Casey Erdmann Email and Phone Number

Senior Offensive Security Consultant at @ Depth Security

Columbus, GA, US

Casey Erdmann's Location

Columbus, Georgia, United States, United States

Casey Erdmann's Contact Details

Casey Erdmann work email

Casey Erdmann personal email

n/a

About Casey Erdmann

Certifications: OSCP, LRPA, GDPR Foundations, eJPTSenior Offensive Security Consultant at Depth SecurityFounder/Hacker at Injection Software and Security LLC:https://injection.shRed Team Village speaker @ DEF CON 27: https://www.youtube.com/watch?v=ioBAK7hGZi4&feature=youtu.bePros Vs Joes Red Cell Staff:http://prosversusjoes.net/Co-Founder of DC706:https://dc706.org/Offensive Security Engineering Udemy Course:https://www.udemy.com/course/offensive-security-engineering/?referralCode=B561E056323FA1B9C4C2Security Researcher for the Synack Red Team bug bounty platformA skilled offensive security professional, with experience in software development. I specialize in custom offensive security tool development for advanced Red Team operations, as well as security training in all branches of offensive security.The core skill set and passion I have mostly is heavily in offensive security in general, but I also hold a lot of experience in software engineering, DevSecOps, and infrastructure automation.I am a hacker at heart, and truly believe the offensive security approach is a proactive approach to security. If done correctly, good offensive security practices can expedite making the technology in our industries, and personal lives, safer to use for everyone.

Casey Erdmann's Current Company Details

Depth Security

View

Senior Offensive Security Consultant

Columbus, GA, US

Website:: depthsecurity.com
Employees:: 14

Casey Erdmann Work Experience Details

Senior Offensive Security Consultant

Depth Security

Columbus, Ga, Us

View
Senior Red Team Operator

Delta Dental Ins. Jun 2024 - Present

San Francisco, California, Us

Leading goal oriented offensive security engagements as well as conducting research, and development in offensive security.

View
Security Researcher

Synack Red Team Sep 2019 - Present

Austin, Tx, Us

As a member of the Synack Red Team the core responsibilities are:Performing private offensive security assessments for hundreds of organizations in the format of a crowd sourced penetration testing/private bug bounty program.Performing mission based activities to help technically assess compliance criteria for anything from the OWASP Top 10 to NIST compliance standards based on the target organization’s requirements.

View
Founder/Hacker

Injection Software And Security Llc Dec 2019 - Present

Founder and Lead Consultant "Hacker" at Injection Software and Security LLC. Procurement and execution of offensive security engagements for clients that utilize our services. Conducting offensive security engagements including, but not limited to, penetration tests, code audits, wireless audits, all the way up to full scale adversarial engagements. Help clients determine their security posture in their industry vertical, to provide them with impactful engagement criteria to help them grow proactively rather than re-actively.Growing the security community at large with research initiatives and educational content in the form of Youtube videos for offensive security.

View
Senior Offensive Security Consultant

Depth Security Jul 2021 - Jun 2024

Kansas City, Missouri, Us

Performing all manner of offensive security engagements, digital and physical, for a variety of clients across all industries.Conducted application focused, external, internal, and wireless penetration tests, as well as red teaming for clients at a constantly changing pace with varying scopes week after week.Created custom offensive security tooling such as the Lupo C2 framework for advanced Red Teaming operations and custom toolkits for evading advanced defensive technologies.Delivered high quality reports detailing full attack scenarios and remediation guidance to help clients improve their security posture.Helped train new members of the team on Depth’s processes to get them into performing engagements on their own as quickly as possible.Discovered and conducted research on multiple 0 day vulnerabilities that were cleared for publication as a result of discovering them during engagements.Built reference material to hone and formalize our standard practices. Contributed to our internal tooling to fix bugs and add helpful features used by all members of the team.

View
Offensive Security Consultant

Depth Security Jul 2020 - Jul 2021

Kansas City, Missouri, Us

Performing all manner of offensive security engagements, digital and physical, for a variety of clients across all industries.Conducted application focused, external, internal, and wireless penetration tests, as well as red teaming for clients at a constantly changing pace with varying scopes week after week.Delivered high quality reports detailing full attack scenarios and remediation guidance to help clients improve their security posture.Helped train new members of the team on Depth’s processes to get them into performing engagements on their own as quickly as possible.Discovered and conducted research on multiple 0 day vulnerabilities that were cleared for publication as a result of discovering them during engagements.Built reference material to hone and formalize our standard practices. Contributed to our internal tooling to fix bugs and add helpful features used by all members of the team.

