Mentor: Bios

Paul Ackerman is a veteran of IT. He has over 15 years of experience in the IT world including work for non-profit and Government. He is currently employed as a Security Analyst/SME for a Utility company in Florida and performs consulting work for a number of Government agencies in Southwest Florida.

His background includes server and network administration, security design and best practices, business analysis and software development.

Paul has been in IT management for six years but now primarily focuses on hands-on design, implementation and troubleshooting in many different areas of IT such as Active Directory, Exchange, IIS, Networking, Firewalls, SQL, DR and BCS planning, Risk Assessment and Incident Response.

Tasked with doing much more than security, he has strived to find ways of incorporating security best practices into the daily lives of sysadmins and even the average user. His desire is to share his knowledge with other systems administrators, managers and security practitioners in order to improve the overall position of public and private networks while continuing to form new relationships and learn from others in the field.

Currently, Paul holds the Certified Information Systems Security Professional (CISSP), GIAC Certified Windows Security Administrator (GCWN), GIAC Certified Penetration Tester (GPEN), GIAC Certified Intrusion Analyst (GCIA), Cisco Certified Network Associate (CCNA), MCP and A+ certifications. He graduated Phi Beta Kappa and Magna Cum Laude with a BS in Computer Science in 2013 while working full-time.

Paul is a self motivated, hard working, patient and fast-paced, fun individual who is excited about the opportunity to share his knowledge that SANS mentoring can offer. Every new challenge is a new goal for Paul to surpass with excellence and he hopes to help his students tackle some of their challenges as well!

http://www.linkedin.com/profile/view?id=117604911&trk=tab_pro

Mike Ahrendt is the Information Security Officer for Grand Rapids Community College. He has been working in the industry for several years and has a lot of his experience surrounding digital forensics, incident response, and management. He is both GCFE and GCFA certified. He has been blogging for some time at mikeahrendt.blogspot.com. He also wrote Triage-IR which can be utilized to automate the live analysis of suspected compromised machine. Mike's passion for forensics make him eager to interact with anyone who wishes to get into the topic.

Nik has been in IT for the last 15 years, with the last 4 being more focused on Security. Currently employed as an Associate Consultant for a Managed Security Provider, he spends most of his days working primarily with SourceFire and CheckPoint products.

His academic credentials include a BSc Computer Science, along with PG Cert (Hons) specialization in VoIP and Wireless Broadband. He also holds industry certifications such as GCIA, CCNP Security and R&S, CCMSE +VSX, SFCP, MCSE, MCITP/EA, BCCPA

Nik is also very self-motivated and driven. He likes sharing his knowledge just as much as he likes learning from others and is ecstatic about sharing his knowledge in the SANS Mentor programme, while also learning from his peers in his class.

Derek Armstrong is an 15+ year veteran of the IT world. He started out as a civilian with the Canadian Armed Forces after receiving his Computer Science degree. Over the years he has moved up the ranks, and involved almost every aspect of IT operations and security. Currently he is a senior information security analyst with the Alberta Health Services specializing in cloud and 3rd party security. He holds the G2700, GCIH, GREM, and CISSP security certifications. Along with a mass of other certifications and courses, he has managed to engage almost every sector of information technology. In addition to his work, he is the current maintainer for the Mozilla Firefox security benchmark from CIS (Center for Internet Security). With his system administration and security background, he is thrilled at being able to pass along some of his knowledge and experience with the Hacker Techniques, Exploits & Incident Handling course from SANS.

LinkedIn: http://ca.linkedin.com/in/derekarmstrong

Twitter: @dsplice

Carlos A. Ayala Rocha is a consultant with more than 10 years experience in the field of Information Security, which include Network Security, Intrusion Detection and Incident Response. He has analyzed, designed and implemented solutions, procedures and mechanisms focused on risk mitigation for Large Enterprises, Governments, Internet Service Providers, National Security Agencies in Mexico and other Latin American countries. He is an INFOSEC Postgraduate Professor at UNAM, Founding Member of the Mexican Information Security Association (ASIMX), Member of the SANS Advisory Board with several industry certifications such as CISSP, GCIA, GCIH, GCFA, GPEN among others, currently is a Consulting Engineer in Latin America for Arbor Networks and is committed to support future GIACs in achieving their objectives.

Linkedin: http://mx.linkedin.com/in/carlosayalarocha/

Twitter: @caar2000

Tim has worked in IT for over 9 years, with security as a major focus during his entire career. During his two deployments to Iraq as a U.S. Marine, he maintained 99.999% uptime for the network supporting the Air Combat Element. He was awarded a Navy and Marine Corps achievement medal for his work to improve security and efficiency of the network at Al Taqaddum Air Base. He has been a full time Security Administrator for a Fortune 500 company for the last 5 years supporting over 200 firewalls, and over 10,000 users across five states. He has been featured in an article in GI Jobs magazine: http://www.gijobs.com/cyber-warriors.aspx

Mark Bennett has been in the security field now for ten years and has worked with many different types of technologies. He has seen the changes in threats over the years and has worked diligently at learning how to mitigate, as well as protect against them.

Mark started off as a System Administrator for a company, administrating a UNIX network. He moved eventually to full service VAR where he would go to different customer sites installing, configuring and troubleshooting customer related issues. He has a broad view of the industry due to this experience and has applied his knowledge in different environments and industries, from automotive, to law enforcement. He helped to design and build a redundant data center solution across two different states providing the security architecture for it for a Health Care Organization.

Marks drive for knowledge took him in the direction of Intrusion Detection/Prevention, and later to his GCIH in Incident Handling. He was so amazed and humbled by the things being taught by the instructor that he wanted very much to teach others what he had just learned. He attended the SANS at night program to learn how to become a SANS Instructor, and knew at that time, that was the direction he wanted to go.Mark realizes that teaching as a SANS instructor gives him the opportunity to break away from vendor specific security and embrace a much broader view of threats and security related issues outside of just a few vendors viewpoint.

Mark is also a Black Belt instructor and believes, you may be an instructor, but you are always a student. This humbling attitude approach to being an instructor keeps your skills sharp. Helping others to learn helps you to learn.

David Bernal Michelena holds a bachelors degree in Computer Engineering from the National Autonomous University of Mexico (UNAM), he currently holds the position of Senior Computer Forensic Analyst at Scitum since July 2011. His main activities are evidence acquisition, analysis, preservation and results reporting to Scitums clients.

Scitum is one of the largest and most renowned computer security corporations in Mexico and Latin America. It provides several security services to Mexican private and public institutions, including large Banks among other large government clients.

He is a first responder when a client has suffered or is afraid of having suffered a security breach on their computer information systems. In Scitum, he has been able to perform forensic analysis and incident response in large multi-platform enterprise networks.

He is also in charge of maintaining, and improving Scitums forensic laboratory, testing and benchmarking both commercial and open source forensic software as well as forensic hardware devices.

In 2011 and 2012, David thought several information security courses to Scitum staff and trainees. He is also one of the main instructors of computer forensic courses given to clients and internal staff.

In November 2010, David was one of the main instructors in the forensics workshop on LINUX systems at the prestigious local event UNAM security conference. From August 2009 to July 2011 he worked as an incident handler and forensic analyst in UNAM Computer Emergency Response Team, which is the first CERT to be created in Mexico.

In August 2010, he was one of the winners of Honeynet 5th Forensic Challenge, log mysteries. From May 2011 to July 2011, he gave his first SANS 508 Advanced Computer Forensic and Incident Response course in Mexico.

