Cyber Security Analyst / Engineer

I am Justin Schofield, a Cybersecurity Analyst/Engineer located in Salt Lake City, UT, with expertise in vulnerability management, penetration testing, and identity/access management. I have experience securing medical device systems and IT environments, with proven ability to deliver measurable results ($2.16M annual impact at NarcBox).

justin@cybersecurity:~
justin@cybersecurity:~$
CERTIFICATIONS

Professional Certifications

CompTIA CASP+ (SecurityX)

CompTIA CASP+ (SecurityX)
CompTIA CySA+

CompTIA CySA+
CompTIA PenTest+

CompTIA PenTest+
CompTIA Security+

CompTIA Security+
CompTIA Network+

CompTIA Network+
Harvard CS50

Harvard CS50 (Computer Science Foundations)
PORTFOLIO

Tools

Burp Suite

I use Burp Suite to find vulnerabilities in websites by using their SQL injection, No-Redirect and SSRF tools. It's my primary tool for web application security testing and vulnerability assessment.

Cisco Packet Tracer

I use Cisco Packet Tracer for network simulation, configuration, and troubleshooting. It's essential for designing and testing network topologies, understanding routing protocols, and practicing network security configurations.

Metasploit

I use Metasploit for penetration testing, exploit development, and vulnerability validation. It's a powerful framework for testing security defenses and validating security controls.

Nmap

I use Nmap for network reconnaissance, port scanning, service detection, and OS fingerprinting. It's essential for identifying open ports, services, and potential entry points in network security assessments.

SIEM

I work with SIEM solutions for security information and event management, log analysis, threat detection, and incident response. This enables real-time monitoring and correlation of security events.

Wireshark

I use Wireshark for network protocol analysis, packet capture, and traffic analysis. It's invaluable for digital forensic investigations and understanding network communications during security assessments.

SKILLS

Technical Skills

Active Directory
AWS
Autopsy
Bash
Burp Suite
Docker
FTK Imager
IAM
Kali Linux
Linux
Metasploit
Nessus
Nmap
OpenVAS
PHP
PowerShell
Python
RBAC
ScoutSuite
SIEM
SQL
VMware
Windows Server
Wireshark
FRAMEWORKS

Frameworks / Regulations

NIST SP 800-53

Security & Privacy Controls

NIST Cybersecurity Framework (CSF)

Risk Management

NIST 800-61

Incident Response Lifecycle

MITRE ATT&CK

Threat Modeling & Adversary Emulation

SDLC / SAMM / BSIMM

Secure Software Development

GDPR & HIPAA

Privacy and Data Protection Compliance

PCI DSS 4.0

Payment Security Standards

ISO/IEC 27001

Information Security Management Systems

DEA Compliance

Narcotic Storage & Access Control

EXPERIENCES

Work Experience

2022

Medical Device Security Specialist

NarcBox, Salt Lake City, UT

Jul 2022 – Present

  • Assemble and produce DEA-compliant medical storage solutions focusing on access control, compliance, and security
  • Conducted precision assembly of hardware and performed quality assurance on software
  • Apply electrical troubleshooting, soldering, and biometric integration
  • Ensure adherence to strict security and industry standards for durability and functionality
  • Directly contributed to $2.16M in annual company revenue through consistent, high-volume secure device production
2025

LLM Reviewer

Handshake AI (Project Canary), Remote

Sep 2025 - Nov 2025

  • Served as a cybersecurity-focused AI Reviewer for Project Canary, an AI research initiative advancing multimodal reasoning and secure model behavior
  • Evaluated complex text and image datasets to identify vulnerabilities in reasoning, data labeling, and system reliability
  • Contributed to strengthening large language model performance and trustworthiness
2023

Sales Consultant

Curated, Remote

Feb 2023 - Feb 2025

  • Provided expert e-commerce consultation and tailored equipment recommendations to enhance customer experience
  • Utilized analytics and CRM tools to track client preferences, increasing retention and sales
  • Facilitated product demos and technical Q&A to support high-value outdoor and technical gear sales
2017

Gearhead (Sales & Customer Service Specialist)

Backcountry, West Valley City, UT

Nov 2017 - Jun 2022

  • Delivered personalized customer service and technical advice across outdoor gear categories
  • Managed product sales, returns, exchanges, and warranty claims while maintaining a 95% customer satisfaction rating
  • Provided feedback to product teams to improve specifications, user safety, and design efficiency
  • Supported seasonal training programs for new team members and contributed to digital catalog optimization
EXPERIENCES

Education

2025

Master of Science in Cybersecurity

Western Governors University

October 2025 - November 2025

  • Capstone: Orchestrated automated penetration testing using MCP server with Docker containers running Kali Linux toolkit (Nikto, Nmap, SQLMap), and leveraged Claude AI with MCP to generate comprehensive security assessment reports
  • Designed secure network architectures and assessed vulnerability in wireless and cloud environments
  • Developed secure software design practices using SDLC, Agile, and DevSecOps principles, enforcing defense in depth
  • Applied NIST RMF, ISO 27001, and GDPR frameworks to governance, risk, and compliance initiatives
2023 - 2025

Bachelor of Science in Cybersecurity

Franklin University, Columbus, OH

Completed 2025

  • Capstone: Implemented hierarchical Role-Based Access Control (RBAC) for a mid-sized org (150+ employees) using Active Directory security groups following least privilege principles
  • Conducted digital forensic investigations with FTK Imager, Autopsy, and Wireshark
  • Applied Python, Bash, PowerShell, and PHP/MySQL skills for code analysis and secure development
  • Gained experience with NIST standards, SDLC, MITRE, GDPR, AI automation, and cloud deployment models (AWS, Azure)
2017 - 2020

Associate Degree in Science

Salt Lake Community College

Completed 2020

  • Studied foundational science coursework including chemistry, biology, and physics
  • Completed general education requirements and prerequisite courses for advanced studies
CONTACT

Get in touch

LinkedIn Mail GitHub