Skip to Main Content

Megan Nilsen

Practice Lead, Attack Simulation and Detection, Tactical Awareness & Countermeasures (TAC)

EXPERIENCE
Megan has over five years of experience in the Gaming & Hospitality industry working as both an Engineer and a Lead Analyst in a Security Operations Center. She has worked with a wide array of corporate security tools including IDS/IPS and vulnerability scanners. In addition, she has led the development of SIEM programs focused on actionable alerts that leverage automation to speed up response time and reduce analyst fatigue.

Her knowledge in security, business administration, and compliance (SOX/MICS/PCI) makes her well equipped to understand the challenges and needs of large enterprise environments.

EDUCATION & CERTIFICATIONS

  • Bachelor of Science: Accounting and Information Systems, University of Nevada
  • Undergraduate Certificate in Applied Cybersecurity: SANS Technology Institute
  • CompTIA Network+
  • CompTIA CySA+
  • GIAC Foundational Cybersecurity Technologies (GFACT)
  • GIAC Certified Intrusion Analyst (GCIA)
  • GIAC Certified Incident Handler (GCIH)
  • GIAC Security Essentials (GSEC)
  • Certified Azure Red Team Professional (CARTP)

PROFESSIONAL AFFILIATIONS
GIAC Advisory Board

PASSION FOR SECURITY
Megan discovered her interest in cybersecurity during college. Since then, she has fallen in love with the fast-paced and continuously evolving nature of the industry. She has especially developed a passion for all things SIEM, from building reporting to log source enrichment to system tuning and developing alerts. She is highly motivated and looks forward to applying her knowledge and skills to help organizations improve their existing security practices.

Featured Blogs And Resources

Discover the blogs, analysis, webinars, and podcasts by this team member.

Blog January 18 2024

Engagement Guide: How to Prepare for Your Purple Team

After performing many Purple Team engagements with organizations ranging from large enterprise networks to small-to-medium businesses, we've found that the…

Read about this article
Blog January 09 2024

Detection Alchemy - The Purple Team Way

1.1      IntroductionAs security practitioners, we frequently extol the virtues of penetration testing and red team exercises as a way of identifying issues…

Read about this article
Blog October 17 2023

A Hitch-hacker's Guide to DACL-Based Detections (Part 3)

This blog series was co-authored by Security Consultant Megan Nilsen and TAC Practice Lead Andrew Schwartz.1    IntroductionIn this third and final…

Read about this article
Blog October 12 2023

A Hitch-hacker's Guide to DACL-Based Detections (Part 2)

This blog series was co-authored by Security Consultant Megan Nilsen and TAC Practice Lead Andrew Schwartz.1    IntroductionThis is a continuation of A…

Read about this article
Blog October 11 2023

A Hitch-hacker's Guide to DACL-Based Detections (Part 1B)

This blog series was co-authored by Security Consultant Megan Nilsen and TAC Practice Lead Andrew Schwartz.1    IntroductionIn this continuation to our first…

Read about this article
Blog October 10 2023

A Hitch-hacker's Guide to DACL-Based Detections (Part 1A)

This blog series was co-authored by Security Consultant Megan Nilsen and TAC Practice Lead Andrew Schwartz.1    IntroductionIf you were to collectively ask any…

Read about this article
Blog January 10 2023

A LAPS(e) in Judgement

As security practitioners, we live in a time where there is an abundance of tools and solutions to help us secure our homes, organizations, and critical data.…

Read about this article
Webinars December 18 2024

The Lost Underground

Join TrustedSec Principal Security Consultant Mike Felch for an eye-opening journey into the lost underground, where ingenuity, disobedience, and complexity…

Read about this article
Webinars December 04 2024

BEC Basics: Your First Step to Thwarting Email Scams

Join Senior Security Consultant Steven Erwin and Security Consultant Caroline Fenstermacher as they cover the basics of BEC analysis, providing participants…

Read about this article
Blog December 03 2024

Discovering a Deserialization Vulnerability in LINQPad

Like most red teamers, I spend quite a lot of time looking for novel vulnerabilities that could be used for initial access or lateral movement. Recently, my…

Read about this article

Empower your business through better security design.

Talk directly with our experienced advisory consultants to learn how we can help.