John leverages his experience to improve users' capabilities in SecOps, Hunting and Detection Engineering. He blogs on hunting and secops and has built APT threat emulations for blue team CTF events. John has presented and led workshops at FIRST, BSides, SANS Summits, WiCyS and DefCon PHV.