Liam Follin

I am a Principal Security Researcher at HSBC, and volunteer as the Technical Director for the charity Trust Leeds. My work as a researcher spans Azure, Office365, Web Applications, Desktop Applications, APIs, Social Engineering, Red Teaming, Internal and External Infrastructure, WiFi, Firewalls, Operational Technology, Embedded Systems, 

I am a Principal Security Researcher at HSBC, and volunteer as the Technical Director for the charity Trust Leeds. My work as a researcher spans Azure, Office365, Web Applications, Desktop Applications, APIs, Social Engineering, Red Teaming, Internal and External Infrastructure, WiFi, Firewalls, Operational Technology, Embedded Systems, and Z-Series Mainframes. I have also conducted research into, and subsequently spoken publicly about, areas including novel data exfiltration techniques via DNS and Cross-Site Scripting (XSS).

Whilst leading the application pentesting practice at KPMG UK, I improved the quality of the application security testing and developed the methodologies and training process for all security consultants at the business. I also managed the day to day of over contracts worth c.3 million pounds, and was the technical support for a further c1.5 million. 

During my time as a Dual (App and Inf) CHECK Team Leader, I successfully led a series of high profile engagements against public sector and military clients. These engagements have spanned from the initial client engagement, through scoping to delivery and post-engagement debriefing. I’ve also had the pleasure of mentoring a number of number of junior staff and apprentices. This mentoring has included training staff to pass exams, mentoring CHECK Team Members in their reporting and also taking apprentices from day 1 to qualified security consultants.

HSBC

(https://www.hsbc.com/)

Principal Security Researcher

Three Months

Trust Leeds

(https://www.trustleeds.org.uk/)

Technical Director

Volunteer

Give Years - Current Role

KPMG UK

(https://kpmg.com/uk)

Lead Pentester (Manager)

Two years

Application Pentesting Lead

Eighteen Months

Pentest People 

(https://www.pentestpeople.com/)

Senior Service Development 

HSBC

(https://www.hsbc.com/)

Principal Security Researcher

Three Months

Trust Leeds

(https://www.trustleeds.org.uk/)

Technical Director

Volunteer

Give Years - Current Role

KPMG UK

(https://kpmg.com/uk)

Lead Pentester (Manager)

Two years

Application Pentesting Lead

Eighteen Months

Pentest People 

(https://www.pentestpeople.com/)

Senior Service Development Consultant

One Year

Penetration Tester (Web Application, API, Azure, Office365, Social Engineering, Red Teaming and External Infrastructure) 

Three Years

Load Testing Lead Architect 

One Year

MS Cloud Security Lead 

One Year

Dark Web Monitoring Lead Architect

Eight Months

DarkInvader

(https://darkinvader.io/)

System Architect

Three Months

Service Development 

Four Months