IriusRisk - Leading from the Beginning
After the launch of the Threat Modeling platform under the Continuum Security brand in 2016, the company later rebranded as part of its mission to become the automated threat modeling platform, and to make threat modeling a common, yet integral part of every organisation's software development lifecycle.
Stay up to date with the latest news
Click hereWe're not just a product...meet the team!
We are incredibly proud of the product we have created and continue to build, however our company would not be the success it is today without our talented, passionate, and dedicated team of professionals.
.png?width=500&name=Stephen%20de%20Vries-01%20(1).png)
Stephen De Vries
Co-founder and Chief Executive Officer
Stephen is our co-founder and CEO. He started his career as a C, C++ and Java developer, before moving into software security. He’s an active contributor to a number of OWASP projects and has helped FTSE 100 companies to build security into their development processes through threat modeling and integrated security testing.
Stephen De Vries's Team
Stephen enjoys tinkering with renewable, off-grid energy systems and writing code.
Stephen's team:
- Cristina Bentué - Chief Operating Officer, Head of R&D
- Paul Santapau - Chief Technology Officer
- Bas Nijjer - Chief Revenue Officer
- Fraser Scott - VP, Product Development

Cristina Bentué
Co-Founder and Head of R&D
After studying several masters in Near Eastern Studies, Cristina forged her career in technology startups between Barcelona and the City of London before co-founding IriusRisk. Cristina currently co-manages the R&D department, with a growing team of developers and security analysts. Cristina is an advocate for open platforms and leads the community edition of IriusRisk to offer users a free and collaborative platform to share threat models of system architectures.
Cristina Bentué's Team
Cristina is a champion of women in technology and for encouraging girls to choose STEM subjects at an early age.
Cristina's Team:
- Raquel Ollés - Operations Manager
- Jenna Preston - Global Head of Marketing

Paul Santapau
Chief Technical Officer
Paul has been working in security for more than 15 years in both defensive and offensive roles. His experience ranges from working in security research at the Nisu Security Research Group, building an innovation department at a startup and working as a Security Architect at big corporations. As CTO Paul’s main responsibility is managing the engineering teams as well as supporting the introduction and scale out of new technologies that help the company growth and operation .His passionate about working on effective and pragmatic approaches to Security and Security applied to modern development methodologies, Software Engineering and Networking.
Paul Santapau's Team
I love IriusRisk’s focus on considering product Security from the start, the focus on helping developers to implement effective security on applications, This is a problem I have focused on in my last 10 years of my career and now we are a part of solving it!
Paul works with Victor Cañizares (Global Architecture Lead) and Eduardo Estrella (Global Tech Lead) who help lead the direction of our engineering teams:
- Team Magician, led by Steven García.
- Bugbusters Team, led by Victor Romero.
- X Team, led by Toni Mateu.
- Team Morpheus, led by Adrián Blanco.
- UX/UI Team, led by Alberto García.
- QA Team, led by Javier Pulido.
- DevOps Team, led by David Gacías.

Bas Nijjer
Sr Vice President, International
Bas Nijjer is the Senior Vice President, International at IriusRisk and is responsible for the International markets, our GTM strategy, and driving our customers' success. Bas is experienced in developing and leading modern go-to-market teams and strategies. His previous experience ranges from technology start-ups, scale-ups, and earlier in his career, at established multinational organizations. He has led growth teams in Europe, the USA, and other international geographies.
Bas Nijjer's Team
Bas was born in one continent, raised in another and has travelled widely – proudly a citizen of everywhere. He graduated from Nottingham City University with a BSc in Electronics – he loves to take things apart to see how they work. He enjoys sports of all kinds, growing up playing many, but now resigned to mostly watching from the side lines.
Bas' Team:
- Mark Slater - Senior Account Executive
- Diego Suarez - Sales Executive - Europe & LATAM
- Mike Chauvel - Senior Account Executive
- Kyle Larkin - Sales Executive - US
- John Ioakimidis - Senior Account Executive
- Jonny Tennyson - Head of Customer Success
- Julian Fellows - Alliance & Channel Manager
- Ken Chau - Solutions Architect
- Matthew Bell - Customer Success
- Arnaud Monhon Bah - Solutions Architect
- Jacob Teale - Customer Success
- Alberto Calomarde- SDR
- David Singleton - SDR
- Zulf Ali Raja- SDR
- Chris Mitchell - SDR

Fraser Scott
VP of Product Development
Fraser is a threat modeling product manager and evangelist. As a cyber postmodernist coming from a background of DevOps and Cloud Security, he believes that threat modeling offers a pragmatic toolkit for navigating the complex and ever-evolving intersection between software, value, and risk. He has created several experimental opensource projects including ThreatSpec and the OWASP Cloud Security project.
As VP Product, Fraser is responsible for ensuring that IriusRisk gives our customers the threat modeling solutions they need to build awesome products that are secure by design.
Fraser Scott's Team
IriusRisk has an important mission to challenge how software is designed and built with security in mind, a mission that is shared by a fantastic team. I truly believe that Product is the collaborative exploration of problems and solutions within the company, as well as with customers- and that’s my mission for product at IriusRisk.
Just me in Product for now :)

Sarah Wheeler
Chief People Officer
Sarah is IriusRisk’s Chief People Officer. Sarah is passionate about driving business success through the lens of people. Ensuring that we can build and retain an exceptional team of professionals to solve our customers’ evolving needs, and making IriusRisk a great place to work.
Sarah joined IruisRisk in 2023, bringing over 20 years' HR experience in a diverse range of commercial environments from banking to content marketing to technology.
Sarah is MCIPD qualified with a Masters in Human Resources and a BSc in Business and Psychology.
Sarah Wheeler's Team
I love to help a business translate their commercial requirements into a robust and achievable people strategy.
Naresh Chouhan
Vice President Marketing
Naresh is a proven international B2B & B2C marketing leader who is analytically-driven and digitally savvy and focused on revenue growth marketing and new customer acquisition.
Naresh has a proven track record in building, restructuring and leading teams in both start-up and corporate environments and has strong core capabilities in developing and executing complete integrated marketing programs from initial market entry and go-to-market strategy, value proposition development through to the execution of complete demand generation.
Naresh Chouhan's Team
Passionate about building and enabling teams and particularly individuals. I love working on new propositions and learning how to quickly them to market.

Gary McGraw
Technical Advisory Board, Lead
Dr. Gary McGraw is co-founder of the Berryville Institute of Machine Learning. He is a globally recognised authority on software security and the author of eight best selling books on this topic. Gary produced the monthly Silver Bullet Security Podcast for IEEE Security & Privacy magazine for thirteen years. His dual PhD is in Cognitive Science and Computer Science from Indiana University where he serves on the Dean’s Advisory Council for the School of Informatics, Computing, and Engineering.
Gary McGraw's Team

Adam Shostack
Technical Advisory Board
Adam is a leading expert on threat modeling and has been on our Technical Advisory board since its inception. He currently helps organisations improve their security via Shostack & Associates and offers industry-leading threat modeling training. While at Microsoft, he drove the Autorun fix into Windows Update, was the lead designer of the SDL Threat Modeling Tool v3 and created the "Elevation of Privilege" game. Adam is the author of Threat Modeling: Designing for Security, and the co-author of The New School of Information Security.
Adam Shostack's Team
Want to be part
of the team?
We are always on the lookout for talented, passionate, and driven people to join our team. We often publish our vacancies on our social media channels, however if you would like to be considered for any current or future vacancies, please submit your CV for consideration and we will reach out to you if we're able to match you to a role.