Services & Expertise

Eric Smith is the founder of Cyber Stoics and personally leads all engagements.

Eric’s passion for technology was ignited when he received a Texas Instruments home computer from his parents for Christmas in 1985. Since then, he’s never been very far from a keyboard. Eric’s professional career began in the early ‘90s and has progressed through several organizations and various technical and operational roles, ranging from helpdesk and user support to network engineering and information security. Throughout his 30+ years of professional experience, Eric has accumulated numerous industry certifications, including Certified Information Security Professional (CISSP), RedHat Linux Certified Engineer, Microsoft Certified System Engineer, Salesforce Certified Developer, among others. In addition to his training and experience, Eric is very humbled and honored to hold a Defcon black badge, a highly respected accomplishment in the information security community. A Defcon black badge (so called because it is an all-black version of that year’s conference badge) is awarded to each winner of the annual “Hack the Hacker” contest at Defcon, the world’s largest annual security conference. Defcon black badge holders enjoy free admission to the conference for life.

Outside of work, Eric enjoys spending time with his two college-age kids and his millions of honeybees. Eric is an Eastern Apicultural Society (EAS) Certified Master Beekeeper and president of the Beekeepers of the Susquehanna Valley.

Defcon 13 Black Badge

Our Services

  • Vulnerability Assessments

    We use the same tools, techniques, and procedures as real-world threat actors to identify vulnerabilities in your technical environment.

  • Security Architecture and Design

    The best way to build a secure system is to design it to be secure from day one. We can help you to incorporate secure design principles ino any upcoming deployments.

  • Incident Response

    Does everyone know what to do in the event of a cybersecurity incident? We’ll help your team design, test, and deploy a robust incdent response plan.

  • Risk Management

    We apply a risk mangement philosophy to our work with clients. A vulnerability rating score is meaningless if not considered in your organization’s unique context.

  • Virtual CISO Services

    Need a part time Chief Information Security Officer to help build, guide, or advise your security team? We can help.

  • Security Analytics and Threat Intelligence

    Want to know if the security of a product or service is up to your standards? We regularly perform indepenent evaluations against cloud and software providers to identify gaps between their offerings and your policy requirements.

  • Secure Cloud Computing

    Using services like Google, M365, AWS, Azure, or Salesforce? Security of your data in these platforms is still largely your responsibility. We can help.

  • Security Awareness and Training

    Do your users know what to do when they enounter a cyber security threat? Do they know how to identify one? We’ll help you to build an effective training program that isn’t seem as an annual chore by your staff.

  • Continuous Monitoring

    While prevention of threats is imporant, detecton is critical. We’ll help you to find a continuous monitoring solution that fits your needs. We are not a solutions reseller and will work with you to find the best product or solution for your organization.

  • Compliance and Regulatory Knowledge

    Many of our clients are inundated with questionnaires asking about their PCI, HIPAA, or SOX compliance, or are being asked detailed cybersecurity questions by auditors or insurance. We don’t believe in checkbox compliance, rather we’ll help you build an information security governance program that makes compliance obligations a breeze.

Meet the Team

  • Eric Smith

    Founder, Ethical Hacker & CISO

  • Owen Smith

    Ethical Hacker & CMO

  • Amelia Smith

    Ethical Hacker & COO

  • Biscuit

    Certified Therapy Dog