Security Professional
and Leader Matthew Honea

Tinkerer in a global workshop





I am currently the CISO at Hippocratic AI, a transformative AI healthcare startup focused on patient care and safety. I am also an advisor to Cygnvs and iHealthLabs.


My research and writings below focus on enterprise cybersecurity and quantification of individual and aggregated cyber risk for both public and private organizations.


Select Publications

August 2024
Security Week

Secure by Default: What It Means for the Modern Enterprise

Full Article
January 2024
Security Week

Continuity in Chaos: Applying Time-Tested Incident Response

Full Article
October 2023
Compliance Week

How to prepare for and prove network compliance

Full Article
August 2023
Security Week

Securing email servers to protect corporate infrastructure

Full Article
June 2023
Security Week

Finding the Golden Container Ship

Full Article
May 2023
Security Week

Unpacking the SBOMB Bombshell

Full Article
December 2022
The CISO Series

What is the best way to gauge a company’s cyber health

Full Article
December 2020
Insurance Times

How cryptojacking affects insurers' bottom line

Full Article
October 2019
Aon

Silent Cyber Scenario: Opening the Flood Gates

Full Whitepaper
October 2019
IASA Org

Lost in the Cyber Data Breach Noise

Full Article
May 2019
Risk Management

The Case for Uniform Data Breach Reporting

Full Article
March 2019
Risk and Insurance

As Cyber Crime Intensifies, Focus on Critical Exposures

Full Article
December 2018
Guidewire Blog

The Curious Case of Hacker Bug Bounties

Full Article
May 2018
Property and Casualty 360

We can’t fix all the new vulnerabilities, so let’s fix the system

Full Article
December 2017
Help Net Security

Rethinking corporate risk practices in the age of cyber

Full Article
October 2017
Tech Target

Recent ransomware attacks: Is it an epidemic or overblown?

Full Article
July 2017
Lloyd's of London

Introducing two scenarios to quantify cyber-risk aggregation

Full Whitepaper

July 2024
Federal Times

Navigating fed cybersecurity: Strategies for compliance

Full Article
November 2023
Security Week

Narrowing the Focus of AI in Security

Full Article
September 2023
Security Week

Finding Your Way in Cloud Security

Full Article
July 2023
Security Week

Verifying software integrity with Sigstore

Full Article
June 2023
Cyber Defense Magazine

Revisting and budgeting your network security architecture

Full Article
March 2023
Forward Networks Blog

Joining Forward Networks to build security into networks

Full Article
February 2022
SmartNews Careers

What it takes to build a world class security team

Webinar Link / Profile
October 2020
Dark Reading

Cryptojacking: The Unseen Threat

Full Article
June 2019
Tech Republic

Why data breaches keep happening

Full Article
April 2019
Dark Reading

Ensuring the Bounty Isn't on White Hat Hackers' Heads

Full Article
March 2019
Guidewire Blog

When Secure Shell Becomes Less Than Secure

Full Article
November 2018
Canadian Underwriter

The flood risk that might be unaccounted for

Full Article
January 2018
Dark Reading

Cyber Insurance Builds for Business

Full Article
December 2017
VM Blog

A Shifting (and Smarter) Approach to Cyber Risk

Full Article
October 2017
Insurance Journal

Why Mandating Cyber Reporting, Basic Coverage is Right

Full Article
April 2017
MIT Tech Review

Insurers Scramble to Put a Price on a Cyber Catastrophe

Full Article
August 2017
Reuters

Corporate profits to take more hits from Ukraine cyber attack

Full Article

Select Interviews and Invited Talks

Risk and Insurance Management Society

SWISH GIST 24

Discussing the practical security applications for Attack Surface Management using Digital Twin technology.

More Info

Security Field Day

Security Field Day

Tech Field Day is a sponsored session to discuss challenges with specialists from around the world. I present one of the best ways to find and fix network device vulnerabilities.

Watch Online

Brighttalk Webinar

BrightTalk Webinar

I discuss using network modeling and digital twin platforms to protect networks to uncover blind spots, detect vulnerable devices, and locate and isolate compromised devices.

Watch Online

Brighttalk Webinar

CISO Series

I speak on the Cybersecurity headlines for October, sharing my thoughts on the latest security news around new attack methods, technology shifts, and legal rulings.

Watch Online

USJAPANCouncil

US Japan Council

As an invited member to speak at their monthly Benkyokai, I engaged with top leaders on the most important cyber threats faced by US and Japanese businesses.

Watch Online

SecuritySummit

The Security Summit

My predicitions on regulating cryptocurrency payments, hacking-back against criminal gangs, and cyber-insurance market disturbances, with Rich Friedburg and Ryan Castagna

Watch Online

Security Conversations

Security Conversations

Security Conversations is a cybersecurity podcast series curated by journalist and security strategist Ryan Naraine. I discuss a variety of areas, including cyber insurance and my career in the industry.

Listen Online

SVJP

Silicon Valley Japan Project

Invited guest and cybersecurity speaker at the annual excutive gathering and technology conference for the global members of Silicon Valley Japan Platform in San Francisco.

More Info

National Cybersecurity Alliance

National Cybersecurity Alliance

The National Cybersecurity Alliance is a public-private partnership promoting cybersecurity education and awareness. I joined a panel of experts to discuss insurance and security.

Watch Online

UC Berkeley Executive Education

Haas Business @ UC Berkeley

I speak on a variety of topics related to cyber insurance, cyber risk, and cyber modeling for capital allocation. Clients include global executives enrolled in a tailored program for business education.

More Info

Norcal Group

Norcal Group Connect

Healthcare providers are seeing a huge uptick in risk, specifically around the data they hold and the services they provide. I present on this risk, trends, and how it affects their business.

More Info

Advisen

The Cyber Risks and Opportunities of the Internet of Things

Internet connected devices continue to rise expoentially. These new devices act as entry and persitance points for attackers in corporate networks. I discuss the risks of these devices.

Watch Online

Insurance Insider

Mitigating Global Cyber Risk Systemic Implications

Insurers are helping with financial damages from attackers, but how can they keep one step ahead? I discus the current threat outlook alongside the following insurance industry leaders.

Watch Online

NetDiligence

Cyber Risk Summit

Bug Bounty and Vulnerability Disclosure programs are becoming critical for reducing risk. I discussed key findings on a panel with Deborah Chang of HackerOne and John Farley of A.J. Gallagher.

More Info

Casualty Actuarial Society

Casualty Actuarial Society

The CAS annual conference accepts a finite selection of new insurance research. I presented on cyber insurance and new modeling methods to quantify the intersection of physical and cyber risk.

More Info

Risk and Insurance Management Society

RIMS Western Conference

Risk and Insurance Management Society is a professional organization with over 79 globally distributed chapters. I spoke on cyber insurance along with head influencers from AIG, Beazley and Marsh.

More Info

Guidewire Connections

Guidewire Connections

Connections is an industry leading event bringing together thousands of brokers and insurers around the world. I presented on my newly released personal cyber risk product in the analytics and data track.

More Info

About Me

Honea


Security professional and industry speaker. My experience spans across media, finance, insurance, and government with emphasis on software products, data science, and enterprise security. I work directly with our customers, vendors, and partners to ensure success.

In 2019, I was recognized as one of the most influential young people in Silicon Valley business and named to "40 under 40".

Silicon Valley Business Journal




Connect