50 Information Security Influencers You Should Be Following

by Ellen Zhang on Monday September 28, 2020

Contact Us
Free Demo
Chat

A significant portion of an infosec pro's workweek is devoted to keeping up with all things cyber, from new threats to new tools. Following influencers on their blogs, social media, and other online presences helps us stay up-to-date with the latest in infosecurity.

We've put together a list of 50 InfoSec influencers worthy of a follow, based on their extensive experience, platform, and personality. Many are accomplished speakers on the topic of security; most are currently in active security roles; and some even have personal sites devoted to digital topics. The 50 influencers listed below are not ranked in any way and are listed in alphabetical order. Each individual's name is linked to their LinkedIn or Facebook profile (provided we were able to find one), and we've also included links to their personal and company websites, Twitter profiles, and other relevant information you need to know to keep up with these thought leaders online.

Adrian Sanabria

Adrian Sanabria

Adrian is a cybersecurity veteran and the Co-Founder of Savage Security, an InfoSec security consulting company that offers all of its "successful, proven research" to anyone who needs it, free of charge. Sanabria is also the Founder of BSides Knoxville, a conference tackling issues directly and indirectly related to security. If you're interested in hearing what he has to say, you can follow him on his active Twitter account, or catch up with him at one of his frequent speaking engagements.

Ashkan Soltani

Ashkan Soltani

Ashkan is an Influencer with quite the resume. A few of his achievements include; Co-Founder, Investigative Reporter, Chief Technologist for the Federal Trade Commission and even Former Senior Advisor to the Chief Technology Officer at the White House. Currently, he's taking on a research and consulting venture at Soltani LLC. His Twitter feed is a wealth of current news, useful insights, and great retweets to look into for research.

Bill Brenner

Bill Brenner

Brenner started out in reporting before moving into tech and security content. He's served as Editor and Chief Content Strategist for some of the most well-known tech websites and security companies on the web. Bill has put InfoSec content just about everywhere it's desired. Brenner also shares his security knowledge via his active Twitter account.

Brian Honan

Brian Honan

Brian Honan has been in the Information Security space for over a decade, and in the technology space for more than 30 years. His experience has him at the forefront of some of the biggest changes in the world of security, including being an Ambassador for the GDPR Awareness Coalition. If you're interested in following Brian, his Twitter is full of value and Honan regularly publishes articles on LinkedIn Pulse regarding InfoSec topics.

Brian Krebs

Brian Krebs

Krebs has an eye for security, a talent for journalism and a passion to make computer security easy-to-understand for all. His security news site, Krebs on Security, is the place to find in-depth tutorials, warnings, and news. The engagement is incredible with a large community of avid readers chiming in on posts in the comments section. The site is a go-to for professionals and beginners alike. You can also follow Brian on Twitter, where he often shares security stories and even retweets breaking security news.

Bruce Schneier

Bruce Schneier

The Economist refers to Bruce Schneier as a "guru" in the area of technology and privacy. With a prolific 13 books, an active speaking schedule and being called upon by both industry leaders and government officials for his opinion, Schneier is an expert of experts. His personal site has new content almost daily. Bruce's newsletter (Crypto-Gram) is one of the most popular digital publications in InfoSec. Catch up with him on Facebook or, of course, his personal site.

Chris Wysopal

Chris Wysopal

Chris Wysopal has been engineering security since the early 1990's. His background includes development, product testing, extensive world-class vulnerability testing and co-founding a software security provider (Veracode). Wysopal is a frequent contributor to CSO Online, an online news site devoted to security. In addition to the occasional InfoSec speaking gig, you can find Chris on Twitter, tweeting some of the most interesting cyber content he finds daily.

Costin Raiu

Costin Raiu

  • Twitter: @craiu
  • Company/Title: Director of Global Research and Analysis Team at Kaspersky Lab

When it comes to malware there are few men and women more knowledgeable than Costin Raiu. For over 20 years, Raiu has been working on software to enhance user security. For 15 years, he's been working hard for Kaspersky and now resides as the Director of Research. If you want to keep up with Costin, you'll want to follow him on Twitter, where he's most active.

