Security executives on the move and in the news

Find up-to-date news of CSO, CISO and other senior security executive appointments.

New CSO, CISO appointments
geralt (CC0)

The upper ranks of corporate security are seeing a high rate of change as companies try to adapt to the evolving threat landscape. Many companies are hiring a chief security officer (CSO) or chief information security officer (CISO) for the first time to support a deeper commitment to information security.

CSO’s Movers & Shakers is where you can keep up with new appointments to senior-level security roles and perhaps gain a little insight into hiring trends. If you have an announcement of your own that you would like us to include here, contact Michael Nadeau, senior editor.

April 18, 2018: Dr. Sam Small named CSO at ZeroFOX

Dr. Small will work with social media security provider ZeroFOX’s enterprise customer portfolio to develop, execute and maintain strategies that address the security threats intertwined with social media platforms. As one of the country’s foremost experts on intellectual property (IP), Dr. Small will continue to invest, build upon and protect ZeroFOX’s proprietary platform and continued growth.

zerofox sam small ZeroFox

Dr. Sam Small, ZeroFOX CSO

“The social media landscape has never been more vulnerable, and ZeroFOX is leading the global charge to ensure security is top of mind when it comes to interacting with these platforms,” said James C. Foster, CEO of ZeroFOX, in a press release. “As we enter our next phase of growth, Sam will help us drive security both internally at ZeroFOX and for our customers.”

At ZeroFOX, Dr. Small will drive ZeroFOX’s security vision both internally and externally for customers. He will work directly with customers at the CXO level to deliver the company's services and technology as well as infusing the ZeroFOX Platform with his expertise. Finally, Dr. Small will help oversee all ZeroFOX’s IP and internal security operations.

“ZeroFOX’s team is committed to delivering the people, technology and processes that will keep our customers secure on social media,” said Dr. Small in a press release. “They’ve architected a scalable platform to solve enterprise social media and digital security challenges both now and in the future, and I look forward to being part of this forward-thinking team.”

Prior to being named CSO, Dr. Small served on ZeroFOX’s board of advisors. He was also the CEO and founder of Fast Orientation, an enterprise security software startup. Additionally, after earning his doctorate in computer science from Johns Hopkins University, he led an academic security research lab and launched two security startups.

April 16, 2018: Myrna Soto leaves CISO role to join ForgePoint Capital as a partner

Soto will be a member of the investment team at ForgePoint (formerly Trident Capital Cybersecurity), a venture capital firm focused on the cybersecurity industry. The ForgePoint investment team and will help identify investment opportunities; advise portfolio companies; participate in due diligence activities; organize the CISO, CIO, and CTO community; and refine the firm’s investment strategy.

myrna soto forgepoint ForgePoint Capital

Myrna Soto, ForgePoint Capital partner

“I have had the honor to serve as an advisory board member to a number of startups, growth-stage companies and large technology solution providers.  My work identifying core technologies for security innovation and being a design partner in that regard has always been very gratifying,” Soto tells CSO. “Now I will have the opportunity to do this at a much deeper scale.” 

“Myrna is a tremendous addition to our team given her demonstrated success managing global cybersecurity and technology risk programs at leading Fortune 500 companies,” said J. Alberto Yepez, Co-founder and managing director at TCC, in a press release. “Her broad industry insights, business acumen and experience serving in public company boards will bring invaluable perspective to our investment activities and to the growth of our portfolio companies. Myrna is a champion of diversity and has been recognized multiple times as one of the most powerful women in cybersecurity and most powerful Latinas in business.”

As a former CISO, Soto expects to apply her operational and strategic experience to help startups develop go-to-market strategies, position product, provide implementation guidance, and advise on how best to have their product or service embraced by security leaders. “Identifying innovated technologies and products that will lead us to the next generation of core security technologies is all the enticement I need [to join ForgePoint],” says Soto. “I am thrilled to be named a partner in the firm and to be the first female partner in the firm’s history.”

Soto was previously senior VP and global CISO of Comcast Corp., which she joined in 2009. “When I started at Comcast, we were extremely federated in our approach to security. Rationalizing security investments, maturing operational processes, and maturing a very strong and effective security program across the enterprise is something I am very proud of,” says Soto. “I am also very proud of the teams and leadership we developed and who will lead the company into the next stage of continuous improvement.”   

Leaving that team of practitioners and business people is one regret that Soto has leaving the CISO role. “I will also miss the diverse set of businesses Comcast represents. Comcast was an extremely exciting place to be at. However, I am certain I am replacing it with another incredible vertical that will foster and develop the next generation of innovative security solutions,” says Soto.

She has a total of 25 years of information security and technology leadership experience at American Express, Royal Caribbean Cruise Lines, Kemper Insurance and MGM Resorts. Soto was also recently named to Fortune magazine’s “50 Most Powerful Latinas in Business“ for the second consecutive year and has been recognized by SC Magazine among the “Top 10 Power Players for Women in Security” and among the Top 100 Technology Executives by the Hispanic IT Executive Council.

​​April 16, 2018: Unisys hires Mathew Newfield as CISO

Newfield will lead the Unisys corporate information security team, which is responsible for the design, development and implementation of the company's corporate information security and risk program across all regions and functions. That includes the company's two go-to-market organizations, Enterprise Solutions and Unisys Federal. He reports to Eric Hutto, senior vice president and president, Enterprise Solutions, Unisys.

