• Direct and manage the Cyber Defense Red Team to proactively execute simulated attacks on United’s security systems. Our primary objective is to strengthen United’s cybersecurity posture by identifying and addressing vulnerabilities in both cybersecurity and physical security infrastructures. By concentrating on the root causes, we aim to enhance United’s detective, responsive, and preventive controls.• Coach and mentor intra- and cross-team members across all organizational levels, promoting technical and professional growth and development.• Develop and implement scalable processes for Cybersecurity and Digital Risk, and Cyber Defense initiatives.• Establish and maintain a comprehensive metrics program to assess and report on the impact the Cyber Defense Red Team has on United's cybersecurity program’s maturity and effectiveness. •Collaborate with external stakeholders, including law enforcement, cyber insurers, and legal counsel, to fortify cybersecurity measures.• Manage United's Vulnerability Disclosure Program.

• Responsible for performing penetration tests, attack surface reduction engagements, and Red Team assessments.• Support intra- and cross-team alignment across Cybersecurity and Digital Risk, as well as the broader business, drawing on business and technical experience to deliver results.• Provide assessment reports detailing technologies, how they fit into United’s infrastructure, and how to secure them either through changes in the technology themselves or the processes in place, with minimal/no disruption to operations.• Develop and implement security standards, procedures, and guidelines for multiple platforms and diverse environments.• Directly assist with United's Vulnerability Disclosure Program.

• Member of Red Team that simulated real-world, advanced cyber-attack scenarios for clients in the financial, energy, manufacturing, health, telecommunications, and technical industries. This included using proven methodologies, tactics, techniques, and procedures (TTPs) in an attempt to gain access to critical business data to demonstrate the risks associated with real-world advanced persistent threats (APTs).• Executed both detection-based and adversary simulation Purple Team exercises leveraging the MITRE ATT&CK framework, focusing on evaluating the efficacy of the client’s detective security controls.• Performed Network Security Architecture Assessments where risk and maturity scores are assigned to key security controls within the client’s network architecture through interviewing subject matter experts, reviewing documentation, and analyzing a sample of system configurations.• Served as team lead responsible for managing and leading the delivery team to success. This includes meeting and managing Customer, Project Manager, and Delivery Manager expectations to ensure the timely delivery of quality execution and reports while protecting customer data.• Presented assessment results to senior executives, project sponsors, as well as technical experts, with a focus on the root cause of security vulnerabilities. Mitigation and detection recommendations were given to support the improvement of the business's overall security posture.• Social Engineering Service owner responsible for developing schemes that exploit human weakness. This included the development and standardization of the service catalog comprised of sales collateral, statements of work, scoping tools and guidance, reporting and presentation templates, tooling, and methodology. • Developed, maintained, provisioned, and administered secure remote command and control jump boxes to execute red team, internal networking, and application testing.

• Responsible for all phases of testing, from project scoping and execution, to reporting and communicating client deliverables.• Designed and executed multiple network based penetration tests (both Blackbox and Whitebox) for various organizations.• Designed and executed web application penetration tests for a wide variety of web services, software stacks, and applications looking specifically for application inconsistencies or coding errors and vulnerabilities listed within the OWASP Top Ten Project.• Developed and implemented telephonic, electronic, and physical social engineering assessments to simulate real-world attacks and exemplify the risk of the breakdown in security at the human layer.• Mentored consultants to help develop not only their penetration testing and security assessment skills but also helping develop soft skills to support the growth of their career. Technical Lead – Protiviti Security Labs---------------------------------------• Designed, constructed and implemented the Chicago Security Lab network architecture, including the configuration and implementation of various Cisco network devices and Operating System solutions to support client-facing and internal security efforts.• Supported multiple, countrywide, Protiviti Security Lab infrastructures, including dynamic routing solutions, firewall configuration and maintenance, and point to point VPN connections between the multiple labs to help facilitate redundancy and the centralization of resources.• Developed, maintained, and administered a virtual Pentest Challenge Lab used to evaluate potential new hires as well as train internal resources. This environment was recognized as the baseline for pentesting new hires firm wide.

• Member of team managing client network and server infrastructure• Provided fundamentals of information security, security infrastructure design and implementation, computer forensics, and risk assessment and their impact on business operations• Provided the financial industry of Chicago with networking and server support• Applied advanced troubleshooting techniques to solve complex networking and systems problems • Designed, implemented, and maintained small to medium-scale networks• Produced professional documentation; including network diagrams, procedures, and best practices• Participated in maintaining and managing 24x7 help-deskTrading and Financial Industry• Served as part of team responsible for migration of data center infrastructure, including planning, coordinating, cabling, reconfiguring, testing, and documenting• Customer Office Internet migration from T1 to Comcast Business Internet connectivity including Cisco ASA and switch configuration and testing• Configuration of IPSec Site-to-Site VPNs between customers and trusted third parties• Ad-hoc request and troubleshooting of IPSec VPNs, access control and permissions, Internet connectivity, and general network and systems health• Configuration and implementation of GNU Privacy Guard cryptographic softwareAmerican Medical Association• Served as part of team responsible for migration of 60+ server data center including, racking, cabling, and testingOther Tasks• Collaboration on proposals• Taking calls from clients to fix/modify workstations or servers• Common tasks performed include virus clean-up, assistance with client applications, Active Directory modifications, Group Policy modification, root cause analysis of email rejections, file server permission changes