Technical Product Manager

• Nov 2019 - Present

Senior Director of Cybersecurity Research and Comms.

• Jan 2018 - Nov 2019

At CynergisTek, I initially came in to build out and fix the offensive security offerings. I worked as the sole consultant in offsec for almost a year until I was able to begin building a team. After the team was running smoothly and a new manager was hired I was tapped by the CEO and executives to become a full-time thought leader. During this time I spoke at numerous industry events, was published dozens of times on both the CynergisTek blog and in various industry publications. I also helped to develop new services (web app assessment, incident response, etc.) as I transitioned to a Sr. Director role which allowed me to continue work on marketing and development while also taking on more technical assignments such as offensive security assessments and IR exercises. In the last year major acquisitions, management changes, and a rapidly changing company culture let me to move back to a purely consulting role as the lead pentester on the offensive security team.

VP, Cybersecurity Strategies (Lead Hacker)

• Mar 2016 - Jan 2018

Senior Specialist

• Aug 2015 - Apr 2016

Security advisory, penetration testing, and client services. Security advisory, penetration testing, and client services.

Network Engineer II (Penetration Tester)

• Jun 2014 - Aug 2015

I worked as a Penetration Tester for the First Data Corporation. I work closely with the Security and Networking teams to help First Data identify and mitigate IT Security risks and help to keep the company and its clients in compliance with related regulations. I worked as a Penetration Tester for the First Data Corporation. I work closely with the Security and Networking teams to help First Data identify and mitigate IT Security risks and help to keep the company and its clients in compliance with related regulations.

IT Security Auditor

• Aug 2013 - Jun 2014

I worked in the Internal Audit department for Kiewit I work closely with the IT Security department and the other members of Internal Audit to identify and rate risks. This job has given me the opportunity to hone my skills in security, identifying risk and testing systems. I had the opportunity to fix many important security controls and identify improvements that add to the overall security of the organization. One of my last duties here was to perform a total penetration test on the web-facing portion of the network to help the company greatly improve their overall security posture.

Desktop Administrator

• Dec 2011 - Aug 2013

Here I was responsible for maintaining and updating two departments SharePoint sites which included two separate overhauls. Moved from Help Desk up to Second level support, I managed user accounts, repaired and deployed desktop and laptop computers along with other enterprise hardware. I was the BMC Remedy SME in both departments I worked in and helped the IT support departments transition from IT Service Manager to BMC Remedy. I also periodically helped the Security department as they knew that was my specialty, I primarily filled in when they needed help with forensics.

Network Security Officer

• Nov 2007 - Dec 2011

I was the Battalion AD Admin, Information Security Officer, Information Management Officer, Network Administrator, Security Administrator, Information Assurance Manager, Information Assurance Security Officer, Telephone Control Officer, and just about any other technical position that needs to be filled. Performed hardware, software and network upgrades for the US Army in Europe information systems to comply with current policies and procedures. Including several major operating system hardware and software upgrades keeping the organization in compliance with DoD and US Army Europe regulations. I was responsible for implementing and maintaining system security and configurations of over 300 company end-user systems while providing IT support, to include planning, software and hardware configuration to a staff of over 350 end-users maintaining at least a 97% reliability rate. Implemented information assurance standards and policies to all 350 users including training, tracking and maintaining both physical and electronic records of all pertinent user level certificates needed to remain compliance with Department of Defense and US Army in Europe regulations. Maintained and updated over 200 printers and digital senders including life-cycle replacement and print server management resulting in a system up-time average of 99%. Supported users and systems throughout the organization with offices throughout Eastern Europe including offices in Germany, Belgium and The Netherlands. This includes extensive travel and phone support to ensure that the organizations responsibilities can be accomplished with minimal interruption. Trained, maintained and managed help-desk staff, to include up to 7 staff and ensuring all common tasks and standards are written, up to date, and maintained both on paper and electronically earning the department high marks on all inspections from all levels.