Save $200 for the SANS/NH-ISAC Healthcare Cybersecurity Summit - Atlanta

Mentor: Bios

Mentors are highly qualified, experienced professionals who make themselves available in your local area to help you learn the course material and get certified. Each Mentor is hand-selected from students that have completed their relevant GIAC certification with scores of 85% or higher.

Alleyne, Nik

Nik has over 15 years in IT, with the last 6 being more focused on Security. He is currently employed as a Manager, Cyber Security for a Managed Security Services Provider, spending most of his days leading a team responsible for IDS/IPS and SIEM technologies.

His academic credentials include a BSc Computer Science, along with PG Cert (Hons) specialization in VoIP and Wireless Broadband. Current industry certifications such as CISSP, GCIA, GCIH, CCNP Security and R&S, CCMSE +VSX, SFCA, SFCE, SWSE, MCSE, MCITP/EA, BCCPA,IBM Certified Deployment Professional - Security QRadar SIEM V7.1, ITIL, ISO9001 Internal Auditor, etc.

You can also reach out to Nik via his blog at or via linkedin at

Barbosa, Laios

Laios Barbosa is a Brazilian Army Officer and a senior network and information system security administrator at Brazilian Ministry of Defense. He has a Computer Engineering degree from the Military Institute of Engineering (IME) and a specialization in Information Security. In your career, he is responsible to administer and defend military systems and networks, composed of multiple operation systems, almost linux flavor, several network equipments and defense enterprise solutions (firewall, IPS, IDS), satellite communications, etc. He worked for the United Nations (UN) in Haiti as a peacekeeper and a system and network administrator of Brazilian Battalion. He holds some certifications as CISSP, GSEC, GCED, GCIA, GCIH, GPEN, GWAPT, OSCP (Offensive Security Certified Professional) and OSWP (Offensive Security Wireless Professional). He is a great enthusiast of security challenges and has some rewards as Capture The Flag Victor - Network Penetration Testing and Ethical Hacking - SEC560 - Cyber Defense Initiative 2012, Capture The Flag Victor - Hacker Techniques, Exploits and Incident Handling - SEC504 - SANS Boston 2013, 2nd Place - Netwars Tournament at Cyber Defense Initiative 2012, 3rd Place - Netwars Tournament at Cyber Defense Initiative 2013, Champion of South America Global Cyberlympics 2013 (EC-Council Foundation). It is a great pleasure to be a Mentor and have the opportunity to share knowledge and experience in information security and help to increase the global security awareness.

Barone, Joshua

Joshua Barone has over 10 years of experience as a software developer, with a majority of that time specialized in security design and development. Joshua Barone has a core background in Java, .Net, Python, and security design principles.áJoshua specializes in .Net and Java Enterprise technologies, Web Services, Agile Methodologies, Open Source, and Test-Driven Development. He is familiar with a variety of platforms (Windows, Mac OS X, Linux, Unix), databases (PostrgreSQL, MySQL, MSSQL, Oracle), J2EE Application Servers, Software Development Methodologies and Tools. Joshua is also experienced in security vulnerability assessment for platforms and applications. Joshua is aáCertified Information System Security Professional (CISSP) and holds GIAC Security Essentials (GSEC) and Certified Incident Handler (GCIH) certifications, as well as a Master's in Computer Science from the University of New Orleans. He is currently a Senior Information Security Engineer for Geocent.

Check out Joshua's Blog:


Blackburn, Doc

Doc Blackburn has 16 years of professional, and over 30 years of personal, experience in system and software design, server and network administration and website programming. His interest in computers started in 1982 when he first started programming in DOS on a Texas Instruments TI-99 4a and continued as a dedicated computer hobbyist until he decided to make information technology a full-time career. He ran a successful IT consulting, hosting, and design firm for 12 years until he found his passion was in systems security and compliance. His well-rounded experience includes hardware, software, network design, management, administration, systems security, and compliance. He has vast experience at various levels of information technology from support to management. Recently, he has been heavily involved in the technical design and implementation of NIH approved FISMA compliant information systems. He holds ITIL, CISSP, and GIAC GSEC, GPEN, and GSLC certifications along with a Bachelor's degree from the University of Arizona. He is currently the Security Administrator for the University of Colorado Denver.

