Matt Johansen — Co-Founder

Over the last two decades, I’ve helped make hundreds of organizations more secure. My mission is to leave the Internet a more secure place than I found it. I’m helping organizations handle billions of users' information securely and increasing brand’s trust among their customers. I run a cybersecurity media brand called Vulnerable U. We run a popular cybersecurity newsletter along with daily social media video content across platforms. We've also built a team @ Vulnerable U to help YOUR company with its tech marketing needs. The team is staffed with experts who can create content for you without the marketing cringe factor. You don't need to teach us to spell Kubernetes. (I'm hiring content creators here if you're looking) My portfolio: → I was the head of Software Security at Reddit where I help design security into all facets of the business for the 4th largest social network in the US and a top 20 most visited website globally → I teach company’s how to protect against cyber attacks and save tens of millions of dollars in losses. → I coach entrepreneurs and CISOs that need help with infrastructure, application, cloud, and security policies. → I advise early-stage companies in cyber security best practices and help pass technical due diligence from investors and potential acquirers. → I invest in early-stage private technology companies focusing on cybersecurity, software infrastructure, employee productivity, and B2B/SaaS. → I volunteer for a selection of non-profits who’s missions I connect with who wouldn’t otherwise be able to afford technical and specifically security consulting services.. If you want to work with me, get in touch

Stackforce AI infers this person is a cybersecurity expert with extensive experience in both finance and social media sectors.

Location: Austin, Texas, United States

Experience: 22 yrs 4 mos

Career Highlights

Founded a leading cybersecurity media brand.
Led security integration at Reddit, a top social network.
Managed vulnerability scanning for millions of endpoints.

Work Experience

Ghost Security 👻

Advisory Board Member (2 yrs 6 mos)

Reddit, Inc.

Head of Software Security (1 yr 1 mo)

Principal Security Architect (1 yr 10 mos)

Vulnerable U

Founder (3 yrs 2 mos)

Aviso Ventures

Limited Partner (3 yrs 4 mos)

Bank of America

SVP, Sr Security Manager, Cyber Security Defense (3 yrs 9 mos)

SVP, Cyber Security Technology - Cloud Security Architect (10 mos)

Goldman Sachs

Vice President (1 yr)

Honest Dollar

Head of Security [ Acquired by Goldman Sachs NYSE: GS ] (1 yr 9 mos)

WhiteHat Security

Sr. Manager, Threat Research Center (3 yrs 2 mos)

Threat Research Center Supervisor (4 mos)

Director, Security Services & Research (5 yrs 1 mo)

Application Security Specialist (11 mos)

San Jose State University

Instructor (0 mo)

Adelphi University

Instructor (0 mo)

VerSprite, LLC

Security Consultant (9 mos)

Foreground Security / The Hacker Academy

Junior Contracted Consultant (2 mos)

Liquidmatrix Security Digest

Writer & Podcast Co-Host (8 yrs 11 mos)

Push the Stack Consulting

Consultant (11 mos)

Arrow Electronics

Data Security Analyst (6 mos)

Adelphi University

Resident Assistant (2 yrs 4 mos)

Residential Computing Assistant (2 yrs 3 mos)

West Hempstead Union Free School District

Computer Technician (1 yr 10 mos)

Education

BS at Adelphi University

GCIH at SANS Institute

Matt Johansen

Co-Founder

Austin, Texas, United States22 yrs 4 mos experience

Highly Stable

Key Highlights

Founded a leading cybersecurity media brand.
Led security integration at Reddit, a top social network.
Managed vulnerability scanning for millions of endpoints.

Stackforce AI infers this person is a cybersecurity expert with extensive experience in both finance and social media sectors.

Contact

Skills

Other Skills

Application SecurityPublic SpeakingPenetration TestingVulnerability AssessmentVulnerability ManagementVulnerability ScanningCloud ComputingManagementProduct MarketingProduct ManagementEnterprise SecurityInformation SecurityStrategic LeadershipConsultingWeb Applications

About

Experience

22 yrs 4 mos

Total Experience

2 yrs 8 mos

Average Tenure

2 yrs 6 mos

Current Experience

Ghost security 👻

Advisory Board Member

Nov 2023 – Present · 2 yrs 6 mos

Reddit, inc.

2 roles

Head of Software Security

Promoted

Oct 2023 – Nov 2024 · 1 yr 1 mo · Austin, Texas, United States

Leading Reddit's software security team which focuses on AppSec, ProdSec, and a secure by default developer experience.

Principal Security Architect

Dec 2021 – Oct 2023 · 1 yr 10 mos · Austin, Texas, United States

I'm designing and implementing security systems into all facets of Reddit's business. Protecting our company's employees and our website's users is my team's main focus.

