Built by practitioners. Delivered as a program.

Rick is Co-Founder of ThreatLayer, delivering continuous penetration testing that identifies exploitable weaknesses before threat actors can leverage them. With more than 20 years of cybersecurity experience and over 30 years in IT, Rick specializes in working with organizations to reduce both the likelihood and impact of cyber breaches by building resilience into their security programs. His expertise in virtual CISO services, security assessments, and penetration testing helps organizations maintain operations, protect their reputation, and minimize financial and operational impact when incidents occur.

Before co-founding ThreatLayer in 2025, Rick established TPS Cyber in 2012, a specialized vCISO and penetration testing firm. Over more than a decade, he has worked with organizations across multiple sectors to strengthen their security defenses and build the resilience needed to withstand cyber attacks. Rick has held senior security and technology leadership roles where he advised executive leadership on enterprise risk management while designing secure platforms and raising enterprise-wide security vigilance. His background spans architecting resilient security programs, leading enterprise-scale disaster recovery and backup operations, designing global recovery platforms, managing infrastructure technology across worldwide operations, and building compliance programs for highly regulated environments. This combination of strategic vision and operational execution enables him to help organizations not just implement security controls, but fundamentally transform how they think about and respond to cyber threats.

Rick's work focuses on a fundamental insight gained from decades in high-stakes environments. Organizations don't fail because they lack security tools. They fail because they don't understand how attackers actually exploit gaps in their defenses. His extensive experience with AmLaw firms and highly regulated industries revealed the critical gap that ThreatLayer addresses. Traditional point-in-time penetration tests leave organizations vulnerable between assessments. By delivering continuous testing, ThreatLayer provides real-time visibility into exploitable weaknesses in environments where security failures can be catastrophic. Rick holds the CISSP certification and serves as a Certified CMMC Registered Practitioner (RP). He is trained in ITIL and Six Sigma methodologies. Rick is known for his ability to assess an organization's current security posture and formulate the desired end state based on unique business objectives and risk appetites, then translate adversarial tactics into defensive strategies that actually work when attacks occur.

Chris Alexander is a distinguished cybersecurity executive with over 30 years of experience spanning classified military operations and high-level corporate consulting. His career began in the offensive arena, where he was recruited by the Pentagon to help develop early standards for network penetration testing and classified operations. This foundational work with agencies including NAVSEA, DoD, DHS, and NASA established him as a subject matter expert capable of bridging the gap between highly sensitive government intelligence and the complex security needs of the commercial sector.

In addition to being the Co-Founder of ThreatLayer Chris also founded Eyeronix, Inc. in 2014. Chris has led security initiatives for over 100 clients, ranging from global financial institutions to aerospace manufacturers. His corporate tenure includes senior architectural roles at Wells Fargo and NTT Data, where he managed security infrastructures for networks with upwards of 100,000 assets and supported mortgage systems valued at over $1 trillion. His expertise is rooted in active operations; he has personally executed over 200 cybersecurity engagements, including red-team penetration tests, forensic investigations for major data breaches, and the deployment of enterprise-wide defense systems across the US, India, and EMEA. Beyond traditional network security,

Chris is an innovator in specialized assessments, holding patents for cyberwarfare drone platforms and conducting high-risk physical penetration tests on global financial institutions and headquarters. His full spectrum approach combines offensive red-teaming with defensive architecture, ensuring that he can not only identify critical vulnerabilities but also design the remediation strategies to fix them. With a portfolio that includes work for NYSE-tied institutions and critical SCADA/ICS manufacturing systems, Chris offers a rare depth of technical command and strategic insight for organizations facing sophisticated threats.

Kelly Fisher is a distinguished cybersecurity leader with over 33 years of experience spanning military service, government, and the private sector. A veteran of the United States Navy, Kelly served over 10 years as a Cryptologic Technician (Maintenance), executing advanced cryptographic operations for classified projects with the highest levels of sensitivity and time-critical requirements. Her military background instilled a rigorous approach to data protection and operational security that continues to define her work today.

Following her naval service, Kelly spent 11 years as a Navy Civilian Computer Scientist, deepening her technical expertise in defense systems and cybersecurity operations. As a Defense contractor, she spent 11 years at Booz Allen Hamilton as a Cybersecurity Lead, where she led teams deployed in support of DoD cybersecurity missions worldwide.

In the private sector, she has paired her Cybersecurity and Program Management skills, supporting initiatives for some of the world's most prestigious organizations, including top-tier law firms, global financial institutions, and major manufacturing companies. Kelly holds a Bachelor of Science in Computer Science and a Master of Science in Software Engineering, complemented by industry-leading certifications including CISSP-ISSEP, CISM, and CRISC. She is known for her ability to translate the discipline of military-grade security into scalable, resilient solutions for enterprise environments, ensuring that critical assets remain protected against evolving threats.