"In my professional career I have recruited, hired, trained, and mentored many highly technical individuals to excel in their professional development and am excited to do the same as a SANS instructor. I have a blog at explaining cyber-security to non-technical users in language and terms they can understand."

Blake, Greg

Greg Blake is the Founder and Principal Consultant of Fusion Information Security a company that specializes in information security vulnerability assessments and penetration testing. He has almost 20 years of experience in IT within education, insurance, and defense. Over the course of his career he has responded to multiple security incidents, helped his employers secure and defend their infrastructures, conducted forensic investigations, and provided expertise regarding PCI compliance. He holds a Masters of Business Administration and a B.A. in Information Technology Management. In his career Greg has held multiple certifications including MCNE, CNA, MCP, PCI-ISA, and SANS GCIH and GCFA. Greg currently holds CISSP, GPEN, and is a certified PCI Professional. Greg is a member of the Minnesota chapter of HTCIA and Infragard. Additionally, he teaches the ISC2 Safe and Secure Online program to school age children and their parents within his community.

Boller, Martin

Martin Boller is a Principal Information Security Auditor with Danfoss, a privately held global company that is a world-leading supplier of technologies that meet the growing need for food supply, energy efficiency, climate-friendly solutions and modern infrastructure. He also holds the CISA, GPEN and multiple other industry certifications.

Martins tenure in the IT industry spans over twenty-five years at Olivetti, Digital, Compaq, HP and Microsoft where he has held leading roles in IT security architecture, operations and management, where he has been defining and implementing technology and security strategy for clients worldwide. At HP Martin also worked as an instructor at customer and internal events on security and technology topics, as well as a mentor for other colleagues. A Mentor Program is an outstanding way for Information Technology Professionals to gather, learn and develop from the combined experiences and knowledge of each other.

Borso, Serge

Over the course of SergeÔs 10+ years as a security professional he has had the opportunity to work for various organizations and clients on all sorts of initiatives, ranging from implementing transparent biometric user authentication in online banking applications to dumpster diving and penetration testing. Serge earned his BachelorÔs of Science degree in Electronic Business Management and a MasterÔs of Science degree in Computer Systems Security prior to earning the CISSP and three SANS certifications: GPEN, GCFA and GWAPT. Prior to his current role, Serge was responsible for application security, fraud prevention, audit compliance, vulnerability assessing, security awareness and the like in an electronic banking environment encompassing hundreds of servers, thousands of websites and over one million unique end users.

Bumpus, Justin

Justin Bumpus is the Manager of Information Security for one of the worlds largest private 3rd party logistics companies. Prior to his role as manager Justin worked in Network and Security consulting and assisted with risk assurance and compliance auditing. As part of his daily responsibilities Justin runs the information security program for his company, works with legal and executives to ensure contract compliance both with customers and with company vendors. Justin is also responsible for creating the information security road map and continued improvement to the overall security of the company. Justin holds several industry certifications; Microsoft Certified Systems Administrator: Messaging Administrator (MCSA), Microsoft Certified Information Technology Professional: Enterprise Administrator (MCITP), Security+, Certified Ethical Hacker (C|EH), Certified Penetration Tester (CPT), Certified Information Systems Security Professional (CISSP), and GIAC Security Essentials (GSEC). He is excited to share is personal experiences while teaching others the skills and knowledge required to be successful in information security.

