Gabe Marshall

Gabe Marshall


I am an outgoing and ambitious Infosec professional who loves to both build and break things.

Skills Overview

Penetration Testing

Extensive experience in performing penetration tests of enterprise web applications, network infrastructure, and mobile applications.

Application Security

Strong understanding of Information Security with a focus in application security testing, infrastructure review, and secure coding best practices.

Application Development

Full stack web developer. Experienced in building multiple web applications as well as security tools using NodeJS, Ruby, or Python.


Experienced in writing enterprise security policies, creating security training material, and writing disaster recovery plan documentation.


Fidelity InvestmentsPrincipal Penetration Tester - Cary, NC - March 2013-present

  • Responsible for conducting end-to-end penetration tests against numerous critical customer facing applications and network infrastructure
  • Co-leads Red Team engagements against company assets
  • Establishes and maintains relationships with developers and assists in the resolution of discovered vulnerabilities
  • Creates and operates Capture the Flag competitions that are held on a yearly basis

University of North Texas Manager of IT Security Compliance & Disaster Recovery Planning - Denton, TX - 2006-2013

  • Responsible for maintaining overall PCI and HIPAA compliance across the entire UNT System. Solved several major security compliance issues that requireded project leadership and management, as well as buy-in from multiple external departments
  • Acted as Team Lead for Disaster Recovery Planning for all IT in the UNT System
  • Developed numerous data-driven websites built on Sharepoint web services

University of North Texas Helpdesk Consultant - Denton, TX - 2005-2006

  • Supported UNT computing systems including: Remedy Action Request System, Student Email, Eaglenet (Wireless Network), PeopleSoft, Blackboard Vista and various other systems

University of North Texas - Denton, TX

Major: Emergency Management
Minor: Business


Offensive Security Certified Professional (OSCP)

Offensive Security - Dec 2014

Certified Web Application Penetration Tester

Infosec Institute - 2013

Unix and Linux+

Infosec Institute - 2013

Participating in CTF competitions, security research, web development, hackathons.

Creator of the Eversec CTF

Creator of the Brosec utility
Awards & Accomplishments
SOHOpelessly Broken CTF Track 1 (DEF CON 23)
Basecamp Security Acknowledgement
Available upon request