Deadline to Save $200 for SANS Rocky Mountain 2015 is May 27.

Mentor: Bios

Mentors are highly qualified, experienced professionals who make themselves available in your local area to help you learn the course material and get certified. Each Mentor is hand-selected from students that have completed their relevant GIAC certification with scores of 85% or higher.

Alleyne, Nik

Nik has over 15 years in IT, with the last 6 being more focused on Security. He is currently employed as a Manager, Cyber Security for a Managed Security Services Provider, spending most of his days leading a team responsible for IDS/IPS and SIEM technologies.

His academic credentials include a BSc Computer Science, along with PG Cert (Hons) specialization in VoIP and Wireless Broadband. Current industry certifications such as CISSP, GCIA, GCIH, CCNP Security and R&S, CCMSE +VSX, SFCA, SFCE, SWSE, MCSE, MCITP/EA, BCCPA,IBM Certified Deployment Professional - Security QRadar SIEM V7.1, ITIL, ISO9001 Internal Auditor, etc.

You can also reach out to Nik via his blog at or via linkedin at

Barbosa, Laios

Laios Barbosa is a Brazilian Army Officer and a senior network and information system security administrator at Brazilian Ministry of Defense. He has a Computer Engineering degree from the Military Institute of Engineering (IME) and a specialization in Information Security. In your career, he is responsible to administer and defend military systems and networks, composed of multiple operation systems, almost linux flavor, several network equipments and defense enterprise solutions (firewall, IPS, IDS), satellite communications, etc. He worked for the United Nations (UN) in Haiti as a peacekeeper and a system and network administrator of Brazilian Battalion. He holds some certifications as CISSP, GSEC, GCED, GCIA, GCIH, GPEN, GWAPT, OSCP (Offensive Security Certified Professional) and OSWP (Offensive Security Wireless Professional). He is a great enthusiast of security challenges and has some rewards as Capture The Flag Victor - Network Penetration Testing and Ethical Hacking - SEC560 - Cyber Defense Initiative 2012, Capture The Flag Victor - Hacker Techniques, Exploits and Incident Handling - SEC504 - SANS Boston 2013, 2nd Place - Netwars Tournament at Cyber Defense Initiative 2012, 3rd Place - Netwars Tournament at Cyber Defense Initiative 2013, Champion of South America Global Cyberlympics 2013 (EC-Council Foundation). It is a great pleasure to be a Mentor and have the opportunity to share knowledge and experience in information security and help to increase the global security awareness.

Barone, Joshua

Joshua Barone has over 10 years of experience as a software developer, with a majority of that time specialized in security design and development. Joshua Barone has a core background in Java, .Net, Python, and security design principles.áJoshua specializes in .Net and Java Enterprise technologies, Web Services, Agile Methodologies, Open Source, and Test-Driven Development. He is familiar with a variety of platforms (Windows, Mac OS X, Linux, Unix), databases (PostrgreSQL, MySQL, MSSQL, Oracle), J2EE Application Servers, Software Development Methodologies and Tools. Joshua is also experienced in security vulnerability assessment for platforms and applications. Joshua is aáCertified Information System Security Professional (CISSP) and holds GIAC Security Essentials (GSEC) and Certified Incident Handler (GCIH) certifications, as well as a Master's in Computer Science from the University of New Orleans. He is currently a Senior Information Security Engineer for Geocent.

Check out Joshua's Blog:


Blackburn, Doc

Doc Blackburn has 16 years of professional, and over 30 years of personal, experience in system and software design, server and network administration and website programming. His interest in computers started in 1982 when he first started programming in DOS on a Texas Instruments TI-99 4a and continued as a dedicated computer hobbyist until he decided to make information technology a full-time career. He ran a successful IT consulting, hosting, and design firm for 12 years until he found his passion was in systems security and compliance. His well-rounded experience includes hardware, software, network design, management, administration, systems security, and compliance. He has vast experience at various levels of information technology from support to management. Recently, he has been heavily involved in the technical design and implementation of NIH approved FISMA compliant information systems. He holds ITIL, CISSP, and GIAC GSEC, GPEN, and GSLC certifications along with a Bachelor's degree from the University of Arizona. He is currently the Security Administrator for the University of Colorado Denver.

