EXPERIENCE
Joe has over 20 years of experience in Information Security. He has worked in Incident Response, forensics, penetration testing, and security leadership as a CISO for a financial institution.
EDUCATION & CERTIFICATIONS
- GIAC Penetration Tester (GPEN)
- GIAC Strategic Planning, Policy, and Leadership (GSTRT)
- GIAC Certified Forensic Examiner (GCFE)
- GIAC Certified Incident Handler (GCIH)
- GIAC Security Leadership (GSLC)
- GIAC Cloud Penetration Tester (GCPN)
- GIAC Public Cloud Security (GPCS)
- GIAC Certified Web Application Penetration Tester (GWAPT)
- Certified Information Systems Security Professional (CISSP)
- CNSSI 4012 Senior Systems Manager
- CNSSI 4013 System Administrator in Information Systems Security
- CNSSI 4014 Information Systems Security Officer
- NSTISSI 4011 Information Systems Security Professional
- NSTISSI 4015 Systems Certifier
PROFESSIONAL AFFILIATIONS
- GIAC Advisory Board, ISC2
Joe also teaches leadership courses for the SANS Institute.
INDUSTRY CONTRIBUTIONS
Joe has presented at security conferences including Check Point CPX, Information Warfare Summit, and BSides.
PASSION FOR SECURITY
Joe’s passion for security started in Incident Response and forensics in the late ‘90s. Since then, he has developed a passion for offensive security, security leadership, and teaching others.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
Basic Authentication Versus CSRF
I was recently involved in an engagement where access was controlled by Basic Authentication. One (1) of the findings I discovered was a Cross-Site Request…
Introducing CoWitness: Enhancing Web Application Testing With External Service Interaction
CoWitness improves web application testing by capturing complete DNS and HTTP responses, revealing false positives and hidden vulnerabilities, and helping…
ISC2 Cleveland Chapter Member Meeting - February 2026
ISC2 Cleveland Chapter February MeetupCome join us for our meetup! The ISC2 Cleveland Chapter is hosting an exciting in-person event for all cybersecurity…
Discord Livestream - Tales from the Trenches: Securing Active Directory
Join us for this live Discord session with Identity Security Architect Sean Metcalf as he covers the most common Active Directory security issues and how to…
Perspectives on AI in the Cybersecurity Industry in 2026
Join us for this exclusive webinar where our experts will decode the complex relationship between artificial intelligence and cybersecurity in 2026. What will…
Wild West Hackin' Fest @ Mile High 2026
We are excited to be a sponsor at WWHF @ Mile High this year!
Fox 26 Houston - Love or Lure? Spotting Romance Scams
Carlos Perez, Director of Security Intelligence, discusses the Israeli government's use of modified exploding devices in Lebanon.
Securing Entra ID Administration: Tier 0
Entra ID (formerly Azure AD) is the core service upon which Microsoft 365 applications rely for directory and authentication services. This makes Entra ID…
Security Noise - LLM = Love Language Model?!
In this episode of Security Noise podcast, we are discussing the crossover of AI into our romantic lives. How are LLMs used to social engineer or catfish…
Keys to JWT Assessments - From a Cheat Sheet to a Deep Dive
The Cheat Sheet section is for quick reference.The Learn section is for those who have never touched the topic before.The Implement section is for more…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
