Thomas Pavan is a Certified Information Security Professional (CISSP) having 20+ years of IT experience with a strong focus on implementing application security at every step in CI-CD delivery pipelines, applying the DevSecOps principles. He covered the roles of software QA architect and manager, global security technical enablement for a variety of industries including banking, e-sport, insurance, and security software, and leading the digital modernization and security effort for different technology stacks. With this extensive experience on all SDLC phases, he can provide a unique perspective on how to better secure and harden the whole software delivery process. He calls himself a “DevSecOps Fundamentalist” because he's seen the benefits of this practice firsthand. His skillset includes penetration testing, secure SDLC, training, coaching, and integrating security solutions with clients' existing processes.

Thomas founded Mastodon Security as a dynamic hub for talented security professionals that can adapt on demand to fit any project needs, whether on the offensive or the defensive side.