Fortify Employee Spotlight: Sitting Down with Shawn Simpson

by in Security

I’ve been working with Shawn Simpson for a few months now and it’s been a great experience. After Rick Smith left Fortify, Shawn picked up the ball and ran with it. He’s been an all-star Product Manager who has a passion for Fortify WebInspect. His 15 years as a WebInspect developer gave him an in-depth knowledge of the product that is second to none. It’s my pleasure to present Shawn Simpson as our latest Fortify Employee Spotlight.

Fortify Employee Spotlight Sitting Down with Shawn SimpsonQ: Where did you grow up? 

All over the US, my dad worked for IBM so we moved every couple of years. 

Q: How did you come get into application security?  

My introduction to application security was joining the QA team at SPI Dynamics in 2006 on the DevInspect project. Testing then developing an Eclipse plugin to perform static and dynamic analysis when the JVM could only support 1GB of memory was an ambitious project to say the least.  

Q: What do you do at Fortify? 

I’m the Product Manager for the Fortify DAST products, but that is a new role for me, I was previously a WebInspect developer for the last 15 years. 

Q: What motivates you when you come into work every morning?

Our customers motivate me. Working with them and seeing over and over small security teams tasked with securing hundreds of apps. I hear over and over from them asking for help in managing these huge workloads. 

Q: What about security keeps you awake at night?  

API security and GraphQL in particular. GraphQL is getting a lot of adoption by developers, while how to secure it is still in the learning phases.

Shawn Simpson of FortifyQ: What do you feel makes Fortify’s culture so special?

A: Fortify is a place where it is not only OK, but we are encouraged to take risks. If anyone sees an opportunity, whether personal or business related, they can go for it. 

Q: If you could do another job for a day, what would you do?

A: Air Traffic Controller. I think I would only last a day. 

Q: If you had a motto, what would it be?

A: If you never try you will never know 

Rapid fire questions...
Q: Beach or mountain lake vacation?
A: Mountain lake
Q: Sunrise or Sunset?
A: Sunset
Q: Audio or video conferences? 
A: Audio
Q: Apple or Android?
A: Apple
Q: Time travel to the future or the past?
A: Future
Q: Coffee or tea?
A: Coffee
Q: Sweet or salty?
A: Sweet
Q: Guitar or drums?
A: Guitar


About Micro Focus Fortify

Fortify lets you build secure software fast with an application security platform that automates testing throughout the CI/CD pipeline to enable developers to quickly resolve issues. Fortify static, dynamic, interactive, and runtime security testing technologies are available on premises or as a service, offering organizations the flexibility needed to build an end-to-end software security assurance program.

Looking to join an industry leader filled with passionate problem-solvers on a mission to help organizations protect their applications from the bad guys? Check out our open positions now. 

Join our Fortify Community. Have technical questions about Application Security products? Visit the Fortify discussion forum.  Keep up with the latest Tips & Info about Application Security. We’d love to hear your thoughts on this blog. Log in or register to comment below.


Application security