Matthew Martin
Matthew Martin is a Sr. Information Security Analyst at a Fortune 100 financial services organisation. He works within the Governance team inside of IT Risk Management where he focuses on information security risk metrics, policies and standards, as well as internal audit management action plans. Matthew’s background is in economics and management. He holds an MS in International Commerce and Policy, as well as currently finishing up...
Lee Munson
Lee Munson, Author & Owner of the Security-FAQs Blog, is in many respects an outsider to the security community, having spent his entire working life in the retail sector. This alternative career path has, however, given him an entirely different viewpoint as he had witnessed some of the consequences associated with big businesses not understanding security or failing to implement even the most basic of controls or policies to...
Andy Jones
Andy Jones is the Chief Information Security Officer for Maersk Line, the world’s largest shipping company. He has over twenty years’ experience in information security and has also headed the function for Unilever, Sainsbury’s supermarkets, as well as managing information security for British Airways. He spent six years working as a researcher for the Information Security Forum, one of the world’s foremost authorities on information...
Andrew Bycroft
Based in Sydney, Australia, Andrew Bycroft is a prolific writer, blogger, strategist, advisor, and presenter, and strives to challenge the status quo in information security in order to help organizations develop a successful and strategic approach to security centered around risk as opposed to the problematic and traditional tactical approaches to security centered around budget, technology or compliance. Andrew’s career spans...
Stephen Patton
Stephen Patton is an Information Security Architect with Liberty Mutual Insurance Company. He primarily focuses on assessing information security risk, and providing technical and policy guidance for business projects. He holds the Certified Information Systems Security Professional (CISSP) credential. Steve frequently presents at conferences on a variety of information security related topics such as risk management and investigative...
Wendy Goucher
Wendy is an Information Security Specialist with Goucher Consulting, a small information security consultancy based in Scotland. Most of her consultancy work is focused on working with organisations to make policy and procedures that are both compliant with whatever external rules they need to follow, while allowing those at the ‘coal face’ to do their job securely. It is an interesting balancing act and makes her very pleased she...
