EXPERIENCE
Steven has over 11 years experience in networking and security and over five years in Incident Response. His industry experience ranges from steel mills and healthcare to small offices and electrical control systems.
EDUCATION & CERTIFICATIONS
- BS – Information Security Technology – Purdue University
- GIAC Network Forensic Analyst (GNFA)
- GIAC Certified Forensic Analyst (GCFA)
PROFESSIONAL AFFILIATIONS
- GIAC Advisory Board
PASSION FOR SECURITY
Steven has always had an interest in computers. He started his career as a network engineer then transitioned into a network security role. That role drove him to learn as much as possible about security. Making sure to learn from everyone around him, he understands that security requires continuous education and training.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
Unmasking Business Email Compromise: Safeguarding Organizations in the Digital Age
Business Email Compromises (BEC) within the Microsoft 365 environment are a large threat with nearly $500 Million reported in stolen funds in 2022[1].…
ESXiArgs: What you need to know and how to protect your data
Threat Overview Around February 03, 2023, a ransomware campaign called “ESXiArgs” emerged that targeted Internet-facing VMware ESXi servers running versions…
Auditing Exchange Online From an Incident Responder's View
Business Email Compromise (BEC) within the Microsoft 365 environment is becoming a more common attack vector. In case you’re unfamiliar with what exactly BEC…
Detections and Defensive Insights From the ContiLeaks
Join Incident Response Consultants Steven Erwin, Ashley Pearson, and Nick Gilberti to understand how to practically use information found in the leak to…
Security Lessons Learned from the Global Conflict
Tune in with TrustedSec leaders who are on the front lines of the research, penetration testing, and Incident Response aspects of the conflict to learn how you…
DOD Contract Compliance: DFARS 7012 and CMMC
Advisory Compliance Practice Lead Chris Camejo will take a deep dive into the Department of Defense requirements for protecting FCI and CUI.
Solving NIST Password Complexities: Guidance From a GRC Perspective
Not another password change! Isn’t one (1) extra-long password enough? As a former Incident Response, Identity and Access Control, and Education and Awareness…
Security Noise - Episode 7.8
Farewell 2024
Malware Series: Process Injection Mapped Sections
We're back with another post about common malware techniques. This time, we are talking about using shared memory sections to inject and execute code in a…
The Lost Underground
Join TrustedSec Principal Security Consultant Mike Felch for an eye-opening journey into the lost underground, where ingenuity, disobedience, and complexity…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
