Redbot Security Lead Penetration Tester & Chief Security Officer
Feb. 2022 - Sep. 2024Spokane, Washington, United StatesWorking for a boutique cybersecurity consulting organization operating in a start-up capacity. This unique role requires wearing multiple hats to congruently fulfill the operational roles of nine (9) key positions. Primary duties include active security testing or consulting, service offering oversight, development of new or custom services, and management of senior consultants. Secondary duties include daily involvement or oversight of sales, project management, IT management, Incident Response (IR), Intellectual Property (IP) development, and all security within the organization. • Lead Security Engineer (Consultant) • Perform pentesting, architecture reviews, vulnerability scanning, tabletop exercises, hardening reviews, and consulting for SMB to Fortune 100 companies in various industries supporting IT or OT networks, products, services, or applications (web and mobile). • Manage the security team’s methodology, training, research, and client escalations. • Maintain Red Team testing methodology and infrastructure. • Write custom code or obfuscating payloads to evade detection and maintain persistence. • Chief Security Officer • Responsible for all security aspects of Redbot Security. • Wrote and maintain security policies for compliance and data security. • Lead the strategy, planning, and implementation of information security and cybersecurity requirements. • Lead Risk Management and Incident Response actions to safeguard the company from potential threats. • Redesigned in-house documentation from the ground up, including implementing policies, standards, and penetration test reports. • Sales • Operate as a Subject Matter Expert (SME), leading or assisting sales calls of new or existing clients with scoping, consultation, and methodology explanation. • Directly responsible for yearly revenue growth through direct sales, establishment of multi-year contracts and partnerships with outside organizations, and RFP/RFO proposals.