Stach & Liu is led by managing partners Francis Brown and Vincent Liu. They are advised by a trusted board of experienced industry leaders and security experts.
Firm Management
Francis BrownManaging Partner
Francis Brown, MCSE, CISA, CISSP, is responsible for overseeing the company’s business operations as well as finance and administration functions. He also manages Stach & Liu’s 6sigma service quality program and leads internal practice development initiatives.
Before joining Stach & Liu, Francis worked in the Global Risk Assessment team at Honeywell International where he performed network and application penetration testing, product security evaluations, incident response, and risk assessments of critical infrastructure. Prior to that, Francis was a consultant with the Ernst & Young Advanced Security Centers and conducted network, application, wireless, and remote access penetration tests for Fortune 500 clients.
Francis has presented his research at leading conferences such as Black Hat USA, DEFCON, InfoSec World, and has been cited in numerous industry and academic publications.
Francis holds a Bachelor of Science and Engineering from the University of Pennsylvania with a major in Computer Science and Engineering and a minor in Psychology.
Vincent LiuManaging Partner
Vincent Liu, CISSP, is responsible for several aspects of the company including executing overall strategy, ensuring service delivery, and advancing security research programs. He also oversees business development including sales, marketing, and strategic partnerships.
Before founding Stach & Liu, Vincent led the Attack & Penetration and Reverse Engineering teams for the Global Security unit at Honeywell International. Prior to that, he was a consultant with the Ernst & Young Advanced Security Centers and an analyst at the National Security Agency. In these roles, he gained extensive experience conducting risk assessments, performing application code reviews, and supporting incident response situations.
Vincent is a sought after speaker and has presented his research at conferences including BlackHat, ToorCon, and Microsoft BlueHat. Vincent has been published in interviews, journals, and authored several best-selling books with highlights including: Hacking Exposed: Wireless, Ajax Security (technical editor), and the upcoming Hacking Exposed: Web Applications.
Vincent holds a Bachelor of Science and Engineering from the University of Pennsylvania with a major in Computer Science and Engineering and a minor in Psychology.
Board of Advisors
Caleb SimaCEO, Armorize Technologies
Caleb Sima is the CEO of Armorize Technologies and was co-founder and CTO at SPI Dynamics, the world’s leading and de facto standard for Web application security scanning. After being acquired by HP, Caleb was made HP’s Chief Technologist – Application Security Center, where he helped HP build a SaaS version of HP’s application security offerings. He also directed the lifecycle of HP’s Web application security solutions where he led a team of accomplished security experts that have received worldwide recognition for identifying new security threats and devising advanced countermeasures.
A frequent speaker at industry events and tradeshows, some of Caleb’s appearances include RSA, CIO, HP Software Universe, SANS, BlackHat, Bluehat, InfoSec World, TechEd, as well as various industry organizations and associations events. He is a member of ISSA and is one of the founders of the Application Vulnerability Description Language (AVDL) standard within OASIS, as well as a founding member of the Web Application Security Consortium (WASC). In 2007, Caleb was named Microsoft Most Valuable Professional (MVP) in Visual Developer Security.
