About SecurityMetrics

About SecurityMetrics

About SecurityMetrics

We secure peace of mind for organizations that handle sensitive data

We have tested over 1 million systems for data security and compliance as an Approved Scanning VendorQualified Security Assessor, and Certified Forensic Investigator. We understand the importance of industry standards, which is why we hold our tools, training, and support to a higher, more thorough standard of performance and service. Never have a false sense of security.™

A Bit Of History

After experiencing a security breach in his first business, Brad Caldwell (CEO) founded SecurityMetrics in 2000. One of his core objectives was to provide tools and services that are accessible to small-to-medium businesses (SMBs). Despite our growth from a small business to a global leader of data security and compliance solutions, we have never lost sight of this objective.

Today, headquartered in Orem, Utah, we continue to provide expert services to small and large businesses around the world. We are most interested in helping businesses who view cybersecurity as a mindset rather than a checklist because we want to ensure the protection and success of our customers to the best of our ability. 

Company/Our Story/security_metrics_building

We Take Care Of Our Customers                     

Friendly and informative customer service is the cornerstone of our company. We have the largest in-house call center in the payments industry and take over 135,000 calls each month. Since our founding, we have tested over 1 million systems, from Fortune 500 businesses to small retailers, for data security and compliance.                     

Our Expertise Speaks For Itself                     

Experience

We have more than 20 years of experience with data security and compliance.

Accreditations

Our employees hold certifications like Certified Information Systems Security Professional (CISSP), PCI Forensic Investigator (PFI), Qualified Security Assessor (QSA), Approved Scanning Vendor (ASV), Payment Application Qualified Security Assessor (PA-QSA), and Point-to-Point Encryption Qualified Security Assessor (P2PE QSA).

Global Solutions

We are one of only a handful of companies worldwide certified by the PCI Council to conduct all major PCI compliance validations.         

Awards

April 2023

Global InfoSec Award
Most Comprehensive Security Team (PCI Compliance)

March 2023

Cybersecurity Excellence Awards
Compliance Program Management (SecurityMetrics PCI Program)

March 2023

Cybersecurity Excellence Award
Best Cybersecurity Book (SecurityMetrics Guide to HIPAA Compliance)

March 2023

Cybersecurity Excellence Award
Cybersecurity Audit Team of the Year (SecurityMetrics Audit Team)

October 2022

Cybersecurity Breakthrough Award
Threat Detection Platform of the Year (SecurityMetrics Pulse)

May 2022

Global InfoSec Award
Editor's Choice Penetration Testing (SecurityMetrics Penetration Testing)

May 2022

Global InfoSec Award
Most Innovative Cybersecurity Book (SecurityMetrics PCI Guide)

June 2021

Fortress Cyber Security Awards
Network Security (Penetration Testing)

May 2021

Global InfoSec Award
Most Innovative in Vulnerability Assessment

May 2021

Global InfoSec Award
Most Innovative in Security Team of the Year

February 2021

Cybersecurity Excellence Award
Website Security (Shopping Cart Monitor)

February 2021

Cybersecurity Excellence Award
Best Cybersecurity Podcast (SecurityMetrics Podcast)

August 2020

Cybersecurity Breakthrough Award
Overall Web Security Solution of the Year (Shopping Cart Monitor)

October 2020

Golden Bridge Award
Monitoring and Testing Innovation (Shopping Cart Monitor)

October 2020

Golden Bridge Award
Best Service to Combat and Reduce the Impact of COVID-19 (COVID-19 Cyberattack Hotline)

September 2019

Cybersecurity Breakthrough Award
Network Security Scanner Solution of the Year (Network Security Scanner of the Year)

June 2019

Fortress Cyber Security Award
Best Product: Compliance (PCI DSS Assessment)

February 2019

Info Security PG’s Global Excellence Awards
New Product or Service of the Year (GDPR Defense)

February 2019

Cybersecurity Excellence Award
2019 Cybersecurity Product (PCI Customer Portal)

February 2018

Stevie Award for Sales and Customer Service
Contact Center of the Year (Best Customer Servicing and Call Center)

September 2016

Stevie International Business Award
Support Department of the Year (PCI Compliance)

March 2016

Info Security Global Excellence Award
(Forensic Investigation Services)

April 2015

Info Security Global Excellence Award
Best HIPAA Compliance Service (HIPAA Onsite Audit)

April 2015

Info Security Global Excellence Award
Best PCI Compliance Service (PCI DSS Onsite Audit)

December 2014

Best in Biz Awards
Small/Medium Business Service of the Year (Guided HIPAA Compliance)

September 2014

Golden Bridge Awards
Governance, Risk, and Compliance Innovations (Guided HIPAA Compliance)
(PANscan)

September 2014

American Business Awards
Health & Pharmaceutical Service (Guided HIPAA Compliance)

April 2014

Utah Best of State Award
(HIPAA Compliance Services)

April 2014

ETA Star Award
Business Partner of the Year

February 2014

Stevie Award for Sales and Customer Service
Healthcare Customer Service Department of the Year (HIPAA Support)

February 2014

Info Security Global Excellence Award
PCI Compliance (PCI Portal)

