EXPERIENCE
Steve Maxwell has 25 years of technical experience ranging from software development to software quality, performance engineering, Information Security, and audit. Before TrustedSec, Steve performed a number of IT functions supporting security initiatives across multiple industries. He has presented to hundreds on topics of automation, performance engineering, and information security.
EDUCATION & CERTIFICATIONS
- Bachelor of Science, University of Utah
- Certified Information Systems Security Professional (CISSP)
- Qualified Security Assessor (QSA)
- Certified Information Systems Auditor (CISA)
- Certified Data Privacy Solutions Engineer (CDPSE)
- ISO 27001 Lead Auditor
- CMMC Registered Practitioner
PROFESSIONAL AFFILIATIONS
Information Systems Audit and Control Association (ISACA)
PASSION FOR SECURITY
Steve’s passion for security is in helping his clients to improve their security and in preparing them to be ‘the smartest in the room’.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
Book Review - The Definitive Guide to PCI DSS Version 4
As a PCI QSA, I have answered numerous questions about the new PCI DSS Version 4. With over 500 total controls, and at least 100 of them unique to this…
Network Segmentation for the Rest of Us! How to get your segmentation project moving toward zero trust.
Implementing network segmentation can limit internal movement, improve access control, and slow down attacks, allowing for more time to react and reducing…
Strength Training With Transport Cryptology: Part 2
Review the latest PCI Security Standards Council (PCI-SSC) guidelines for evaluating application cipher suites and ensure compliance with version 4.0 standards…
Purple Team Defense Strategies
Join Senior Security Consultant Sarah Norris and Security Consultant Zach Bevilacqua for a deep dive into how to create action items for a robust defense…
ISC2 Cleveland Chapter Member Meeting - October 2025
ISC2 Cleveland Chapter October MeetupCome join us for our meetup! The ISC2 Cleveland Chapter is hosting an exciting in-person event for all cybersecurity…
Hack-cessibility: When DLL Hijacks Meet Windows Helpers
In preparation for a talk, Jason Lang (@curi0usJack) and I were doing at MCTTP about mining TTPs from VX-underground, we both ended up doing research based on…
InfoSecWorld 2025
TrustedSec is proud to sponsor and hold a workshop at this year's InfoSec World in Lake Buena Vista, Florida. Make sure to visit our booth if you'll be there!
InfoSec World Workshop - Adversary Tactics and Threat Hunting
This immersive workshop will train you to simulate attacks, hunt threats, and build detections using manual, automated, and AI-driven methods across network…
Security Noise - CON Men: Wild West Hackin' Fest + GrrCON
On this episode of Security Noise, we are discussing two of our favorite cybersecurity conferences Wild West Hackin' Fest and GrrCON! Our team presented at…
Discord Livestream - Titanis Tool Demo
Join us on Discord for a tool demo of Titanis! Titanis is a library of protocol implementations and command line utilities, written in C#, for interacting with…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
