Authorship

The CISO Playbook

CRC Press • Nov 2024 • Book • ISBN 978-1-032-76207-4

View ↗

The CISOs first 90 days – A practical agenda for decision advantage

EDP Audit, Control, and Security Newsletter (EDPACS) • Sept 2025 • Article

Read ↗

Security Chaos Engineering for CISOs – The Strategic Edge Against Modern Threats

Cyber Defense Magazine • Sep 2025 • Article

PDF ↗

Security Chaos Engineering: Weaponizing chaos for modern CISOs

SC Media • Aug 2025 • Article

Read ↗

Identity Risk Intelligence – The Missing Piece in Continuous Threat Exposure Management (CTEM)

Cyber Defense Magazine • Aug 2025 • Article

PDF ↗

The Rise of Identity Risk Intelligence

Cyber Defense Magazine • Jul 2025 • RSAC 2025 Special Edition • Article

Read ↗

PDF ↗

The CISO Playbook

CRC Press • Nov 2024 • Book • ISBN 978-1-032-76207-4

View ↗

Cybersecurity Can Be a Businesses Enabler

BankInfo Security (ISMG) • Jul 2024 • Article

Read ↗

Through the Lens of a CISO

United States Cybersecurity Magazine • Fall 2022 • Article

Read ↗

Protecting Critical Space Assets from Cyber Threats

Education Technology Insights • Aug 2022 • Article

Read ↗

System and methods for automated computer security policy generation and anomaly detection

International Granted Patent • Mar 2021 • WO2020069367A1

Patent ↗

PDF ↗

Operational technology Security

Elsevier Network Security • Jan 2020 • Article

Read ↗

Method and system for data security via entropy and disinformation based information dispersal

US Published Patent • Mar 2019 • US20200193035A1

Patent ↗

PDF ↗

A Paradigm Shift in Data Security

United States Cybersecurity Magazine • Fall 2019 • Article

Read ↗

Entropy, disinformation and obfuscation: A paradigm shift to protect your crown jewels

Online • Jul 2019 • Article

Read ↗

Cracking LDAP Salted SHA Hashes

Hakin9 Magazine • Mar 2008 • Article

Read ↗

Fuzzing XML

Hakin9 Magazine • May 2007 • Article (May 2007 issue)

Read ↗

Technical Editor of Webster’s New World Hacker Dictionary

Wiley • Sep 2006 • Book (Technical Editor) • ISBN 978-0-470-04752-1

View ↗

Professional Pen Testing for Web Applications

Wiley/Wrox Press • Jun 2006 • Book • ISBN 978-0-471-78966-6

View ↗

Salted Hashes Demystified

Online • Jan 2005 • Article

PDF ↗

97 Things Every Application Security Professional Should Know

O’Reilly Media • Jun 2024 • Book • ISBN 978-1-098-15217-8

View ↗

PDF ↗

Foresight review of cyber security for the Industrial IoT

University of Oxford • Jul 2020 • Report (PDF)

PDF ↗

Ground Truth Competency Assessment for Smart Grid Cyber Security

TCIPG • May 2012 • Slides (PDF)

PDF ↗

Authorship

Featured publication

The CISO Playbook

Author

The CISOs first 90 days – A practical agenda for decision advantage

Security Chaos Engineering for CISOs – The Strategic Edge Against Modern Threats

Security Chaos Engineering: Weaponizing chaos for modern CISOs

Identity Risk Intelligence – The Missing Piece in Continuous Threat Exposure Management (CTEM)

The Rise of Identity Risk Intelligence

The CISO Playbook

Cybersecurity Can Be a Businesses Enabler

Through the Lens of a CISO

Protecting Critical Space Assets from Cyber Threats

System and methods for automated computer security policy generation and anomaly detection

Operational technology Security

Method and system for data security via entropy and disinformation based information dispersal

A Paradigm Shift in Data Security

Entropy, disinformation and obfuscation: A paradigm shift to protect your crown jewels

Cracking LDAP Salted SHA Hashes

Fuzzing XML

Technical Editor of Webster’s New World Hacker Dictionary

Professional Pen Testing for Web Applications

Salted Hashes Demystified

Contributing Author

97 Things Every Application Security Professional Should Know

Foresight review of cyber security for the Industrial IoT

Ground Truth Competency Assessment for Smart Grid Cyber Security