EXPERIENCE
Philip DuBois brings over 20 years of wide-ranging IT experience to TrustedSec, including perimeter & internal security, incident & DR recovery, vulnerability management, network architecture, hyper-converged infrastructure, database & systems architecture, and cloud design & migration. Philip has worked in a variety of sectors, including public finance, private distribution & logistics, state government, and military defense contracting.
EDUCATION & CERTIFICATIONS
- Bachelor of Science, Computer Science, Computer Information Systems minor, West Texas A&M University
PROFESSIONAL AFFILIATIONS
OWASP, Oklahoma City Chapter (Member)
PASSION FOR SECURITY
Philip’s security passion has grown steadily over his lengthy career. His IT journey began in Department of Defense contracting and then migrated to state government contracting, private sector logistics, and finance InfoSec. He has had a direct hand in the development, auditing, and operation of multiple complex IT systems. As a direct result, Philip has witnessed many security successes and failures across a wide variety of technologies and sectors. He has remediated and performed root-cause/corrective action for multiple enterprise security incidents, as well as observed their long-term impact and effectiveness. He brings this experience, along with the desire to help others harden and secure their IT, ultimately reducing threats and decreasing security incidents.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
You Had Us at the First Alert: A Guide to Finding Frequently Missed Detections
Join us for this webinar to get a clearer picture of where your detection coverage has blind spots and a practical roadmap for closing them before a real…
ISC2 Cleveland Chapter Member Meeting - March 2026
ISC2 Cleveland Chapter March MeetupCome join us for our meetup! The ISC2 Cleveland Chapter is hosting an exciting in-person event for all cybersecurity…
Policy as Code: Stop Writing Policies and Start Compiling Them
The Problem Nobody Wants to Talk AboutLet me paint a picture most security leaders will recognize.You have 30+ policies living as Word documents on SharePoint.…
Security Noise - AI is Exploring The Deep Blue CVEs
On this episode of Security Noise, we explore the cutting-edge use of AI in vulnerability research, exploit development, and cybersecurity defense with guests…
Building a Detection Foundation: Part 4 - Sysmon
Filling the Gaps Native Logging Can'tAt this point in our series, we have Windows Security events capturing logon sessions and process creation, and…
ABC7 Chicago - March Madness betting, ticket scams targeting college basketball tournament fans
March Madness is in full swing and so are the scams, the latest being fake tickets sales and "bogus" bracket challenges. Advisory Solutions Director Alex…
Discord Livestream - AMA: Incident Response
Ask us anything about incident response! Join us for an exclusive Discord Livestream with IR Practice Lead Ryan Macfarlane.
Full Disclosure: A Third (and Fourth) Azure Sign-In Log Bypass Found
Invisible password sprays. Invisible logins. Full tokens returned.Nyxgeek here. It's 2026 and I've got two more Azure Entra ID sign-in log bypasses…
Copilot Security: What to Know Before You Go
In this webinar, our experts will walk you through the critical groundwork needed before deploying Microsoft 365 Copilot. Learn how you can best prepare for…
Better Together: Combining Automation and Manual Testing
When I started working in mobile application security in 2018, most testing was still largely manual. Since then, the ecosystem has exploded with scanners,…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