Dan Goodin

Dan Goodin

Dan Goodin is one of the top journalists in the world when it comes to all things hacking. With nearly two decades of experience, Dan is the Security Editor and a journalist for Ars Technica (often posting multiple times per week). In addition to keeping up with Goodin's reporting, you can check him out on Twitter where he tweets about current events.

Dan Kaminsky

Dan Kaminsky

Dan Kaminsky is known by many for his work on DNS Spoofing and has had an extensive career devoted to keeping the internet safe. He's the Founder and Chief Scientist as White Ops, but you also may see him speaking at security events, like Black Hat. Kaminsky has an infrequent, yet extensive blog. However, he can be found on Twitter filling his feed with security news and the occasional funny video.

Daniel Miessler

Daniel Miessler

Miessler has created a huge cache of value in the form of his website. Over 2500 written and audio resources are available, including in-depth tutorials and a weekly 30-minute podcast. He's also the Director of Advisory Services at IOActive, where he is a regular speaker and panelist. Daniel has very recently launched a new company, named Helios. In addition to the lively website, Miessler's Twitter is full of security value and hilarious memes.

Dave Lewis

Dave Lewis

Dave Lewis is a bit of a personality in the Information Security Industry. Between international speaking gigs and being the contributor for Forbes whenever there's big security news, he's a busy person. Lewis still finds time to contribute to LiquidMatrix and CSOnline as well as advising companies on their security. His personality definitely shows in everything he does, especially his Twitter account, where he is most active.

Dave Shackleford

Dave Shackleford

Being a security expert is incredibly valuable. The ability to implement procedures and tools that keep data safe is at a premium. More so, is the ability to teach others about these InfoSec topics. Dave Shackleford is skilled in many security facets and loves to instruct others. He frequents events from both SANS and IANS. Shackleford is on Twitter, where his feed is full of both his expertise and personality.

Dr. Anton Chuvakin

Dr. Anton Chuvakin

As the title suggests, Dr. Chuvakin has a Ph.D. in Physics. While working toward his doctorate, he was also cramming in a wealth of knowledge about "OS design, networking, algorithms, databases, security" and more. He's now the Vice President of Research at Gartner, and his blog is a jewel. Every month, the Doctor compiles popular posts and a host of links that any security professional could get lost in (while finding value). He's also a prolific Tweeter, where he sends out great cyber insights.

Eleanor Dallaway

Eleanor Dallaway

As the Editor of Infosecurity Magazine, Eleanor is at the forefront of the security industry. The magazine is a beacon of news, opinion, and knowledge for any level of professional in the tech world. Dallaway's expertise goes beyond InfoSec into the retail and commerce space, an industry often plagued with breaches. As with most Security Influencers, you can catch up with Eleanor via her Twitter.

Erin Jacobs

Erin Jacobs

Erin Jacobs adds as much of her personality as she does her knowledge into the InfoSec community. Jacobs is a well-known security speaker at top industry events, such as BlackHat and ThotCon. She runs the Security Sociability blog and tweets occasionally, but you can find out all upcoming events and news at Urbane Security's website.

Eugene Kaspersky

Eugene Kaspersky

Eugene Kaspersky is one of the longest standing experts in the security industry. His last name is synonymous with top-rated security software. Based in Moscow, but you won't find him there often. In addition to InfoSec influencer, he's a world traveler, prolific blogger, and avid skier. Kaspersky is most active on his blog, where he writes multiple posts a week (when not on the slopes).

Eva Galperin

Eva Galperin

Eva Galperin is an expert on the topic of malware. Her research has been instrumental in highlighting malicious campaigns across the globe. Galperin specializes in helping vulnerable populations stay safe from a hostile digital world. She regularly writes educational resources and whitepapers that help individuals better protect their sensitive information. You can find Eva active on Twitter giving opinions and sharing resources on the security industry.

Gene Kim

Gene Kim

Thanks in part to Gene Kim's interest in the Morris Worm, the world has TripWire. His passion for security remains all these years later, and Kim is now focused on writing books that shape the industry. Some of his published work includes; DevOps Handbook, The Phoenix Project and Accelerate. If you want to hear what Gene is saying nowadays, you'll want to check out his Twitter feed.

