I'm Mike DeSocio.
I'm a New York based Information Security Professional, currently working for The New York State Office of Information Technology Services working to protect the data of our agencies and citizens.
In my free time time, you can catch me playing guitar; traveling to see an orchestra or the Yankees play; or exploring the beautiful Adirondack Mountains.
About me
I'm Mike DeSocio! Most of my life I have been surrounded by computers and technology. From the ripe young age of 3, I can remember by dad coming home and working on client PCs and showing me the ins and outs. I was hooked! 15 years later after an awakening from Music School, I enrolled in the Bachelors of Science Program for Cybersecurity at the University at Albany. I was heavily involved with on campus organizations such as Cyber Defense Organization (CDO) and IEEE. CDO gave me the ability to explore new technologies and gain more friends and mentors along the way. Most of my software and technology expertise grew here. My current cybersecurity toolset skills include security logging and hunting using Splunk and QRadar; gathering CTI information for hunts using threat feeds imported into OpenCTI; and a vast knowledge base of different NIST Standards (800-30, 800-53r5, 800-63, 800-171) and other compliance domains such as CJIS, IRS Pub1075, and more.
On the weekends, I like to travel to the Adirondacks and enjoy what it has to offer. My family owns property up there and it's a great escape from the busy life! You'll often find me playing guitar, hiking, or exploring the surrounding region!
- Location:New York
- Nationality:Italian/American
- Hobbies:Acoustic Guitar, Orchestral Music, Hiking, Baseball, Homelabbing, Learning, Traveling
- Study:University at Albany, SUNY
- Employment:New York State Office of Information Technology Services
Work
Lead Risk Management Analyst (ITS III)
Developed and implemented a workflow to track and report statistics for 3,000+ end-of-life servers, achieving 50% improvement in data accuracy and reducing review time by 25%. Conducted network and service reconnaissance to remediate 33% of the systems targeted in FY2024, reducing the critical asset attack surface of New York State. Carried out large review of nearly 2000 identified risks across New York State systems, to identify the top 1% of the risks documented in Archer IRM to be addressed in the next phase of the enterprise security risk remediation program. Conducted Security Design and Operation Reviews on emerging technologies, including AI and cloud solutions, providing strategic cybersecurity insights to agency executives.
Education
Bachelors of Science in Cybersecurity
My studies were heavily focused in cybersecurity operations and technologies. As apart of my capstone, I was responsible for designing and coordinating the beginning steps of a VDI instructure solution to allow less privileged students to be able to utilize industry tooling with nothing more than a Chromebook and internet connection. In addition, I was heavily involved in the interworkings of the program at UAlbany. The program was undergoing a revision when I was attending.
Skills
Here are some of the different skills I have strength in!
To see some of my work and projects, click below to navigate to my wiki or GitHub.
Mike has proven time and time again, that he is a consummate cybersecurity professional...He is highly motivated and actively seeks out new challenges and opportunities for growth, and his dedication to learning is steadfast and unwavering. Mike has proven to be a highly capable and motivated individual. Any team that Mike is a part of will surely be lucky to have him.
-- Collin C.