Cybersecurity Executive

Jim Nitterauer

Making organizations harder to hack and easier to trust for over three decades.

CISO, strategist, and speaker. I bridge the gap between the boardroom and the SOC — because security is a business problem first, and technology is just how we solve it.

Let's Talk About Me Read My Latest Insights

Executive Leadership

CISO, strategist, and board-level advisor. Built security programs from the ground up, led SOC 2, ISO 27001, PCI DSS, HIPAA, and NIST compliance initiatives, and served in senior leadership roles including Zix|AppRiver and Graylog.

About Me

Speaking & Training

20+ conferences and counting — DEF CON, RSA, BSides Las Vegas, and more. My talks are practical by design. I want audiences to walk away with something they can actually use on Monday morning.

Speaking

Thought Leadership

Published in CPO Magazine, Infosecurity Magazine, and Security Magazine. Writing on cybersecurity, compliance, AI, and the real decisions security leaders face every day.

Read Writing

Latest

Recent Writing

All posts

ComplianceCybersecurity

Why Your Corporate Emails Are Getting Blocked — And Who's Really to Blame (It's Not The Recipient)

Legitimate corporate emails from well-known companies are getting blocked by Spamhaus ZEN. The culprit in most cases? Google. Here's what's happening, why it's getting worse, and what your organization should do about it.

March 27, 2026Read more

CybersecurityEmail Security

Don't Make Your Email Filter Your First Line of Defense – Why organizations keep getting phished when the fix is in the DNS

Having worked in email filtering for more than 15 years, I know that proper DNS configuration can dramatically reduce your phishing exposure. Yet most organizations still rely almost entirely on their email filter.

March 19, 2026Read more

AICybersecurity

The Grace Period Is Over: AI Has Ended the Era of "Good Enough" Security Configurations

Hackerbot-claw ran autonomously for a week, scanned 47,000 repos, and compromised at least 6 major targets. No zero-days. No nation-state resources. Just AI and misconfiguration.

March 9, 2026Read more

ComplianceCybersecurity

29 Minutes. That's How Long You Have. What's Your MTTD — and Do You Actually Know It?

The 2026 CrowdStrike Global Threat Report finds that the average attacker breakout time has dropped to just 29 minutes. Fastest observed: 27 seconds. Does your detection and response program reflect this reality?

March 3, 2026Read more

View all posts

Speaking

20+ Conferences.
One Goal.

Practical security insights you can actually implement. I don't do theoretical frameworks that look great on slides and fall apart in the real world.

View Speaking History

DEF CONRSA ConferenceBSides Las VegasBlue Team ConHacker HaltedHouSecConCypherConNolaConBSides CharmITEN WIredCircleCityCon& more...

Ready to build something secure?

If you're building something that needs a security leader who's been in the trenches and in the boardroom — let's talk.

Get In Touch LinkedIn