Featured Cyber Threat Intelligence Experts

Cyber Threat Intelligence Leader | Nation-State Actor Hunter | Strategic Defense Architect With over 20 years at the forefront of cybersecurity—including senior roles in national security and government defense—I specialize in threat hunting, APT campaign attribution, and intelligence-driven defense. My career spans proactive threat detection, incident response, and mentoring high-stakes SOC/CTI teams in classified environments. I’ve led national-level threat hunting operations, correlated complex TTPs using MITRE ATT&CK, and produced actionable intelligence for executive stakeholders. My expertise includes SIEM, SOAR, threat intelligence platforms, and secure infrastructure design, with a deep focus on the MENA region’s cyber threat landscape. As the author of “Inside the Hacker Hunter’s Mind” and “Inside the Hacker Hunter’s Toolkit”, I share real-world insights into state-level threat actors, OSINT, malware analysis, and digital forensics. I’m passionate about mentoring the next generation of cyber defenders and building resilient, intelligence-led security postures. Let’s connect to discuss cybersecurity challenges, threat intelligence, or how I can contribute to your mission. Key Skills: Cyber Threat Intelligence | APT Attribution | Incident Response | Threat Hunting | SIEM/SOAR | MITRE ATT&CK | OSINT | Malware Analysis | Secure Infrastructure | Executive Reporting | Python/C# Automation | MENA Threat Context

I lead a threat hunting team at a risk management firm. I use evidence-based research methods to discover attack patterns and new adversary tools before they're documented, and turn those insights into actionable detections. Every day I see new phishing kits, new malware variations, and discussions between threat actors on evolving techniques.

Co-Founder of SG6, ITRES and DEV6. Cybersecurity consultant with a deep technical background. More than 20 years of experience in the fields of IT Security, Cybersecurity, Security Research and IT Best Practices. Dozens of acredited CVE vulnerabilities since Y2K. I publish practical offensive/defensive research: vulnerability analysis, exploitation notes, reverse engineering, and hardening/detection takeaways.

CEO of TrustNet, a leading provider of cybersecurity and assurance services serving some…

Would love it if you contact me via OODA.com instead of DM here. Bob Gourley is an experienced board member, a Chief Technology Officer (CTO), Board Qualified Technical Executive (QTE), author and entrepreneur with extensive past performance in enterprise IT, corporate cybersecurity, risk mitigation in artificial intelligence and blockchain projects, and data analytics. CTO of OODA LLC, home of the OODA Network, a community of business leaders, technologists, intelligence and security professionals. Winner of InfoWorld top 25 CTO and Washingtonian Magazine's "DC Tech Titan" list.Served as the CTO for the Defense Intelligence Agency and was previously a naval intelligence officer.

As the Founder of Sekurno, a cybersecurity company focused on protecting fast-growing startups in tech-driven industries, I'm passionate about making technology accessible and worry-free. My personal motivation stems from a belief that technology can change society for the better, but only with the trust that comes from integrating security. At Sekurno, we help businesses build trust with their customers by securing their operations and making technology worry-free. With years of experience in the cybersecurity industry, I'm committed to staying up-to-date on the latest threats and innovations, ensuring that our clients are always protected. Let's connect and see how we can work together to build a more secure digital future.At Sekurno we provide the following services: * Penetration Testing * Data Protection (GDPR, CPPA) * Security Compliance (ISO/27001, SOC2) * SSDLC/DevSecOps * Security Training

Franco Velasquez is the CEO and founder of HostBreach, a cybersecurity advisory firm specializing in external cyber intelligence, attack surface analysis, and intelligence-driven advisory for defense contractors and regulated organizations. His work focuses on understanding how attackers identify, prioritize, and compromise targets using publicly available intelligence, often before traditional security controls detect activity. Franco advises organizations on CMMC readiness, CUI exposure, ransomware risk, and pre-incident threat visibility, helping leaders understand real-world risk beyond checklist compliance. He has experience working with OSINT-based reconnaissance, threat actor behavior analysis, and tabletop attack simulations aligned to observed intrusion patterns. He is frequently consulted on topics including ransomware trends, external exposure management, supply chain risk, and how attackers exploit misconfigurations and unpatched systems. Franco emphasizes practical, intelligence-led decision-making that helps organizations reduce risk before incidents occur.