Caruso, Robert

As a CISSP, Robert Caruso designed the PKI client authentication portal for the Defense Logistics Agency training site to enable two-factor authentication of 22,000+ personnel located in 24 time zones using unbreakable cryptography. He has mentored high school students in the U.S. Cyber patriot competition and worked with the Boy Scouts of America to develop a new technology merit badge, Programming. Robert has also taught mainframe Cobol programmers to write web applications in J2EE where one student noted, "I had tried to learn Java programming several times, but this was the first time it made sense." An avid inventor and tinkerer, he holds a patent for a fitness entertainment hardware/software device and has developed applications for every platform from mobile apps to cloud servers. Currently, Robert is the Information Security Architect on the Strategy, Policy, and Planning team at Battelle Memorial Institute in Columbus, Ohio, where he researches current and emerging cyber threats to the enterprise. At Battelle, Robert co-authored a paper on Cyber Risk Managanament for Medical Device Design which was published in the AAMI journal in 2014. A graduate of The Ohio State University, College of Engineering in Computer Science, he also holds certifications in CISSP, GMOB, Sun Java, C++/MFC, FISMA/NIST NSTISSI-4011, CNSSI-4012, ISO-27002, and ITIL Fv3. Robert is active in the local security community in the Central Ohio Infragard, is an officer of the ISC2 chapter in Columbus, Ohio, and is on the GIAC/SANS Advisory Board.

Curtis, Michael

Michael A. Curtis (Mike) has over 20 years of experience in the security field and has held several key leadership positions at Rollins, Virtual IT Experts, and Additionally, Mike is active in the security community having served as a past member of the Symantec Customer Advisory Board, and is an officer in the Atlanta (ISC)2 Chapter. Mike holds a BSEE, cum laude, from Northeastern University, an MBA from Bentley College and a CISSP.

Davis, Richard

Richard Davis has more than 19 years of experience in the Information Technology field, eight of which specifically in Cyber Security / Information Security. He received his first computer in 1984 at the age of seven, and immediately became interested in programming. After graduating high school in 1996, Richard attended a local college and opened his own computer company, providing high-performance custom built PCs, service, networking, consulting, and training services for small to medium businesses and home users throughout the Northwest Georgia area. He sold the company after 10 successful years, and now serves as Chief Information Security Officer for a state college in Georgia. He holds 21 industry certifications, including CISSP, CCNP R&S, CCNP Security, CEH, and GCFE. He serves as Vice Chair for a regional ISAC in Northwest Georgia, is a member of InfraGard and HTCIA, and is a mentor for the Air Force Association's CyberPatriot program. He plans to continue to pursue additional certifications with SANS, specifically in the area of memory forensics and network forensics. Richards hobbies include computers, astronomy/space, and traveling.

Deluce, Jason

Jason has been practicing in the technology industry for 10 years. Security has always been a major focus, and his sole focus for 4 years.

Jason has an ardent interest for following trends and identifying new technologies and relevant applications. His devotion to continuous learning and research keeps him ahead of the curve. He currently holds GSLC and GSEC certifications.

Currently employed as a Technology Security and Compliance Manager, he has working knowledge of various security related technologies and vendors. Such technologies include Rapid 7 Nexpose and Metasploit, Logrhythm SIEM, and Palo Alto Networks Next Gen Firewalls. Working specifically in the realms PCI-DSS Compliance, and SOX Compliance, Jason has experience with leading, deploying, and evaluating compliance programs.

Recently, Jason obtained his first SANS Challenge Coin (RMO) during his SEC504 training by being a member of the SEC504 Capture the Flag winning team at SANS Chicago 2013.

Jason has a great ability to communicate technical concepts in a non-technical manner, and welcomes the opportunity to share his knowledge and experience.

Drews, Melvin

Coming from a long background of designing, implementing and supporting enterprise IT systems, Mel Drews found himself working in information security rather by accident 10 years ago and found a passion there. His security-focused experience includes security curriculum development, penetration testing, vulnerability and risk assessment, program development, audit, and miscellaneous consulting for U.S. and international entities, primarily in government, financial services and energy sectors. Mr. Drews currently works with a global financial services firm with responsibility for software security. He holds the GCFE, CISSP, CISA and Project+ certifications.



Elliott, Mark

Mark Elliott has served as an information security professional since 1999 and an information technology professional since taking his first class in computer programming in 1988. He is a retired Army Warrant Officer, having served over 34 years in the Army and the Army National Guard. He has conducted numerous red-team and blue-team assessments and is currently the lead security engineer on a government contract. He holds the CISSP, GPEN, GCIH, and GCED. You can connect with Mark at

Fitzpatrick, Montez

Montez has worked in the industry since 2004. However, Montez has a passion for technology that reaches much farther back than that. A personal philosophy of "never leave an interesting problem or question to wonderment." Montez currently works as a Senior Information Security Engineer and a Senior Security Consultant, with experience that spans the gamut of information security domains, He has mastery of both soft and hard technical skills.

