About the Author
The person behind the blog
Security and risk leader with deep experience building and scaling security, compliance, and technology governance programs within highly regulated environments. I have spent over a decade helping organizations, from high-growth startups to global financial firms, to mature their security posture without sacrificing speed or practicality.
Currently serving as US CISO at Laser Digital, the digital assets arm of Nomura Group, based in New York. Previously a virtual CISO across multiple organizations, and before that Director of Information Security at Truepic and Director of IT at mParticle.
GolanTek is where I share what I have learned, written for humans, not just IT teams. No jargon walls. No vendor hype. Just practical guidance on navigating today's threat landscape.
What you will find here
Building programs that scale: governance, risk frameworks, team structure, and board communication.
The human side of security. Real tactics attackers use and how to build a culture that spots them.
SOC 2, ISO 27001, CMMC, GDPR, making compliance a business enabler, not a checkbox exercise.