Presentation Slides from Ty Sbano's Presentation at BSides Las Vegas 2019 in the Hire Ground Track.
Are you working in a mature enterprise security team, but have been exploring the idea of transitioning into a security leadership role in a startup or smaller, less mature organization? Tech debt is a real issue in any role, but perhaps instead moving into a new role in a new organization where the perception is that the grass is greener, you want to truly try your hand at a true evergreen environment where you build the program from scratch at a startup. Specifically, are you thinking about making a career change as a security specific domain expert to moving into a startup role where you may develop domains within InfoSec, Compliance, Privacy, and more. While it may be intimidating, it’s not impossible, come learn about specific examples of how to apply enterprise security lessons to build a security program at a tech startup.
2. Ty Sbano is an Information Security leader with 13 years of experience, mainly in Financial Technology
organizations. Currently serving as Cloud Chief Information Security Officer at Sisense and advising for
Watchertower.ai and Spherical Data. Previously Ty focused on leading application, product, and
information security programs at >
whoami
Education
Penn State University
B.S. Information Science and
Technology
Norwich University
M.S. Information Assurance
Certifications
CISSP, SSCP, CEH, CCSK, CPT
Startup Security Leadership: Lessons to Level Up from
Fortune 100 to Tech Startup
INTERSECTION OF
What you are good at? PROFESSION
What the world needs? MISSION
What you can be paid for? VOCATION
What do you love? PASSION
MY MOMENT AT CAPITAL ONE > Helping with M&A
Establish your criteria and focus on how to transition - have people? What if you have to do everything and well beyond your scope?
Depending on your commitments and general cost of living
Eneterprise relationships, colleagues and vendors will change, are you prepared for when you can’t afford enterprise sales and have to deal with re-sellers? Or do you have contacts across smaller orgs to empower knowledge exchange?