Recognized Risk Assessment Leaders 2025

Karthikeyan Ramdass a seasoned cybersecurity professional with over 18 years of experience securing mission-critical systems for leading Fortune 500 companies across industries including aviation, finance, automotive, and technology. I have played a pivotal role in protecting organizations such as Southwest Airlines, Wells Fargo, Morgan Stanley, Toyota Motors North America, AIG, Cognizant, Salesforce, and Deluxe Corporation. Specializing in application security, vulnerability management, secure architecture, and supply chain defense, led the design and implementation of enterprise-scale security frameworks, CI/CD pipelines, and advanced security testing solutions. Extensive experience in SAST, DAST, SCA, zero-day vulnerability management, and penetration testing, ensuring compliance with global standards such as NIST CSF, PCI DSS, and OWASP Top 10.

Results-oriented technology leader with over 9 years of experience in Infrastructure Security, Automation, Generative AI, and Software-Defined Operations. Demonstrated ability to lead high-performing teams, streamline enterprise support, and execute strategic initiatives that enhance organizational resilience and operational efficiency. A seasoned cybersecurity professional, experienced in vulnerability and patch management at scale, with a strong track record of driving measurable, data-driven impact through intelligent automation. Skilled in designing and implementing secure, scalable, and compliant infrastructure solutions that align with business and regulatory goals. Proven expertise in project and program management, particularly within Agile and Scrum frameworks, with a focus on cross-functional collaboration, risk mitigation, and continuous improvement. Recognized for combining technical depth with strategic vision to deliver transformative outcomes in complex enterprise environments.

Warren Pulley brings 40 years of threat assessment and crisis management expertise across military, law enforcement, diplomatic, corporate, and educational environments. As founder of CrisisWire, he provides professional threat assessment services to organizations throughout Hawaii, Nationally and Internationally. Credentials: BTAM (Behavioral Threat Assessment & Management) trained - University of Hawaii West Oahu 20+ FEMA certifications (IS-906, IS-907, IS-915, complete ICS/NIMS) Former LAPD Veteran Police Officer (12 years) 6+ years U.S. Embassy Baghdad security operations (zero incidents under daily threat) Former Director of Campus Safety, Chaminade University Former California Private Investigator 7 years U.S. Air Force (nuclear security & paralegal) Published Authority: Author of five books on threat assessment: The Prepared Leader, Threat Assessment Handbook, Campus Under Siege, Locked Down: The Access Control Playbook, and Uniformed Silence. Published researcher with 9+ peer-reviewed papers on threat assessment, workplace violence, and crisis management. Media-Ready Expertise: Available for expert commentary on threat assessment, school safety, workplace violence prevention, crisis management, executive protection, insider threats, and emergency preparedness. Find CrisisWire online at https://rypulmedia.wixsite.com/crisiswire

Behavioral threat assessment and workplace violence prevention expert with 35+ years in public safety, consulting, and criminal justice education.

Raj Karan Gunukula is a seasoned technology leader with 14+ years of experience driving large-scale AI, machine learning, and data infrastructure programs across fintech and commerce. He currently serves as Group Technical Program Manager at Coinbase, where he leads AI adoption across the software development lifecycle. Previously at Amazon, Raj rose to Principal TPM, founding and leading a team of TPMs supporting XXX+ engineers, scientists, and analysts to deliver flagship Generative AI and intelligent advisor solutions that scaled to over one million sellers worldwide. His career blends deep technical grounding from his B.Tech. in Electrical Engineering at IIT Dhanbad (Silver Medalist) with hands-on leadership in AI innovation, product scaling, and business transformation.

SEO and Web Design Specialist at KKT Management Enhance digital strategies and website functionalities. Improve search engine rankings and design user-centric interfaces. Conduct successful SEO campaigns, staying abreast of the latest trends and algorithms. Operations Manager at Anna Nasi Lemak Spicy Asia City Manage day-to-day operations and spearhead online presence. Oversee digital engagement and brand management. Integrate traditional marketing with digital solutions to boost brand visibility and customer interaction.

