“Ismail Guneydas is a dedicated and professional team member. It was pleasure to work with Ismail for over three years. Ismail was recruited by me as an individual contributor to build out our organizations first vulnerability management program. Ismail delivered and much more on the efforts. He worked independently and even managed critical relationships for our organization. Ismail was also very innovative and developed a patent pending approach to USB baiting that provide us valuable intel on opportunities for improvement. In addition to his vulnerability work Ismail also supported forensic capability and helped save the legal organization over $1M via techniques he was able to build. Key accomplishments from Ismail included: ►Coordinated the company's first ever pentest on a new IoT product prior to product launch. ►Partnered with Internal Audit department and performed the company's first ever ICS penetration test. ►Reduced critical OS vulnerabilities by 95% over 3 year period with a vulnerability management program. ►Continuous 40% reduction in application vulnerabilities year over year. ►Received IDEA Award ITS Honorable Mention Awards for the innovative work. Ismail would be a great addition to any leadership team. ”
About
I’m a global cybersecurity executive focused on shaping resilient, intelligent, and…
Experience
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
Education
-
-
-
-
-
-
-
-
-
-
-
Licenses & Certifications
-
-
-
-
-
-
-
-
Certfied Ethical Hacker
EC-Council Academy
-
Certfied Hacking Forensic Investigator
EC-Council Academy
-
Volunteer Experience
-
-
-
Industry Advisory Board Member
Texas A&M University-Commerce
- Present 1 year 9 months
Education
As a member of the Texas A&M Commerce Industrial Advisory Board, I will provide strategic guidance on industry trends and help align academic programs with real-world needs in industrial security.
Publications
-
Top 2016 Security Resolutions and Initiatives
Watch our panel of security experts discuss the answers to hard questions like:
What should we be striving to achieve over the next couple years?
What are the resolutions and top initiatives for security professionals in 2016?
Speakers: Ismail Guneydas, IT Security Vulnerability Manager, Kimberly-Clark; Trey Ford, Global Security Strategist, Rapid7; Scott Meyer, Sr. Systems Engineer, US Government; and Jack Voth, Sr. Director of Information Technology, Algenol Biotech Inc.Other authors -
-
Vulnerability Management As A Business Process
Secure World Conference, Dallas, USA
Being the victim of a security breach is the worst nightmare of most corporations and their security teams. Implementing an effective vulnerability management program is an important step toward reducing the potential for successful exploitation of vulnerabilities that exist within an organization’s IT infrastructure. In this presentation we cover building and managing an effective vulnerability management program that your executives will love.
-
Manage Mobile Security Incidents Like A Boss
North Texas ISSA Conference, Dallas, USA
In this talk we will go over the differences between traditional incident response process and mobile security incident response process. We then go into the details and provide answer for various challenges in mobile security incidents. We will give right methodologies that are already proven to work in mobile security incidents. Additionally we will go over right tools and processes to handle those incidents with examples. And the best thing is the tools are free... After this talk audience…
In this talk we will go over the differences between traditional incident response process and mobile security incident response process. We then go into the details and provide answer for various challenges in mobile security incidents. We will give right methodologies that are already proven to work in mobile security incidents. Additionally we will go over right tools and processes to handle those incidents with examples. And the best thing is the tools are free... After this talk audience will have clear understanding of mobile security incidents, and processes and tools that could be used during those incidents.
-
Operation Sunrise: A Successful Battle Against Fake Customer Care Centers
Bank of America Corporation Global Financial Crimes and Corruption 5th Annual Forum, Charlotte, USA
-
Incident Reponse In Large Complex Business Enviroments
24th Annual FIRST Conference, Malta
-
Protecting Your Company's Brand
Yahoo! Security Week, Sunnyvalle, USA
Honors & Awards
-
Best Security Team-2019 SC Awards
SC Magazine
The $18 billion consumer product goods company founded its Cyber Security & Assurance (CS&A) global information security program in 2015 after hiring its very first CISO. Since then, the team has been following NIST guidelines as it builds out its security ecosystem while developing a culture of cyber awareness.
A lot is at stake. KC must protect more than 1,200 branded websites and mobile apps, over 90 mill locations, 56,000 employees and hundreds of thousands of devices. -
IDEA Award
Kimberly Clark
IDEA Awards honor excellence in demonstrated innovative expertise
Since 1982, the IDEA awards program has recognized the contributions of those whose work has resulted in a U.S.-issued patent, utility patent and patent applications. It also recognizes those ideas and inventions that aren’t patented. Some great ideas are turned into publications, while others are kept as trade secrets – those processes kept within our walls to maintain our competitive advantage in the marketplace. -
ITS Honorable Mention Award
Kimberly Clark
Won the award (in the innovation category) "A Step Change in K-C Security" by increasing K-C data protection through improved vulnerability scans and threat detection as well as increased ITS security talent and security awareness.
