CREST (INTERNATIONAL) - Key Persons
Job Titles:
- Representative, Incident Response
Adrian is a multi-skilled computer forensics, incident response, malware analysis, information security and computer network security specialist with extensive expertise in investigation of cyber-crime and major, complex and international crimes.
Adrian has expertise in criminal procedure, including collection of evidence, interviewing of suspects and presentation of evidence in accordance with requirements of Police & Criminal Evidence Act, Regulation of Investigative Powers Act, Data Protection Act, Misuse of Computers Act and ACPO Digital Evidence Best Practice Guidelines.
Job Titles:
- Member of the Senior Leadership Team
- Head of Marketing & Engagement
Andrew has nearly 20 years' experience in user-focused communications and engagement for some of the UK's most high-profile and complex organisations and projects.
Most recently he developed and led the international communications offer for WRAP, a global sustainability and climate action organisation tackling the drivers of climate change, working with businesses and governments across the world to deliver programmes and citizen-focused campaigns, and launching their Asia-Pacific office in Adelaide - their first overseas office.
Previously, Andrew helped deliver the digital platforms and communications for the London 2012 Olympics legacy programme and Queen Elizabeth Olympic Park, and for five years was Head of Digital at High Speed Two, where he combined brand development and data-driven insights to build the organisation's digital and social media presence. He also delivered the digital communications for UNBOXED: Creativity in the UK, a once-in-a-lifetime, nationwide festival celebrating the UK's creativity and innovation sector, as part of the Birmingham 2022 Commonwealth Games.
Establishing and leading his own agency, We Are Compass, over a six-year period saw Andrew delivered promotional marketing and engagement projects for London City Airport, Thames Water and the National College for Advanced Technology and Infrastructure. He also led the communications team for the 2018 Street Child World Cup in Moscow for the sport-led charity, Street Child United, who work with street-connected children and organisations across the world.
At CREST, Andrew is responsible for delivering our marketing and engagement strategy, our membership engagement, raising CREST's global profile and promoting our international products and services.
Job Titles:
- Head of Cyber Skills & Certifications
Andy served in the Royal Navy for 24 years with most of his career at sea in a variety of roles including navigation, anti-submarine and command. Latterly, he was responsible for developing the uniformed cyber profession in terms of training, culture, infrastructure and supporting operational capability. As Head of Information Warfare, he was responsible for the development of Naval Cyber doctrine.
Andy left the military in 2017 to join SANS as a Business Development Director working closely with the UK Ministry of Defence, law enforcement and broader government. He has an MBA in Cyber Security and GIAC qualifications in Security Leadership, Security Fundamentals Security Awareness Professional.
[Portfolio: Research] Anil has more than 18 years of professional experience working in all aspects of offensive security assessments at a senior, global and strategic level. He has been conducted many offensive assessments for finance organisations, governments and automotive industry. He has been working at DXC Technology since 2017 as a Practice Lead in the Threat and Vulnerability Management team, and is primarily responsible for the development, execution and delivery of red team operations.
Antonio is a security advisor with more than 10 years of professional experience in the information security field. He has been managing and executing many technical security assessments and ethical hacking projects, including penetration tests and threat intel-led red team tests, thus enabling organizations - across multiple industries and geographies - improving their cyber resilience against modern and sophisticated threat actors.
[Portfolio: Penetration Testing] Based in Singapore, Ben is the founder of WatchTowr. He has over a decade of experience building and leading high-performing offensive cybersecurity teams across the globe. Ben has a strong background in consulting, helping some of the world's most targeted organisations and industries prepare for, and defend themselves from, sophisticated cyber attacks. In addition, he has been a member of the CREST Assessor team since 2016.
Job Titles:
- Devoteam Cyber Trust
- Director of Penetration Testing Services at Devoteam Cyber Trust
Bruno is a Partner and Director of Penetration Testing Services at Devoteam Cyber Trust, a cyber security consulting company . With more than 21 years in the information security industry, he's been responsible for managing and delivering penetration testing projects to clients in multiple industries, from retail, to energy, healthcare, finance, and government, to name a few. He's been actively involved in the security community having founded the Portuguese association for the promotion of information security (AP2SI) and the BSidesLisbon security conference.
