Your security partner for good
Secure what's most important to your business with our expertise, technical skill, and ethical character.
Making Waves in Cybersecurity Consulting Services
TrustedSec Named a Leader in The Forrester Wave™: Cybersecurity Consulting Services, Q2 2024
Fundamentally different cybersecurity
We transform cybersecurity into an asset rather than an obstacle, setting you up for success.
Explore trend-setting cybersecurity resources
Discover the blogs, analysis, webinars, and podcasts the industry is talking about.
TrustedSec Achieves CREST Certification
TrustedSec has achieved CREST Certification for penetration testing, a globally recognized standard that verifies an organization's ability to conduct…
Dialing Into Deception: A Social Engineer's Playbook for Voice-Based Attacks
Join Targeted Operations Practice Lead Jason Lang and Senior Security Consultant David Boyd as they walk through different aspects of social engineering and…
Hunting Deserialization Vulnerabilities With Claude
In this post, we are going to look at how we can find zero-days in .NET assemblies using Model Context Protocol (MCP).SetupBefore we can start vibe hacking, we…
Common Mobile Device Threat Vectors
Mobile devices are a must have in today’s world for communication. With that being said, these devices do come with some risks when it comes to personal data.…
Full Disclosure, GraphGhost: Are You Afraid of Failed Logins?
Another year, another vuln…It's that time again.Last year I disclosed the existence of GraphNinja - a (now fixed) vulnerability in Azure where you could…
So You Wanna Be a Hacker? Starting Your InfoSec Career
Join Principal Security Consultant Adam Compton and Senior Security Consultant David Boyd as they demystify the cybersecurity career landscape, from red…
Teaching a New Dog Old Tricks - Phishing With MCP
As AI evolves with MCP, can a new “dog” learn old tricks? In this blog, we test Claude AI’s ability to craft phishing pretexts—and just how much effort it…
Security Noise - Episode 7.17
On this episode of the Security Noise podcast we talk to Sean Metcalf about Active Directory, Entra ID, DS, and more in the identity security space. Sean…
Apples, Pears, and Oranges: Not All Pentest Firms Are the Same
Penetration testing is not a commodity service. If you are a procurer of penetration tests and have ever received wildly different quotes for the "same"…
AppSec Cheat Sheet: Session Management
Session Management Testing - CookiesThe Cheat Sheet section is for quick reference and to make sure steps don’t get missed.The Learn section is for those who…
Trimarc Joins Forces with TrustedSec
TrustedSec is excited to announce that Trimarc Security, a highly respected Active Directory security firm, is now fully operating under the TrustedSec banner.
7.4K
Custom security engagements completed
52
Open-source tools available to public
207
Team industry certifications
92%
Net Promoter Score
We understand security challenges
Drawing from real-world experience, our solutions deliver practical results that help security teams. Our custom services are tailored to address the unique challenges of different roles in security. From building to testing to hardening, our services support security at every stage.
Born to prove security can be better
Founded by innovator David Kennedy in 2012, our purpose-driven approach has enabled us to grow into a name trusted by government entities, Fortune 500s, and hackers alike. With our expertise, technical skills, and ethical character, we help you secure what's important and achieve what matters.
Our experts
We set out to change security by assembling the most technically advanced team of consultants and advisors.
“Our work provides immediate, practical, & tangible benefits for our clients. We absolutely want them to succeed & be more secure. That makes me proud to work here & turns our clients into partners.”Mike OwensSenior Security Consultant
Mike Owens
Senior Security ConsultantMike helps clients implement practical, systematic improvements in their security programs to solve problems before they result in security incidents. Recent focus areas include hardening public cloud environments, securing backups against ransomware, guiding adoption of core security controls frameworks, and custom, hands-on services to support unique client needs.
“Our product-agnostic approach enables us to give a truly unbiased evaluation.”Steph SaundersSenior Security Consultant
Steph Saunders
Senior Security ConsultantSteph performs a variety of security assessments from Incident Response to Compliance. She is passionate about helping communities and companies mature in cybersecurity and utilize best practices.
“Having access to industry leaders right here at TrustedSec makes solving our clients' challenges easier.”Paul SemsManaging Director of Remediation Services
Paul Sems
Managing Director of Remediation ServicesPaul and his team work with clients to harden their environments against attacks and help them recover after security incidents.
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
Trusted by top security teams around the world