Josh Stone

Offensive Security Research Lead at FusionX Advanced Adversary Team
  • Claim this Profile
Contact Information
us****@****om
(386) 825-5501
Location
Baton Rouge Metropolitan Area

Topline Score

Topline score feature will be out soon.

Bio

Generated by
Topline AI

You need to have a working account to view this content.
You need to have a working account to view this content.

Credentials

  • CISA
    ISACA
    Jul, 2018
    - Nov, 2024
  • CISSP
    (ISC)²
    Jun, 2017
    - Nov, 2024

Experience

    • United States
    • Computer and Network Security
    • 1 - 100 Employee
    • Offensive Security Research Lead
      • Sep 2021 - Present

      Lead for the FusionX research and development team, creating advanced tooling, exploits, and TTPs to support the red team and related services.

    • Security Associate Principal
      • Aug 2018 - Present

      Supporting the red team at FusionX doing research and development.

    • United States
    • Computer and Network Security
    • 1 - 100 Employee
    • Senior Penetration Tester
      • May 2014 - Aug 2018

      Penetration testing, application testing, and related services focused on PCI compliance. Penetration testing, application testing, and related services focused on PCI compliance.

    • United States
    • Computer and Network Security
    • 1 - 100 Employee
    • Director of Product Management
      • Aug 2013 - May 2014

      In this role, I am responsible for directing the vision for our flagship security products and services. I oversee the state of the art in delivering our security services, as well as working closely with development and external parties to ensure that our software suites grow in sophistication and application to real-world customer environments.

    • Security Services Manager
      • Jan 2010 - May 2014

      Responsible for the design, implementation, and training for TraceSecurity's security services, from penetration testing and vulnerability assessments to audits and risk assessments.

    • United States
    • Higher Education
    • 700 & Above Employee
    • IT Security Officer, CS Dept.
      • Sep 2006 - Jan 2010

      Responsible for incident response, development of security infrastructure, and security policy. Developed and piloted unit-level security audit methodology. Implemented secure XMPP-based IM solution for the entire campus (40,000 users). Wrote UNIX-based SSN scanner to support campus-wide SSN-elimination project, now open source. Served on working group to review new body of campus security standards. While at U of I, I responded to a security breach 2-4 times per month. To advance awareness of security issues, I built a dark-net and deployed a 3D real-time visualization of incoming unsolicited threats for a display wall in the main foyer. Show less

    • Non-profit Organizations
    • 1 - 100 Employee
    • Electronic Communications Administrator
      • Mar 2005 - Sep 2006

      At SGA, I consulted with staff in the Commonwealth of Independent States, provided web development services, and managed the donor database. I was able to use some of my information security expertise, as well as my IT background to roll out a new iteration of the corporate web site and develop avenues of information flow to feed into publication processes and communication channels for our donors. At SGA, I consulted with staff in the Commonwealth of Independent States, provided web development services, and managed the donor database. I was able to use some of my information security expertise, as well as my IT background to roll out a new iteration of the corporate web site and develop avenues of information flow to feed into publication processes and communication channels for our donors.

    • United States
    • Motor Vehicle Manufacturing
    • 700 & Above Employee
    • Security Analyst
      • Jan 2003 - Mar 2005

      Served on a team of nine analysts providing incident response services for the entire enterprise. Conducted approximately 80 penetration tests for security review of internal and external applications and infrastructure. Supported Legal, Physical Security, and Human Resources with almost 200 forensic investigations. Developed new framework for three-tiered system of penetration tests to increase team throughput. Reimplemented web proxy log analysis tools to produce two orders of magnitude improvement in performance. Wrote port scanner to scan entire enterprise's 24 million-IP network quickly (under one hour) to improve team performance during major incident response. Show less

    • United States
    • Higher Education
    • 700 & Above Employee
    • Junior System Administrator
      • Jan 1999 - Jan 2003

      Worked as system administrator in three departments on campus, supporting approximately 2,100 users in a predominantly Sun Solaris environment. Supported users of systems running varieties of UNIX, Linux, and Microsoft Windows. Provided technical support for researchers in a consulting role. Provided web-development and DBA services for the Campus Career Center. Was responsible for security monitoring and patch management for Solaris systems in Chemical Engineering Department. Worked as system administrator in three departments on campus, supporting approximately 2,100 users in a predominantly Sun Solaris environment. Supported users of systems running varieties of UNIX, Linux, and Microsoft Windows. Provided technical support for researchers in a consulting role. Provided web-development and DBA services for the Campus Career Center. Was responsible for security monitoring and patch management for Solaris systems in Chemical Engineering Department.

Education

  • Michigan Technological University
    BSCS, Computer Science
    1997 - 2002

Community

You need to have a working account to view this content. Click here to join now