© VCSO LLC. All Rights Reserved.
Nick Shevelyov is the Founder and Managing Partner at vCSO.ai, a cybersecurity and data privacy Advisory and Consulting firm that helps businesses improve their cybersecurity posture while advising cybersecurity product companies on building better businesses.
He is the former Chief Security Officer (2007 - 2021) at Silicon Valley Bank (SVB), where he was accountable for defending the bank of the innovation economy for 15 years. At SVB, he was the Chief Security and Privacy Officer (2007-2018), then the Chief Information Officer (2018-2020) , and finished his career at the bank as the Chief Information Security Officer (CISO).
He is the author of “Cyber War…and Peace,” which has been published in various periodicals. He sits on the Board of Directors of the Bay Area CSO Council and advises several Venture Capital and Private Equity firms.
Previously, he led Cybersecurity and Data Privacy projects globally for Deloitte's Enterprise Risk Services group.
Experienced in utilizing Python, SQL, and Bash for tasks such as threat analysis, log handling, and automation. Proficient with tools such as Splunk, Nessus, Wireshark, Suricata, and tcpdump.
Actively engaged in practical Incident Response, Intrusion Detection, and Vulnerability Management projects to ensure robust cybersecurity practices.
Currently preparing for the AWS Solutions Architect certification to further solidify my expertise in cybersecurity.
Former Division I Water Polo player with a strong dedication to teamwork and achieving goals.
Duncan Weinman is a security analyst supporting initiatives at vCSO.ai including compliance and vulnerability management. He has a broad interest in all aspects of information security, from experience with Physical Security and Access Management in the Healthcare industry through to his passion for offensive security and Security Operations. He holds a degree in Cybersecurity and multiple industry certifications.
Berk Algan is a seasoned cybersecurity risk executive and former auditor with a reputation for implementing exceptional cybersecurity, governance and risk management processes.
Bringing close to 25 years of experience in cyber and technology risk management, Berk remains committed to continuous learning in this dynamic field. During the initial phase of his career, Berk served as an auditor and cyber risk consultant at a Big 4 firm, focusing on major technology companies such as Google, Apple, and Facebook. Later, Berk transitioned into the banking sector, where he successfully established and led cyber risk, governance, and business continuity programs for Silicon Valley Bank.
Presently, Berk provides fractional Chief Information Security Officer (vCISO) services to regulated companies, collaborating with domain experts. As the vCISO for these organizations, Berk offers specialized expertise, enhanced security program management, improved governance, risk management, compliance, and a fortified organizational security posture.
With over 10 years of experience in Application and Container Security, Jesus Martinez drives security strategies for digital banking and application environments, integrating best practices into Agile and CI/CD frameworks. His work emphasizes building a culture of security awareness and collaboration across teams.
His expertise spans threat modeling, vulnerability assessments, and secure SDLC practices, as well as security automation within CI/CD pipelines. He is skilled in implementing application and container security controls, aligning security efforts with development workflows to enhance secure and efficient software delivery.
Throughout his career, Jesus Martinez has led cross-functional teams and mentored security professionals, working closely with development and operations to strengthen overall security posture. He is committed to advancing security strategies that balance innovation with robust risk management and compliance.
What you can’t see can hurt you. We identify the blind spots in your internal network
The unknown is a threat. Our external network testing highlights vulnerabilities that could be exploited from the internet
Web apps are the front door of your business. We make sure its locked down.
Compliance is about reducing uncertainty. We help you navigate complex regulatory environments reducing the chance of costly breaches and regulatory penalties.
If you are building mobile apps, we help you check if they are vulnerable.
Your sensitive data may already have been leaked on dark web criminal networks. We discover that sensitive data and share with you a threat profile report on your business so that you can be better prepared.
