Perspectives of a Security Maverick written by Kenneth F. Belva
Kenneth F. Belva is the Publisher and Editor-in-Chief of bloginfosec.com. He currently manages an Information Technology Risk Management Program for a bank whose assets are Billions of dollars. He reports directly to the Senior Vice President and Deputy General Manager (CFO).
In 2009, he was published in the Information Security Management Handbook, Sixth Edition, edited by Hal Tipton and Micki Krause. He also co-authored one of the central chapters in Enterprise Information Security and Privacy, edited by Warren Axelrod, Jennifer L. Bayuk and Daniel Schutzer.
In addition to his daily corporate responsibilities, he is currently the Vice President of the New York Metro Chapter of the Information Systems Security Association (ISSA). In 2008, he served as an Advisor to the Board. During 2006-2007 he was the Chair of the Public Relations Committee as an active Board Member. In this role Mr. Belva was in charge of communication between the Chapter and other information security related professional organizations.
He has spoken and moderated at the United Nations as well as presented on AT&T’s Internet Security News Network (ISNN) on discovering unknown web application vulnerabilities as well as being interviewed on security enablement.
He recently co-authored a paper entitled “Creating Business Through Virtual Trust: How to Gain and Sustain a Competitive Advantage Using Information Security” with Sam Dekay of The Bank of New York. In 2005 he authored the contrarian paper: “How It’s Difficult to Ruin A Good Name: An Analysis of Reputation Risk” which was a leading paper on the impact of security breaches on stock prices.
He taught as an Adjunct Professor in the Business Computer Systems Department at the State University of New York at Farmingdale. Mr. Belva is credited by Microsoft and IBM for discovering vulnerabilities in their software. He is the author of the chapter “Encryption in XML” in Hackproofing XML published by Syngress.
Mr. Belva previously held the Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH) certifications and has passed the Certified Information Security Manager (CISM) exam.
Mr. Belva frequently presents at information security conferences around the US as well as globally. He writes on day-to-day information security experiences in a non-essay format at SecurityMaverick.com.