Josh Fleming is the Risk Advisory & GRC practice lead at Echelon Risk + Cyber, where he helps organizations strengthen resilience against today’s most complex cyber and physical threats. He brings a unique ability to bridge technical expertise with executive strategy, enabling leaders to make confident, informed decisions during both preparation and crisis. With extensive experience across industries such as healthcare, manufacturing, financial services, and energy, Josh has partnered with organizations to identify risks, fortify defenses, and implement effective governance strategies. His work spans from building incident prevention programs to leading executive tabletop exercises, risk assessments, and crisis response planning. Josh regularly advises executive teams, C-suites, and boards on incident response readiness and strategic risk management. He is known for developing actionable frameworks and clear decision-making playbooks that reduce risk exposure, accelerate response, and build stakeholder trust. As an industry thought leader, Josh is committed to advancing the conversation around governance, risk, and compliance. He stays at the forefront of emerging trends and regulations, particularly in areas such as AI governance and cybersecurity resilience, to ensure his clients and partners are not only compliant, but future-ready. Above all, Josh is recognized as a trusted advisor who combines technical depth, business acumen, and a client-centric approach to deliver lasting value. His mission is to help organizations move beyond compliance to achieve true resilience and competitive advantage in an evolving risk landscape.

As a Cybersecurity Auditor operating at the intersection of complex digital infrastructures and human systems, my mission is to build resilience in an increasingly volatile world. With over 20 years of experience in Global MNCs, I’ve realized that protecting a network is only half the battle; the ultimate firewall is the clarity and alignment of the professional mind. ​I am a published author of three works that explore the architecture of security and the science of patterns: ​'The Interview': A deep dive into the technical and psychological nuances of Cybersecurity. ​'Cosmic Catalyst' & 'Beyond Constellations': Research into systemic cycles, predictive analytics, and ancient pattern-recognition frameworks. ​ My methodology is unique. By day, I audit global cybersecurity frameworks for US-based clients. Beyond the code, I am a dedicated researcher of Bio-Energetic Systems and Chronobiological Trends. I have successfully applied these 'multidimensional' patterns to predict global events and organizational shifts with high accuracy—bridging the gap between the measurable and the metaphysical. Through my research I offer high-performance philosophy to fellow cybersecurity professionals. My goal is to help leaders navigate 'zero-day' life challenges with the same precision they apply to their digitalecosystem. ​ I believe the future of leadership belongs to those who can traverse both the logical and the intuitive. I am here to help you audit your path to sovereign success.

I am a Cybersecurity expert with ~15 years of hands-on experience in Application Security. I have a proven track record of building robust security frameworks and Security Testing Strategies to help organizations safeguard their Application landscape. I have worked with leading Industry Clients, across diverse Line of Business in implementing Vulnerability Assessment and Penetration Testing services. I am currently pivoting to AI Safety and AI Security.

Christopher Trocola is CEO of Compliant Technologies and a leading expert in AI governance and safety frameworks. From 2012-2020, he owned and operated solar sales and installation companies, where he developed one of the first AI agents for FinTech applications in the solar space, before "AI agents" was common terminology. This early AI development work, combined with his compliance expertise (2020-2024) protecting $500M in regulated contracts and influencing 10 laws nationwide through collaboration with legislators, House representatives, Senators, and government agencies including DOE and NREL, gives him unique insight into both AI technical implementation and regulatory frameworks. Christopher has been featured in multiple news outlets including Time Magazine and has received recognition as Marquis Who's Who Top Professional 2024, Honoree in 2023, and IAOTP 2024 Top Founder and CEO of the Year, 2025 Fluxx AI Compliance Innovator of the Year. His expertise spans AI agent development, regulatory compliance, and government relations. Now applying proven regulatory frameworks to AI governance challenges, Christopher developed the CT Framework, a three-pillar system (Know Your Stack, Protect AI, Compliance Lock) that helps organizations deploy AI safely at scale. His signature thesis "You cannot enforce a standard that was never defined" has resonated with thousands of AI practitioners and enterprise leaders. Christopher's LinkedIn thought leadership generates 25K-50K impressions per post, with engagement rates 3-7x industry averages. His analysis of AI governance failures (Replit, Rolling Stone, Grok) has sparked discussions among 500+ professionals about the urgent need for architectural controls over reactive compliance. He is founding the AI Safety Summit (March 2026, Phoenix) and serves as Chief Policy Advisor alongside former Arizona Deputy Director Wendy Jameson. Christopher works with insurance carriers on AI liability frameworks and is developing the Academy program to train certified AI compliance consultants. Specializations: AI agent development, AI governance frameworks, regulatory compliance (NIST AI RMF, EEOC guidelines, EU AI Act), architectural controls, FinTech AI applications, insurance partnerships, government relations, and enterprise risk management.

