Ty Sbano

Focused on enabling a Safe, Secure and Trust-based future.

Biography

Ty Sbano brings over two decades of expertise in information security, technology, and security culture development, with a proven track record of driving transformational change across startups in the fintech and tech industries. His work is characterized by a thoughtful, right-sized approach to integrating security into organizational processes and workflows.

Ty's guiding principle is to empower developers by seamlessly embedding security into the software development lifecycle, enabling businesses to innovate and move at full velocity. This philosophy is realized through the application of Agile methodologies, DevOps practices, strategic adoption of open-source tools, and the deployment of real-time dashboards that facilitate rapid iteration and informed decision-making. Ty's leadership spans the spectrum from Fortune 500 enterprises to dynamic startups, where he has successfully guided companies through critical growth phases—from Series B to late-stage scaling.

A passionate advocate for aligning security strategies with business goals, Ty leverages comprehensive threat modeling to address complex challenges while fostering an adaptive security culture. His ability to evolve security practices in tandem with organizational growth has consistently driven measurable outcomes.

Further, Ty is a firm believer in the power of storytelling to inspire and educate. He actively shares his experiences and insights through diverse channels, including presentations, podcasts, interviews, blogs, and authentic relationship-building rooted in practice. His dedication to open dialogue and knowledge sharing amplifies his influence across the security and technology communities.

Beyond his professional endeavors, Ty is deeply invested in the startup ecosystem, contributing as an angel investor, advisor, and mentor to visionary founders shaping the future of the industry. His commitment to enabling innovation and empowering others underscores his enduring impact on the technology and security landscapes.

Experience

Chief Information Security Officer

Vercel

February 2022 - Present

Developed Security, IT, Compliance, Privacy, Trust & Safety, and facilities programs from Series D through Series E late stage organization which enables engineers to simply develop, preview, and ship at the moment of inspiration.

Advisory

Jericho Security

September 2023 - Present

Providing strategic advisory services to Jericho Security, contributing expertise in information security and cybersecurity leadership.

Chief Security & Trust Officer

Sisense (formerly Periscope Data)

March 2018 - March 2022

Developed Security, Privacy and Compliance programs for a Series B backed Business Intelligence platform, Periscope Data, which was acquired by Sisense in May 2019.

Advisor

Cider Security

May 2021 - Dec 2022

The AppSec OS which helped laser focused touchpoint in, around and of the DevOps pipeline. Acquired by Palo Alto Networks Dec 2022.

Advisor

Nightfall.ai

Jan 2018 - Dec 2022

Provided guidance, input and direct support for Nightfall (formerly WatchTower) the industry's first Data Leakage Prevention (DLP) platform designed for the cloud. From incubation to Series B.

Sr. Director of Security Engineering

LendingClub

December 2016 - March 2018

Enhanced existing ad-hoc Application Security program with continuous assessment capabilities to drive security oriented engineering culture. Supported growing responsibilities across vulnerability management, product security, security architecture, PKI and awareness.

Sr. Director of Product Security

Target

September 2016 - September 2017

Led strategic transformation of the security organization from a Waterfall to Agile/DevOps model to empower the business.

Director of Application Security

Capital One

May 2010 - September 2015

Accountable leader of enterprise application security program to establish touch points through the Software Development Lifecycle (SDLC).

Information Risk Analyst

JPMorgan Chase

July 2008 - April 2010

Web application security SME for the Corporate Internet Group.

Sr. Security & Privacy Consultant

Protiviti

July 2006 - July 2008

Multi-functional consultant who supported engagements across global industries.

Web Manager & Computer Tech

Penn State University

August 2004 - April 2006

Managed web presence and provided technical support.

Investments

Beacon
Descope
Dope Security
Drata
Incode
Island
Knostic
Lucidum
Opal
Orca Security
Promptfoo
The Cyber Health Company
Tines
Token Security
Tonic
Trout Software
Tromzo
Wing Security
Gem Security (Acquired by Wiz)
Polyrize (Acquired by Varonis)

Media

Twitter
Follow me on Twitter for the latest updates and insights on cybersecurity.
Visit Twitter
LinkedIn
Connect with me on LinkedIn for professional networking and industry discussions.
Visit LinkedIn
YouTube
Watch my YouTube playlist for in-depth talks and presentations on security topics.
Visit YouTube