// SPEAKING

Speak.

Q: How do I book Lora for a conference or corporate event?

Contact Lora directly through the Request Speaking Info button on this page, or connect via LinkedIn. Please include your event date, expected audience size, topic preference, and whether the engagement is in-person or virtual.

Book cybersecurity speaker Lora Vaughn, CISSP, for your next conference or event. Two-time CISO, former NSA analyst, and LinkedIn Learning instructor. Real talk and actionable insights, not compliance checkbox theater.

Book Lora for your event Download speaker kit →

// FEATURED IN

LinkedIn Learning ISC2 Security Congress WiCyS Southeast Cybersecurity Summit Rapid7 UNITED

// QUICK FACTS

Quick Facts for Event Planners

Lead Time

4+ weeks preferred; rush considered

Response Time

24-48 hours on inquiries

Travel

US nationwide; virtual globally. Based in Birmingham, AL.

// ABOUT LORA

Lora Vaughn, cybersecurity keynote speaker and former CISO

Lora Vaughn, CISSP

Fractional CISO | Cybersecurity Speaker | LinkedIn Learning Instructor

Two-time CISO (MoneyGram serving 150M+ customers, Simmons Bank during growth from $10B to $20B+), Senior Director at Fastly (10% of global internet traffic), and former NSA analyst. 20+ years securing digital payments, banking platforms, and financial products at scale.

Featured speaker at ISC2 Security Congress, WiCyS, and the Southeast Cybersecurity Summit. LinkedIn Learning courses viewed by thousands of cybersecurity professionals. CISOs Connect A100 honoree (2024, 2025).

Professional experience → Read blog →

// SPEAKER BIOS

Speaker Bios

Download full speaker kit →

Lora Vaughn, CISSP, is a cybersecurity leader, keynote speaker, and LinkedIn Learning instructor who has spent 20+ years protecting organizations from nation-state adversaries, digital payment fraud, and their own bad security habits. She's allergic to security theater and corporate buzzwords. Audiences get real talk and actionable insights, not compliance checkbox theater.

Lora began her career hunting sophisticated threats as a Global Network Exploitation & Vulnerability Analyst at the National Security Agency. She brought that expertise to the private sector as CISO at MoneyGram International, where she secured digital payments for 150 million+ customers across 200+ global markets, and as CISO at Simmons Bank during its growth from $10B to $20B+ in assets. At Fastly, she led security for edge cloud infrastructure handling 10% of global internet traffic (because apparently she likes pressure).

Today, Lora is a LinkedIn Learning instructor with courses on vulnerability management viewed by thousands of cybersecurity professionals. She is a two-time CISOs Connect A100 honoree (2024, 2025) and founder of Vaughn Cyber Group, providing fractional CISO services nationwide.

Known for making security concepts accessible without dumbing them down, Lora speaks at major conferences including ISC2 Security Congress (4.7/5.0 rating), WiCyS, and the Southeast Cybersecurity Summit. Whether addressing a room of CISOs or helping small businesses stay secure without going broke, she brings the same energy: honest, practical, and occasionally funny.

Quick Reference

Full Name: Lora Vaughn

Credentials: CISSP

Title: Fractional CISO & Cybersecurity Speaker

Company: Vaughn Cyber Group

Location: Birmingham, Alabama

Travel: US nationwide, virtual global

Headshot: Download (400px) →

Website: loravaughn.com

// 01 / SIGNATURE SESSIONS

Signature Sessions

High-impact keynotes designed to transform how your audience thinks about cybersecurity.

// FOR SECURITY PROFESSIONALS

Plan for Chaos: Why Most Incident Response Plans Fail Big

A high-impact talk derived from ISC2 Security Congress that helps leaders move beyond check-box compliance to true resilience. Drawing from real-world incident response failures and successes across Fortune 500 banks and global payment systems, this session reveals the critical gaps that cause most IR plans to crumble under pressure.

45-60 min keynote Executive audiences Security teams

Key Takeaways: Why tabletop exercises fail. Building muscle memory for crisis. The communication gaps that sink response efforts. Moving from compliance theater to operational readiness.

// FOR GENERAL AUDIENCES

The Spy in Your Pocket: Mobile Security for Everyone

Your smartphone knows more about you than your closest friends: where you go, who you talk to, what you buy, and even what you're thinking about buying. This engaging, accessible talk reveals the hidden ways your mobile device can betray your privacy and provides practical, no-jargon steps anyone can take to protect themselves.

30-45 min presentation General audiences Community groups

Key Takeaways: What your phone tracks without you knowing. Simple settings changes that make a big difference. Spotting scams and phishing on mobile. Protecting your family's digital privacy.

