Ryan Rake
About Ryan Rake
Ryan Rake serves as the Cyber Detection and Response Team Lead at City National Bank, where he has worked since 2022. He focuses on compliance, team efficiency, and developing automated detection solutions in cybersecurity.
Work at City National Bank
Ryan Rake serves as the Cyber Detection and Response Team Lead at City National Bank, a position he has held since 2022. In this role, he collaborates with both internal and external auditors to ensure compliance with regulatory requirements. He is responsible for developing and implementing strategies that enhance the bank's cybersecurity posture. His leadership includes creating playbooks and standard operating procedures (SOPs) that facilitate knowledge sharing among team members and other engineers interested in security.
Education and Expertise
Ryan Rake completed his education at North Stafford High School, where he studied from 2000 to 2004. His expertise in cybersecurity is demonstrated through his work in developing custom correlation searches, analytics, and dashboards using Kusto Query Language (KQL). He also utilizes Azure Logic Apps to automate remediation response actions for various threats, including ransomware and compromised credentials.
Background
Ryan Rake has been actively engaged in the cybersecurity field, focusing on detection and response strategies. He leads the Scrum process for the Cyber Detection and Response Team, ensuring team efficiency and effectiveness through metrics that track progress. His background includes collaboration with the Threat Intelligence team to develop detections based on the latest threat intelligence.
Achievements
In his role, Ryan Rake has led tabletop incident response exercises that cover multiple threat scenarios, aimed at educating participants on preparedness for future incidents. He has interfaced with various security vendors to conduct proof of concept and proof of value engagements for security tools and applications. Additionally, he conducts Purple Team engagements to validate security controls and detection logic against simulated threat activity.