About Me

I am an expert cyber security technology leader/advisor known for identifying/creating new technical security service offerings, developing industry-first security product features, and driving research into new industry areas. I have operated as technical contributor, technical director, and executive/CTO for small security product startups to very large Fortune 500 finance and technology organizations. I have a wide background in software + firmware + hardware, technology architecture, operations, and applied security strategy.

I am an accomplished thought leader and writer, having written multiple features and cover-story articles for Network Computing and Secure Enterprise magazines; I am also a contributing author to multiple books. Under the pseudonym “Rain Forest Puppy,” I have been recognized as an industry expert in web application security and was responsible for noted industry landmarks including the first documented discovery of SQL injection, the first responsible security disclosure policy and the first intelligent web application scanner. I have presented my research in many forums, from established security events like RSA, BlackHat and CanSecWest to smaller regional conferences around the world.

Find my professional history on LinkedIn.