Nicholas S.
AeroLeads people directory · profile

Nicholas S. Email & Phone Number

Principal Researcher at Mandiant
Location: Pittsburgh, Pennsylvania, United States 8 work roles
1 work email found @mandiant.com LinkedIn matched
✓ Verified Jul 2026 3 data sources Profile completeness 86%

Contact Signals · 1 work email

Work email n****@mandiant.com
LinkedIn Profile matched
3 free lookups remaining · No credit card
Current company
Role
Principal Researcher
Location
Pittsburgh, Pennsylvania, United States

Who is Nicholas S.? Overview

A concise factual answer block for searchers comparing this professional profile.

Quick answer

Nicholas S. is listed as Principal Researcher at Mandiant, based in Pittsburgh, Pennsylvania, United States. AeroLeads shows a work email signal at mandiant.com and a matched LinkedIn profile for Nicholas S..

Nicholas S. previously worked as Security Engineer / Incident Responder at Fragomen and CIRT Analyst at Bloomberg Lp.

Company email context

Email format at Mandiant

This section adds company-level context without repeating Nicholas S.'s masked contact details.

*@mandiant.com
68% confidence

AeroLeads found 1 current-domain work email signal for Nicholas S.. Compare company email patterns before reaching out.

Profile bio

About Nicholas S.

Disciplined, self-taught, and internally motivated professional with over a decade of experience in many facets of computer and network defense. Experience with multiple programming languages, reverse engineering/malware analysis, packet-level detection and analysis, and penetration testing. Diplomatic and tactful to both tech-savvy operators and executive-level leaders.

Listed skills include Network Security, Information Assurance, Security, Information Security, and 18 others.

Current workplace

Nicholas S.'s current company

Company context helps verify the profile and gives searchers a useful next step.

Mandiant
Mandiant
Principal Researcher
AeroLeads page
8 roles

Nicholas S. work experience

A career timeline built from the work history available for this profile.

Principal Researcher

Current

Mountain View, California, Us

Jan 2022 - Present

Security Engineer / Incident Responder

New York, Ny, Us

- Technical lead of security team: - Guided technical decisions related to cyber security - Planned, designed, and implemented a practical (hands-on) interview process to screen applicants - Held weekly "capture the flag" sessions with security team to enhance offensive/defensive capabilities - Trained 200+ members of IT department on various cyber security topics such as ransomware and phishing - Developed and conducted phishing exercises to thousands of employees around the world- Led the Incident Response process: - Acted as Incident Coordinator throughout the organization for all major incidents - Developed Incident Response Plan and Playbooks - Engaged with and trained all incident response stakeholders via table-top exercises - Liaised with international law enforcement and third-party investigators for civil cases - Gathered and maintained forensic evidence in accordance with international best practices- Managed budget (> $1 mil) for threat intelligence, endpoint defense, malware analysis, and other projects: - Screened and selected vendors for many major projects, negotiated pricing, and purchased hardware and software to accomplish goals - Ability to negotiate at a technical level helped cut pricing in some existing tools by 30% - Analyzed and cut vendors not providing value to the company, in some cases saving the company hundreds of thousands per year.- Admin of Splunk Enterprise / Enterprise Security - Maintain 15+ Red Hat servers related to Splunk infrastructure - Wrote dozens of dockerized Python scripts to gather, parse, and store data from various APIs into Splunk- Established asset management system: - Consolidated data from Active Directory, DHCP, network scanners, and multiple other sources to provide a holistic vision of the Fragomen IT environment - Ensured tool coverage on endpoints was up-to-date and complete - Found rogue and unmanaged devices connecting to the network