As an added value, David will include an extra session given by Ivonne Muoz, who is one of the most renowned and experienced information security lawyers in Mexico. This session will give the assistants the required knowledge about the legal issues related to computer forensics in Mexico.

David is Access Data ACE and GCFE certified.

On his free time, he likes to play the piano.

http://mx.linkedin.com/pub/david-bernal-michelena/28/238/55b

Doc Blackburn has 15 years of professional, and over 30 years personal, experience in system and software design, server and network administration and website programming. His interest in computers started in 1982 when he first started programming in DOS on a Texas Instruments TI-99 4a and continued as a dedicated computer hobbyist until he decided to make information technology a full-time career. He ran a successful IT consulting, hosting and design firm for 12 years until he found his passion was in systems security and compliance. His well-rounded experience includes hardware, software, network design, management, administration, systems security and compliance. He has vast experience at various levels of information technology from support to management. Recently, he has been heavily involved in the technical design and implementation of NIH approved FISMA compliant information systems. He holds ITIL and GIAC GSEC certifications along with a Bachelor's degree from the University of Arizona. He is currently the Security Administrator for the Colorado School of Public Health at the University of Colorado.

"In my professional career I have recruited, hired, trained and mentored several highly technical individuals to excel in their professional development and an excited to do the same through the SANS Mentor program. I have a blog at http://docblackburn.blogspot.com explaining cyber-security to non-technical users in language and terms they can understand."

Marcelo has an extensive and diversified experience within the information technology sector. He has been carrying out computer forensics investigations for over 8 years. Worked with incident response / computer emergency response, being responsible for conducting investigations and responding to networking intrusion attempts. He investigated and handled privacy-related incidents and consumer complaint in liaison with Legal and Human Resources departments. Analyzed and documented, including root cause analysis, information security incidents as well as the analysis of the circumstances enabling or permitting these same incidents to take place, including offering remediation strategies. Investigated and immediately stopped leaks and inadvertent disclosures of confidential information. Developed policies and security awareness programs. Worked with highly sensitive information in a team environment.

Marcelo enforced Firewall, Intrusion Prevention System (IPS), Demilitarized Zone (DMZ), anti-virus and anti-spam configuration and maintenance. He assisted with the selection, installation, and adoption of automated tools that enforce or monitor the compliance with information security policies, procedures, standards, and similar information security requirements. He analyzed and documented information security incidents as well as the analysis of the circumstances enabling or permitting these same incidents to take place. Audited, verified network security and gave recommendations to improve the network security. Executed wireless evaluations and security auditings. Advised organizations with current information about information security technologies and issues and researched and recommended solutions. Wrote user manuals on security softwares and computer, email and Internet user policy. Developed and implemented user security awareness programs, with seminars, conferences, folders, newsletters and helpful suggestions. Designed and reviewed Windows 2000/XP/Vista/Windows 7 and Linux security architecture.

Marcelo has assisted task forces in lawsuits as technical assistant, acting as a expert witness in civil trails. He assisted in computer crimes (cybercrime) investigations and was responsible for establishing a chain of custody for evidence. He performed customer data analysis of data requested from banks and telecommunication companies, as requested by Brazilian Attorneys. He wrote, compiled and edited reports of security activities.

Marcelo has also worked as an associate professor on some colleges training on the following subjects: Law, Investigation and Ethics; Physical Security; Systems Security and Auditing; Networking; Cryptography; Software Engineering; Data Processing Center Administration. He worked as instructor for the Security Fundamentals Course (Presidency of Republic) for over than 10 classes. He was lecturer at the most important Information Security conferences in Brazil.

Finally, Marcelo holds a Masters degree in Computer Science and a Bachelor degree in Information Systems. He also has some certifications, which illustrates his passion to learn: GIAC Certified Forensics Analyst (GCFA), GIAC Certified Incident Handler (GCIH), CISSP (Certified Information Systems Security Professional) and EnCase Certified Examiner (EnCE).

http://ca.linkedin.com/in/caiado

Jeremy Carriger currently works as an internal Senior Information Security Auditor at a Fortune 500 company. He has also worked as a Information Security consultant at SecureState were he specializing in audit and compliance. Jeremy has both led and participated in dozens of engagements ranging from audit activities including, COBIT general controls, Sarbanes-Oxley (SOX), Payment Card Industry (PCI), ISO 27001; to technical assessments including vulnerability assessments, attack and penetration testing, war-dialing, war-driving, social engineering, and physical access. In addition to Jeremys technical background, his strong understanding of business processes and organizational structure allow him to meet the security needs of the business world. His analytical mind allows him to swiftly comprehends the big picture and executes the boldest of organizational visions. Jeremy is a believes in lifelong learning. He holds a Master of Science, Information Security and Assurance from Western Governors University and a Bachelors of Science, Computer Forensics and Network Security from University of Advancing Technology. Jeremy also is a Certified Information Systems Auditor (CISA) and a past PCI Qualified Security Assessor (QSA).

http://www.linkedin.com/in/jeremycarriger

Rick has eight years in IT with five of those specifically in InfoSec

Rick has an associate degree in Information Technology and a bachelor's in Network Security and Forensics Rick holds the following certifications; CISSP, GISP, MCSA:Security, CCNA:Security, CompTIA A+, Network+, Security+

Rick's current responsibilities include the network security infrastructure for a major health-care system in the Eastern United States Rick also teaches information security courses part-time for one of Knoxville's premiere technical career colleges. Rick is a member of the East Tennessee chapters of InfraGard and the ISSA.

Rick is excited to mentor this course because he loves the information security field and enjoys teaching. "I love to learn and enjoy passing on that knowledge" "I like the feeling of being an instrumental part of helping someone along their career path"

www.linkedin.com/in/rickclowers/

Michel has been in the security industry for the last decade. He is currently employed as an information security specialist at Bell Canada. In the past, Michel worked as a security instructor as well as a consultant in both the private and public sector for various information security consulting firms. Michel holds several certifications such as CISSP, GCIH, CEH, OPST, ITIL and several others certifications related to various security solutions vendors. He's been collaborating with the SANS Institute for the past several years and also participates in various security events as a speaker and organizer. Michel is passionate about security and enjoys sharing his expertise with the rest of the community.

Michel œuvre dans le domaine de la scurit depuis plus d'une dcennie. Il travaille actuellement comme spcialiste en scurit de l'information chez Bell Canada. Dans le pass, il a travaill comme instructeur et consultant en scurit au niveau des secteurs priv et public pour diffrentes firmes en scurit. Michel dtient plusieurs certifications telles que CISSP, GCIH, CEH, OPST, ITIL et plusieurs autres relatives divers manufacturiers de solutions de scurit. Il collabore avec le SANS depuis maintenant plusieurs annes et participe galement divers vnements de scurit titre de confrencier et d'organisateur. Michel est un passionn de scurit et aime partager son expertise avec le reste de la communaut.

Chris is currently a Chief Information Security Officer at Sharecat Solutions, administering the security challenges of a medium sized, multi country business. Along with a lot of security expertise, Chris also has a background in system development and application management. His vast amount of experience within the many different areas of IT has worked as an excellent precursor for his security enthusiasm.

Chris is an open, sharing, and fun person to be around. He is enthusiastic and motivating as well as positive and optimistic. A fun day for Chris is when he is penetration testing, problem solving or discussing program code or network protocols. He is passionate about security, both IT and physical security and his favorite part is web application security.