May 2013

Utah's Best of State
Best Customer Servicing and Call Center (Customer Service)

February 2013

Stevie Award for Sales and Customer Service
Global Sales Team of the Year
Sales Process of the Year

June 2012

Ernst & Young Entrepreneur of the Year
CEO Brad Caldwell, Technology

February 2012

Stevie Award for Sales and Customer Service
(Contact Center of the Year)

December 2011

Utah Valley Entrepreneurial Forum
Entrepreneur of the Year

October 2011

Arthur V. Watkins Awards
Entrepreneur of the Year

September 2010

Utah's 100
19th Fastest Growing Company in Utah

December 2010

Utah Valley Entrepreneurial Forum
Utah Valley's Best Kept Entrepreneurial Secret

August 2010

Inc. 500
13th Fastest Growing U.S. Security Company
408th Fastest Growing U.S. Company

March 2010

Utah Valley Magazine Top 50
4th Fastest Growing Company
14th Top Revenue Company

November 2010

Deloitte Technology Fast 500
122nd Fastest Growing Company

Executive Team

Company/Our Story/brad-caldwell

Brad Caldwell is Chief Executive Officer and founder of SecurityMetrics, Inc. Under Caldwell's leadership, SecurityMetrics has grown from a one-room scanning company to a global leader of industry compliance and data security solutions. Caldwell is certified as a data forensic investigator (PFI), onsite auditor (QSA), authorized scan vendor engineer (QSE) and certified information systems security professional (CISSP). Prior to founding SecurityMetrics, Caldwell co-founded Software Development Corporation, which developed WordPerfect for UNIX/Linux for Novell and Corel corporations. Brad is a graduate of Brigham Young University and enjoys racquetball, cars, and travel.

 

Company/Our Story/blake-stevens

Blake Stevens is the Chief Financial Officer at SecurityMetrics. With over 25 years of finance and accounting experience in a number of industries, Stevens is responsible for accounting, audit, financial analysis, treasury, tax, and investor relations. Stevens began his career as a financial analyst with Coldwell Banker and for twelve years served as the director of finance and corporate controller of Marie Callender's Pie Shops, Inc. where he was instrumental in developing accounting and POS systems and achieving company growth. Stevens later became the CFO of Logic General Inc., a manufacturer of CD and DVD's. Stevens holds a bachelor's degree in business administration, with a major in finance from Brigham Young University.

 

Company/Our Story/john-bartholomew

JB is Vice President of Technology at SecurityMetrics. With a degree in computer science from Brigham Young University, JB has racked up over 30 years' experience in the high tech field. Specilizations include cyber security technology solutions for payments, healthcare, manufacturing and entertainment. He has fulfilled a variety of roles from software developer to owner. Previous firms include: Broadway & Seymour, U.S. Steel, WordPerfect, Novell, Griffin-Hill, and Cogito. His greatest work satisfaction comes from helping clients understand and enjoy the benefits of new or advanced technologies.

 

Company/Our Story/russ-stay

Russell Stay is Senior Vice President of Business Operations at SecurityMetrics, and is responsible for defining, implementing, and executing formalized productivity and product processes for SecurityMetrics’ strategy. Stay has over 30 years experience in software product development, planning, and marketing at companies such as FamilySearch, Intl., Symantec Corporation, Franklin Covey Company, and Structural Dynamics Research Corporation. Stay studied for a master's degree in business administration at Pepperdine University and received a bachelor's degree in computer science and mechanical engineering from Brigham Young University. Father of three and grandfather of six, Stay enjoys racquetball, mountain bikes, rock climbing, backpacking, skiing, and his family.

 

Company/Our Story/Gary Glover_wires_bust

Gary Glover is Vice President of Assessments at SecurityMetrics and holds QSA (Qualified Security Assessor), PA-QSA (Payment Application Qualified Security Assessor), CISSP (Certified Information Systems Security Professional), and CISA (Certified Information Systems Auditor) certifications. Glover has completed over 100 PCI-DSS, PABP, and PA-DSS security assessments and is a regular contributor to the SecurityMetrics blog. Glover began his career at McDonnell Douglas Aerospace developing artificial intelligence and expert systems for rocket and propulsion systems. Additionally, Glover spent nearly 10 years in software development with companies such as Novell and Corda, is the author of two US patents, and received a Masters of Science degree in mechanical engineering from Brigham Young University. Glover's hobbies include skiing, RC airplanes, and sailing.

 

Company/Our Story/david-ellis

David Ellis is Vice President of Investigations at SecurityMetrics and holds PFI (PCI Forensic Investigator), GCIH (GIAC Certified Incident Handler), QSA (Qualified Security Assessor), and CISSP (Certified Information Systems Security Assessor) certifications. In addition to his forensics background, Ellis has over 25 years of law enforcement and investigations experience, was a Commander with the Oakland Police Department, holds a bachelor's degree from Columbia College, and graduated from the FBI National Academy. Ellis is a regular contributor to the SecurityMetrics blog, and enjoys doing almost anything with his family, including sport shooting, ATVing, and dirt biking.