Philip is senior vice president of an offensive security research group at a multinational, Fortune 500 financial services company. He is a leading expert and thought leader in mainframe cyber security with a special focus on the z/OS platform. Philip has built mainframe security programs for multiple Fortune 100 organizations using both vendor and public toolsets. Philip also develops information security coursework to educate the next generation of practitioners, raises awareness about mainframe security, and encourages more organizations to effectively prioritize their risk profiles.

• Digital Risk Management
• Offensive Security Research
• ‘Legacy' Security System Testing
• Telephony Asset Management & Assessment
• Red Team Operations

• Keynote speaker at SHARE and GSE on mainframe penetration testing
• Speaker at information security conferences such as Black Hat, RSA, DEF CON, ShmooCon, and BSides
• Contributor to Nmap and Metasploit open source projects
• Former Information Security Specialist at Visa
• Former IT Audit Security Professional at Grant Thornton, an accounting and advisory organization
• Former Senior IT Auditor at Ernst & Young

• BS, Computer Science – Wilfrid Laurier University
• CISSP – (ISC)2
• CISA – ISACA
• Offensive Security Certified Professional (OSCP) – Offensive Security
• Microsoft Certified Solutions Expert (MISE) – Microsoft
• Security+ – CompTIA

In his free time, Philip enjoys retro art, computing, gaming, and swimming with his two boys.

Philip Young joined IANS in 2015. As a member of our Faculty, he provides clients with deep domain-level expertise in the following areas: digital risk management, offensive security research, ‘legacy' security system testing, telephony asset management & assessment, red team operations.