tennisha

Tennisha Virginia Martin, MBA, PMP, GWAPT, GPEN, GCIH

MOTHER OF HACKERS

As an accomplished manager and solution-oriented leader, I have a proven track record of success in cyber security and test program management. My expertise includes information security project management, risk management, and ethical hacking, with experience in web app penetration testing, external network pentesting, and mobile application penetration testing and review. With a strong background in software development and testing, I am well-equipped to lead global teams that deliver results and exceed expectations. I was recognized as an innovator in cybersecurity by Microsoft's Legacy 2022 Project, and have served as the Executive Director and Chairwoman of the Board of an international 501c3 cybersecurity organization called BlackGirlsHack (BGH Foundation 85-3683902), raising over 800k in funding and establishing strategic partnerships with some of the industry's largest organizations. I was the 2022 Women's Society of Cyberjutsu Pentest Ninja of the year, and have a passion for educating, speaking, and mentoring the next generation of ethical hacking professionals. Through running an international hacking nonprofit, I am a leading voice in the Black & Women's communities for hackers. I am an AI/Cybersecurity Education researcher and speaker, award winning hacker, best-selling author, and the founder of Girls Hack Village and the cybersecurity conference SquadCon (squadcon.me).

Contact information

Email : tennisha@gmail.com

Website :tennisha.com

Phone :(202) 670-0127

Address :Fredericksburg, VA

Areas of Research

Artificial Intelligence

Casino / Gaming Security

Bias and Discrimination in AI and Machine Learning

History of Ransomware in Casino/Gaming Industry

Cybersecurity Training and Education

Careers in Penetration Testing

Nerosp{AI}cy: Improving Cybersecurity Training Programs with AI

Nonprofit Operations

Diversity, Equity and Inclusion

Brand Development

Transitioning into IT/Cybersecurity

Getting Started in Careers in IT and Cybersecurity

Offensive AI: The future of Red Teaming

Career Coaching

Book me for speaking events by emailing booking@tennisha.com

Speaking Engagements

Jean Bartik Computing Symposium Distinguished Speaker, Fireside Talk

Def Con, Blacks in Cyber Village DefCon Conference Talk

SANS PenTest HackFest Keynote Speaker

Women in Technology Fireside Chat Panelist

Cyversity (Formally ICMCP) Interviewing Best Practices

Day of Shecurity Lunch Panel Founder's Discussion: Being an Ally

Hack Red Con Hack Red Con Conference Talk

Cyversity Ethical Hacking with TryHackMe Workshop

Bishop Fox An Interview with Tennisha Martin, Founder of BlackGirlsHack - 2023 RSAC Livestream

RSAC How to Wow Submission Reviewers with a Stellar Proposal

RSAC BlackJack and Breaches: History of Ransomware on the Casino Industry

SecureWorld Miami Offensive AI: The Future of Red Teaming (Not recorded)

CyberjutsuCon AI Assisted Pentesting: The future of offensive security (Recorded on Whova App)

Published Works

LinkedIn Learning Cybersecurity Careers: Getting Started as a Penetration Tester

SECURING OUR FUTURE: Embracing the Resilience and Brilliance of Black Women in Cyber, Co-Author Here

Podcasts

Check out my new podcast AI Thoughts Online

Security in Color Security in Color

H4unt3d Hacker Haunted Hacker, Episode 29

Two Mics Up Two Mics Up, Episode 79

Bossibly Skills at Work

The Hacker Mind The Hacker Mind, Episode 18

Infosec Umplugged Talk with BlackGirlsHack

Tony Brisco Live Why Representation Matters

Cybrary Cybrary Breaking Barriers in Cyber

Envision Rise Podcast Envision Rise Podcast

Cyber5 by NISOS Episode 82 Cyber 5 Podcast

Her Hax Podcast DEF CON is cancelled

The Changemaking PodcastGirls Hack Village With Tennisha Martin | Black Hat 25 & DEF CON 30 Live Streaming Coverage With ITSPmagazine

The Changemaking PodcastGirls Hack Village At DEF CON 30 | Chats On The Road | A Conversation With Tennisha Martin And Rebekah Skeete | Black Hat 2022 And DEF CON 30 Las Vegas Event Coverage

Cause and Purpose Creating a Legacy for Female Hackers with Womens Society of Cyberjutsu CEO Mari Galloway and Black Girls Hack Founder Tennisha Martin

Bishop Fox RSA RSA 2023 Livestream

SANS Hacker's Guide to Mentorship: Fostering the Diverse Workforce of the Future | HackFest 2021

ITSP Magazine Podcast Blackjack and Breaches: History of Ransomware on the Casino Industry | RSA Conference 2024 Conference Coverage

SANS From Nothing to Something: Getting Experience When You Have No Experience

SANS How to Enhance Cybersecurity with DEI: Unleashing the Power of SquadCon

We're IN Tennisha Martin on bridging the cyber talent gap through diversity

Press

Tech Strong TV Tech Strong TV Interview

Adobe Adobe Blog

RSABlackjack and Breaches: History of Ransomware on the Casino Industry

MS Magazine Demystifying Cyber: Tennisha Martin, the Ethical Hacker Who Founded BlackGirlsHack

