Meet the Pen Testers

Threats never stop. You don’t have to face them alone.

Duncan Woosley

Penetration Tester | OSCP, OSEP, GWAPT, CRTP, OSWP, GMOB (*pending), GOSI, GCIH, GSEC, PenTest+, Security+, AWS CSAA, GPYC, GSEC, GISF, GFACT

Duncan Woosley brings nearly five years of penetration testing experience in the field, specializing in network and cloud penetration testing, social engineering, and physical security consulting. With 17 certifications spanning penetration testing of networks, applications, cloud architectures, and physical security environments, Duncan combines technical expertise with a consultative approach to help organizations address vulnerabilities within the broader context of security management. Dedicated to responsiveness and education, Duncan helps organizations understand and address risks while strengthening their security posture.

 

Connect with Duncan on LinkedIn!

Ready to Start Your Penetration Test?

Meet the Pen Testers

Threats never stop. You don’t have to face them alone.

Sean Rosado

Team Lead, Penetration Tester | CISSP, GXPN, GPEN, GWAPT, GCIA, PCIP

Sean Rosado has worked in the offensive security space since 2012. Certified with CISSP, GXPN, GPEN, GWAPT, and GCIA, he has a plethora of knowledge to share with his clients and teammates. As Lead Penetration Tester, he is responsible for delivering projects for orgs who are attempting to meet security goals through penetration testing, vulnerability assessments, cloud security assessments, and other information security-related exercises. He also enjoys working to build the next generation of security practitioners. Before joining KirkpatrickPrice, Sean performed Computer Network Defense (CND) operations for the United States Department of Defense. In this role, he assisted with monitoring and threat detection for a wide range of networks leveraged by cleared defense contractors to support global network operations for the Department of Defense. This mix of offensive and defensive security experience allows him to provide broader support to our clients as they seek to achieve their security and compliance goals.

 

Connect with Sean on LinkedIn!

Ready to Start Your Penetration Test?

Meet the Pen Testers

Threats never stop. You don’t have to face them alone.

Kevin Cruz

Director, Penetration Testing | GSEC, GPEN, GWAPT, GMOB, AWS CCP

Kevin Cruz is responsible for delivering information security-related services with expertise in red team infrastructure, web application, mobile application, API, social engineering, and wireless penetration testing. Kevin has worked in information security since 2013.  He has a diverse background in IT ranging from a network and system administrator to an IT consultant. He holds the GSEC, GPEN, GWAPT, GMOB, AWS CCP certifications. Kevin has performed thousands of penetration tests on a wide variety of small businesses, banks, and Fortune 500 companies. He gets the most satisfaction by helping clients discover and remediate issues to ensure they are meeting their information security goals. 

 

Connect with Kevin on LinkedIn!

Ready to Start Your Penetration Test?

Meet the Pen Testers

Threats never stop. You don’t have to face them alone.

Oliver Conejo

Penetration Tester | SANS GPEN, GWAPT, GCPN, Security+, AWS CCP

Oliver Conejo is an experienced professional in the field of information security, specifically focused on delivering services related to web application, API, social engineering, and network penetration testing. With a background in IT that includes roles as a network and system administrator, as well as an IT consultant, Oliver has been working in the information security industry since 2016 and enjoys learning about exploits and the tools that hackers use to compromise systems. He holds a B.S. in Information Technology with a concentration in Information Security and holds the SANS GPEN, GWAPT, GCPN, and Security+ certifications, as well as the title of AWS Certified Cloud Practitioner.   

 

Connect with Oliver on LinkedIn!

Ready to Start Your Penetration Test?

Meet the Auditors

Audits are hard. Jim makes sure it’s worth it.

Jim Ryan

Information Security Auditor | CISSP, SSCP

Jim Ryan is an Information Security Auditor at KirkpatrickPrice. Jim has twenty-seven years of experience in designing and implementing information security programs including security control selection and implementation, risk assessments, cyber security technology implementations, writing policies and procedures, and improving security postures.

Connect with Jim on LinkedIn!

 

Fun Fact

Jim is a trekkie.

Ready to Start Your Audit?