Inspired by people like Ed Skoudis, Chris is an aspiring security professional. He is driven by mottos like "Magic is just science we don't understand yet" and "Think bad, do good". Chris looks forward to teaching and sharing his experience with his students. You can learn more about Chris via:

Blog: http://www.securesolutions.no

Twitter: http://twitter.com/#!/ChrisAndreDale

LinkedIn: http://no.linkedin.com/in/chrisad

Ashley has gained his security experience working for numerous companies including financial institutions, major international engineering firms, software development and power generation (protecting multiple SCADA systems). In addition to the CISSP, CISA and CISM certifications, he holds the prestigious GIAC Security Expert (GSE) certification along with the GIAC GPEN, GCIH, GCIA, GWAPT, GCFA, GSEC certifications.

Ashley is always keen to share his experiences and knowledge to help others develop their skills.

Blog: www.ashleydeuble.com

Chris Dixon's career began in 1992 as a mainframe programmer for the United States Marine Corps. He programmed in both ALC and Cobol writing JCL to run the mainframe jobs. He gained a variety of experience with hands on hardware and software installation before becoming a CCNA, CCDA and CCNP while working at a network operations center. Over the next 10 years Chris started working on the pieces in front and behind the routers becoming more familiar with various firewalls, packet filters and proxies. While still working in IT Chris went on to complete both a bachelors and masters degree in business then went on to complete CISSP, GCIA, GCIH, GSEC, GCFW, GCFE, GPEN certifications. Chris will finish his GCUX certification as he prepares to take the GSE exam in November.

Jeremy Druin works as an internal pen-tester, incident responder, and defect-remediation expert for a multi-national transportation logistics company. Other responsibilities include web vulnerability assessment operations, setting application and database security standards, creating developer training programs, and teaching developers how to architect, design and write secure applications. Additionally Jeremy develops the open-source Mutillidae 2.x training environment and consults on web-application security topics. As the Director of Education for the Kentuckiana ISSA chapter, Jeremy presents on web application pen-testing and remediation along with operating the "webpwnized" YouTube video channel. Jeremy has a Bachelor in Computer Science from Indiana University and is a GIAC-certified Network/Web Application Pen-Tester and Exploit Developer.

Sandra Dunn has over 16 years in the software and hardware industry. Initially starting out in Software and hardware sales she worked with NASA, JPL, Secret Service, IRS, and other Federal Agencies to determine their Server, PC, and Notebook sales. Her next role was being a Competitive Intelligence Digital Sending & Security Analyst for HP MFP printers. Currently she is part of the Accreditation team for HP that certifies partner solutions with her focus being on security & regulatory. The certifications she has are Security +, Network +, MCP XP, MCSE NT 4,

Linkedin Profile www.linkedin.com/pub/sandra-dunn-cissp/10/974/472/

Twitter @subzer0girl

Mark Elliott has served as an information security professional since 1999 and an information technology professional since taking his first class in computer programming in 1988. He is a retired Army Warrant Officer, having served over 34 years in the Army and the Army National Guard. He has conducted numerous red-team and blue-team assessments and is currently the lead security engineer on a government contract. He holds the CISSP, GCIH, and GCED.

Ken's more than 30 years of experience in Information Technology ranges through all the domains of the information security field. His position as Sr. VP of IT at Consulting Services Support Corporation has provide him experience in overseeing and implementing all aspects of operations, information security, and regulatory and legal compliance for multiple companies, including a broker/dealer, an insurance subsidiary, and a registered investment advisory firm.

Ken is a member of the GIAC community and has participated in the GIAC Advisory Board. He currently holds the GSEC and CISSP certifications. The high caliber of the people and information provided by SANS inspired him to participate in the Mentor program. He has a particular interest in seeing information security implemented where it may be needed the most, small and medium enterprises.

Joseph W. Fisher, President, Affinity IT Security Services joe@affinity-it.com Mr. Fisher has been providing technical consulting and training since 1993, and has literally trained thousands of students around the world in a wide variety of IT topics in Cybersecurity, Software Development, and Project Management. To combine his passion for IT security with his extensive experience in application development, Mr. Fisher formed Affinity IT Security Services to offer the following services: IT Security Assessments Secure Application Development Consulting Web Application Security Testing A hands-on practitioner, he is equally comfortable dealing with project teams and C-level executives. A dynamic and engaging speaker, in addition to his role as an consultant Joe has spoken on IT Security topics at QCon NY, OWASP NYC, JavaSIG NYC, NJMMA, Morris County Chamber of Commerce, and Regional IIB meetings. Mr. Fisher holds an undergraduate degree in Computer Science from Merrimack College, a Graduate degree in Computer Science from Rensselaer Polytechnic Institute, and an MBA from Fairleigh Dickinson University. He is a former Member of the Technical Staff at AT&T Bell Laboratories. He is an active member in the New Jersey Chapter of the Society for Information Management (SIM) and serves on its Executive Council. He also serves on the Board of the Sturge-Weber Foundation, a non-profit organization funding research and family support for affected families

David Fletcher is the network manager at Selfridge Air National Guard Base in Mount Clemens, MI. Having worked in information technology for the United States Air Force for 20 years, he has extensive experience in information technology and cyber security. Over the course of his career his roles have included network defense and intrusion analysis, network administration, database administration, and web application development. Within the Air Force he has experience supporting the legal, educational, guard/reserve, special operations, and conventional warfighting communities.

David has completed a bachelor's degree in Electrical Engineering through the University of West Florida and is currently enrolled in the Master's of Information Security Engineering program through the SANS Technology Institute. In addition, he is GSEC, GCIA, GCIH, GISP, GAWN, GWAPT, GPEN, and GCFA certified.

Jarrod started on computers in elementary school on a TRS-80, and moved through the years to the Apple II, the Macintosh, and eventually the PC. After working for a couple of years as the unofficial "computer guy" in his department, he transitioned into a full-time IT role in the mid-1990s, eventually working on projects involving wireless networking and PKI cryptography. Since then has held a strong interest in the cat-and-mouse games between attacker and defender. He's worked in a variety of industries, including medical manufacturing, financial, energy, and local government, learning that while every environment is different, no environment is truly unique. For the last few years, he's been involved in security operations at an ACS, Inc., contract at the County of Orange, overseeing a wireless networking deployment and taking a strong role in re-engineering the County's security infrastructure, among many other projects. He holds a GAWN and GCIH, and has no plans to stop with those.

http://llamasinmynetwork.com

https://www.linkedin.com/in/jarrodfrates

Eric Fulton is a specialist in network penetration testing and web application assessments. His clients have included Fortune 500 companies, international financial institutions, global insurance firms, government entities, telecommunications companies, as well as world-renowned academic and cultural institutions. Eric presents cutting edge research at a number of national conferences, and is an accomplished speaker. In his spare time, he teaches various information security topics to provide hands-on training and experience.

BJ Gleason has been teaching graduate and undergraduate Information Systems and Computer Security classes for almost 30 years. He holds undergraduate degrees in Computer Science, Criminal Justice, Asian Studies, and graduate degrees in Computer Science, Education, as well as an Ed.S in Computer in Education. In addition, Mr. Gleason holds about 40 computer industry certifications from SANS, (ISC)2, ISACA, Microsoft and is a Certified Computer Examiner from the International Society of Forensic Computer Examiners. He is currently teaching for the University of Maryland University College in Seoul, Korea, since 1995, and has been working as System and Security administrator for Group W under contract with the US Military since 1999. He was the lead author of the user manual of Drew Faheys Helix Forensic CD. Mr. Gleason is looking forward to being Mentor for SANS as he will be able to give back to the security community that has given him so many opportunities and learning experiences.