Bruno holds an MSc. in Information Security from Royal Holloway, University of London, and several International certifications such as OSCP, GPEN, CISSP-ISSMP, CISA, ISO 27001 Lead Auditor and ITIL.
[Portfolio: Academia and Research] As a trusted advisor, Cecil leads and manages wide-ranging initiatives in both the government and commercial sectors in the areas of cybersecurity assessments, secure development lifecycle, technical countermeasures, threat analysis, cyber investigations/forensics, and IoT/OT technology. He has spent many years performing and overseeing cybersecurity assessments, technology audits, digital forensics including complex enterprise platforms on networks and applications. Aside from that, Cecil has been involved in developing and deploying risk-based management and data governance frameworks, helping clients to manage data protection, risk and meet associated regulatory requirements. He currently volunteers in the Association of Information Security Professionals (AiSP), OWASP SG Chapter and WorldSkills Singapore.
Job Titles:
- Director in Cyber and Forensic Practice of KPMG Australia
- Representative, Intelligence - Led Testing
Chathura is a Director in Cyber and Forensic practice of KPMG Australia and a highly technical cyber security practitioner with more than 15 years' experience. He is a CREST Certified Tester and Assessor.
Chathura has extensive experience in managing and leading complex red and purple team assessments, penetration testing and cyber incident response engagements. He has worked with clients across the state and federal government, power and energy, technology, engineering, retail, education, telecommunication and financial services sectors.
Job Titles:
- VP of Technical Services at Nettitude
Chris is the VP of Technical Services at Nettitude. He has also served as a CREST assessor since 2016 and has been a member of our Americas Council since 2021. Originally from a software development background, Chris moved to full-time cybersecurity in 2010. He specializes in an array of offensive security disciplines, such as penetration testing, and is experienced in building high performing security teams internationally. Today, Chris directs the Americas operation at Nettitude, with particular focus on ensuring technical excellence across all areas of service.
Job Titles:
- Head of Governance & Legal
Elaine has worked at board level in industry for over 40 years, predominantly for the leading trade association in the defence and public security sectors but latterly in the facilities environment. Her roles have included company secretary, business and operations management, membership management, event organisation and personnel management. Within CREST she is responsible to the International and Local Councils for all legal, compliance and governance matters and also for aspects of day-to-day operations.
Job Titles:
- Chairman
- Asia Council Chair
- Chief Operating Officer of Cybersecurity Talent Development Company Red Alpha
Emil is Chief Operating Officer of cybersecurity talent development company Red Alpha. He took up the role of Chair of the Asia Council in December 2021, working with the council to support members and helping to shape our strategy in the region.
Emil founded and runs Singapore's largest cybersecurity community group, Division Zero (Div0), worked for the Infocomm Media Development Authority (IMDA) and was recently seconded to the Cyber Security Agency of Singapore (CSA). He is also Chair of Singapore's Cyber Youth Singapore (CYS) and is a co-Founder and permanent member of the Global Cybersecurity Camp (GCC) which is an Asia-Pacific talent development programme.
Job Titles:
- Country Manager, Vantage Point Security Indonesia
- Cyber Security Strategist
Faisal is a Cyber Security Strategist with over 20 years of experience combined as a Country Manager, Chief Information Officer (CIO) executive, and Chief Information Security Officer. He plays an integral role in spearheading the Information Security strategy roadmap, interfacing core business functions and technology teams - establishing and presenting a cybersecurity strategic vision using technical skills to generate confidence with business stakeholders and company leadership.
Faisal has given many public speaking at industry conferences and academic events about various cybersecurity topics. Faisal also serves as an Official Instructor for EC-Council and Cloud Security Alliance. Faisal advocates for better cyber safety practices and defining improved Cybersecurity space in the South East Asian IT communities, actively researching and speaking. Faisal is passionate about upskilling people and organizations about cybersecurity.
Job Titles:
- Director of Consulting and Professional Services for Trustwave Government Solutions
Grayson is the Director of Consulting and Professional Services for Trustwave Government Solutions. He has more than 20 years of experience in information security and digital technology, working as an Avionics Technician, Systems Administrator, Network Administrator, Security Systems Architect, Private Consultant, Incident Responder and Team Leader. Grayson works regularly with state, local and federal law enforcement teaching cyber security and digital forensics topics. Grayson is a former member of the International Association of Financial Crimes Investigators (IAFCI), the SANS Advisory Board and was previously a member of the Seattle and Los Angeles Electronic Crimes Task Force (ECTF). Grayson is a GCFA, CISSP and carries the CMMC-RP certification.