"In my professional career I have recruited, hired, trained, and mentored many highly technical individuals to excel in their professional development and am excited to do the same as a SANS instructor. I have a blog at explaining cyber-security to non-technical users in language and terms they can understand."

Blake, Greg

Greg Blake is the Founder and Principal Consultant of Fusion Information Security a company that specializes in information security vulnerability assessments and penetration testing. He has almost 20 years of experience in IT within education, insurance, and defense. Over the course of his career he has responded to multiple security incidents, helped his employers secure and defend their infrastructures, conducted forensic investigations, and provided expertise regarding PCI compliance. He holds a Masters of Business Administration and a B.A. in Information Technology Management. In his career Greg has held multiple certifications including MCNE, CNA, MCP, PCI-ISA, and SANS GCIH and GCFA. Greg currently holds CISSP, GPEN, and is a certified PCI Professional. Greg is a member of the Minnesota chapter of HTCIA and Infragard. Additionally, he teaches the ISC2 Safe and Secure Online program to school age children and their parents within his community.

Borso, Serge

Over the course of SergeÔs 10+ years as a security professional he has had the opportunity to work for various organizations and clients on all sorts of initiatives, ranging from implementing transparent biometric user authentication in online banking applications to dumpster diving and penetration testing. Serge earned his BachelorÔs of Science degree in Electronic Business Management and a MasterÔs of Science degree in Computer Systems Security prior to earning the CISSP and three SANS certifications: GPEN, GCFA and GWAPT. Prior to his current role, Serge was responsible for application security, fraud prevention, audit compliance, vulnerability assessing, security awareness and the like in an electronic banking environment encompassing hundreds of servers, thousands of websites and over one million unique end users.

Bougere, Daniel

Dan Bougere has over 15 years of experience in the information technology field. Currently, he is the Director of Incident Response Services for Soteria, LLC. His prior experience includes being a Global Network Exploitation and Vulnerability Analyst at the NSA and an Intrusion Detection Analyst on contract to the High Performance Computer Modernization Office's DREN/SDREN network. Dan holds a B.S. in Software Engineering Technology from the University of Southern Mississippi, an M.S. in Information Assurance from Capitol College, and an M.S. in Technology Studies from Eastern Michigan University. He also holds the CISSP, GCIH, GCIA, GSEC, GXPN, GNFA and multiple other industry certifications. Dan enjoys being a geek, and loves spending time with fellow like-minded individuals. He has done various informal and formalized training sessions, and takes pride in making sure that he keeps his students/attendees interested and involved in the subject matter. There are aspects of computer security that can be exciting for anyone, and he makes sure that carries over to his training.

Caruso, Robert

As a CISSP, Robert Caruso designed the PKI client authentication portal for the Defense Logistics Agency training site to enable two-factor authentication of 22,000+ personnel located in 24 time zones using unbreakable cryptography. He has mentored high school students in the U.S. Cyber patriot competition and worked with the Boy Scouts of America to develop a new technology merit badge, Programming. Robert has also taught mainframe Cobol programmers to write web applications in J2EE where one student noted, "I had tried to learn Java programming several times, but this was the first time it made sense." An avid inventor and tinkerer, he holds a patent for a fitness entertainment hardware/software device and has developed applications for every platform from mobile apps to cloud servers. Currently, Robert is the Information Security Architect on the Strategy, Policy, and Planning team at Battelle Memorial Institute in Columbus, Ohio, where he researches current and emerging cyber threats to the enterprise. At Battelle, Robert co-authored a paper on Cyber Risk Managanament for Medical Device Design which was published in the AAMI journal in 2014. A graduate of The Ohio State University, College of Engineering in Computer Science, he also holds certifications in CISSP, GMOB, Sun Java, C++/MFC, FISMA/NIST NSTISSI-4011, CNSSI-4012, ISO-27002, and ITIL Fv3. Robert is active in the local security community in the Central Ohio Infragard, is an officer of the ISC2 chapter in Columbus, Ohio, and is on the GIAC/SANS Advisory Board.