After serving the country in the United States Navy for 8 years, Charles (Chip) Greene began his career in Information Technology. Over the next 18 years, Chip has held positions in Support, Design, Research and Development, Education, Disaster Recovery, and most recently in Information Security. As a Senior Information Security Analyst, Chip leads the Identity and Access Management Team at Virginia Commonwealth University Health Systems. Chip has received a Bachelor's Degree in Information Systems from Virginia Commonwealth University, and a Master's Degree in Disaster Sciences from the University of Richmond. He currently holds a GIAC Security Leadership Certification and previously held the Cisco Certified Security Professional certification. Mr. Greene was also honored with an Outstanding Educational Performance Award from the University of Richmond upon graduation from his Masters program. Education and training are extremely important to ones career and Chip believes that it is important for everyone to take advantage of the opportunities presented to them. The SANS Mentor Program is an outstanding way for Information Technology Professionals to gather, learn and develop from each others experiences and knowledge.

Muhammad Hamzah has been an Information Security Consultant for several government and non-government institutions in Middle East and Europe. He has served as Incident Response Coordinator and Senior Security Analyst for major telecoms in Middle East. He currently works for a semi-government contractor in Saudi Arabia where he is responsible for the Security Architecture of several e-government initiatives. He has been awarded by the Saudi Arabian government for designing and managing the security architecture of the e-government employment and welfare support program called "HAFIZ". He also has immense exposure in Security Operations Center design and Penetration Testing. Muhammad is also part of the team that is responsible for the security of Public Database System of Saudi Arabia. He is a Computer Engineer and his certifications include GCIA, GCIH, CISA, CISM, CISSP, CRISC, CEH, PMP, ITIL, Sourcefire Certified Security Professional and Sun Solaris 10. Apart from his busy schedule, his entertainment includes spending time with his family and "Python Programming". He wishes to be a fundamental part the of security community by joining the SANS Mentor Program.

Michael, a Sr. Security Consultant at True Digital Security in Tulsa, OK, has been in IT for 15 years, with over twelve years of experience developing, implementing, and managing information assurance and security programs for Fortune 500 companies in many industries, including financial services, healthcare, telecom, software, manufacturing, retail, and education as well as state and federal government agencies. Michael's particular area of expertise is in intrusion detection and prevention systems. He is currently pursuing his Ph.D. at the University of Tulsa, where his research is focused on advanced network security monitoring techniques, big data visualization, and situation awareness. He maintains the CISSP, GSEC, GCIA, GCIH, GCFA, and QSA certifications.

Matthew J. Harmon brings two decades of security industry knowledge, international standards development experience, penetration testing and incident response and a deep understanding of underlying technologies to his sessions. Having consulted for many fortune, government, and not-for-profit organizations, Matthew is familiar with the day-to-day challenges of businesses today. Mr. Harmon is the owner, security researcher and consultant for IT Risk Limited based out of Minneapolis, Minnesota and frequently presents at conferences and for security associations.

Mohammed Haron is a Corporate Technical Forensics Investigator Lead in Intel with extensive experiences in Intrusion Detection, Log analysis, in-depth packet analysis, Risk and Vulnerability Assessment, Incident Handling, Malware Analysis, PKI Infrastructure and, Forensics analysis and investigations, and investigation interviews. He is SSP-MPA, GSEC, GCIA, GCFA, GCIH, GPEN and frequently mentored many classes of multiple certification tracks in SANS Local Mentor program.

James Harris got his first job in information security at the age of 15, as the administrator of a BTI-4000 mainframe for his high school in Durham, NC, and at age 16 added a second part-time job assembling and testing computers at a small PC integrator called Dramen Computers.

After earning his degree in Physics from North Carolina State University in 1994, Jim went to work at IBM as a hardware engineer for the PC Company, specializing in the design of computer graphics and video systems. Jim was one of the founders of the Digital Display Working Group, and helped author the DVI specification. In 2000, Jims work on DVI led to a job as a Senior Field Applications Engineer with Silicon Image in, a semiconductor company specializing in high speed serial digital interface chips, where he worked helping to design Silicon Image parts into digital video and high-speed storage systems.

After the tragic events of 9/11, Jim decided to go to work as an FBI Special Agent. His first field office assignment was in the Sacramento, CA field office, where he worked mostly cybercrime matters, specializing in Internet Crimes Against Children. Jim worked heavily in Computer Forensics as a member of the FBI CART team, earning his Encase Certified Examiner status in 2007. In 2009, Jim became the supervisor of the Cyber Squad in Sacramento, as well as the Commander of the Federal Cyber Crime Task Force there. Jim earned his ISC^2 CISSP certification that same year. In 2010, Jim was selected to a supervisory position at FBI Headquarters Cyber Division, and served in a number of positions, including as the Senior Liaison Officer to the United States Computer Emergency Readiness Team (US-CERT). In 2012, Jim earned his GSEC certification, and later that same year became the Assistant Section Chief of the FBI's Counterterrorism Internet Operations Section.

Jim left the FBI in 2013 to go to work for Obsidian Analysis, A Washington, DC-based professional services firm providing analytical and policy consulting for homeland security, national security, and intelligence decision makers. As the Senior Specialist for Cybersecurity, Jim advises clients on policy and preparedness in Cybersecurity. Jim's enjoys hearing himself speak, and can't wait to teach others!

http://www.linkedin.com/in/jameseharrisjr/

David Hazar is a seasoned IT security professional with a broad technical background that includes experience in both network and application penetration testing, software analysis, design, and development, database development and administration, network/server analysis, design, and administration, data center design and implementation, technical support, and telecommunications. He holds both a Bachelor of Science, Informaiton Systems and a Master of Information Systems Management from Brigham Young University. He is currently employed by Aetna as an Information Security Architect. He holds the CISSP, GCIA, GCIH, Certified FAIR Risk Analyst, MCDBA, and ITIL v3 Foundation certifications and has previously held both the CCNA and CCNP certifications from Cisco.

Mr. Hoffman has been working in the information field for over 15 years supporting federal government, commercial and internal customers in their searches to discover and quantify information security weaknesses within their organizations. He holds many industry-recognized certifications such as SANS's GAWN, GWAPT and GPEN as well as the CEH and CISSP and has many years of hands-on, real-world penetration testing experience that he brings to each of his teaching engagements.

Chris is the Director of Enterprise Security Services for Continuum Worldwide. Chris has experience working across multiple industries in the areas of penetration testing, regulatory compliance, intrusion detection, and program assessments. He holds a MBA, a Masters Degree in MIS with an emphasis in Information Assurance from the Peter Kiewit Institute at the University of Nebraska-Omaha and is a SANS Institute mentor. In addition, he holds the CISSP, CISA, GSE, GCIA Gold, GSEC, GCIH, GCWN, GCFA, GWAPT, GPEN, GXPN, Splunk Certified Architect, and PCI QSA certifications.

Mike has eighteen years experience in the control system industry, in system design and delivery. Mike earned his Bachelor of Science in Electrical Engineering from Case Western Reserve University in Cleveland OH. Mike has earned his GSEC and GCIH certifications and considers information security to be an exciting area to grow in.