Vulnerable u

Founder

Mar 2023 – Present · 3 yrs 2 mos · Austin, Texas, United States

Founder and Operator of Vulnerable U, a podcast, newsletter, and overall cybersecurity media brand across platforms.
Curate, write, and produce weekly infosec related content for a large audience
Help cybersecurity companies with their go-to-market strategy and content marketing

Aviso ventures

Limited Partner

Jan 2023 – Present · 3 yrs 4 mos

Bank of america

2 roles

SVP, Sr Security Manager, Cyber Security Defense

Mar 2018 – Dec 2021 · 3 yrs 9 mos · Austin, Texas

A senior security leader responsible for a large team, focused on Infrastructure Security Testing.
Responsibilities have included:
Management of our Vulnerability Scanning program continuously scanning millions of endpoints and thousands of web applications,
Enterprise Remediation Governance - partnering with our infrastructure owners to remediate vulnerabilities within given SLAs,
Management of our baseline compliance monitoring program, and
Management of our Internet Hygiene and perimeter analysis.
Previously led our cloud, container, and DevOps security programs for a hybrid, multi-cloud architecture.

SVP, Cyber Security Technology - Cloud Security Architect

May 2017 – Mar 2018 · 10 mos · Austin, Texas

If it's a Cloud, Containerization, or DevOps initiative it's on my desk.
My job to work with all security control owners to operationalize their control in all major public cloud providers and Kubernetes or OpenShift environments.

Goldman sachs

Vice President

May 2016 – May 2017 · 1 yr · Austin, Texas

- One of 3 CISOs of consumer facing divisions at Goldman. (Honest Dollar, Marcus, and GS Bank)

Honest dollar

Head of Security [ Acquired by Goldman Sachs NYSE: GS ]

Aug 2015 – May 2017 · 1 yr 9 mos · Austin, Texas

Acting CISO, built an Information Security program from the ground up at a Financial Tech startup.
Build secure SDLC, testing, and monitoring around a FinTech application running in Google Cloud on Kubernetes hosting a ReactJS, Go, iOS/Android application and backend financial connections.
Manage creation and maintenance of policies
Prove secure foundations during acquisition due diligence by Goldman Sachs

Whitehat security

4 roles

Sr. Manager, Threat Research Center

Promoted

Oct 2011 – Dec 2014 · 3 yrs 2 mos

Started and built Whitehat’s first satellite office - focusing on hiring dozens of new security engineers in Houston while maintaining the Silicon Valley SaaS startup culture. Took the team from 0-65+
Hired, trained, and managed the team and helped handle WhiteHat’s exploding customer base which went from a few hundred websites to tens of thousands during this period.
Launched our new product lines beyond our bread and butter web app security testing which included Static Code Analysis and other early development lifecycle integrations to better address the DevOps movement.
Acting figurehead representing WhiteHat Security at many local and national security events presenting on his technical security research as well as emerging threats and trends in the web application security field. (mattjay.github.io/talks)

Threat Research Center Supervisor

Jun 2011 – Oct 2011 · 4 mos

- Lead a team of application security testers and engineers

Director, Security Services & Research

Promoted

Jul 2010 – Aug 2015 · 5 yrs 1 mo

Transitioned out of people management for my last stint at WhiteHat and really focused on industry leadership, sales enablement, content creation, partnership building, and new product launches.
This includes but is not limited to:
Remediation Assistance & Guidance
Secure Development Training
Risk Based Vulnerability Prioritization
SDLC Architecture Review
AppSec Program Building
Asset Discovery
Launched and co-hosted a weekly video podcast, entitled HackerKast, with the Founder of WhiteHat Security, Jeremiah Grossman, and VP of WhiteHat Labs, Robert "RSnake" Hansen.

Application Security Specialist

Jul 2010 – Jun 2011 · 11 mos

Web Application penetration tester for the Threat Research Center at WhiteHat Security responsible for identification of security vulnerabilities across tens of thousands of web applications.

San jose state university

Instructor

May 2011 – May 2011 · 0 mo

- Taught the web application security section of a undergraduate level class on information security.

Adelphi university

Instructor

Mar 2011 – Mar 2011 · 0 mo

- Taught the web application security section of a undergraduate senior seminar on information security.

Versprite, llc

Security Consultant

Oct 2009 – Jul 2010 · 9 mos

Foreground security / the hacker academy

Junior Contracted Consultant

Jun 2009 – Aug 2009 · 2 mos

Liquidmatrix security digest

Writer & Podcast Co-Host

Mar 2009 – Feb 2018 · 8 yrs 11 mos

Write articles about current events in the security world and my personal take on them.
Host a weekly podcast about current events in the security industry.