Erik Harssema has 29 years of experience in cyber response, investigations, threat intelligence, privacy, telecom security, M&A due diligence, computer crime, artificial intelligence, insider threat, and forensics. Erik specializes in the financial services, utilities, manufacturing, and consumer market industries and has experience in both professional services and industry leadership positions, spending 7 years leading cyber response and investigations at two major US airlines.
Erik has consulted on a broad range of matters relating to cybersecurity, incident response, computer forensics, privacy, operational application audits, secure software/application development and electronic discovery. He advises clients on effective strategies to mitigate risk exposure, bolster defensibility and reduce the costs associated with cyber response, forensics, and information management.
Erik also assists clients with investigations, litigations and regulatory inquiries resulting from security breaches.
Erik is not a lawyer.
Erik has delivered a broad range of incident response, cybersecurity and information management solutions, some highlights of which are as follows:
- Developed, implemented, and managed global incident response programs at two major US airlines, responsibilities included:
- Organization and implementation of incident management executive leadership steering committee
- Identification and training of key executive and technical stakeholders at each active station/airport globally
- Customization of global response policies, procedures, and technical controls at all company locations with shared services and infrastructure
- Developed enterprise-wide incident response and case management programs and risk mitigation/contingency strategies for global corporations
- Managed large scale global forensic investigations
- Experienced in global, multi-jurisdictional investigations
- Led the forensic and investigative response for one of the United States largest litigations. Responsible for overseeing 20 different active investigative work streams involving federal, state and local regulators and law enforcement agencies across multiple local and international jurisdictions. Data identification and forensic collection efforts accounted for more than 1.5 petabytes of evidence with operations running 24 hours by 7 days a week globally.
- Designed and managed the global data identification, preservation and collection efforts for the largest bankruptcy in US history. Held interim CISO role responsible for the assessment of existing application infrastructures and development of policies for new systems established in support business wind-down operations
- Established and managed teams to conduct global forensic collections and data inventory reconciliations for one of the oldest and largest US manufacturers of medium to heavy trucks and mid-range diesel engines
BBA, International Marketing, Texas Christian University
MSc, Cyber Intelligence, Utica College
- CISSP Certification # 26540
- Technical Editor: Hacking Exposed Computer Forensics; David, Phillip, Cowen. McGraw Hill; November 2004; ISBN 0072256753
- Bryan University Adjunct Professor of Information Technology and Data Architecture (EDIS 501) online course (2012)
- Panelist, DLA Webinar "Can I pay the Ransom?"
- Speaker, Texas A&M Assoc. of Information Technology Professionals
- Speaker, Texas A&M Information Security Symposium
- Panelist, Legal-IQ: E-Discovery for Financial Services
- Speaker CCSP Puerto Rico Chapter, "Global Impact of Data & Privacy Breaches"
- Speaker, WCD Puerto Rico Chapter, "The Role of the BOD in Cyber Security"
- Speaker, Education Finance Counsel, "Cyber Risk Management as an on-going process"
- Panelist, CCSP Puerto Rico Chapter, "Managing Evolving Cyber Risks"
Memberships And Affiliations
- Board member, TCU Neeley School of Business Executive Alumni Association
- Member of The Cornell Club of New York City