The official corporate security response blog
@MSFTSecResponse
How to Report a Vulnerability to the MSRC
Get alerts when we update our blog!
Mike ReaveyDirector, Microsoft Security Response Center, Trustworthy ComputingMicrosoft Corp.
Mike Reavey is the director of the Microsoft Security Response Center (MSRC) in the Trustworthy Computing Group at Microsoft Corp. In this role, Reavey leads Microsoft's security response team in detecting and addressing software vulnerabilities in Microsoft products. Additionally, Reavey engages with cross-Microsoft product groups and the external researcher community to proactively identify security threats and help keep customers protected.
Reavey has worked with the MSRC since 2003, continually aiming to improve the team's response framework. Most notably, Reavey was very involved in resolving the Zotob, Sasser and Blaster virus outbreaks.
Prior to joining Microsoft, Reavey was a team leader for the Air Force Communications Agency and the 92nd Information Warfare Squadron in the U.S. Air Force. In this role, he worked to secure and optimize global air force networks.
Reavey was drawn to Microsoft because of the company's ability to impact change in the security landscape, as well as Microsoft's focus on continually improving product security. Additionally, he was intrigued by the reality that security fundamentally helps society as a whole, a notion that he also felt while working in the military. Diversity of challenges, smart minds, dedicated colleagues and the ability to work directly with the researcher community has kept Reavey passionate about this space.
Reavey is a Florida native. While he misses the sun, opportunities and people have kept him loving Seattle for the past seven years.
Dave ForstromDirector, Trustworthy ComputingMicrosoft Corp.
Dave Forstrom is a director of incident response in the Trustworthy Computing Group at Microsoft Corp., where he leads crisis communications for security, privacy and reliability issues involving Microsoft products and services. Together with his team, Forstrom uses Microsoft's unparalleled threat intelligence and knowledge gained from response efforts to help customers have more confidence and feel safer online.
Forstrom has over ten years of incident response experience working across both the public and private sectors, with broad experience serving in leadership and consulting roles focused on information technology, computer security, networking and government relations. Having watched and experienced firsthand Microsoft's security evolution over the years, he joined the company in 2008, convinced by Microsoft's commitment and ability to have a broad impact on the future of secure computing.
In his current position, Forstrom takes pride in knowing that his day-to-day work-not only responding to threats, but also channeling customer feedback into product and service engineering-directly contributes to continued security and privacy innovation at Microsoft. His priority remains Microsoft customers, and he constantly pushes for improvement. At the end of the day, his team's charge, and that of all Trustworthy Computing is to protect and serve--helping to stop online criminals who invade our homes and our businesses through computers, threatening our very principles of security, privacy and trust.
Forstrom is originally from Alaska, relocating to the Pacific Northwest in 2008 from the Washington, D.C. area.
Carlene HeathSenior Security Response Communications Manager, Trustworthy ComputingMicrosoft Corp.
Carlene Heath is a senior security response communications manager in the Trustworthy Computing Group (TwC) at Microsoft Corp. Heath develops clear and authoritative guidance and supporting communications strategies regarding software vulnerability issues in Microsoft's products and platforms, ensuring that customers have the information they need to stay protected from cybercrime.
Heath has over 20 years of professional marketing communications experience, including 10 years at Microsoft. Most recently, Heath worked in the Server and Tools division where she served as the lead on enterprise and small and medium business public relations for two years. Prior to Microsoft, Heath worked for 3Com Corporation and Chipcom Corporation as a senior field marketing communications manager.
Before joining TwC, Heath had a long-time interest in security and response operations. She enjoys the challenge of the security industry and the opportunity to work with a team of smart, technical individuals to provide Microsoft customers the tools and information they need to keep their systems secure.
Heath is an active volunteer with the Washington State, King County Red Cross and is certified as a first responder for King County Disaster and Emergency Response. Heath resides in Sammamish, Washington.
Angela GunnSenior Response Communications Manager, Trustworthy ComputingMicrosoft Corp.
Angela Gunn is a security response communications manager for the Trustworthy Computing Group at Microsoft Corp. In this role, Gunn develops crisis communications strategies for security vulnerabilities in Microsoft products and platforms, serving as a link between the company and its customers. Gunn also contributes to the development and delivery of authoritative guidance on software vulnerability issues to the public.
Gunn has been an active contributor to the security community for over 20 years, most recently as a journalist and editor for a number of print and online publications, including Beta News, Computerworld, USAToday.com, and Seattle Weekly. She has also contributed to several published books, including Protect Your Digital Privacy! Skills For the Information Age and Ping! The Yahoo Messenger Guide to All Things IM.
Gunn has made over 150 radio, television and personal appearances, including moderating a privacy panel for Whitepages.com in May 2008, and discussing "The Lord of the Rings" on MSNBC in December 2001.
Pete VossSenior Security Response Communications Manager, Trustworthy ComputingMicrosoft Corp.
Pete Voss is a senior response communications manager, Trustworthy Computing, Microsoft Corp. In his current position, Voss enjoys working with his team and developing relationships within the security industry to help protect Internet users. He is committed to effectively communicating security information so people can protect themselves when they’re online.
Voss has over ten years of unique communications experience. Before joining Microsoft, Pete worked on the Microsoft account at Waggener Edstrom Worldwide, piloting public relations and social media strategies across multiple business groups, including Microsoft Trustworthy Computing. He also helped support the communications efforts around several security events including RSA, Black Hat, and CanSecWest. Voss’ achievements have been recognized with several awards such as the Bulldog Reporter Award and Holmes Report Gold SABRE Finalist for his work with Twitter and blogs. With a passion to help customers trust their online experiences, Voss accepted his position at Microsoft for the opportunity to make an impact on a global front.
Voss is a Washington State University graduate and a former U.S. Marine combat correspondent. He lives in West Seattle with his wife Jo and their yellow Labrador retriever.