James Baucom is a veteran penetration tester and principal security engineer with over 12 years of specialized expertise in offensive security assessments. His penetration testing prowess has been demonstrated across a wide range of commercial industries, including oil and gas, chemical, healthcare, financial services, municipalities, manufacturing, hospitality, gaming, education, and research facilities.

Baucom has spearheaded and played integral roles in countless penetration testing engagements, exhibiting exceptional skills in internal/external network testing, web application assessments, mobile application security evaluations, ICS/SCADA system analyses, and IoT device security reviews. These assessments have adhered to rigorous methodologies such as NIST SP 800-115, OWASP Top Ten (Mobile and Web), PTES, OSSTMM, as well as proprietary methodologies tailored for hardware and embedded device testing.

Currently serving as the Principal Security Engineer at Tangible Security since June 2012, Baucom’s primary responsibilities revolve around leading Tangible’s penetration testing practice and performing comprehensive penetration tests and cybersecurity assessments. This includes network, web application, and product penetration testing, reconnaissance, wireless security assessments, payload development for exploitation, physical security testing, and social engineering engagements. During this tenure, he has spearheaded hundreds of technical cybersecurity projects, predominantly focused on penetration testing, security assessments, payload development, and security engineering.

While Baucom possesses broad cybersecurity knowledge encompassing compliance, risk assessment, program development, and security engineering, his core expertise lies in offensive security testing and penetration techniques. He has honed his skills in areas such as network and system exploitation, web and mobile application security testing, wireless security assessments, social engineering tactics (including phishing, vishing, and smishing), and developing custom payloads and exploits.

Baucom’s educational background includes studies at Wake Technical Community College and a particular emphasis on offensive security methodologies and penetration testing practices.

Throughout his career, Baucom has consistently demonstrated an exceptional ability to identify and exploit vulnerabilities, providing clients with comprehensive reports and remediation guidance to fortify their security posture. His deep understanding of offensive security techniques, combined with his hands-on experience in penetration testing across diverse industries, positions him as a preeminent expert in this domain.