EXPERIENCE
Steph Saunders has over 10 years of experience in the Information Security field, working mainly in retail, critical manufacturing, and other IT organizations.
EDUCATION & CERTIFICATIONS
- Bachelor of Science, Information Science, The University of Pittsburgh
- Certified Ethical Hacker (CEH)
- Certified Penetration Tester (CPT)
- Cybersecurity Maturity Model Certification - Registered Practitioner (CMMC-RP)
- ISO 27001 - Lead Implementer
- ISO 27001 - Lead Auditor
- Lean Six Sigma - Yellow Belt
- PCI Qualified Security Assessor (PCI QSA)
PROFESSIONAL AFFILIATIONS
- InfraGard Board of Directors - Treasurer
- BSides Pittsburgh - Volunteer
- Three Rivers Information Security Symposium (TRISS) - Planning
- Committee and Treasurer
- 3 Cups of Coffee Mentor - Cybersecurity - PA Women Works
- WiCyS Pittsburgh - Founding Board Member
INDUSTRY CONTRIBUTIONS
Steph actively presents at various Pittsburgh Information Security events, such as InfraGard, ISC2, ISACA, TRISS, etc. Steph is an active mentor in cybersecurity, a frequent cybersecurity panelist, and an overall connection-maker for the Information Security community. Steph has hosted various webinars on topics ranging from ransomware and Incident Response to GRC updates and best practices.
PASSION FOR SECURITY
Steph is passionate about Information Security as a whole. She particularly enjoys promoting best practices for education and awareness training, especially from a Defense in Depth (DiD) perspective. She is an expert in physical security, Incident Response, governance risk, and compliance, and is always improving her forensics and assessment skills through learning about each security domain. She has developed and hosted tabletop exercises while creating relationships in the security field, IT, and other parts of organizations.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
Staying Aligned: IR Program Maturity
Assess your Incident Response (IR) program with our expert webinar, learn to strengthen your IR program, and discover ways to stay aligned with your IR Program…
Ensuring Ransomware Resilience
Learn how to prepare, respond, and recover from ransomware attacks with cybersecurity experts Steph Saunders and Paul Sems, and discover the crucial components…
ISC2 Cleveland Chapter Member Meeting - October 2025
ISC2 Cleveland Chapter October MeetupCome join us for our meetup! The ISC2 Cleveland Chapter is hosting an exciting in-person event for all cybersecurity…
InfoSecWorld 2025
TrustedSec is proud to sponsor and hold a workshop at this year's InfoSec World in Lake Buena Vista, Florida. Make sure to visit our booth if you'll be there!
InfoSec World Workshop - Adversary Tactics and Threat Hunting
This immersive workshop will train you to simulate attacks, hunt threats, and build detections using manual, automated, and AI-driven methods across network…
Discord Livestream - Titanis Tool Demo
Join us on Discord for a tool demo of Titanis! Titanis is a library of protocol implementations and command line utilities, written in C#, for interacting with…
SAINTCON 2025
We are proud to sponsor and have a booth at this year's SAINTCON!
Schwab Network - Cybersecurity "Here to Stay:" Companies See Greater Spend as Risks Increase
The cybersecurity trend is "Here to Stay." Advisory Solutions Director Alex Hamerstone joins Schwab Network to explain how risk from A.I. and the shift toward…
There's More than One Way to Trigger a Windows Service
Service triggers can be a pentester’s secret weapon, letting low-priv users quietly fire up powerful services like Remote Registry and EFS. Learn how they can…
Incident Response: Lessons From the Front Lines
IR Practice Lead Carlos Perez will draw from recent, anonymized investigations to expose the most devastating failure patterns our Incident Response team has…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
