Skip to main content

About the Authors

Joe Vest

Joe Vest

Twitter: @joevest

LinkedIn: joe-vest

I have spent over 20 years in cybersecurity, with the last 15 years focused on offensive security operations . My philosophy is simple: "The threat gets a vote". If you build a defense without considering how an actual adversary operates, you are letting the threat make your security decisions for you.

I am not interested in "findings-based" testing that just grows a backlog of vulnerabilities. I focus on the Threat Perspective—a strategic shift toward understanding adversary behavior to drive measurable disruption.

What I’ve Done

  • Authorship: I wrote the foundational text Red Team Development and Operations and developed the original SANS Red Team course (SEC564).
  • Foundership: I founded MINIS LLC, a specialized offensive security consultancy, and led it through its acquisition by SpecterOps.
  • Platform Strategy: I led the operational and technical strategy for Cobalt Strike after it was acquired.
  • Scale: Currently, a Principal Security Engineer at Amazon.

My Approach

I am a hands-on technical lead who prefers solving systemic issues over documenting theoretical flaws. I relay complex technical concepts in a way that is easy for engineers to consume and understand and focus on what matters.

  • Adversary Disruption: Moving past "simulation" to focus on whether a system can actually detect and stop a specific threat before it has an impact.
  • Bridging the Gap: Working between offensive and defensive teams to turn technical insights into direct improvements in visibility and response.
  • Focusing on What Matters: Pruning away the noise to concentrate security efforts where they will actually impact a threat's ability to succeed.

I am here to disrupt the threat’s ability to succeed, not just document it.

James Tubberville

Twitter: @minis_io

James Tubberville has held a number roles ranging from system and network administrator to Chief Information Security Officer during a 22+ year career. In addition to owning a successful security consulting company, James has built and managed security operations and testing programs for two Fortune 10 companies and provided executive level security and consulting services for several others in the Fortune 100 list. James is a former member and lead for a NSA certified Red Team and has extensive experience in threat intelligence based security operations and testing, analysis, and mitigation across a variety of commercial and government customers. James has also authored a book "Red Team Development and Operations", developed the original SANS SEC 564 "Red Team Operations and Threat Emulation" course, and achieved numerous management, information technology, and security related certifications and awards.--