Joff Thyer has been a Security Analyst with Black Hills Information Security (BHIS) since 2013. He has an associate in Computer Science, a B.S. in Mathematics, and an M.S. in Computer Science, as well as several certifications (listed below). The best part of a penetration test for Joff is developing sophisticated malware that tackles defensive solutions, ultimately delivering exciting wins for company engagements. He has extensive experience covering intrusion prevention/detection systems, infrastructure defense, vulnerability analysis, defense bypass, source code analysis, and exploit research. When Joff isn’t working or co-hosting the Security Weekly podcast, he enjoys making music and woodworking.


GXPN: GIAC Certified Exploit Researcher and Advanced Penetration Tester
GWAPT: GIAC Certified Web Application Penetration Tester
GPEN: GIAC Certified Penetration Tester
GCIA: GIAC Certified Intrusion Analyst
GCIA Gold: GIAC Covert Data Storage Channel using IP Headers certification