David is a founding organizer of the OWASP AppSec California conference. He is also a chapter leader of OWASP Santa Barbara.
David has extensive experience in many areas of information security.
Beginning his career as a Network Security Analyst, David monitored perimeter firewalls and intrusion detection systems in order to identify and neutralize threats in real time. After working in the trenches of perimeter analysis, David joined an External Threat Assessment Team as a Security Researcher, working closely with large financial institutions to mitigate external risk and combat phishing attacks.
David joined Redspin in 2009, and has worked as a Senior Security Engineer, Director of Penetration Testing, and Senior Director of Engineering. David is currently the Chief Technology Officer and Vice President of Professional Services at Redspin, specializing in External and Application security assessments and managing a team of highly skilled engineers.
David has particular interests in complex threat modeling and unconventional attack vectors, and has been a speaker at THOTCON, NolaCon, ToorCon, LayerOne, DEF CON, BSides Las Vegas, BSides Los Angeles and BSides Seattle.