Redmond, Washington, United States
ACE Management, Depth Assessment team.
Leading a team to improve Windows security in the Defender/Advanced Threat Protection org. #Defender #MDATP #ransomware #techscams #smartscreen https://windows.com/security
Responsible for managing a team of security professionals tasked with architecting and driving security into Microsoft’s products and services. My team is under the Trustworthy Computing group who is responsible for defining security requirements for Microsoft in the Security Developement Lifecycle (SDL) and Operational Security Assurance (OSA) corporate programs.
Reporting directly to the Information Security Officer, the Senior Security Architect provides the technical leadership, direction, and guidance necessary to maintain an effective and efficient campus wide security infrastructure. Key responsibilities include: • Providing security consulting in support of application development, infrastructure, and enterprise technology projects to ensure the integrity of the university architecture. • Ensuring that Vulnerability Assessment tools and processes are effectively deployed and maintained. • Ensuring the timely identification, communication and resolution of all security incidents. • Guiding the development and implementation of a comprehensive, distributed infrastructure security architecture. • Identifying and producing key infrastructure security metrics. • Contributing to the development and maintenance of university security policies, standards and guidelines. • Contributing to formal and informal security awareness/training initiatives as an advocate for information security. • Providing oversight and governance to ensure the security responsibilities outsourced to external entities are provided in accordance with contractual obligations. • Leading research and development activities designed to assess need, analyze costs and benefits, and develop strategies for deploying and integrating progressive security techniques and technologies.
Responsible for monitoring and assessing the global threat landscape. Provided security intelligence for Symantec's Global Intelligence Network (GIN) and DeepSight. Key responsibilities included: Threat Reports (Alerts, Analysis and Honeynet) Reverse Engineering Honeynet/IDS/Snort maintenance and data analysis Internet Monitoring Identification of exploit development and availability. Detecting compromised and malicious websites and online services for active exploitation Maintaining Symantec's ThreatCon Achievements included multiple predictions about in-the-wild exploitation of vulnerabilities affecting popular applications. Quoted on several online magazines in various languages including Computer World, InfoWorld, eWeek.
Recruited by senior management to join a group of researchers who tracked and reported on the global application vulnerability scene. Researched, wrote and published several hundred vulnerability reports since June 2006. A public short version of the analysis for these vulnerabilities is available at http://www.securityfocus.com/bid .