Charles Edda & Charles Bouley, Inc. (CECB) is a Texas-based cybersecurity company founded in 1999. The company specializes in managed security risk assessments, including vulnerability scanning, penetration testing, and security awareness training. Its primary clients include small businesses, medical practices, and law firms. The company is currently owned and operated by Dr. Rachel Levitch, who has expanded its services to provide advanced cybersecurity solutions that integrate financial risk management and regulatory compliance. CECB's services follow industry-recognized cybersecurity frameworks such as the National Institute of Standards and Technology (NIST), ISO 27001, and CIS Controls to help organizations establish robust cybersecurity practices and culture.

Amit Weigman is the Director of Solution Engineering at Cyberint, now part of Check Point Software Technologies, where he helps organizations strengthen their cyber resilience through advanced threat intelligence and proactive defense strategies. With over a decade of experience in cybersecurity, Amit’s career includes service in the Israel Defense Forces’ elite Unit 8200, where he honed his skills in cyber operations, intelligence analysis, and security innovation. Drawing on both deep technical expertise and a strategic understanding of the threat landscape, Amit has advised enterprises, government agencies, and critical infrastructure operators worldwide on mitigating emerging risks. His work bridges the gap between cutting-edge security technology and real-world operational needs, making him a sought-after voice on topics such as AI-driven threats, cybercrime ecosystems, and security architecture. Passionate about knowledge-sharing, Amit regularly engages with media, industry leaders, and conference audiences to demystify complex cyber challenges and offer practical, actionable solutions.

Lev Zabudko is co-founder and Chief Product Officer of Nothreat, an AI-native cybersecurity company launched in 2023. In just over a year, he has led the company from early-stage development to a valuation of £40 million (approximately $46.9 million), backed by investors and recognized for its ability to respond to the rapidly evolving cybersecurity landscape with real-time, adaptive solutions. Under Lev’s product leadership, Nothreat has secured strategic partnerships with global organizations, including Lenovo and Pafos FC, and contributed to cybersecurity infrastructure efforts for international events such as the COP29 conference and congress. With more than 15 years of experience in applied AI, product strategy, and critical systems architecture, Lev focuses on developing security technologies that are designed for the scale, speed, and complexity of modern digital threats.

You can ship your software with ZERO bugs and ZERO known security vulnerabilities. Every sprint. With my team, spread across 4 countries, we're on a mission to help software teams grow profits by shipping bug-free software that is free of security vulnerabilities too. If you want to ship products that wow your customers and grab an edge on your competition then reach out to me today. If you want to not only cut costs in your software delivery process but also increase your sales closing rate by proving that your apps are secure, let's talk today. The secret to success is not in what I do, but in how you can leverage my abilities to achieve your goals and find those painkillers for your pain-points. Most great things start with a phone call. My contact details are below, feel free to reach out.

Karthikeyan Ramdass a seasoned cybersecurity professional with over 18 years of experience securing mission-critical systems for leading Fortune 500 companies across industries including aviation, finance, automotive, and technology. I have played a pivotal role in protecting organizations such as Southwest Airlines, Wells Fargo, Morgan Stanley, Toyota Motors North America, AIG, Cognizant, Salesforce, and Deluxe Corporation. Specializing in application security, vulnerability management, secure architecture, and supply chain defense, led the design and implementation of enterprise-scale security frameworks, CI/CD pipelines, and advanced security testing solutions. Extensive experience in SAST, DAST, SCA, zero-day vulnerability management, and penetration testing, ensuring compliance with global standards such as NIST CSF, PCI DSS, and OWASP Top 10.

