Megan Nilsen
Practice Lead, Attack Simulation and Detection, Tactical Awareness & Countermeasures (TAC)
EXPERIENCE
Megan has over five years of experience in the Gaming & Hospitality industry working as both an Engineer and a Lead Analyst in a Security Operations Center. She has worked with a wide array of corporate security tools including IDS/IPS and vulnerability scanners. In addition, she has led the development of SIEM programs focused on actionable alerts that leverage automation to speed up response time and reduce analyst fatigue.
Her knowledge in security, business administration, and compliance (SOX/MICS/PCI) makes her well equipped to understand the challenges and needs of large enterprise environments.
EDUCATION & CERTIFICATIONS
- Bachelor of Science: Accounting and Information Systems, University of Nevada
- Undergraduate Certificate in Applied Cybersecurity: SANS Technology Institute
- CompTIA Network+
- CompTIA CySA+
- GIAC Foundational Cybersecurity Technologies (GFACT)
- GIAC Certified Intrusion Analyst (GCIA)
- GIAC Certified Incident Handler (GCIH)
- GIAC Security Essentials (GSEC)
- Certified Azure Red Team Professional (CARTP)
PROFESSIONAL AFFILIATIONS
GIAC Advisory Board
PASSION FOR SECURITY
Megan discovered her interest in cybersecurity during college. Since then, she has fallen in love with the fast-paced and continuously evolving nature of the industry. She has especially developed a passion for all things SIEM, from building reporting to log source enrichment to system tuning and developing alerts. She is highly motivated and looks forward to applying her knowledge and skills to help organizations improve their existing security practices.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
Engagement Guide: How to Prepare for Your Purple Team
After performing many Purple Team engagements with organizations ranging from large enterprise networks to small-to-medium businesses, we've found that the…
Detection Alchemy - The Purple Team Way
1.1 IntroductionAs security practitioners, we frequently extol the virtues of penetration testing and red team exercises as a way of identifying issues…
A Hitch-hacker's Guide to DACL-Based Detections (Part 3)
This blog series was co-authored by Security Consultant Megan Nilsen and TAC Practice Lead Andrew Schwartz.1 IntroductionIn this third and final…
A Hitch-hacker's Guide to DACL-Based Detections (Part 2)
This blog series was co-authored by Security Consultant Megan Nilsen and TAC Practice Lead Andrew Schwartz.1 IntroductionThis is a continuation of A…
A Hitch-hacker's Guide to DACL-Based Detections (Part 1B)
This blog series was co-authored by Security Consultant Megan Nilsen and TAC Practice Lead Andrew Schwartz.1 IntroductionIn this continuation to our first…
A Hitch-hacker's Guide to DACL-Based Detections (Part 1A)
This blog series was co-authored by Security Consultant Megan Nilsen and TAC Practice Lead Andrew Schwartz.1 IntroductionIf you were to collectively ask any…
A LAPS(e) in Judgement
As security practitioners, we live in a time where there is an abundance of tools and solutions to help us secure our homes, organizations, and critical data.…
The Lost Underground
Join TrustedSec Principal Security Consultant Mike Felch for an eye-opening journey into the lost underground, where ingenuity, disobedience, and complexity…
BEC Basics: Your First Step to Thwarting Email Scams
Join Senior Security Consultant Steven Erwin and Security Consultant Caroline Fenstermacher as they cover the basics of BEC analysis, providing participants…
Discovering a Deserialization Vulnerability in LINQPad
Like most red teamers, I spend quite a lot of time looking for novel vulnerabilities that could be used for initial access or lateral movement. Recently, my…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
