Scott Morris, CISM, CISSP, is a highly recognized cybersecurity and technology executive who serves as Senior Vice President of Technology & Security at The Beckage Firm. With over two decades of experience, Scott is known for his leadership in information security programs, governance development, and advisory work for organizations of all sizes. His background includes serving as CISO for Blue Cross Blue Shield of WNY, where he was responsible for enterprise cyber and information security programs and earned a reputation for building mature, governancealigned security operations.

Scott is regarded as a dynamic voice in the cybersecurity community and frequently contributes to industry panels and education efforts. His expertise spans security maturity programs, high‑net‑worth individual protection, identity and access management, cloud security, data privacy, SOC and HITRUST audits, DevOps‑driven security environments, and organizational security leadership.

INCIDENT RESPONSE WORK

Scott plays a central and highly technical role in the firm’s incident response practice. He manages the team at The Beckage Firm to assist with the technical response for IR matters to ensure DFIR and notification partners remain within scope and budget.

His responsibilities include coordinating with forensic teams during an incident, guiding containment and remediation efforts, and helping ensure the accuracy, completeness, and timeliness of technical analysis throughout an incident. This results in tremendous cost savings for clients/cyber insurance carriers and matching the rightforenisc parter with the client based upon the client’s systems, network, and needs.

He has responded to thousands of cyber incidents across industries and formerly oversaw enterprise level incident response and cyberoperations programs as a CISO.

As a leading member of the firm’s incident response team, Scott assists with containment, forensics, mitigation, backup recover, remediation, and interfacing with law enforcement., third-party risk evaluation, related claims, and responses to third‑party claims.

He compliments the tech lawyers at The Beckage Firm so that we just do not provide legal advice, but legal advice plus technical direction for risk mitigation and decreased costs.

BACKGROUND

Scott’s professional designations include CISM and CISSP. His background includes security leadership roles, advisory board service (including H‑ISAC), and contributions to security education and cybersecurity program development for both mature and emerging organizations.