About
Articles by 🍀 Tim
Activity
1K followers
-
🍀 Tim O. posted thisFor those in the SF bay area, Saturday is SecNerds the conference - I'll be at the afterparty. Say hello if you are coming out!
-
🍀 Tim O. posted thisIn my efforts I turn compliance obligations into competitive advantage. Over the years I’ve watched organizations treat information security and privacy as boxes to tick, which is costly, reactive, and buried in legal or IT. I rather partner with teams to flip that script: aligning risk management with product strategy, embedding privacy by design, and translating controls into customer trust and revenue opportunities. Leadership lesson: Security leaders who speak the language of the business win. Influence beats authority. When we frame risk as strategic value, you unlock investment, speed, and market differentiation. Security & privacy takeaway: Mature programs do more than prevent loss. These efforts build brand trust, enable partnerships, and reduce friction in go‑to‑market motions. We should treat privacy and security as assets, not burdens. I work with leaders ready to move from compliance checklists to strategic advantage. Let us make security a growth lever for the organization. #StrategicSecurity #BusinessValue #TrustedByDesign #SecurityAsDifferentiator #PrivacyFirst #GrowthMindset #MarketDifferentiation #Leadership #CareerGrowth #ContinuousImprovement #InfoSec #PrivacyEngineering #RiskManagement #DataProtection #GRC #AI #slop
-
🍀 Tim O. posted thisClear-headed observation: a few industry gatekeepers are quietly narrowing the field. I sat on this for a few days to collect my thoughts. It's not just one recruiter, but several "headhunter" firms tend to dominate the market for InfoSec and privacy leadership roles. While many candidates break through and get invited to their dinners and events, as well as the roles they are working to fill for their clients, there are a noticeable subset of leaders are effectively shut out. Worse, there's no feedback or transparency about why. I've seen recruiters who are friendly in person that ignore emails and tell their teams not to engage, leaving talented professionals stranded without growth signals. Leadership lesson: Inclusion is a leadership choice. Effective leaders and firms build pipelines, give candid feedback, and cultivate diverse talent; not gatekeep based on networks or comfort. If you care about industry resilience, invest in transparency and development over clubby favoritism. Security & privacy takeaway: Whether cyberspace or "meat space", closed networks are a systemic risk. When hiring concentrates power and excludes perspectives, organizations miss critical experience and reinforce homogeneous thinking: which are exactly the blind spots attackers exploit. Prioritizing fair access, clear feedback, and diverse hiring strengthens both culture and controls. I’m committed to leadership, calling out opaque practices, mentoring peers who’ve been sidelined, and partnering with search partners who value merit and growth. The market and our industry is big enough for better. Our fellow professionals deserve better. #StraightTalk #IndustryIntegrity #CallItOut #BuildBridges #Leadership #GrowthMindset #CareerGrowth #ContinuousLearning #Mentorship #Resilience #InfoSec #Privacy #informationSecurity #cybersecurity #hiring #inclusion #DiversityInSecurity #HiringPractices #TalentPipeline #AI #slop
-
🍀 Tim O. posted thisOpen, candid reflection: I was turned down for a CISO title that wasn't one. Quick story: I interviewed for a Chief Information Security Officer role at a healthcare tech firm and found a classic mismatch: a "CISO" who spends 11 years running audits with spreadsheets, a CIO asking for technical depth, and an executive compensation package that felt more middle‑management than C‑suite. It was a family‑run org where leadership overlaps personally and professionally, and the job sat outside the true executive table. The one draw? It was remote. Leadership lesson: titles mean little without influence. Real leaders build clarity, accountability, and modern tooling. They align role, remit and resources so teams can deliver outcomes, not checkboxes. If your org rewards optics over impact, your ability to drive meaningful change will be constrained. Security & privacy takeaway: legacy processes (pen‑and‑paper audits, spreadsheet tracking) are a technical debt and an operational risk. Security leadership must push for automation, GRC integration, and privacy‑by‑design to reduce human error, enable measurable controls, and protect sensitive health data — otherwise compliance becomes theatre, not defence. Looking ahead: I’m selective about where I invest my energy. I am seeking a role with genuine strategic influence, proper resourcing, and a leadership table that treats security as a business enabler. Excited for the next opportunity to drive real security transformation, onto the next one! #ConfidentLeadership #SelectiveSearch #StrategicHiring #LeadershipMatters #CareerMove #GrowthMindset #CareerGrowth #ProfessionalDevelopment #ContinuousImprovement #SkillUp #InfoSec #PrivacyEngineering #GRC #SecurityLeadership #DataProtection #security #infosec #ciso #hiring #skillsShortage #hiringHellscape #AI #slop