John Kinnane is an accomplished IT executive with 15 years of experience in software engineering and information security. John has successfully designed and led the implementation of company-wide initiatives to significantly reduce software vulnerabilities as part of Enterprise Risk Management strategies. In the area of IT Governance, he has instituted best practices from the ITIL, COBIT, and ISO/IEC 27002 frameworks to deliver strategic projects, safeguard IT assets, ensure continuity of operations, and improve application performance. In John's current role as Director of Application Security at Choice Hotels International, he has led the implementation of a Secure Software Development Lifecycle (SSDL) for 20+ proprietary applications that run across Linux, Windows, Android, Apple iOS, SalesForce.com, and Verifone MX platforms. He has authored and delivered training in application security engineering to an organization of 100+ developers, providing in-depth coverage of CERT Secure Coding Standards, OWASP Top 10 Most Critical Web Application Security Flaws, CWE/SANS Top 25 Most Dangerous Software Errors, and NIST Special Publications. John is a member of Choice Hotels' SOA Governance Board that guides the company's technology roadmap of enterprise services and middleware. You can read more about John at http://johnkinnane.com.

Please see my linked in account for now. I will update this later:http://www.linkedin.com/pub/david-klassen/1/586/94a

Ben S. Knowles, BBST, CISSP, GSEC, GCIH, GCIA, LPIC-1 (adric) is a technologist and researcher in the Atlanta, Georgia, USA area. In high school, he competed at the national level in Constitutional Law. He has been a professional computer security consultant, technical trainer, and system integrator and is currently certified as a black box software tester, internet security professional, incident handler and analyst, and Linux system administrator.

Ben has lectured lower division Mass Communications, Political Science, and Computer Technology classes on Digital Media and Intellectual Property Law and has taught basic computer repair, networking, and information security classes. Currently he is a security system administrator on the incident response team at the Atlanta office of a global IT services firm.

Kerem currently works as a Manager in IT Risk at PwC Sweden. His areas of expertise include technical security assessments of IT infrastructures and applications, as well as the development of security policies and guidelines according to international security standards and frameworks. Furthermore, Kerem gives presentations and courses about penetration testing, security awareness and modern security threats. Kerem holds a Bachelor's Degree in Computer Engineering and a Master's Degree in Information & Communication Systems Security from KTH Royal Institute of Technology, Scandinavias largest technical university. His thesis, entitled "Corporate Governance: From COSO-ERM to ISO 27001" has been compiled into a report sponsored by the Confederation of Swedish Enterprise, and presented to representants of industry-leading companies. Kerem holds the CISSP, GPEN, GXPN and OSCP certifications and is a member of the following: GIAC Advisory Board, ISACA,ISF, ISC2, and OWASP

Anthony Lai who has hybrid experience in application development, code security, penetration test, threat analysis and audit areas for 13 years. He has done vulnerability assessment, penetration, IT audit and training for government and various corporates. He is now a lead consultant and guest threat advisory of several MNCs

Anthony should be the first Hong Konger publishing GREM gold paper and speaking in Blackhat USA 2010, DEFCON 18, DEFCON 19 as well as Hack-In-Taiwan and has set up a security research group called VXRL (www.vxrl.org) in HK, which connects various hackers and security researchers in the planet and co-found Xecure Lab (www.xecure-lab.com) on APT research and detection service. Frankie and Anthony as well as another VX fellow, DDL, has published a case studies paper about APT case studies accepted by IEEE Malware 2011 conference.

He is the chairman of OWASP (HK Chapter), program committee of PISA, extended committee member in HTCIA (Asia Pacific Chapter) and actively provided various technical seminar sessions to the practitioners in Hong Kong.

Other certified as GREM (Gold), he is also GCFA and GWAPT holder.

Charles Lamberton is a security professional with over 17 years of IT experience. His focus has been on Health Care with an emphasis on HIPPA and HITech act compliance.

Jason works for the Dell SecureWorks Corporate Incident Response Team (CIRT) as a Security Analysis Senior Advisor focusing on internal incident response and digital forensics. He has developed processes and procedures to reduce incident impact and cost.

Jason also serves as the President of the Atlanta chapter of the HTCIA and on the board for directors of the Atlanta chapter of the ISSA.

On his off hours Jason enjoys teaching SANS Forensics curriculum as part of the SANS Mentor program. He holds a masters degree in information security and assurance (MSISA), and numerous security certifications such as: GCFA, GCIH, G2700, CISSP, CHFI, CEH and CISA.

Jason firmly believes that the only way to truly be secure is by educating others, and he lives by this principle. Furthermore, if you take the time and listen, you can learn from anyone, mostly from your students.

Paul Leitao is a Melbourne-based security consultant who has spent the last 7 years working in various information security related fields and the previous 5 years as a system and network administrator.He has carried out numerous penetration testing engagements for some of the largest financial institutions in Australia and specialises in the areas of vulnerability assessment, penetration testing, intrusion detection architecture design and incident handling. Paul has earned the GIAC Global Security Essentials Certification. He explains why he wants to be a SANS Stay Sharp Instructor: "I have a desire to help those that wish to either enter the information security field or wish to upgrade their skill set. In doing so, I hope to give something back to the security community which helped me when I was first starting out."

Frankie is an independent researcher specializing in computer forensics, malware analysis and exploits. He is a security researcher of Valkyrie-X Security Research Group (www.vxrl.org), member of Information Security and Forensics Society (www.ISFS.org.hk), Professional Internet Security Association (www.PISA.org.hk), International High Technology Crime Investigation Association (HTCIA) - Asia Pacific Chapter (http://htcia.asia) and The Honeynet Project - Hong Kong Chapter. He is also a part-time lecturer of Digital Forensics classes offered by HKU SPACE. Frankie holds a master degree in ECom/IComp from The University of Hong Kong. He also holds several industry destinations, including Certified Information Systems Security Professional (CISSP), GIAC Certified Forensic Examiner (GCFE), GIAC Certified Forensic Analyst (GCFA) and GIAC Reverse Engineering Malware (GREM).

http://espionageware.blogspot.com/"

Eric Lorenz is a graduate of the University of Michigan-Flint with a dual major baccalaureate in Computer Science and Psychology. He has over 18 years experience in Information Technology, having acted as a systems & network administrator, web developer, and postmaster among other duties. He is currently the Director of Infrastructure & Security in Information Technology at Central Michigan University and chairs the university's Security Incident Response Team. Mr. Lorenz's areas of expertise include heterogeneous system administration in AIX, Linux, OS X and various flavors of Windows. He is also proficient in directory services administration, infrastructure planning, and intrusion detection analysis. He is currently a GIAC-Certified Forensic Analyst (GCFA), Incident Handler (GCIH) and Reverse Engineering Malware (GREM). He is a passionate advocate for information security and enjoys the interactions that come with teaching.

JD Lovering is an experienced IT professional with a focus on virtualization, network security, and *nix operating systems. He has deployed several multi-tiered web applications using geographically disparate data centers and global load balancing technologies. He currently works as a contractor to the Department of Defense evaluating, designing, and deploying secure multi-tiered web application architectures. Mr. Lovering holds a B.S. in Industrial and Systems Engineering from the University of Florida and several certifications including GIAC GSEC, Cisco CCNA, VMware VCP, and CompTIA Security +. He was born in Tampa, Florida and currently lives in Slidell, LA. I am excited for this opportunity because I like the idea of getting out there and meeting other IT professionals in the area, and disseminating this knowledge into the world. I like the all encompassing approach of SANS instruction. It is not technical how-to in a vacuum. It teaches you how to be an effective professional, keep your data secure, and keep the business running.

