17 Cybersecurity Thought Leaders You Should Be Following
Melissa Stevens | July 21, 2015
As more of the world’s population gains access to the internet and more and more devices come online daily, there are new and emerging cyber threats around every corner.
Who can you turn to for new information and trusted research about these threats?
Instead of digging through your networking toolbox for the answer to that question, we’ve compiled this helpful resource. The following is a list of 17 individuals (organized alphabetically by last name), who have made (and continue to make) a big impact in the cybersecurity world. If you keep an eye on their blogs, podcasts, and social media we’re certain you’ll learn a best practice or two.
So who can you turn to for new information and trusted research?
Instead of making you dig through your networking toolbox for the answer to that question, we’ve compiled this helpful resource. The following is a list of 10 individuals (organized alphabetically by last name), who have made (and continue to make) a big impact in the cybersecurity world. If you keep an eye on their blogs, podcasts, social media, and more, we’re certain you’ll learn a thing or two.
17 Cybersecurity Thought Leaders You Should Be Following
Dr. Anton Chuvakin is head of solution strategy at Google Chronicle, and former Research VP and Distinguished Analyst at Gartner for Technical Professionals (GTP). Cloud security has taken center stage in the workplace thanks to COVID, and you’ll find plenty of cloud security content on Chuvakin’s Twitter as well as on his blog, Anton on Security.
Andy Ellis is the Chief Security Officer at Akamai, a leader in content delivery network (CDN) solutions. At Akamai, he runs the security team and oversees the security compliance of the organization. He has become very influential in the cybersecurity space over the past several years. Though not updated regularly, his blog is a great source of archived information on cybersecurity, and his Twitter feed is stocked full of security wisdom.
Dan Goodin is Security Editor at Ars Technica, where he covers malware, computer espionage, hacking, and other cybersecurity news. His Twitter pagee is a great source of insight to what the world of cybersecurity journalism is currently talking about.
Alex Hutton is a Cyber Security Defense Executive at Bank of America. Formerly, Hutton was a Security Leader and Director of Operational Risk at Zions Bancorporation, a founding member of the Society of Information Risk Analysts, and a Board Member at the FAIR Institute. So if you’re looking to increase your knowledge on IT risk management and cybersecurity, Hutton is your guy!
Jay Jacobs (along with Bob Rudis, who is mentioned below) is the co-author of “Data Driven Security,” and runs a popular podcast and blog on that same topic (also with Rudis). Jay has recently worked as a data analyst for Verizon Wireless and is the Vice President of the Society of Information Risk Analysts (SIRA), but we’d be remiss not to mention that Jay has joined the BitSight team as Senior Data Scientist. (So as you can see, we’re quite fond of his work in security data science!)
Chris Krebs is the former Director of the Cybersecurity and Infrastructure Security Agency in the United States Department of Homeland Security. He remains a prominent figure in cybersecurity, and his exit from CISA this year put his name back in the news. He remains a leading voice in security practices and infosec.
Avivah Litan is the Vice President and Distinguished Analyst for Gartner Research. As an MIT grad with over 30 years of experience in the IT industry, Litan has set herself apart as a cybersecurity and fraud expert. She authors a successful and popular blog where she regularly discusses current topics, and is a great source for newsworthy discussion points.
Whitney Maxwell is a Security Consultant at Rapid7, a security data and analytic software solutions company. She received a DEFCON Black Badge in 2018 when she took first place in the Social Engineering Village competition, and she frequents the conference circuit to share her research on social engineering and security awareness.
Allison Miller is the SVP of Engineering at Bank of America and a Board Trustee for the Center for Cyber Safety and Education. In the past, she was also head of Ads Risk strategy at Google, as well as a board member for both the International Information Systems Security Certification Consortium (ISC2) and the Society of Information Risk Analysts (SIRA). Her risk research and work in anti-fraud/anti-abuse automation place her at the forefront of the cybersecurity pack. She is very active on her Twitter account, making her a great thought leader to follow.
Bob Rudis is the previously mentioned co-author of the Data Driven Security podcast, blog, and book. He is currently Chief Data Scientist at Rapid7. In the past, he worked with Verizon as a Security Data Scientist, and spent a great deal of time working on Verizon’s comprehensive Data Breach Investigations Report. His expertise and passion in the cybersecurity field make him an excellent thought leader to follow. He also presented a webinar with BitSight CTO and cofounder Stephen Boyer based on their talk from the 2015 RSA Conference. Watch it here.
Kelly Shortridge is VP of Product Strategy at Capsule8, a company that provides attack protection for enterprise Linux, and the author of Security Chaos Engineering, an O’Reilly press report. Her expertise is focused in the area of resilient systems and the intersection of workplace culture and security technology.
Camille Stewart is a cybersecurity attorney who has won numerous awards for her work in cybersecurity, foreign policy, and more, including 2019 Cybersecurity Woman of the Year in the category of “Barrier Breaker.” During the Obama administration, she was appointed Senior Policy Advisor at the Department of Homeland Security focusing on cyber, infrastructure, and foreign policy. She currently sits on the boards of various security organizations and covers national security for the Washington Post.
Rachel Tobac is the CEO of SocialProof Security, a company that focuses on the social engineering aspects of cybersecurity. She won 2nd place in the DEFCON Social Engineering Capture the Flag (SECTF) three times. On her Twitter, she discusses infosec, as well as how organizations can help prevent social engineering attacks.
As the co-founder and Chief Technology Officer of Veracode, Chris Wysopal has emerged as a major thought leader in the application security space. He is also a member of the Black Hat Review Board, composed of 21 thought leaders in the information security space. His regular tweeting about emerging threats and newly published research make his 52k+ followers very happy!
If you’re using a “one-size fits all” approach to managing your vendor lifecycle, you are missing opportunities to save money and operate more efficiently. Vendor management efficiencies don’t end in the onboarding stage: using a...
If you’re experiencing frustrating delays and procedural roadblocks during your vendor management process, you’re not alone. Security managers are seeing an increase in the number of third-parties integrating with their business, and ...
During this dynamic and stressful workplace environment 2020 has brought us, finding the most efficient ways to perform in your job has never been more important. When it comes to managing your vendor lifecycle, there are three ways you...