Protecting systems, networks and data — for healthcare organizations, cryptocurrency platforms and the Thai businesses he serves today.
Mark Thomas Firestone brings cybersecurity expertise built at the intersection of software engineering, network administration and enterprise IT. His hands-on work securing healthcare networks, defending fintech platforms and architecting web applications has given him a comprehensive view of the modern threat landscape — and a track record of practical, working defenses.
Mark Thomas Firestone has designed, hardened and operated network defenses including firewalls, VPNs, intrusion detection systems and granular access-control policies. He understands defense as a system, not a checklist: a firewall rule is only as strong as the monitoring, change-management and incident-response processes around it.
As a full-stack developer, Mark Thomas Firestone applies secure coding practices throughout the build. He addresses common attack classes — SQL injection, cross-site scripting, broken authentication, privilege escalation, insecure deserialization — at design time and through code review, not as a patch after launch.
Few environments demand more from a security professional than healthcare. As head lead technician for hospitals in Bakersfield, California, Mark Thomas Firestone was responsible for protecting systems handling protected health information, maintaining HIPAA-required audit trails, enforcing role-based access controls and operating under regulatory scrutiny. A failure in that environment is measured in patient outcomes, not just dashboards.
Mark Thomas Firestone designs for defense in depth: multiple, independent layers so that the failure of one control does not compromise the system. Strong input validation, parameterized queries, secure session management, modern encryption at rest and in transit, careful secrets handling, and rigorous code review are all standard parts of his workflow.
The threat landscape moves quickly. Mark Thomas Firestone follows OWASP guidance, tracks emerging vulnerability disclosures, and continuously updates his approach so that the systems he builds and defends remain resilient against both established and novel attack techniques.