Matthew Gleason is a Senior Security Associate at Bishop Fox, where he focuses on application security penetration testing, source code review, and network penetration testing. Experience includes evaluating applications for a Fortune 500 financial services client. Matthew identified a vulnerability that granted access to restricted and monitored SEC trading compliance information that would have resulted in brand damage if leaked or exploited by an attacker. He also conducted an application penetration test for a Fortune 1000 retailer that led to the discovery of a vulnerability allowing an attacker to log into the client's main website as any user and steal their financial information, which if exploited could have resulted in financial harm and brand damage. In addition, Matt has performed network penetration tests for large conglomerates in which he located external entry vectors, methods to escape the external DMZ, and escalation paths that could have resulted in malicious takeover of the entire enterprise. Prior to joining Bishop Fox, Matthew worked as a software engineer for Boeing, where his work involved validation testing for the AH-64E attack helicopter. He is also an active researcher and has recently presented the talk "The Active Directory Kill Chain: Is Your Company at Risk?" at industry conferences in Phoenix. Matthew holds a Master of Science from Arizona State University in Computer Science. He also has earned a Bachelor of Science in Economics and a Bachelor of Science in Mathematics from Arizona State University.