Price has been in the IT industry for the last decade and has focused on Information Security for the past 5 years. He has worked in both the private sector and as a consultant. He is currently a Sr. Information Security Officer for a leading public safety company. His experience includes network engineering, incident response, intrusion analysis, vulnerability assessments and penetration testing. Price currently holds several certifications such as GSEC, GWAPT, GPEN, GXPN, CICP as well as a degree in Information Systems from DeVry University.

Paul Meding has worked in the Information Technology field since 1996, beginning his career providing phone support for the likes of Microsoft and Lockheed Martin. He moved on to desk-side support and Network engineering in 1999. In 2005 he transitioned into Network Security for TippingPoint providing TAC support for its IPS. In this role he has consulted on-site with customers for Vulnerability assessments, provided Incident Handling support, and most recently become involved in Penetration testing.

Paul has a passion for teaching and training new cyberwarriors in the never ending arms race against malicious network intrusions.

Paul currently holds the following industry certifications:

On learning hacking techniques to better know how to defend against them;
Know thy self, know thy enemy. A thousand battles, a thousand victories. Sun Tzu

Patrick has worked in various aspects of security and computer fields since 1995 in public and private sector environments. He has an undergraduate degree in Computer Engineering Technology, a graduate degree in Information Assurance and a second graduate degree in Computer Science. In a previous life Patrick worked as a locksmith and first line technician for a company responsible for servicing bank automated teller machines (ATM) in the Baltimore/Washington DC corridor. Patrick holds the GIAC GPEN, GCIA, GCIH, GCWN, and GCFA certifications.

Chuck Morris has been a member of the SC Upstate IT Community since 1983. As a member of the leading edge of the business microcomputer revolution he pioneered many of the business processes in common use today. Working primarily in the Aerospace, Automotive, Banking and Electronic Gaming industries he has served in both internal and external roles. One internal role was as MIS Manager for Greer State Bank, which received a rating of 1 (the highest possible score) on an FDIC conducted Electronic Data Processing Audit during his tenure. Mr. Morris has been involved in security issues from the very beginning of his career. His first interaction with a hacker was in 1983. The hacker was trying to use a 300 baud dial up modem to steal a clients customer database from a Kaypro bulletin board system. Since then the systems have grown (multi-continent) and become more complicated, but the challenge remains keeping the clients data safe, while ensuring that they have the flexibility to get the job done. Time spent consulting for Flour Daniel and Michelin, as well as a four (4) year contract as Manager of Information Protection for BMW - Plant Spartanburg expanded his scope into the International arena. But I prefer to stay in Greenville. A graduate of Furman University, Mr. Morris is a firm believer that life long learning leads to true professionalism. He was among the first in the United States to earn a certification from Novell, and has been certified by the SANS Institute since 2004. Now a free lance consultant, Mr. Morris considers himself a fixer. It is amazing how many IT problems are Security related. Even when there is no external threat, solid security practices implemented properly, can solve most of the IT problems businesses face today.

Steve maintains a deep professional and personal interest in many aspects of Information Technology, with a focus on Information Security . He has professional experience in IT and security consulting, penetration testing (external, internal, wifi, web app), network troubleshooting, server and desktop support, technical documentation management, end user education & small project management. Steve is proficient with all Windows operating systems, comfortable with Linux CLI and Cisco IOS. He is educated and certified in network, systems and security fundamentals as well as advanced topics. Steve received his CISSP from ISC2 in 2012 and maintains additional certifications from GIAC, Microsoft, Cisco, and CompTIA.

https://www.linkedin.com/pub/steve-myers/4/122/67

William possesses a rich background in the field of Information Technology, spanning a period of over fifteen years. He works in an eCommerce environment, which utilizes his knowledge of technology, passion for quality and security, and love for life-long learning. He has an interest in Penetration Testing, Vulnerability Management, and Identity Access Management. He has had roles in each of these as a Security Engineer.

His long-term career goals include Incident Management, Web and Application Pen Testing, and IT Middle Management.

Specialties: experience installing, supporting, and troubleshooting a variety of hardware and software. He has implemented IP video surveillance systems, as well as Voice over IP (VOIP) phone systems. He has also worked with some Log Monitoring, and Security Information and Event Management (SIEM) tools.

www.linkedin.com/pub/william-nolan/5/856/7a

Joel Offenberg works for Vantage Systems, Inc. as a Senior Security Engineer for the Joint Polar Satellite System at NASA's Goddard Space Flight Center. He is also Vantage Systems' Chief Information Security Officer and is a member of the business development team. His current job focus is IT security planning, continuous monitoring and security critical operational systems. Joel has worked as a contractor at NASA's Goddard Space Flight Center since 1991.

Joel holds a B.A. in Physics, an M.S. in Computer Science and CISSP, PMP, GSNA and GSEC certifications. He is a founding member of Information Assurance @ Goddard seminar series, where he is also an occasional speaker.

Joel always enjoys participating in SANS as a learner and is excited to be have the opportunity to share his experience.

http://www.linkedin.com/in/JDOffenberg

Mike Pilkington is a Senior Security Consultant for a Fortune 500 company in the oil & gas industry. He has been an IT professional since graduating in 1996 from the University of Texas with a B.S. in Mechanical Engineering. Since joining his company in 1997, he has been involved in software quality assurance, systems administration, network administration, and information security. Outside of his normal work schedule, Mike has also been involved with the SANS Institute as a mentor and instructor in the digital forensics program.

Listen to Mike discuss Protecting Privileged Domain Accounts during Live Response in this highly rated SANS webcast that every DFIR professional should listen to.

Philip has worked in the information security and intellgience industry for the past 8 years. He graduated from the University of Texas at Austin with a Computer Science degree. There he focused on cyber and graudated with an additional NSA InfoSec Certification. Phil has held positions ranging from leading teams of incident repsonders to leading the Air Force's forensics shop. Currently he leads a team of specialists focused on combatting the "Advanced Persistant Threat". Throughtout his entire career he has been a certified trainer for all positions he's held and loves teaching the next cyber warriors.Phil has gone through numerous Air Force cyber security courses and has earned the following certifications:-GCIH-OSCP (Offensive Security)-NSA Info Sec Certification-CEH-Security +-Encase ExaminerPhil started binaryXnetworks LLC (bnxnet.com), a small company that provides customized training, pentesting, and development services. Additioanly he is a mentor for Cyber Patriot, red teams for collegiate competitions, presents at San Antonio Hackers Association, and enjoys research in a variety of subjects from 0-days to reverse engineering advanced threats.

Ron Prykanowski has been working his way through technical and security roles for over 15 years. As an Information Assurance Manager for ManTech, Ron is responsible providing technical and procedural Information Security advice to the government and industrial security teams. He also represents the government during security reviews and staff assistance visits at government and industry locations applying regulatory directives to ensure the location being reviewed is in compliance with government regulations. As a CISSP, Ron has a passion for sharing the knowledge that can only be gleaned from his varied work experience, a flair for instructing and, combined with his sense of humor; he promises "you wont fall asleep in any of his classes."

