Snyder, who was responsible for security sign-off for Microsofts Windows XP Service Pack 2 and Windows Server 2003, will spearhead Mozillas security strategy, eWEEK has learned.
The hiring of Snyder is a coup for Mozilla Corp., the for-profit subsidiary of the Mozilla Foundation, based in Mountain View, Calif.
The group has seen its flagship Firefox Web browser chip away at the market dominance of Microsofts Internet Explorer, largely because of high-profile security flaws in and attacks on IE, and the addition of Snyder is sure to help beef up Mozillas security process and improve its communications with bug finders.
Snyder most recently served as principal and founder of Matasano Security, a New York-based startup that was one of several external penetration testers hired by Microsoft to conduct simulated hacking attacks on Windows Vista.
She is also credited with seeding the idea for Microsofts internal "Blue Hat" security briefings, in which the crème de la crème of the hacking community is invited to the companys Redmond, Wash., headquarters to discuss security with employees.
Snyder, a regular at security conferences, helped to soothe Microsofts contentious relationship with security consultants, and played a part in the improvement of the software makers strategy for reaching out to security vendors and researchers.
Prior to joining Microsoft, Snyder was director of security architecture at @Stake, the old-school hacking group that was acquired by Symantec in September 2004.
At @Stake, she developed application security analysis methodologies and led the Application Security Center of Excellence. Snyder is also the co-author of "Threat Modeling," a manual that offers a structured approach for identifying, evaluating and mitigating risks to system security.