Andrew Thornton Email & Phone Number

Atlanta, GA

• Spearheaded the architectural design and implementation of all technology and product components for a managed detection and response service at a cybersecurity startup as the first hire.
• Created MDR platform comprised of Tanium, Cisco Umbrella, Deep Instinct, and other internally built tools, bringing enterprise level capabilities to smaller environments, increasing their security posture.
• Implemented entire security stack for securing corporate assets and networks along with customer systems running macOS and Windows operating systems.
• Designed and implemented a customer facing portal using python, postgres, and reactjs running in AWS, instrumental in achieving large customer growth.
• Created technology to ingest data points used for security posture rating and remediation item identification, giving enterprise customers real time visibility into their partner’s security posture.
• Implemented Splunk for data aggregation and correlation of security events, decreasing MTTD.

Atlanta, Georgia, US

Responsible for creating and leading the Threat Detection & Response center at The Home Depot in Atlanta, Georgia. Reported directly to the CISO. Provided technical and strategic direction to multiple groups including threat intelligence, digital forensics, security operations center, incident response and an offensive security team. Briefed Directors.

Atlanta, Georgia, US

Created and lead an offensive security team that performed ongoing large scale external, unauthenticated, unannounced testing of the production environment. Choreographed penetration testing from scope creation and analysis to final reporting. Briefed Senior management, to include Vice Presidents and Executive Leaders on security issues that have been.

Atlanta, Georgia, US

Ensured that the security posture of one of the largest e-commerce platforms in the world is as strong as possible through performing application security testing and code review. Partnered with business process owners to explain risks and to help balance security controls with functionality. Responsible for project management and delivery of security.

Washington, DC, US

Performed penetration testing activity against DoD enterprise networks. Responsible for assessing the technical compliance status of multiple programs within the organization against multiple commercial and government compliance regulations to include DIACAP, PCI-DSS and general DoD Technical Implementation Guidance. Ensured that applications were free.

Chicago, Illinois, US

Worked as a PCI QSA responsible for technical and procedural auditing of a number of fortune 500 companies to determine compliance with the Payment Card Industry Digital Security Standard. Encountered all types of operating systems, network systems and security systems. Reviewed system implementation documentation and configurations for various types of.

Atlanta, GA, US

Performed web application assessments and penetration tests for large clients in the financial, health care and manufacturing space. Assisted clients with deciphering and mapping given regulations to security practices. Responsible for managing clients, deadlines, process and procedures and delivery. Created new security programs for application security.

Reston, VA, US

Responsible for designing, implementing, and maintaining a security operations center for the aggregation and analysis of events from 14 NNSA sites to include National Labs. Implemented secured systems and the policies and procedures for the creation of those systems. Implemented large SIEM instances in all Linux environments. Performed incident response.

Reston, VA, US

Assessed the external security posture of regional headquarters for Department of Defense activity to include application security analysis. Created, deployed and audited firewall access lists, reviewed security device logs and reported findings detailing possible malicious or abusive activities. Researched and presented emerging security technologies to.