Jason Lang

Practice Lead, Targeted Operations


With over 10 years of industry experience, Jason Lang has worked in both offensive and defensive roles. Before switching to red teaming, he spent 8 years working as a technical Security Architect for a Fortune 500, specializing in Active Directory and .Net/database development.

Education & Certifications

  • Offensive Security Certified Professional (OSCP)
  • Certified Information Systems Security Professional (CISSP)

Professional Affiliations

Jason is a regular speaker at information security conferences such as DerbyCon and CypherCon, and has released multiple offensive and defensive open source tools.

Passion for Security

While Jason truly enjoys contributing to the infosec community through both public speaking and the development of new tools, his passion manifests itself in helping clients make changes to their systems (and people) in ways that truly improve their security posture. Oh, and shells, he loves getting shellz too. =)

Recent Blog Posts

Putting the team in red team

One of the more common questions we receive during a red team scoping call or RFP Q&A call is, how many dedicated consultants will be involved in the assessment? There is no “correct” answer to this question, and ultimately, the answer as to how red team engagements are staffed comes down to how the consultancy...

Work From Home Productivity Tips

For many of us, working from home is here to stay, but it does come with its own challenges. This article contains some of the best tips and tricks from TrustedSec consultants on how to stay focused at home. Set an alarm to start and stop working Alarms can be set in shorter intervals, to...

Update: The Defensive Security Strategy

Original post:  https://www.trustedsec.com/blog/the-defensive-security-strategy-what-strategy/ Massive exposures and attacks, such as recent SolarWinds and Exchange exploit issues, have been common news lately. While the security landscape has advanced and changed, these massive exposures are continuing to occur. The question is why, and how, are they occurring? While common issues are often leveraged, the mentality around them is...
View all posts from Jason

Recent Webinars

Navigating the “Penetration Testing” Landscape

One name, many meanings. Validating the effectiveness of your security controls through penetration testing is a crucial element in constructing a robust security posture. However, performing the wrong level of analysis can be frustrating or even give an organization a...

What is Next for Email Security as Socially Engineered Attacks Outsmart Defenses?

Join this webinar for an exclusive peek from TrustedSec’s Targeted Operations Practice Lead Jason Lang into how attackers are exploiting social dynamics to target core business functions and how Arm ditched Secure Email Gateways to architect an email security solution...

Are You Ready for a Red Team?!

Recorded on October 21st, 2020 Understanding the real-world effectiveness of your security controls is a crucial element in constructing a robust security posture.  Red Team engagements (or “Adversarial Attack Simulations” as they’re known at TrustedSec) are extended, goal-oriented engagements using...
View all webinars from Jason

Recent Podcasts

TrustedSec Security Podcasts

Got Gas?

October 05, 2022

Opsec is Hard

October 05, 2022

Want to work with Jason Lang or someone like him?

The TrustedSec team is comprised of experienced and qualified security professionals. Contact us to learn more about our services, our team, and how we can help you.
Contact Us