Justin Vaicaro

Senior Incident Response Consultant

Experience

Justin has 12 years combined military experience serving in both the Marine Corps and Air Force. He has 20 years of experience within the Information Technology industry, with the last 10+ years solely focused on security engineering. Justin has worked in various industries, including Internet Service Provider, eCommerce, Pharmaceutical, Automotive, and Aviation. He has held various roles throughout his career, but his technical strength is derived from his vast network engineering experience. His security knowledge is diverse, but his current focus is on Security Architecture and Design, Incident Response, Malware Reversing, Threat Hunting, Threat Intelligence, and Security Operations. He also does a significant amount of research around trending offensive techniques, tactics, and procedures in order to strengthen his defensive mindset.

Education & Certifications

BA, Computer Information Systems & Business Administration (Florida Institute of Technology) CISSP (Certified Information System Security Professional) CISM (Certified Information Security Manager) GCFA (GIAC Certified Forensic Analyst) CREA (Certified Reverse Engineering Analyst) OWSP (Offensive Wireless Security Professional)

Professional Affiliations

ISC2 (Orange County, CA Chapter), ISACA (Orange County, CA Chapter), ISSA (Orange County, CA Chapter), LETHAL (Orange County Hacker Meetup Group)

Industry Contributions

Justin has a patent issued for his specialized work around aircraft in-flight-entertainment data security monitoring methodologies and techniques: Methods and Systems for Monitoring Computing Devices on a Vehicle: US Patent No. US9813911B2

Passion for Security

Justin’s passion for security started early in his network engineering career with his exposure to wireless security. His overall passion for security is what consistently pushes him outside of his comfort zone, to keep learning, and to continually work on specializing in new areas within the security industry. Surrounding himself with extremely smart people keeps him grounded and humble. His favorite part about being a security professional is the consistent and constant drive to face new challenges. “The learning stops when the passion fades!”

Recent Blog Posts

Incident Response Ransomware Series – Part 2

Opening In part one of this blog post series, we provided an introduction into what ransomware is and how it works. We also provided examples of different types of ransomware, variation of ransomware tactics, and identified that ransomware delivery is traditionally accompanied by other malware to assist in lateral movement and deployment. If you haven’t...
Read
hunting for meaning blog post graphic

Indicators of Compromise – Hunting for Meaning (Part 2)

In part one of this blog post series, we briefly looked at why IoC threat data enrichment is important, the value of knowing who your enemy is, and the process of turning threat data into threat intelligence. If you haven’t had a chance to read the first part of this series, take a few minutes...
Read
hunting for meaning blog post graphic

Indicators of Compromise – Hunting for Meaning (Part 1)

By the time an Incident Response consultant is contacted, the security event in question is already in motion. So, the goals become: rapid triage, assist in identifying the related threat risks, and make every effort to identify the threat actors involved. Attribution is very difficult when dealing with seasoned and well-funded threat actors, but it...
Read
View all posts from Justin
Justin Vaicaro

Want to work with Justin Vaicaro or someone like him?

The TrustedSec team is comprised of experienced and qualified security professionals. Contact us to learn more about our services, our team, and how we can help you.
Contact Us