M. Kurt Alaybeyoglu

M. KURT ALAYBEYOGLU

 

Areas of Focus

• Offensive and defensive cyberspace operations
• Enterprise threat modeling
• Vulnerability management, capability pairing, risk assessment and management

Recent Engagements:

• Designed and serves as technical lead for TCG’s Cyber Risk Diagnostic offering based on MITRE’s ATT&CK framework encompassing: threat modeling; threat tactics, techniques and procedures (TTP) criticality assessment; controls assurance testing; and remediation. This repeatable process has been performed on: financial institutions, a leading global financial technology vendor, Fortune 500 retailers and more.

• Coordinated and performed industrial control system (ICS) risk assessments on major mining company, high-speed rail project, and major consumer packaged goods company

• Engaged in C-suite and board-level cyber exercises that stress-test enterprise response to a disruptive cyber event for major financial institutions, manufacturers, and other critical infrastructure

M. Kurt Alaybeyoglu is a Director at The Chertoff Group, where he utilizes his broad cybersecurity expertise to help Fortune 500 clients manage risk. Kurt works with clients to strengthen cyber governance, drive control transparency and prioritize security investments. He assists operational personnel and senior decision-makers to effectively mitigate and communicate cyber risk. He has led high-profile cybersecurity engagements in energy, financial services, retail, health care, and technology sectors.

Prior to joining The Chertoff Group, Kurt served as a Cyberwarfare Officer in the United States Air Force, commanding large teams, as well as small 24/7 reactionary teams. In this capacity, Kurt personally commanded over 120 Counter-ISIL cyber missions, providing critical support to special forces units on the ground in multiple areas of responsibility. He has also participated in some of the largest military planning exercises the Department of Defense hosts, integrating cyber planning and effects with Air, Land, and Naval domains. Prior to that, he also provided critical Computer Network Defense as well as plans and programs management for Nuclear Command and Control platforms as well as communications platforms supporting the President, Vice President, and top-level Department of Defense (DoD) officials while stationed at Joint Base Andrews.

Certifications:

• CompTIA Security+ 2011-2014
• Cisco Certified Entry Network Technician (CCENT) September 1 2012-September 31 2015
• EC-Council Certified Ethical Hacker (CEH) March 1 2013-March 31 2016
• EC-Council Certified Computer Hacking Forensic Investigator (CHFI) June 1 2016-May 31 2019
• SANS GIAC G2700 Certified ISO-27000 Specialist August 23 2013-August 31 2017 (No Longer Offered)
• SANS GIAC Certified Incident Handler (GCIH) February 28 2019-February 28 2022
• ANRC – Basic Malware Analyst March 21, 2016
• SANS GIAC Certified Penetration Tester (GPEN) July 31 2020-July 31 2023

Education

• M.S., Information Assurance & Cyber Security Western Governors University, Salt Lake City, UT
• B.S., History United States Air Force Academy, Colorado Springs, CO

Recent Publications, Interviews and Speaking Engagements

• AttackIQ Podcast series Episode 2, “How to Achieve Cybersecurity Effectiveness,” June 2020, https://youtu.be/M8eIJXNs6tM
• Security Boulevard, “Job Security: Certain Industries More Susceptible to Phishing”, August 2019, https://securityboulevard.com/2019/08/job-security-certain-industries-more-susceptible-to-phishing/
• Kurt has also been frequently interviewed and appeared on Chertoff Group podcasts: https://www.chertoffgroup.com/podcasts