Skip to Main Content

Steven Erwin

Senior Security Consultant

Steven has over 11 years experience in networking and security and over five years in Incident Response. His industry experience ranges from steel mills and healthcare to small offices and electrical control systems.


  • BS – Information Security Technology – Purdue University
  • GIAC Network Forensic Analyst (GNFA)
  • GIAC Certified Forensic Analyst (GCFA)


  • GIAC Advisory Board

Steven has always had an interest in computers. He started his career as a network engineer then transitioned into a network security role. That role drove him to learn as much as possible about security. Making sure to learn from everyone around him, he understands that security requires continuous education and training.

Featured Blogs And Resources

Discover the blogs, analysis, webinars, and podcasts by this team member.

Blog December 14 2023

Unmasking Business Email Compromise: Safeguarding Organizations in the Digital Age

Business Email Compromises (BEC) within the Microsoft 365 environment are a large threat with nearly $500 Million reported in stolen funds in 2022[1].…

Read about this article
Blog February 07 2023

ESXiArgs: What you need to know and how to protect your data

Threat Overview Around February 03, 2023, a ransomware campaign called “ESXiArgs” emerged that targeted Internet-facing VMware ESXi servers running versions…

Read about this article
Blog November 08 2022

Auditing Exchange Online From an Incident Responder's View

Business Email Compromise (BEC) within the Microsoft 365 environment is becoming a more common attack vector. In case you’re unfamiliar with what exactly BEC…

Read about this article
Webinars March 15 2022

Detections and Defensive Insights From the ContiLeaks

Join Incident Response Consultants Steven Erwin, Ashley Pearson, and Nick Gilberti to understand how to practically use information found in the leak to…

Read about this article
Webinars December 07 2022

Security Lessons Learned from the Global Conflict

Tune in with TrustedSec leaders who are on the front lines of the research, penetration testing, and Incident Response aspects of the conflict to learn how you…

Read about this article
Training Resources May 02 2024

Actionable Purple Team Simulation Online Training (May 2-3)

Learn how to create specific detections to identify early Indicators of Compromise (IOCs) in our online course. Designed for those looking to improve their…

Read about this article
Events TrustedSec HQ | April 30 2024

ISC2 Cleveland Chapter Member Meeting April 2024

ISC2 Cleveland Chapter April MeetupCome join us for our April Meetup! Our Cleveland Chapter is hosting an exciting in-person event for all cybersecurity…

Read about this article
Webinars April 17 2024

Enter the Sandbox: Impede Detection Platform v1.1 Release

Join us for our webinar with Director of Product Operations Ben Mauch, where you can get a look at the new Impede Detection Platform updates and the all-new…

Read about this article
Blog April 16 2024

PCI DSS Vulnerability Management: The Most Misunderstood Requirement – Part 2

Risk RankingThis is part two (2) of a three (3) part series on PCI DSS version 4.0 requirement 6.3.1, for identification and management of vulnerabilities.…

Read about this article
Events Kennedy Space Center, Florida | April 12 2024

Hack Space Con 2024

Founder and CEO David Kennedy is the keynote speaker at this year's Hack Space Con! We are also proud to sponsor this event.

Read about this article

Empower your business through better security design.

Talk directly with our experienced advisory consultants to learn how we can help.