Eric Johnson

West Des Moines, Iowa, United States Contact Info
4K followers 500+ connections

Join to view profile

Activity

Experience & Education

  • Puma Security, LLC

View Eric’s full experience

See their title, tenure and more.

or

By clicking Continue to join or sign in, you agree to LinkedIn’s User Agreement, Privacy Policy, and Cookie Policy.

Licenses & Certifications

Publications

  • SANS SEC510: Public Cloud Security: AWS, Azure, and GCP

    SANS Institute

    SEC510: Public Cloud Security: AWS, Azure, and GCP is an in-depth analysis of the security of managed services for the Big 3 cloud providers: Amazon Web Services, Azure, and Google Cloud Platform. Students will leave the course confident that they have the knowledge they need when adopting services and Platform as a Service (PaaS) offerings in each cloud. Students will launch unhardened services, analyze the security configuration, validate that they are insufficiently secure, deploy patches…

    SEC510: Public Cloud Security: AWS, Azure, and GCP is an in-depth analysis of the security of managed services for the Big 3 cloud providers: Amazon Web Services, Azure, and Google Cloud Platform. Students will leave the course confident that they have the knowledge they need when adopting services and Platform as a Service (PaaS) offerings in each cloud. Students will launch unhardened services, analyze the security configuration, validate that they are insufficiently secure, deploy patches, and validate the remediation.

    Other authors
    See publication

  • Defending Serverless Infrastructure in the Cloud

    RSA Conference

    Cloud workloads running on serverless infrastructure provide near zero visibility to security teams. Can security professionals inventory, scan and monitor an environment running thousands of functions for only 100 milliseconds? This technical session will examine real-world attacks and teach you how to enable security controls to defend your serverless infrastructure.

    See publication

  • SEC540: Cloud Security and DevSecOps Automation

    SANS Institute

    SEC540 provides security professionals with a methodology to secure modern Cloud and DevOps environments. Students learn how to implement more than 20 DevSecOps security controls to build, test, deploy, and monitor cloud infrastructure and services. Immersive hand-on labs ensure that students not only understand theory, but how to configure and implement each security control. By embracing the DevOps culture, students will walk away from SEC540 battle-tested and ready to build to their…

    SEC540 provides security professionals with a methodology to secure modern Cloud and DevOps environments. Students learn how to implement more than 20 DevSecOps security controls to build, test, deploy, and monitor cloud infrastructure and services. Immersive hand-on labs ensure that students not only understand theory, but how to configure and implement each security control. By embracing the DevOps culture, students will walk away from SEC540 battle-tested and ready to build to their organization's Cloud and DevSecOps Security Program.

    Other authors
    See publication

Projects

  • Puma Scan

    -

    Puma Scan is the leading software security Visual Studio analyzer extension. Built on top of Roslyn, the open-source .NET Compiler Platform, Puma Scan provides real time, continuous source code analysis as development teams write code. Vulnerabilities are immediately displayed in the development environment as spell check and compiler warnings, preventing security bugs from entering your applications.

    Other creators
    See project

  • Security Header Injection Module

    -

    SHIM is a HTTP module that provides protection for many vulnerabilities by injecting security-specific HTTP headers into ASP.NET web applications.

    Recording from OWASP AppSec USA 2014: https://www.youtube.com/watch?v=RBL_F9P2OI4

    See project

  • Serverless Prey

    -

    Serverless Prey is a collection of serverless functions (FaaS), that, once launched to a cloud environment and invoked, establish a TCP reverse shell, enabling the user to introspect the underlying container:

    Panther: AWS Lambda written in Node.js
    Cougar: Azure Function written in C#
    Cheetah: Google Cloud Function written in Go

    Other creators
    See project

Organizations

  • AWS Community Builder

    -

    - Present

  • OWASP

    -

    - Present

  • ISSA

    -

    - Present

View Eric’s full profile

  • See who you know in common
  • Get introduced
  • Contact Eric directly
Join to view full profile

Other similar profiles

Explore collaborative articles

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Explore More

Others named Eric Johnson in United States

6267 others named Eric Johnson in United States are on LinkedIn

See others named Eric Johnson

Add new skills with these courses

See all courses