Apr 2024 – Present · 2 yrs 2 mos · San Mateo, California, United States · Hybrid

• A guild member and Chief Security Officer for Invictus Growth Partners. Helping advise Invictus with security-related decisions, advisor to portfolio companies on cybersecurity strategies, and guidance on future investments in cybersecurity.

Feb 2023 – Present · 3 yrs 4 mos · Santa Clara, California, United States · Hybrid

• Board member and cybersecurity advisor for Axiad. Axiad is a leader in passwordless, phishing-resistant authentication. Axiad securely authenticates all users and machines with a cloud-based flexible SaaS platform.

Jan 2023 – Present · 3 yrs 5 mos · Illinois, United States · Hybrid

• Illinois Alternative Medicine (IAM) is a hormone replacement therapy (HRT) and testosterone replacement therapy (TRT) telemedicine company focusing on longevity and optimizing your overall health. With a highly talented and specialized team of doctors, IAMs mission is to help you optimize your energy levels, uplift your mood, revitalize your vitality, and ultimately, enhance your overall quality of life. IAM believes in a modern approach to well-being that takes a holistic view of your health.
• https://iamhrt.com

Jan 2020 – Present · 6 yrs 5 mos · Brunswick, Ohio, United States · On-site

• Co-Founder of Swish365, a franchise model for several of the most technologically advanced basketball training facilities in the world. Swish365 combines data analytics, state-of-the-art shooting machines, ball handling machines, and more to help optimize your basketball training to all new levels.

Jul 2012 – Present · 13 yrs 11 mos · Stow, Ohio

• Binary Defense was created from the need for better monitoring and detection capabilities in companies. Binary Defense is a full service 24/7/365 Monitoring and Detection company (MSSP) that focuses on the detection of attackers in its early stages. Binary Defense has created one of the most advanced Managed Detection and Response (MDR) platforms on the market and our team is an extension of yours, and individuals you can rely upon.
• Visit https://www.binarydefense.com for more information.

Jul 2012 – Present · 13 yrs 11 mos · Fairlawn, Ohio, United States

• TrustedSec, LLC is an information security consulting company located in Berea, Ohio. TrustedSec was founded by David Kennedy and provides information security assessment and consulting services.
• David Kennedy is the President / CEO of TrustedSec, LLC. Prior to TrustedSec, David was a Chief Security Officer (CSO) for an international fortune 1000 company. David developed a global security program with a large dedicated team. David is considered well respected in the security field and has presented at many conferences worldwide. David has had guest appearances on FoxNews, BBC, and other high-profile media outlets. David is the founder of DerbyCon, a large-scale security conference in Louisville Kentucky. David also authored Metasploit: The Penetration Testers Guide book which was number one on Amazon.com in security for over 6 months. David was also one of the founding members of the “Penetration Testing Execution Standard (PTES)“. PTES is the industry leading standard and guidelines around how penetration tests should be performed and methodologies.
• David is the creator of several widely popular open-source tools including “The Social-Engineer Toolkit” (SET), Artillery, and Fast-Track. David has over 19 years of security experience, with over five years specifically for information security consulting. Prior to the private sector, David worked for the National Security Agency (NSA) and the United States Marines in cyber warfare and forensics analysis. David was instrumental in Operation Iraqi Freedom (OIF) and developed a multi-million dollar classified system aimed at identifying potentially harmful insurgents and worked in a top secret classified environment for several years.

Aug 2010 – Aug 2011 · 1 yr

• Director of Information Security At Diebold Incorporated, a Fortune 1000 company located in North Canton Ohio. As Director, David has a team responsible for the information security program and ensure Diebold's risks are reduced and protected against attack. David has focused heavily on the incident response, vulnerability management, penetration testing, application security, monitoring and prevention, zero-day research, and security research programs at Diebold.

Jan 2010 – Aug 2010 · 7 mos

• Director of Regional Security at Diebold. Responsibilities include running a team of highly skilled individuals to maintain, increase, and protect Diebold's reputation and systems in over 60 different countries.

Dec 2009 – Jan 2010 · 1 mo

• Regional Security Officer (RSO) for Europe, the Middle East, Africa (EMEA) and Asia Pacific (AP). Responsibilities include ensuring consistent security practices, compliance, and best practices with Enterprise Security across a wide-spanning area of diversity and distance.

Nov 2009 – Jun 2012 · 2 yrs 7 mos

• Chief Security Officer (CSO) at Diebold Incorporated; a Fortune 1000 company located in North Canton Ohio. As CSO, David is responsible for all Information Security, Compliance, Physical Security, and Loss Prevention related activities. Ultimately David's goal is to minimize risk to the organization and protect Diebold from attack.
• Ensuring a Fortune 1000 organization is protected against attack is a unique opportunity. Maintaining functional security programs and ensuring that new risks towards the business are identified is vital to the success over the security program within an international organization. David has created several security programs within Diebold that are maturing and elevating Diebold's security posture worldwide.
• Prior to Diebold, David worked as the Vice President of Consulting at SecureState, an information security based consulting company out of Cleveland Ohio. David ran a team of highly skilled individuals tasked with building security within large organizations. While working at SecureState, David presented at some of the nations largest international hacking conventions including Defcon and Shmoocon.
• David is the author of the Social-Engineer Toolkit (SET), a suite for security professionals to perform social-engineering attack vectors and perform testing. David also created the Fast-Track, an open-source suite that has gained wide acceptance in the information security community.
• David is co-author of the "Metasploit: The penetration testers guide" and is currently working on several other security related books. David is on the Back|Track development team, released exploits for the popular Metasploit Framework and helped create the Metasploit Unleashed course. David has presented at a number of large conferences.
• Prior to SecureState, David was a Sergeant in the United States Marine Corps and deployed several times to Iraq and other foreign countries in support of highly sensitive intelligence efforts.

Aug 2010 – Present · 15 yrs 10 mos · Hybrid

• As a subject matter expert at the Institute of Applied Network Security (IANS), I contribute significantly to assisting IANS customers with complex security requirements. In my role as an IANS faculty member, I have presented at numerous IANS forums, conferences, and individualized speaking events. Additionally, I provide advisory services to IANS customers on both technical and non-technical security-related topics, including emerging and future industry trends.

Aug 2010 – Sep 2019 · 9 yrs 1 mo

• DerbyCon is a conference located in Louisville Kentucky and amasses over 2,000 individuals every year. The conference focuses on family first and the sharing of knowledge between a community. DerbyCon was started by David Kennedy, Erin Kennedy, Martin Bos, Adrian Crenshaw, and Alex Kah originally.
• Visit https://www.derbycon.com for more information on this amazing conference.

Jul 2005 – Nov 2009 · 4 yrs 4 mos

• Partner and practice lead for SecureState.

Jul 2000 – Jul 2005 · 5 yrs