verified_user Security Architecture & Engineering Leadership

Director of
Security Engineering.

Over two decades of experience building security programs that bridge the gap between executive strategy and engineering execution — from government agencies to high-growth SaaS.

David Andersson
Core Competencies

What I Do

account_tree

Engineering Leadership

Turning security strategy into engineering reality. Staff and budget ownership, building teams, and embedding security into the development lifecycle across distributed organizations.

Security Engineering Team Building
encrypted

Information Security

Designing and implementing security programs grounded in ISO 27001, SOC 2, and risk management — from policy to production controls.

ISO 27001 Risk Management
groups_3

Advisory & Consulting

Senior advisory across industries — interim CISO engagements, security architecture reviews, and hands-on guidance for organizations building their security posture.

Interim CISO Security Architecture

Technical Insights

View All Articles
Metrics That Matter: Driving AppSec Success with Data-Driven Insights (OWASP Global AppSec)
May 2025 speaking

Metrics That Matter: Driving AppSec Success with Data-Driven Insights (OWASP Global AppSec)

How to collect, visualize, and communicate actionable AppSec metrics that bridge the gap between security engineering and leadership priorities.

January 2025

5 recommendations when starting an appsec program

If you want to build an appsec program, here are five valuable recommendations to take into consideration.

Let's talk security.

Available for consulting engagements, advisory roles, and speaking opportunities. Let's find the right fit.

Get in Touch send View Experience