Justin Murphy
Vulnerability Disclosure Analyst, DHS/CISA
Justin Murphy is a Vulnerability Disclosure Analyst with the Cybersecurity and Infrastructure Security Agency (CISA). He helps to coordinate the remediation, mitigation, and public disclosure of newly identified cybersecurity vulnerabilities in products and services with affected vendor(s), ranging from industrial control systems (ICS), medical devices, Internet of Things (IoT), and traditional information technology (IT) vulnerabilities. He also assists Dr. Allan Friedman in coordinating the global, multi-stakeholder community-led efforts around Software Bill of Materials (SBOM), the Vulnerability Exploitability, eXchange (VEX), and other Technology Assurance related projects at CISA. Justin also serves as the Department of Homeland Security’s (DHS) representative on the OASIS Common Security Advisory Framework (CSAF) Technical Committee. Justin is a former high school mathematics teacher turned cybersecurity professional and has a M.Sc. in Computer Science from Tennessee Technological University, and a B.Sc. degree in Statistics from the University of Tennessee (Knoxville).