Marc R

An information security leader passionate about supporting firms achieve real security risk reduction through practical means of regulatory compliance, security audits, network and web application penetration testing, and security consulting such as policy and procedure reviews, business continuity testing, and risk management.

• Strong experience performing and managing security regulatory audits specifically PCIDSS as a lead QSA and full validated HITRUST assessments.
• Deeply skilled in performing and managing regulatory penetration tests based on requirements from the PCI DSS council and FedRAMP standards including segmentation tests, full network and web application penetration tests from information gathering to full exploitation and creating custom social engineering campaigns
• Over three years’ experience practicing and developing improvements in the realm of incident response and root cause analysis for a fortune 200 company