-
🍀 Tim O. posted thisAI just told us what it already suspected — and HR didn’t like the results. I read a paper showing that AI systems prefer résumés created with AI with the reaction from some HR and hiring managers was equal parts ironic and telling. Many criticized candidates for using AI tools to polish applications, even while their own screening stacks quietly favor AI-written content. Seen from the hiring side, it’s a systems problem; seen from the candidate side, it’s adaptation. A brief anecdote: during a recent hiring round I watched two panels argue about “authenticity” while their applicant-tracking system down-ranked anything that didn’t match machine-optimized phrasing. It was a good reminder that intentions and outcomes can diverge dramatically when automation is involved. Leadership lesson: influence the design of the systems you rely on. When leaders leave evaluation criteria to opaque models, they outsource judgment and the organization’s values follow. Make evaluation rules explicit, measurable, and aligned with the behaviors you actually want to reward. Growth/resilience lesson: stay agile. Candidates and teams who learn to work with tools (while keeping human judgment central) will outperform those who cling to purity tests. Adaptation isn’t capitulation; it’s pragmatic resilience. Security/privacy lesson: audit the pipeline. If your hiring stack uses AI to filter, understand what data flows through it, how models make decisions, and what biases might be amplified. Transparency, minimal data retention, and clear consent practices are essential to keep candidates’ information secure and to maintain trust. Looking ahead: let’s align our tech, processes and values so we hire for potential and fit and not for the quirks of a scoring algorithm. There’s an opportunity here to lead with integrity, modernize responsibly, and build teams that thrive. #LeadershipWins #StrategicMindset #GrowthMindset #Resilience #ModernWork #CareerGrowth #ContinuousLearning #ProfessionalDevelopment #SkillUp #CareerMomentum #InfoSec #PrivacyByDesign #DataProtection #SecureHiring #AITransparency #Hiring #TalentAcquisition #Recruitment #Leadership #TeamBuilding #PeopleOps #EmployerBranding #Interviewing #Onboarding #WorkplaceCulture #AI #slop
-
🍀 Tim O. posted thisSpring cleaning isn’t just about dusting off old files but it is about rediscovering the hidden gems in your data. As I tackle my annual spring refresh, I’ve been struck by how much our physical and digital worlds mirror each other. I unearthed a box of vintage tech (yes, I still have a BlackBerry and a 28.8 modem somewhere in the garage) and a stack of old project files that made me nostalgic — but then I paused. How many of us treat our data with the same care? Too often, we hoard information like digital packrats, assuming it’s safe just because it’s stored. But what happens when a server fails, a policy changes, or (heaven forbid) a data breach occurs? This got me thinking about data resiliency, the unsung hero of modern business. Leadership isn’t just about innovation; it’s about ensuring that when the unexpected happens, your operations don’t crumble like a stale Nanaimo bar. A robust backup strategy, clear retention policies, and a culture of intentional data management aren’t just IT tasks but they are strategic imperatives. So, as I reorganize my workspace and making the piles for TrashNothing and ewaste, I’m also auditing our data practices. Because in a world where "AI" and "slop" dominate headlines, the real gold isn’t in the latest tool but is in the trust we build by protecting what matters. Here’s to cleaner systems, sharper insights, and fewer "oops, we lost that" moments. #SpringCleaning #DataManagement #LeadershipMatters #TechRefresh #FutureReady #DigitalTransformation #ContinuousImprovement #StrategicGrowth #InnovationMindset #OperationalExcellence #DataResiliency #PrivacyFirst #CyberHygiene #ComplianceMatters #SecureByDesign #AI #slop
-
🍀 Tim O. shared thisI'm attending Sec Nerds: The Conference!. Join me on May 30.🍀 Tim O. shared thisI did it again... Marisa Fagan is my partner in shenanagans. Let's get nerdy.