Frates, Jarrod

Jarrod started on computers in elementary school on a TRS-80, and moved through the years to the Apple II, the Macintosh, and eventually the PC. After working for a couple of years as the unofficial "computer guy" in his department, he transitioned into a full-time IT role in the mid-1990s, eventually working on projects involving wireless networking and PKI cryptography. Since then has held a strong interest in the cat-and-mouse games between attacker and defender. He's worked in a variety of industries, including medical manufacturing, financial, energy, and local government, learning that while every environment is different, no environment is truly unique. For the last few years, he's been involved in security operations at an ACS, Inc., contract at the County of Orange, overseeing a wireless networking deployment and taking a strong role in re-engineering the County's security infrastructure, among many other projects. He holds a GAWN and GCIH, and has no plans to stop with those.

Gorenflo, Jonathan

Jon has worked in Information Technology for over 10 years, and has focused on Information Security for the last 7 years. He is passionate about security, and loves trying to ignite that passion in other people. Jon was a Warrant Officer in the Army Reserve, where he served for over 11 years. He currently maintains the GCIH, CISSP,MCSE: Security and Security+.

Hadder, Allen

Allen Hadder has been in the IT field for over 20 years. Most of his 20 years of experience has been as a consultant for small to enterprise businesses in the financial, retail, and education industries.

Allen currently holds the GIAC GSEC and GCIH certification. In past years he has also earned his MCSE, Cisco CNA, Citrix CEA, and VMware VCP.

He also has a passion for teaching and educating people about information security.

Harmon, Matthew J.

Matthew J. Harmon has over 20 years of experience in incident analysis and response, secure architecture development, security auditing, penetration testing, tactical risk assessments, international standards development.

Mr. Harmon presents frequently for groups such as the Cyber Security Summit, Saint Paul College ACM Cyber Security Workshop, Metropolitan State University's Masters in Computer Forensics Capstone, and (ISC)2 Twin Cities MN on topics such as Cyber War, DDoS Survival, Java Exploits Offense and Defense, Incident Handling and Hacking Techniques, and Evidence Based Risk Assessments. He has also served on various security organization and conference advisory boards, organized the Security B-Sides MSP 2014 Conference and the Security B- Sides MSP Crypto Party and Hacker Showcase at the 2014 Cyber Security Summit.

Hazar, David

David Hazar is a seasoned IT security professional with a broad technical background that includes experience in both network and application penetration testing, software analysis, design, and development, database development and administration, network/server analysis, design, and administration, data center design and implementation, technical support, and telecommunications. He holds both a Bachelor of Science, Informaiton Systems and a Master of Information Systems Management from Brigham Young University. He is currently employed by Aetna as an Information Security Architect. He holds the CISSP, GCIA, GCIH, Certified FAIR Risk Analyst, MCDBA, and ITIL v3 Foundation certifications and has previously held both the CCNA and CCNP certifications from Cisco.

Johnson, Diane

Diane has been a Technologist for over 20 years focusing on security since 9/11. She has worked in roles such as Help Desk, Pen Tester, Sys Admin, Network Engineer, Privacy Manager, Security Analytics, and Enterprise Security Architect. Her industry experience includes Retail, Healthcare, Technology, Utility, and Local Government. These roles and industry experience have garnered a deep understanding of security architecture and the underlying technologies and business processes. When not analyzing logs, hacker techniques, or packet captures; Diane is found with family, traveling, creating crafty things or playing games on and off the net. Mentoring Sec504 is exciting to Diane because it is one of the SANS courses that delves into the mindset of the attacker and often the student will leave the class with a new perspective.

Jones, Jason T.

