Mark Curphey

Mark Curphey graduated from Royal Holloway, University of London with a Masters degree in Information Security in the mid-nineties (as a mature student). Royal Holloway is recently famous as the cryptography school where the cryptographer Sophie Neveu was educated in the bestselling novel "The Da'Vinci Code." After spending several years working at investment banks in the City of London working on a variety of technical projects including PKI design, Windows NT security, policy development and...See more

Mark Curphey graduated from Royal Holloway, University of London with a Masters degree in Information Security in the mid-nineties (as a mature student). Royal Holloway is recently famous as the cryptography school where the cryptographer Sophie Neveu was educated in the bestselling novel "The Da'Vinci Code." After spending several years working at investment banks in the City of London working on a variety of technical projects including PKI design, Windows NT security, policy development and single sign-on systems, he moved to Atlanta to run a consulting team performing security assessments at Internet Security Systems (now IBM). In late 2000 Mark took a job at Charles Schwab to create and manage the global software security program where he was responsible for ensuring the security of all business applications protecting over a Trillion dollars of customer investments. During this period Mark started OWASP (http: //www.owasp.org), the Open Web Application Project. In 2003 he then joined a small startup called Foundstone to take the experience learnt at Schwab to other Fortune 1000 companies. The company was sold to McAfee in October 2004 and Mark Curphey joined the McAfee executive team reporting directly to the President.Mark was awarded the Microsoft MVP for Developer Security in 2005 for his community work in advancing the discipline of software security. In November 2006 he left Foundstone, moved back to Europe and took a year out to think seriously about the design of an information security management platform. A year later he joined Microsoft as a product Unit Manager building static analysis tools and protection libraries for web applications. Mark currently runs the MSDN Subscriptions engineering team at Microsoft and is working on a side project with friends to launch a new security community in 2012 called Seconauts. Mark was a contributing author to Beautiful Security and has written the forward for Innocent Code and Threats and Countermeasures. See less