Steve Campbell

Pentester

“The vision to lead the way forward with the experience to avoid the pitfalls.” “Steve is a Navy veteran and worked as an Aviation Electrician before switching to Information Technology. He has more than 18 years of combined IT and penetration testing experience. Before changing his focus to penetration testing, Steve worked in numerous IT and security engineering roles. This experience adds context to his report deliverables and remediation recommendations.” “He has planned, scoped, lead, and performed penetration testing engagements on various major enterprises, such as: Fortune 500, government institutions, banking, finance, healthcare and insurance, ecommerce, legal, and energy sector clients. These engagements provided deep insights to the organization on their weak points, how they can be connected to a full attack vector, how they can be monitored, detected, quarantined, and remediated.” “He shares his experience and insight through training and mentoring consultants and ensuring the quality of report deliverables.”

PDF vCard JSON

Location

redacted, redacted, redacted, redacted, United States

Email

scampbell@aecyberpro.com

Phone

redacted

Website

https://aecyberpro.com

Twitter

lpha3ch0

LinkedIn

hack-the-planet

Experience

Mar 2022 – present

Technical Director at Focal Point Data Risk (A CDW Company)

Steve led a team of 40 pentest consultants. His focus was on team development, client satisfaction, and quality assurance.

Highlights

• A leader in the merger of the CDW, Focal Point, and Sirius pentest teams (40 consultants)
• Performed quality assurance reviews of all report deliverables
• Mentored two pentesters to develop the first public exploit code and Metasploit module for Symmetricom SyncServer RCE CVE-2022-40022
• Project Discovery Nuclei template contributor
• Developed private team tools in C# to bypass AV and EDR detection when loading shellcode and .Net assemblies into memory
• Developed pentesting methodology guides for internal network and application security testing
• Led the AppSec Engineering Team to develop pentest methodology guides and manage research projects

Feb 2021 – Mar 2022

Chief Security Systems Engineer at EPAM Systems

Steve was the Chief Engineer in EPAM’s Offensive Security Global Consulting practice and mentored over 60 consultants in five countries. He provided client sales support and assessment planning and scoping, and followed up to ensure client needs were met.

Volunteer

Jan 2012 – Jan 2013

Teacher at CoderDojo

Global movement of free coding clubs for young people.

Highlights

• Awarded 'Teacher of the Month'

Education

Jun 2011 – Jan 2014

Bachelor in Information Technology from University of Oklahoma with GPA of 4.0

Courses

• DB1101 - Basic SQL
• CS2011 - Java Introduction

Awards

Nov 2014

Digital Compression Pioneer Award from Techcrunch

There is no spoon.

Publications

Oct 2014

Video compression for 3d media by Hooli

Innovative middle-out compression algorithm that changes the way we store data.

References

It is my pleasure to recommend Richard, his performance working as a consultant for Main St. Company proved that he will be a valuable addition to any company.

Languages

English

Fluency: Native speaker

Skills

Web Development

Level: Master

Keywords:

• HTML
• CSS
• Javascript

Compression

Level: Master

Keywords:

• Mpeg
• MP4
• GIF

Interests

Wildlife

Keywords:

• Ferrets
• Unicorns