Bob Maley

Bob Maley, CRISC, CTPRP, and Open FAIR™, is a veteran security strategist and the Chief Security Officer at Black Kite. As a holder of these elite industry designations, Bob offers a rare practitioner’s perspective on Third-Party Cyber Risk Management (TPCRM), specializing in the practical application of risk quantification and specialized vendor inspections. His career is rooted in the high-stakes world of law enforcement, providing him with a unique foundation in both physical and digital security lifecycles. Bob is a prominent voice in industry governance and thought leadership. He currently serves as a Member of the Shared Assessments Advisory Board and the Shared Assessments Risk Committee, and he leads the frontier of technological risk as Co-Chair of the Shared Assessments AI & Emerging Technology Working Group. An accomplished writer, Bob is the author of three books and has contributed to the advancement of technical standards through his published work in IEEE Xplore. Before joining the private sector, Bob served as the Chief Information Security Officer for the Commonwealth of Pennsylvania, where his leadership earned the NASCIO award for outstanding achievement in information technology. Most recently, he led PayPal’s Global Third-Party Security & Inspections team, building a ground-up, state-of-the-art risk management program from the practitioner’s lens. A recognized leader in the cybersecurity community, Bob has been a finalist for CSO of the Year by SC Magazine and a nominee for Information Security Executive of the Year, North America. Today, his work focuses on bridging the gap between tactical incident response and the necessity of quantitative risk assessment in an increasingly volatile digital landscape.