Sammy Migues

Sammy Migues is the Director of Knowledge Management and Training at Cigital, Inc, a software security and quality consulting firm providing services to some of the world's best-known companies for over a decade. Mr. Migues is an information security visionary with a proven record of entrepreneurial innovation, intellectual capital development, practical business solutions, and performance optimization. He has extensive day-to-day experience in chief architect, chief technologist, and evangelist roles, working directly with customers, product management, and product development.

As a founding member of four security services organizations, Mr. Migues was responsible for creating the practical knowledge leveraged for repeatability and growth. As an active creator and participant in activities ranging from early NSA "Rainbow Books," NIST Common Criteria, and DoD DITSCAP initiatives to state-of-the-art compliance matrices and security risk models, he made critical observations on the evolving relationships between information security threat, vulnerability, risk, and business objectives. Mr. Migues expressed many of these ideas in various publications and workshops, as well as in patent applications for the iDEFENSE intelligence generation process, the TruSecure risk management process, and the Cybertrust security risk index.

From this experience, he recently turned his attention to the knowledge management aspects of information security governance and compliance, providing direct guidance to Fortune 500 leaders on efficiently "building security in" to everyday business activities. He is actively taking his practical management, technical, and thought leadership experience and applying it to the emerging enterprise security risk management discipline in areas such as: governance, compliance, and internal control; quantitative and qualitative risk analysis and modeling; security architecture, testing, and evaluation; executive scorecard; training; and, applied research.

At Cigital, Mr. Migues works daily with customers and Cigital's best and brightest to keep corporate knowledge and people on the cutting edge of software security and quality, while also working on product innovation, software security course creation, and risk modeling and management.

Mr. Migues is frequently sought out for press relations, TV, conference speaking, classroom instruction, executive briefings, and related knowledge transfer. He holds a BS in Computer Science and a Master's degree in Information Security.