Dan Helton Email and Phone Number

As a regional lead in the Full Spectrum Attack Simulation (FSAS) practice, was responsible for developing and growing NCC Group's capabilities to deliver red team, purple team, social engineering, and physical security assessments in the North American market.- Worked to promote attack simulation services to new and existing clients in North America, including presales and scoping support, coordinating resources and calendars with schedulers, providing FSAS sales training, and writing marketing material. Grew the FSAS North America practice's revenue in excess of targets in FY22.- In collaboration with the global practice and other regions, developed and standardized service offerings, training, methodology, reporting, knowledge-sharing, and tooling across the entire FSAS organization.- Led and professionally developed a team of dedicated attack simulation consultants, able to perform challenging and complex engagements, conduct cutting-edge security research, and deliver exception value to clients across a variety of verticals, including tech, telecom, transportation, the energy sector, and the financial sector.

As a security consultant and manager affiliated with the New York office of NCC Group, performed various types of information security assessments, including penetration tests and red team engagements, and presented findings to clients. Served as a manager in charge of the professional development of two junior consultants.- Led and performed internal and external network penetration tests, red team engagements, web and mobile application penetration tests, vulnerability assessments, and code reviews for numerous North American clients across many different industries.- Served as deputy head of operations for NCC Group North America's Full Spectrum Attack Simulation (FSAS) red teaming and physical pentesting practice, assisting in the development of onboarding, shadowing, utilization, and feedback processes, documentation, and testing infrastructure.- Developed and hosted capture-the-flag (CTF) competitions for NCC Group's annual internal conference that simulated network and web application penetration tests.

As a member of the Enterprise Cybersecurity (ECS) penetration testing team, was responsible for conducting penetration tests and vulnerability assessments of various internal- and external-facing web applications, mobile apps, desktop applications, infrastructure projects, and standard software/OS configurations.- Worked with development teams and business units to perform penetration tests and vulnerability assessments for a catalog of more than 400 enterprise internal and consumer-facing applications.- Worked with team and management to design and implement a penetration testing mature model in order to continue developing, optimizing, and positioning our team to be a word-class penetration testing organization.- Worked with management to develop a team training and conference attendance budget to ensure team members were able to attend conferences such as DEFCON and Derbycon and utilize training such as OSCP and the Web App Hacker’s Handbook (WAHH) in-person training course.

Served as a Signal Officer in the Army National Guard, both as a traditional reservist and while deployed in support of Operation New Dawn in Iraq. Served as a Network Extension Platoon Leader and as an Executive Officer in my Company, with a mission to provide secure and reliable data, voice, and radio communications utilizing commercial (Cisco and Citrix networking and security, Cisco IP telephony) and military hardware and software. Led, managed, and professionally developed Soldiers and mentored junior officers. Responsible for Company logistics, physical security, and accountability of sensitive items.From October 2009 to July 2010, served on temporary ADOS orders as the full-time J6 Communications Staff Representative to the Indiana Joint Operations Center (JOC), assisting in the planning of voice, data, and radio communications in the event of state emergencies and working with partners in the Indiana Department of Homeland Security (IDHS).

Worked as a member of the Architecture & Strategy team within Humana Enterprise Information Protection (EIP), responsible for consulting to other business units on maintaining and improving Humana’s security posture, evaluating and developing new solutions and policies related to information security, and serving as a security liaison within corporate IT projects.- Consulted on and participated in numerous projects, including mobile application and server penetration tests, information assurance reviews, remote access security evaluations, disk encryption requirements development and evaluation, single sign-on requirements development, and least privilege software implementation. - Served as the subject matter expert on iOS and Android mobile application security, consulting to internal developers and external vendors on developing security controls within applications to comply with Humana information security policies.- Researched emerging trends and threats in information security, such as mobile telephony security, data loss prevention tools, and mobile OS vulnerabilities.- Revised and updated corporate policies and requirements for iOS secure development, hard disk encryption, PHP security configurations, and web browser policy settings.

As a part-time instructor in the Computer Network Security & Forensics Department of Sullivan College of Technology and Design, taught the course “CNS320 – Digital Offense Techniques” and instructed students in penetration testing tools and methodology in preparation for taking the EC-Council Certified Ethical Hacker exam.- Built a custom curriculum for instructing students in basic Linux literacy, use of penetration testing tools included in the Kali Linux distribution, the different phases of penetration testing, understanding malware and exploits, physical security, to include lockpicking, and mobile OS security.- Developed a virtual lab of vulnerable VM hosts so students could test out tools and penetration testing methodologies against different machines.- Guided students through hands-on labs and capture-the-flag (CTF) games on enumerating, exploiting, and escalating privilege on vulnerable VM hosts.

Served as part of the Information Assurance Remediation team supporting the US Navy at Naval Surface Warfare Center (NSWC) Crane, working with client departments and laboratories across the post to remediate security issues and ensure compliance with the DoD Information Assurance Certification and Accreditation Process (DIACAP).- Conducted vulnerability assessment, management and remediation activities using DISA Gold Disk, eEye Retina, GFI LANGuard, Symantec Endpoint Protection, and DISA Unix SRR scripts.- Hardened and remediated Windows, Linux, and Solaris hosts using the DISA Secure Technical Implementation Guidelines (STIG).- Trained and educated local lab information assurance officers (IAO's) on how to maintain compliance with DIACAP standards.

Performed various roles working internally and with clients in information security, identity and access management, business continuity planning, and network operations.- As an entry-level analyst, acted as security lead for an internal network transformation program, performing security audits, developing secure configurations, and drafting security policies for Cisco and Avaya VoIP technology, Cisco routers and switches, Juniper SSL VPN, wireless LAN, and VLANs for a main office supporting 5000+ users.- As the only subject matter expert in ISO 27001 Information Security Management System certification in my company's North American practice, performed gap analyses and security audits that allowed a government client's system to attain the ISO 27001 certification within in a challenging four-month deadline.- As a team member, developed a low-cost solution to address security issues with former employee accounts utilizing pre-existing Active Directory Federation Services infrastructure and free Active Directory Application Mode stores.

Conducted educational labs in firewall configuration, basic Linux administration, PGP encryption, VMWare, network discovery, use of security tools such as Metasploit and nmap, remote access trojans and malware, and other IT security-related topics. Outside of class, conducted a live presentation on remote access trojans for my professor to a group of managers from a client company. Installed and administered class SharePoint server and VMWare virtual machines.