Matt Bretan Headshot

Matthew Bretan is a technology strategy professional focused on emerging technologies and the development of secure holistic solutions. He has a proven ability to lead large scale technology transformation projects and to integrate technologies into existing infrastructures to enhance corporate efficiencies while mitigating risk.

Matthew is currently a Principal Manager within AWS, where he helps drive Professional Service’s global Security, Risk, and Compliance practice. He has led security engagements with some of the world’s largest brands across many different industries including: finance, technology, hotels, ticketing, manufacturing, apparel, and life sciences. His specialty is around helping organizations maximize their profitability and returns through the design and implementation of secure holistic technology solutions. Currently he is leading a team that is building out platforms that allow customers to experience and understand security within AWS in new and different ways

Prior to his work with AWS, Matthew was a Vice President at Goldman Sachs. In this role, he advised the firm on the identification and remediation of technology risk within their infrastructure globally. He was also responsible for policy and technology uplifts within their information security space. Before joining Goldman Sachs, he led the Strategic Consulting team at Eze Castle Integration, a global boutique consulting firm specializing in the financial services space.

Matthew lives in Southern California with his wife and 2 children.



Amazon Web Services

Principal Manager - Security Experience — Nov 2017 to Present
Principal Security Consultant — Feb 2014 to Nov 2017
Responsible for enabling AWS’s largest customers to move their sensitive workloads into the cloud. Leads the development of new offerings while also working to scale the impact that the Security, Risk, & Compliance Practice has on our customers and partners.

Goldman Sachs

Vice President - Technology Risk Advisor — Sept 2010 to Feb 2014
Advised Goldman Sachs on the identification and remediation of technology risk globally within their network, voice, video, virtualization plant, storage and building management infrastructure. Drove policy and technology uplifts within the information security space around malware prevention, data loss prevention and perimeter security.

Eze Castle Integration

Director — Jan 2009 to Sept 2010
Product Manager — Sept 2007 to Jan 2009
Responsible for the Strategic Consulting team who provided direction to organizations looking to maximize their profitability and returns through design and implementation of holistic technology solutions. Provided advanced vendor/product comparisons revolving around technology risk, VoIP, data connectivity, privacy compliance, high frequency trading architecture, and SaaS platforms in order to maximize a client’s capital expenditure. Drove executive decision-making with respect to new product development and rollout.

Merrill Lynch

Senior Voice Architect — Jul 2005 to Sept 2007
Responsible for creating detailed design documents, certification of new technology, developing budgets and scopes for projects, performed solution reviews with clients, provided implementation support, and solution validation testing. Trained and mentored new hires on the company’s global voice standards and technical policies.


New York University - Polytechnic School of Engineering
Master’s, CyberSecurity

The Pennsylvania State University
Bachelor’s, Information Science & Technology


Public Speaking Engagement

AWS re:Invent 2017

AWS re:invent 2017: Best Practices for Implementing AWS Key Management Service (SID330)
Dec 1, 2017

AWS re:Invent 2016

Deep Dive: Security and Governance Across a Multi-Account Strategy (SAC320)
Dec 1, 2016

AWS re:Invent 2015

Enterprise Cloud Security via DevSecOps 2.0 (SEC402)
Oct 8, 2015

Written Publications

AWS KMS Best Pratices Whitepaper
April 20, 2017
AWS Security Blog

How to Help Protect Sensitive Data with AWS KMS
Jan 25, 2016
AWS Security Blog

How to Create a Policy That Whitelists Access to Sensitive Amazon S3 Buckets
Sept 14, 2015
AWS Security Blog

Open Platform: What’s True, What’s False and What’s Next for High-Frequency Trading
Oct 11, 2010

Hosted Business Applications: What Hedge Funds Must Consider
July 27, 2010
ECI Blog


Thank you for your interest in connecting with me further. The easiest way to do so is via the social media accounts below: