Alex Wardle, CISSP

Details

Skills

Business Strategy, CEH, Chef, CompTIA A+, CompTIA Project+, CompTIA Security+, Django Web Framework, ElasticSearch, Information Security, Information Security Consulting, IT Support, JavaScript, Kibana, Linux System Administration, Logstash, Network Administration, Network Penetration Tesing, Network Security, Network Vulnerability Assessment, Process Automation, Project Management, Python, Python Scripting, Risk Assessment, Ruby, Ruby on Rails, Security Information and Event Management (SIEM), Software Development, SQL, System Administration, Troubleshooting, Web Application Development, Web Application Penetration Testing

About

🔒 Information Security Consultant | SIEM & NVA Services | Web App Penetration Tester 🔒



Hello! I'm an information security consultant at Tanner LLC with broad experience in everything infosec. I perform a few different roles here, but my primary expertise lies in overseeing ongoing SIEM and NVA services, along with leading comprehensive web application penetration testing engagements.



🔹 Security Information and Event Management (SIEM): I specialize in fine-tuning SIEM solutions to fit the individual needs of our clients. By correlating diverse data sources, customizing alert profiles, and automating repetitive processes, I ensure rapid threat identification while preventing alert fatigue and significantly reducing overhead associated with many other SIEM solutions.



🔹 Network Vulnerability Assessment (NVA): I combine industry-leading tools with an internal program I wrote to consolidate NVA results and provide prescriptive action plans in each of our reports, This empowers businesses spend more time addressing vulnerabilities, rather than parsing scan results.



🔹 Web Application Penetration Testing: As the lead web application penetration tester, I develop processes that achieve deep test coverage on sites of any size or complexity. By writing custom scripts, tools, and Burp Suite extensions, I regularly uncover vulnerabilities in applications that are easily missed by other traditional techniques. My actionable recommendations are backed by years of experience of both testing and developing web applications.



💡 Philosophy:

I believe that a balanced approach of automation and human innovation is essential to improving the effectiveness and efficiency of any program, not just security. I strive to stay ahead of emerging threats and empower organizations with tools to better protect their digital assets.



🔑 Key Differences to My Approach

🔹I refuse any kind of kickbacks from 3rd party vendors' partnership programs. My clients trust that recommendations are always made with their best interest in mind and are never influenced by financial incentives.



🔹I don't like service contracts. I'll work to earn your business each month and if you're ever unhappy, you should feel free to end the partnership and find a better fit.



🔹My background in systems administration fosters a deeper understanding of security at the practical and theoretical level. I work to maintain this knowledge by managing a home lab of servers using a variety of different technologies.



Let's connect and explore ways to drive your company's cybersecurity program forward.