate functions. Yael is trusted by C-level executives to quickly understand the business drivers and deliver strategic and measurable outcomes.
She’s an advocate for diversity in security and improving cyber-education.
A programmer for most of his life, Justin has worked in Software Development at MEDITECH for over 20 years and is responsible for the security of MEDITECH applications and platforms. In addition to his experience with product development and a secure SDLC, he has assisted healthcare organizations around the globe with cybersecurity preparedness and incident response.
Malcolm Harkins is currently an independent board member and advisor to organizations. He is also an executive coach to CISOs and others in a wide variety of information risk roles. Previously Malcolm was the Chief Security and Trust Officer at Cylance Inc. In this role he reported to the CEO and was responsible for enabling business growth through trusted infrastructure, systems, and business processes. Malcolm was also previously Vice President and Chief Security and Privacy Officer (CSPO) at Intel Corporation. In that role Malcolm was responsible for managing the risk, controls, privacy, security, and other related compliance activities for all of Intel’s information assets, products, and services.