Steven Schnider is a co-founder of Procyon Security Group and practices as an Information System Security Architect. He has been involved in the development of information technology systems since 1979, and has specialized in information security technology since 1987. He previously held senior technical positions with Certicom, LGS/DOMUS Security, and Hughes Aircraft Canada and led the security product development team at Bell-Northern Research. Steven has provided security consulting services to a broad range of public sector organizations including the federal government (DND, RCMP, CSE, Public Works and Government Services), provincial governments (British Columbia, Saskatchewan, Ontario) and at the municipal level. His private sector experience ranges from international oil companies and multi-national wireless telecommunications providers through to small technology start-ups. Steven's primary interests are in high assurance system development, secure wide-area networking, distributed applications and pervasive computing.
Ryan Liu has 14 years of direct experience in security design, maintenance, testing, and auditing of information systems and controls. Since 2005 Ryan has been primarily focused in the health care sector, including involvement in the development, assessment, testing, and support of an HL-7 based provincial Integrated Electronic Health Record (iEHR) system and security analysis of connecting health organizations. Ryan also has experience performing network vulnerability assessment, penetration testing, and security policy & practice assessments in the areas of post-secondary education, utilities, and municipal government.
Ryan previously worked in the Risk Management practice of a Big 4 global accounting and professional services firm where he performed network penetration testing and general computer control reviews for some of the largest companies in Canada.
Rui Pereira is a Principal Consultant for Procyon Security Group with over 30 years of experience in Information Technology, specializing in Information Security and Audit for the last 20. Rui is a Certified Penetration Testing Engineer (CPTE) and Consultant (CPTC), and has also obtained the CISSP and CISA certifications.
Rui has provided both management and technical consulting to a wide range of customers in a variety of industries. He specializes in security reviews and audits; vulnerability assessments and penetration testing (ethical hacking), including for PCI DSS; wireless and (web) application security; PCI DSS, privacy and other compliance and legal requirements; Threat/Risk Assessments (TRA) and threat modeling; and security architecture development, review and implementation.
He is active in the local IT security community, including the CIPS Security SIG and the Vancouver Chapter of OWASP. He has presented on various security topics before these and other local organizations. Rui also teaches on various security topics at BCIT and UBC, and presents several multi-day courses in secure web application development, wireless network security, and ethical hacking.
Procyon may supplement existing resources and expertise on projects as required using Associate Consultants on a sub-contracting basis. The following Associate Consultants have had long term relationships with Procyon Security Group and have established reputations for excellence in Information Security consulting.
Tom Sellgren, previously a founding Principal Consultant with Procyon, specializes in Security Policy and Security Risk Management. He has 15 years experience in IT security. He was previously the Director of IT Security for the Government of British Columbia where Tom managed IT security detection and protection operations, security development projects, government security policy and security investigations. He has been providing security contract support to industry and government since 2002. Tom's recent projects and expertise include: Security reviews, threat and risk assessments and security policy development.
Seiki Harada specializes in providing expert advice for securing and assuring critical infrastructure services that are vital to upholding the safety and comfort of the communities they serve. Specifically, his area of focus is ensuring that organizations in the electric industry can assure their services are maintained through adverse conditions (mostly man-made and intentionally caused). He has advised a government body in BC and a number of electric utilities in BC and Alberta.
Seiki previously worked for a major electric utility company for over 30 years, and was responsible for managing their physical and cyber security, business continuity, emergency/crisis management and critical infrastructure assurance. He has also been active in these areas across the country and North America, having served as a chair of the Critical Infrastructure Protection and Security working group of the Canadian Electricity Association and as a committee member for the Critical Infrastructure Protection Committee of the North American Electric Reliability Corporation.
Orvin Lau is an Information Security Consultant with a focus on information security management, governance, business processes, and compliance and 9 years of experience in information security and 17 years of experience in systems integration, development, management, and assessment. Orvin is adept at relating business requirements to technical requirements and has experience in ISO/IEC 27001 and 27002, the PCI Data Security Standard, and CobiT 4.1.
Orvin previously worked as an information security managing consultant for leading Canadian accounting and business advisory firm where he provided IT Security consulting and audit services to clients in industries such as financial services, brokerage firms, health authorities, utility companies, and municipal governments. Prior to that he was co-founder and CTO for an application service provider and systems development company developing products for various parties in the marine shipping market.