📌 Key Areas: Secure Software Engineering | Zero-Trust Security | Cloud & DevOps Security | AI for Cyber Defense | Research & Innovation | Cybersecurity Advocacy I am an award-winning Cybersecurity Professional and Software Engineer with about 10 years of experience building secure, resilient, and scalable systems that safeguard enterprises and critical infrastructures worldwide. At Microsoft, I have spearheaded high-impact security engineering initiatives across Azure, DevOps, and enterprise security driving innovations in zero-trust frameworks, system observability, automation, and AI-integrated security solutions. My contributions have fortified services relied upon by global customers while elevating industry standards in reliability, compliance, and risk management. Beyond corporate impact, I am deeply committed to advancing the cybersecurity community. As an advisor, trainer, and researcher, I actively contribute to academic publications, global workshops, and non-profit initiatives with multiple global organizations like CyberNGO, Mentors Without Borders, TCET, CHARUSAT, PARUL, MSU, Live2Serve and Many More, promoting cybersecurity awareness and training future leaders. Recognized with honors such as the Global Recognition Award 2025 and multiple CISO50 Innovation & Excellence Awards, my mission is to bridge research, engineering, and leadership to shape the future of digital trust and resilience.

I am a cybersecurity professional with over 18 years of experience in offensive security, penetration testing, and cyber defense. I focus on deeply understanding complex security challenges and developing practical, real-world solutions that strengthen organizations against evolving threats. I enjoy working across various security domains and approaching problems with a hands-on, analytical mindset. My colleagues and clients describe me as a hardworking, disciplined professional who remains calm and solution-oriented when handling high-risk incidents and challenging environments. My areas of expertise include vulnerability assessment, exploit development, incident response, network security architecture, and enterprise systems administration. I hold industry-recognized certifications such as OSCP, OSCE, GWAPT, GCIH, CCNA, and RHCE, which demonstrate my commitment to continuous learning and technical excellence.

Matt Lindley is the Chief Innovation & Information Security Officer at NINJIO, a leading cybersecurity awareness training and human risk management platform. Matt leads NINJIO’s cybersecurity team and AI innovation projects. Previously, he was the CEO and Principal Consultant at REIN Cybersecurity, which focused on governance, risk management, and compliance (GRC). He has also served as the Director of Security Services at Cal Net Technology Group and the virtual CIO at Convergence Networks. Matt is an authority on IT, cybersecurity, GRC, and operational maturity whose expert insights have been published in media outlets spanning cybersecurity and many other relevant verticals. His byline has appeared in a wide range of cybersecurity and tech publications, including Dark Reading, Cyber Defense Magazine, Innovation & Tech Today, Spiceworks, Security Magazine, Cybersecurity Insiders, Security Boulevard, U.S. Cybersecurity Magazine, Information Week, and Cyber Protection Magazine. Matt has also published extensively in outlets serving specific industry verticals, such as InsuranceNewsNet, Business Traveler, Manufacturing.net, and Carrier Management. He is considered a leading security analyst whose research and expertise cover AI strategy and transformation, emerging cyberthreats, behavioral psychology, social engineering, and organizational resilience. Matt has over a decade and a half of experience as both a practitioner and a thought leader in cybersecurity, and he is particularly focused on human risk management—a core pillar of cybersecurity at a time when the human element is implicated in the majority of breaches.

I am a former Chief Risk Officer and today an industry-leading risk management authority, strategy advisor and author. I created the 52 Risks® management framework (www.52Risks.com) over a decade ago to guide board directors, executives and managers in the identification and management of business risks. Today it is used all over the world, across all industries. I like to describe it as the equivalent of the Balanced Scorecard for risk management. I was awarded Australian Banking & Finance magazine’s Chief Risk Officer of the Year award in 2014, 2015, 2016 and 2018. I am a regular contributor to a range of strategy, risk and finance publications including Company Director Magazine (Australia), Director Today (India), FINSIA (Australia) and The Asian Banker (Singapore). You can read more about my talks and presentations here: https://notwithoutrisk.com/2025-presentations-and-papers/ I am also co-founder of the tech startup, Shelf Labs and Non-Executive Director of the equities trading platform Trade for Good. I am also an advisory board member for several technology and start-up companies. In December 2024, I released the book, Startup Toolkit: A Step-by-Step Guide for Founders (www.goruworld) to inspire the next generation of entrepreneurs.

