Jun 2020 – Jan 2023 · 2 yrs 7 mos

• Product evangelist

Jan 2019 – May 2020 · 1 yr 4 mos

Jun 2014 – Dec 2018 · 4 yrs 6 mos

• Provide leadership to the Advanced Penetration Testing and Vulnerability Assessment Quality Control teams.

Jan 2012 – Jun 2014 · 2 yrs 5 mos

• Infrastructure Vulnerability Assessment
• Provide leadership to highly talented and motivated group of security professionals who primarily work on penetration testing engagements, security architecture reviews, and vulnerability and threat management.

Jun 2010 – Jan 2012 · 1 yr 7 mos

• Provide vulnerability assessment services to businesses globally through comprehensive testing process. Typical assignments involve testing of overall security of critical infrastructure components and applications to ensure they comply with internal policies, security architecture best practices, and industry standards.

May 2015 – Jun 2017 · 2 yrs 1 mo

• Acquired by Synchronoss for $821 million
• Information Security Adviser

Aug 2010 – Present · 15 yrs 7 mos

• Author of SEC565: Red Team Operations and Adversary Emulation
• Instructor:
• SEC699: Purple Team Tactics - Adversary Emulation for Breach Prevention & Detection
• SEC565: Red Team Operations and Adversary Emulation
• SEC560: Enterprise Penetration Testing
• SEC504: Hacker Tools, Techniques, and Incident Handling
• SEC660: Advanced Penetration Testing, Exploit Writing, and Ethical Hacking
• SEC524: Cloud Security Fundamentals
• SEC577: Virtualization Security Fundamentals
• SEC579: Virtualization and Private Cloud Security

Jan 2010 – Dec 2021 · 11 yrs 11 mos

• ISSA Fellow. Serve on Board of Directors since 2010 in various positions including President for 3 years. Serve on the ISSA International Web Conference Committee.

Jun 2009 – Jun 2010 · 1 yr

• Provide security services to MSSP and Cloud customers:
• 24/7 Monitoring
• Intrusion Detection Systems
• Intrusion Prevention Systems
• Log Aggregation
• Network Analysis/ Deep packet Inspection
• Managed Firewall
• Network Forensics
• Database Monitoring
• Vulnerability Scanning
• File integrity monitoring
• Managed End User Metrics and Analytics
• Compliance Reporting

Oct 2007 – Jun 2009 · 1 yr 8 mos

• Technical position managing and supporting Corporate IT systems. Emphasis on maximizing up time and availability of systems to ensure productivity.
• Managed help desk and assisted junior administrators on escalated tickets; average ticket turnover: 4 hours or less.
• More information about this position may be obtained by contacting me directly.

May 2007 – Oct 2007 · 5 mos

• Migrate all client workstations to Active Directory including user profiles. 3800+ workstations

Dec 2002 – May 2007 · 4 yrs 5 mos

• Windows 2003 Small Business Server, Windows 2003 Standard, Share Point Portal Server and Microsoft Dynamics-CRM in-house implementation and maintenance
• Managing and administering customers in information technology (IT), gathering requirements, identifying customer needs, and formulating strategies and implementing Information Systems and Network Infrastructure including but not limited to: (a) Windows NT 4 and Windows 2000 migration to Microsoft Windows Server 2003 for small and medium sized business clients; (b) Active Directory user profile definition, user security policies, deployment procedures, maintenance routines, and data integrity verification; (c) Backup policy for business critical applications and overall system environment
• Design and manage help desk for residential and small business clients. Provided service to over 100 clients.