Steven has over 10 years of professional experience in the security field performing penetration tests and vulnerability assessments on a wide array of technologies. Steven specializes in developing methods to evaluate and advise on security improvements where standard testing and verification models do not apply. Furthermore, he has extensive experience with incident response, malware analysis, IoT assessments, delivery of PCI-DSS and PA-DSS audits.
Prior to joining Security Compass, Steven has worked at Deloitte, the Government of Ontario, and has been an independent consultant. In his previous roles, he was instrumental in helping organizations obtain stakeholder buy-in and establish organization-wide vulnerability management programs. These programs produced practical and measurable results resulting in improvements to IT policy, SDLC, and blue team capabilities.
At Security Compass, Steven brings his hands-on experience to lead and coordinate the development of testing methodologies, establishing engagement models, and provides project oversight to meet the wide variety of Security Compass’s customers' needs.
Our Advisory services team has more than a decade of experience focused on Application Security. We take a flexible approach to your strategic security problems.
Whether you are a global enterprise looking for advice on security strategy and governance, a major financial seeking support on regulatory compliance and penetration testing activities, or a startup looking for high quality assessments to give customers assurance for your business, we're here for you.
Our credentialed professionals are experts in how to break applications and fix code, who take pride in helping you succeed in your Secure SDLC and Secure DevOps programs. Contact us today to learn how we can help solve your organization’s application security challenges.