Prior to joining Unisys, Newfield served as director of global managed security services (MSS) for IBM as well as the business information security officer within IBM's security organization. In that role, he was responsible for the delivery of services in 133 countries and managing a staff of 1,500 security professionals. Newfield also has previously held security leadership roles with Cybertrust, RSA and DDC Advocacy.

Newfield has published books on security and has been an instructor with the SANS Institute, a security research and education organization. He has been a frequent presenter around the world on cyber topics and worked closely with many global organizations to improve their security.

"Matt's experience working as a global leader at some of the world's most prominent security and technology companies will help Unisys to continue our momentum as a company focused on leading-edge security," said Hutto in a press release. "He brings an enormous array of skills and knowledge in both internal and client-facing roles. Unisys will leverage this experience in protecting both client information assets and our own."

April 16, 2018: Former DEFCON security head Marc Rogers Joins ScaleFT as CSO

Rogers brings over 20 years of security industry expertise to zero-trust security company ScaleFT. He has held the role of head of security for DEFCON, the world’s longest-running hacker conference, since 1999. Most recently, Rogers served as head of information security at CloudFlare, Inc., responsible for the global security of the compliance, product security, infrastructure security, and threat intelligence teams. He brings deep technical expertise to the ScaleFT mission of helping companies achieve their own BeyondCorp-inspired zero-trust security architectures.

“Marc has been incredibly valuable as an advisor and community advocate, and we are extremely excited to welcome him to ScaleFT,” said Jason Luce, CEO and co-founder of ScaleFT, in a press release. “We share the same vision for security as a significant business enabler, with zero trust as the right model, and we look forward to his contributions to our fast-growing company.”

Rogers has been a prominent figure in the information security field for decades, where he is best known for his whitehat hacking including Google Glass, Apple’s TouchID and most recently The Tesla Model S sports car. He has served on industry steering groups that include the Microsoft CISO council and the GSMA Security Group. He has also advised several TV networks including BBC, where he appeared on and advised the series, “The Real Hustle”, and most recently USA Network’s MR Robot where he designed hacks such as the Femtocell used for the finale in Season 2.

“I have been incredibly impressed with how ScaleFT has brought the core principles of BeyondCorp to the market in such a positive and meaningful manner,” said Rogers in a press release. “It’s my strong belief that security should be seen as a business enabler, never a blocker, and ScaleFT is the company to bring that confidence to organizations of all size through its Zero Trust platform.”

April 12, 2018: Justin Calmus appointed CSO at OneLogin

With deep experience across enterprise information security in CIO and CSO roles, Calmus will architect and lead unified access management provider OneLogin’s risk management, security and compliance efforts. He will drive security and compliance requirements for some of the most demanding computing environments for companies such as AAA, Airbus, Citizen, and Tesco.

justin calmus OneLogin

Justin Calmus, OneLogin CSO

Before joining OneLogin, Calmus served as VP of hacker success at HackerOne, the leading bug bounty platform, where he was responsible for representing and cultivating HackerOne’s community of more than 100,000 hackers. Prior to his tenure there, he served as CIO and CSO at Zenefits, was director of enterprise security at Salesforce, and manager of security engineering at LinkedIn.

“Security is paramount as digital transformation empowers businesses with enhanced efficiency and business agility,” said OneLogin CEO Brad Brooks in a press release. “Justin has a unique blend of experience and expertise, and I am delighted to have him leading our efforts.”

“OneLogin is at an exciting stage of its growth from both a business and a technology perspective as it pioneers the new unified access management category,” said Calmus in a press release. “I’m thrilled to be joining the executive team to lead security and compliance efforts as the company moves its vision forward.”

April 10, 2018: Michael Ngo joins ORock Technologies’ executive team as CSO

Ngo is responsible for ensuring the security and compliance of ORock’s infrastructure as a service (IaaS) and cloud service offerings. He recently completed his 28-year military career as a colonel with the US Army, where he directed worldwide network operations and cyber defense for large-scale organizations of over 7 million systems, on 15,000 separate networks, across various security domains.

Prior to joining ORock, Ngo served as COO, Joint Force Headquarters Department of Defense Information Networks (JFHQ-DODIN). He was responsible for command and control of defensive cyberspace activities focusing on unity of command and unity of effort within the DoD to secure, operate, and defend DoD Networks.

“Mike’s deep experience overseeing and protecting critical DoD networks made him the ideal candidate to ensure the security and compliance of ORock solutions,” said Gregory Hrncir, co-founder and CEO of ORock. “We’re excited about the addition of another distinguished military leader to our team of senior executives and advisors.”

Ngo holds a Master of Science in Information Technology Management from the Naval Postgraduate School and graduated as a ROTC Distinguished Military Graduate with a degree in computer science from Millersville University.

April 5, 2018: Matt Palmer leaves CISO role to direct new risk tool at Willis Towers Watson

Palmer oversee the Cyber Risk Profile Diagnostic (CRPD) tool and its development for global advisory, broking, and solutions company Willis Towers Watson. Previously the company’s CISO, he now becomes its

matt palmer Willis Towers Watson Willis Towers Watson

Matt Palmer, senior director for cyber risk management solutions at Willis Towers Watson

business.

Anthony Dagostino, global head of cyber risk for Willis Towers Watson, said in a press release: “Matt’s excellent track record as CISO and deep knowledge of cyber risk, technology and regulation will be invaluable in supporting our global clients with their own information security programs and leading our innovative new CRDP tool.”

Related:
1 2 3 4 5 6 7 8 9 10 Page 1
Page 1 of 10
Security Smart: 4 Common Password Myths ... Debunked!