-
🍀 Tim O. posted thisI'm gearing up for the RSA Conference next week, and let me tell you, my calendar is more packed than a Tim Hortons at rush hour. I'm thrilled to reconnect with industry friends and colleagues, but I must admit, I'm already bracing myself for the inevitable AI buzzword bingo. You know the drill—everyone's talking about "synergistic" and "disruptive" solutions, and I'm over here like, "Just show me the data!" This conference is a great reminder that in the fast-paced world of information security, staying ahead of the curve is not just about keeping up with the latest trends—it's about understanding the fundamentals. It's about knowing that while AI is a powerful tool, it's the people behind the technology who truly drive innovation. It's about remembering that in the realm of information security, privacy is not just a buzzword—it's a responsibility. I'm looking forward to diving into insightful sessions, engaging in meaningful discussions, and maybe even challenging a few industry norms. After all, growth often comes from stepping out of our comfort zones and embracing the unknown. I'm excited to see what new insights and connections I'll bring back to my team. #Networking #IndustryEvents #CyberSecurity #Innovation #GrowthMindset #ProfessionalDevelopment #LeadershipJourney #ContinuousLearning #Adaptability #SuccessMindset #DataProtection #PrivacyFirst #CyberResilience #InfoSec #SecureFuture #AI #slop #RSAC #RSAConfrence #RSAC2026 #RSAConfrence2026 #buzzwordBingo
-
🍀 Tim O. reacted on this🍀 Tim O. reacted on thisURLStrip is now live in the Apple App Store for iOS. The macOS and Windows desktop versions are available as well. iOS: https://lnkd.in/gpbWQKfd Desktop: https://lnkd.in/gfiyUJ8P For anyone who has not seen it yet, URLStrip removes tracking parameters from links. On the desktop, it can monitor your clipboard and automatically clean URLs. On iOS, you can send a URL to URLStrip from the share sheet, and there is also a Safari extension. The goal is simple: clean links without accounts, cloud processing, or unnecessary data collection. One thing worth calling out: the iOS App Store privacy label currently says that contact info and user content may be linked to the user. That is because URLStrip includes an optional “report missed tracker” feature. If someone chooses to email a missed tracking parameter report, I obviously receive the email address and the URL/string they submitted. That is the only reason for that disclosure. I’m watching how useful that reporting flow turns out to be. If it does not provide enough value, I’ll likely remove it so the listing can be even cleaner from a privacy-label perspective. At this point, URLStrip has reached a level of stability and feature coverage I’m happy with. I’m not seeing many problem reports anymore, which I’m taking as a good sign. The next planned work is focused on rule improvements. The desktop versions already support a beta rule channel, backed by an automated process that looks for dirty links, applies the current rules, and flags cases where the rules are not stripping enough. Those new parameters can then go into the beta channel before graduating to stable. That same beta rule channel is in the public TestFlight version, and will come to the public iOS app store soon. I’m giving the new App Store listing a little time to settle first. I may also add more privacy redirects, as I really like that feature, but I want to test the reliability of the target services before expanding it too far. If you try URLStrip and find something that would make it more useful, I’d genuinely like to hear about it.
