Skip to Main Content

Philip DuBois

Senior Security Consultant

EXPERIENCE
Philip DuBois brings over 20 years of wide-ranging IT experience to TrustedSec, including perimeter & internal security, incident & DR recovery, vulnerability management, network architecture, hyper-converged infrastructure, database & systems architecture, and cloud design & migration. Philip has worked in a variety of sectors, including public finance, private distribution & logistics, state government, and military defense contracting.

EDUCATION & CERTIFICATIONS

  • Bachelor of Science, Computer Science, Computer Information Systems minor, West Texas A&M University

PROFESSIONAL AFFILIATIONS
OWASP, Oklahoma City Chapter (Member)

PASSION FOR SECURITY
Philip’s security passion has grown steadily over his lengthy career. His IT journey began in Department of Defense contracting and then migrated to state government contracting, private sector logistics, and finance InfoSec. He has had a direct hand in the development, auditing, and operation of multiple complex IT systems. As a direct result, Philip has witnessed many security successes and failures across a wide variety of technologies and sectors. He has remediated and performed root-cause/corrective action for multiple enterprise security incidents, as well as observed their long-term impact and effectiveness. He brings this experience, along with the desire to help others harden and secure their IT, ultimately reducing threats and decreasing security incidents.

Featured Blogs And Resources

Discover the blogs, analysis, webinars, and podcasts by this team member.

Webinars February 05 2025

2024 Conference Roundup

Join our panelists David Kennedy, Justin Elze, Jason Lang, and Oddvar Moe for their firsthand accounts and perspectives on what people were talking about at…

Read about this article
News January 21 2025

TrustedSec Tech Brief - January 2025

Carlos Perez walks us through several major vulnerabilities and patches from early January 2025, including a critical Fortinet FortiGate zero-day vulnerability.

Read about this article
Podcasts January 17 2025

Security Noise - Episode 7.9

On this episode of the Security Noise Podcast, we discuss user enumeration on Azure and "presence data" in Microsoft Teams with nyxgeek.

Read about this article
Webinars January 15 2025

DOD Contract Compliance: DFARS 7012 and CMMC

Advisory Compliance Practice Lead Chris Camejo will take a deep dive into the Department of Defense requirements for protecting FCI and CUI.

Read about this article
Blog January 14 2025

Command Line Underdog: WMIC in Action

My typical engagements are mostly Red Teams, so I do not often get a chance to play with terminal server application breakouts—but on a recent engagement, I…

Read about this article
Blog January 07 2025

Solving NIST Password Complexities: Guidance From a GRC Perspective

Not another password change! Isn’t one (1) extra-long password enough? As a former Incident Response, Identity and Access Control, and Education and Awareness…

Read about this article
Podcasts December 20 2024

Security Noise - Episode 7.8

Farewell 2024

Read about this article
Blog December 19 2024

Malware Series: Process Injection Mapped Sections

We're back with another post about common malware techniques. This time, we are talking about using shared memory sections to inject and execute code in a…

Read about this article
Webinars December 18 2024

The Lost Underground

Join TrustedSec Principal Security Consultant Mike Felch for an eye-opening journey into the lost underground, where ingenuity, disobedience, and complexity…

Read about this article
Blog December 17 2024

Top 10 Blogs of 2024

At TrustedSec, we are all about leveraging our collective intelligence and knowledge to uplift the cybersecurity community. One of our most popular educational…

Read about this article

Empower your business through better security design.

Talk directly with our experienced advisory consultants to learn how we can help.