Samuel Smith Email & Phone Number

Wilmington, DE, US

Philadelphia, PA, US

• Implemented and maintained security measures to safeguard the organization's systems, networks, and data.
• Conducted comprehensive cyber threat intelligence tasks utilizing Open Source Intelligence (OSINT) resources to identify and analyze emerging threats to the organization.
• Conducted proactive threat hunting to identify and mitigate advanced persistent threats and other cyber threats.
• Led incident response efforts by handling security breaches, ensuring rapid identification and containment of threats.
• Managed the patch and vulnerability management program, including identifying and collaborating with system groups to ensure timely patches and remediation of vulnerabilities.
• Conducted breach and attack simulations to test and evaluate the organization's defenses.

Indianapolis, Indiana, US

• Conducted penetration tests on web applications to identify and exploit vulnerabilities, providing detailed reports and recommendations for remediation.
• Leveraged OWASP Top 10 addressing vulnerabilities such as SQL Injection and Cross-Site Scripting (XSS).
• Collaborated with development teams to implement secure coding practices and address identified vulnerabilities promptly.
• Documented testing methodologies to ensure consistency, compliance, and continuous improvement.
• Implemented policies and procedures to ensure uniformity in testing activities across different teams.

Chandler, Arizona, US

• Conducted proactive monitoring, investigation, and mitigation of security incidents pertaining to systems and networks.
• Conducted log analysis on endpoints via SIEM or IDS.
• Managed an NDR solution, enhancing the organization's ability to detect and respond to security threats in real-time.
• Investigated malicious phishing emails and recommended appropriate action measures based on analysis.
• Conducted static malware analysis on isolated endpoints.
• Led the cyber threat intelligence program utilizing Open Source Intelligence (OSINT) resources to identify and assess potential threats to the organization.

Philadelphia, PA, US

• Conducted security assessments for Comcast's third party vendors to ensure the implementation of requisite controls aimed at safeguarding customer data.
• Leveraged industry-specific frameworks such as NIST 800-53, ISO/IEC 27000 series, and GDPR to support vendor assessment reviews.
• Reviewed SOC 2 Type 2 reports and collaborated with subject matter experts on testing methodologies.
• Conducted continuous monitoring and assessed the effectiveness of vendor controls and security posture, liaising with vendors to address anomalies in infrastructure.
• Managed policies and procedures related to the third party security risk management program, ensuring alignment with organizational standards.

Master'S Degree, Homeland Security

Bachelor'S Degree, Organizational Management