Graham Cluley

Graham Cluley

Since the early 1990's, Graham Cluley has been at the head of the InfoSec world. His expertise has led him to roles with some of the biggest security names, like McAfee and Sophos. In 2011, he was inducted into the InfoSecurity Hall of Fame in Europe. Now, he concentrates on cybercrime news and speaking on security issues all over the world. To see him sharing insights and advocating for privacy, you can follow Graham on Twitter.

InfoSec Taylor Swift

InfoSec Taylor Swift

Taylor Swift is perhaps the most elusive InfoSec Influencer on this list. Anonymity is the plan for this half parody/half security pro. She's been able to make everyday individuals interested in their privacy and online security while generating buzz in the professional community. In addition to the occasional post on the Decent Security blog, Taylor is still rocking the tumblr. However, she's most active (and hilarious) on Twitter where she informs and entertains more than 200,000 followers.

Jack Daniel

Jack Daniel

One of the most intriguing things about Jack Daniel is his "real world" experience. Everything Jack knows about InfoSec comes from a desire to learn it, not from college courses, but from everyday life on the Internet. Jack has added much to the security community as a talented professional and technologist. His InfoSec wiki (personal site link above) is a great resource, and his hyperactive Twitter feed showcases his knowledge and personality.

Jake Williams

Jake Williams

Jake Williams is an educator, InfoSec writer and an expert in breaking the "stuff other people build". Deconstructing and rebuilding software to be safer and more secure is what Williams does for a living. In addition to helping creators make their software better, he helps security professionals through writing for SANS, mentorship and an active conference speaking schedule. Check out his Twitter where he is having "Adult discussions about infosec..."

James Arlen

James Arlen

James Arlen is not only an InfoSec influencer, but also a true educator. Arlen is a professor of Computer Science and works with two educational institutions. Even though James is in the classroom, he still works in the security field and manages to contribute as a blogger and podcaster. If you're interested in reading up on James, he's created a database of all his tweets and posts on his personal blog.

Javvad Malik

Javvad Malik

InfoSec analyst, advisor, advocate, event coordinator, public speaker and blogger are just a few terms to describe Javvad Malik. But Javvad would rather be known "just a guy who likes to ponder on things." With more than a decade of experience under his belt, Malik has advised and consulted with everyone from technology vendors to end users. Recently, Malik has been most excited about storytelling via his YouTube Channel.

Jayson E. Street

Jayson E. Street

Jayson is quite possibly the road warrior of InfoSec. In addition to heading up the security at SphereNY, Street is also the Global Ambassador and Coordinator for DEF CON. If you want to catch up with Jayson, you'll have to be quick and take a look at his packed calendar. His personality and expertise are on display for all to see on his Twitter account and site devoted to awkward hugs.

Jeremiah Grossman

Jeremiah Grossman

Jeremiah Grossman travels the world for, in his own words, three reasons; "to meet new people, and fight them, or hack them". In addition to being one of the top minds in InfoSec, Grossman is also a black belt in Brazilian Jiu-Jitsu. These two traits make him a tough on cyber criminals and just about anyone else. Jeremiah is an active blogger and Twitter user, and he's excited about his latest startup, Bit Discovery.

Jérôme Segura

Jérôme Segura

Jérôme has more than a decade of experience in the InfoSec industry and specializes in specific web threats such as malware, online fraud, and other malicious Internet crimes. Segura is one of the most active bloggers currently in a security role, and you can find his writings on the Malwarebytes blog. Jérôme is often in the media spotlight, as he is asked to make appearances and speak on security news.

Joseph Steinberg

Joseph Steinberg

Joseph has reached the height of the InfoSec world in terms of certifications and education. He is one of fewer than 30 individuals to hold all of the advanced information security certifications. Steinberg has created over 100 security inventions using his vast knowledge. Joseph writes columns that are followed by millions interested in all things cyber and is a security consultant to cyber security consulting firms. His personal site is a hub for Steinberg's speaking engagements, media appearances, and articles.

Josh Corman

Josh Corman

Josh Corman is a philosopher, Security Officer, TEDx speaker, Influencer and a self-described Zombie Killer. Whether or not he kills the undead, we don't know. However, he is a defender against the hordes of cyber threats. Corman uses his security expertise to think ahead and create a better online future. Josh is also teaching others as an Expert Faculty member of IANS. Check in on Corman at his active and entertaining Twitter handle.

