:: hiddenillusion :: ... look beyond

Glenn P. Edwards Jr.

Glenn is a motivated, proven leader with over 12 years of demonstrated industry experience and security intuition looking to advance his knowledge, leadership and technical skills in Incident Response, Cloud Forensics and Hunting large data sets. Seeking out challenging situations and utilizing strong analytical skills has enabled him to successfully lead and support various high profile, large and complex cases including those involving nation state adversaries and supply-chain compromises.

Education

Experience

  • 2021

    Block

    Incident Response Engineer

    December 2021 - Present

  • 2021

    Square

    Incident Response Engineer

    November 2021 - December 2021

  • 2018

    Mandiant

    Technical Director

    January 2018 - October 2021

  • 2016

    Mandiant

    Principal Incident Response Consultant

    December 2016 - January 2018

  • 2016

    BSidesNYC

    Co-Founder

    January 2016 - Present

  • 2013

    FireEye

    Sr. Incident Response Consultant

    April 2013 - December 2016

  • 2013

    Bridgewater Associates

    Vulnerability Management Analyst

    February 2013 – April 2013

  • 2011

    Foundstone

    Sr. Consultant

    May 2011 – February 2013

  • 2010

    Center for Internet Security

    Sr. Analyst

    November 2010 – April 2011

  • 2010

    Symantec

    Security Analyst

    February 2010 – November 2010

Publications

  • 2012 | Let Me In - An outline of how Incident Responders can get into a locked system | Digital Forensics Magazine (11)
  • 2012 | Using REMNux to analyze PE files | Hakin9 Magazine (Vol. 7, No. 6)

Training

  • A Practical Approach to Breaking and Pwning Kubernetes Clusters | Black Hat Europe (2022)
  • Windows Malware and Memory Forensics Training | The Volatility Project (2014)
  • EnCase's Computer Forensics II, Advanced Internet Forensics and Macintosh-Linux Examinations | Guidance Software
  • Internet Forensics and Microsoft Windows Registry Forensics | Access Data
  • Offsec 101 - Pentesting with BackTrack | Offensive Security

Certifications

  • GREM (GIAC Reverse Engineering Malware)
  • GCFA (GIAC Certified Forensic Analyst)
  • GCIH (GIAC Certified Incident Handler)
  • CEH (Certified Ethical Hacker)
  • OSCP (Offensive Security Certified Professional)
  • Security+ (CompTIA Security+)

Buzzwords

    AWS • Bulk Extractor • EnCase • GitHub • Linux • Log2timeline/Plaso • Mac • REMnux • The Sleuth Kit • Timesketch • Volatility • WinHex/X-Ways • Windows • YARA • bash • dfir • forensics • incident response • malware • open source • python • reverse engineering • scripting

Location