Lucas Morris

Lucas joined Security Risk Advisors in 2021 after fifteen years working at another professional services firm, leading both Penetration Testing and the Virtual Information Security Office services. Lucas is a prolific speaker and nationally recognized leader within the Information Security community, having spoken at DerbyCon, DEFCON, Black Hat, and various regional security groups. Lucas focuses on reducing enterprise security risk through technical assessments including red and purple teaming as well as the implementation of governance and technology. He has acted as both a fractional and interim CISO for multiple organizations and works with client leadership to identify the real business impact of identified gaps and develops cybersecurity strategies that focus on the need to bring security beyond the technology, taking a wholistic approach to the people, processes, and technology. In addition to his work at SRA, Lucas is an Adjunct Professor of Cybersecurity in the Global Cybersecurity Institute at the Rochester Institute of Technology.