Seth Hanford knows how to connect the dots. An expert in threat intelligence collection and vulnerability analysis, he is skilled at identifying patterns in seemingly unrelated data to uncover hidden threats, assessing and remediating security flaws, and communicating findings to a variety of audiences. Since joining Cisco nearly a decade ago, Hanford has been focused on both integrating common security intelligence methods within the organization and working to improve security intelligence standardization for the industry.
As Manager of the Cisco TRAC – Outreach team, reporting to Gavin Reid, Director of Cisco Security Intelligence Operations (SIO), Hanford helps to guide some of the most experienced and knowledgeable threat researchers and analysts at Cisco – and in the industry. Their collaborative research and analysis work is intended not only to continually enhance the quality and efficacy of Cisco’s security products, but also, provide actionable intelligence that helps all Internet users defend against both known and emerging network threats.
Hanford was an Incident Manager for the Cisco Product Security Incident Response Team (PSIRT) before becoming leader of the Cisco TRAC – Outreach team. PSIRT, one of multiple groups that are part of Cisco SIO, is a dedicated, global team that manages the receipt, investigation, and public reporting of security vulnerability information related to Cisco products and networks. Coordinating with outside researchers to communicate vulnerability information effectively to the industry and the public was one of Hanford’s primary responsibilities at PSIRT.
Hanford also served as a Security Analyst for Cisco IntelliShield, a threat and vulnerability alerting service that allows organizations to easily access timely, accurate information about potential vulnerabilities in their environment. Prior to joining Cisco, Hanford worked as a security analyst, security engineer, and systems administrator.
More about Seth Hanford …
Hanford is Chair of the Common Vulnerability Scoring System (CVSS) Special Interest Group at the Forum of Incident Response and Security Teams (FIRST). CVSS is an open industry standard for rating IT security vulnerabilities that helps organizations prioritize and coordinate a joint response to computer security risks. Hanford is coordinating the effort to develop v3 of that specification. He previously worked on v2 of CVSS, and continues to work with the CVSS – Special Interest Group to bring continual improvement in the effectiveness, adoption, and use of the CVSS standard.
Hanford holds the Certified Information Systems Security Professional (CISSP) certification, a B.S. in Computer Information Systems, and a M.S. in Information Assurance.
Cisco TRAC – Outreach
Through research projects, publications, presentations, and other front-facing activities, the expert threat researchers and analysts on the Cisco TRAC – Outreach team help Cisco customers, the security community, industry, and the public understand the value of Cisco SIO and the early-warning intelligence, threat, and vulnerability analysis its researchers provide.
Additionally, the Cisco TRAC – Outreach team works with media outlets to provide timely, in-depth insight and analysis on major web security incidents. Cisco TRAC – Outreach team members are also regular contributors to Cisco Security Reports and the Cisco Security Blog.