-
🍀 Tim O. reacted on this🍀 Tim O. reacted on this𝐌𝐞𝐦𝐨𝐫𝐢𝐚𝐥 𝐃𝐚𝐲 𝐢𝐬 𝐧𝐨𝐭 𝐕𝐞𝐭𝐞𝐫𝐚𝐧𝐬 𝐃𝐚𝐲 Many Americans don’t know the difference between Memorial Day and Veterans Day. This can cause them to say things to veterans on Memorial Day that can be irritating or even hurtful. As a quick refresher, on Memorial Day, we remember the men and women who died because of wounds received during combat operations. Veterans Day is intended to honor the service of all people who have served honorably in the Armed Forces. 𝐖𝐡𝐚𝐭 𝐍𝐨𝐭 𝐓𝐨 𝐒𝐚𝐲 Well-meaning folks often say things to veterans on Memorial Day such as “Happy Memorial Day” or “Enjoy your weekend!” or “Thank you for your service." Most veterans recognize that these people are trying to be respectful, so they don’t correct them. It's important for all to remember that for many veterans, Memorial Day is not a happy day, but one that is full of stress, grief and memories (which often begins many days or weeks prior to Memorial Day) of friends who made the ultimate sacrifice as well as sights, sounds and smells that they simply will never forget. These memories and resulting emotions can cause some veterans to go to some very dark places in their minds, making an already difficult day into an almost unbearable one. 𝐖𝐡𝐚𝐭 𝐓𝐨 𝐒𝐚𝐲 For those wanting to acknowledge Memorial Day to veterans they know, consider saying one of the following statements: - "I know this is a somber day, but I want you to know that I honor and appreciate the sacrifices made by so many, so my family and I can enjoy our freedoms.” - “I know this is a tough day for you, and I want you to know that I’m grateful for the sacrifices your friends made for our great nation.” - "I am thinking of those who made the ultimate sacrifice with respect and gratitude." - "May the memories of the fallen inspire us to live with purpose and gratitude." - "I'm remembering [name] today." - “I'm thinking of your family this weekend.” - "We honor their memories today and every day." - "They will never be forgotten." “𝐖𝐡𝐞𝐧 𝐲𝐨𝐮 𝐚𝐫𝐢𝐬𝐞 𝐢𝐧 𝐭𝐡𝐞 𝐦𝐨𝐫𝐧𝐢𝐧𝐠, 𝐭𝐡𝐢𝐧𝐤 𝐨𝐟 𝐰𝐡𝐚𝐭 𝐚 𝐩𝐫𝐞𝐜𝐢𝐨𝐮𝐬 𝐩𝐫𝐢𝐯𝐢𝐥𝐞𝐠𝐞 𝐢𝐭 𝐢𝐬 𝐭𝐨 𝐛𝐞 𝐚𝐥𝐢𝐯𝐞 — 𝐭𝐨 𝐛𝐫𝐞𝐚𝐭𝐡𝐞, 𝐭𝐨 𝐭𝐡𝐢𝐧𝐤, 𝐭𝐨 𝐞𝐧𝐣𝐨𝐲, 𝐭𝐨 𝐥𝐨𝐯𝐞.” - 𝐌𝐚𝐫𝐜𝐮𝐬 𝐀𝐮𝐫𝐞𝐥𝐢𝐮𝐬
-
🍀 Tim O. reacted on thisThe "Shiny Hunters" (AKA "Scattered Lapsus Shiny Hunters/SLSH") actors behind the school extortions last week launched a misinformation campaign and are trying to censor us. Reacting to our advice about the downsides of paying the ransom, the actors are encouraging victims to pay. They contacted media outlets to issue "corrections" that no one believes. They want you to forget past behavior that caused victims to stop taking them seriously. They are also flooding our email to make it more difficult for journalists to reach us. They flooded our email in February too – after we ruined their search engine rankings, before they gave up their "SLSH" brand. They threatened us, and repeatedly demanded that we "be quiet," and they "didn't want the money anyway," before closing with "don't ever provoke us again nor force our hand." They gave up because they lost the confidence of their victims. The more "ShinyHunters" demonstrate immaturity by retaliating against us for speaking facts, the less likely victims will pay. If you are a journalist or anyone that emailed us and haven’t heard back: we're not ignoring you. We’re just wading through a massive email flood because some young people care way too much about what I think. We appreciate your patience and understanding, and ask that you please continue trying to reach us. Below is a "Pay or Leak" fact sheet they don't want you to see: – The value proposition for paying rests entirely on how much confidence you have that promises will be kept. Do the extorters act like adults? – Immediate lack