Global, end-to-end cyber risk solutions.
Keith Wojcieszek is a managing director in Kroll’s Cyber Risk practice, based in the Washington, D.C. office. Keith joined Kroll from the U.S. Secret Service, where he served with distinction for 15 years. Keith founded and leads Kroll’s Cyber Threat Intelligence program, manages a wide range of cybercrime, data loss and incident response investigations and is a trusted advisor to clients involved in compliance-related or sensitive local and global cyber security matters. He also has extensive experience working with international stakeholders on complex transnational investigations and initiatives.
In Keith’s role as leader of the Cyber Threat Intelligence (CTI) program, he conceptualizes strategies and methodologies on how to translate diverse information sources, including social media and dark web channels, into intelligence that can be used to help clients more fully assess threats, vulnerabilities and trends. His team of elite analysts, supported by advanced technology, help refine Kroll’s analytical and investigative offerings firmwide. The CTI team regularly enhances cyber investigations by providing in-depth analysis on attack methods and actor groups, research on evolving indicators of compromise, and locating compromised data and/or credentials. Keith’s CTI team also develops statistical and behavioral models for predictive purposes as well as macro-environmental analyses.
In addition, Keith supervises multidisciplinary teams investigating cybercrime and data loss investigations, including but not limited to ransomware and malware, business email compromise, unauthorized access to cloud-based environments (e.g., Office 365), and vulnerabilities originating in third-party software and services. He has additionally provided consulting support on hundreds of engagements involving diverse business and legal issues, including intellectual property theft, defensible PII-PHI deletion, accounting fraud, money laundering, employee misconduct and forensic application development.
Keith joined the U.S. Secret Service in 2002, ultimately leading the USSS Cyber Intelligence Section, Criminal Investigation Division, where he managed the agency’s national response to attacks on the financial infrastructure of the U.S. that inflicted hundreds of millions of dollars of losses. In this role, he also coordinated complex international investigations that targeted transnational organized crime networks with an emphasis on cyber and information security. Under Keith’s leadership, a number of these cases resulted in the apprehension of highly sophisticated cybercriminals who collectively were responsible for causing over $1 billion in financial losses.
From 2012-2016, Keith was an integral member of protection details for the President, Vice President, Homeland Security Advisor to Terrorism and Presidential Chief of Staff. Earlier, from 2012-2015, Keith was with the Counter Assault Team in the Special Operations Division, which often involved coordinating security in varying international environments for the USSS protective mission and incorporated multiple U.S. federal agencies, local law enforcement and foreign government personnel.
Earlier in his career, Keith led several domestic and global investigations working with the U.S. Department of Justice Computer Crime and Intellectual Property Section (CCIPS) and Office of International Affairs (OIA). From 2004-2010, Keith managed the Electronic Crimes Task Force in support of all electronic crime investigations, computer forensic examinations and cell phone data extraction in the Louisville Field Office District. In this role, he also established the operation of a forensic laboratory; provided expert testimony in multiple state and federal cases; and coordinated training for USSS agents, local law enforcement and industry representatives.
A noted authority on cyber and intelligence-related topics, Keith has served as a certified expert witness in court proceedings and is frequently asked to speak at public and private conferences, webinars and panel discussions.
Global, end-to-end cyber risk solutions.
Compliant notifications, reputation-saving remediation, and litigation support.
Managed security services to augment security operations centres and incident response capabilities.
Proactively monitor, detect and respond to threats virtually anywhere – on endpoints and throughout the surface, deep and dark web.
Expert computer forensic assistance at any stage of a digital investigation or litigation.