Profiles search
Robert ็็้้้้้็็็็็้้้้้้้้็็็็็้้้้ McCurdy
RMcCurdyˌcom
Roswell, GA, United States
Details
Experience:
Work with information security team to identify gaps in visibility. Provide dashboards and automation to deliver data for analysts. Develop custom integrations/APIs with security vendors and existing security software. Feed events to our existing SIEM for correlation and threat hunting. Act as an escalation path for several information security role gaps within the organization.
Here are some other roles I have performed at Newell :
Lead Security Engineer/Developer
SIEM/Threat Hunting/Threat Intelligence Automation
Tier 3 SOC/IR Analyst
Tier 2 SOC/IR Analyst
Tier 1 SOC/IR Analyst
Network Penetration Tester
Web application Security Tester DAST SAST
Mobile Application Security Tester
Vulnerability/Asset Management
DevSecOps Risk Assessments/Vulnerability Assessments
Digital Forensics Software Developer/Engineer
Vulnerability Research/Exploit Development
2019 : Present
Newell Brands
Cybersecurity Specialist-Network and ETD, IT Security
2018 : 2019
Paymetric, Inc.
Cyber Security Engineer Global Security Services Cyber Threat Action Center (TAC)
2016 : 2018
SunTrust
M̷a̸n̸a̶g̴e̸r̴ Vulnerability Analysis and Response / Red Team
Aligned with KMPG’s new cyber initiative. Securing information while delivering uninterrupted access to prioritized data allows companies to thrive in their business environment. Develop customized strategies to identify critical issues and vulnerabilities that could lead to reputational harm or disrupt business processes.
• Helping maintaining global Atlanta based Cyber security lab.
• Working with VMware ESX and Openstack to provide different testing environments and high availability for testers.
• Implementing Asset management, Security information management (SIM) and Ticket system to track lab usage and automate lab support.
2015 : 2016
KPMG US
Cyber Risk Specialist
Work with in the Southeast Information Protection and Business Resilience practice which is a division of
Risk and Compliance group within Advisory Services. Responsibilities include : business and IT operational assessments, IT security risk and control assessments, Risk recommendations, Identity & Access Management, current state assessment, gap analysis, and roadmaps.
Security Assessments responsibilities include :
• Perform Physical Site Reviews to identify common security gaps in remote applications/services.
• Conduct third party or internal risk assessments on applications.
• Work with number of teams and companies to perform full Vulnerability Assessments and Penetration Test on external and internal sites.
• Work with a team in Security Assessment for a consumer credit union company.
• Responsible for onsite Intrusion detection evasion, Vulnerability and Penetration testing.
• Provide an assessment team with initial internet information gathering and intelligence to build a target list of servers and services.
• Work with a team to audit DMZ for Energy Company SCADA Systems to identify potential segmentation gaps.
• Work with a team to setup VoIP system to automate Wardialing using WarVOX to identify potential telephony targets with consoles.
• Perform security Vulnerability Assessments and Penetration Testing for array of different size businesses.
• Create portable versions for security apps for windows W3AF, Metasploit 3 and custom meterpreter scripts, Nessus, routing/CARP with software and hardware with UNIX based firewalls, SQL/PHP debug dynamic scripts, Advanced Apache Proftpd PHP MySQL and CPanel scripts, Webhosting/Consulting.
• Compile security applications to work with mobile devices on the Android environment.
• Knowledgeable in web application vulnerability tools and techniques.
• Provide Snort/Snortsam IDP with emerging threats and custom signatures for detecting vulnerable traffic.
2010 : 2015
KPMG US
Advisory Associate
Here are some other roles I have performed at Newell :
Lead Security Engineer/Developer
SIEM/Threat Hunting/Threat Intelligence Automation
Tier 3 SOC/IR Analyst
Tier 2 SOC/IR Analyst
Tier 1 SOC/IR Analyst
Network Penetration Tester
Web application Security Tester DAST SAST
Mobile Application Security Tester
Vulnerability/Asset Management
DevSecOps Risk Assessments/Vulnerability Assessments
Digital Forensics Software Developer/Engineer
Vulnerability Research/Exploit Development
2019 : Present
Newell Brands
Cybersecurity Specialist-Network and ETD, IT Security
2018 : 2019
Paymetric, Inc.
Cyber Security Engineer Global Security Services Cyber Threat Action Center (TAC)
2016 : 2018
SunTrust
M̷a̸n̸a̶g̴e̸r̴ Vulnerability Analysis and Response / Red Team
Aligned with KMPG’s new cyber initiative. Securing information while delivering uninterrupted access to prioritized data allows companies to thrive in their business environment. Develop customized strategies to identify critical issues and vulnerabilities that could lead to reputational harm or disrupt business processes.
• Helping maintaining global Atlanta based Cyber security lab.
• Working with VMware ESX and Openstack to provide different testing environments and high availability for testers.
• Implementing Asset management, Security information management (SIM) and Ticket system to track lab usage and automate lab support.
2015 : 2016
KPMG US
Cyber Risk Specialist
Work with in the Southeast Information Protection and Business Resilience practice which is a division of
Risk and Compliance group within Advisory Services. Responsibilities include : business and IT operational assessments, IT security risk and control assessments, Risk recommendations, Identity & Access Management, current state assessment, gap analysis, and roadmaps.
Security Assessments responsibilities include :
• Perform Physical Site Reviews to identify common security gaps in remote applications/services.
• Conduct third party or internal risk assessments on applications.
• Work with number of teams and companies to perform full Vulnerability Assessments and Penetration Test on external and internal sites.
• Work with a team in Security Assessment for a consumer credit union company.
• Responsible for onsite Intrusion detection evasion, Vulnerability and Penetration testing.
• Provide an assessment team with initial internet information gathering and intelligence to build a target list of servers and services.
• Work with a team to audit DMZ for Energy Company SCADA Systems to identify potential segmentation gaps.
• Work with a team to setup VoIP system to automate Wardialing using WarVOX to identify potential telephony targets with consoles.
• Perform security Vulnerability Assessments and Penetration Testing for array of different size businesses.
• Create portable versions for security apps for windows W3AF, Metasploit 3 and custom meterpreter scripts, Nessus, routing/CARP with software and hardware with UNIX based firewalls, SQL/PHP debug dynamic scripts, Advanced Apache Proftpd PHP MySQL and CPanel scripts, Webhosting/Consulting.
• Compile security applications to work with mobile devices on the Android environment.
• Knowledgeable in web application vulnerability tools and techniques.
• Provide Snort/Snortsam IDP with emerging threats and custom signatures for detecting vulnerable traffic.
2010 : 2015
KPMG US
Advisory Associate
Company:
Newell Brands
Spoken Language:
English, Potato
About
I am an experienced IT security professional with over 20 years of hands-on experience in networking and information security. I have a passion for growing local information security groups and talent by speaking at conferences, creating online videos/articles, and teaching Red/Blue Team at a local maker space. Sharing my knowledge and learning from others is something I truly enjoy.
Throughout my career, I have worked with various platforms and networks in small to Fortune 500 companies. I can assist in identifying and collaborating to resolve both known and previously unknown issues.
Profile Photo
