Rocco Grillo is an Executive Managing Director serving on Stroz Friedberg’s executive management team. In this role, Mr. Grillo is responsible for the oversight and supervision of the firm’s global Cyber Resilience business, which includes the teams that perform cybersecurity, incident response investigation, red team penetration testing, and application security services. He serves as a trusted advisor to clients, including boards and executive management teams, on a broad range of cybersecurity and incident response investigation services across all industries.
Mr. Grillo has more than 25 years of experience providing organizations with security and risk management services. He is an internationally recognized expert in the field of information security and incident response investigations and has assisted Fortune 500 corporations, law enforcement agencies, major law firms, industry threat intelligence organizations, as well as industry regulators with all matters involving cybersecurity, incident response and computer forensics, in addition to other security threat services. Mr. Grillo has advised clients on some of the most complex cybersecurity initiatives and coordinated incident response efforts for some of the largest security breaches over the last decade.
He is an affiliate Board Advisor for FS-ISAC, assisting in the development of annual tabletop exercises to assess the readiness of financial institutions in the event of a cyber-attack. He is also actively involved with the NH-ISAC, the Retail-CISC, the Automotive-ISAC and is a member of the Shared Assessments Program Steering Committee Board as well the CLM Cyber Liability Council. He has spoken on information security at the RSA Conference, the IT Policy Compliance Group, the ISSA, IIA, (i-4), and for other industry organizations. He has been quoted in The Wall Street Journal, The New York Times, and other publications.
Prior to joining Stroz Friedberg, Mr. Grillo was a Managing Director and Global Leader of Protiviti’s Incident Response & Forensics Investigations practice. He previously helped develop RedSiren Technologies, a leading Managed Security Services Provider that evolved out of Carnegie Mellon. Prior to RedSiren, he held management positions with Lucent Technologies.