Would love it if you contact me via OODA.com instead of DM here. Bob Gourley is an experienced board member, a Chief Technology Officer (CTO), Board Qualified Technical Executive (QTE), author and entrepreneur with extensive past performance in enterprise IT, corporate cybersecurity, risk mitigation in artificial intelligence and blockchain projects, and data analytics. CTO of OODA LLC, home of the OODA Network, a community of business leaders, technologists, intelligence and security professionals. Winner of InfoWorld top 25 CTO and Washingtonian Magazine's "DC Tech Titan" list.Served as the CTO for the Defense Intelligence Agency and was previously a naval intelligence officer.

Cybersecurity expert with over a decade and a half of deep-dive experience, I bring an unparalleled level of understanding and expertise in strategic Cybersecurity planning, effective risk control, and pioneering product innovation. My career reflects my role as a reliable authority for organizations of all sizes, as well as an effective liaison with different regulatory bodies.

📌 Key Areas: Secure Software Engineering | Zero-Trust Security | Cloud & DevOps Security | AI for Cyber Defense | Research & Innovation | Cybersecurity Advocacy I am an award-winning Cybersecurity Professional and Software Engineer with about 10 years of experience building secure, resilient, and scalable systems that safeguard enterprises and critical infrastructures worldwide. At Microsoft, I have spearheaded high-impact security engineering initiatives across Azure, DevOps, and enterprise security driving innovations in zero-trust frameworks, system observability, automation, and AI-integrated security solutions. My contributions have fortified services relied upon by global customers while elevating industry standards in reliability, compliance, and risk management. Beyond corporate impact, I am deeply committed to advancing the cybersecurity community. As an advisor, trainer, and researcher, I actively contribute to academic publications, global workshops, and non-profit initiatives with multiple global organizations like CyberNGO, Mentors Without Borders, TCET, CHARUSAT, PARUL, MSU, Live2Serve and Many More, promoting cybersecurity awareness and training future leaders. Recognized with honors such as the Global Recognition Award 2025 and multiple CISO50 Innovation & Excellence Awards, my mission is to bridge research, engineering, and leadership to shape the future of digital trust and resilience.

CISO and advisor helping FinTechs turn DORA/NIS2/PSD2, PCI DSS, ISO 27001, and GDPR into practical resilience and business value. 20+ years across architecture, incident response, and program build-out. I prioritise KPIs, clear board communication, and continuous improvement, not checkbox compliance. Highlights: led DORA/NIS2 readiness for cross-border teams (faster audits; 30%+ lower regulatory risk), stood up vCISO/vDPO programs with cloud-native controls, vendor risk, and privacy automation. Community: OWASP Riga and Cloud Security Alliance Chapter Lead. Need to get regulator-ready? Let’s connect.

Gaurav Sengar is the Founder & CEO of ITSecOps.Cloud, a cybersecurity and IT operations consulting firm specializing in building secure, compliant, and highly reliable technology environments for SMBs, MSPs, and growing enterprises. With over 8 years of hands-on experience across cloud infrastructure, cybersecurity operations, and IT service management, Gaurav has worked extensively in SOC 2 Type II, ISO/IEC 27001, HIPAA, CMMC Level 2, and NIST 800-171 readiness programs. His work focuses on closing the gap between compliance requirements and real-world IT operations — where most organizations fail audits and suffer security incidents. Gaurav has led and executed security operations including threat hunting, incident investigations, phishing analysis, identity and access hardening, cloud security posture management, and vulnerability remediation across Microsoft Azure, Microsoft Defender, Microsoft Purview, and hybrid enterprise environments. He has supported legal investigations by tracing user activity, analyzing logs, and producing audit-defensible evidence. Unlike traditional cybersecurity advisors, Gaurav is known for his operator-first approach, combining cybersecurity strategy with deep IT operations expertise — covering cloud infrastructure, identity systems, networking, endpoint management, automation, monitoring, and 24×7 support models. This allows organizations to achieve security and compliance without disrupting business operations. Through ITSecOps.Cloud, Gaurav advises leadership teams, CISOs, and founders on cybersecurity risk reduction, compliance readiness, IT cost optimization, and scalable operations. His insights are frequently sought on topics such as cybersecurity failures in SMBs, compliance mistakes made by MSPs, cloud security risks, and how operational gaps create real-world breaches. Gaurav is particularly focused on helping organizations move from “checkbox security” to practical, auditable, and sustainable security operations.