View
Security Engineer

Semanticbits Sep 2019 - Jul 2020

Herndon, Va, Us

As a Security Engineer with Semanticbits core responsibilities are to use an offensive security mindset to develop tools, techniques, and procedures as a team for:- DevSecOps to proactively automate and secure cloud based infrastructure/code bases- Offensive Security to perform penetration testing and red teaming engagements across multiple projects, infrastructure, and applications.In addition to engineering work within the internal security team it is also a primary responsibility to lead security initiatives across multiple projects/teams, with varying technology stacks, to insure an excellent security posture is achieved based on both industry and government standards for best practices.General responsibilities are:- Assessing the security of applications, APIs, and platforms via penetration testing and code reviews- Collaborating with various teams to secure new platforms/applications- Implementing platform security and framework improvements- Working with engineering and QA teams to build tools and scale security in a continuous deployment environment- Implementing analysis and monitoring tools- Document System Security plan and Contingency Plans for related projects

View
Manager Of Information Security

Togetherwork Mar 2019 - Sep 2019

New York, Us

Managed and led the TogetherWork Information Security teamDesigned, implemented, and provided expertise regarding enterprise wide information security solutions.Performed enterprise wide risk analysis.Led and participated in offensive security practices for the organization. Including, vulnerability management, penetration testing, and adversarial emulation.Led and participated in the DFIR practices for the organization. Including malware analysis, monitoring SIEM, and execution of incident response playbooks.Created and maintained security related compliance policies.Communicated information security policy, processes, standards, and general progress to executive management.

View
Information Security Analyst

Togetherwork May 2018 - Mar 2019

New York, Us

Ensured that IS security architecture, plans, controls, processes, standards, policies and procedures are aligned with IS standards and are implemented in a standardized fashion across Togetherwork and its Operating Companies.Identified security risks and exposures, determined causes of security violations and suggested procedures to prevent future attacks. Performed regular penetration testing across Togetherwork and its Operating Companies. Designed and implemented a full “Red Team” service offering for Togetherwork encompassing standards and guidelines for social engineering/phishing, vulnerability scanning/management, penetration testing, and adversarial engagements (Red Teaming).Conducted security awareness training for all team members and application security training based on OWASP for developers Investigated and solved security related incidents and reported them to executive management.Designed and implemented a full DFIR service offering for Togetherwork. Included creation and upkeep of a modern Incident Response policy based on modular, high level, incident playbooks and enforcing consistent testing and improvements via table top exercises.Led security policy development, procedures, and assisted in audits. Assisted in any compliance activities as directed.

View
Web Developer Intern

Omegafi Dec 2016 - May 2018

Columbus, Ga, Us

Worked with a team of three developers maintaining four distinct web applications.Used my knowledge of PHP, SQL, and JavaScript to create, enhance, and fix the applications assigned to my team.Other responsibilities included assisting our System Administrator as needed.Major Accomplishments:Conducted the first ever successful 1st party penetration test for OmegaFi. I conducted this test on a team of two as part of a transition into a new full time information security related role. Several vulnerabilities were found as a result of the test and I assisted with remediation for any findings.Held a meeting as part of a monthly series to help instruct my fellow developers on industry standard user centered design practices.Revised our development security policies and procedures, with the assistance of a fellow co-worker, to ensure we are up to date with the latest application security standards. These revisions were approved by the CIO and VP of Technology, and we held a required meeting for all development staff where my co-worker and I reviewed the policies followed by a vulnerable web app demo, I created, to show my fellow developers what the vulnerabilities discussed in our policies looked like, how they can be exploited, and how to write code that fixes/prevents the issues demonstrated.

