Mark Rosnick is a security consultant at K2 Integrity/Leviathan Security Group. With more than 25 years of experience defending computer systems, Mark focuses on offensive security, performing penetration tests across cloud infrastructure platforms, global data networks, web frameworks and applications, gaming systems, operating systems, and embedded hardware and firmware. He identifies and exploits low-level vulnerabilities in highly constrained embedded environments, including industrial controllers, human-machine interfaces, router and firewall appliances, and embedded medical.
Before joining K2 Integrity/Leviathan Security Group, Mark led the information security program at thePlatform, where he oversaw all aspects of the company’s privacy and security efforts. Prior to that, he worked at Widevine Technologies before and after its acquisition by Google, where he led information security initiatives as chief Unix systems engineer and network architect and helped port the Widevine Cypher platform to Borg, the precursor to Kubernetes.
Mark began his career as a consultant with Siemens, where he performed network assessments for Intel Research Labs’ PlanetLab project. Throughout his career, he has developed deep technical expertise in red team operations; network and application penetration testing; Unix, BSD, and Linux systems; and embedded and industrial control systems. Outside of client engagements, Mark participates as a member of the Red Cell for the Pros vs. Joes Capture the Flag exercise, helping train defenders to detect and respond to highly capable attackers.
Mark holds a B.A. from Fairhaven College. He has completed a wide range of professional certifications and technical training, including CompTIA A+ and Network+ certifications, SANS coursework in securing Unix systems, and digital forensics training. His advanced education includes Google’s Resident Hacker program, malware reverse engineering training, and incident command instruction within Google’s Site Reliability Engineering organization, as well as an ethical hacking certification from the University of Washington and an offensive security engineering certification.