An IT Security Consultant with over 20 years of experience in the field. A Managing Partner at SecuRing. He has led multiple security assessments and penetration tests especially for financial services, payment systems, SaaS, and startups. A lecturer at many security conferences, e.g., AppSec EU, BSides London, SECURE, CONFidence, Security Audit, and Management Forum. His main areas of interest include financial systems security, threat modelling, and security in development lifecycle. An author and a contributor to many security-related projects, including OWASP Transaction Authorization Cheat-sheet.