Curtis, Michael

Michael A. Curtis (Mike) has over 20 years of experience in the security field and has held several key leadership positions at Rollins, Virtual IT Experts, and Additionally, Mike is active in the security community having served as a past member of the Symantec Customer Advisory Board, and is an officer in the Atlanta (ISC)2 Chapter. Mike holds a BSEE, cum laude, from Northeastern University, an MBA from Bentley College and a CISSP.

Davidson, Troy

Troy Davidson is an experienced business leader and technology strategist with over 17 years of leadership experience gained at various organizations within Calgary and across Western Canada. Troy is deeply knowledgeable in the business technology disciplines of strategy and planning, organizational governance and service delivery. His focus and areas of expertise are IT Security, Mobility and Cloud Computing. He began his career with the Calgary Police Service where he spent 13 years in various leadership roles in Networking, Security, Enterprise Architecture and he finished as Acting Director of IT Strategy. He had the opportunity to work closely with many other policing agencies at the municipal and federal levels in Canada and the US. Troy Davidson is currently the Lead of Mobile Computing, Technical Security and Telecommunications for Cenovus Energy. He is involved in many transformational initiatives with security and mobility with the goal of implementing new technologies to enhance business processes, mitigating risks and enabling employees to work from anywhere, anytime and with any device, in a secure manner. Troy regularly speaks at industry events and enjoys sharing ideas with his peers in the Oil and Gas industry to drive innovation and collaboration around common challenges and opportunities in the local IT and business community. Troy is excited to be participating as a SANS instructor and to help prepare future security practitioners and leaders. His real life experiences will help others to realize the risks of current threats that leaders and security professionals face today.

Deluce, Jason

Jason has been practicing in the technology industry for 10 years. Security has always been a major focus, and his sole focus for 4 years.

Jason has an ardent interest for following trends and identifying new technologies and relevant applications. His devotion to continuous learning and research keeps him ahead of the curve. He currently holds GSLC and GSEC certifications.

Currently employed as a Technology Security and Compliance Manager, he has working knowledge of various security related technologies and vendors. Such technologies include Rapid 7 Nexpose and Metasploit, Logrhythm SIEM, and Palo Alto Networks Next Gen Firewalls. Working specifically in the realms PCI-DSS Compliance, and SOX Compliance, Jason has experience with leading, deploying, and evaluating compliance programs.

Recently, Jason obtained his first SANS Challenge Coin (RMO) during his SEC504 training by being a member of the SEC504 Capture the Flag winning team at SANS Chicago 2013.

Jason has a great ability to communicate technical concepts in a non-technical manner, and welcomes the opportunity to share his knowledge and experience.

Drews, Melvin

Coming from a long background of designing, implementing and supporting enterprise IT systems, Mel Drews found himself working in information security rather by accident 10 years ago and found a passion there. His security-focused experience includes security curriculum development, penetration testing, vulnerability and risk assessment, program development, audit, and miscellaneous consulting for U.S. and international entities, primarily in government, financial services and energy sectors. Mr. Drews currently works with a global financial services firm with responsibility for software security. He holds the GCFE, CISSP, CISA and Project+ certifications.



Fitzpatrick, Montez

Montez has worked in the industry since 2004. However, Montez has a passion for technology that reaches much farther back than that. A personal philosophy of "never leave an interesting problem or question to wonderment." Montez currently works as a Senior Information Security Engineer and a Senior Security Consultant, with experience that spans the gamut of information security domains, He has mastery of both soft and hard technical skills.

Fortune, Christopher

Chris Fortune is a 20 year veteran in IT. His experience began on a helpdesk as a co-op student and quickly escalated into increasingly challenging roles in network engineering, system engineering and telecom. Security has always been a part of Chris' work in these other disciplines as well as direct responsibility in security such as managing firewalls, IDS/IPS, AV, VPN, remote access, log management and forensics.

Chris has a Bachelor of Science in Computer Engineering from the University of Evansville and is working on a graduate certificate in Penetration Testing & Ethical Hacking from SANS Technology Institute. He currently holds the GCIA(GIAC Certified Intrusion Analyst), GCIH(GIAC Certified Incident Handler) and CeH(Certified Ethical Hacker) certifications and previously held certifications such as GCFA(GIAC Certified Forensic Analyst), CCNP(Cisco Certified Network Professional), CCDP(Cisco Certified Design Professional), and CISA(Certified Information Security Auditor). Chris is excited to mentor this course so he can give back to the security community as well as experience the material at a deeper level.