Job Titles:
- Executive Vice President and Head of Asia for Nettitude
Gregory is currently the Executive Vice President and Head of Asia for Nettitude based in Singapore. He typically works with highly targeted organisations requiring nascent services and advanced capabilities, to further develop their resilience to sophisticated cyber-attacks.
Job Titles:
- Leader
- CEO SoftScheck Singapore Pte Ltd
Henry is an effective leader with a track record of developing, presenting and managing implementation of innovative business solutions.
He accumulated technical background in software development, network design and cyber security with a strong understanding of software architecture which helps him to grasp technical requirements to implement business solution. As a CEO he has established softScheck in the region and driven the company's fast growth trajectory.
Job Titles:
- Chief of Service Delivery for Obrela Security Industries
Iraklis is currently the Chief of Service Delivery for Obrela Security Industries. He is responsible for supporting Obrela's Resilience Operation Centers that provide Obrela's MDR service to enterprise organizations across the globe. He has previously held Global Cyber roles in the UK and Greece and specialises in providing assurance across a diverse set of industries and geographies
Seasoned Cyber Security and IT Professional with over 15 years of experience safeguarding organisations against evolving digital threats. I've developed a solid technical and business background and an in-depth understanding of cybersecurity management practices. I have successfully designed and implemented robust security strategies to protect sensitive data and mitigate risks. I lead cross-functional teams, fostering a security awareness and compliance culture with a strong focus on technology management, cyber risk management, regulatory compliance, and cyber security strategies. I enjoy keeping current with the latest cyber threats and best practices and applying my knowledge and expertise in helping organisations across diverse industries.
[Portfolio: Incident Response] Jason has more than eight years' experience in delivering high-priority global projects (independently and leading teams) across various industries. He enables clients to manoeuvre through complex landscapes smoothly and gain strategic "first-mover" advantages, and has worked with senior executives and stakeholders across all levels and departments to adopt new technologies securely while meeting business needs. Some of Jason's projects include leading the uplift of a cybersecurity regulatory framework for the banking sector; planning and leading threat assessments for global companies and large organizations across multiple sectors, including government and financial services; and supporting multiple incident response engagements by providing bespoke cyber threat intelligence to the incident responders.
Job Titles:
- Representative, Threat Intelligence
Jason is a Director within PwC's Threat Intelligence Team where he leads and supports intelligence engagements within the APAC region. Prior to this Jason co-led the threat intelligence function at PwC UK, as well as working on incident response engagements across Europe and the Americas.
He leads all of PwC's regulated intelligence framework exercises and holds a CCTIM, along with several other certifications. Jason has a 10 year plus history working in intelligence, where he has built teams and defined processes for intelligence collection, analysis, and reporting.
In addition, Jason is a regular at a variety of conferences, presenting unique research and best practice intelligence methodology. He previously worked in intelligence and response roles at endpoint detection company Crowdstrike and the Australian Signals Directorate
Job Titles:
- Casaba Security SE Asia Pte Ltd [Portfolio: Academia
[Portfolio: Academia] John worked for over a decade in roles centred around securing business and business systems. He has years of experience building and managing large scale Security Operations Centres (SOC) in the APAC region. His primary interest is in managing the human aspects of information security; holistically blending technology and best practices to develop systems which are secure yet provide an effortless user experience. John spends his free time working on security projects in the blockchain domain where he focuses on distributed trust and projects related to risk management.
[Portfolio: Intelligence Led Testing] Based in Copenhagen, Denmark, Jay leads the EU/UKI Red Team for Mandiant. His specialist background is in red team engagements, simulated targeted attack scenarios and purple team exercises and he created the technical ransomware assessment and threat-intelligence led methodologies and offerings within Mandiant. His research is currently focuses on adversarial simulation of FIN/APT groups, ransomware behaviour and strategy, and on building custom payload and C2 tools to match the capabilities of these advanced threat actors. He still leads the large-scale red team engagements for client across all industry verticals and Critical National Infrastructure (CNI) throughout Europe, the Middle East and the US.
