Jim Reavis, Chief Blogging Officer

For many years, Jim Reavis has worked in the information security industry as an entrepreneur, writer, speaker, technologist and business strategist. Jim’s innovative thinking about emerging security trends have been published and presented widely throughout the industry and have influenced many.

Jim is the President of Reavis Consulting Group, LLC and editor of the Risk Bloggers website. Jim has been an international board member of the ISSA, the world’s largest not for profit association of information security professionals and has also served as the association’s Executive Director. Jim was a co-founder of the Alliance for Enterprise Security Risk Management, a partnership between the ISSA, ISACA and ASIS, formed to address the enterprise risk issues associated with the convergence of logical and traditional security. Jim currently serves in an advisory capacity for many of the industry’s most successful companies.

Jim founded SecurityPortal in 1998 and has been an advisor on the launch of many industry ventures. Jim is widely quoted in the press and has worked with hundreds of corporations on their information security strategy and technology roadmap. Jim was also formerly Chief Marketing Officer for VIGILANTe, a European security software company. Jim received a B.A. in Business Administration / Computer Science from Western Washington University in 1987 and began his career shortly thereafter as the MIS Manager for InterWest Bank, now part of Wells Fargo.

Kurt Seifried, Chief Writing Officer

For more than a decade Kurt has been writing on information security topics. He has successfully made the transition from the purely technical to the business side of information security.

Kurt currently contracts for a number of firms as an information security analyst and researcher, as well as being an active member in the information security community.

Kurt doesn’t like talking about himself.

Larry J. Hughes, Jr.

Larry is the former head of Amazon.com’s worldwide information security team, a twenty-year Internet veteran, and a successful author.

At Amazon.com, Larry made notable contributions betwen 1999 through 2006. He played instrumental roles in compliance efforts for Sarbanes-Oxley Section 404 and Payment Card Industry / Data Security Standard (PCI/DSS), and EU Safe Harbor. He also founded and managed sundry software teams that built the proprietary automation frameworks which enabled years of massive infrastructure scaling.

Prior to Amazon.com Larry founded a seminal managed security service, the architecture of which inspired a new product line for a publicly traded firewall company.

Larry’s publications include Actually Useful Internet Security Techniques (1995), a pioneering text published in four languages. It remained recommended reading by the SANS Institute for five years after going out of print.

Currently, Larry is founder and principal at Infosec Introspect, a unique consultancy best described by its motto: Good Security Follows the Grain of Good Business. He advises companies subject to infosec compliance requirements, infosec startups, and early stage investors regarding all matters high tech.

David Mortman

As CSO-in-Residence, David Mortman, is responsible for Echelon One’s research and analysis program. Formerly the Chief Information Security Officer for Siebel Systems, Inc., David and his team were responsible for Siebel’s worldwide IT security infrastructure, both internal and external. He also worked closely with Siebel’s product groups and the company’s physical security team and is leading up Siebel’s product security and privacy efforts. Previously, Mr. Mortman was Manager of IT Security at Network Associates, where, in addition to managing data security, he deployed and tested all of NAI’s security products before they were released to customers. Before that, Mortman was a Security Engineer for Swiss Bank. A CISSP, member of USENIX/SAGE and ISSA, and an invited speaker at RSA 2002 and 2005 security conferences, Mr. Mortman has also been a panelist and speaker at RSA 2007, InfoSecurity 2003, Blackhat 2004, 2005, 2006 and 2007, Defcon 2005, 2006 and 2007 and Information Security Decisions 2007 as well. Mortman sits on a variety of advisory boards including Qualys and Reflective amongst others. He holds a BS in Chemistry from the University of Chicago.