EXPERIENCE
Thomas Millar joined the TrustedSec Incident Response team with 20 years of system security and digital forensics experience. His areas of focus have been Network Intrusion and Incident Response. Prior to joining the TrustedSec Incident Response team, he began his work in IT field support for PC and Apple Mac platforms and was employed to support the IT needs for a small private university in Northern California. More recently, Thomas also worked as an Incident Response consultant for RSA NetWitness and IBM Emergency Response Services.
EDUCATION & CERTIFICATIONS
Thomas attended Forensics Response training provided by Carnegie Mellon University (CMU) and the U.S. Defense Cyber Investigations Training Academy (DCITA). He has had additional education in cyber operations from the U.S. Army for both offensive and defensive efforts at the Cyber Center of Excellence (CCOE) in Fort Gordon, GA. He is also a graduate of the Cyberspace Operations Planners Course (COPC), where senior military leaders devise and formulate real-world mission planning, from initial tasking and concept to execution.
PROFESSIONAL AFFILIATIONS
- Military Cyber Professionals Association (MCPA)
- South Bay Amateur Radio Society (SOBARS)
- American Radio Relay League (ARRL)
INDUSTRY CONTRIBUTIONS
Thomas’ work has been published in two (2) IBM X-Force Threat Intelligence Quarterly journal articles. He was also a contributing author to the Cisco Router and Switch Forensics book by Syngress Publishing. Since joining TrustedSec, Thomas has posted several blog articles on Incident Response and computer forensic subjects and was a co-host for a webinar on business email compromises.
PASSION FOR SECURITY
Thomas has been driven by curiosity from an early age about anything that was locked or obscured. This developed into a keen interest in finding all that can be revealed in computer intrusion examinations and security breaches. Thomas especially enjoys situations that involve Linux host analysis but always leaves room to learn about other systems and platforms.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
Guarding Your Inbox: Navigating Business Email Compromises
Join our experts as they dive into the world of Business Email Compromises (BECs) to equip you with the knowledge to fortify your organization's inboxes.
Incident Response: Bring Out the Body File
Find all files on a Linux host with detailed attributes using the find and stat commands.
Getting Analysis Practice from Windows Event Log Sample Attacks
Here's a meta description summarizing the key benefits, purpose, and value proposition of the webpage, limited to 150-160 characters.
Windows event log…
ESXiArgs: What you need to know and how to protect your data
Vulnerable ESXi servers are at risk from the ESXiArgs ransomware campaign; patch or upgrade immediately to prevent data loss.
The Benefits of Enabling Timestamps in Your Command-Line History
Setting up and utilizing the command history facility in Linux for forensic purposes can provide valuable insights into command-line activities, helping…
Perspectives on AI in the Cybersecurity Industry in 2026
Join us for this exclusive webinar where our experts will decode the complex relationship between artificial intelligence and cybersecurity in 2026. What will…
Adventures in Primary Group Behavior, Reporting, and Exploitation
If you’ve administered Active Directory (AD) for any significant time, chances are you’ve come across the primaryGroupID attribute. Originally developed as a…
News 5 Cleveland - Social Security numbers may have been exposed in data breach connected to local car dealership
A Massillon car dealership reports that an unauthorized actor accessed its network, potentially exposing customer names and Social Security numbers. Advisory…
Colonel Clustered: Finding Outliers in Burp Intruder
TL;DR, gimme the goods: https://github.com/hoodoer/ColonelClusteredExtension has been submitted to the Bapp store, awaiting approval.This is a Burp Suite…
Discord Livestream - Crash Course: Building an Analysis Strategy
In this livestream, we will cover the components of an incident response attack plan from a high level —including scoping, building an analysis strategy,…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
