For more information contact me at: michaeldbateman @ michaeldbateman (d0t) com
* Experience performing Red Team engagements, penetration tests and vulnerability assessments.
* Experience using real-world adversarial Tactics, Techniques, and Procedures (TTPs).
* Experience managing C2 infrastructure, performing lateral movement and installing persistence.
* Experience with the following scripting languages: PowerShell, Bash, and Python.
* Experience in using network protocol analyzers and sniffers and deciphering packet captures.
* Experience monitoring network traffic using a variety of hardware and software.
* Experience performing network intrusion detection monitoring.
Persistent Cyber Operator IV
Millennium Corporation [Huntsville, AL]
December 2021 to present
Perform typical red team duties in support of the Threat Systems Management Office (TSMO) persistent cyber operations.
Sr. Threat and Vulnerability Analyst
Crest Security Assurance [Remote]
July 2021 to present
Providing Threat and Vulnerability Analysis support to the Cybersecurity & Infrastructure Security Agency (CISA).
Sr Principal Cyber Systems Engineer
Northrop Grumman [Huntsville, AL]
May 2021 to July 2021
Provided support for MDA's GMD Program as part of Northrop Grumman's Program Protection & Security (PP&S) program.
Network Engineer IV
Millennium Corporation [Huntsville, AL]
July 2019 to April 2021
Provided infrastructure support for a red team supporting the Threat Systems Management Office (TSMO). Performed typical red team duties. Used a wide variety of offensive security tools to include Cobalt Strike, Kali Linux, Burp Suite, and Nmap.
Cyber Engineer Principal
BAE Systems [Huntsville, AL]
April 2019 to July 2019
Lead penetration tester for the Cyber Warrior Training Capability (CWTC) program. Responsible for leading penetration tests against real and virtualized systems.
Red Team Security Engineer
Millennium Corporation [Huntsville, AL]
July 2018 to April 2019
Performed adversarial assessments as part of a red team supporting the Threat Systems Management Office (TSMO). Performed typical red team duties. Used a wide variety of offensive security tools to include Cobalt Strike, Kali Linux, Burp Suite, and Nmap.
Cybersecurity Field Engineer
Analog Devices [Huntsville, AL]
January 2017 to July 2018
Provided support to the Missile Defense Agency (MDA) Cyber Warrior Training Capability (CWTC) program. Build virtual environments to help train students on cyber security topics, build virtual environments to test students understanding of cyber security topics, and help develop cyber security training class content. Also provide network engineering support, VMware ESXi, vCenter, vCloud support, Microsoft operating systems support and Linux operating systems support.
Cybersecurity Field Engineer
Sypris Electronics [Huntsville, AL]
July 2016 to December 2016
Provided support to the Missile Defense Agency (MDA) Cyber Warrior Training Capability (CWTC) program. Build virtual environments to help train students on cyber security topics, build virtual environments to test students understanding of cyber security topics, and help develop cyber security training class content. Also provide network engineering support, VMware ESXi, vCenter, vCloud support, Microsoft operating systems support and Linux operating systems support.
Systems Engineer IV (NASA HOSC Network Engineer IV)
COLSA Corporation [Huntsville, AL]
June 2015 to July 2016
Provided network engineering and troubleshooting support to the Huntsville Operations Support Center (HOSC) at NASA's Marshall Space Flight Center (MSFC). Installed and configured Nexus 1000v distributed virtual switches on VMware vSphere 5.5 and 6.0. Experience configuring and troubleshooting VMware ESXi 5.5 and 6.0.
Network Administrator - Senior
Jacobs Technology, Inc [Huntsville, AL]
August 2004 to June 2015
Provided local, campus and wide area network support to the Program Executive Office, Missiles and Space (PEO MS) at Redstone Arsenal which includes four separate networks. Managed over 100 Cisco devices across all four networks to include switches, routers and firewalls. Supported remote locations through dark fiber, Metro Ethernet, DS3 and T1 circuits. Configured and maintained routing using static routes and BGP for both IPv4 and IPv6. Installed, maintained and monitored network intrusion detection devices. Investigated and analyze network traffic from packet captures using Wireshark, Cisco ASA and Palo Alto firewalls. Provided system administration for Red Hat Enterprise Linux. Mentor and assisted network team members with network processes as well as network management.
Security Engineer
TEKsystems [Huntsville, AL]
April 2004 to August 2004
Provided information assurance support for Dynetics Inc. Developed multiple Certification and Accreditation test procedures for DoD DITSCAP Certification and Accreditation projects. Installed and secured a Red Hat (Linux) server running Snort and ACID.
System Analyst
Jacobs Sverdrup [Huntsville, AL]
June 2002 to April 2004
Provided information assurance support as a member of the U.S. Army Garrison, Redstone DOIM IA Team, Local Computer Incident Response Team Redstone (LCIRT-R). Used commercial, DoD and open source intrusion detection systems to monitor and analyze network traffic for violations of U.S. Army policy as well as unauthorized, suspicious or malicious activity. Thoroughly investigated and analyzed anomalous traffic using several intrusion detection systems. Created incident reports by gathering traffic captures from available intrusion detection systems for escalation to higher level staff and/or other government agencies. Mentored and assisted LCIRT-R team members with intrusion detection processes. Wrote instructions on how to read data from several of the intrusion detection sensors.
System Analyst II
NCCIM L.L.C [Huntsville, AL]
November 2001 to June 2002
Provided information assurance support as a member of the U.S. Army Garrison, Redstone DOIM IA Team, Local Computer Incident Response Team Redstone (LCIRT-R). Used commercial, DoD and open source intrusion detection systems to monitor and analyze network traffic for violations of U.S. Army policy as well as unauthorized, suspicious or malicious activity. Thoroughly investigated and analyzed anomalous traffic using several intrusion detection systems. Created incident reports by gathering traffic captures from available intrusion detection systems for escalation to higher level staff and/or other government agencies. Mentored and assisted LCIRT-R team members with intrusion detection processes. Wrote instructions on how to read data from several of the intrusion detection sensors.
• Information Security (10+ years)
• CISSP (10+ years)
• Network Security (10+ years)
• Cobalt Strike (3 years)
• Kali Linux (5 years)
• Burp Suite (4 years)
• Cisco (10+ years)
• Active Directory (10+ years)
• DNS
• Security (10+ years)
• VPN (10+ years)
• Vmware (10+ years)
• LAN (10+ years)
• Network Firewalls (10+ years)
• WAN (10+ years)
• System Administration
• Network Monitoring (10+ years)
• Microsoft Windows (10+ years)
• Operating Systems
• DHCP
• Python (3 years)
• Bash Scripting (10+ years)
• Batch Scripting (10+ years)
https://www.michaeldbateman.com/
https://www.redteamtrainingreviews.com
Offensive Security - Offensive Security Certified Professional (OSCP)
April 2017 to Present
k>fivefour - Red Team Apprentice Operator
August 2018 to Present
Pentester Acadmey - Certified Red Team Professional
October 2019 to Present
Pentester Academy - Certified Red Team Expert
August 2019 to Present
ISC2 - Certified Information Systems Security Professional (CISSP)
November 2008 to Present
CompTIA - Security+
October 2003 to Present
CompTIA - Security+ce
August 2014 to Present
EC-Council - Certified Ethical Hacker (CEH)
October 2018 to Present
Cisco - Cisco Certified Network Associate (CCNA) Routing and Switching
September 2001 to December 2020
Cisco - Cisco Certified Network Associate (CCNA) Security
June 2014 to December 2020