12/02/2012 (press release: bkouns) // Richmond, Virginia, USA // Barry L. Kouns
Risk Based Security, Inc. today announced that it has appointed Carsten Eiram as Chief Research Officer (CRO). The appointment of Mr. Eiram, a leading vulnerability researcher and reverse engineer, signals a strategic focus on software vulnerability research to drive new product development and improvements in existing solutions.
As CRO, Mr. Eiram will play a leading role in enhancing the quality of Risk Based Security’s solutions and promoting Risk Based Security in the security community by contributing to national and international research discussions and vulnerability analysis.
Eiram said, “I am very excited about joining Risk Based Security as they continue to build upon the existing credibility and strength of the OSVDB by adding in-depth vulnerability research. I look forward to working with the Company’s visionary management team to bring innovative products, research content, and “outside the box” thinking when conducting vulnerability research and creating/enhancing new security concepts, products and services.”
Most recently, Eiram was responsible for managing the Research team at Secunia as well as the core advisories service. Eiram also performed in-depth technical analysis of critical vulnerabilities in closed-source and open-source software and has discovered critical vulnerabilities in high-profile products from major software vendors including Microsoft, Adobe, Apple, Symantec, IBM, Google, Novell, and Trend Micro.
Risk Based Security’s CEO, Barry Kouns said, “Carsten is a world-renowned technology leader in vulnerability research and reverse engineering and I look forward to working with him to enhance Risk Based Security’s product offerings and further contributing to the security community.”
Eiram is a member of the CVE Editorial Board, has presented at various conferences including RSA and Defcon, is a regular contributor to SC Magazine’s “Threat of the Month” column, and has lately performed extensive analysis into the effectiveness of Microsoft’s SDL (Security Development Lifecycle) for Microsoft Office.
“Risk Based Security’s products will continue to enhance our clients’ ability to defend against threats while we contribute to the community at large. There is plenty to do and I can’t wait to get started”, Eiram said.
About Risk Based Security, Inc.
Risk Based Security equips organizations with vulnerability intelligence, data breach analytics, risk management services, ISO/IEC 27001:2005 consulting, and on-demand security solutions to establish customized risk-based programs to address information security and compliance challenges.
For more information, please visit http://www.riskbasedsecurity.com/ or call 855-RBS-RISK.