Book this keynote View all topics →

// 02 / TESTIMONIALS

What Attendees Say

ISC2 Security Congress 2025

4.70/5.0 Rating

"Plan for Chaos: Why Most Incident Response Plans Fail Big"

"Best presenter all day"

"Amazing speaker along with wonderful and actionable content"

"She is GOOOOD... will be referencing her slides for sure"

ISC2 Security Congress 2024

4.74/5.0 Rating

"Measuring Cybersecurity Success: Crafting Metrics with NIST CSF and Beyond"

"In terms of clarity and content value, the best talk so far."

"Fantastic. This will be one session I will watch again."

"Great presentation from someone who has clearly spent time honing her craft."

// 03 / SPEAKING TOPICS

Cybersecurity Speaking Topics

For Technical Audiences

Vulnerability Management Strategy: From chaos to prioritized action
Incident Response Planning: Why most IR plans fail and how to fix them
Security Metrics & Measurement: Using NIST CSF to demonstrate program value
Career Development in Cybersecurity: Breaking into the field and advancing your career
Security Leadership: Building security programs that scale with business growth

For Business Leaders

Cybersecurity for Small Business: Essential protections every SMB needs
Startup Security: Getting it right from day one without breaking the bank
Nonprofit Cybersecurity on a Budget: Protecting your mission and your donors
Practical Risk Management for SMBs: Security strategies that fit your reality

For General Audiences

The 5 Things That Actually Get You Hacked: What really puts you at risk (hint: it's not what you think)
The Spy in Your Pocket: Mobile device security for everyday users
Staying Safe Online: Practical cybersecurity tips for everyone
Protecting Your Digital Legacy: Safeguarding what matters most
Cybersecurity Awareness: Understanding digital risks without the jargon

Book Lora for your event Connect on LinkedIn →

Typical response within 24-48 hours.

// FEATURED ENGAGEMENTS

Featured Speaking Engagements

ISC2 Security Congress 2025 - "Plan for Chaos: Why most incident response plans fail big"
ISC2 Security Congress 2024 - "Measuring Cybersecurity Success: Crafting metrics with NIST CSF and Beyond"
Southeast Cybersecurity Summit 2024 - "Making metrics from Frameworks"
WiCyS (Women in Cybersecurity) - Multiple presentations on security leadership and career development
Southeast Cybersecurity Summit 2022 - "A Bug (Bounty) Story: Building effective bug bounty programs"

// LINKEDIN LEARNING

LinkedIn Learning Cybersecurity Instructor

Published courses on vulnerability management viewed by thousands of cybersecurity professionals worldwide:

// 04 / BOOKING INFO

Speaking Engagement Details

Presentation Formats

Keynote presentations (30-60 minutes)
Workshops & training sessions (2-4 hours)
Panel discussions & fireside chats
Virtual presentations (remote)

Audience Size

Experienced presenting to audiences from 25 to 2,500+ attendees

Travel & Availability

Based in the US. Available for speaking engagements nationwide. Virtual presentations available globally.

Materials Provided

Custom slide decks
Attendee handouts
Recording permission (when requested)
Pre-event promotion on social media

Ideal For

Industry conferences & summits
Corporate training programs
Small business & startup events
Nonprofit organizations
Professional associations
University programs
Executive briefings

Book Lora to Speak at Your Next Event

Looking for a cybersecurity keynote speaker who delivers practical, actionable insights without corporate buzzwords? Let's talk about your event.

Book Lora for your event Connect on LinkedIn →

Include in your inquiry: event date, audience size, topic preference, and format (keynote, workshop, panel, virtual).

// NOT LOOKING FOR A SPEAKER?

Not Looking for a Speaker?

I also serve as a fractional CISO for startups, SMBs, and community banks through Vaughn Cyber Group. If your organization needs ongoing security leadership, SOC 2 readiness, or incident response planning, let's talk.

Fractional CISO services → For startups → For community banks →

// 05 / FAQ

Frequently Asked Questions About Booking Lora

What cybersecurity topics does Lora speak about?

Lora tailors presentations for diverse audiences, from students exploring cybersecurity careers to C-suite executives making security investment decisions, SMBs protecting their businesses, and community groups learning online safety. For technical professionals: vulnerability management, incident response, and security metrics. For business leaders: startup security, SMB cybersecurity, and nonprofit security on a budget. For general audiences: mobile security, online safety, and protecting your digital legacy. All topics can be customized to match your audience's technical background.

How do I book Lora for a conference or corporate event?

Contact Lora directly through the "Request Speaking Info" button on this page, or connect via LinkedIn. Please include your event date, expected audience size, topic preference, and whether the engagement is in-person or virtual.

Does Lora travel for speaking engagements?

Yes. Lora is based in Birmingham, Alabama and is available for speaking engagements nationwide. Virtual presentations are also available for remote audiences.

What makes Lora qualified to speak on cybersecurity topics?

Lora has 20+ years of cybersecurity experience including roles as CISO at MoneyGram (150M+ customers) and Simmons Bank ($20B+ assets), Senior Director at Fastly (10% of global internet traffic), and former Global Network Exploitation & Vulnerability Analyst at the National Security Agency. She's a published LinkedIn Learning instructor, CISOs Connect A100 honoree (2024, 2025), and has spoken at major conferences including ISC2 Security Congress and WiCyS.

