Craig Smith

Sr. Global Director, Compliance at Kyriba

Florida, United States
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Craig Smith is a senior compliance and security leader with over a decade of experience building global data protection, risk, compliance, and privacy programs, currently leading Global Compliance at Kyriba. He has architected and managed ISO 27001, SOC 1/2, GDPR, SWIFT and FedRAMP programs and scaled teams for both customer-facing and internal application security testing. A longtime technologist who began coding on a Tandy TRS-80, he blends hands-on security research—authoring IoT reports, producing the IoT This Week podcast, and creating the firmwalker firmware-audit script—with executive program delivery. Craig is skilled at working directly with manufacturers to remediate IoT vulnerabilities pre- and post-production and mentoring diverse teams to ship secure products. He combines practical tooling and open-source contributions with policy, privacy, and audit-readiness to turn complex compliance requirements into operational controls.
code10 years of coding experience
bookBSBA, Computer Information Systems, BSBA, Computer Information Systems at Western Carolina University
github-logo-circle

Github Skills (18)

scripting10
grepl10
firmware10
audit10
bash10
grep10
code-analysis10
script10
code-auditing10
audit-logging10
sh10
shell10
auditing10
audit-trail10
filesystem9

Programming languages (2)

ShellPython

Github contributions (5)

github-logo-circle
craigz28/firmwalker

Feb 2016 - Sep 2020

Script for searching the extracted firmware file system for goodies!
Role in this project:
userSecurity Engineer
Contributions:85 commits, 9 PRs, 84 pushes in 4 years 8 months
Contributions summary:Craig primarily contributed to a script named `firmwalker.sh` designed for examining firmware file systems. Their work involved iteratively enhancing the script by adding new features and search criteria. These enhancements included searching for specific file types like configuration files, SSL-related files, shell scripts, and patterns like passwords and admin credentials, indicating a focus on security auditing and vulnerability assessment. Subsequent updates refined the output and added search functionalities for SSH keys, IP addresses, and emails, along with implementing a static code analysis tool.
file-systemfirmwaregoodiessearching
craigz28/wiki

Sep 2015 - Feb 2016

Contributions:39 commits, 38 pushes, 1 branch in 5 months
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Craig Smith - Sr. Global Director, Compliance at Kyriba