Job Titles:
- Member of the Senior Leadership Team
- Head of Accreditation
Jonathan is an experienced relationship manager having worked for over a decade in the banking industry. He has experience of quality assurance and internal auditing. Within CREST Jonathan leads the accreditation team and manages company audits and membership enquiries. Jonathan read Criminology at university and has a keen interest in cyber security.
Joshua is an experienced technical director, working with organisations across a range of industries, including critical infrastructure, health, finance, energy, government, tertiary education, and more. He is passionate about the security community, business operations, technical leadership, and process improvement. He has served as a board member for non-for-profit organisations and helped enable business transformation through cyber security.
Kristofer is a Director and the Regional Lead for the Security Testing and Assurance Practice of CyberCX within South Australia and the Northern Territory.
He is an experienced security consultant with a strong passion for helping clients identify and understand the risk posed to their information assets. His deep skill set allows him to identify systematic issues as well as individual vulnerabilities, provide pragmatic and business-focussed recommendations and communicate these to all members of the business.
[Portfolio: Penetration Testing] Kyle is a business professional with over 10 years experience working in financial institutions before transitioning into cybersecurity. He served in various roles including project management, account management, and various other roles. In his current role, Kyle is an account manager with Triaxiom Security and manages the end-to-end process across a vast portfolio of clients requiring Kyle to stay abreast of all things cyber security in order to ensure all client requirements are met. Kyle continues to remain involved in the cyber security community evidenced by his recent election into the Americas Council.
A seasoned IT professional and business manager with broad technical skills in IT, programming and security.
As Co-Founder of NetWorks (UK) Limited in 1994, I oversaw the growth of the company's technical and commercial operations including a revers acquisition to become ML Integration prior to its sale to C&W in 2000.
iSimile was developed in a similar way and was recognised as a leading supplier of Security Information Management solutions in the UK, helping organisations with their security architecture by providing best of breed security software.
Job Titles:
- Pivot Point Security Inc [Portfolio: Regulators
[Portfolio: Regulators] Mike has worked in IT for almost 30 years and has worked strictly in security for the last 16 years. Currently, Pivot Point Security's Security Assessment Practice Manager, performing penetration tests against networks, applications, and IoT devices, across physical and cloud environments. With a wide breadth of experience across a wide range of industries, Mike has helped hundreds of companies understand their current security posture and assisted them in formulating a remediation plan and overall security roadmap. Mike is passionate about information security, learning how things work, and sharing his knowledge with others.
Since April 2022 Neil has been the Head of North American Operations at Pen Test Partners (PTP). He has a degree in computing, 35 years industry experience with 20 years' of which is in the penetration testing and the wider cyber security sector. In April 2010 he became one of the original partners when PTP were founded. His background as a navigating officer in the merchant navy has given him a keen interest in the cyber security challenges within maritime along with the wider smart transportation sectors of automotive, aviation and rail. He is particularly interested in the regulation of the smart transportation sector including the emerging technologies of Generative Artificial Intelligence (Gen AI). He has first hand experience in the delivery of CREST regulated projects such as CBEST, GBEST and CSTAR. He looks forward to working with the wider CREST community in promoting the benefits of CREST regulation within the north American market.
Job Titles:
- Chief Executive Officer
- Member of the Senior Leadership Team
Nick has a track record of building and leading teams through transformation, having previously been the Chief Operating Officer of ORX, the largest global trade association supporting operational risk management in financial services (FS). In this role at ORX, Nick led a programme of fundamental organisational change whilst delivering strong growth and improved service quality.
Before ORX Nick worked in executive roles across finance and risk management divisions at Nationwide Building Society, one of the UK's largest retail financial services providers.
Nick started his career at KPMG in their IT advisory divisions in London and Sydney, also qualifying as a Chartered Accountant (ICAS) in 2005. Nick earned a BA degree in accounting and finance from Exeter University.
Job Titles:
- Chairman
- Australasia Council Chair
- Is Director
Nigel is Director, UNSW Canberra Cyber. He is an influential analyst on the intersection of technology, crime and society. Nigel has published three acclaimed books on the international impact of cybercrime, is a regular media commentator and provides executive and board advice on strategy, risk and governance of technology.
In a 21-year career with the Australian Federal Police, he achieved the rank of Detective Superintendent and headed up investigations at the Australian High Tech Crime Centre for four years. He is founder and managing director of a technology start-up company and has chaired a number of not-for-profit organisations.
