Profiles search
Christopher R. Harrell
Principal Cybersecurity Engineer at Sandia National Laboratories
Tucson, AZ, United States
Details
Education:
Master of Science - MS
Management Information Systems
University of Arizona
2017 : 2019
Bachelor of Science - BS
Network Administration
University of Arizona
2015 : 2016
Associate of Science - AS
Systems Administration / Networking Administrator
Pima Community College
2013 : 2015
Management Information Systems
University of Arizona
2017 : 2019
Bachelor of Science - BS
Network Administration
University of Arizona
2015 : 2016
Associate of Science - AS
Systems Administration / Networking Administrator
Pima Community College
2013 : 2015
Experience:
2023 : Present
Sandia National Laboratories
Principal Cybersecurity Engineer
The GIAC Advisory Board is a private group that shares information security best practices and strategies. We advise GIAC and SANS on new topics for certification and give feedback on existing certification programs.
Membership is restricted to those who have scored 90% or higher on a GIAC information security exam.
2016 :
GIAC
GIAC Advisory Board Member
Performed Incident Response / Incident Handler activities including forensic investigation and promotion of security related alerts, process and procedure improvement, threat hunting, and threat intelligence sharing
Automated novel detections and improved upon existing detections resulting in significant increase to True Positives and reduction in False Positives
Designed and developed proof-of-concept for CVE’s including architecture, code development, and exploitation; findings were presented and deployed detections through environment
Enhanced capabilities of widely used sandbox environment, including development of novel dynamic and static analysis techniques resulting in previously undiscovered digital artifacts
Served as SME for network packet broker installation, configuration, testing, and deployment resulting in successful architectural reorganization and network upgrade to 100G capability
Designed, configured, and maintained infrastructure to support modeling efforts including IDS sensors, Firewall, Endpoint Detection and Response solutions, and SIEM
2021 : 2023
Sandia National Laboratories
Senior Cybersecurity Engineer
Center for Cyber Defenders (CCD) :
Mentored interns for Center of Cyber Defenders program, leading research proposal efforts applying statistical analysis to improve efficiency and effectiveness of IDS sensors
Designed database and vulnerability assessment components of an integrated virtualized intrusion detection system
Automated security applications execution, information retrieval, and uploading of data to centralized database
Performed analysis and visualization to identify security implications and trends of cloud based applications
Created scripts to efficiently automate deployment of large storage cluster, file system, and object storage in high performance computing environment
Performed security assessment and resilience testing of storage cluster file system software achieving actionable results for production systems and resulting in discovery of a CVE
2018 : 2021
Sandia National Laboratories
Member Cybersecurity Engineer
Independent Study 599 (1) :
In depth research of vulnerability assessment methodology focusing on scanning and mitigation techniques including remediation and deficiencies in vulnerability scanner reporting mechanisms.
Performed large scale vulnerability assessment utilizing custom python scripts and tools such as Shodan and Nessus.
Selected vulnerabilities produced from scan results to determine those which do not have comprehensive remediation solutions and recreated them in a virtual environment for further analysis.
Independent Study 599 (2) :
Developed advanced reporting capabilities enabling timely execution of remediation efforts addressing 27.80% of vulnerabilities os scanned higher education institutions.
Concluded research manuscript titled, Vulnerability Assessment, Remediation, and Automated Reporting : Case Studies of Higher Education Institutions.
Manuscript accepted and published under IEEE Intelligence and Security Informatics 2018.
Independent Study 699 (2) :
Attended SANS Conference 2017 Mesa, AZ as a facilitator for SEC560 : Network Penetration Testing and Ethical Hacking.
Studied for and earned the GIAC Penetration Tester (GPEN) certification 2 months ahead of schedule.
Critical Skills for GPEN : Auditing Passwords, Information Security, Malware, Network Security, Penetration Testing, Reconnaissance, Social Engineering, Vulnerability Assessment, Web Application Security, Wireless Security
2017 : 2019
University of Arizona
CyberCorps Scholarship for Service Fellow
Sandia National Laboratories
Principal Cybersecurity Engineer
The GIAC Advisory Board is a private group that shares information security best practices and strategies. We advise GIAC and SANS on new topics for certification and give feedback on existing certification programs.
