Gabe Marshall

Gabe Marshall

Email:

Experienced Red Teamer with a passion to continuously learn how to better build, break, and fix technology.

Skills Overview

Red Teaming

Skilled Red Teamer that continues to find creative ways to bypass controls.

Penetration Testing

Extensive experience in performing penetration tests of enterprise web applications, network infrastructure, and mobile applications.

Application Development

Full stack web developer. Experienced in building multiple web applications as well as security tools using NodeJS, Ruby, or Python.

Misc

Experienced in writing enterprise security policies, creating security training material, and writing disaster recovery plan documentation.


Experience

Fidelity InvestmentsPrincipal Red Teamer - Durham, NC - March 2013-present

  • Co-founder of Fidelity's Red Team in 2015. Responsible for leading end-to-end zero scope engagements against company employees and assets
  • Provides mentorship to members of the Penetration Testing. Over five years of experience in conducting penetration tests against critical customer facing applications and network infrastructure
  • Establishes and maintains relationships with company stakeholders - assisting in the resolution of vulnerabilities and the overall improvement of critical security controls
  • Creates and operates the company's now annual Capture the Flag competition


University of North Texas Manager of IT Security Compliance & Disaster Recovery Planning - Denton, TX - 2006-2013

  • Responsible for maintaining overall PCI and HIPAA compliance across the entire UNT System. Solved several major security compliance issues that requireded project leadership and management, as well as buy-in from multiple external departments
  • Acted as Team Lead for Disaster Recovery Planning for all IT in the UNT System
  • Developed numerous data-driven websites built on Sharepoint web services

University of North Texas Helpdesk Consultant - Denton, TX - 2005-2006

  • Supported UNT computing systems including: Remedy Action Request System, Student Email, Eaglenet (Wireless Network), PeopleSoft, Blackboard Vista and various other systems
Education

University of North Texas - Denton, TX

Major: Emergency Management
Minor: Business

Certifications

Offensive Security Certified Professional (OSCP)

Offensive Security - Dec 2014

Certified Web Application Penetration Tester

Infosec Institute - 2013




Unix and Linux+

Infosec Institute - 2013




Hobbies
Participating in CTF competitions, security research, web development, hackathons.


Creator of the Eversec CTF

Creator of the Brosec utility
Awards & Accomplishments
SOHOpelessly Broken CTF Track 1 (DEF CON 23)
Basecamp Security Acknowledgement
References
Available upon request