Hi, I'm Eric Kmetz.

About Me

Seasoned, dynamic, highly technical, hands-on asset, with a wealth of knowledge and experience in many domains of cybersecurity. Successfully having pivoted into the security space, I am also an experienced software professional. I combine these disciplines to shift left, automate, research, develop, guide, advise, and perform assurance in this field.

Experience & Education

For more information, have a look at my resume .

  • Frontdoor 2022 - Present
    Platform Security Engineer
    OPA Istio K8s Golang MongoDB ANTLR IAM OIDC Vault Terraform AppSec DevSecOps CI/CD GitLab JFrog KMS GCP AWS Azure
  • Shift4 Payments 2021 - 2022
    Sr. Security Analyst
    CSOC/IR AppSec DevSecOps GitLab PCI-DSS SoX CIS Splunk
  • Rootcrate 2019 - 2020
    Network Security Engineer
    Cisco IOS NX/OS ASA IPv4 & IPV6 802.1q VLAN & PVLAN Wireguard VPN OpenVPN Graylog IPAM
  • Consulting 2015 - 2019
    Principal Consultant
    AWS Kali Nmap Metasploit Burpsuite OpenVAS ELK Security Onion SIEM VLAN Routing Wireguard OpenVPN Graylog PHP Python C++ Wordpress Magento
  • Proofpoint 2014 - 2015
    Principal Engineer
    Ruby Rails Resque Ansible Social Patrol Discovery Compliance
  • Social Concepts 2012 - 2014
    Director of Engineering
    SDLC Mentoring Project Management Fraud Prevention
  • Social Concepts 2007 - 2012
    Sr. Systems Architect
    PHP Javascript MySQL Memcached C Trac SVN
  • Western Governors University
    B.S. Cybersecurity and Information Assurance
    Information Technology Risk Management Network Security Data Management Web Security Cloud Security Penetration Testing Digital Forensics Incident Response Ethics & Cyber Law Project Management Technical Writing

Certifications

To verify these certifications, check out my Credly .

  • (ISC)² — CISSP
    Access Management Asset Security Communication Security Identity Management Network Security Risk Management Security Assessment Security Engineering Security Management Security Operations Security Testing Software Development Security
  • PDSO — API Security Professional (CASP)
    Injection Attacks Post Exploitation Privilege Escalation Remote Code Execution Fuzzing REST GraphQL SAST DAST Input Validation OWASP ASVS IAM OpenID OAuth JWT SAML SOAP Rate Limiting Regex Secrets Management API Gateway HTTP Headers Kong Microservices WAF
  • PDSO — Cloud Native Security Expert (CCNSE)
    Kubernetes K8s Admission Controller K8s Network Policies K8s Security Tools Microservice Security Container Security Secrets Management Helm Chart API Security SAST DAST
  • PDSO — DevSecOps Professional (CDP)
    Ansible AppSec CI/CD Compliance as Code Docker Dynamic Testing (DAST) Infra as Code (IaC) Static Testing (SAST) Secure SDLC Compliance as Code Component Analysis (SCA) Vuln Managemenet

Projects

Semi-Autonomous Threat Processing

After several years in the social networking industry, it became clear that a computer-assisted threat detection and response solution was needed in order to better handle our scammers, spammers, and personae non grata.

Presentation — Cats and Mice Ever Evolving Attackers
Behavioral Patterning Image Recognition Algorithms Signatures Longest Common Subsequences Root Mean Square Composite Thresholds Defense In Deptch

Open Source Projects

droplet-cloudflare-updatefw

1

Tool to retrieve a list of origin IPs or CIDR netblocks from Cloudflare and then use DigitalOcean's API to update the firewall for one or more droplets

Github

Contact