Matthew Neely (he/him)
Details
Northwestern University - Kellogg School of Management
2013 : 2015
Bachelor of Arts
Sociology and Anthropology
The College of Wooster
1995 : 1999
Indian Hill High School
1991 : 1995
2019 : Present
Progressive Insurance
Director of Information Security
Responsible for managing the activities and work of the Information Security Threat and Vulnerability Team.
2017 : 2019
Progressive Insurance
Manager, Information Security Threat and Vulnerability Team
Focuses on managing strategic initiatives surrounding key industries and services. Matt is a leader in SecureState’s Management Consulting team which focuses on addressing business risks specific to information and physical security. In this role he works with client’s executive teams to understand organizational direction and align their security program to achieve their corporate goals.
Major Accomplishments :
• Created a 3 year strategic plan for a Fortune 100 Financial Services company to align their physical security governance program to support business goals of increased M&A activities and expansion into international markets.
• Led the team that created a Cloud Security Framework for a Fortune 200 company which allowed them to move key applications to the cloud while maintaining corporate standards for security.
• Led the team which completed one of the first MARS-E audits on a state based health exchange
• Managed multiple engagements for electric utilities which focused on testing various components of the smart grid including smart meters, capacitor bank controllers, reclosers, voltage sensors, mesh networks and wireless backhaul links.
2012 : 2017
SecureState
Director of Strategic Initiatives
Led SecureState's consulting division comprised of Audit and Compliance, Profiling and Penetration, Incident Response, Risk Management and Advisory Services. Managed SecureState’s Research and Innovation team which focuses on developing methodologies and tools that will solve industry related issues. Works with executive team and practice managers to set the tactical and strategic direction for the consulting organization. Responsible for ensuring consulting as a whole meets profitability and growth goals established by executive management. Assists with developing and selling complex multi-practice engagements in key industries and sectors.
Major Accomplishments :
• SecureState’s R&I team developed Termineter, the first and only open source tool devoted to testing smart meter.
• Led multiple projects which pioneered techniques for testing devices at all levels of the smart grid.
• Standardized the RFP review and response process to allow for more RFPs to be answered while increasing win ratio on RFPs.
2011 : 2012
SecureState
VP of Consulting
Responsible for managing and setting the strategic direction of SecureState's Profiling practice. Profiling offers penetration tests, wireless security assessments, physical penetration tests, social engineering tests and web application security assessments.
Major Accomplishments :
• Created a dedicated research position focused on tool development and exploit research. New tools and exploits streamlined SecureState's assessments by automating common activities and weaponizing new attacks. Spoke at 2011 BlackHat Europe conference in Barcelona, Spain alongside research team to present EAPeak tool, gaining international recognition for SecureState.
• Started an internal knowledge management system to retain and catalog intellectual capital. The knowledge base contains information on specific attacks, using tools and various tips and tricks of value to penetration testers. This expedited assessments while offering more thorough evaluations.
2011 : 2011
SecureState
Profiling Team Practice Lead
Skills
Active Directory, Afol, Application Security, Business Continuity, CISSP, Computer Forensics, Computer Security, Consulting, Customer Insight, Disaster Recovery, Enterprise Architecture, Enterprise Risk Management, Governance, Growth Strategies, GTD, Handlebar Mustache, Incident Management, Incident Response, Information Security, Information Security Management, Information Technology, Intrusion Detection, IT Audit, Management Consulting, Mentoring, Network Security, Penetration Testing, Physical Security, Professional Services, Program Building, Public Speaking, Risk Analysis, Risk Assessment, Risk Management, Security, Security Architecture Design, Security Awareness, Security Convergence, Security Policy, Security Research, Smart Grid, Social Engineering, Team Leadership, Value Creation, Vulnerability Assessment, Vulnerability Management, Vulnerability Research, Web Application Security, Wireless, Wireless Security, PCI DSS, Security Architecture, Enterprise Risk
About
Matt Neely’s career goal is to help clients understand and address security risks to foster business innovation. He does this through understanding the true problem and causes which led to the issue. From here he crafts a solution to help client achieve their business goals. Matt is adept at forming and leading teams focused on tackling unique security challenges. In addition to Matt’s business acumen he has a strong technical background focused on risk management, penetration testing and incident response.
Matt has given more than 100 presentations on technical and business risks at local, national and international conferences and meetings. He is regularly invited to guest lecture on security at colleges and universities. He has published articles on IT security in industry magazines and published a book Wireless Reconnaissance in Penetration Testing.
Profile Photo