Frates, Jarrod

Jarrod started on computers in elementary school on a TRS-80, and moved through the years to the Apple II, the Macintosh, and eventually the PC. After working for a couple of years as the unofficial "computer guy" in his department, he transitioned into a full-time IT role in the mid-1990s, eventually working on projects involving wireless networking and PKI cryptography. Since then has held a strong interest in the cat-and-mouse games between attacker and defender. He's worked in a variety of industries, including medical manufacturing, financial, energy, and local government, learning that while every environment is different, no environment is truly unique. For the last few years, he's been involved in security operations at an ACS, Inc., contract at the County of Orange, overseeing a wireless networking deployment and taking a strong role in re-engineering the County's security infrastructure, among many other projects. He holds a GAWN and GCIH, and has no plans to stop with those.

Gorenflo, Jonathan

Jon has worked in Information Technology for over 10 years, and has focused on Information Security for the last 7 years. He is passionate about security, and loves trying to ignite that passion in other people. Jon was a Warrant Officer in the Army Reserve, where he served for over 11 years. He currently maintains the GCIH, CISSP,MCSE: Security and Security+.

Hadder, Allen

Allen Hadder has been in the IT field for over 20 years. Most of his 20 years of experience has been as a consultant for small to enterprise businesses in the financial, retail, and education industries.

Allen currently holds the GIAC GSEC and GCIH certification. In past years he has also earned his MCSE, Cisco CNA, Citrix CEA, and VMware VCP.

He also has a passion for teaching and educating people about information security.

Harmon, Matthew J.

Matthew J. Harmon has over 20 years of experience in incident analysis and response, secure architecture development, security auditing, penetration testing, tactical risk assessments, international standards development.

Mr. Harmon presents frequently for groups such as the Cyber Security Summit, Saint Paul College ACM Cyber Security Workshop, Metropolitan State University's Masters in Computer Forensics Capstone, and (ISC)2 Twin Cities MN on topics such as Cyber War, DDoS Survival, Java Exploits Offense and Defense, Incident Handling and Hacking Techniques, and Evidence Based Risk Assessments. He has also served on various security organization and conference advisory boards, organized the Security B-Sides MSP 2014 Conference and the Security B- Sides MSP Crypto Party and Hacker Showcase at the 2014 Cyber Security Summit.

Hazar, David

David Hazar is a seasoned IT security professional with a broad technical background that includes experience in both network and application penetration testing, software analysis, design, and development, database development and administration, network/server analysis, design, and administration, data center design and implementation, technical support, and telecommunications. He holds both a Bachelor of Science, Informaiton Systems and a Master of Information Systems Management from Brigham Young University. He is currently employed by Aetna as an Information Security Architect. He holds the CISSP, GCIA, GCIH, Certified FAIR Risk Analyst, MCDBA, and ITIL v3 Foundation certifications and has previously held both the CCNA and CCNP certifications from Cisco.

Johnson, Diane

Diane has been a Technologist for over 20 years focusing on security since 9/11. She has worked in roles such as Help Desk, Pen Tester, Sys Admin, Network Engineer, Privacy Manager, Security Analytics, and Enterprise Security Architect. Her industry experience includes Retail, Healthcare, Technology, Utility, and Local Government. These roles and industry experience have garnered a deep understanding of security architecture and the underlying technologies and business processes. When not analyzing logs, hacker techniques, or packet captures; Diane is found with family, traveling, creating crafty things or playing games on and off the net. Mentoring Sec504 is exciting to Diane because it is one of the SANS courses that delves into the mindset of the attacker and often the student will leave the class with a new perspective.

Jones, Jason T.

