Heather Linn Email & Phone Number

Chapel Hill, NC, US

United States

United States

Crafted strategic proposal for Red Team focused on Generative AI initiatives and other Machine Learning-backed technology. Performed risk identification exercises and threat models against architectures designed to support emerging technology relating to products and services that host and enable development of models and the apps that leverage them..

Conduct adversary research, strategic management planning and purple team coordination. interacts with lines of business partners and executives across the company to help demonstrate practical security concerns by investigating the impact of emerging threats on systems. Help identify mitigations, artifacts for detection, and gaps that need to be covered.

Remote

Adversary research and controls mapping, strategic data management planning and hunt coordination. Advised executive management and provided strategic roadmap analysis about Hunt and related development efforts. Coordinated and led multi-functional teams in complex threat hunting operations and data engineering projects in support of hunts using an agile.

Advanced threat simulation, vulnerability analysis and exploitation. Created project framework for red team adaptive threat operations. Adapted SOW templates to significantly improve workflows. Acquired, configured, and implemented red team operational infrastructure and payloads. Executed adversary-emulated tactics upon foothold, with goals of high dwell.

Remote

Forensics, incident response, and security policy consulting. Using the attacker informed view, I worked with customers to triage, respond, and improve defenses before a breach, during a breach, and after a breach. I also educated and prepared responders to conduct active hunts for malfeasance on the networks they protect, not only respond to them. I.

Remote

Phone pretexting, email-based phishing campaigns, wireless penetration testing, external and internal penetration testing and vulnerability assessment tailored solutions to customer needs. Emulated attacker methodologies and provide meaningful advice about security strategies above and beyond compliance that better secure the enterprise.Phone pretexting.

Remote

I examined networks from an unauthenticated and unauthorized attacker's perspective, using the same methodologies and tactics seen in the wild to identify and exploit weaknesses in order to obtain target data and access within the organization. Then, using this information, I advised clients on how to break attack chains, and on what controls will.

North Carolina, United States

Incident response, including network and host investigations regarding malware and other intrusion. Packet analysis, IPS tuning, SIEM, and Vulnerability Assessment.

Raleigh-Durham-Chapel Hill Area, North Carolina, United States

Internal vulnerability assessment and validation, information security risk assessment, policy management and review, and coordination of remediation. Implemented internal vulnerability scanning framework, including all processes. Implemented and maintained enterprise security management suite for client-side firewall, host intrusion prevention (HIPS).

Master'S Degree, Management Of Technology

Activities and Societies: Concentration of study on Digital Business innovation and machine learning

Bachelor Of Science - Bs, Computer And Information Sciences, General, Summa Cum Laude