David Fentz is a Principal Cyber Security Consultant with eight years of hands-on experience specializing in AWS-focused cloud security and offensive testing. Based in Des Moines, he blends deep technical fluency—from Terraform and secure infrastructure automation to cloud penetration techniques—with consultant-level client delivery at NetSPI and prior roles at Rhino Security Labs and nVisium. He’s an active DevOps/security contributor to the well-known CloudGoat project, improving Terraform scenario cleanup and detection-evasion tooling to make vulnerable-by-design AWS labs more realistic and maintainable. Known as an InfoSec nerd on GitHub, David pairs practical red-team experience with software engineering roots, enabling him to design attacks, build repeatable infrastructure, and harden environments based on real exploit chains.
8 years of coding experience
4 years of employment as a software developer
In Process Computer Software Engineering, In Process Computer Software Engineering at Arizona State University
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
Role in this project:
DevOps Engineer & Security Engineer
Contributions:11 reviews, 84 commits, 5 PRs in 9 months
Contributions summary:David primarily focused on the infrastructure and security aspects of the CloudGoat project. Their contributions involved modifying Terraform scripts for resource cleaning and scenario destruction, as well as integrating user input and configuration for the "detection_evasion" scenario. They also enhanced the core CloudGoat functionality by updating the command-line interface to configure the email address used by the detection_evasion scenario.
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
David Fentz - Principal Cyber Security Consultant at NetSPI