James Lerudhttps://jameslerud.com/Recent content on James LerudHugoen-usAbouthttps://jameslerud.com/about/Mon, 01 Jan 0001 00:00:00 +0000https://jameslerud.com/about/<p>I&rsquo;ve spent 19+ years in information security, specializing in security operations, incident response, and DevSecOps. My through-line has been building and mentoring high-performing teams, standing up scalable security programs, and integrating security into how software actually gets built — under the belief that <strong>security = quality</strong>.</p> <h2 id="where-ive-worked">Where I&rsquo;ve worked</h2> <ul> <li><strong>Titania Solutions Group</strong> — <em>ISSO &amp; Cybersecurity SME</em> (2019–present). Led a DevSecOps transformation, integrating automated security testing into CI/CD pipelines across 15+ development teams. Web app penetration testing, threat modeling, and the metrics to keep application security honest.</li> <li><strong>Verodin, Inc. (acquired by FireEye)</strong> — <em>Threat Research Manager</em> (2016–2018). Founded and led a threat research team producing detection content and instrumentation, and built the multi-release roadmaps that helped mature the product toward acquisition.</li> <li><strong>Executive Office of the President</strong> — <em>Chief of Security Operations</em> (2015–2016). Directed SOC operations in a high-stakes environment — detection, investigation, response, and an enterprise security technology transition across agencies.</li> <li><strong>Defense Intelligence Agency (DCNDC)</strong> — <em>Defensive Countermeasures Lead</em> (2012–2015). Built and led the enterprise countermeasures team responsible for detection and mitigation content.</li> <li><strong>U.S. Cyber Command</strong> — <em>Countermeasures Developer</em> (2010–2012). Defense-in-depth strategies and technical leadership for protecting critical DoD infrastructure.</li> <li><strong>National Security Agency (NTOC)</strong> — <em>Attack Sensing &amp; Warning Section Manager / Senior Reporting Analyst</em> (2007–2010). Ran AS&amp;W operations and advanced the cataloging of attacker TTPs to improve detection fidelity.</li> </ul> <h2 id="what-i-work-on">What I work on</h2> <p>Detection engineering and intrusion analysis · DevSecOps and security automation (CI/CD, ZAP, Nuclei) · threat modeling and penetration testing · security operations and incident response leadership · secure-by-default systems. I build in Python, Go, and PowerShell, and I&rsquo;m comfortable across Windows, macOS, and Linux.</p>