of harm does not guarantee future lack of harm. "Pay or Leak" groups often keep the data, and re-extortion can happen later, or after the arrest of a group member. – Promises should be understood in the context that most extorters are drug addicts and/or mentally unstable. Ask yourself what matters more to them: their reputation, or more cocaine? – They claim payment will lower your regulatory+legal risk, but Unit 221B cautions against trusting or parroting legal advice from criminals. Consult your legal counsel. – Be wary of psychological tactics. Spreading fear, rushing you, media pressure, dragging children into it, are all tactics of scammers that don't want you to act rationally. Extortion victims are in a difficult position so the best time to decide your course of action is before an incident, during disaster recovery planning. We encourage organizations to be skeptical of recommendations to pay by anonymous entities, or any vendor that makes more money if a ransom is paid. This group that threatened students in class last week is asserting control of the information space. Suppression of speech that child extorters disagree with is likely to continue. If you were invited, we will be at a private conference in Pittsburgh next week to share the rest of the story. Join us for private conversations and exclusive stickers!
Experience & Education
-
Bellevue University
View 🍀 Tim’s full experience
By clicking Continue to join or sign in, you agree to LinkedIn’s User Agreement, Privacy Policy, and Cookie Policy.
Publications
-
The Road to Hiring is Paved in Good Intentions
AnyCon 2017
See publicationThe information security field is in desperate need of people with the technical skills and capabilities to fill a myriad of roles within organizations around the world. However, hiring managers and leadership are doing horribly when it comes to hiring and interviewing for these roles. Organizations are doing poorly trying to communicate expectations for a job, conducting interviews that make it impossible for candidates showcase their (limited or vast) experience, and some managers posture…
The information security field is in desperate need of people with the technical skills and capabilities to fill a myriad of roles within organizations around the world. However, hiring managers and leadership are doing horribly when it comes to hiring and interviewing for these roles. Organizations are doing poorly trying to communicate expectations for a job, conducting interviews that make it impossible for candidates showcase their (limited or vast) experience, and some managers posture themselves so poorly that the candidates want nothing to do with the opportunity.
-
Hackers Hiring Hackers—How to Do Things Better
RSA Confrence
Information security is in desperate need of people with the technical skills of hackers to fill a myriad of roles within organizations across the world. This talk takes the experiences of the speakers as both interviewers and interviewees to help better prepare recruits for “the industry” and help hiring managers know what they can do to get the people and experience they need for their teams.
Other authors -
-
How an Aggressive Chinese IP Highlights Attribution Issues
Cyber Defense Magazine
See publicationRecently, the Norse DarkWolf Labs noted that the IP address 218.7.79.43 had jumped into the
top quadrant for malicious activity. Investigation into the activity and the IP itself highlights the
many challenges in accurately attributing such events to known actors, as illustrated in this
article. -
Norse Sköll Report #2014-03: Newscaster Persian websites hosted in US and Germany are being used to stage attacks on key western critical Infrastructure staffers and resources.
