Services
Consultant
Direct consultation related to organizational Information Security and Tech practices.
Advisor
Guidance for security products and organizations at various stages of maturity.
Coach
Spot or on-going information security career path coaching.
About
Ty has over 18 years experience within information security with a decade focused on software security.
Ty’s manifesto has been to empower developers by embedding security throughout the software development lifecycle to move at the speed of the business. This has been through the instrumentation of the Agile mindset, DevOps practices, adoption of Open Source and real-time dashboards. Ty has led through various time of change to solve complex business opportunities like delivery model transformation and numerous acquisitions to consistently deliver an enterprise program.
Skills
Security Fundamentals (100%)
Application Security (100%)
Security Awareness (95%)
Security Culture (100%)
Security Engineering (95%)
Red Team (75%)
Speaking Engagements
Writing
Experience
February 2022 - Present
Chief Information Security Officer
@ Vercel
Developed Security, IT, Compliance, Privacy, Trust programs among other special projects for the Series D backed organization which enables enginers to simply develop. preview. ship.
March 2018 - March 2022
Chief Security & Trust Officer
@ Sisense
Developed Security, Privacy and Compliance programs for a Series B backed Business Intelligence platform, Periscope Data, which was acquired by Sisense in May 2019.
May 2021 - Dec 2022
Advisor
The AppSec OS which helped laser focused touchpoint in, around and of the DevOps pipeline. Acquired by Palo Alto Networks Dec 2022.
Jan 2018 - Dec 2022
Advisor
Provided guidance, input and direct support for Nightfall (formerly WatchTower) the industry's first Data Leakage Prevention (DLP) platform designed for the cloud. From incubation to Series B.
May 2019 - May 2021
Advisor
Provide guidance, input and direct support for Spherical Defence, which is a unique API security analysis capability. The solution automatically builds a model of your application’s API, which evolves dynamically so it can recognize legitimate data traffic and detect intrusions.
Jan 2018 - Present
Advisor
Provide insight and advice for Identify Security, which is a niche IT recruiting firm that was created to improve the efficiency of applying highly talented IT professionals to solve technology and security related business challenges.
December 2016 - March 2018
Sr. Director of Security Engineering
Enhanced existing ad-hoc Application Security program with continuous assessment capabilities to drive security oriented engineering culture. In addition to supporting growing responsibilities across vulnerability management, product security, security architecture, PKI and awareness.
September 2016 - September 2017
Sr. Director of Product Security
@ Target
Led strategic transformation of the security organization from a Waterfall to Agile/DevOps model to empower the business.
May 2010 - September 2015
Director of Application Security
Accountable leader of enterprise application security program to establish touch points through the Software Development Lifecycle (SDLC).
September 2013 - April 2019
Board Member
@ Fortify
Provide feedback and customer insight into the Fortify roadmap of application security products and services.
July 2008 - April 2010
Information Risk Analyst
Web application security SME for the Corporate Internet Group.
July 2006 - July 2008
Sr. Security and Privacy Consultant
Multifunctional security consultant who supported engagements across a multitude of industries and security domains.