Brad Geesaman
Summary
Motivated cloud-native Information Security Professional with expertise in a wide range of cloud platform and Kubernetes security technologies and a track record of producing extraordinary results. Looking for opportunities to make the secure path the easier path for your clients and the community.
Experience
2022-present
Staff Security Engineer, Ghost Security
- Building a modern cloud and application security platform on GCP using serverless technologies.
2021-2022
Director of Cloud Security, Aqua Security
- Technical lead working to design, prototype, and build new and improved product and SaaS service capabilities within the cloud and container security space across AWS, Azure, and Google Cloud.
2019-2021
Co-founder, Chief Architect, Darkbit.io
- Provided expert technical and strategic guidance to cloud-native organizations by assessing the security posture of their AWS, Google Cloud, and Kubernetes environments via point-in-time and continuous security configuration assessments.
- Co-developed and open-sourced OpenCSPM, a graph-database engine for efficiently assessing the security posture of AWS, Google Cloud, and Kubernetes resources.
- Developed and tested exam challenges for the Certified Kubernetes Security (CKS) certification.
2018-2019
Professional Services Consultant (Contractor/TVC), Google Cloud (PSO)
- Engaged with multiple clients migrating to Google Cloud and Google Kubernetes Engine (GKE). Performed security configuration reviews with strategic security guidance to client management.
- Delivered multiple internal GKE/Security educational assets and training sessions used by the greater Google Cloud Partner ecosystem.
- One of the first 20 to qualify for the Google Cloud Certified Fellow Program.
2018-2019
Independent Security Consultant, Bradley Geesaman Consulting
- Delivered practical security guidance, expertise, implementation assistance, and security training to several clients deploying mission-critical workloads inside Kubernetes on Baremetal, AWS, and GKE.
- Designed, developed, and automated the cluster and deployment pipelines of a multi-team AWS/Kubernetes-based platform performing security analytics at 60K logs/sec into ElasticSearch.
2015-2017
Senior Manager, Symantec Corporation
- Led the team that successfully hosted a one-week, 1500 person, company-wide Capture-the-Flag event inside 10 AWS regions on top of multiple, hardened Kubernetes clusters.
- Architected and built a fully automated Kubernetes cluster deployment tool on AWS to support the containerized targets on the Symantec Cyberskills platform.
- Built and managed the federated logging and performance system used to monitor cluster and container health using EFK and Prometheus/Grafana.
2014-2015
CTO, Blackfin Security Group - Acquired by Symantec Corporation
- Led the technical operations team focused on delivering cutting-edge, realistic, and immersive training solutions to improve security awareness for large organizations and “hands-on” experience to expert security personnel charged with defending their data.
- Managed the Customer Support, Operations, and Internal IT teams.
- Administered The Hacker Academy, an ethical hacking subscription learning platform on top of AWS via Infrastructure as Code and Configuration Management.
2012-2014
Chief Architect, MAD Security
- Led and managed the team that designed, built, and delivered capture-the-flag (CTF) style ethical hacking/cyber wargames challenges designed for security professionals. The challenges have been played by over 9000 professionals world-wide in over 200 events lasting 2 hours to 30 days (24/7).
- Delivered several one-day bootcamp instructional training sessions covering security penetration-testing basic concepts complete with custom CTF scenarios for hands-on skills reinforcement.
2008-2012
Security/Sales Engineer, Check Point Software Technologies
- Responsible for technical pre-sales support for the design, migration/implementation, and operation of security gateway solutions for Federal Civilian Agencies.
- “2009 North American Security Engineer of the Year” Award for outstanding team performance and customer satisfaction.
2006-2008
Manager, Assessment Services, Securicon
- Managed numerous security assessments from kick-off to final delivery. Assessments included electronic and physical penetration testing, vulnerability assessments, and solutions review.
- Formalized and streamlined the client engagement assessment data collection process to reduce final deliverable draft and completion time by up to 50%.
2004-2006
Principal Security Engineer, Symantec Corporation
- Provided Tier3 support to worlwide SOC Engineering teams in support of Fortune 500 customers.
- Designed, developed, and implemented the improved fault and performance monitoring system internally recognized for reducing 5% of all daily engineering workload.
2003-2004
Security Engineer/Senior Security Engineer, Symantec Corporation
- Responsible for supporting Symantec’s Managed Security Services (MSS) customer base from a 24x7x365 Security Operations Center as a senior member of the Security Engineering Team.
- Provided outstanding engineering maintenance, configuration, and support of all leading firewalls and IDS systems.
2002-2003
Systems Engineer, PEC Solutions
- Responsible for the secure transmission of electronic fingerprints and personnel photos to support Federal hiring processes at remote sites across the US.
- Received multiple internal performance-based awards.
Speaking
KubeCon EU 2023
Malicious Compliance: Reflections on Trusting Container Scanners
KubeCon NA 2021
Exploiting a Slightly Peculiar Volume Configuration with SIG-Honk
KubeCon NA 2021
Kubernetes Exposed! Seven of Nine Hidden Secrets That Will Give You Pause
KubeCon NA 2020
Keynote Panel: Hacking and Hardening in the Cloud Native Garden
CSA Boston Oct 2020
Kubernetes Attacks: What Your Cluster Is Trying To Tell You
RSA 2020/KubeCon EU 2020
Advanced Persistence Threats: The Future of Kubernetes Attacks
KubeCon NA 2019
Attacking and Defending Kubernetes Clusters: A Guided Tour
BlackHat USA 2018
Detecting Malicious Cloud Account Behavior
KubeCon NA 2017
Hacking and Hardening Kubernetes Clusters By Example
Vuln Research
2020
CVE-2020-15157 “ContainerDrip” Write-up and Google 2020 VRP Prize Winner
Container Registry Search Order/Registry Name Squatting
2019
CVE-2019-11253 Kubernetes DoS Writeup
Certifications
2020-present
Google Cloud Certified Fellow
2020
Certified Kubernetes Security Specialist Exam Developer
2019-present
Google Cloud Certified Professional Cloud Architect
2007-2016
Certified Information System Security Professional (CISSP), ISC2
2004-2006
RedHat Enterprise Linux Certified Engineer (RHCE), RHEL 3.0
Education
1998-2002
BBA, Computer Information Systems, James Madison University, VA, USA.
Interests
Hockey, Formula 1™, Cloud/Kubernetes Vulnerability Hunting, Mexican food, and collecting e-books