Planning, Building and Implementing a security awareness program at your organization is only half the task. If you don,t test it, how do you know that it works? Yes you can hire a penetration test, but do you really want to put the safety of your organization solely in the hands of consultants? You can make a penetration test more effective by conducting your own testing of your program by yourself. In this talk students will learn to recon their own networks, look for vulnerabilities in new places, and test their users levels of security awareness.

For the last 20 years Matt has been a Network Administrator, Detective, and Litigation Support Professional at The Masters Law Firm, a Plaintiff,s Trial Law Firm in Charleston, West Virginia. Prior to that, Matt worked at the Kanawha County Sheriff,s Department, Before that Matt started his career as an IBM sub-contractor, installing IBM System 36,s and later AS/400,s and programming in RPGII. Matt is a board member of the Appalachian Institute of Digital Evidence. AIDE is a non-profit organization that provides research and training for digital evidence professionals including attorneys, judges, law enforcement officers and information security practitioners in the private sector. Matt is a co-founder the SecureWV/Hack3rCon convention and is a co-founder and treasure of the 304geeks, a West Virginia technology networking organization. Matt is an active member of the information security community and has spoken at a number of information security conferences including AIDE, Derbycon, Hach3rcon, and several Legal conferences. In addition, Matt is a licensed minister, and farmer in rural West Virginia.

Recorded at AIDE 2018