Phil Brass brings more than 30 years of experience in security consulting and software engineering, including 5 years building network security testing tools and more than 20 years in security consulting. Phil is a subject matter expert on penetration testing, application security programs, secure development lifecycle, assessment technologies, code review, and manual testing of application security, and leads a large consulting team delivering all of these services and more. Prior to joining DirectDefense, Phil served as Director of Threat Management at Optiv. Before joining Optiv in 2009, Phil was employed at Internet Security Systems (ISS) as a Windows security expert, X-Force researcher, software engineer, and team lead on the Internet Scanner project. He also spent two years managing software engineering projects at ISS. He is an author and inventor on patents covering security technologies such as network access control, multi-sensor event fusion, vulnerability classification ontologies and workstation security assessments.