Research

Current Research

SecurityScorecard: I lead the threat research team at SecurityScorecard, where we collect data and score over 10 million companies daily based on historical and current threats, breaches, and vulnerabilities discovered on attributed company assets from the open Internet, Dark web, social media, and more. I lead a team of world-class threat analysts, malware researchers, and distributed systems engineers across 5+ countries to build out infrastructure to monitor the state of security on the Internet, at companies (both private and public), and in governments (national, state, local, etc.). I also lead new security R&D to develop new products and modules for bundling as cross-sells and upsells to our existing customers and partners.

Oak Ridge National Laboratory: I led projects in the areas of adversarial machine learning, memory forensics, security analytics using traditional and deep learning, and embedded and critical infrastructure security. Sponsors include the U.S Department of Energy, the U.S. Department of Homeland Security, and the U.S. Department of Defense. From 2015 to 2020, as the sole or co-PI, I managed over $6m in grants and led teams of between 5 and 20 researchers and engineers, including licensing several security tools to commercial entities.

University of Tennessee Computer Security Laboratory: I did my PhD in Computer Science in the area of Internet Infrastructure Security, specifically on routing protocols such as BGP. My work focused on developing techniques to both defend and attack Internet infrastructure. Paired with emulation and simulation of the Internet, when ethically possible, we validated our work’s findings via active and passive measurement of the dynamics of both the data and control-planes on the Internet. Sponsors of our lab’s work included the U.S. National Science Foundation and DARPA.

Collaborators

I collaborate extensively with a number of entities academia, government, and industry, ranging from the Intelligence Community (DHS CISA, FBI, and NSA) to Universities and Research Institutions (Northeastern, VCU, UCSD CAIDA, UTK, MIT Lincoln Labs, Sandia National Laboratories, MITRE, WPI) to private companies and organizations (Fortinet, Tenable, NTT Docomo, Cisco Systems, Inc.). I am always looking for new collaborators. Please reach out to me at [email protected] if you’re interested in working together.