Membership is restricted to those who have scored 90% or higher on a GIAC information security exam.
2016 :
GIAC
GIAC Advisory Board Member
Performed Incident Response / Incident Handler activities including forensic investigation and promotion of security related alerts, process and procedure improvement, threat hunting, and threat intelligence sharing
Automated novel detections and improved upon existing detections resulting in significant increase to True Positives and reduction in False Positives
Designed and developed proof-of-concept for CVE’s including architecture, code development, and exploitation; findings were presented and deployed detections through environment
Enhanced capabilities of widely used sandbox environment, including development of novel dynamic and static analysis techniques resulting in previously undiscovered digital artifacts
Served as SME for network packet broker installation, configuration, testing, and deployment resulting in successful architectural reorganization and network upgrade to 100G capability
Designed, configured, and maintained infrastructure to support modeling efforts including IDS sensors, Firewall, Endpoint Detection and Response solutions, and SIEM
2021 : 2023
Sandia National Laboratories
Senior Cybersecurity Engineer
Center for Cyber Defenders (CCD) :
Mentored interns for Center of Cyber Defenders program, leading research proposal efforts applying statistical analysis to improve efficiency and effectiveness of IDS sensors
Designed database and vulnerability assessment components of an integrated virtualized intrusion detection system
Automated security applications execution, information retrieval, and uploading of data to centralized database
Performed analysis and visualization to identify security implications and trends of cloud based applications
Created scripts to efficiently automate deployment of large storage cluster, file system, and object storage in high performance computing environment
Performed security assessment and resilience testing of storage cluster file system software achieving actionable results for production systems and resulting in discovery of a CVE
2018 : 2021
Sandia National Laboratories
Member Cybersecurity Engineer
Independent Study 599 (1) :
In depth research of vulnerability assessment methodology focusing on scanning and mitigation techniques including remediation and deficiencies in vulnerability scanner reporting mechanisms.
Performed large scale vulnerability assessment utilizing custom python scripts and tools such as Shodan and Nessus.
Selected vulnerabilities produced from scan results to determine those which do not have comprehensive remediation solutions and recreated them in a virtual environment for further analysis.
Independent Study 599 (2) :
Developed advanced reporting capabilities enabling timely execution of remediation efforts addressing 27.80% of vulnerabilities os scanned higher education institutions.
Concluded research manuscript titled, Vulnerability Assessment, Remediation, and Automated Reporting : Case Studies of Higher Education Institutions.
Manuscript accepted and published under IEEE Intelligence and Security Informatics 2018.
Independent Study 699 (2) :
Attended SANS Conference 2017 Mesa, AZ as a facilitator for SEC560 : Network Penetration Testing and Ethical Hacking.
Studied for and earned the GIAC Penetration Tester (GPEN) certification 2 months ahead of schedule.
Critical Skills for GPEN : Auditing Passwords, Information Security, Malware, Network Security, Penetration Testing, Reconnaissance, Social Engineering, Vulnerability Assessment, Web Application Security, Wireless Security
2017 : 2019
University of Arizona
CyberCorps Scholarship for Service Fellow
Company:
Sandia National Laboratories
Years of Experience:
13
Spoken Language:
English
Skills
Artificial Intelligence (AI), Cisco Technologies, Cloud Computing, Cloud Security, Computer Network Operations, Cybersecurity, Data Analysis, Data Mining, Digital Forensics, Hyper-V, Information Assurance, Information Security, IT Project & Program Management, IT Security Policies & Procedures, Malware Analysis, Memory Forensics, MySQL, Network Forensics, Network Infrastructure, Network Security, Penetration Testing, Python, Security Automation, Technical Support, Technical Writing, Threat & Vulnerability Management, Threat Intelligence, Virtualization, VMware, VMware Infrastructure, Vulnerability Assessment, Vulnerability Management, Windows Security, Wireless Networking
About
Experienced Cybersecurity professional with a demonstrated history of working in the Department of Defense and Department of Energy sectors, including information technology and services industry. Strong results driven individual skilled in Incident Response, Incident Handling, Digital, Network, and Memory Forensics, Windows/Linux Security, Network Security, Vulnerability Management, Systems Administration, and Policy Compliance.
Profile Photo