Norse Corp
See publicationIn the analysis of malicious activity labeled as Newscaster there are a number of Indicators of Compromise (IOCs) shared that are attributed to this 'named intrusion set.' Our analysis on these IOCs indicate that the more critical IP addresses involved have Norse IPQ scores identifying these systems as malicious, and our sensor network identified additional domain names with malicious history or intent. In sharing the information contained in Sköll Report #2014-03, Norse hopes to shed light…
In the analysis of malicious activity labeled as Newscaster there are a number of Indicators of Compromise (IOCs) shared that are attributed to this 'named intrusion set.' Our analysis on these IOCs indicate that the more critical IP addresses involved have Norse IPQ scores identifying these systems as malicious, and our sensor network identified additional domain names with malicious history or intent. In sharing the information contained in Sköll Report #2014-03, Norse hopes to shed light into this activity for fellow Information Security and IT professionals to use in mitigating the threat to their networks and systems.
This 'named intrusion set' is attributed to targeting individuals working in government and military, as well as defense contractors. This sort of specific targeted activity has a specific profile and intent; where the goal is to gain and hold the trust of these individuals to gain intellectual property. End user awareness and training is key with this sort of targeted attack; with a strong detection and mitigation utilizing multiple tools and datasets for layered mitigations/compensating controls. The Indicators of Compromise (IOCs) publicly released and attributed to the Newscaster 'named intrusion set' are included in Attachment A to Sköll Report #2014-03.
With Norse's dark intelligence gathering capabilities, we were able to determine potential additional domains and IP addresses that could be related to additional suspect activity. Our analysis does not correlate the activity attributed to Newscaster with these IP addresses and domains listed below at this time. Our analysis shows that there are indications that these domains have been involved with suspect activity. The additional analysis and IOCs are included in Sköll Report #2014-03. -
Norse Sköll Report #2014-02: Heartbleed? Scanning and potential targeting of port 443 and Hypertext Transfer Protocol Secure (HTTPS)
Norse Corp
See publicationThe Sköll Report #2014-02 documents the continued analysis by Norse analysts regarding suspicious activity potentially targeting the Heartbleed vulnerability. With Norse's dark intelligence gathering capabilities, we were able to determine additional information regarding the methodology and trends involving sources of suspect activity and potential targeting. In sharing this information, Norse hopes to shed light on this activity for fellow Information Security and IT professionals to use in…
The Sköll Report #2014-02 documents the continued analysis by Norse analysts regarding suspicious activity potentially targeting the Heartbleed vulnerability. With Norse's dark intelligence gathering capabilities, we were able to determine additional information regarding the methodology and trends involving sources of suspect activity and potential targeting. In sharing this information, Norse hopes to shed light on this activity for fellow Information Security and IT professionals to use in mitigating the threat to their networks and systems.
This analysis is based on activity observed with Norse's dark intelligence gathering capabilities over the timeline of October 2013 till 10 April 2014; which is depicted in the chart below. The large spike of activity on 21 January 2014 is enough to identify a particular country as the leader for activity in this analysis. The other countries in the top five for activity all have enough activity over the time frame depicted, with additional interspersed spikes of activity. -
Norse Sköll Report #2014-01: Port 5000 attacks on Synology Network Attached Storage (NAS) devices
Norse Corp
See publicationNorse analysis also corroborates the findings from SANS ISC. In addition, this threat actor (or actors) are using multiple source systems (potentially in a botnet) targeting port 5000 and the recently announced vulnerabilities with Synology DiskStation Manager (DSM). With the Norse dark intelligence gathering capabilities, we have put together a report for download regarding the attack methodology and trends involving the source of the attacks. In sharing this information, Norse hopes to shed…
Norse analysis also corroborates the findings from SANS ISC. In addition, this threat actor (or actors) are using multiple source systems (potentially in a botnet) targeting port 5000 and the recently announced vulnerabilities with Synology DiskStation Manager (DSM). With the Norse dark intelligence gathering capabilities, we have put together a report for download regarding the attack methodology and trends involving the source of the attacks. In sharing this information, Norse hopes to shed light into this activity for fellow Information Security and IT professionals to use in mitigating the threat to their networks and systems.
More on the Report:
Shortly after a vulnerability in the Synology DSM was made public (reported as CVE-2013-6955 and CVE-2013-6987), this suspicious activity began.