Katie Moussouris

Katie Moussouris

Katie Moussouris is an entrepreneur and authority on the topic of vulnerabilities and bug bounties. If a company wants to find out where they're weak by having others try to hack them, they'll probably call Katie. She did (and does) just that for the Department of Defense as well as working with some of the most prestigious universities in the world. If you want to find her insights, you'll have to catch her speaking or follow her on Twitter.

Kevin Beaumont

Kevin Beaumont

Kevin Beaumont has a long track record of success with some of the largest companies over his career of 20 years. Most recently, Kevin has been writing on his blog and tweeting, as he puts it, "the weird stuff". His personality is all over his social profiles including fancy, self-given titles and quirky retweets.

Kevin Mitnick

Kevin Mitnick

Kevin Mitnick is famous, or infamous, for hacking into 40 different corporations. The hacks were done for the challenge, not for nefarious gain. However, the stunt landed Mitnick on the Most Wanted List. Kevin's unique background has made him a highly sought-after public figure in the InfoSec community and the media. In addition to public speaking, Mitnick is an author of multiple security-related books including his autobiography about being a wanted man.

Kim Zetter

Kim Zetter

  • Twitter: @KimZetter
  • Company/Title: Award-winning Cybersecurity Journalist, Author, Contributor at Motherboard, The Intercept

Kim got her start in writing and editing, and she still uses her talent with words for InfoSec writing for both Motherboard and The Intercept. Zetter's work in investigative journalism is award-winning and her articles have propelled the conversation on many current affairs, not only in tech. Kim has also penned several books, on topics from the digital world to food. You can follow her on Twitter, where she shares interesting reads and observations, many around breaking news.

Lenny Zeltser

Lenny Zeltser, as he puts it, "advances information security" in multiple ways. First, he creates and works on the products that help keep malware from doing its job. Lenny also educates those who will work toward a more secure cyber-future as an author and educator for SANS. Zeltser also puts his thoughts, in a very organized fashion, on his blog for all to see. He also tweets his take on security conferences and the latest tech news.

Lorenzo Franceschi-Bicchierai

Lorenzo Franceschi-Bicchierai

Over the last several years Vice has been at the forefront of news. Motherboard is Vice's tech and science news site, and Lorenzo Franceschi-Bicchierai is one of the site's writers who covers the cyber topics. Before that, Franceschi-Bicchierai was writing at Mashable and Wired. Lorenzo covers topics like nation state hacks, privacy, and cryptocurrency.

Martin McKeay

Martin McKeay

  • Twitter: @mckeay
  • Company/Title: Security Expert and Blogger, Security Advocate for Akamai, creator Network Security Blog and Network Security Podcast

Martin McKeay is a seasoned IT and Security professional and has been talking about the industry via blogs and podcasts for longer than most. McKeay is a seasoned speaker and panelist and currently the Senior Editor for Akamai. Twitter seems to be his preferred outlet for both his personality and his expertise.

Matt Tait

Matt Tait

There are many influencers on the list who understand security well. Matt Tait is an InfoSec professional that understands both security, as well as the law, and how those two interact in the world today. Tait is the Senior Cybersecurity Fellow at Robert S. Strauss Center for International Security and Law at the University of Texas at Austin. To keep tabs on Matt, you can read him on the LawFare blog, or follow him on Twitter for his take on legal and security matters.

Matthieu Suiche

Matthieu Suiche

Matthieu is a serial entrepreneur, hacker and public speaker in the tech industry. He runs Comae Technologies, a security firm that works with enterprise clients to protect, prevent and recover from threats. Matthieu infrequently blogs on his personal Medium blog and tweets about both his professional and personal interests.

Mikko Hypponen

Mikko Hypponen

  • Twitter: @mikko
  • Company/Title: Chief Research Officer (CRO) of F-Secure, Writer, TED Speaker
  • Personal Website

Mikko is a cyber sleuth that has discovered viruses and ousted any number of cyber criminals in his nearly 30-year tenure at F-Secure.  When he's not hunting down malware and their creators, he's being sought out for his take on security. Hypponen has done multiple Ted Talks, been a news correspondent for InfoSec and has written a vast number of articles on cyber topics related to his research.