Ra'ad Siraj is a senior technology executive and investment leader specializing in responsible AI governance at enterprise scale. Most recently, he led AI and privacy governance for a Fortune 10 technology company, building frameworks that reduced review cycle times by 80% while managing risk across global operations in regulated environments. Currently, Ra'ad is developing international AI investment strategies, including pioneering work on cross-border technology corridors that connect established AI ecosystems with emerging markets. This work focuses on responsible AI deployment frameworks that can scale across diverse regulatory environments and cultural contexts. Notable Achievements: -Governed thousands of AI/ML use cases across multinational workforce operations -Reduced AI governance review cycles by 80% while maintaining regulatory compliance -Established enterprise-wide responsible AI programs at Fortune 500 financial services company -Led technology transformations as CIO/CTO at multiple leading financial institutions -Harvard MS Computer Science graduate and frequent technology conference speaker Key Areas of Expertise: Artificial Intelligence • AI Governance • Machine Learning • Data Governance • Enterprise Risk Management • Regulatory Compliance • Financial Services Technology • Digital Transformation • CIO Leadership • Technology Strategy • Privacy Engineering • Cross-border Investment • International Business Development • Board Advisory • Startup Governance • PropTech • FinTech • InsurTech • Enterprise Architecture • Cloud Strategy • Cybersecurity • Data Analytics • Change Management • Team Leadership • Venture Capital • Private Equity • Technology Due Diligence • Responsible AI • AI Ethics • Global Technology Partnerships Ra'ad is available for expert commentary on AI governance, global technology investment, enterprise AI leadership, and the intersection of innovation, regulation, and international business development.

Philip Farina is one of the most highly respected and recognized security and safety professionals. He is the Chief Advisor/Consultant for Risky Business, that provides management consulting services to hotels, hospitality organizations and corporations, commercial real estate and private individuals. Philip also provides expert witness litigation support to hotels and law firms. He is the Lead CPTED Practitioner for assessments and training to support the State of Florida State Statute 768.0706 (HB 837). A U.S. Military and Federal Law Enforcement Veteran, he has been proudly featured in Fox News, NBC News, CBS News Money Watch, CNN, ABC News, U.S. News Money & World Report, MSNBC, USA Today, The Washington Post, Reader's Digest, Chicago Sun-Times, Hotel Executive, American Express, Meetings and Conventions, Security Management Magazine, Chief Security Officer CSO Magazine, Police Magazine, Cosmopolitan, Private Wealth, Business Travel Executive, and SecurityInfoWatch. Philip has been recognized as a pioneer in all facets of security, safety and risk management. He began his career while serving in the United States Naval Intelligence Community, where he held top security clearances and gained expertise in antiterrorism and protective services. He participated in U.S. military special operations, amphibious, law enforcement and lifesaving campaigns throughout the Middle East, Latin America, Europe and Africa. A nuclear tactical security officer (under the U.S. Department of Energy), he protected radioactive fuels, nuclear facilities and sensitive structures from the threat of terrorism and sabotage. He also conducted government-level risk assessments. During tenure as a federal law enforcement training officer with the U.S. Department of Defense, he was tasked with conducting penetration tests and leading “Red Team” exercises against military installations to analyze existing protection and security measures. While in this capacity, he also wrote the training curriculum for police and maritime security personnel for a new patrol boat concept for the U.S. Dept of Homeland Security. Philip was the Vice President of Loss Control/Loss Prevention for the combined Aimbridge Hospitality/Interstate Hotels portfolios. He was responsible for leading all global enterprise security management, safety and loss/fraud prevention services to protect 90,000+ employees, company operations, guests and assets for over 1800+ hospitality locations in 23+ countries.

I am a proud generalist who unites the tribes: design, engineering, devops, sales, marketing, customer support, c-suite, legal, and more... I make products and organizations better by managing teams with focus on hard data and user needs to create delightful customer journeys that drive revenue growth.

My professional journey has taken me through various roles where I've sharpened my skills in risk assessment, financial analysis, and building enduring client relationships.Achieving success for me goes beyond the immediate task at hand. It’s about seeing the bigger picture and making a tangible impact in the long term success of the organization. I’m passionate about developing new frameworks that create sustainable and repeatable outcomes within my work. I also believe in the power of collaboration and shared insights to drive progress for each member of my team.I welcome connections from fellow professionals and anyone interested in discussing the future of finance and the potential for innovation within our field. Together, let’s explore the possibilities.

Anant Wairagade is a Technical Lead with over 20 years of experience in Software Engineering enabling IT organizations with digital transformation and helping them become secure organizations. In his more than two decades long career, Anant has worked for financial services companies where he led the design and development of several successful products in the Security, Finance and CRM domain. Beginning of his career, Anant worked as a Technology consultant for major Financial Services companies and Banks. Anant is a thought leader in Enterprise Integrations solutions. He is expert in API based data connector development, Kafka and Messaging Middleware. Anant is also an active member of several Industry Open Standard communities. He is an IEEE Senior member and serves as Program Committee Member for several IEEE and other IT conferences.