Industry Programmatic Security Expert Will Advise IOActive’s Global 1000 Clients with Strategic Security Programs
Seattle, Wash., February 20, 2019 — IOActive, Inc., the worldwide leader in research-driven security services, today announced that Brook S.E. Schoenfield has joined the company’s Advisory Services team, bringing more than three decades of development and security expertise to the team. In his role as Advisory Services Director at IOActive, Schoenfield is focused on leveraging threat modeling and building robust software security programs for IOActive’s Global 1000 customers.
“Brook’s thorough understanding of cyber risks and the threat landscape enables our clients to make more informed decisions when it comes to security spending and prioritization,” said Jennifer Steffens, CEO of IOActive. “He has trained hundreds of people in threat modeling, as well as trained, coached and mentored hundreds of security architects, so I am confident in his ability to help our clients build and improve their security programs.”
“The bottom line is that cyber threats are constantly evolving and enterprises need to have a full view into the gaps in their security posture,” said Schoenfield. “At IOActive, we’re helping our clients fully understand their security gaps, while explaining their attackers’ capabilities. We provide critical guidance to close the cyber exposure gap to lower their risk. We also can help security teams dictate where to spend security budget and how much to spend.”
Most recently, Schoenfield worked at McAfee LLC (formerly Intel Security Group and McAfee, Inc.) as the Principal Engineer leading product security architecture. In this capacity, he provided strategic technical leadership, training and mentoring 80 security architects and a team of over 120 professionals. He also served as Director of Product Security Architecture at McAfee, where he led a 60 person virtual architect team to cover all aspects of product security, from coding and testing, to secure design and architecture, including SaaS operations and vulnerability discovery, vetting, and disclosure. Prior to McAfee, Schoenfield spent over 11 years at Cisco as a Senior Security Architect, where he was originally hired as the company’s first application security architect and charged with leading the application security team.
About IOActive’s Advisory Services
IOActive’s Advisory Services leverages their unique attacker’s perspective to provide clients with comprehensive security program management, including an organizational assessment that dives deep into understanding the existing risk posture, current threat actors, real-world threat scenarios, and effectiveness of adversary-focused defensive capabilities. Based upon this current state understanding, IOActive works closely with clients to create a roadmap designed to enhance defensive capabilities and develop a framework to continuously monitor progress, benchmark against peers, and effectively communicate the risk posture to their board and stakeholders. These assessments are designed to provide actionable, prioritized recommendations for how to prevent, detect, respond and adjust to security attacks to ultimately improve business resiliency.
IOActive is a trusted partner for Global 1000 enterprises, providing research-fueled security services across all industries. Our cutting-edge security teams provide highly specialized technical and programmatic services including full stack penetration testing, program efficacy assessments, and hardware hacking. IOActive brings an unique attacker’s perspective to every client engagement to maximize security investments and improve client’s overall security posture and business resiliency. Founded in 1998, IOActive is headquartered in Seattle with global operations. For more information, visit ioactive.com.
Michelle Schafer, Merritt Group for IOActive