Jerry Craft

I conceptualized and developed Nth Generation's first machine learning and artificial intelligence system designed to enhance penetration testing efficiency. This advanced tool analyzes data from penetration tests, pinpointing the most vulnerable and exploitable systems, and autonomously determines optimal attack paths using Python or Metasploit. Additionally, it autonomously compromises targeted systems, generates detailed penetration test reports, and performs comprehensive data analytics on… Show more

I conceptualized and developed Nth Generation's first machine learning and artificial intelligence system designed to enhance penetration testing efficiency. This advanced tool analyzes data from penetration tests, pinpointing the most vulnerable and exploitable systems, and autonomously determines optimal attack paths using Python or Metasploit. Additionally, it autonomously compromises targeted systems, generates detailed penetration test reports, and performs comprehensive data analytics on vulnerability data, significantly streamlining our cybersecurity operations and enhancing report accuracy. Show less

As a Senior Penetration Tester, I successfully execute over 25 penetration tests annually, delivering exceptional outcomes for our customers. Holding the record for the highest number of completed tests per pentester at our company, I continuously enhance my expertise and maintain superior performance by pursuing advanced educational opportunities in the field of cybersecurity.

I spearheaded the development of Nth Generation’s inaugural vCISO service, a pioneering initiative designed to meet client demands for high-level strategic cybersecurity resources. This service, tailored to building robust security strategies, understanding frameworks, and enhancing compliance, not only marked a first for Nth Generation but also significantly contributed to surpassing annual subscription goals. The introduction of this service created a new, recurring revenue stream, further… Show more

I spearheaded the development of Nth Generation’s inaugural vCISO service, a pioneering initiative designed to meet client demands for high-level strategic cybersecurity resources. This service, tailored to building robust security strategies, understanding frameworks, and enhancing compliance, not only marked a first for Nth Generation but also significantly contributed to surpassing annual subscription goals. The introduction of this service created a new, recurring revenue stream, further strengthening the company’s market position and financial stability Show less

Leveraging my extensive cybersecurity certifications and team-building expertise honed at Farmers and Merchants, I joined forces with Jeromie Jackson at Nth Generation to establish the company's inaugural cybersecurity practice. We developed a comprehensive security framework tailored to the unique needs of the customers, assembling a dynamic team skilled in various security disciplines. Together, we implemented robust security measures and created a culture of continuous improvement and… Show more

Leveraging my extensive cybersecurity certifications and team-building expertise honed at Farmers and Merchants, I joined forces with Jeromie Jackson at Nth Generation to establish the company's inaugural cybersecurity practice. We developed a comprehensive security framework tailored to the unique needs of the customers, assembling a dynamic team skilled in various security disciplines. Together, we implemented robust security measures and created a culture of continuous improvement and education, ensuring alignment with business objectives and responsiveness to evolving cyber threats. This strategic initiative not only fortified Nth Generation's defenses but also positioned the company at the forefront of industry best practices in cybersecurity to help customers in their pursuit as well. Show less

As the technical and security lead, I spearheaded the modernization and relocation of our existing data center from Paramount to a state-of-the-art facility in Seal Beach. This comprehensive project involved constructing a new building, installing a robust physical network, adding new generators, and establishing local LEC connections. Concurrently, we transitioned our existing server infrastructure to a more efficient virtual machine environment, which allowed us to support the physical… Show more

As the technical and security lead, I spearheaded the modernization and relocation of our existing data center from Paramount to a state-of-the-art facility in Seal Beach. This comprehensive project involved constructing a new building, installing a robust physical network, adding new generators, and establishing local LEC connections. Concurrently, we transitioned our existing server infrastructure to a more efficient virtual machine environment, which allowed us to support the physical relocation with fewer physical servers. This transition included a live cutover of systems, during which we meticulously managed and troubleshooted to ensure seamless continuity and minimal disruption. Show less

Over the next several years, I served as the technical lead responsible for the expansion of our banking network, successfully adding seven new branches and overseeing the relocation and renovation of four existing ones. Our proficiency in constructing, relocating, and remodeling branches evolved to such an extent that we were capable of setting up a new branch within just one week. This rapid deployment not only streamlined our operations but also significantly enhanced our service capacity… Show more

Over the next several years, I served as the technical lead responsible for the expansion of our banking network, successfully adding seven new branches and overseeing the relocation and renovation of four existing ones. Our proficiency in constructing, relocating, and remodeling branches evolved to such an extent that we were capable of setting up a new branch within just one week. This rapid deployment not only streamlined our operations but also significantly enhanced our service capacity and reach. Show less

Championed the establishment and deployment of the organization's inaugural cybersecurity program, meticulously aligning it with the mandates outlined in the Gramm-Leach-Bliley Act (GLBA) and the Federal Financial Institutions Examination Council (FFIEC) regulations, as legislated by Congress. Spearheaded pivotal initiatives, including the procurement of the first-ever penetration test, the implementation of cybersecurity controls for attack alerting and detection, and the deployment and… Show more

Championed the establishment and deployment of the organization's inaugural cybersecurity program, meticulously aligning it with the mandates outlined in the Gramm-Leach-Bliley Act (GLBA) and the Federal Financial Institutions Examination Council (FFIEC) regulations, as legislated by Congress. Spearheaded pivotal initiatives, including the procurement of the first-ever penetration test, the implementation of cybersecurity controls for attack alerting and detection, and the deployment and management of our maiden Security Information and Event Management (SIEM) system, ISS RealSecure, powered by BlackIce. Additionally, led the rollout of comprehensive policies and procedures to ensure compliance with the latest FFIEC standards.