Paul Asadoorian

Paul Asadoorian

Paul Asadoorian is a well-known influencer in the InfoSec community and runs one of the most popular security podcast networks online, Security Weekly. A full content publishing schedule is only part of Paul's work life. Asadoorian also runs the solutions provider, Offensive Countermeasures. You can catch Paul on one of hundreds of episodes of his podcasts via audio and/or video.

Richard Bejtlich

Richard Bejtlich

Richard Bejtlich is ready to fight against threats in both the digital and physical world. His experience with InfoSec began in the Air Force. Now, he advises some of the largest security companies on the planet and has written six books on digital security. Richard also studies both Brazilian Jiu-Jitsu and Krav Maga. Bejtlich frequently blogs on his personal site and fills his Twitter feed with his take on security news.

Rik Ferguson

Rik Ferguson

Rik is a spokesperson, frequently interviewed by top news organizations, a columnist for the largest security publications in the world and a public speaker around the InfoSec circuit. However, Ferguson's focus is on researching both online threats and looking into the underground economy of the digital world. Rick is active on Twitter, where he shares his work travels and "some non-security stuff too."

Runa Sandvik

Runa Sandvik

There's a large crossover between InfoSec and legislation. Data laws and policy are increasing, and it's at this point you'll find Runa Sandvik. Specifically, she helps journalists understand security in a way that helps them inform the community. In addition to her work at The New York Times, Sandvik is an accomplished public speaker.

Swati Khandelwal

Swati Khandelwal

Swati Khandelwal is the Chief Technical Writer at one of the most visited InfoSec news sites in the world, The Hacker News. After graduating with a Masters in Information Technology, Swati quickly found a place reporting on current events in the security industry. The best was to get the most from this influencer is to keep an eye out for her articles. Khandelwal frequently publishes posts there and tweets whenever a new article is live.

The Grugq

The Grugq

The Grugq has been an InfoSec influencer for decades by keynoting conferences and working security with large businesses and new startups alike. Grugq is constantly churning out content for his personal blog, Comae's blog and an incredible amount of Tweets. If you want to keep up with The Grugq, you can find him on Twitter.

Theresa Payton

Theresa Payton

Theresa Payton is trying to cause outrage and influencing the InfoSec world via reality television. The CBS show, Hunted, highlights the ease at which skilled individuals can track just about anyone. It's meant to highlight and spread awareness to a sobering reality. In addition to the show and running her security companies, Payton is a sought-after keynote speaker.

Troy Hunt

Troy Hunt

  • Twitter: @troyhunt
  • Company/Title: Microsoft Regional Director and MVP for Developer Security, Creator of haveibeenpwned
  • Personal Website

Troy Hunt is on both sides of the InfoSec industry. On the developer and security professional side, Troy travels the world as a Microsoft Regional Director speaking and writing. He's speaking at events and helping developers and other InfoSec pros build better, safer products. Hunt also helps users who have been affected by data breaches via his tool that shows if your information has been exposed as the result of a breach.

Wei Chen

Wei Chen

Wei Chen is a top researcher and developer in InfoSec and has become a self-taught influencer on our list. Chen is also a major contributor to the world's largest open-source penetration testing software, Metasploit. Otherwise known as "sinn3r" in many online profiles, Wei doesn't seem to be active on social, but he does Tweet fairly frequently about matters of security and development.

Wendy Nather

Wendy Nather

Whether it's researching financial and enterprise security or leading a team of CISO strategists, Wendy Nather is a very influential InfoSec professional. For over 30 years, Nather has been working in the IT and Security industry. Keeping tabs on Wendy is a matter of following her on Twitter and listening to her insights and opinions on current tech and security news.

Tags:  Best of InfoSec

Related Blog Posts

Recommended Resources

The Definitive Guide to Data Loss Prevention
The Definitive Guide to Data Loss Prevention

All the essential information you need about DLP in one eBook.

Get the Guide
6 Cybersecurity Thought Leaders on Data Protection
6 Cybersecurity Thought Leaders on Data Protection

Expert views on the challenges of today & tomorrow.

Get the Guide
Digital Guardian Technical Overview
Digital Guardian Technical Overview

The details on our platform architecture, how it works, and your deployment options.

Get the Guide