Technical Marketer · Cybersecurity Strategist

Making complex security
feel simple and inevitable.

I translate hard technical problems into sharp market strategy — positioning, messaging, and launches that build pipeline and move markets.

By the numbers

$21M Pipeline influenced in one launch
80+ Assets, one product launch
#1 Ranking in Forrester WAF Wave, 2025
7+ Years in cybersecurity
3 Industry-leading companies

About me

I live at the intersection of security, story, and strategy.

I've spent 7+ years at the intersection of technical strategy, risk communication, and marketing, making complex security concepts actionable. My career spans application security, data governance, and AI protection — giving me a deep, practical understanding of modern threat vectors and compliance landscapes.

I specialize in translating technical specifications into robust frameworks, driving cross-functional alignment across engineering and compliance teams, and building metrics-driven strategies. A self-driven technical strategist, I leverage advanced process development and custom AI automation to streamline workflows and manage risk. Whether architecting market positioning or designing internal governance and communication strategies, my focus is on making strategy and risk mitigation easy to understand for any stakeholder.

Messaging & Positioning Go-to-Market Analyst Relations Sales Enablement Competitive Intelligence Content Strategy Compliance & GRC
Catherine Newcomb speaking at RSAC

Writing & Research

Content that informs
and converts

View all writing →

Research Report · Cloudflare · 2024

State of Application Security, 2024

Annual Cloudflare research report analyzing web application and API security trends. Uncovers threat vectors, protection mechanisms, and industry benchmarks using first-party analysis of Cloudflare's global network data.

Whitepaper · Varonis · 2022

US Data Protection and Privacy

Survey of key U.S. consumer data protection and privacy legislation — FCRA, GLBA, SOX, HIPAA, and state-specific data privacy laws — for legal, compliance, and security audiences.

Presentations & Speaking

On stage, on camera,
on demand

View all →

Webinar · Cloudflare + Forrester · 2026

Practical Tips for Securing Public-Facing AI Apps and Cutting Through the Noise

Joint webinar with Forrester covering AI application security challenges, prioritization strategies for security teams, and a market look ahead. Co-presented with Sandy Carrielli (Forrester) and James Todd (Cloudflare).

Techstrong TV · The Last Great Cloud Transformation

Safeguarding Innovation by Strengthening External Security

Episode 7 of Techstrong TV's cloud transformation series — covering how organizations protect external-facing infrastructure without slowing down innovation.

Behind the scenes

How I built this

I write about AI and application security for a living, so I wanted this site to actually run on the stack I cover — not just describe it. The front end, the "Ask Catherine" assistant, and its guardrails are all things I built and can speak to firsthand.

The website itself

No website builder, no off-the-shelf template — every page is custom-built from scratch, with Claude as my coding partner. I directed the design and decisions; it keeps the site fast, lightweight, and fully in my control, down to each color, font, and layout choice.

Hosting

Cloudflare Pages, deployed straight from Git. Static assets served from the edge for speed everywhere.

"Ask Catherine" chat

A serverless function calling Cloudflare Workers AI (Llama 3.2) that lets visitors ask about my background and work — and get grounded, conversational answers instead of a static bio.

Abuse protection

The endpoint has its own defenses: strict scope limits so it only speaks to my work, prompt-injection detection, and per-IP rate limiting to keep it from being misused.

Contact form

A serverless function posting to Resend for delivery — no third-party form embeds or trackers.

Security hardening

The assistant runs behind Cloudflare AI Gateway for logging and content guardrails, paired with a carefully engineered system prompt that keeps its answers accurate, on-topic, and resistant to manipulation.

HTML / CSS / JS Cloudflare Pages Workers AI AI Gateway Resend Claude Code

Get in touch

Let's work together

Whether you're looking to sharpen your positioning, plan a launch, or just want to talk cybersecurity strategy — I'd love to hear from you.