Jason T. Jones has be serving as an Active Duty member of the United States Air Force for 12 years and been selected to be grandfathered into the new Air Force Specialty Code (AFSC) known as 1B4X1 which translates to Computer Network Defense operator in English. He has been involved with some kind of computer security or administration for the better part of 15 years. Currently he sits as the Chief of the Incident Response Team for the National Reconnaissance Office where he directs and partakes in Dead box forensics, malware analysis/reverse engineering and Network Forensics. He has is Bachelors of Science in Computer Science from Trident University and is current pursuing his Masters Degree in Cyber Security with a follow on MBA. He is a CISSP and also has obtained GSEC, GCFE, CEH and MCP with a multitude of additional training in Information Assurance, Physical Security as it pertains to information systems, Unix Administration, Windows Network Administration. Jason could strike up a conversation with someone over pretty much anything they could have a question in regarding computers

Krishnamurthy, Sundar

Sundar is SANS-GISF and GSEC certified and a senior software development leader with IMS Appature in Seattle. He earned the title of "Professor Sundar" from his previous team at Microsoft for teaching skills and has trained multiple teams on different aspects of software development. To make you think about information security the same way you think about physical security for yourself and your family is the holy grail. He is @sundarnut on Twitter for the latest #infosec topics, trends and incidents. Sundar aims to be a mentor so he can inculcate security as a fundamental technical trait and make it the best lecture you've ever taken!

Krishnan, Ramesh

Mashburn, David

David Mashburn is currently the IT Security Manager for a global non-profit organization in the Washington, D.C. area. He also has experience working as an IT security professional for several civilian Federal agencies, and over 15 years of experience in IT. He holds a Masters Degree in Computer Science from John Hopkins University, and earned a B.S. from the University of Maryland at College Park. David holds multiple security-related certifications, including CISSP, GPEN, GCIH, GCIA, and CEH. He is also a member of the SANS / GIAC advisory board, and teaches courses in the Cybersecurity curriculum at the University of Maryland - University College.

McDonald, Price

Price has been in the IT and Security industry for the last decade and has focused on Information Security for the past 7 years. He has worked in both the private sector and as a consultant. He is currently the Principal Security Architect for a leading public safety company. His experience includes network engineering, incident response, intrusion analysis, vulnerability assessments, reverse engineering malware and penetration testing. Price currently holds several certifications such as GSEC, GWAPT, GPEN, GXPN, GREM and CICP.




McKenzie, Timothy

Timothy McKenzie has almost 20 years of IT and Information Security experience working in financial, government, defense contractor, and service related markets. Timothy has been trained in malware research and exploit development, expert penetration, and forensics work. Timothy works for Dell SecureWorks as a red team penetration tester, focused primarily on network and web-based attacks. Timothy loves sharing the vast knowledge he has acquired to give back to the Information Security community.

Neely, Lee

Lee Neely is a senior IT and security professional at Lawrence Livermore National Laboratory (LLNL) with over 25 years of experience. He has been involved in many aspects of IT from system integration and quality testing to system and security architecture since 1986. He has had extensive experience with a wide variety of technology and applications from point implementations to enterprise solutions. Lee has worked with securing information systems since he installed his first firewall in 1989. As part of his employers Cyber Security Program (CSP) he leads their new technology group, working with programs to develop secure implementations of new technology. Lee was instrumental in developing their secure configurations, risk assessments and policy updates required for iOS, Android, BlackBerry and Windows Mobile Devices. He has worked to evolve solutions for both corporate and BYOD requirements. Lee worked with the SANS SCORE project to develop the iOS Step-by-Step configuration guide as well as the Mobile Device Configuration Checklist which is included in the SEC 575 course. He teaches cyber security courses, including the new manager cyber security training, and Information System Security Officer training. Lee has a Bachelors in Computer Science from Cal State Hayward and holds several security certifications including GMOB, CISSP, CISA, CISM and CRISC. He is also the Technology Director for the ISC2 EastBay Chapter.

You can keep up with Lee @lelandneely

Neise, Patrick

Patrick Neise is currently the Director, Information Security for an integrated risk management provider in Annapolis, MD. Recently retired from the U.S. Navy, Patrick brings 20 years of operational experience in submarines and information warfare to the information security community. He holds a Masters Degree in Information Technology Management from Webster University, a B.S for the the University of Texas at Austin in Electrical Engineering and is currently pursuing a M.S. in Information Security Engineering from the SANS Technical Institute. Patrick holds multiple certifications including CISSP, CAP, GPEN, GCIH, GCIA, GCED, GPPW, GSLC, GSEC, GCCC, C|EH, and PMP. He is also a member of the SANS/GIAC and GPWN advisory boards.