// CONFERENCE TALKS

Conference Presentation Archive

ISC2 Security Congress 2025: Plan for Chaos: Why Most Incident Response Plans Fail Big talk

4.70/5.0 rating. Incident response plans are critical to any cybersecurity strategy, but the reality is that many of these plans aren't enough when faced with major, high-impact incidents. This talk dives into the gaps and misconceptions inherent in most incident response plans, why they fail during major incidents, and how to evolve beyond them.

Southeast Cybersecurity Summit 2025: Plan for Chaos: Why Most Incident Response Plans Fail Big talk

Incident response plans are critical to any cybersecurity strategy, but the reality is that many of these plans aren't enough when faced with major, high-impact incidents. This talk dives into the gaps and misconceptions inherent in most incident response plans, why they fail during major incidents, and how to evolve beyond them.

Southeast Cybersecurity Summit 2024: Making Metrics from Frameworks talk

How to use cybersecurity frameworks to create meaningful metrics that demonstrate program value and progress to leadership.

A Bug (Bounty) Story talk

Presentation at 2022 Southeast Cybersecurity Summit about building effective bug bounty programs

Empathy: Your Career Superpower talk

Presentation at 2021 Cyber Now Summit

A CISO's Guide to Cybersecurity Careers talk

Transitioning from a cybersecurity student to a cybersecurity professional sounds daunting, but it doesn’t have to be.

Flip This House: Overhauling a cyber program and culture with NIST CSF talk

Presentation at 2020 Cyber Now Summit

You Can't Boil the Ocean: Building a Risk Based Vulnerability Management Program talk

Presentation at 2018 Alabama Cyber Now Conference

// VIDEOS & COURSES

Video Interviews & Courses

Watch Lora in action across media appearances and professional training.

video

Vulnerability Management: Assessing the Risks with CVSS, CISA KEV, EPSS, and SSVC

LinkedIn Learning. Vulnerability management is a critical part of an effective information security program, but determining which vulnerabilities to address first is a daunting challenge. In this course, learn how to differentiate between vulnerability severity and vulnerability risk. Discover what elements can be combined to determine vulnerability severity, techniques you can use to determine the risk a vulnerability poses to your specific environment, and things to consider when building a vulnerability management program.

video

LinkedIn Learning: Vulnerability Management in Cybersecurity: The Basics

LinkedIn Learning. This course provides those without prior experience in the area an overview of why vulnerabilities exist, as well as an explanation of the process of managing them from start to finish. Instructor Lora Vaughn McIntosh covers the three key components of vulnerability management and the tools needed to establish a program of your own. Get an introduction to vulnerability scanning and reporting, learn how to identify which vulnerabilities to address first, discover how to vet false positives, and more.

video

Measuring Cybersecurity Success: Crafting metrics with NIST CSF and Beyond

4.74/5.0 rating. ISC2 Security Congress 2024: Most cybersecurity leaders have a good understanding of the things that need to be done to improve a security program, but how do you show senior leaders and board members those needs and progress as improvements are made? This talk shows an approach that uses the NIST Cyber Security Framework (CSF) to conduct a maturity assessment and create meaningful metrics that demonstrate program value and progress to leadership.

video

A Guide to Cybersecurity Careers

Transitioning from a cybersecurity student to a cybersecurity professional sounds daunting, but it doesn't have to be.

video

Simmons Bank talks about the best security practices to keep your information safe

KATV Little Rock, Lora Vaughn discusses cybersecurity best practices.

video

Keepin' It Real: Idenftifying 'Real Risk' and Building a Threat-Centric Vulnerability Management Program

Rapid7 UNITED2017 presentation

// ARTICLES

Published Articles & Writing

Cybersecurity in Banking and Finance: 6 Examples to Know article

Article with insights from Lora Vaughn, about cybersecurity in banking.

Courageous Kat article

A tribute to Kathy 'Kat' Vaughn, Lora's mother, who was a pioneer for women in the workforce and a source of inspiration.

The Myth of the IT and Cybersecurity Meritocracy article

Article in Business and Tech. The idea that anyone can become a successful IT or cybersecurity professional through hard work and talent is a myth. In reality, systemic barriers and biases often prevent many qualified individuals from entering or advancing in these fields.

5 Potential Red Flags in Job Postings article

What are some of the red flags to look for when applying for a job in cybersecurity? Lora Vaughn shares her insights.

How Developers and Cybersecurity Teams Can Improve Communication article

Article in Built In. Lora Vaughn and other cybersecurity leaders discuss how developers and cybersecurity teams can work together more effectively with Tammy Xu.

Meet the Female Leaders Of Finance: Lora Vaughn article

Lora Vaughn of Simmons Bank: “When we collaborate and engage outside our bubbles, we can come up with stronger solutions.”