Brendan Saulsbury's Email Addresses & Phone Numbers

Cyber Security Engineer @ SRA International As a Cyber Security Engineer for SRA International, I- Provided incident response capabilities to a large federal client including monitoring for and blocking of malicious traffic, as well as performing forensic investigations as needed.- Was the lead engineer for security configuration compliance, developing customized and approved baseline configurations for multiple operating...

Cyber Security Engineer @ SRA International As a Cyber Security Engineer for SRA International, I- Provided incident response capabilities to a large federal client including monitoring for and blocking of malicious traffic, as well as performing forensic investigations as needed.- Was the lead engineer for security configuration compliance, developing customized and approved baseline configurations for multiple operating systems in both physical and virtual environments.- Performed reverse engineering on malware samples found in the client’s network environment in order to assess risk and prevent further compromise.- Deployed forensic analysis tools (EnCase, NetWitness) in support of incident response.- Performed penetration testing and technical vulnerability assessments with various tools including Tenable Nessus, nCircle, NTOSpider, Guardium and various open-source tools.- Led the design and implementation of the federal client’s Malware Analysis Lab and out of band penetration testing platform.- Participated as a voting member in the federal client’s Engineering Review Board and Configuration Control Board as a subject matter expert on specific change requests. From February 2012 to July 2015 (3 years 6 months) Washington D.C. Metro AreaSecure Coding Intern @ Software Engineering Institute I worked as a full-time intern on the Secure Coding Team at CERT/CC, a division of the Software Engineering Institute. As an intern, I- Worked on the development of a static analysis tool to check source code for security vulnerabilities- Worked on the development of secure coding guidelines for programmers- Helped analyze various commercial software source code bases for security vulnerabilities From May 2010 to January 2012 (1 year 9 months) Greater Pittsburgh AreaStudent Web Developer @ Carnegie Mellon University As a Student Web Developer, I- Utilized a Content Management System to develop and maintain websites for the Department of Student Affairs.- Developed HTML skills through standards-compliant web development. From July 2008 to April 2010 (1 year 10 months) Greater Pittsburgh AreaSenior Cyber Security Engineer, Founder and CEO @ Shieldsurge Consulting As a Senior Cyber Security Engineer for Shieldsurge Consulting, I- Provide IT Security Engineering subcontracting services to a large federal agency's IT Security Operations program.- Support the federal client’s enterprise penetration testing program to test all facets of client’s IT infrastructure for exploitable weaknesses on a continuous basis.- Conduct system-specific penetration tests in support of A&A cycles.- Conduct regular spear phishing campaigns using weaponized payloads (Cobalt Strike Beacons) to measure and improve SOC’s incident response effectiveness and test users’ security awareness.- Conduct Purple Team adversary simulation exercises to help SOC staff practice recognizing and responding to APT-style TTPs, such as encrypted C2 communication, anti-virus evasion, and covert channel data exfiltration.- Conduct regular phishing simulation exercises using Cofense PhishMe to train the user population on how to recognize and report phishing emails.- Compete as part of a team in various regional CTF competitions (BSides, ShmooCon, etc.)- Operate enterprise-grade and open-source penetration testing software, including:- - Cobalt Strike- - BloodHound AD- - Burp Suite Pro- - PowerShell Empire- - Kali Linux tool suite- Develop custom proof of concept exploit code/scripts to illustrate exploitable vulnerabilities.- Effectively interface with federal management and system owners to facilitate the successful planning and execution of regular penetration tests on the client’s 50+ major applications.- Configure security tool alerting in support of cyber hunt capabilities.- Provide incident response capabilities to the client during critical (APT-related) security incidents including monitoring for and blocking malicious traffic, as well as performing forensic investigations as needed.- Perform reverse engineering on malware samples found in the client’s network environment in order to assess risk and prevent further compromise. Washington D.C. Metro AreaSenior Cyber Security Engineer @ SRA International As a Senior Cyber Security Engineer for SRA International, I- was the team lead/tech lead of a team of 9 security engineers and analysts supporting a large federal client's IT security operations program.- Provided incident response capabilities to the client during critical (APT-related) security incidents including monitoring for and blocking malicious traffic, as well as performed forensic investigations as needed.- Performed reverse engineering on malware samples found in the client’s network environment in order to assess risk and prevent further compromise.- Performed penetration testing and technical vulnerability assessments with various enterprise-grade penetration testing tools, as well as open-source tools such as the Kali Linux suite.- Deployed, configured, and maintained a large suite of enterprise security tools, including everything from racking/stacking/cabling the appliances to configuring and tuning application policies and performing software and hardware upgrades as needed.- Routinely briefed C-level executive management in the federal client's organization regarding high-impact security incidents and vulnerabilities.- Have experience briefing Congressional oversight committee staff on critical security incident response activities in a transcribed interview format.- Was the federal client's subject matter expert (SME) for the following enterprise security tools:- - Bit9 Carbon Black- - RSA Security Analytics/NetWitness- - EnCase Enterprise- - Forcepoint/Websense Triton suite (Web, Email, and Data Security products)- - Rapid7 Metasploit Pro- Have advanced-level experience administering and utilizing the following additional enterprise security tools:- - HP ArcSight ESM & Logger- - HP TippingPoint IPS- - Palo Alto Networks firewalls- - ForeScout CounterACT- - Gigamon network tap infrastructure- - Tripwire/nCircle IP360- - Tripwire/nCircle CCM- - Tenable Nessus- - FireEye NX Series (Web MPS) & AX Series (MAS) appliances From July 2015 to April 2016 (10 months) Washington D.C. Metro Area