Overbaugh, John

John is passionate about security. He holds the CISSP, GWAPT, GSLC and GCIH certifications and is managing director for security services at Caliber Security Partners, a firm dedicated to helping clients achieve higher levels of security. Prior to joining Caliber, he was Director of Security and Compliance for Healthagen, Aetna's emerging businesses division. From 1999 to 2006, he led application security for multiple teams in Microsoft's product groups. John has 19 years of experience in information technology and software, and 15 years of experience in IT security. His security and compliance back-ground is in healthcare and secure development. John is married and enjoys time spent with his lovely wife and their six children.

Peterson, Lisa

Lisa Peterson CISA, CRISC, CISSP has worked in Information Security for 20 years, and is a Security Analyst for Progressive Insurance. Her current focus is in governance, risk and compliance. She is a part-time instructor at Cleveland State University and also speaks on security topics. She serves on the board for the Information Security Summit, the Northeast Ohio chapter of ISACA, and the Northeast Ohio chapter of CSA.

Pryor, Janice

Pulsifer, Jonathan

Jonathan has seven years of experience in network analysis and over 15 years behind the keyboard.á His experience ranges from the home lab to multi-gigabit government production environments. Recently, Jonathan decided to spread his wings and attain his GCIA certification and become a member of the SANS/GIAC Advisory Board. Jonathan's goal is to become GSE certified. In his most recent years, Jonathan has been employed as a network defense instructor for the Canadian Armed Forces and has had the privilege of training the next generation of talented individuals to conduct defensive cyber operations for the Canadian military. Jonathan is a fan of social media, and you can tweet him at @JonPulsifer or contact him through his website

Ross, Jonathon

Jonathon Ross took his first IT job on a help desk 23 years ago and has since worked as a systems administrator, netowrk engineer, and most recently as a systems engineer. Jon's journey into information security was initially a trial by fire when he suffered DDoS attacks in 1996 and later received a deeper understanding of BSD Unix from an attacker who repeatedly breached his systems. Jon has spent the last 15 years working for networking equipment vendors focusing on security products helping private companies and government agencies deploy controls, analyze security intelligence, and recover from attacks. He holds a B.S. in Computer Science, M.S. in Information Assurance as well as CISSP and GPEN certifications.

Schallock, Felix

Felix has more than 20 years of experience in IT and IT security. He held positions as IT systems engineer and IT advisory manager at a big four company. He has experience in IS management, IS auditing, IS consulting, attack & penetration testing, and IT forensics. He holds a BSc (hons) in science of computing (University of Derby) and a MBA (Open University). His certifications include among others CISA, CISM, CISSP, GCUX, GCIH and EnCE. He was a key contributor to the OSSTMM.

He enjoys sharing his knowledge and learning from peers. He is looking forward to active discussions in class.

Scheidel, Greg

Greg Scheidel has over 20 years of hands-on experience in IT including desktop and server support, network design and implementation, application development and programming, IT service management, IT security, and information assurance. He currently leads the security branch of a large program responsible for providing security engineering, Assessment and Authorization (A&A) support and assessment activities, and general information assurance and security advice and recommendations. Greg excels at communicating with technical and non-technical stakeholders, firmly believes IT and security must serve business needs rather than exist for their own sake, and is passionate about teaching others while reinforcing and honing his own knowledge.

Snow, Selvan

Selvan has been in IT for over 23 years, specializing in Unix/Linux Systems Administration. He has previously worked at the IBM and the US Air Force (focusing on parallel processing and Distributed Security and File Systems). As an IT Manager at Progressive Insurance, he has led teams from IT Operations to Enterprise Architecture. His current focus is IT Security Engineering and Architecture. He is also a Adjunct Professor at Cleveland State University teaching Java and Unix/Linux Systems Programming. His current efforts include an active proposal with the CIS Department to establish a DOH (Department of Homeland Security) accredited Information Security track at CSU.