Shyaam Sundhar has had over 5 years of Information Security experience with over a year of management experience at BAE Systems Inc. He currently works for Department of Interior as their Information Assurance Engineer. He was a security analyst at Symantec MSS for over 3 years with over five years of intrusion defense, threat analysis and signature writing experience through his previous jobs. He holds Master of Science in Information Security and Masters Certificate in Computer Security and Information Assurance from the George Washington University, Graduate Certificate in Computer Security from Stanford University and is currently pursuing Master's in Intelligence Studies from the American Military University (AMU). With active professional membership at InfraGard, ACM, ACFE, ISACA, IACSP, HTCN, ATAB and various other associations, he has been actively participating in the security community. He has held professional certs such as, GREM, GCFA, GCIA, GCIH, GPCI, GCDS, GLDR, SSP-CNSA, SSP-MPA, SSP-GHD, GHTQ, GWAS, and GIPS. He was a board member at IARIA research group where he has participated as TPC, Chair and Co-Chair of several IEEE conferences related to Security. For more information on Shyaam, his profile can be found at http://www.linkedin.com/in/intrusion.

Ricardo is currently the Chief Operating Officer for a Brazilian company specialized in Information Technology Management and Information Security Management, dealing with the challenges of quality assurance for projects; the continuity of operations for customers and seeking new technologies, which add value to the overall business. With over 15 years of experience in Information Technology and Information Security, he has been responsible for the management and implementation of projects across a wide range of areas in Governance, Strategic Planning and Services Management of Technology and Information Security for companies such as Hewlett Packard, AT&T Latin America, TELMEX and other leaders in the Brazilian and international markets.

Graduated with a bachelors degree in Information Systems and MBA in Information Technology Management, Ricardo has extensive experience in incident analysis, computer forensics and penetration tests. Currently, he holds GPEN, GIHC, CISM, CRISC, MCSE, CCNA, ITIL, ISMAS, and HDI Manager Certifications. He enjoys PYTHON programming in his spare time and is working as an associate professor in the postgraduate program in Information Security Management and Computing Forensics at FIT College in Sao Paulo and as an instructor for official ISACA training programs at Daryus Training Center. An enthusiast of new market trends and matters related to Information Technology Management and Information Security, Ricardo enjoys learning and passing his knowledge on to help others develop their skills.

Jonathan currently holds the position of Research Engineer, in the Attack Detection and Analysis group at Defence R&D Canada, working in the field of Automated Computer Network Defence. He previously held the position of Senior Technical Specialist, IT Security with the Canadian International Development Agency (CIDA). His work there included incident handling, forensic investigations and security architecture for the Agency. Prior to joining CIDA, Jonathan worked for a large telecommunications company in a variety of roles, helping design, implement and troubleshoot some of the largest networks in the country. Jonathan has a large and extensive background in a wide variety of information technology areas including security, routing, switching, Voice over IP, email, network management and architecture. He currently holds numerous certifications that include GIACs GSLC, GPEN, GCIH, GSEC, GCFA, and GAWN certifications, is a current CISSP, and is also a Professional Engineer. He holds an honours degree from Queens University in Kingston Ontario.

Rex is an experienced IT and electrical engineering professional with more than 25 years of technical experience, and has spent nearly 30 years working and playing with computers - designing them, programming them, supporting them, networking them and securing them. In addition, he has spent much of the last 20 years managing and coordinating technical projects. He currently operates an IT consulting business. In addition to his bachelor's degree in electrical engineering, Rex was among the earliest to earn GIAC certification in security essentials, and was a longtime member of the public speaking organization Toastmasters International. He is an experienced SANS mentor, and has consistently earned rave reviews from his students. Besides his work with SANS, Rex has taught technical concepts to people of all levels of technical literacy, as well as photography, radio theory to the blind, and guitar. Whether teaching, mentoring or managing projects, Rex most enjoys getting people together to help them achieve a common understanding.

Erich has worked in the IT industry for 15 years and of those dealt with information security for 11 years. He has worked for companies ranging in size from small to large, and currently works for a global insurance company dealing with information security issues. Having dealt with the spectrum of work from policy to compliance to technical he has earned several certifications including GCWN, GSEC, CISSP, CISA, CEH, Security+ and others.

Erich has been involved in starting and running security user groups, and enjoys the challenges that come from such situations, and see's the SANS courses as a great way for people and learn and is committed to helping with that.

Magnus has worked in the IT-industry since 1998. He holds an MSc in Computer Science from KTH, Stockholm. In 2000, Magnus co-founded Secode (http://www.secode.com), a leading provider of Managed Security Services in Northern Europe. At Secode, Magnus was one of the architects of the company's MSS offering. After leaving Secode in 2005, Magnus went on to work for the Swedish Intelligence at FRA. At FRA Magnus performed Penetration Testing, IT Forensics, Data Recovery and Network Security. He has also been responsible for delivering public demonstrations of live penetration testing. His current position is Production Lead within the area of Network Security. Magnus holds several certifications: GSEC, GREM, GCFA, GCIA, GCIH, GPEN and CISSP. Always seeking to expand his knowledge, Magnus is also very excited to help you expand yours.

Matt's experience in the industry started at the bottom rung as a high school student hacking the email server via telnet and spoofing emails. During high school he picked up a job as a computer salesmen doing IT work on the side for neighborhood clients. After high school he went to Pennsylvania Institute of Technology and obtained his associate's degree in computers and communication technology. The coursework revolved around the Cisco CCNA curriculum. After obtaining his associate's he attended Drexel University receiving his bachelor's in information technology. Throughout college Matt was apart of a small consulting company supplying IT work for charter schools in the Philadelphia area. After Drexel Matt accepted a job at Philadelphia Gas Works starting as an entry level security analyst. At the gas company Matt oversees compliance management, network configuration audits, vulnerability scans, network IPS, anti-virus suite and incident handling. Currently at PGW, Matt got his CCNA and CCNA Security certification. Matt recently passed his GSEC certification. In conjunction with day to day security operations at the gas company, Matt also handles incidents for a consulting company in charge of one hundred and fifty plus clients. Matt is excited to become a SANS mentor because he sees it as an opportunity to share his experience in different IT business styles to other security professionals in those same areas.

Anuj Soni is an incident responder and forensic analyst at a DC-based consulting firm. Anuj manages and executes specialized incident response techniques to detect, respond to, and mitigate sophisticated threat actors on client networks. He uses his skills in conducting host-based forensics, malicious code analysis, Advanced Persistent Threat (APT) risk assessments, and APT mitigation development to help clients improve their security posture. He has 6 years of experience in incident response, forensics, intrusion detection, penetration testing and steganalysis. Anuj received his Bachelors and Masters from Carnegie Mellon University. Anuj holds the following certifications: GIAC Reverse Engineering Malware (GREM), Certified Information Systems Security Professional (CISSP), EnCase Certified Examiner (EnCE), and GIAC Penetration Tester (GPEN).

Anuj has a passion for incident response, forensics and malware analysis, and he's very excited to meet others who are interested in learning about these areas. He loves sharing what he knows and learning from others, so he's looking forward to the mentoring experience!

