As IOActive's Director of PCI Services, Mr. Spangenberg concentrates on using his knowledge of system and network penetration, web application analysis, and security auditing to provide clients with the necessary tools to meet both Federal and Industry compliancy requirements. Mr. Spangenberg has experience in the government, telecommunications, software, and financial services industries.

Mr. Spangenberg's familiarty with NIST 800 guidelines, COBIT, ISO 17799, GLBA, Sarbanes-Oxley, and HIPAA requirements makes him an asset to organizations seeking compliance with industry and government regulations. His broad background with security solutions enables him to determine best practices for managing confidentiality, security, and privacy issues from both a business perspective (such as process development, informed consent, and data statistics collection) and a technical perspective (host and perimeter security, access control and monitoring).

Mr. Spangenberg has also provided IT audit and internal security consulting services for a large travel company, participating in enterprise-level documentation, technical assessment, and remediation efforts with respect to the VISA Payment Card Industry compliance requirements. Ward has extensive experience in information quality assurance and is highly skilled with vulnerability assessment methodologies.

Before joining IOActive, Mr. Spangenberg worked and consulted for several clients and companies, focusing on network security and architecture, web application design and implementation, and system validation and integration. He has co-authored a technical book on Cisco switches. He regularly mentored college students, providing guidance and support in their pursuit of careers within networking and information security.