Squire, Jonathan

Jonathan Squire is a founding member of the Information Security Group of a well known publishing and media company. Jonathans expertise covers a wide range of skills including security architecture, incident response, hacker attack and defense techniques, reverse engineering, and extreme curiosity in how everything works. While working at his day job, Jonathan is credited with accomplishments that include developing an Information Security model for the enterprise, architecting a secure, centralized credit card processing solution, and guiding the design of the security infrastructure deployed throughout many customer facing properties. Mr. Squire is also responsible for providing direction in governance and industry best practices. Jonathan regularly scopes and leads penetration testing and security assessment initiatives, as well as providing guidance for corrective actions and performing debriefings across all levels of the organization. In his spare time, Jonathan is known to enjoy disassembling any piece of technology that cost more than $20 just to find out what else it can do. This propensity for abusing technology is easily witnessed by viewing the buckets of broken parts strewn throughout his basement as well as the creations that rise from the rubble. Jonathan has presented on many of these creations and the flaws that allowed the security to be bypassed on these systems at conferences including BlackHat and Hack in the Box. Jonathan is very passionate about information security and always strives to challenge the status quo and to improve everything he can. Jonathan shares that passion with his student in his teaching style and his genuine willingness to share and engage students in all topics related to information security.

Taylor, Ron

Ron has been working in the information security field for the past 15 years. He worked as a consultant for ten years, gaining experience in many areas. For the past five years he has been working as an engineer for Cisco Systems in RTP. His focus is on evaluating the security of Cisco products and working with the development teams to implement high security standards. Ron is a subject matter expert in DISA STIGÔs and web application penetration testing. He also holds many industry certifications including GPEN, GCIH, GWAPT, RHCE, CCSP, CCNA, CISSP and MCSE.

Tok, Yee Ching

Yee Ching is currently taking a Masters in Information Security from Royal Holloway, University of London and is passionate about Information Security. He is currently an Information Security consultant in the Professional Security Services department of e-Cop and has had several engagements including and not limited to pentesting various systems, SCADA systems and mobile applications, risk assessments, vulnerability assessments, digital forensics and incident response for several private and governmental clients.

Yee Ching is also an Adjunct Lecturer in Singapore Polytechnic where he teaches information security related modules for both the Diploma in Information Security Management and the Specialist Diploma in Cyber Security Management in Singapore Polytechnic.

van Niekerk, Colin

Colin van Niekerk is an avid technology enthusiast and Information Security Specialist who broke his first computer at age 8. By age 12, he had coded his first game, which included a simple, home baked Artificial Intelligence engine and at 15 he was sneaking out of bed at night to read his fathers BSc Computer Science textbooks.

In more recent years, he has attained the GCFE and GCFA certifications and joined the SANS/GIAC DFIR Advisory Board. Honours and awards include winning a Netwars tournament and a Lethal Forensicator Coin.

Colin is currently a Security Specialist within a large health insurance and financial services company where he spends his days either on Linux servers, buried in his digital forensics lab or consulting to the business on security related matters.

Colin tweets sporadically (@colinvanniekerk) and his LinkedIn profile is available here:

ventura, brian

Brian has 20+ years in Information Technology, ranging from systems administration to project management and information security. He is an Information Security Architect at the City of Portland. Brian obtained the CISSP certification earlier this year and has previously been certified with Linux and Solaris. Brian has always been eager to promote others learning and sharing solutions with the community.

Villanti, Jon

Jon Villanti is an IT Security Manager with a Fortune 50 financial services company in Houston, TX. He has 22 years of IT experience; 12 years focused in IT security.

Prior to his current role, Jon has worked as an IT Security consultant, VP of Operations, CIO / VP and CEO. Jon├┬ó├┬├┬s private sector experience is augmented by over 20 years of Air Force experience, ranging from Intelligence Operations, Fighter Pilot, and Cyberspace Operations.

As a SANS mentor Jon enjoys working with students to realize their own ├┬ó├┬├┬Eureka├┬ó├┬├┬ moments, mastering relevant curriculum in support of personal and professional goals.

Jon holds several IT Security certifications including CISSP, GPEN, GCIH and GSEC. His LinkedIn profile is You can follow @houston_jon on Twitter.

Wright, Jeffery

Jeff has over 20 years in Information Technology. He enjoys InfoSec and looks for every opportunity to both learn and train others on new techniques as they come to his attention. Jeff holds 9 industry certifications including the giac GCIH, GPEN, and GWAPT. In his spare time Jeff enjoys building test networks and spending time with his wife and 2 kids. Jeff looks forward to sharing the exciting world of Incident Handling with each and everyone of you :-)