Long-time security practitioner, currently a Sr. Staff Engineer, previously Principal Security Engineer at Squarespace, where he also acted as (Interim) Head Of Security. With experience ranging from Bridgewater Associates to DellEMC via RSA, Autodesk, startup founder, investor and advisor. Founding member of the IEEE Center for Secure Design, holds a masters degree in Computer Science/Security from Boston University and has served as an instructor in Digital Forensics at Boston University and in Secure Development at the University of Oregon. Author, "CTM: Continuous Threat Modeling Methodology" and OWASP pytm, the Pythonic way of Threat Modeling. Co-author of O'Reilly's "Threat Modeling: A Practical Guide for Development Teams".