Steve Bergman

Steve Bergman is a managing director in the Cyber Risk practice of Kroll, based in the Washington D.C. office. He leverages over 20 years of experience leading digital transformation projects through executive engagement, team and business development, security planning and remediation, cyber security strategy development, compliance and risk mitigation.

Steve has received the CIO 100 Award for Innovation and Growth for his contribution in leading high-impact teams solving complex enterprise challenges. Steve is a recognized technology leader and change agent known for innovative business approaches, responsive cyber strategies and fostering impactful partnerships.

Prior to joining Kroll, Steve was a general manager in the Risk and Cybersecurity practice at RSA, leading the firm’s Global Services Advisory practice. He guided teams as they engaged with RSA's largest and most strategic customers in business risk mitigation and cyber security strategies. He was also responsible for teams that delivered business transformation at an executive level, ensuring technology and cyber strategies were secure and compliant, assisting customers in the planning and execution of growth initiatives, engaging in M&A activities, conducting diligence and transitioning workstreams to the cloud. Additionally, he developed and successfully deployed RSA’s risk frameworks—analytical models that measured the cyber maturity of RSA’s customers utilizing a proprietary business risk quantification approach. 

Before joining RSA, Steve was the CEO at 360ofme, an award-winning consumer-based big data analytics startup, designed to allow simplified control of personal digital information while maintaining consumer privacy. He oversaw decentralized identity, machine learning and cognitive computing initiatives supported by a proprietary security architecture with a clear path to blockchain. The product leveraged large-scale identity management and natural language processing (NLP) utilizing AWS, IBM and Salesforce-based PaaS. 

In his previous roles, Steve handled various note-worthy assignments, including driving the national health IT strategy, platforms and compliance standards for a $2 billion international organization supporting 650 locations and 33,000 employees. In another role, he led a $4 billion company through the enhancement of its information technology, which advanced growth, market share and revenue, while facilitating a sustained 10% annual growth model. He also implemented modern retail analytics, physical and location-based infrastructure security, and transformative predictive retail store location systems in a secured PCI-compliant infrastructure across 2600 retail stores and data centers supporting 88,000 employees.

In the fall of 2001, Steve was solicited by the White House to lead the initiative for its high-profile citizen preparedness campaign immediately following the attacks of 9/11. He led teams that hardened platforms designed and implemented under rigorous governmental security standards withstanding unprecedented traffic loads and cyberattacks.

Steve has successfully led cyber and risk consulting practices enabling Fortune 1000 clients to mitigate risk and develop cyber security approaches that support and accelerate business strategies. He has focused on secure business transformation at an executive level, execution of cyber-focused growth strategies, compliant M&A opportunities, secure alliances/partnerships and dynamic workforce activities. He has mentored entrepreneurial cyber startups from concept development through infrastructure and launch, including early funding rounds. He has co-created and led 360ofme, one of the first consumer data privacy companies, serving as the foundational leader in funding rounds, product management, business development, marketing, sales and branding activities.

Steve has been invited to speak at numerous events, including the Salesforce World Tour Opening Session in 2015. He also participated in various speaking engagements at RSA and at 360ofme, where he spoke on Dreamforce, Healthcare Information and Management Systems Society (HIMSS), Datapalooza and CMS. His video interview and article on goodwill innovation was published on zdnet and Information Week. In addition, Steve was featured in CNET in an article titled, “Homeland Defense Drives Citizens to Web.” Further, he is a guest lecturer at the Georgetown University Graduate School.

Steve received a B.A. in communications and an M.S. in computer systems management from the University of Maryland. His memberships are as follows: Board Member, Mid-Atlantic CIO Forum; Past Executive Steering Committee Member, Salesforce Foundation; Technology Advisory Board Member, American Foundation for the Blind; and Board Member and Advisor, multiple technology startups. Additionally, he is also a mentor at Mach37 Cyber Startup Accelerator and a Venture Portfolio Company Advisor at Sequoia Capital, Menlo Park.

Bergman /en/our-team/steve-bergman /-/media/kroll-images/headshots/steve-bergman.jpg people {E39587AD-8F0B-4FE2-865F-969BC5501096}{058CEC4B-AB74-4982-A8CC-B399FCB93BB2}{3A077BFC-C74A-40AF-A14C-13BCF6E3873E}{BF3D2BBB-D6E2-4A45-A8F9-465548719C7D}{CE2347F0-D222-4014-BA97-6A415CC633DF} {2DEEE4D2-8278-4C50-B3FF-1563BB257804}

Stay Ahead with Kroll

Cyber Risk

Incident response, digital forensics, breach notification, managed detection services, penetration testing, cyber assessments and advisory.

Virtual CISO (vCISO) Advisory Services

Kroll’s Virtual CISO (vCISO) services help executives, security and technology teams safeguard information assets while supporting business operations with augmented cyber expertise to reduce business risk, signal commitment to data security and enhance overall security posture.

24x7 Incident Response

Enlist experienced responders to handle the entire security incident lifecycle.

Cybersecurity Due Diligence for M&A

Pre and Post-transaction assessment can uncover costly risks.

Data Recovery and Forensic Analysis

Kroll's expertise establishes whether data was compromised and to what extent. We uncover actionable information, leaving you better prepared to manage a future incident.