scott j roberts

- Conducting threat analysis for Symantec global Managed Security Services three primary teams, spanning 450+ enterprise customers, spread over four contents, ranging from Financial Services to National Infrastructure.
- Providing documentation, research analysis, handling instructions, as well as customer facing reports and analysis.
- Functional conduit between regional analysis teams and Symantec’s world wide information security intelligence group, Deepsight, conducting specific customer and industry analysis to support Deepsight research and findings.
- Architecting redesign of the Security Operations Center Technology Platform, including key initiatives, in support of creating a new world class analysis console and back end.
- Leading the effort to redevelop six week security analyst training curriculum to develop trainee analysts to deal with cutting edge threats.

- Performed advanced network threat analysis, validating attacks and accessing impact for Fortune 500 and private enterprise clients of various industries.
- Provided appropriate tactical and strategic recommendations to clients for incident remediation and proactively preventing future attacks.
- Collaborated with client security teams, third party consultants, and Symantec in-house engineering to implement recommended security countermeasures.
- Researched current vulnerabilities, attacks, and appropriate countermeasures, as well as producing internal documents to educate other analysts.

- Created teaching materials, focused on hand on laboratory exercises, to be used in Information Security classes under a grant from the National Science Foundation.
- Proctored lab sessions using these exercise, providing guidance and extending the educational experience for students.
- Completed multiple accepted, juried research papers submitted to various Academic Information Security Conferences.

This was my third summer with Hershey and a very different experince from the previous two. This summer I spent much of my time working more as a Security Architect than a Security Analyst, focusing my time on writing new policies, evaluating new technologies, and helping to prepare Hershey for current and upcoming threats. I also worked on increasing our utilization of current investments and auditing our current technologies and practices.

Focused primarily on desktop specific issues. Extensive time spent on systems auditing and hardening, policy compliance, investigations and forensics, wireless exposure testing, and technology evaluation. Also deeply involved in document creation, creating security summaries, position papers, threat analyses for executive management, and other technical writing tasks.

BS in Information Science & Technology

B.S. in Information Science and Technology: System Design and Development

BS in Computer Science

BS in Computer Science
Activities: Student Researcher in collaboration with facility, Programming Team member

Personal Website, Company Website

•GIAC Certified Incident Handler (GCIH) •Holder of the DoD NSTISSI No. 4011: Information Systems Security Professional Certification. •Paper Review Committee Member - 10th & 11th Colloquium for Information System Security Education.

Cyber Threat Intelligence, Intelligence Driven Network Security Monitoring, Exploit Techniques and Defense, Information Assurance Teaching and Training, Information Warfare & Espionage