Mr. Phil Brass brings more than 30 years of experience in security consulting and software engineering, including 5 years of writing security assessment tools and more than 15 years in consulting. Phil is a subject matter expert on application security programs, secure development lifecycle, assessment technologies, code review, and manual testing of application security, and leads a large consulting team delivering all of these services and more.
Prior to joining DirectDefense, Phil served as Director in Optiv’s Threat Management community. Before joining Optiv in 2009, Phil was employed at Internet Security Systems (ISS) as a Windows security expert, X-Force researcher, software engineer, and team lead on the Internet Scanner 5 project. He also spent two years managing software engineering projects at ISS.
Phil has extensive knowledge in software engineering, programming languages, network communications protocols, relational databases, and all things in security as they relate to those technologies.
Prior to his time at ISS, Phil worked as an Application Engineer and Software Architect in the health care information systems sector, where he focused on protocols and communications with diverse hospital systems, data warehouse implementation, and high-level architectural design of distributed inventory management systems.