Leading UK cyber security expert as featured on BBC News, The Times radio, Daily Mail, The Guardian and The Telegraph. Partner at CyPro where we are revolutionising cyber security for high-growth companies, at every stage of their journey.Experienced CISO (Chief Information Security Officer) with over 17 years experience within cyber security. From a consulting background from KPMG and Deloitte, having led Deloitte’s Security Assurance and Compliance service line in the UK for a number of years and have experience running large security and data privacy transformation programmes in global FTSE100 firms. Jonny maintains CISM, CISSP, CISA, CRISC, CIPM, CIPP/E, Prince2 and ISO27001 accreditations and have featured as a media commentator on cyber security topics for the likes of BBC News, The Times radio, Daily Mail, The Guardian and The Telegraph.Past Clients Include: MetroBank, JP Morgan, UBS, M&G Prudential, Royal Sun Alliance, Cigna, Euroclear, Prudential, Schroders, Royal London, British Gas, William Hill, Shell, Virgin Trains, AstraZeneca, Deloitte, PTS Consulting, Grant Thornton, Wessex Water, amongst others.---------------------------------------------------I have extensive experience across information security and cybersecurity as a CISO (Chief Information Security Officer), Interim-CISO and Head of Information Security, including both strategic and operational disciplines:1. Strategic - such as Security Strategy; Target Operating Model design; Cyber Maturity Assessment; Risk & Compliance for NIS, SWIFT, GDPR, HIPAA, PCI-DSS, ISO 27001; Data Privacy; Security Awareness Training; Business Continuity Planning and Disaster Recovery; Governance, Risk, and Compliance (GRC); Security Policy Development; and Security Audits)...and;2. Operational - such as setup and running of Security Operations Centers (SOC); Incident Response; Threat Intelligence; Vulnerability Management; Security Architecture; Identity and Access Management (IAM); Intrusion Detection/Prevention Systems (IDS/IPS); Cloud Security; Endpoint Protection; Network Security and Third Party / Vendor Risk Management.

I’m Eric Garcia, the CEO of SentrIQ Labs. I have over 15 years of experience in cybersecurity, working across federal, defense, and cloud environments to help organizations design, implement, and defend security programs in highly regulated spaces. My background includes hands-on involvement with authorization processes, security control assessments, policy development, and executive-level risk advisory, with a strong focus on cybersecurity frameworks. Before founding SentrIQ Labs, I worked with organizations ranging from early-stage SaaS companies to large defense contractors, helping them navigate compliance demands without losing sight of operational reality. I have spent years inside the authorization process, working directly with engineers, compliance teams, and leadership to translate dense regulatory requirements into security controls that can actually be implemented and sustained. At SentrIQ Labs, my focus is on applying AI to reduce friction in cybersecurity compliance and audit readiness. That includes automating evidence collection, control mapping, and documentation workflows while preserving human judgment where it matters most. I am particularly interested in how AI changes the future of GRC, the risks introduced by poorly governed AI systems, and how companies can adopt automation without increasing their attack surface. I regularly share insights on cybersecurity compliance, AI development, and the evolving threat landscape, with an emphasis on practical, defensible security programs that align with real business risk rather than checkbox compliance.

Results-oriented technology leader with over 9 years of experience in Infrastructure Security, Automation, Generative AI, and Software-Defined Operations. Demonstrated ability to lead high-performing teams, streamline enterprise support, and execute strategic initiatives that enhance organizational resilience and operational efficiency. A seasoned cybersecurity professional, experienced in vulnerability and patch management at scale, with a strong track record of driving measurable, data-driven impact through intelligent automation. Skilled in designing and implementing secure, scalable, and compliant infrastructure solutions that align with business and regulatory goals. Proven expertise in project and program management, particularly within Agile and Scrum frameworks, with a focus on cross-functional collaboration, risk mitigation, and continuous improvement. Recognized for combining technical depth with strategic vision to deliver transformative outcomes in complex enterprise environments.