Tim Fitzgerald
Chief Security Officer


Tim Fitzgerald drives innovation and thought leadership on all security initiatives at Symantec in his role as Chief Security Officer (CSO) where he has oversight of the Global Security Office (GSO). As the CSO for the world’s premier security software company, Tim has a compelling view of industry trends, and a unique perspective on how to best protect, monitor, analyze and respond to security threats and issues.

Since being named chief security officer in June 2014, Tim has set the vision and strategy for the GSO and has developed an experienced leadership team. He leads the company’s Security Council, an executive board that reviews and sets policy on security issues. Additionally, Tim leads Symantec’s CustomerONE program, which captures Symantec’s own experience using Symantec security products and services through reference materials and presentations.

Tim joined Symantec in 2010 and quickly moved into the role of senior director / deputy Chief Information Security Officer. As deputy, he defined the enterprise security strategy to align with Symantec’s business and security objectives. Earlier in his career, Tim worked at KPMG LLP as manager, IT Advisory Services. In this position, he managed project delivery and client service relationships for top tier clients in the technology, healthcare and biotech industries.

Tim’s industry certifications include CISSP (Certified Information Systems Security Professional) and CISA (Certified Information Systems Auditor). He earned his bachelor’s degree in business administration at the University of Victoria, Canada.


Defending the Defender: Moving Beyond Reactive Security


Too often, cyber attackers have the upper hand when they attempt to steal what rightfully belongs to someone else. They hide in the dark spaces of our environments, impersonate our employees and evade our best controls despite massive investments in technology. Ultimately, the fight is not fair. The attackers have first mover advantage and apply asymmetrical tactics that put most cyber response teams on the back foot. Many times, however, we have all the information we need to understand what is happening. The key is whether or not we can understand it and make use of it quickly enough to stop the damage. In this session, we explore the shift from a reactive monitoring model to one where data science and predictive analytics help us understand what the next attack vector might be and what we can do stop it before it starts.