GIAC Continuous Monitoring Certification (GMON)
Issued May 2025 | Expires May 2029
Validates continuous diagnostics, defensible monitoring architectures, and proactive threat hunting across enterprise telemetry.
Credential details on CredlyJoseph Miller
Founder & CEO, Socket23
GIAC-certified security engineer focused on regulated industries. Experienced in translating compliance frameworks into resilient, operational security programs while leading incident response, infrastructure modernization, and AI-driven automation initiatives.
Professional Certifications
Credly-verified GIAC, AWS, Cisco, and CompTIA credentials spanning continuous monitoring, automation, penetration testing, and workforce readiness.
GIAC Cloud Security Automation Certification (GCSA)
Issued Feb 2025 | Expires May 2029
Demonstrates automation of cloud guardrails with infrastructure as code, policy enforcement, and continuous compliance in AWS and Azure.
Credential details on CredlyGIAC Machine Learning Engineer (GMLE)
Issued Jul 2024 | Expires May 2029
Covers ML safety, model governance, and automation pipelines that operationalize AI for detection and response workflows.
Credential details on CredlyGIAC Certified Intrusion Analyst (GCIA)
Issued Mar 2024 | Expires May 2029
Deep technical expertise in packet forensics, protocol analysis, and building detection logic with Zeek, Suricata, and Snort.
Credential details on CredlyGIAC Python Coder (GPYC)
Issued Jul 2023 | Expires May 2029
Highlights Python development for DFIR automation, SOC orchestration, and integrating APIs to streamline security tooling.
Credential details on CredlyGIAC Certified Incident Handler (GCIH)
Issued Apr 2023 | Expires May 2029
Validates incident triage, adversary containment, malware analysis, and coordinated response leadership under pressure.
Credential details on CredlyGIAC Security Essentials Certification (GSEC)
Issued Jan 2023 | Expires May 2029
Demonstrates enterprise security fundamentals, risk-driven control design, and hands-on defense across Windows and Linux estates.
Credential details on CredlyGIAC Information Security Fundamentals (GISF)
Issued Oct 2022 | Expires May 2029
Establishes information assurance principles, governance alignment, and clear communication of cyber risk to stakeholders.
Credential details on CredlyGIAC Advisory Board
Issued Aug 2022 | Expires May 2029
Invitation-only board membership advising GIAC on certification roadmaps, exam quality, and practitioner needs.
Credential details on CredlyGIAC Foundational Cybersecurity Technologies (GFACT)
Issued Aug 2022 | Expires May 2029
Covers computing, networking, virtualization, and security operations fundamentals aligned to modern SOC expectations.
Credential details on CredlyAWS Academy Graduate - Cloud Foundations
Issued Jun 2021
Completed AWS Academy curriculum covering global infrastructure, core services, security controls, and cost management fundamentals.
Credential details on CredlyCCNA: Enterprise Networking, Security, and Automation
Issued Mar 2021
Cisco coursework in enterprise routing, switching, automation, and policy-driven security for modern network architectures.
Credential details on CredlyCCNA: Switching, Routing, and Wireless Essentials
Issued Dec 2020
Validated intermediate networking, wireless design, and security concepts supporting campus and branch deployments.
Credential details on CredlyNational Career Readiness Certificate Platinum
Issued Jun 2019
ACT credential confirming top percentile problem solving, applied math, and workplace communication skills.
Credential details on CredlyCompTIA PenTest+ ce Certification
Issued Jun 2022 | Expires Jun 2025
Confirms adversary emulation, vulnerability assessment, exploitation methodology, and structured reporting.
Credential details on CredlyProfessional Experience
Associate Sales Engineer
RightWorks • Feb 2025 – Present
- Designed cloud security architectures aligned with IRS Publication 4557 and WISP requirements for tax practices.
- Led pre-sales security assessments and post-sales onboarding for platform deployments.
- Delivered tooling rollouts including CrowdStrike, Kaseya Datto, and Acronis across distributed environments.