CISA NCSAM CISA NCSAM Promo

SquadCon Girls Hack Village Debuts SquadCon as Newest Addition to Hacker Summer Camp Lineup

MS Magazine Hackers, nation-states target US black community to commit fraud, sow division

SC MediaBlackGirlsHack Founder: ‘I’m Trying To Change What The Next Generation Of Cybersecurity Looks Like

Technical.ly19 tech education programs helping DC youth build the future

CSO8 associations that women in cybersecurity should follow or join

Adobe BlogElevating diversity in cybersecurity with BlackGirlsHack Founder, Tennisha Martin

Certifications

Graduate Level Certification, Information Security Management, Johns Hopkins University, Dec 2010

Project Management Professional (PMP) Cert# 1607804, May 2013

SANS GIAC Web Application Penetration Tester (GWAPT)

SANS GIAC Network Penetration Tester (GPEN)

ASTQB Certified Tester Advanced Level – FULL (CTAL-FULL)

ASTQB Certified Test Manager, Advanced Level (CTAL-TM)

ASTQB Certified Test Analyst, Advanced Level (CTAL-TA)

ASTQB Certified Technical Test Analyst, Advanced Level (CTAL-TTA)

ASTQB Certified Tester, Foundation Level (CTFL)

ITIL Foundation in IT Service Management(ITILv3)

COMPTIA Security+ (Sec+)

Microsoft Certified Professional, MCP (MS Vista)

Emergency Medical Technician, Expired

ISC2 Certified in Cybersecurity

Linux Foundation Certified IT Associate (LFCA)

Education

Doctor of Science in Cybersecurity, In Progress

Master of Business Administration, University of Maryland

Master of Science, Cybersecurity, Johns Hopkins University

Master of Science, Digital Forensics, University of Maryland

Masters of Science, Information and Telecommunications Systems for Business, Johns Hopkins University

Master of Science, Healthcare Policy and Management, Carnegie Mellon University

Bachelor of Science, Electrical and Computer Engineering, Carnegie Mellon University

Prof Experience

EXECUTIVE DIRECTOR, FOUNDER AND CHAIRMAN OF THE BOARD

BLACKGIRLSHACK/ 2020 - Present

    Leads, coordinates, communicates, integrates and is accountable for the overall success of the National Cybersecurity Nonprofit organization

    Manages team of 30 volunteers and executes decision-making authorities to establish vision and direction for organization’s cyber and cyber related resources and operations.

    Coordinates with strategic partners and other for-profit and not-for-profit organizations to ensure continued success of organizational mission

    Develops and maintains cybersecurity plans, strategy, and policy to support and align with organizational cybersecurity initiatives and regulatory compliance

    Conduct long-range, strategic planning efforts with internal and external partners in cyber activities.

MANAGER, DATA ANALYTICS

COMPANY REDACTED/ 2023 - Present

    Manages 3 million dollar budget and international team of 50 FTE across four business units at Fortune 100 company

    Develop and manage the UAT strategy and plan, ensuring that it aligns with project timelines, budget, and quality objectives.

    Monitor UAT progress and provide regular updates to project stakeholders, including status reports, metrics, and risk assessments.

    Develop and maintain UAT documentation, including UAT plans, test cases, and UAT summary reports.

    Continuously improve the UAT process by identifying areas for improvement and implementing best practices, such as automation, and continuous integration and delivery.

SECURITY CONSULTANT (PENTESTER)

COMPANY REDACTED/ 2021 - 2022

    Conducted penetration on mobile (Android), network and web applications for Fortune 100 clients

    Served as technical lead for projects performing customer readouts and client facing reporting

    Utilize security testing tools such as BurpSuite, Mimikatz, Ghidra, Metasploit, Nessus and Kali to assess security and information security risk or client infrastructures

    Execute penetration testing, red team and adversary engagements using commercially and freely available offensive security tools

SENIOR PRINCIPAL ERP CONSULTANT

CACI / 2013 - 2021

    Partnered with security executives and stakeholders to define and analyze organization risk tolerance and assess risk exposure

    Designed and implemented risk management framework including execute testing and develop a remediation plan to reduce defects

    Led team to implement security testing framework and conduct testing for software packages for financial and purchasing systems

    Leveraged ITIL, CMMI, ISO and NIST 800-53 cybersecurity frameworks to ensure system compliance

    Re-engineered business processes to adopt SDLC lifecycle best practices and maximize development with efficiency

    Led quarterly testing for financial controls and segregation of duties and verified controls were operating effectively, prepared evidentiary packages for financial and SOX audits and reduced audit risk exposure

    Wrote and published policies, operating procedures, and training materials for automation and testing and led delivery to cross disciplinary audience of 200 team members

FOUNDER & SECURITY TESTING EXPERT

IV&V Consulting, LLC / 2011-2013

    Designed and implemented security program including scope definition, identification of protocols, and protocol testing for the Defense Logistics Agency, and Oracle e-Business systems and solutions 

    Led cross-functional team including technical testers, system administrators, and functional testers to execute testing for security program on a weekly basis 

    Created security testing protocols and executed testing for all systems monthly, resulting in reduced defects 

    Implemented dashboard for continuous monitoring of system security and presented results quarterly to senior management