2025-11-15 –, Room 402
This year, the calendar turned and I hit a milestone. I looked and realized that I had been doing this security stuff for over 20 years professionally, and it was time to take a look back and share some insight about how I earned this gray hair and these wrinkles and what I would do differently if I "could do it all over again". I think I have gained just a little bit of insight that many new to the field (or newer to the field) might just benefit from. So here goes, a nice little talk that is less tech, more human, and all of it real.
Tony Drake has over 25 years of experience in information security and systems administration. He has worked in roles ranging from systems design and administration to incident response, tactical intelligence, and managing pen tests. He has worked for the last 20 years in various roles in financial firms including brokerage, banking, exchange and payments in roles ranging from jack-of-all-trades "security guy" to tactical intelligence and malware analysis. He has worked in all aspects of Pen Testing from scoping, and planning to managing results, to incident response. In his current role he serves as lead security researcher for the Intercontinental Exchange, solving tactical security problems with creative solutions.He holds a CISSP as well as SANS certifications in Incident Response, Web Application Pen Testing, Network Pen Testing and Threat Intelligence, and OSINT.