Our Practitioners

Grant Ongers

CISO & Community Leader

Grant is the CTO and one of the co-founders of Secure Delivery. He’s an experienced CISO, with experience spanning development, operations and security. He’s built platforms for regulated industries for more than 10 years, has over 20 years managing operations from NOCs to mainframe and DBs. He also has over 30 years pushing the limits of (Info)Sec—mostly white-hat.

Grant’s community involvement is global, he is:

  • Staff at BSides (London, Las Vegas, and Cape Town)
  • Goon at DEF CON (USA) for nearly ten years and DC2721 co-founder
  • Staff at BlackHat (USA and EU)

Grant has sat on the OWASP® Foundation’s global board of directors OWASP for the last three years. Recently elected as the chair, he is looking forward to another year of working for the application security community to keep making the world a more secure place for everyone.

Expertise
  • Infosec Strategy
  • Governance, Risk & Compliance
  • Security Engineering
  • Security Research
  • Training & Development
Industries
  • Finance
  • Banking
  • Transport
  • Telecoms
Skills & Certifications
  • Certified Information Systems Security Professional (CISSP)
  • Security Leadership

Articles by Grant Ongers

Article Image
Security, API, CTF, Walkthrough

OWASP API Top 10 CTF Walk-through

So you wanna hack an API? Let's do that, let's analyse an API using the OWASP API Security Top 10 to guide our effort and hack it together. Maybe we'll capture some flags while we're at it?

Author
Grant Ongers
  • March 10, 2022

Some feedback from our clients.

People are at the centre of digital product security. Our approach means we work directly with the people making decisions, building and infuencing product development.

We love to work with these teams and we love to hear from them as to how they've found working with us. Here are some examples of the feedback we get from teams across our clients' organisations.

 

I like how you tied back Security to the four metrics metrics in Accelerate as well as SRE principles, that was very clear. I was actually already planning to recommend you to some people in my network :)

SRE Energy Sector
Engineering Foundations Course

[Practioner] clearly has a wealth of expertise in application security, and uses this very effectively to provide a highly informative course that includes insights and recommendations specific to our business domain. I am confident that other business domains would be equally served due to [Practitioner]'s range of experience.

Engineering Medical Equipment & Devices Sector
Decision Makers Foundations Course

The hands on sessions of seeing an issue and then fixing it in the code really brought it to life. Letting us do the fixing rather than watching keeps you involved, I thought the site was excellent

Engineering Retail Sector
Secure Coding Workshop

[Practitioner]'s knowledge and experience is exceptional. I really liked the Case Studies. I could always use more.

IT Management Medical Equipment & Devices Sector
Decision-Makers Foundations Course

Good to refresh and increase knowledge, labs were enjoyable and illustrated the points well.

Engineering Energy Sector
Secure Coding Workshop

[Practioner] was engaging, knowledgable and great to listen to and work with

Engineering Retail Sector
Engineering Foundations Course

Great news, the amazing [Practitioner] from Secure Delivery has agreed to deliver security training again this year!

Tech Leadership Energy Sector
Engineering Foundations Course

Security is part of delivery

and we'll help make it happen

If you'd like to find out more about securing and raising the quality of your digital product delivery to stand out from the competition then get in touch with us. We'd love to have a chat about our proven approach and see how we can best help your organisation succeed.