Toronto, Canada

Steven Davidson

Steven has over 10 years of professional experience in the security field performing penetration tests and vulnerability assessments on a wide array of technologies. Steven specializes in developing methods to evaluate and advise on security improvements where standard testing and verification models do not apply. Furthermore, he has extensive experience with incident response, malware analysis, IoT assessments, delivery of PCI-DSS and PA-DSS audits.

Prior to joining Security Compass, Steven has worked at Deloitte, the Government of Ontario, and has been an independent consultant. In his previous roles, he was instrumental in helping organizations obtain stakeholder buy-in and establish organization-wide vulnerability management programs. These programs produced practical and measurable results resulting in improvements to IT policy, SDLC, and blue team capabilities.

At Security Compass, Steven brings his hands-on experience to lead and coordinate the development of testing methodologies, establishing engagement models, and provides project oversight to meet the wide variety of Security Compass’s customers' needs.

Areas of Expertise:
Advisory Services
  • Application Risk Profiling
  • Secure Development Standards
  • Security Program Management and Execution
  • Phishing and Employee Awareness Campaigns
  • Periodic Security Assessments & Delta Analysis Program
Verification Services
  • Architecture Review and Threat Modelling
  • Web Application Security Assessment
  • Mobile Application Security Assessment
  • Desktop Application Security Assessment
  • Vulnerability Triaging for Static and Dynamic Analysis Results
  • Point of Sale Application Assessment
  • Network Security Assessment
  • Wireless Security Assessment
  • Configuration Review
  • Internet of Things (IoT) Device Review
  • Distributed Denial of Service (DDoS) Advisory
  • Red Team, Blue Team & Purple Team Exercises
  • Physical Security Assessment
  • Phishing Simulation
  • Financial Services
  • Technology
  • Retail
  • Telecom
Back to Our People

Our Advisory services team has more than a decade of experience focused on Application Security. We take a flexible approach to your strategic security problems.

Whether you are a global enterprise looking for advice on security strategy and governance, a major financial seeking support on regulatory compliance and penetration testing activities, or a startup looking for high quality assessments to give customers assurance for your business, we're here for you.

Our credentialed professionals are experts in how to break applications and fix code, who take pride in helping you succeed in your Secure SDLC and Secure DevOps programs. Contact us today to learn how we can help solve your organization’s application security challenges.