Steph Saunders

EXPERIENCE
Steph Saunders has over 10 years of experience in the Information Security field, working mainly in retail, critical manufacturing, and other IT organizations.

EDUCATION & CERTIFICATIONS

• Bachelor of Science, Information Science, The University of Pittsburgh
• Certified Ethical Hacker (CEH)
• Certified Penetration Tester (CPT)
• Cybersecurity Maturity Model Certification - Registered Practitioner (CMMC-RP)
• ISO 27001 - Lead Implementer
• ISO 27001 - Lead Auditor
• Lean Six Sigma - Yellow Belt
• PCI Qualified Security Assessor (PCI QSA)

PROFESSIONAL AFFILIATIONS

• InfraGard Board of Directors - Treasurer
• BSides Pittsburgh - Volunteer
• Three Rivers Information Security Symposium (TRISS) - Planning
• Committee and Treasurer
• 3 Cups of Coffee Mentor - Cybersecurity - PA Women Works
• WiCyS Pittsburgh - Founding Board Member

INDUSTRY CONTRIBUTIONS
Steph actively presents at various Pittsburgh Information Security events, such as InfraGard, ISC2, ISACA, TRISS, etc. Steph is an active mentor in cybersecurity, a frequent cybersecurity panelist, and an overall connection-maker for the Information Security community. Steph has hosted various webinars on topics ranging from ransomware and Incident Response to GRC updates and best practices.

PASSION FOR SECURITY
Steph is passionate about Information Security as a whole. She particularly enjoys promoting best practices for education and awareness training, especially from a Defense in Depth (DiD) perspective. She is an expert in physical security, Incident Response, governance risk, and compliance, and is always improving her forensics and assessment skills through learning about each security domain. She has developed and hosted tabletop exercises while creating relationships in the security field, IT, and other parts of organizations.