Tom Pendergast, Writer, Editor, Adviser
When you engage with Tom Pendergast, you’re getting a unique combination of skills: business acumen, experience, leadership, solid writing, strong editorial sense, integrity, and humanity.
Tom co-founded a book packaging company (back when there were books) and ran the company for nearly 15 years. He then rose quickly at cybersecurity and privacy training company MediaPRO, spearheading the development of their online training curriculum and playing a vital role in their company growth and acquisition, ending his career there as Chief Learning Officer in 2021. He’s overseen dozens of direct reports, helped build and take products to market, acted as the company spokesperson at industry events, and contributed to all areas of the business. He’s a multi-faceted business leader with a deep love for using content to drive business growth. (His leadership extends to his community as well: he was elected to and served as president of his local school board.)
Tom’s got a Ph.D. in American Studies, he has authored 7 books (from a cultural history of American masculinity to history books for middle school readers), edited two dozen reference books, and written countless blog and magazine articles. Both his books and his training have won accolades and numerous industry awards.
What people who have worked with Tom mention first, however, is how great it is to work with him. He’s honest and empathetic, and he has a unique ability to surface and resolve difficult issues, both one-to-one and in groups. Ultimately Tom is deeply invested in the success of others—he truly improves the work of all those around him.
Selected Publications and Presentations
Books
Creating the Modern Man: American Magazines and Consumer Culture, 1900-1950, Columbia, MO: University of Missouri Press, 2000.
Articles
Confessions of an Awareness Nerd weekly blog, MediaPRO, https://www.mediapro.com/blog/confessions-awareness-nerd/, May 2019 to February 2021.
“Make Sure That Stimulus Check Lands in the Right Bank Account,” Dark Reading, https://www.darkreading.com/authentication/make-sure-that-stimulus-check-lands-in-the-right-bank-account/a/d-id/1340243, March 5, 2021.
“Five Things to Try in Your Awareness Program in 2021,” RSA Conference, https://www.rsaconference.com/library/blog/5-things-to-try-in-your-awareness-program-in-2021, January 4, 2021.
“Don’t Let New Privacy Laws Like CPRA Throw Your Off Your Privacy Training Game,” CPO Magazine, https://www.cpomagazine.com/data-privacy/dont-let-new-privacy-laws-like-cpra-throw-you-off-your-privacy-training-game/, November 23, 2020.
“The Time Is Now to Build Privacy Cultures in Our Organizations,” StaySafeOnline, https://staysafeonline.org/blog/the-time-is-now-to-build-privacy-cultures-in-our-organizations/, January 24, 2020.
“It’s Time to Combine Security Awareness and Privacy Awareness,” CPO Magazine, https://www.cpomagazine.com/cyber-security/its-time-to-combine-security-awareness-and-privacy-awareness/, May 22, 2019 (republished as https://trainingmag.com/its-time-combine-security-awareness-and-privacy-awareness-training/, January 29, 2020).
“The Next Cold War Is Here, and It’s All About Data,” Wired, https://www.wired.com/story/opinion-new-data-cold-war/, March 28, 2018.
“Two Paths to Meeting GDPR Training Requirements,” The Privacy Advisor (IAPP), https://iapp.org/news/a/two-paths-to-meeting-gdpr-training-requirements/, January 23, 2018.
“Avoiding the Dark Side of AI-Driven Security Awareness,” Dark Reading, https://www.darkreading.com/careers-and-people/avoiding-the-dark-side-of-ai-driven-security-awareness/a/d-id/1329258, July 5, 2017.
“The U.S. Is Slowly Submitting to the EU’s 2018 Privacy Law,” Venture Beat, https://venturebeat.com/2017/06/24/us-slowly-submitting-to-2018-eu-privacy-law/, June 24, 2017.
“What Happens When AI Meets Security Awareness,” ISSA Journal, Vol. 15, Iss. 6, June 2017.
“5 Signs Your Cybersecurity Awareness Program Is Paying Off,” Tripwire, https://www.tripwire.com/state-of-security/security-awareness/5-signs-cybersecurity-awareness-program-paying-off/, March 28, 2017.
“4 Signs You, Your Users, Tech Peers & C-Suite All Have 'Security Fatigue,'” Dark Reading, https://www.darkreading.com/endpoint/4-signs-you-your-users-tech-peers-and-c-suite-all-have-security-fatigue/a/d-id/1328103, February 9, 2017.
“Retailers Turn to Human ‘Sensors’ to Shore Up Physical and Digital Security,” https://www.mytotalretail.com/article/modern-retailers-must-turn-human-sensors-shore-physical-digital-security/, August 25, 2016.
“For the Incoming Federal CISO: Focus on the Human Side of Cybersecurity,” SC Magazine, https://www.scmagazine.com/home/opinions/for-the-incoming-federal-ciso-focus-on-the-human-side-of-cybersecurity/, July 25, 2016.
“An Open Letter to the New Federal CISO,” Venture Beat, https://venturebeat.com/2016/07/23/an-open-letter-to-the-new-federal-ciso/, July 23, 2016.
“Creating a Risk-Aware Culture through Built-In Privacy,” Privacy Perspectives (IAPP), https://iapp.org/news/a/creating-a-risk-aware-culture-through-built-in-privacy/, January 29, 2016.
“Behavioral Analytics: The Future of Just-in-Time Awareness Training,?” Dark Reading, https://www.darkreading.com/vulnerabilities---threats/behavioral-analytics-the-future-of-just-in-time-awareness-training/a/d-id/1323979, January 20, 2016.
Adaptive Awareness series (11 articles), CSO Online, https://www.csoonline.com/blog/adaptive-awareness/, 2016-2018.
“Why Employees Are the Last Line of Defense Against New EMV Card Fraud,” Payment Week, https://paymentweek.com/2015-11-10-why-employees-are-the-last-line-of-defense-against-new-emv-card-fraud-8798/, November 10, 2015.
“Why Mere Compliance Increases Risk” (with John Schroeter), CSO Online, https://www.csoonline.com/article/2134019/why-mere-compliance-increases-risk.html, October 2, 2013.
Presentations
Moderator, “Awareness at Scale: Creating Risk-Aware Cultures in Big Companies,” RSA Conference, March 2019.
Moderator, “Let’s Blow Up Security Awareness and Start Over,” RSA Conference, April 2018.
“The Challenge of Creating an Adaptive Awareness Program,” FISSEA Conference, March 2016.
“Build an Adaptive Awareness Program Based on NIST's Cybersecurity Framework,” ISSA International Conference, October 2015.
Numerous other sponsored and local speaking engagements.