Dallas, Texas, United States
An experienced information security professional possesses extensive technical expertise acquired through involvement in application and system security testing, hardware and software vulnerability research, malware analysis, forensics, penetration testing, red team exercises, protocol analysis, application development, and risk mitigation activities. These technical proficiencies are complemented by adept leadership and communication skills, honed through the leadership of teams and projects, collaboration within both large and small teams, and the composition of technical reports for clients. Douglas stands recognized for the discovery of numerous CVEs and regularly serves as a speaker at prominent security conferences such as Blackhat, DEFCON, RSA, Hardware.io, and Ekoparty. Additionally, Douglas's research is frequently featured in publications with a wide readership, including Wired, Politico, Bleeping Computer, Security Boulevard, Venture Beat, CSO, Politico Morning eHealth, Tech Republic, and Axios. Expertise in diverse domains, including: ❏ Leadership: Known for fostering team growth and promoting collaboration. ❏ Communication: Strong communication skills for effective team dynamics. ❏ Problem-Solving: Highly adept at critical thinking and issue resolution. ❏ Offensive Security: Proficient in vulnerability research and penetration testing. ❏ Threat Analysis: Demonstrated capabilities in comprehensive threat assessment. ❏ Cybersecurity Strategy: Proven track record of strategic security planning. ❏ Malware Analysis: Well-versed in advanced malware examination techniques. ❏ Incident Response: Skilled in effective incident handling and mitigation. ❏ Risk Management: Expertise in identifying and managing security risks. https://linktr.ee/fulmetalpackets
As Director of Vulnerability Intelligence at Rapid7, I lead a world-class research organization dedicated to understanding, prioritizing, and communicating the vulnerabilities and attack vectors that matter most to global defenders. I set the strategic vision for Rapid7’s vulnerability intelligence capabilities and guide the initiatives that transform cutting-edge research into real-world impact for customers, partners, and the broader security community. I oversee Rapid7’s Emergent Threat Response (ETR) program—driving cross-functional collaboration to deliver timely, actionable intelligence during widespread attacks—and I lead our Coordinated Vulnerability Disclosure (CVD) program, ensuring our zero-day research, vendor coordination, and public disclosures reflect the highest standards of rigor, transparency, and impact. My role blends strategic leadership with hands-on operational engagement. I manage and scale a globally distributed team of researchers and analysts; champion our findings to technical and non-technical audiences; and strengthen the relationships, processes, and collaboration models that enable Rapid7 Labs to stay ahead of an evolving threat landscape. Throughout this work, my mission is consistent: elevate vulnerability intelligence from reactive insight to proactive foresight—helping organizations worldwide understand what’s important, what’s not, and why, so they can make confident decisions in the moments that matter most.
• Served as the primary author and instructor for SANS SEC568, specializing in product security assessments. • Deliver advanced penetration testing and exploit writing training as an instructor for SANS 660. • Develop comprehensive course materials that enhanced student engagement and understanding of complex security concepts.
Lead cutting-edge research efforts in identifying and mitigating cybersecurity vulnerabilities. Accountabilities include overseeing a global team of highly skilled researchers and collaborating with cross-functional teams to stay ahead of emerging threats, playing a crucial role in ensuring our customers' protection.