Shop Our Merch
Report A Breach
1-877-550-4728
Stephen Marchewitz
Director of Practice Development
Experience
Stephen has been in the security and risk industry for over 13 years and in IT for over 20 years. He has assisted companies in driving change to ensure clients are successful both in receiving value from products and services as well as managing the security and compliance risks of new projects and technologies. He’s served as an outsourced Chief Information Security Officer for a dozen different companies and consulted to some of the largest companies in the world. Prior to joining TrustedSec, Stephen was the Global Risk Practice Manager in the Digital Transformation Group at Cisco, President and Advisory Practice Lead for a leading information security firm for nine years, a Management Consultant with Ernst & Young, held Technology Management and sales positions with CA and Oracle, and developed new offerings in the insurance industry as an Underwriter and Program Director with Willis Coroon/Chubb in underwriting risk. He is dedicated to helping customers implement the right solutions and services that best meet their business needs, thus allowing them to achieve new levels of success.
Education & Certifications
University of Michigan, Bachelor of Arts degree in Business Communications and Statistics; Case Western Reserve University, MBA in Management Information & Decision Systems; Stephen has also been a PCI Qualified Security Assessor and a Certified ISO 27001 Auditor.
Industry Contributions
Stephen has been quoted in such magazines as: Banking Info Security, Government IT, Wall Street Technology, Transaction World, Infosec Institute, Crains, Automation World, Modern Economics, among many others. He’s also presented at various events across the country including: ISACA, ISSA, SecureWorld, the Infosec Summit, Business of Security, the IoT World Forum, various Cisco events, and numerous webinars.
Passion for Security
Stephen’s passion is helping people. He addresses not only technical issues, but more importantly the human issues that CISO’s deem as their greatest areas of need. Stephen is counted on as an expert in risk, security, business intelligence, and decision support systems. Enterprise risk management is an area that many executives and boards are struggling with. He has assisted by giving clear direction and putting complex thoughts into layman’s terms.
Recent Blog Posts
NFT Crime: From the Simple to the Ingeniously Simple
If you guessed these two things—a 10-kilo bar of gold and this image from the Bored Ape Yacht Club (BAYC)—cost about the same, roughly $600,000, you’d be right. And if it’s hard to believe this is true, you’d be like almost everyone else in the world. Basically, a one-of-a-kind cartoon in a type of video...
Read
Is Cyber Insurance Becoming Worthless?
New challenges have emerged that make it difficult to transfer risk. Ransomware has changed the game An overlooked yet the increasingly important challenge in information risk management is finding the right balance between cybersecurity and cyber insurance. We continue to see organizations hit with ransomware from a variety of vectors, including spam emails, drive-by downloads,...
Read
Companies on High Alert for Unemployment Fraud
Proactive Measures to Thwart Unemployment Fraud In the past few months, the TrustedSec Incident Response team has responded to several incidents of unemployment benefit fraud. Due to the pandemic and nationwide lockdowns, there has been an extremely high volume of unemployment claims submitted across the United States, and with greater instances of fraud making it difficult...
Read
Recent Webinars
Natural Security Benefits for InfoSec Leadership
‘Our Program has Grown Organically.’ Regardless of the type of industry or business, security leaders struggle to overcome inherent roadblocks in how security programs develop over time. Security programs tend to mature through problem resolution and struggle to maintain consistent...
Securing Your Software Supply Chain
Open-Source Libraries: What’s Good for the Goose is Good for the Gander. Whether in the software supply chain or part of your own DevSecOps process, the use of open-source libraries has grown due to the ability to release higher-quality code...
Making Cyber Insurance Questionnaires Work For Your Security Program
Building on the success of our previous webinar, Coverage Not Guaranteed: Navigating Cyber Insurance, we are pairing up with an insurance industry expert to help clients better prepare for answering uncomfortable questions from executives during the insurance renewal process. Do...
