Profile
Jake Williams (aka MalwareJake) is a seasoned security researcher with decades of experience in technology and security. Jake is a former startup founder, former senior SANS instructor and course author, and an intelligence community and military veteran. He loves forensics, incident response, cyber threat intelligence and offensive methodologies. Today, Jake is an IANS faculty member, an independent security consultant, and is performing security-focused research to benefit the broader community. He has had the honor of twice winning the DoD Cyber Crime Center (DC3) annual digital forensics challenge. You may also know Jake from one of his many conference talks, webcasts, media appearances or his postings about cybersecurity.
Expertise
- Incident Response
- Digital Forensics
- Threat Modeling
- Penetration Testing
- Security Architecture
Qualifications
Achievements & Contributions
- Two-Time Winner of the Annual DC3 Forensics Challenge
- Speaker at information security conferences such as Black Hat, DEF CON, ShmooCon, RSA, and DC3
- Designated a Master Computer Network Exploitation (CNE) Operator by the NSA
- Former Vulnerability Analyst at US Department of Defense
- Former Senior Systems Engineer at Dell Services
Certifications & Credentials
- MSIA, Information Assurance –Capitol College
- GSE, GSNA, GCFE, GREM, GCWN, GCIA, GCIH, GPEN, GCFA, GXPN, GSEC –GIAC
Upcoming Events
View More
May 26 2026
2026 Q2 Symposium: Agentic AI Threat Modeling: How to Use It to Design Guardrails for Secure Use of Agentic AI Applications
Specific agentic AI threat models have been developed to address the unique risks and challenges that exist due to the autonomy, continuous learning and interaction of agentic AI systems. In this virtual symposium, delve into how to threat model agentic AI applications, the differences between industry-leading threat models/frameworks and how to apply them to your environment.
May 28 2026
2026 IANS Service Spotlight: AI Risk Assessments: Governing AI, Securing Agentic Systems, and Turning Experimentation into Something Defensible
Many organizations are moving quickly to adopt AI—often faster than their GRC teams can keep up. What started as pilot use cases or productivity experiments has rapidly evolved into production AI systems, embedded copilots, and autonomous or semi‑autonomous (agentic) workflows. Unfortunately, most organizations are discovering that traditional risk, security, and governance approaches were not designed for AI.