A Rapid7 Metasploit module was created in late January, and shortly thereafter an exploit video was posted.
The activity targeting port 5000 appears to have started in the United States (US), Iceland (IS), France (FR) and Romania (RO).
Motivation of this dramatic increase in suspicious activity could be the mining of alternative currencies to the well-known cryptocurrency Bitcoin.
Cryptocurrency mining causes high resource usage that results in significant performance impact and increased electricity costs. Users may experience extremely slow access times, timeouts, or even a complete denial of service to their NAS device.
The compromised Synology systems not only provide free processing power and memory to the attacker, but also complete access to the data stored on the system, potentially including copyrighted, sensitive or protected data.
Honors & Awards
-
Eagle Scout
Boy Scouts Of America
Organizations
-
si1isec.org
President
- Present -
ISC2 Silicon Valley Chapter
President/Advisory board chariperson
- Present -
Cloud Security Alliance
-
- Present -
ICANN
Working Group Member
- -
Messaging Malware Mobility Anti-Abuse Working Group (M3AAWG)
-
-
Recommendations received
13 people have recommended 🍀 Tim
Join now to viewOther similar profiles
-
Macy Dennis
Macy Dennis
Macy is a Global Information and Cyber Security Executive with 30+ years of Corporate Security experience, focusing on all aspects of Cyber, Information and Physical Security. He is a highly skilled communicator with the ability to work at all levels of the business, from “C level” down to a “Security Professional/Practitioner”. He has strong business acumen, communication skills, problem-solving abilities, and solid critical thinking skills. He is a Servant Leader that looks to drive and challenge his organizations to their highest potential. <br><br>He has a proven track record for building strong successful teams within many business verticals, including National Defense, Space, Financial Services, Pharmaceutical, Electronics, ISP, and Satellite Services. Macy has a strong reputation as a Cyber and Information Security leader; he has been recognized by US Government agencies (OGA) for building a team and program that has been nominated for the National Counter Intelligence Award. With this nomination, it put his programs and leadership in the top 1% of the more than 15,000 Cleared Defense Contractors in the nation. <br><br>Macy has a unique skill set in which he has the expertise and background in building successful Cyber and Information Security programs along with an effective Executive Protection/Insider Threat/Physical Security program and fully integrating the two teams together. <br><br>He drives operational efficiency and effectiveness in his programs to fund investment in Security. He excels at team building, building strong relationships with the business, process improvement, and problem-solving.<br><br>SPECIALIZED AREAS INCLUDE <br><br>Cyber & Information Security <br>Strategic Planning <br>Leadership Coaching and Mentoring <br>Budget Management and Analysis <br>Situational Leadership <br>Process Improvement & Optimization <br>Threat & Intelligence Analysis <br>Information Security Architecture <br>Forensics and Investigation <br>Policy and Procedure Development <br>Insider Threat<br>Organizational Change Management <br>Intelligence – Cyber/HUMINT <br>Incident Response & Security Operations<br>Robotics & AI<br>Executive Protection <br>Physical Security/Threat Management<br><br><br>ACCOMPLISHMENTS<br>•Finalist in the San Diego Business Journal's 5th Annual IT Executive of The Year Award for 2012 <br>•Beta Gamma Sigma - honor society<br>•FBI Citizens Academy, San Diego, CA - May 2016<br>•FBI CISO Academy, Quantico, VA – October 2017<br>•Quoted in several Cybersecurity articles in Bloomberg 2022, 2023<br><br>***People are a company's greatest asset and helping them see their true potential is the greatest gift***
-
Dmitri Alperovitch
Dmitri Alperovitch
World on the Brink: How America Can Beat China in the Race for the Twenty-First Century
Explore more posts
Explore top content on LinkedIn
Find curated posts and insights for relevant topics all in one place.
View top contentOthers named 🍀 Tim O.
514 others named 🍀 Tim O. are on LinkedIn
See others named 🍀 Tim O.