Krag Brotby

Krag Brotby has more than twenty years in the computer security field with a focus on governance and architecture. A principal author of the 2005, 2006 and 2007 CISM review manual and related presentation materials, he also serves on the CISM Practice Analysis Task Force defining the practice area for the coming years. An early contributor to SABSA methodology and developer of the Business Process Assurance model (BPA), he has many years of experience with security governance issues and practices. As a contributor of CISM examination question, he has an intimate understanding of the type and level of security governance knowledge required to be successful at the examination.

A frequent presenter at security conferences, he has authored numerous white papers and articles on risk management, PKI, and training and is a foundation patent holder in the early days of digital rights management. Mr Brotby is based in California, USA.