Tyler Shields is a Senior Researcher for the CA Veracode Research Lab whose responsibilities include understanding and examining interesting and relevant security and attack methods for integration into the CA Veracode product offerings. He also keeps track of new developments from other computer science and information security researchers to ensure that CA Veracode technologies are always kept in line with the most recent security advancements.
Mr. Shields has been involved in technology for as long as he can remember with a career in information security dating back to the mid 1990s. Most recently he was a Principal Security Consultant on the Symantec Advisory Services team. While on this team he conducted hundreds of security assessments covering a wide array of technologies and clients. While specialized in application security, Mr. Shields also has lead security engagements in the areas of wireless security, network and product penetration testing, secure development lifecycle design, secure application architecture review, and forensics and incident response. While at Symantec, Mr. Shields also led the Symantec Vulnerability Research team. This team was tasked with the responsible disclosure of vulnerabilities discovered by the Symantec employees in the course of their daily work. The goal of the team was to interface with both the vendor and the vulnerability finder to work towards a mutual timeline of repair and information disclosure.
Prior to Symantec, Mr. Shields was employed by the boutique consulting firm @stake as a Principal Security Consultant conducting security assessments for Fortune 500 companies, major financial institutions, public and private universities, and the highest levels of the United States government. During his tenure with @stake Mr. Shields co-led the @stake Attack and Penetration Center of Excellence assisting in the creation and updating of methodologies and new attack vectors as they were discovered.
Before @stake Mr. Shields has served as an incident response and forensics analyst for the United States government, network and security architect and engineer at a privately held infrastructure company, as well as founding and running a successful information security consulting company. Mr. Shields has presented at major industry venues including the H.O.P.E. 2002 (H2K2) security conference in New York City and released multiple open source security assessment utilities. Mr. Shields has also discovered and published a number of security advisories.
Mr. Shields earned his Bachelor of Science degree in Information Technology from Rochester Institute of Technology in Rochester, New York along with a Master of Science degree in Computer Science/Information Security from James Madison University in Harrisonburg Virginia.