Key Achievements:

Strategic Program Launch: Successfully conceptualized and executed the organization's first cybersecurity program, meticulously integrating key components of GLBA and FFIEC mandates as prescribed by Congress.

Penetration Test Procurement: Pioneered the procurement of the organization's inaugural penetration test, fortifying its defenses and proactively identifying vulnerabilities.

SIEM Implementation: Oversaw the deployment and management of the initial SIEM, ISS RealSecure, bolstering the organization's threat detection and management capabilities to industry standards.

Policy and Procedure Enhancement: Led the rollout of new policies and procedures to ensure compliance with the latest FFIEC standards, reinforcing the organization's cybersecurity posture and adherence to regulatory requirements.

This project led to me becoming an Assistant Vice President (AVP) and made me the Assistant CISO. Show less

Active Directory Infrastructure Enhancement and Streamlining

Conducted a comprehensive review and rearchitecture of the Windows 2000 RC1 Active Directory Infrastructure, necessitating the implementation of a entirely new domain name, replication typology, and enhancements from the advanced Windows 2003 server system. Orchestrated a fundamental rebuild and consolidation, reducing the number of domain controllers from 25 to 5, resulting in substantial improvements in NTFS replication… Show more

Active Directory Infrastructure Enhancement and Streamlining

Conducted a comprehensive review and rearchitecture of the Windows 2000 RC1 Active Directory Infrastructure, necessitating the implementation of a entirely new domain name, replication typology, and enhancements from the advanced Windows 2003 server system. Orchestrated a fundamental rebuild and consolidation, reducing the number of domain controllers from 25 to 5, resulting in substantial improvements in NTFS replication, login speed, and group policy deployment. Additionally, this initiative facilitated a systematic cleanup of objects and user accounts, significantly optimizing backup processes and system restorability.

Achievements:

Innovative Domain Restructuring: Led a strategic domain restructuring effort, introducing a new domain name and replication typology while harnessing the capabilities of the Windows 2003 server system to modernize the Active Directory infrastructure.

Streamlined Operations: Executed a core rebuild, reducing the number of domain controllers from 25 to 5, which had a transformative impact on NTFS replication, login speed, and the efficient deployment of group policies.

Enhanced Data Management: Systematically cleaned up objects and user accounts, enhancing data integrity and making backups more efficient and restorable. Show less

Conceived and executed a comprehensive enterprise network overhaul, spanning all data centers and branches. The project's primary objective was to replace the legacy IP public addressing, previously employed by Unisys, with a standardized RFC 1918 networking framework, ensuring stability and seamless connectivity to the internet. The initiative encompassed the transition from static routing and the antiquated ATM/Frame Relay/ISDN telecommunication channels to cutting-edge MPLS communications… Show more

Conceived and executed a comprehensive enterprise network overhaul, spanning all data centers and branches. The project's primary objective was to replace the legacy IP public addressing, previously employed by Unisys, with a standardized RFC 1918 networking framework, ensuring stability and seamless connectivity to the internet. The initiative encompassed the transition from static routing and the antiquated ATM/Frame Relay/ISDN telecommunication channels to cutting-edge MPLS communications, accompanied by the deployment of new T1 lines featuring fractional channels or multiple T1 lines as needed. These transformative efforts significantly elevated the organization's capacity to meet the growing demands of modern business operations, including internet services such as email, web browsing, and emerging internet-based Software as a Service (SaaS) solutions.

Achievements:

Enhanced Network Stability: Orchestrated a network transformation, replacing IP public addressing with a standardized RFC 1918 scheme, bolstering network stability enterprise-wide.

Seamless Internet Connectivity: Ensured uninterrupted internet connectivity, fostering improved communication and efficiency across the organization.

Transition to MPLS: Successfully transitioned from static routing and outdated telecommunication channels (ATM/Frame Relay/ISDN) to state-of-the-art MPLS communications, enhancing network performance and adaptability.

Scalable Infrastructure: Implemented a scalable infrastructure with new T1 lines, featuring fractional channels or multiple T1 lines as required, accommodating the organization's evolving internet needs, including email, web browsing, and emerging SaaS platforms. Show less

Successfully managed the migration of ATM systems from an outdated, unstable OS/2 environment to a more secure and efficient Linux-based system, encompassing the upgrade of 25 ATM units and the deployment of advanced telecommunication infrastructure for enhanced customer experience and heightened ATM reliability.

Successfully managed the migration of ATM systems from an outdated, unstable OS/2 environment to a more secure and efficient Linux-based system, which encompassed the upgrade of 25 ATM units and the deployment of advanced telecommunication infrastructure for enhanced customer experience and heightened ATM reliability.

Achievements:

Enhanced Security and Stability: Led the transition from an insecure and unstable OS/2 system to a robust Linux-based platform, significantly… Show more

Successfully managed the migration of ATM systems from an outdated, unstable OS/2 environment to a more secure and efficient Linux-based system, which encompassed the upgrade of 25 ATM units and the deployment of advanced telecommunication infrastructure for enhanced customer experience and heightened ATM reliability.

Achievements:

Enhanced Security and Stability: Led the transition from an insecure and unstable OS/2 system to a robust Linux-based platform, significantly improving the overall security and stability of ATM operations.

Improved Performance: Oversaw the upgrade of 25 ATM systems, resulting in enhanced performance and reliability for customers.

Optimized Telecommunications: Implemented advanced telecommunication lines to reduce transmission times, ensuring quicker and more responsive ATM services.

Elevated Customer Experience: These initiatives collectively contributed to an improved customer experience by providing faster and more reliable ATM services. Show less