Overview
This page includes biographical data sheets for key personnel in Volkis.
Matthew Strahan - Managing Director
13 years of dedicated, cyber security experience in designing security strategies, security architecture, implementing cyber security frameworks and standards, developing policy, procedure, standards, and processes, technology selection and implementation, incident response, and penetration testing. Carries industry qualifications including CISSP, CISM, CISA and CGEIT, holds a Bachelor of Computer Science and currently undertaking a Master of Business Administration.
6 years of team leadership and management experience as the leader of operations and principal consultant, including leading internal IT, including support, IT transformations and an ISO27001 implementation. Led the implementation of internal systems and process improvement.
Available on the following social media sites:
Employment history
| Company | Role | From | To |
|---|---|---|---|
| Volkis | Managing Director | 2019 | Present |
| Content Security | Senior Security Strategist | 2019 | 2019 |
| Content Security | Operations Manager | 2017 | 2019 |
| Content Security | Principal Consultant | 2012 | 2017 |
| Securus Global | Security Consultant | 2007 | 2011 |
Education
| Institution | Degree | Obtained |
|---|---|---|
| University of NSW | BSc (Computer Science) | 2007 |
| Macquarie University | MBA | Ongoing |
Certifications
- Certified Information Security Auditor (CISA)
- Certified Information Security Manager (CISM)
- Certified in Governance of Enterprise IT (CGEIT)
- Certified Ethical Hacker (CEH)
- Certified Information Systems Security Professional (CISSP)
Key skills
- Experienced in business and technical security
- Penetration testing, including internal, external, wireless, web app, desktop app
- Business security, including security architecture, governance, management, policy, procedure, and framework
- Credit card security, including PCI DSS
- General IT, including transformation, governance, programming, software engineering Presented at industry bodies such as CPA Forum, Power Housing Risk and CFO meetings, LGASA
Alexei Doudkine - Offensive Director
Penetration tester, team leader, and security consultant with a decade of experience in building security systems and providing high level security consultancy. Worked as lead of the Threat Ops team, providing penetration testing, security consulting, IR and security training at Content Security.
Built the Red Team function at Content Security, providing advanced security threat style engagements. This included building infrastructure required for command and control for such engagements.
Built the “Hands-on Hacking” security education course, teaching members of the NSW Police and Department of Justice around hacking techniques.
Created hacking tools for security professionals including RidRelay.
Available on the following social media sites:
Employment history
| Company | Role | From | To |
|---|---|---|---|
| Volkis | Offensive Director | 2019 | Present |
| Content Security | Principal Consultant | 2017 | 2019 |
| Content Security | Security Consultant | 2013 | 2017 |
| Pacom Systems | Software Engineer | 2010 | 2013 |
Education
| Institution | Degree | Obtained |
|---|---|---|
| University of NSW | BSc (Computer Science) | 2010 |
Certification
- Offensive Security Certified Professional (OSCP)
- Offensive Security Experienced Penetration Tester (OSEP)
- CREST Registered Tester (CRT)
- Certified Information Systems Security Professional (CISSP)
- GIAC Certified Forensic Examiner (GCFE)
- Payment Card Industry - Qualified Security Assessor (PCI-QSA)
Key skills
- Red team, Penetration testing, including internal, external, wireless, web app, mobile app
- Social engineering and physical security, including manipulating security badges and access control systems
- Presenting, including creating full security education courses
- Infrastructure development and systems administration
- Security design and architecture
- Business security, including payment card industry, risk assessments
Billy Cody - Senior Security Consultant
Breaker of things. Drinker of coffee. Walker of beaches. 4 years of dedicated penetration testing experience across various industries, including finance, government, critical industry, and others. Proud discoverer of CVE-2020-14595.
One of the co-organisers of SecTalks BNE, and heavily involved the Brisbane InfoSec community. Regularly attends InfoSec meetups and conferences.
Loves to build PoCs in Python, and cries whenever he has to perform a web application penetration test with a WAF turned on.
Available on the following social media site:
Employment history
| Company | Role | From | To |
|---|---|---|---|
| Volkis | Senior Security Consultant | 2020 | Present |
| Context Information Security | Assurance Consultant | 2019 | 2020 |
| Yell IT | Security Consultant | 2018 | 2019 |
| My Computer Support | IT Engineer | 2018 | 2018 |
Education
| Institution | Degree | Obtained |
|---|---|---|
| University of Southern Queensland | BITC (Applied Computer Science/Networking and Security) | 2018 |
Certifications
- Offensive Security Web Expert (OSWE)
- Offensive Security Certified Expert (OSCE)
- Offensive Security Certified Professional (OSCP)
- Offensive Security Wireless Professional (OSWP)
- CREST Registered Penetration Tester (CRT Pen)
Key skills
- Penetration testing, including internal, external, wireless, web app, desktop app
- Heavily involved in Brisbane InfoSec community
Joshua Rynan - Senior Security Consultant
A over decade of IT security experience, half of which being dedicated to penetration testing. Expertise in setting up and running enterprise vulnerability management programs. Experience running an associate penetration tester program, upskilling new pentesters from various degrees of industry experience. Spends too much time thinking about how to write better reports.
Available on the following social media site:
Employment history
| Company | Role | From | To |
|---|---|---|---|
| Volkis | Senior Security Consultant | 2021 | Present |
| CyberCX | Penetration Tester | 2019 | 2021 |
| Content Security | Penetration Tester | 2016 | 2019 |
| IBM | Vulnerability Scan Analyst | 2011 | 2015 |
Education
| Institution | Degree | Obtained |
|---|---|---|
| Federation University | BITC (Professional Practice) | 2010 |
Certifications
- Offensive Security Certified Professional (OSCP)
- Spectre Ops Adversary Tactics: Red Team Operations (AT:RTO)
Key skills
- Penetration testing, including internal, external, wireless, web app and social engineering.
- Making memes in MS Paint.
Dilesh Mistry
With over a decade of IT security experience, Dilesh is always on the path of improvement and brings fresh insights to problems old and new. Dilesh is an original graph thinker and considers problems to be multi-dimensional when needed. Dilesh loves being able to teach and learn from others and is often found being an active member of the Australian InfoSec community. When not thinking obsessively about systems and computers he is often on the couch immersing himself in tea and incense.
Available on the following social media site:
Employment history
| Company | Role | From | To |
|---|---|---|---|
| Volkis | Senior Security Consultant | 2021 | Present |
| Bugcrowd | Senior Security Consultant | 2020 | 2021 |
| CyberCX | Senior Security Consultant | 2020 | 2020 |
| Pure.Security | Security Consultant | 2020 | 2020 |
| Content Security | Penetration Tester | 2017 | 2020 |
| Hacklabs | Penetration Tester | 2016 | 2017 |
| NEC Australia | Information Security Analyst | 2016 | 2016 |
Education
| Institution | Degree | Obtained |
|---|---|---|
| University of Wollongong | Bachelor of Computer Science | 2015 |
Certifications
- Offensive Security Certified Professional (OSCP)
Key skills
- Penetration testing, including internal, external, wireless, web app and social engineering.
- Systems Thinking