- Coordinated project tracking and customer success metrics through Salesforce.
Apprentice Threat Handler
SANS Internet Storm Center • May 2024 – Oct 2024
- Monitored DShield honeypot telemetry and IDS alerts to identify emerging threats.
- Built and tuned detection rules using Zeek, Suricata, and the SiLK toolkit.
- Developed automation that enriched incidents with external intelligence and custom GPT workflows.
- Contributed analytical briefings to the daily Stormcast for the security community.
Cloud Service Technician I & II
RightWorks • Apr 2023 – Jan 2025
- Provided frontline support for networks, Windows domains, and line-of-business applications.
- Maintained Active Directory, MFP deployments, and accounting software for multi-site firms.
- Achieved performance ratings above 95 percent and customer satisfaction above 90 percent.
- Supported Thomson Reuters, Wolters Kluwer, Intuit, and Microsoft 365 ecosystems.
Security Consultant
SpareEye Corp • Sep 2022 – Apr 2023
- Negotiated ransomware incidents, achieving significant reductions in demanded payments.
- Executed web application assessments using Nessus, OpenVAS, and custom tooling.
- Advised clients on digital forensics engagements and incident containment strategies.
Education
Bachelor of Applied Computer Science, Cybersecurity
SANS Technology Institute
Coursework: Penetration Testing, Cloud Security, Network Forensics, Data Security and Compliance, Network Security Monitoring, SIEM Operations, Incident Detection, Threat Intelligence, Cyber Defense Strategies.
Associate of Arts and Sciences, Computer and Information Systems Security
Mt. Hood Community College
Focus: Offensive security operations, vulnerability discovery, network design, and security analysis.
Activities: National Cyber League competitor.
Skills & Tooling
Cybersecurity
- Penetration testing and adversary emulation
- SIEM engineering with ELK, Splunk, and Security Onion
- Threat hunting, intelligence analysis, and malware triage
- Vulnerability scanning with Nessus and OpenVAS
- Web application security using Burp Suite and OWASP ZAP
Networking & Infrastructure
- Cisco routing and switching, Palo Alto firewalls, pfSense
- IDS/IPS deployment with Suricata, Snort, and Zeek
- Network forensics using Wireshark and the SiLK suite
- Secure remote access, VPN design, and zero trust segmentation
Cloud & Automation
- AWS Security Hub, Config, CloudTrail, and GuardDuty
- Microsoft Azure Security Center and Sentinel
- Docker, Kubernetes, and infrastructure as code with Terraform
- Python, Bash, PowerShell, and GitHub Actions automation
Governance & Compliance
- IRS Publication 4557 and FTC Safeguards Rule
- SOC 2 Type II readiness and evidence management
- PCI DSS and HIPAA Security Rule implementations
- GDPR, ISO 27001, and NIST Cybersecurity Framework alignment
AI & LLM Security
- Custom GPT development and policy guardrails
- Model Context Protocol (MCP) integrations
- Local model deployment with Ollama, LM Studio, and Open-WebUI
- Agent-based automation for SOC and compliance workflows
Achievements & Recognition
National Cyber League
Competed in multi-domain cybersecurity challenges covering cryptography, network traffic analysis, web exploitation, and OSINT research.
Black Hat USA Scholarship
Selected as a scholarship recipient to attend Black Hat USA, participating in advanced research briefings and deep-dive training.
SANS Technology Institute
Progressing through the Bachelor of Applied Computer Science in Cybersecurity with a practitioner-focused curriculum backed by GIAC certifications.
Professional Performance
Consistently earned top performance reviews, maintained 90 percent customer satisfaction, and led ransomware negotiations delivering 60 percent average reductions.
Impact Highlights
8+
GIAC certifications held across leadership and our extended bench.
100%
Clients achieving compliance certification on the first attempt.
60%
Average reduction in ransomware demands negotiated by Socket23.
Collaborate With Socket23
Bring Socket23 into your next security initiative. We tailor engagements around compliance milestones, incident response, and infrastructure hardening.