Penetration Testing & Security Assessments
Penetration Testing
Experienced cybersecurity experts leverage penetration testing to improve a company’s security posture and remove any vulnerabilities that leave it open to attack. Penetration Testing goes beyond merely stopping criminals from unauthorized access to a company’s systems. It creates real-world scenarios that show businesses and organizations how well their current defenses would fare when confronted with a full-scale cyber attack.
Webcheck Security performs penetration tests to find places a hacker might exploit within various systems, networks, network devices (routers and switches) and servers. They look for ways a hacker might find real-world opportunities to compromise a company by gaining unauthorized access to sensitive data.
Webcheck Security Penetration Testers have earned the following certifications:
- Advanced Degrees in Information Security & Technology
- CISSP
- OSCP
- CEH
- PCIP/ISA
- AWS
Webcheck Security performs focused penetration testing for:
- Misconfigurations
- Product-Specific Vulnerabilities
- Wireless Network Vulnerabilities
- Rogue Services
- Weak Passwords
- Inadequate, Inconsistent or Non-Existent Password Protocols
Webcheck Security Penetration Testers have access to and utilize over 100 tools, can manually execute Java, PHP, SQL, and many kinds of scripts and languages, understand the importance of good writing, step re-creation and screen shots and are eager to consult with you about test results.
Webcheck Security employs experts in external and internal penetration testing, web application and mobile testing. They also offer other forms of Social Engineering such as Email Phishing, Call Campaigns and Physical Penetration Testing.


Fill Out Our Penetration Testing
Scoping Form To Get Started
Meet The Webcheck Security Team
Security engineers and architects with over a decade and a half of assessment, infrastructure and web application testing experience.
Greg Johnson
CEO
Greg Johnson started Webcheck Security after a long sales and management career with technology companies such as WordPerfect/Novell, SecurityMetrics and A-LIGN. He loves people and providing solutions with integrity. A BYU graduate, Greg Johnson began his career in the days of 64k 5.25” floppy drives and Mac 128k’s. As the industry evolved, Greg moved into the cyber arena and learned a great deal about cyber controls, compliance, data breach and response and in 2016 earned his PCIP or PCI Professional designation.
In his experience as VP of Business Development with A-LIGN, Greg Johnson consulted, guided and educated dozens of clients in compliance guidelines and certifications.
Greg also has a thorough grasp on the concepts of web application, infrastructure penetration testing (both internal and external) as well as managed detection and response, incident response and digital forensic investigations. Greg is also the co-author of the forthcoming book Testing and Securing Web Applications.
When Greg is not providing cyber solutions for his clients, he can be found playing with his grandchildren and rehearsing or performing with the world-renowned Tabernacle Choir.
Curt Jeppson
CISSP, OSCP, CISO
Curt Jeppson has been working in Information Security and Penetration Testing for 14 years in increasing roles of responsibility within the financial, marketing, legal, ecommerce and technology industries. His technical certifications include the CISSP, OSCP, and various AWS and Google Cloud engineering certifications.
Curt has a Bachelors degree in Information Technology and a Master’s Degree in Information Security and Management. He currently performs penetration tests, assessments, CISO guidance and architectural reviews for various company sizes and also teaches classes on penetration testing and other subjects in cybersecurity.
He has served as VP of Technology for United Online, run cybersecurity at a Manhattan law firm and was Director of Security at Urbint and several other organizations.
Prior to his IT careers, he was an Infantry Sergeant in the United States Marine Corps.
Kade Barney
Kade Barney is a penetration tester with a passion for all things security. Kade holds a bachelor’s degree in cybersecurity and at his university he won several ethical hacking competitions.
In addition to penetration testing, Kade worked for Presidio and has a background in incident response and management, providing him with a skill set in both offensive and preventative security tactics. Kade believes that the ability to conduct effective research is necessary to stay relevant in the quickly changing IT security environment.
Lori Crooks
Lori’s deep background includes having managed security and assurance assessment teams at a growing cyber firm, A-LIGN, including but not limited to PCI, FISMA, FedRAMP, Penetration Tests, HIPAA, ISO 27001, SOC1 and SOC2.
Lori Crooks has broad and deep knowledge of multiple cyber frameworks and subscribes to the Webcheck Security’s way of doing business – meaningful and helpful customer communication and professionalism in all documentation and consulting.
Jeremy Tillery
Jeremy Tillery, CEH, is recognized by his peers as a growing force in the information security field. He is noted for his ability in both penetration testing and social engineering. Jeremy’s passion for penetration testing constantly keeps him busy developing new skills and continuing to explore new vulnerabilities.
Currently, Jeremy holds a certification as both a Certified Ethical Hacker and COMPTIA Security+ CE. Jeremy is happiest when he is with his wife Connie raising their beautiful daughter Carly.
Kelly Matt
Kelly Matt is a seasoned security professional with twenty years of experience in technical delivery and security leadership as well as active certifications including CISSP, CISA, AWS Cloud Practitioner.
He has built and helped implement information security programs for global Fortune 500 companies, technology leaders, leading retailers and higher education intuitions. He also managed a large Penetration Test Team while maintaining a CEH cert at a large security assessment firm.