Joe Luna

Joe Luna

Co-Founder, VULNERA

With over 25 years of professional cybersecurity experience in various operational and leadership roles, Joe has an established track record for delivering initiatives designed to satisfy business and risk requirements.

Mr. Luna has previously served as Director of Information Security for one of the nation’s largest Internet Service Providers where his team was responsible for maintaining the confidentiality, integrity and availability of more than 50 million subscriber records.

He is a member of several advisory boards ranging from cybersecurity startups to non-profit organizations and has managed Red Team activities for a Collegiate Cyber Defense Competition for over 10 years.

Over time Mr. Luna has gained industry accreditations such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in the Governance of Enterprise IT (CGEIT) and Certified in Risk and Information Systems Control (CRISC).

All Sessions by Joe Luna

Cybersecurity Maturity Model Certification (CMMC) - 2025 and Beyond September 15, 2023
3:50 pm - 4:40 pm

Beyond Scanning: Advancements in Identifying the Global Threat Landscape

At the 2022 Converge Security Conference, we unveiled an internal initiative for the rapid identification and cataloging of internet-accessible services. Our objective was to deepen our understanding of the global threat landscape by conducting highly distributed port scans across the entire addressable IPv4 space.

We explored the architecture, tooling, and methodology necessary to leverage thousands of nodes for reliably scanning 3.7 billion addresses. Initial results were undoubtedly successful, as we achieved a repeatable task that could be completed within 90 minutes at an approximate cost of $100.

This year, we're back with more, and we're thrilled to present the advancements we've made since our last session. Join us as we share updates on the initiative and delve into additional statistics, demonstrating the impact of our research on proactive threat detection, network security, and vulnerability management.