Created: March 10, 2025 | Modified: March 10, 2025
Rick Henderson, M.Ed, Security+ (expired), BSc. Computing/Computer Science
- Visit my profile on LinkedIn
- Hidden Security on Substack - My notes and articles on cybersecurity.
Status: Currently unemployed and seeking opportunites
Thanks for taking the time to check my portfolio. If I have applied for a job with your company please let me know you stopped by.
Hi, I'm Rick.
I'm a information security expert looking for fulfilling roles in cybersecurity related to or including product security, malware analysis, threat intelligence, SOC analyst, or security consultant.
My most recent position was as a Security Response Analyst II in the Product Security Incident Reponse Team (PSIRT) at BlackBerry.
My position there ended with the sale of Cylance endpoint security assets to Arctic Wolf.
My primary duties included writing detections for CylanceOPTICS, responding to enquries about new and emerging threats and if they can be stopped by CylancePROTECT, as well as vulnerabilty management for all Cylance software products. My work included binary scanning for static analysis, and determining if BlackBerry products were susceptible to reported vulnerabilities. This included a large number of open source libraries as well as BlackBerry proprietary code.
Secured 2M+ endpoints world-wide across governments, banks, and other institutions. Product Security & Threat Intel, Malware Analysis.
I have investigated and written detections for Jupyter, BlackBasta loaders, Spyboy Terminator, Emotet, GootLoader, WhisperGate, HermeticWiper and many other malware samples protecting more than 2 million endpoints world-wide.
I have experience with threat research, staying up-to-date on new techniques, analyzing malware and maldocs to create detections, as well as scripting, coding in Python, C#, C/C++, and developing and testing detections.
On a daily basis I was writing Python scripts, reading malware write-ups, de-obfuscating malicious scripts in PowerShell, JavaScript, and Visual Basic. I would store scripts in Gitlab and search Github for malware and detections.
If you are interested in my cybersecurity work, you can also look at my repo of real-world cybersecurity information.
I also taught courses on computer concepts and applications and VBA Programming in Excel at Wilfrid Laurier University for over 20 years.
Note: You won't find a lot of activity outside of commits to my repos because I don't generally write software and when I do, I usually just put finished pieces directly into Github. That will be changing as I write more detection rules and other scripts to add to my portfolio.