Jonathan Risto

Jonathan teaches a wide variety of SANS courses including SEC440, SEC504, SEC560, SEC566, and SEC580. He is also the co-author of the MGT516: Managing Security Vulnerabilities: Enterprise and Cloud. With a career spanning over 20 years that has included working in network design, IP telephony, service development, security and project management, Jonathan has a deep technical background that provides a wealth of information he draws upon when teaching. His leadership of direct reports and matrix teams in industries including telecom, government and charity environments. 

More About Jonathan


When not teaching for SANS, Jonathan primarily works for the Canadian Government performing cyber security research work, in the areas of vulnerability management and automated remediation. He also performs consulting work. Jonathan holds a bachelor's degree in Electrical Engineering, and is a licensed professional Engineer (P.Eng.). He also holds a master's degree in Information Security Management from the SANS Technology Institute. In his spare time, he sits on the board of directors for charities and his three daughters keep him very busy. When possible, he enjoys the outdoors, astronomy, and photography.