Our Team
André Doiron
Penetration tester CEH
André is a skilled certified penetration tester and Information Security Advisor at Secure State Cyber with more than 10 years experience in the area. He is a certified Ethical hacker (CEH) and certified penetration tester (GIAC GPEN) with background in SOC and Security Analysis. André is native in both English and French.
Competence areas:
Penetration Testing, Vulnerability Management, Phishing simulation, Security Monitoring and Priority Incident Handling, SANS CIS Controls, NIST CSF, ISO 27000, Social Engineering, Threat Risk Assessment, System Hardening, Identity Management, OSINT, Email Security.
Andrew Stewart
Senior Security Advisor & Business Manager
Andrew is a dedicated Security Professional with over 22 years’ experience as a Security Operations and Response Specialist (SORS) and Security consultant. He has experience of working with multi-disciplinary and International, Governmental, Commercial, and private IM/IT teams which encompass physical and cyber security, forensics, wireless, security architecture, network security elements, policing, APT’s and Threat Intelligence.
Competence areas:
Cybersecurity leadership, CISO, Risk Management, Threat Risk Assessment, Threat Detection and Response, Cyber Forensics, Business Continuity Management, Vulnerability Management, SOC Management, SIEM
Reg MacWilliams
Senior Security Advisor & Penetration Tester
Reg is a skilled CISSP-certified Cyber Security Specialist with over 20 years’ experience in the area. He has designed, implemented, audited, and tested security controls in multiple industries and is a senior penetration tester with certifications such as SANS GMOB (GIAC Mobile Device Security Analyst), SANS GWAPT (GIAC Web Application Penetration Tester), SANS GCIA (GIAC Certified Intrusion Analyst).
Competence areas:
Cybersecurity Program Development, Penetration Testing, Risk Management, Vulnerability Management, Network infrastructure Security, Cloud & Collaboration security controls, Mobile device and application security, XDR/SIEM, Threat Risk Assessments, NIST, CSF, ISO 27000, CIS Controls, Security Monitoring Programs, Wireless Infrastructure and Testing, Social Engineering, Endpoint Security (Hardening, AV/EDR), Forensics, Business Continuity Planning, Vendor Assessment, VPN and Remote Access Security.
Jan Karlsson
Vice President
Jan is Vice President for Secure State Cyber and a certified IT auditor (CISA) and risk manager (CRISC) with more than 20 years of experience in cybersecurity for public administration and large organizations. Much of the experience revolves around threat risk assessments, business continuity, audits and implementation of management systems based on the ISO 27000-series and NIST 800-53.
Jan is described by others as a team player with diplomatic talents that are showcased best in the complex interconnections between people, processes and technology. He is perceived as detailed, easy going, positive and professional with strong customer focus and ability to find ways forward in information security work based on his extensive experience.