Ed Steele has more than 10 years experience focusing on information security and systems management. He has taken leading technical roles with information security projects in banking, government and education; providing expertise with the design and implementation of multi-million dollar local and wide area networks, highly available mission critical data processing centers, vulnerability and risk assessments, threat intelligence, compliance, integration and life cycle management. In Eds current role as a principal security engineer he manages a vulnerability assessment project and provides advanced technical expertise supporting enterprise information security initiatives for a federal government organization. He is keenly familiar with the unique challenges presented by information security in diverse fast paced environments and enjoys using his creativity to deliver complex, cost effective solutions to meet demanding business requirements. Ed has earned a Bachelor of Science Information Technology degree with a concentration in information security/network administration from George Mason University and currently holds the following professional level certifications: CISSP, GCED, GSEC, CCSP, CCNP-Security, CCDA, CCNA, CCNA-Voice, CS-CIPSS, AFOT & A+ Enhanced.

http://www.linkedin.com/pub/ed-steele-cissp-gced-gsec-ccsp-ccnp-s/4b/a11/268

Gerald Steere is a penetration tester with Cyber Security Professionals, Inc. He has over fifteen years professional experience in information technology, with the last 7 years focused on information security and pen testing in the Federal sector. As a prior auditor for two different IGs, he has substantial insight into the way audits work from both sides. Gerald wants to provide his experiences to the next generation of security professionals and enjoys making others as security paranoid as he is. He holds degrees in Electronics Engineering Technology and Computer Information systems and posses multiple certifications including the GXPN, GPEN, OSCP, and CISSP.

Tai has this unquenchable curiosity about how things work and numerous toys and gadgets will attest to this. Putting them together again is a different matter. When he first learned how easy it was to send emails as Santa Claus, over 20 years ago, he was struck by two epiphanies: security is critical; and he can get paid to do it! Always considered a Subject Matter Expert on security at the large enterprises and Fortune 100 companies that he worked at.

He has dedicated over 20 years to Information Security, from reading RFCs to actively performing penetration tests to designing and managing policies and Information Security programs, educating auditors and mentoring staff.

Until proven wrong, he is the mentor that has the oldest SANS t-shirt from 1996.

Larry Thompson is a seasoned IT professional with over 15 years experience and a strong background in Information Security and Systems Management. He has been an Infomation Systems Security Engineer as a contractor to the Federal Government for the past 6 years focusing on Risk Assessments and Certification and Accreditation. Prior to that, he was part of the security team responsible for the protection of healthcare systems and patient information under HIPPA regulations. He has also worked as a security and system engineer for a major Virtual Private Networking (VPN) manufacturer developing both commercial and federal government grade encryption products. Larry currently holds a Bachelor of Science in Computer Networking as well as CISSP-ISSEP, GSEC, CRISC, and CEH certifications.

Shawna has been doing software for 15+ years, often in the security space, working with and for many large names such as McAfee, Business Objects, SAP, Microsoft, Tripwire and Nike. She's achieved certifications in Pragmatic Marketing, Project Management Professional, is a Certified Scrum Master, a CISSP holder and has worked in all aspects of software creation. She's super excited to help tomorrow's leaders shape our security future.

http://www.linkedin.com/in/sturnerrice

Andres Velazquez, President and Digital Investigations Director of MaTTica; the first computer forensics private Lab dedicated to the investigation of cybercrime in Latin America.

He has more than 30 international certifications in the area including: Certified Information Systems Security Professional (CISSP), GIAC Certified Forensics Analyst (GCFA), GIAC Certified Forensics Examiner (GCFE), AccessData Certified Examiner (ACE) and NSA INFOSEC Evaluation Methodology (IEM) by the NSA in the US.

He trains and gives advice to different law enforcement agencies in Latin America including INTERPOL and UN.

Member of the High Technology International Association (HTCIA) , Latin American Fraud and Financial Crimes Investigation Association (ALIFC), Internet Society (Mexico Chapter) and the Latin American Information Security Professionals Association (ALAPSI) where he has part of the board from 2005 to 2007. He also was a member of the Cybercrime Combat Group part of the Federal Police in Mexico and member of the Network Information Center (NIC) Mexico Consulting Committee.

He has done all kind of training in Universities, Law Enforcement Units and Organizations.

Alan Waggoner has 15 years experience working with computers systems and networks. He has a wide range of experience, including firewall management, VOIP, Novell Netware, Windows Servers, MS SQL, Exchange, Citrix XenApp, virtualization technologies, IP cameras, and policy writing. Over the years he has earned certifications from Novell, Microsoft, Citrix, and GIAC.

http://www.linkedin.com/pub/alan-waggoner/6/9b1/34

Sol Warnock has worked in the IT Security field for the past 18 years. He has a broad range of experience with intrusion detection technologies, wireless security, and incident response methodologies. Sol has performed network security configuration and analysis for Government and private industries. He currently serves as an instructor/course writer at the US Army Cyber Leader College. Sol holds many commercial certifications including CISSP, CWNA, MCSE, GCIA, GCIH, GPEN, GCFA, GSNA, GCWN, and GSEC.

William started in the IT field in 2006 working on switching systems and multiplexers. From there, he prospered in the IT community when he decided to take his expertise to the military community; he worked with the Military in setting up deployable communications networks that supported thousands of deployed troops in many austere and complex environments. He was one of the first in the military to pioneer the use of WIFI Solutions in the deployed environment and designed a deployable fly-away kit that would eventually lead to the implementation of WIFI solutions for all tactical deployable communications teams. From there, he took his networking and security prowess one step further and became a Network Warfare Curriculum Developer for the Military's only cyber warfare training unit. He develops curriculum that trains over 400 persons a year in various aspects of network security, hacker methodology, concepts, and techniques. He leads the small team of selected individuals who are in charge of training students on GSEC and GCIH to ensure they not only meet SANS requirements but also the government standards. He deploys the latest in hacker trends in lab environments, and then trains personnel on how to protect against them and utilize them in an offensive mindset. His drive for excellence in the security community has led him to want to pass along his skills and knowledge to the up-and-coming security professions so that they can succeed as well. To this end, he is very excited about being a SANS mentor, and hopefully be a SANS instructor someday.

Jeff has over 12 years in Information Technology. He enjoys Infosec and looks for every opportunity to both learn and train others on new techniques as they come to his attention. Jeff holds 9 industry certifications including the giac GCIH and GPEN. In his spare time Jeff enjoy building test networks and spending time with his wife and 2 kids. Jeff looks forward to sharing the exciting world of Incident Handling with each and everyone of you :-)

www.linkedin.com/pub/jeff-wright/14/ab5/78a/

Security Strategist, Innovator, and Advisor, Joel Yonts is a seasoned security executive with a passion for information security research. He has over 20 years of diverse Information Technology experience with an emphasis in Information Security. Yonts is also an accomplished speaker, writer, and software developer with research interests in the areas of malware analysis and defense, computer forensics, and enterprise security.

Joel currently serves as Chief Scientist of Malicious Streams and as CISO of a Fortune 500 Retailer.

research site: http://www.malicious-streams.com/

LinkedIn: http://www.linkedin.com/profile/view?id=34203623&trk=tab_pro

Shunda joined in Intel in 2007, worked for validation and security validation, is mainly responsible for penetration test, fuzz test, production security feature validation, secure code review. Before working in Intel, Shunda worked in ZTE (a telecommunication company in China). Shunda owned Master degree of computer architecture in Huazhong University of Science and Technology. Shunda also had Bachelor degree of computer science in Huzhong University of Sinence and Technology and another Bachelor degree of material science and technology in Wuhan University of Science and Technology. Shunda has finished SANS560 training in 2011 and SANS660 training in 2012, passed GXPN cert with scores of 89.33%. Shunda applied this mentor program because he wants to help more colleagues in his group to be security experts.