Job Titles:
- Portfolio: Incident Response
Portfolio: Incident Response] Olle is a veteran within the IT security industry, having devoted himself to both "breaking" and "building" security solutions for over 20 years. Since his appointment as Principal Security Consultant at F-Secure in 2016, he has established a new security consulting practice in Stockholm, Sweden, that has grown into a team of 12 expert consultants serving some of the biggest and most targeted organizations in Sweden. At F-Secure, Olle is also actively engaged in improving consulting practices and methodologies to provide better assurance for clients in new and more efficient ways. Olle is a regular speaker at information security conferences and is also a co-founder of one of them, the popular SEC-T hacker conference in Stockholm.
[Portfolio: SOC] Ramesh has more than 20 years' experience in IT, managing large technology operations from endpoint management to distributed network. He has designed and built data centres and complex technology environments which include the management of Information Security and Cyber Security. Ramesh played a pivotal role in the setup of Vigilant Asia as an MDR player in Malaysia and was responsible for the end-to-end business and technical setup of the SOC operations.
Job Titles:
- CEO and Director of Intelligence for Security Alliance Ltd
- UK Council Chair
Rob is the CEO and Director of Intelligence for Security Alliance Ltd, a Cyber Threat Intelligence company. From a military intelligence background, Rob transitioned his intelligence tradecraft into the cyber domain where he is an advocate of ‘Intelligence Preparation of the Cyber Environment'.
Rob's primary work has been designing intelligence-led resiliency programs, developing intelligence capability, creating intelligence sharing frameworks and initiatives and providing intelligence led consulting engagements. Rob holds the CREST Certified Threat Intelligence Manager qualification, is a CREST TI Assessor and sits of the CTIPs Sub- Committee.
Rob was formally elected as Chair of what was then the GB Executive on 3 March 2021.
Job Titles:
- Managing Director With Alvarez Marsal
Rocco is a Managing Director with Alvarez Marsal and leads the firm's Global Cyber Risk and Incident Response Services practice. He has been a trusted partner of multiple government agencies, including the FBI and the US Secret Service, where his cyber expertise was instrumental in investigating and resolving a variety of cyber-based crimes. He has advised clients on some of the most complex cybersecurity initiatives and coordinated incident response efforts for some of the largest security breaches over the last 14 years. Prior to joining AM, Rocco held leadership positions at professional services organizations including Stroz Friedberg/Aon Cyber Solutions, where he served as the Global Leader of the firm's cybersecurity services. Prior to Aon Cyber Solutions, Rocco was a founding member of Protiviti's Cybersecurity Practice and led the development of the firm's Global Incident Response and Forensics Investigations Practice. Rocco is an affiliate board advisor for the Retail Hospitality ISAC and has assisted with other thought leadership initiatives for the FS-ISAC; and assists in creating its annual Compromise Against Payments Systems (CAPS), the simulated industry cyberattack exercise.
Job Titles:
- Chairman
- Europe Council Chair
Job Titles:
- Member of the Senior Leadership Team
- President
Rowland is focused on driving initiatives to deliver increased engagement across the 290+ CREST members and all CREST qualified individuals globally. He is responsible for working internationally with governments, regulators and other key industry stakeholders to build stronger technical cyber security ecosystems.
A former member of the CREST GB Executive, serving between 2014 and 2020, he has been a dedicated supporter of the organisation for many years. He was instrumental in CREST's international growth, playing an integral role in the creation of CREST chapters in Singapore, USA and Hong Kong.
Rowland was a founding director of cyber security company Nettitude and oversaw its acquisition by Lloyd's Register in 2018. Following the acquisition, he worked with the leadership team as a strategic advisor focusing on global growth.
Rowland has worked closely with international governments and regulators to bring about increased levels of capability in the Penetration Testing, Threat Intelligence, Incident Response and Security Operations Centre markets. He is able to talk about these from a government and strategy perspective as well as sharing real-world examples from what is seen in the field. Rowland presents at many international events and is a passionate cyber security leader that is actively trying to professionalise the industry.
Britto leads the Global Security Lab at Schneider Electric. He is responsible for Penetration Testing, ICS Security, and red teaming for product and systems offers. For more than a decade, he has worked extensively with telecommunications security, cloud and virtualization security, and vulnerability researcher.
