Stephen Quinn is a computer scientist at the National Institute of Standards and Technology (NIST). He is the co-originator of the Security Content Automation Protocol (SCAP) scap.nist.gov who also oversees the Security Automation Initiative at NIST including NIST National Checklist Program (checklists.nist.gov) and National Vulnerability Database (nvd.nist.gov).
Prior to joining NIST, Steve worked as consultant to the Department of Defense and large commercial outsourcings with Wall Street banking firms and insurance companies. Specifically, he comes from an operational background, having owned a company that provided services offering for vulnerability assessments, designing security architectures, code development, C&A, and ST&Es. His research experience includes computer viruses, intrusion detection systems (IDSs), vulnerability/misconfiguration identification, categorization, and remediation