View
Competition Developer/Administrator

Google (Ignitecs) Dec 2016 - Mar 2017

Worked as a developer and administrator for a jeopardy style Capture the Flag competition as part of a Google IgniteCS grant that was awarded to students at Columbus State University. The competition was held in the form of an online qualifier, and an onsite final at Columbus State University. The challenges for the competition focused on computer and information security, and were created by a team of 4 that I was part of. The event was sponsored by the Google IgniteCS grant, the NSA, Synovus, and Aflac and awarded prizes to the top 5 competitors.
Software Developer

Tracsoft May 2016 - Dec 2016

Columbus, Ga, Us

Developed Websites and Software Applications.Developed, published, and maintained TracSoft’s first modern mobile application for iOS and Android.Performed vulnerability assessments for TracSoft and for specific clients of TracSoft.Major Accomplishments:Developed and published TracSoft’s first modern mobile app for the Iron Bank Coffee Co. available on iOS and Android.Developed a quick tool that allowed development staff to scan our clients’ Wordpress sites for updates/vulnerabilities quickly and efficiently leveraging the power of WPScan. This allowed all developers to scan their assigned sites and apply updates as needed, rather than having one developer do it all. This saved time, and made us overall more efficient in this process of patching Wordpress sites.

View
It Assistant

Calvary Christian School Aug 2013 - May 2016

General management of the wireless network.Repaired computer hardware and solved user end software issues. Specialized in Apple hardware including iPads and Apple TVs.Major Accomplishments:Led and carried out a project for setting up new classroom technology infrastructure for the entire school. The new infrastructure was a combination of Apple TVs and iPads, and it was my responsibility to image and set up all of these devices to prepare them for classroom use. Once they were set up it was then my responsibility to troubleshoot and maintain this infrastructure by fixing any issues that occurred during its use. I carried out this responsibility until the day I moved on from this position.
Webmaster

Milan Skincare Jul 2015 - Sep 2015

Worked as a contracted Webmaster for Milan Skincare developing and maintaining their website and databases.Also performed updates and optimizations to their services as needed.Performed some work with Search Engine Optimization (SEO) in relation to both the website and social media using Youtube live streaming, and Send Wire.In addition to SEO, work I created video content for the live streaming and social media.Major Accomplishments:Created the initial Milan Skincare website from the ground up. I was responsible for development, as well as setting up hosting, and maintenance. I carried this out through two revisions of the site before my contracted work ended and I moved on.

Casey Erdmann Skills

Java Objective C Python Html Css Web Development Swift Computer Security C# Linux Cross Site Scripting Computer Science Web Design Computer Forensics Html5 Android Sdk Leadership Web Application Security Software Development Penetration Testing C++ Ios Os X Javascript Cascading Style Sheets It Hardware Support Application Security Web Analytics Xcode Php Sql Unity Security Incident Response Security Policy Development General Data Protection Regulation Web Applications Windows Computer Hardware Macos Teaching Qt Creator Payment Card Industry Data Security Standard Public Speaking Python Event Planning Angularjs C Training Report Writing React.js Cyber Security

Casey Erdmann Education Details

Columbus State University

Computer Science
Chattahoochee Valley Community College

General Studies

Frequently Asked Questions about Casey Erdmann

What company does Casey Erdmann work for?

Casey Erdmann works for Depth Security

What is Casey Erdmann's role at the current company?

Casey Erdmann's current role is Senior Offensive Security Consultant.

What is Casey Erdmann's email address?

Casey Erdmann's email address is ca****@****ity.com

What schools did Casey Erdmann attend?

Casey Erdmann attended Columbus State University, Chattahoochee Valley Community College.

What are some of Casey Erdmann's interests?

Casey Erdmann has interest in Children, Education, Poverty Alleviation, Science And Technology, Disaster And Humanitarian Relief, Human Rights, Animal Welfare, Arts And Culture.

What skills is Casey Erdmann known for?

Casey Erdmann has skills like Java, Objective C, Python, Html, Css, Web Development, Swift, Computer Security, C#, Linux, Cross Site Scripting, Computer Science.

Who are Casey Erdmann's colleagues?

Casey Erdmann's colleagues are Jennifer Rogers, Luke Baker, Karl Meister, James Kennedy, Logan D., Joel C..

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles

Get direct phone numbers & mobile contacts

Access company data & employee information

Works directly on LinkedIn - no copy/paste needed

Get Chrome Extension - Free

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.