Good engineering involves thinking about how things can be made to work; the security professional mindset involves thinking about how things can be made to fail.
I'm Stefan Frei and I’ve been in IT and security since the late 1980s.
I've been paid to break in to the largest and best known organizations around the world for the last decade and worked for one of the world’s best known penetration testing security R&D divisions.
Along the way I gathered a mixture of skills in software development, pentesting, security research, and consulting for both technical and management audiences.
In September 2012 I joined NSS Labs, Inc as Research Director.
Before NSS Labs I worked as Research Analyst Director at Secunia/Denmark which allowed
me to expand my research on Secunia data, gathered from the comprehensive data pool of
scan results from the Personal Software Inspector PSI
and the Secunia Vulnerability Intelligence.
Before Secunia I worked as senior resercher and lecturer at ETH Zurich where I studied the security ecosystem and investigated cybercrime operations and defense.
I wanted to combine my practical experience from ISS X-Force with academic research - knowing that we need interdisciplinary solutions to today's security challenges.
As a helicopter and fixed wing pilot I am well prepared to look ahead and think out of the box.
I have been a frequent speaker and contributor at BlackHat, DefCon, FIRST, RSA, and other security conferences.
You can follow me on Twitter or LinkedIn