EXPERIENCE
Sarah Norris is a Security Consultant for TrustedSec. Sarah is starting her career in Information Security after conducting PCI audits for Trustwave. Before Trustwave, Sarah worked on Linux systems writing and debugging custom Python modules for Zenoss, the open source network monitoring software.
EDUCATION & CERTIFICATIONS
- Bachelor of Science, Cybersecurity, Utica College
- Certified Information Systems Security Professional (CISSP)
PROFESSIONAL AFFILIATIONS
Sarah Norris is a member of AHA (Austin Hackers Anonymous), Austin 2600, and lolctf.
PASSION FOR SECURITY
Sarah became interested in information security shortly after starting college. She realized that there was nothing more thrilling than picking a lock, cracking a password, or winning a CTF challenge.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
MSBuild: A Profitable Sidekick!
Using MSBuild to bypass security controls and escalate privileges without PowerShell, leverage native Windows binaries for flexible C# code execution.
Take Your Employees Phishing!
Improve your organization's user-based security posture with a realistic internal phishing campaign, educating employees on the tactics and techniques used by…
Perspectives on AI in the Cybersecurity Industry in 2026
Join us for this exclusive webinar where our experts will decode the complex relationship between artificial intelligence and cybersecurity in 2026. What will…
Adventures in Primary Group Behavior, Reporting, and Exploitation
If you’ve administered Active Directory (AD) for any significant time, chances are you’ve come across the primaryGroupID attribute. Originally developed as a…
News 5 Cleveland - Social Security numbers may have been exposed in data breach connected to local car dealership
A Massillon car dealership reports that an unauthorized actor accessed its network, potentially exposing customer names and Social Security numbers. Advisory…
Colonel Clustered: Finding Outliers in Burp Intruder
TL;DR, gimme the goods: https://github.com/hoodoer/ColonelClusteredExtension has been submitted to the Bapp store, awaiting approval.This is a Burp Suite…
Discord Livestream - Crash Course: Building an Analysis Strategy
In this livestream, we will cover the components of an incident response attack plan from a high level —including scoping, building an analysis strategy,…
WWL First News with Tommy Tucker - What to know about the big Verizon outage on Wednesday
A widespread Verizon outage left many without service, sparking conversation about digital dependence. Advisory Solutions Director Alex Hamerstone joins WWL…
CMMC Scope – Understanding the Sprawl
The CMMC program contains complex, and potentially confusing, scope requirements. Contractors that are preparing for a CMMC assessment will need to pay close…
Tips for Incident Response Planning: Prepare Before Crisis Strikes
During our next webinar, our Incident Response experts will cover what organizations should do to prepare so they can respond quickly and be on the way to…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
