Ross Young is the CISO of Caterpillar Financial, a lecturer at Johns Hopkins University, a SANS instructor, and the creator of the OWASP Threat and Safeguard Matrix (TaSM). He is also the co-host of the CISO Tradecraft podcast. Prior to this role, he was a divisional CISO at Capital One. His expertise ranges from attacking financial services for the federal government to defending organizations by automating defenses in DevSecOps pipelines. He is actively involved in all things cloud, container, and Kubernetes security. Ross holds master’s and bachelor’s degrees from Johns Hopkins University, Idaho State University, and Utah State University. Ross’s interest in pirates and ninjas have inspired him to stealthily enable and safeguard the business without the paperwork.