Tim Brown joined Cisco as part of their acquisition of Portcullis for whom he worked for almost 12 years. He is equally happy performing white box assessments with access to source code or where necessary diving into proprietary binaries and protocols using reverse engineering methodologies. Tim has contributed to a number of Cisco’s bespoke methodologies covering subjects as diverse as threat modelling with data analytics, risk and compliance, secure development and host hardening as well as bespoke industry specific technologies in banking and telecomms. This has included improvement in technical capability as well as development of new operational maturity models and practices. Over the years, he has looked at targets as varied as intelligent transportation in planes, trains and automobiles, threat hunting and red teaming on high-end UNIX and mainframe environments, PLC protocol security and detection engineering in 5G mobility solutions. Tim has also received awards from both Cisco (Global Security Champion) and MEF (Top 5 Contributor) for his contributions to security research. Outside of the customer driven realm of information assurance, Tim is also a prolific researcher with papers on data analytics, MITRE ATT&CK, Active Directory, UNIX, KDE, Vista and web application security to his name. Tim is credited with over 150 vulnerability advisories covering both kernel and userland, remote and local and has, for the last 6 years, supported ATT&CK's reporting of Linux threats with new sources of intelligence. This latter activity has resulted in the addition and/or improvement of over a dozen techniques. Tim particularly likes to bug hunt enterprise UNIX solutions. Most recently Tim spoke at CREST's SOC event and BSides London on some of his threat-centric research.