-
Yahoo! Excellence Award
Yahoo!
Excellence is an award program that recognizes individuals for their contributions to the company. I received this award after series of successful operations I lead that eliminated very important threats against the company.
-
Yahoo! Hackovation Award
Yahoo!
Hackovation is an award program that recognizes people for their innovative ideas and intelligent risk taking. I received this award after an successful operation I lead that helped the biggest take down in Internet history against fake antivirus websites.
Recommendations received
8 people have recommended Ismail
Join now to viewOther similar profiles
Explore more posts
-
Lee Carsten
Today’s San Antonio Chapter of CFMA lunch reminded me why cross-functional learning is one of the most underrated risk management tools we have. Here are the three insights that hit hardest for me: 1. Tax changes create security gaps. Rushed tech purchases to capture bonus depreciation or R&D credits often skip security vetting and that’s where exposure creeps in. 2. Construction firms face rising cyber risk. According to the Dodge Construction Network, 59% of construction firms experienced a cybersecurity threat over a two year period. The industry’s complexity makes it a prime target. 3. Finance + IT disconnect = avoidable risk. In most of the firms I talk to, finance leaders can’t list all of the cloud tools their project teams rely on. This is a blind spot attackers love. Takeaway: Your tax strategy, growth plan, and cybersecurity posture aren’t separate. They’re interconnected systems that can either reinforce or undermine each other. Huge thanks to Kathryn Hall, Bradley Frantz, Nita McBride, and the speaker for today's session Shelley Woitena for an outstanding CFMA meeting. Also wanted to thank Denice Allison for the introduction to the San Antonio crew. What’s an unexpected place you’ve learned something critical about your business?
1 Comment -
Shan Keerthisinghe
Modern eBike on-board computers are basically small PCs that not only offer motor control, navigation, and performance monitoring, but also store lots of sensitive user data. The Bosch Nyon series of board computers are cutting-edge devices from one of the market leaders in the eBike business, which is why they are especially interesting for forensics. Therefore, we conducted an in- depth forensic analysis of the two available Nyon models released in 2014 and 2021. On a first- generation Nyon device, Telnet access could be established by abusing a design flaw in the update procedure, which allowed the acquisition of relevant data without risking damage to the hardware. Besidestheuser’spersonalinformation,thedataanalysisrevealeddatabasescontaininguseractivities, including timestamps and GPS coordinates. Furthermore, it was possible to forge the data on the device and transfer it to Bosch’s servers to be persisted across their online service and smartphone app. On a current second-generation Nyon device, no software-based access could be obtained. For this reason, more intrusive hardware-based options were considered, and the data could be extracted via chip-off eventually. Despite encryption, the user data could be accessed and evaluated. Besides location and user information, the newer model holds even more forensically relevant data, such as nearby Bluetooth devices.
-
Alex Matrosov
Chiplets are changing the game for AI + automotive… but they also widen the supply-chain attack surface. When you’re assembling systems from multiple dies, across multiple vendors/fabs, it’s easier for something shady (or just unverified) to slip in, and one bad chiplet can compromise the whole package. Worth a read: https://lnkd.in/ged8uJA8 Big thanks to Agam Shah and the Dark Reading team for a great story.
1 Comment -
Dr. Darren Death
In my new article published by ICIT, Executing the RMF as an Engineering Discipline, not a Paperwork Exercise, I discuss how the Risk Management Framework must function as part of engineering, not as a compliance process. RMF was created to align design, implementation, and operations so that control performance is demonstrated through verified system behavior rather than documentation. The article explains how integrating RMF into development pipelines, architecture decisions, and operational telemetry allows authorization decisions to reflect real conditions in production. When security is designed, tested, and monitored as part of engineering, the framework delivers what it was meant to provide. Systems maintain authorization by demonstrating continued security in operation. Read the full article on ICIT: https://lnkd.in/eup93tvi #cybersecurity #technology
-
Guillermo "Gil" M.
