The Lodestone Security Difference
Existing threats like ransomware, phishing, and malware indiscriminately target businesses of all sizes and complexities. Attackers are merciless and care only about results that benefit them. The number of cyber-security related breaches, incidents and insurance claims has skyrocketed. Proven, high quality and effective talent to help businesses is in short supply. Seeing this gap in the marketplace Beazley Insurance responded by founding Lodestone Security.
At Lodestone, we provide professional, calm and confident support during a time of crisis, like a breach. We can also help you make impactful changes to your security posture to either prevent breaches before they occur or prevent recurrences once a breach has happened. An automated response is an important part of a strategy, but it takes a confident professional to boldly stand in the gap. Lodestone is ready.
Key members of our team
Sergio (Serge) is a cyber-security professional with over 25 years of direct experience building and maintaining global organizations dedicated to managing and mitigating corporate information risk for businesses large and small in a wide range of industries. He also has a combined corporate and consulting background which in addition to cyber security includes significant exposure to domestic and international privacy services and the M&A lifecycle.
Serge was an original member of Pricewaterhouse’s first tiger team focused on ethical hacking which he helped build to a nationwide practice with over 100 professionals. He also has prior startup experience as a Senior Director of professional services at Foundstone, which was purchased by McAfee. These two organizations have had a direct impact on the cyber-security landscape and spawned many of the well-known names in the industry today including Archer (RSA), Crowdstrike, Cylance, Phishme.com, Mandiant (FireEye), and Security Compass.
Serge holds a Bachelor of Science degree in Business Administration with a dual major in Information Systems and Spanish from Marquette University in Milwaukee, Wisconsin. He is fluent in Portuguese and Spanish and conversant in French.
Cyber Risk & Security Executive
Alvin Fong is a cyber risk & security executive/professional with over 10 years of experience across federal/defense, healthcare, and financial services industries. He has served in multiple security leadership roles; helping organizations mature and evolve their security capabilities. Recently he helped develop security strategy, roadmap and risk management programs for Fortune 500/Dow 30 organizations with a focus on cyber risks and data protection. In the healthcare realm, he has helped medical organizations formalize their governance, risk, and HIPAA compliance programs, obtain their SSAE16/SOC2 attestations and build out their vulnerability management practices.
Alvin formerly conducted security research and development at MITRE’s Cybersecurity Operations Center to protect and defend against nation-state adversaries. He holds his Certified Information Systems Security Professional (CISSP) certification and has a master’s degree in Information Systems Management from Carnegie Mellon University. Alvin currently co-leads the CT Open Web Application Security Project (OWASP) chapter; a non-profit organization focused on security awareness across corporate, academic, and government organizations.
Incident Response Practice Lead
Joshua (Josh) is a cybersecurity professional with over 20 years of experience in technology across multiple verticals. For the past 15 years, he has been consulting in the information security space, with a specialty in Digital Forensics and Incident Response (DFIR). He has provided hands-on expertise to companies ranging in size from small sole-proprietorships to Fortune 50 multi-national corporations. As a digital forensic investigator, he has responded to some of the largest data breaches in the world and assisted in the apprehension of well-known cybercriminals. In 2018 Joshua created and is currently leading the DFIR practice at Lodestone Security.
Principal Security Engineer
Conor is a computer scientist with a background as a system administrator who has spent the past decade securing systems in the education, FinTech, and digital gaming industries. His strongest skills are focused around application security, finding and remediating issues all across the stack by bashing, breaking, fuzzing, injecting and reversing everything from obfuscated binaries to massive network-based applications. He has performed code analysis across a myriad of frameworks, led the charge on department-wide remediation efforts, and educated engineers and developers on secure coding practices.
Conor’s other focus has been in tools development and research. He has developed many applications and scripts to enable himself and teammates to accomplish and automate goals. In his previous position this included reverse engineering and replicating the functionality of malicious binaries used by attackers targeting the company’s software.
Conor holds a Bachelor of Engineering degree in Computer Science and Engineering from the University of Connecticut.