An expert in offensive security techniques, Britto has been involved in developing research skills for professional security teams. He has a team of highly skilled security professionals that focuses on critical infrastructure domain.
[Portfolio: Penetration Testing] Simon has 13+ years of experience in Cyber Security. He taught Penetration Testing classes at both BSc and MSc levels. He owns the following certifications: CISSP, CCSP, PMP, SEPP. Simon completed his BSc in Computer Science in 2019 and his MSc in Computer Security and Systems Forensics in 2011. His publications include several ethically disclosed zero-day vulnerabilities, CVEs as well as book chapters and scientific papers. Simon's passions include martial arts, motors and humans' behavioural threats studies.
Job Titles:
- Chairman
- Chairman of the Americas Council
- US Council Chair
As Chair of the Americas Council, Tom works with government and commercial organizations to optimize our value as a cybersecurity accreditation body and industry standards advocate. His focus is the cybersecurity and infrastructure security agency's 16 critical infrastructure sectors which are vital to US security, national economy and public health and safety.
He spearheads strategic plans for our organizational growth while also serving as an industry evangelist and educator on the value of using accredited cybersecurity products and professionals to improve consumer privacy, security and protections worldwide.
Tom is a US Marine veteran and has been involved with CREST since 2016. He is currently the Chief Information Officer of the national law firm Mandelbaum Salsburg where he oversees critical infrastructure, privacy and security operations. He is also an Advisory Board Member of Gerson Lehrman Group, a Cyber Fellows Advisory Council Member, Member of the Information Technology Advisory Committee of the County College of Morris, Senior Advisor and Industry Advisory Board Member of the New Jersey Institute of Technology, and a Cyber Fellows Advisory Council Member of the NYU Tandon School of Engineering. Previous experience also includes working with OWASP (Open Web Application Security Project).
Job Titles:
- Representative, Penetration Testing
[Portfolio: Training & Academia] Tony is CEO and founder of VerSprite. Tony's 25-year career in IT/InfoSec has led him to champion ‘true spirited' security consulting. This is based on the observation that true security, although relative to each organization, is best managed via a risk-based approach where both an understanding of data usage and functional use cases are known in the context of viable threats scenarios and supportive attack vectors. Tony is a co-author of Risk Centric Threat Modeling (Wiley 2015). Beyond VerSprite, Tony runs the OWASP Atlanta, GA Chapter and has been heavily involved in the OWASP global initiatives since 2008.
Vikneswaran is a GIAC certified Penetration Tester who obtained his Bachelor's Degree in Computing specializing in Computer Security from APIIT (now known as APU). He has been in the industry for nearly a decade, possessing expertise in vulnerability assessment, penetration testing, compromise assessment, red teaming, and more. On top of that, he is a cyber security awareness speaker with over a dozen talks held with various groups, including Board Members of certain organizations. He is currently managing a team of 20 security consultants and ethical hackers who provide security testing services for various clients across Malaysia and its neighbouring countries. He is also building a team for Incident Response and Endpoint Recovery Services at FIRMUS by becoming familiar with various EDR technologies and getting certified in them. His main objective from the start has been to provide quality cyber security services to clients without compromising on quality or the client's experience.
Job Titles:
- SecAlliance As Director of Strategy
[Portfolio: Threat Intelligence] With more than 25 years in public service, Wiebe joined SecAlliance as Director of Strategy, August 2021. Prior to this he worked in senior policy roles at the European Central Bank (ECB), first as Head of the Market Integration Division (2006- 2015) and finally as programme director focusing on technological innovation and cyber resilience across the financial sector (2016-2021). In his latter position, he chaired the ESCB Task Force on Cyber Resilience Strategy for Financial Market Infrastructures, managed the Secretariat of the Euro Cyber Resilience Board and was member of the European Systemic Cyber Group of the European Systemic Risk Board. The European cyber testing program TIBER-EU and the European Cyber Information and Intelligence Sharing Initiative (CIISI-EU) were developed and rolled-out are under his responsibility. Before joining the ECB in 2006, he worked in senior roles at De Nederlandsche Bank and the Dutch Ministry of Finance.
Yuri leads the Advanced Security Centre (ASC) at EY, the largest attack and penetration testing team in Australia spread across multiple geographies, focusing primarily on the financial services industry in Sydney. He is passionate about offensive security and the cyber security challenges faced by clients.