EXPERIENCE
Sarah Norris is a Security Consultant for TrustedSec. Sarah is starting her career in Information Security after conducting PCI audits for Trustwave. Before Trustwave, Sarah worked on Linux systems writing and debugging custom Python modules for Zenoss, the open source network monitoring software.
EDUCATION & CERTIFICATIONS
- Bachelor of Science, Cybersecurity, Utica College
- Certified Information Systems Security Professional (CISSP)
PROFESSIONAL AFFILIATIONS
Sarah Norris is a member of AHA (Austin Hackers Anonymous), Austin 2600, and lolctf.
PASSION FOR SECURITY
Sarah became interested in information security shortly after starting college. She realized that there was nothing more thrilling than picking a lock, cracking a password, or winning a CTF challenge.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
MSBuild: A Profitable Sidekick!
This blog post highlights some good techniques to use when restricted to testing an up-to-date Windows system with low-level user privileges (no local admin)…
Take Your Employees Phishing!
Because Phishing attacks are becoming more advanced in their exploitation of social engineering techniques, it may be overwhelming to attempt a defense against…
Actionable Purple Team Simulation Online Training (May 2-3)
Learn how to create specific detections to identify early Indicators of Compromise (IOCs) in our online course. Designed for those looking to improve their…
ISC2 Cleveland Chapter Member Meeting April 2024
ISC2 Cleveland Chapter April MeetupCome join us for our April Meetup! Our Cleveland Chapter is hosting an exciting in-person event for all cybersecurity…
Enter the Sandbox: Impede Detection Platform v1.1 Release
Join us for our webinar with Director of Product Operations Ben Mauch, where you can get a look at the new Impede Detection Platform updates and the all-new…
PCI DSS Vulnerability Management: The Most Misunderstood Requirement – Part 2
Risk RankingThis is part two (2) of a three (3) part series on PCI DSS version 4.0 requirement 6.3.1, for identification and management of vulnerabilities.…
Hack Space Con 2024
Founder and CEO David Kennedy is the keynote speaker at this year's Hack Space Con! We are also proud to sponsor this event.
Security Noise - Episode 6.18
Careers in InfoSec: Where do you want to go today?
PCI DSS Vulnerability Management: The Most Misunderstood Requirement – Part 1
Vulnerability IdentificationPCI DSS version 4.0 requirement 6.3.1, for identification and management of vulnerabilities, and its predecessors in previous…
A Hitch-Hacker's Guide To DACL-Based Detections - The Addendum
This blog was co-authored by TAC Practice Lead Megan Nilsen and Andrew Schwartz.1 IntroductionLast year, Andrew and I posted a four (4) part blog series…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
