Managing Partner, Information Security Services
CurrentA pure play security company specializing in vulnerability research, assessments, and mitigation. Provided virtual CISO services for companies with existing security departments and end to end managed security services for companies without. Head of research and development for all zero day exploit initiatives. Handpicked, trained, and managed all attack team members deployed across California. Conducted risk analysis through penetration tests, profiling, and threat identification. Performed security modeling through the creation of policies, procedures, standards, and guidelines encompassing business continuity and disaster recovery. Performed baselining and gap analysis on security infrastructures to verify regulatory compliance and/or deficiencies against industry standards (PCI DSS, NIST, ISO, DFARS). Implemented security solutions encompassing system hardening, scanning, tiered DMZ, VLANs, monitoring and logging, intrusion detection, firewalls, antivirus and patch management.