Aug 2018 – Present · 7 yrs 7 mos · Global

• Executive team member responsible for a global organization that includes the Security, IT, Fraud, Client Account Security, Core Services Engineering and Operational Resiliency.

Aug 2017 – Present · 8 yrs 7 mos · Las Vegas, Nevada, United States

• Volunteer at the largest hacking conference in the world.
• Member of the NOC that builds, designs, secures and manages the wired and wireless network utilized by 10s of 1000s of attendees each year.

Sep 2016 – Jan 2024 · 7 yrs 4 mos · Greater Boston

Apr 2016 – Present · 9 yrs 11 mos · Greater Chicago Area

Mar 2016 – Sep 2020 · 4 yrs 6 mos · Greater Chicago Area

Mar 2016 – Jul 2018 · 2 yrs 4 mos · Greater Chicago Area

• Uptake is a predictive analytics SaaS platform provider that empowers companies in major industries to optimize performance, reduce asset failures and enhance safety. Leveraging unique partnerships with industry leaders, Uptake integrates cross-industry expertise, data science and workflow connectivity to provide high-value solutions using massive data sets. Uptake’s technology products identify problems before they happen and deliver workflow-centric insights to drive improvements in efficiency and productivity.

Apr 2014 – Mar 2016 · 1 yr 11 mos · Greater Chicago Area

• Rapid7 is a leading provider of security data and analytics solutions that enable organizations to implement an active, analytics-driven approach to cyber security. We combine our extensive experience in security data and analytics and deep insight into attacker behaviors and techniques to make sense of the wealth of data available to organizations about their IT environments and users. Our solutions empower organizations to prevent attacks by providing visibility into vulnerabilities and to rapidly detect compromises, respond to breaches, and correct the underlying causes of attacks.

Oct 2013 – Apr 2014 · 6 mos · Chicago, Illinois

• I led the development of a team at KPMG called 4DI where we advised clients on innovative ways to solve security problems stemming from new and emerging threats.

Aug 2009 – Present · 16 yrs 7 mos · Greater Chicago Area

• THOTCON (pronounced \ˈthȯt\ and taken from THree - One - Two) is a small venue hacking conference and 501(c)(3) based in Chicago IL, USA. This is a non-profit, non-commercial event looking to provide the best conference possible on a very limited budget. The annual event brings in 1,700 attendees from around the world to a casual, uncensored discussion on the latest hacking trends facing the planet.

Jan 2003 – Oct 2013 · 10 yrs 9 mos · Greater Chicago Area

• Developed, sold, and delivered the company’s first security consulting offerings that set the benchmark for affordable security and compliance solutions of high quality and value.
• Architected and managed the development of the company’s first vulnerability scanning and compliance portal
• Formed Trustwave SpiderLabs in 2005 based upon growing need for advanced information security consulting and research within Trustwave’s client base.
• Continued to recruit, build, and lead one of the most respected information security teams in the world - at the time of his departure the team had a presence in 15 different countries and an annual attrition rate of less than 5%.
• Managed all aspects of the SpiderLabs brand and drove market recognition
• As of 2013, the SpiderLabs team consisted of 8 regional directors reporting to Percoco with a total team size of just over 110 investigators, ethical hacker and security researchers
• Responsible for the global SpiderLabs P&L with a focus continually working to reduce costs while delivering a high-quality product via a talented pool of resources
• Asked to lead many of the world’s largest data breach investigations including the largest consumer data breach in history – TJX.
• Embraced and architected innovative technology as an enabler to achieve over 60% margin continually for the last 5 years as a professional services organization.
• Served as the primary author of Trustwave’s Global Security Report that contains detailed analysis utilized by security executives at Fortune 500 companies in planning and validating their security initiatives.
• Interviewed hundreds of times for print, radio and television including live television appearance on international news programs.

Jun 2000 – Jan 2003 · 2 yrs 7 mos

• Strategic Security Advisor for many Fortune 500 organizations with a focus on the Financial and Insurance Industries.
• Knowledge leader / Developer of a new Enterprise Security Development Program for VeriSign’s Fortune 100 clients.
• Mentor to a team of highly skilled security consultants.
• Drove consulting sales revenue by building trusted relationships with many Fortune 500 organizations.
• Served as key subject matter expert for many internal consulting Practice Advisory Committees (PACs).
• Technical lead in the architecture, design, and construction of a Security Operation Center (SOC) enabling an e-business continuity services organization to offer managed security services to their existing clients
• Technical lead in a comprehensive security assessment for a premier futures trading market.
• Technical lead in the architecture, design, and deployment of several internal network access control devices for a large financial institution
• Developed a security assessment standard for a large global financial institution used by their security organization to measure the security posture of organizations during a merger or acquisition.
• Joined VeriSign through the Exault acquisition in September 2001.

Nov 1998 – Jun 2000 · 1 yr 7 mos

• Technical lead in a comprehensive penetration test, vulnerability assessment, and war-dial of a national financial conglomerate resulting in the presentation of findings and recommendations to an audience of over 20 business unit CIO's.
• Deployed hundreds of network access control devices, virtual private networks, and intrusion detection systems for a large number of Fortune 500 organizations.
• Architect, designed, and deployed a centralized firewall management infrastructure for a global insurance company.
• Joined ISS through the Netrex acquisition in April 1999.

May 1997 – Nov 1998 · 1 yr 6 mos

• Technical lead in the architecture, design, and deployment of a global remote access infrastructure Accenture partners and employees.
• Technical lead in the architecture and design of a global network time synchronization infrastructure.
• Joint Technical lead in the re-architecture of Accenture's global DNS and DHCP infrastructure as a component of the Arthur Andersen/Accenture global network separation project.