𝗙𝗿𝗼𝗺 𝗣𝗿𝗶𝗻𝘁𝗡𝗶𝗴𝗵𝘁𝗺𝗮𝗿𝗲 𝘁𝗼 𝗣𝗿𝗼𝗽𝗼𝗿𝘁𝗶𝗼𝗻𝗮𝘁𝗲 𝗥𝗲𝘀𝗽𝗼𝗻𝘀𝗲: 𝗟𝗲𝘀𝘀𝗼𝗻𝘀 𝗶𝗻 𝗭𝗲𝗿𝗼-𝗗𝗮𝘆 𝗧𝗿𝗶𝗮𝗴𝗲 When 𝘗𝘳𝘪𝘯𝘵𝘕𝘪𝘨𝘩𝘵𝘮𝘢𝘳𝘦 dropped a few years ago, I was at Texas A&M and part of the team that led the institution-wide response. It was an “all hands on deck” moment. I stood up a real-time internal site, tracked mitigations across thousands of servers, and generated daily reports for leadership. It worked - and it set the bar. But something interesting happened afterward: Every new zero-day or vulnerability announcement triggered the same expectation. 🔥 Full crisis posture. 🔥 Executive attention. 🔥 Immediate campus-wide action. The problem - Most vulnerabilities don’t warrant that level of response. We were slipping into p͟e͟r͟m͟a͟n͟e͟n͟t͟ f͟i͟r͟e͟-a͟l͟a͟r͟m͟ m͟o͟d͟e͟. So I stepped back and asked: 𝗪𝗵𝗮𝘁 𝗳𝗮𝗰𝘁𝗼𝗿𝘀 𝗺𝗮𝗱𝗲 𝗣𝗿𝗶𝗻𝘁𝗡𝗶𝗴𝗵𝘁𝗺𝗮𝗿𝗲 𝗮𝗰𝘁𝘂𝗮𝗹𝗹𝘆 𝘄𝗼𝗿𝘁𝗵 𝗮𝗻 𝗲𝗺𝗲𝗿𝗴𝗲𝗻𝗰𝘆 𝗿𝗲𝘀𝗽𝗼𝗻𝘀𝗲? And can we generalize those factors so we respond proportionally in the future? That question led to a matrix I built at A&M — and more recently expanded at Harvard Medical School — that evaluates new vulnerabilities across a few key dimensions: * 𝗘𝘅𝗽𝗹𝗼𝗶𝘁𝗮𝗯𝗶𝗹𝗶𝘁𝘆: theoretical, PoC, weaponized, actively exploited * 𝗘𝘅𝗽𝗼𝘀𝘂𝗿𝗲: internet-facing vs. internal systems * 𝗦𝗰𝗼𝗽𝗲: number and importance of affected systems * 𝗥𝗲𝗴𝘂𝗹𝗮𝘁𝗼𝗿𝘆 𝗼𝗿 𝗰𝗼𝗺𝗽𝗹𝗶𝗮𝗻𝗰𝗲 𝗶𝗺𝗽𝗮𝗰𝘁: HIPAA, FERPA, NIH/DoD contract implications * 𝗣𝗼𝘁𝗲𝗻𝘁𝗶𝗮𝗹 𝗯𝘂𝘀𝗶𝗻𝗲𝘀𝘀 𝗱𝗶𝘀𝗿𝘂𝗽𝘁𝗶𝗼𝗻/𝗰𝗿𝗶𝘁𝗶𝗰𝗮𝗹𝗶𝘁𝘆 Crossing these factors produces clear, repeatable 𝗥𝗲𝘀𝗽𝗼𝗻𝘀𝗲 𝗟𝗲𝘃𝗲𝗹𝘀: from routine tracking to coordinated mitigation to true emergency posture. What this accomplishes: * Leaders get clarity instead of chaos * Engineers aren’t whiplashed by unnecessary escalations * Security teams focus their energy where it actually matters * External pressure doesn’t dictate internal panic * Decisions become defensible, consistent, and risk-based These are just basic, publicly available concepts that yield an important principle: 𝗠𝗮𝘁𝘂𝗿𝗲 𝗼𝗿𝗴𝗮𝗻𝗶𝘇𝗮𝘁𝗶𝗼𝗻𝘀 𝗱𝗼𝗻’𝘁 𝘁𝗿𝗲𝗮𝘁 𝗲𝘃𝗲𝗿𝘆 𝘃𝘂𝗹𝗻𝗲𝗿𝗮𝗯𝗶𝗹𝗶𝘁𝘆 𝗹𝗶𝗸𝗲 𝗣𝗿𝗶𝗻𝘁𝗡𝗶𝗴𝗵𝘁𝗺𝗮𝗿𝗲. 𝗧𝗵𝗲𝘆 𝗯𝘂𝗶𝗹𝗱 𝗮 𝘀𝘁𝗿𝘂𝗰𝘁𝘂𝗿𝗲 𝘁𝗵𝗮𝘁 𝘁𝗲𝗹𝗹𝘀 𝘁𝗵𝗲𝗺 𝘄𝗵𝗲𝗻 𝘁𝗼 𝘀𝗼𝘂𝗻𝗱 𝘁𝗵𝗲 𝗮𝗹𝗮𝗿𝗺… 𝗮𝗻𝗱 𝘄𝗵𝗲𝗻 𝗻𝗼𝘁 𝘁𝗼. It’s been a useful tool that has helped us remember, when a zero day or threat advisory comes out, we don't have to immediately call for all hands on deck. A more effective process is to take a few moments to consider the nature and impact of the vulnerability or threat, and then initiate an appropriate response. If your team ever starts drifting into “respond to everything” mode, a structured triage model might be one of the best gifts you can give them.
Explore top content on LinkedIn
Find curated posts and insights for relevant topics all in one place.
View top content