Faculty Directory

Dr. Jack Freund is a nationally recognized cyber risk leader with over two decades of experience designing, operationalizing, and maturing technology risk and cybersecurity programs. He currently serves as Head of Technology Risk at Acrisure, where he leads second-line risk governance for cybersecurity, disaster recovery, and emerging technologies. As Executive Fellow at Cyentia Institute, Jack advises organizations on cyber risk quantification, GRC strategy, board reporting, and regulatory readiness. Jack is widely known for co-authoring the book on the FAIR Standard, establishing the foundation for quantitative cyber risk measurement.

John is a senior-level CISO and enterprise risk manager with 20+ years of experience in security and risk management. He has successfully managed companywide security operations in Fortune 100 financial services, technology and aerospace companies, and is a certified security professional (CISSP and CISM) with dual master's degrees (most recently an MBA). 

George is currently chief security officer at Bedrock Data, an organization specializing in AI-driven data protection. Before that, he was head of trust and interim CISO at MongoDB and Sumo Logic's chief security officer & SVP of IT. George possesses more than 20 years of leadership experience in the domains of cybersecurity, compliance and cloud operations. He has actively participated at the forefront of secure architecture, privacy and DevSecOps since co-founding the VMware Center for Policy & Compliance.

A recognized authority in the industry, George is a frequent keynote speaker at significant security forums, including RSA, Black Hat and TEDx. He actively provides advisory services to various cybersecurity startups and enterprise technology companies, assisting in the development of product and go-to-market strategies. Additionally, George serves on several advisory boards and is a co-founder of XFoundation, a nonprofit organization dedicated to raising awareness about fentanyl poisoning.

Dennis is the Founder and CEO of Vector9 Consultants, a Veteran-Owned Small Business (VOSB) that provides strategic cybersecurity guidance for critical infrastructure entities at greatest risk. Previous to this, he was the VP/CISO for the two largest energy/utility companies in the U.S. (Duke Energy and Exelon Corporation). Prior to these two CISO roles, he served as the Senior Advisor for Cybersecurity within the Office of the Secretary of Defense. In 2005, Dennis retired from the USAF, where he held key leadership positions in national-priority programs in cybersecurity, information warfare, and satellite communications.

Jason is a Principal Security Consultant and CIO at Secure Ideas, a boutique information security consultancy that focuses on penetration testing and training, where he leverages his software design, architecture, and security testing experience. He is also the author of many extensions for Burp Suite and is a contributor to several other projects including SamuraiWTF, MobiSec, and Laudanum.

Ian Glazer is the founder and president of Weave Identity. Prior to founding Weave, Ian was the SVP for Identity Product Management, at Salesforce. Earlier in his career, Ian was a research VP and agenda manager on the Identity and Privacy Strategies team at Gartner. He is a Board Emeritus and the cofounder of IDPro, the professional association for digital identity management. Ian is also a Board of Directors member and cofounder of the Digital Identity Advancement Foundation, focusing on removing financial barriers to participation in the digital identity industry. He is a noted blogger, speaker, and photographer.

J. Wolfgang Goerlich is a CISO in the public sector. Prior to this role, he led IT and IT security in the healthcare, financial services, and tech verticals. Wolfgang has held senior positions at several consulting firms, leading security advisory and assessment practices. He is a strong presence in the security community, contributing to the establishment and organization of multiple groups and events. Wolfgang focuses on strategy, governance, identity and access management, and resilience.

Dr. Thomas Graham, Ph.D., serves as the VP and Chief Information Security Officer (CISO) at Redspin, a top cybersecurity, and privacy consulting firm, the first authorized C3PAO, and one of the first organizations to conduct a DIBCAC High assessment under the Joint Surveillance Program. Dr. Graham is the architect of Redspin becoming the first authorized C3PAO, performing numerous Joint Surveillance Voluntary Assessment Program (JSVAP) assessments, speaking on CMMC and NIST requirements, and Chairing the MIS Advisory Board at East Carolina University.


He is responsible for all internal security items for Redspin and its affiliates. Before Redspin, he served as the CISO for CynergisTek, a publicly traded company, supporting numerous Hospitals and Medical Facilities. He also as supported varous branches of the DoD to include being an ISSO for DISA.

Lynda Grindstaff has 30 years’ experience as a technology and cybersecurity engineering executive, public board director and strategic advisor for growth companies. Most recently, Lynda was a VP of engineering at McAfee, where she led the global malware operations teams. In addition to protecting customers, she provided incident response and drove efficiencies across the company. Prior to McAfee, Lynda spent 22 years at Intel in various technical and senior leadership roles. She is known for being a passionate and inspirational leader who excels in driving innovation and efficient cybersecurity solutions.

Mike is a seasoned engineering leader with over 20 years of experience in cybersecurity, software engineering, and cloud-native architecture.  He currently leads Security Engineering at Netlify, having previously built and led the Security & Compliance program at the high-growth startup Gatsby through its acquisition by Netlify.

An active security researcher with multiple CVEs, Mike has presented research at security conferences and developed cybersecurity curriculum for the University of Pittsburgh, covering penetration testing and red team tactics.  Earlier in his career, Mike founded three tech companies and spent over a decade advising clients on software and cybersecurity initiatives.

Rich is Founder and Managing Director of Guida Technology Associates, Inc., a small consulting company, through which he has consulted for companies in the pharmaceutical, retail, financial, and telecommunications sectors. An information security and engineering professional with extensive experience in the Federal government and in the private sector, Rich has occupied executive positions within the Department of the Navy, the Department of the Treasury, and at Johnson & Johnson (J&J). In 2011, Rich retired from J&J as Vice President of Worldwide Information Security (J&J’s Chief Information Security Officer). He is especially skilled in written and oral communications.

David is the founder and principal consultant of HazarDSec LLC and co-founder of Next Level3. He also provides cybersecurity consulting services and training as an author and instructor for the SANS Institute. With more than 20 years of technical experience, David has spent over 15 years helping organizations establish and implement security controls and practices.

Jessica Hebenstreit is the AVP of Information Security at Benevity with deep expertise in building and maturing security programs. Prior to Benevity, Jessica held roles at both Quorum Software and Eptura. She has led global teams across Security Operations, GRC, and Engineering, and is known for making complex security challenges actionable for both executives and practitioners. Jessica has consulted with many of the largest companies in the world including many Fortune 100.