Oct 2017 - Jan 2022

Cirt Analyst

New York, Ny, Us

- End of the line for cyber incidents. Was hands-on and a main point of contact for every major cyber incident at Bloomberg in the past 2 years.- Designed, developed and implemented multiple enhancements to the Cyber Security Operations Center (CSOC): - Mass hash scanning system - sends the hash of every unique file run on the corporate network to a cloud-based AV solution. - Endpoint evidence gathering suite - used by analysts to obtain ephemeral information from suspicious hosts for deeper analysis with a single click. - Anti-worm defensive solution – after obtaining indicators from a network worm, provided code to be run enterprise-wide that eliminates the threat. - Alert inventory – created a database of every possible alert active in our CSOC with the type of threat and zone it protected.- Re-worked an Intrusion Detection System from the ground up to provide actionable, accurate and timely alerts for all network traffic leaving the enterprise.- Created and taught a training system used to get all analysts to a baseline level of knowledge regarding cyber security.- Presented multiple advanced cyber security lectures regarding incident response and malware analysis.

Aug 2015 - Oct 2017

Senior Malware Analyst

Reston, Virginia, Us

- Led a malware analysis team in the research and documentation of professionally-developed malware, providing ready-to-deploy defensive signatures to network defenders and the intelligence community. - Researched and implemented 64-bit and mobile malware analysis platforms and tools, modernizing and increasing the usefulness of the malware lab to the extended enterprise.- Presented training to groups and individuals on malware reverse-engineering techniques, such as defeating hardened malware and breaking custom encryption routines.

Jan 2015 - Aug 2015

Foreign Computer Network Operations Analyst

Reston, Virginia, Us

- Researched, analyzed, and documented foreign computer network operations, cyber threats, and malware to support Army and Intelligence Community customers.- Used information from multiple sources to provide a complete picture of advanced persistent threats, including intrusion detection systems, open-source research, and malware analysis.

Sep 2014 - Jan 2015

Cryptologic Technician - Networks

Washington, Dc, Us

Jan 2007 - Jun 2013

Network Security Analyst / Malware Analyst

Washington, Dc, Us

- Analyzed large volumes of network traffic for malicious activity, creating and implementing a myriad of signatures in order to defend against detected threats.- Conducted static and dynamic analysis of countless pieces of cutting-edge and sophisticated malware, enabling the rapid and effective deployment of comprehensive security solutions.- Worked side-by-side with Joint Service linguists, analysts, and operators to garner a full picture of threats to national security and implement preventative security measures.- Researched and implemented new technologies and techniques to better provide comprehensive analysis to customers on a global scale.

Aug 2010 - Mar 2013

Network Vulnerability Analyst - Technical Team Leader

Washington, Dc, Us

- Significantly contributed to improving the Global Information Grid’s security posture through Red Team assessments.- Conducted Computer Network Operations during three long-term network exploitation operations and four short-term exercises in support of five Combatant Commands and one Federal Agency.- Invested 1500 hours to training Joint Service and civilian personnel in proper usage of Red Team tools and techniques, contributing to a highly skilled and knowledgeable team.- Supervised and directed a team of analysts and operators during multiple short-term missions, leading to a 100% success rate and further improving the perception and prestige of the team.

Aug 2007 - Aug 2010
FAQ

Frequently asked questions about Nicholas S.

Quick answers generated from the profile data available on this page.

What company does Nicholas S. work for?

Nicholas S. works for Mandiant.

What is Nicholas S.'s role at Mandiant?

Nicholas S. is listed as Principal Researcher at Mandiant.

What is Nicholas S.'s email address?

AeroLeads has found 1 work email signal at @mandiant.com for Nicholas S. at Mandiant.

Where is Nicholas S. based?

Nicholas S. is based in Pittsburgh, Pennsylvania, United States while working with Mandiant.

What companies has Nicholas S. worked for?

Nicholas S. has worked for Mandiant, Fragomen, Bloomberg Lp, Leidos, and Us Navy.

How can I contact Nicholas S.?

You can use AeroLeads to view verified contact signals for Nicholas S. at Mandiant, including work email, phone, and LinkedIn data when available.

What skills is Nicholas S. known for?

Nicholas S. is listed with skills including Network Security, Information Assurance, Security, Information Security, Python, Malware Analysis, Penetration Testing, and Security+.

Find 750M verified contacts

Search by job title, company, industry, location, and seniority. Export verified B2B contact data when you need it.