Jun 2020 – Present · 5 yrs 11 mos

• I invest in and advise cybersecurity startups that I think will make a difference.
• Advisor to Glilot Capital Partners, YL Ventures and NightDragon, and part of SVCI.
• I have invested in Drata, Lucidum (acquired by Cyderes), MIND, Tonic, Island, Opal, Descope, Endor Labs, Valence Security, DevOcean (acquired by Pentera) and Eureka (acquired by Tenable).

Sep 2018 – Mar 2020 · 1 yr 6 mos

• Assessed new ideas and policy in the area of cybersecurity, and contributed analysis on Artificial Intelligence cybersecurity issues, the development of human-focused security programs, international cybersecurity cooperation/capacity building and sanctions issues.

Mar 2018 – Aug 2022 · 4 yrs 5 mos · San Francisco Bay Area

• I led the talented security team at Zendesk, responsible for the cybersecurity of our products and corporate network, physical security and safety of 5,450 employees in 20 offices across 19 countries.

Jul 2015 – Mar 2018 · 2 yrs 8 mos · San Francisco, California

• Fastly is the future of content delivery. If you’re tweeting, pinning, shopping on Wayfair or ModCloth, reading the news on Fast Company or The Guardian, browsing pictures on Imgur, or coding with GitHub, Fastly is improving your user experience. Our mission is to build a better, faster Internet. And yes, Fastly security is hiring!
• Built security engineering team up from 1 - 8. Often manage teams of 20.
• Oversees the design and implementation of intrusion detection, log analysis, vulnerability management, vendor security and compliance programs for top 10 fastest growing (15 Tbps content delivery network) B2B company in the last 30 years supporting customers such as Twitter, GitHub and Alaska Airlines
• Developed and implemented security incident response plan
• Wrote and maintained security policies for both the corporate and production networks

Oct 2013 – Jul 2015 · 1 yr 9 mos · Greater Seattle Area

• I managed Amazon's Threat Intelligence and Security Analysis teams. We assessed adversary tactics, techniques and procedures and designed effective and novel methods of detecting malicious activity. The goal of both teams was to detect advanced persistent threats and sophisticated attacks against Amazon.
• Developed new internal technologies to identify attack severity within record speed
• Integrated open source tools to design the first repository for threat related data at Amazon, and drove human analysis based on this data
• Introduced and coordinated Amazon’s participation in threat intelligence sharing communities
• Led the development of the first “hunting” tool within Amazon to detect sophisticated threats

Jul 2013 – Jul 2015 · 2 yrs · Greater Seattle Area

• As Chair, I led the board and annual general meetings. I was also responsible for external engagement of the organization with other organizations in the cybersecurity community.

Jun 2011 – Jun 2021 · 10 yrs · Greater Seattle Area

• FIRST aims to foster cooperation and coordination in incident prevention, to stimulate rapid reaction to incidents, and to promote information sharing among members and the community at large. I've been a Board member since 2011, and was Chair from 2013-2015.
• Largest global association of 400+ incident response teams in 80+ countries
• Negotiate agreements with organizations such as International Telecommunications Union, Organization of American States and others.
• Built and implemented business strategy 2012 onwards.

Jul 2012 – Oct 2013 · 1 yr 3 mos · Mountain View, CA

• As a Program Manager in Google's Information Security Engineering group, I was responsible for the Google Internet Authority and the protection of Google's domain names.
• Project managed the global Public Key Infrastructure team
• Successfully led critical and time sensitive project to get a subCA ready for the issuance of 2048-bit certificates. This upgraded encryption for all traffic going to Google.
• Coordinated full WebTrust/Baseline Requirements audit with the global engineering team
• Designed and implemented protocols for domain name security

Jul 2008 – Jun 2012 · 3 yrs 11 mos · Redmond, WA

• Manager in the Security Outreach team at Microsoft. My team developed relationships with the information security industry and with government security response teams. We operated and developed several key information exchange programs on security vulnerabilities and threats that may affect Microsoft products, properties and customers, including the Microsoft Active Protections Program (MAPP) and the Defensive Information Sharing Program (DISP).
• Prior to this role, I was a Program Manager in the Microsoft Security Response Center (MSRC), responsible for coordinating the assessment, investigation and response to security vulnerabilities in all versions of the Windows operating system, in particular those affecting cryptographic and authentication components such as CryptoAPI/CNG/SChannel and Kerberos.
• During my time with Microsoft, I had the opportunity to subsequently participate in, support and coordinate the company's response to several high profile security incidents such as the 2009 X.509 ASN.1 parsing vulnerabilities, Stuxnet and the DigiNotar compromise.

Jun 2007 – Jun 2008 · 1 yr · Leuven, Belgium

• Consultant with the professional services team, providing clients with guidance on securing critical data as well as on the response and investigation of security breaches and incidents. I specialized in application security assessments, penetration testing and threat modeling and investigative response & security intelligence work.

Jul 2001 – May 2007 · 5 yrs 10 mos · Leuven, Belgium

• Represented Cybertrust (now Verizon Business) with clients on all matters that concerned delivery of Managed Security Services. I provided both technical as well as management reporting on key deliverables and performance indicators. Additionally, I was dedicated project manager and senior security specialist assigned to specific key accounts in the financial services industry.
• Prior to my role as a Service Delivery Manager, I worked in various capacities as a Security Engineer and Engineering Manager, focusing on intrusion detection, investigations and response.