Evan Peña is a Principal Consultant and Red Team Functional Lead for Mandiant, the Professional Services Division of FireEye. Mr. Peña has years of experience in enterprise information technology administration, employing covert penetration testing to evaluate incident response procedures, and assessing enterprise network defense capabilities from the perspective of an attacker. Mr. Peña leads the Mandiant Red Team for the west coast region and has conducted and led covert red team operations for several fortune 500 corporations in a diverse group of industries including retail, financial sector, health care, legal, and energy. In addition, Mr. Peña has software development abilities that enable him to quickly respond to a variety of problems that may arise with large amounts of data. With these capabilities, Mr. Peña has created cutting edge tools for Mandiant that enable his team to stream line tedious tasks in common methodology. Mr. Peña graduated from the University of Texas at San Antonio with his Bachelor of Business Administration in Infrastructure Assurance and Information Systems. While pursuing his undergraduate degree he was heavily involved in extracurricular activities in an association called "The Computer Security Association" (CSA). Through this association, he and his team were able to compete in many competitions such as the National Collegiate Cyber Defense Competition (CCDC), MITRE Capture the Flag (CTF) competition, and other CTF's that companies sponsored for colleges around the nation. Prior to joining MANDIANT, Mr. Peña was a member of the Marine Corps Information Assurance Red Team (MCIART) where he was responsible for conducting network and web-based application penetration tests, physical security assessments, logical security audits, and hands-on technical security evaluations. These evaluations were all conducted on the live enterprise production networks of all Marine Corp bases around the world. In addition, he was responsible for developing courses to teach the Marines web-based application penetration tests and wireless security assessments.
Chris King is a Senior Consultant within the Security Consulting Services division of Mandiant, A FireEye Company. Mr. King's specialties include performing Red Team assessments and comprehensive security reviews. He has extensive experience working in the retail, financial, and oil/gas industries. He has years of experience as a software developer and freelance security consultant. With his software development background, Mr. King is able to quickly automate processes to achieve objectives faster. Additionally, as a security consultant, Mr. King has done extensive penetration testing to evaluate vulnerabilities of clients as well as remediation assistance. Mr. King graduated from Southern Methodist University with his Masters of Science in Security Engineering, Bachelor of Science in Computer Science, and Bachelor of Science in Mathematics. During his time at Southern Methodist University, he immersed himself in activities including working as a research assistant in cloud security for the Chair of the Computer Science Security Department, guest lecturer of multiple undergraduate security computer science classes, and co-founder of Security Special Interest Group (SSIG). As the leader of SSIG and the Collegiate Cyber Defense Competition (CCDC) team, Mr. King led his group to compete and win in multiple CCDC competitions as well as other local Capture the Flag (CTF) competitions.
Christopher Truncer is a Senior Consultant within MANDIANT, the Professional Services Division, of FireEye. Mr. Truncer's specialty lies with performing red team assessments and penetration tests. Mr. Truncer's experience lies within a large number of industries, such as Federal and State government, critical infrastructure, and many locations within the private industry. Christopher Truncer also is a large contributor to Open Source Software, many of which are his own projects. Mr. Truncer has the ability to modify, or develop new tools which help carry out the tasks he needs for every assessment. Having the ability to create custom tools ad-hoc allows Mr. Truncer the flexibility to be successful in any environment that he operates in. Prior to joining MANDIANT, Mr. Truncer was a Red Team Lead where he directed all steps of red team assessments for web applications, network level tests, and social engineering engagements. Mr. Truncer is an active member of the security industry by participating in various capture the flag events and speaking at industry conferences.