Jason T. Jones has be serving as an Active Duty member of the United States Air Force for 12 years and been selected to be grandfathered into the new Air Force Specialty Code (AFSC) known as 1B4X1 which translates to Computer Network Defense operator in English. He has been involved with some kind of computer security or administration for the better part of 15 years. Currently he sits as the Chief of the Incident Response Team for the National Reconnaissance Office where he directs and partakes in Dead box forensics, malware analysis/reverse engineering and Network Forensics. He has is Bachelors of Science in Computer Science from Trident University and is current pursuing his Masters Degree in Cyber Security with a follow on MBA. He is a CISSP and also has obtained GSEC, GCFE, CEH and MCP with a multitude of additional training in Information Assurance, Physical Security as it pertains to information systems, Unix Administration, Windows Network Administration. Jason could strike up a conversation with someone over pretty much anything they could have a question in regarding computers

Krishnamurthy, Sundar

Sundar is SANS-GISF and GSEC certified and a senior software development leader with IMS Appature in Seattle. He earned the title of "Professor Sundar" from his previous team at Microsoft for teaching skills and has trained multiple teams on different aspects of software development. To make you think about information security the same way you think about physical security for yourself and your family is the holy grail. He is @sundarnut on Twitter for the latest #infosec topics, trends and incidents. Sundar aims to be a mentor so he can inculcate security as a fundamental technical trait and make it the best lecture you've ever taken!

Mashburn, David

David Mashburn is currently the IT Security Manager for a global non-profit organization in the Washington, D.C. area. He also has experience working as an IT security professional for several civilian Federal agencies, and over 15 years of experience in IT. He holds a Masters Degree in Computer Science from John Hopkins University, and earned a B.S. from the University of Maryland at College Park. David holds multiple security-related certifications, including CISSP, GPEN, GCIH, GCIA, and CEH. He is also a member of the SANS / GIAC advisory board, and teaches courses in the Cybersecurity curriculum at the University of Maryland - University College.

McKenzie, Timothy

Timothy McKenzie has almost 20 years of IT and Information Security experience working in financial, government, defense contractor, and service related markets. Timothy has been trained in malware research and exploit development, expert penetration, and forensics work. Timothy works for Dell SecureWorks as a red team penetration tester, focused primarily on network and web-based attacks. Timothy loves sharing the vast knowledge he has acquired to give back to the Information Security community.

Neely, Lee

Lee Neely is a senior IT and security professional at Lawrence Livermore National Laboratory (LLNL) with over 25 years of experience. He has been involved in many aspects of IT from system integration and quality testing to system and security architecture since 1986. He has had extensive experience with a wide variety of technology and applications from point implementations to enterprise solutions. Lee has worked with securing information systems since he installed his first firewall in 1989. As part of his employers Cyber Security Program (CSP) he leads their new technology group, working with programs to develop secure implementations of new technology. Lee was instrumental in developing their secure configurations, risk assessments and policy updates required for iOS, Android, BlackBerry and Windows Mobile Devices. He has worked to evolve solutions for both corporate and BYOD requirements. Lee worked with the SANS SCORE project to develop the iOS Step-by-Step configuration guide as well as the Mobile Device Configuration Checklist which is included in the SEC 575 course. He teaches cyber security courses, including the new manager cyber security training, and Information System Security Officer training. Lee has a Bachelors in Computer Science from Cal State Hayward and holds several security certifications including GMOB, CISSP, CISA, CISM and CRISC. He is also the Technology Director for the ISC2 EastBay Chapter.

You can keep up with Lee @lelandneely

Neise, Patrick

Patrick Neise is currently the Director, Information Security for an integrated risk management provider in Annapolis, MD. Recently retired from the U.S. Navy, Patrick brings 20 years of operational experience in submarines and information warfare to the information security community. He holds a Masters Degree in Information Technology Management from Webster University, a B.S for the the University of Texas at Austin in Electrical Engineering and is currently pursuing a M.S. in Information Security Engineering from the SANS Technical Institute. Patrick holds multiple certifications including CISSP, CAP, GPEN, GCIH, GCIA, GCED, GPPW, GSLC, GSEC, GCCC, C|EH, and PMP. He is also a member of the SANS/GIAC and GPWN advisory boards.

Overbaugh, John

John is passionate about security. He holds the CISSP, GWAPT, GSLC and GCIH certifications and is managing director for security services at Caliber Security Partners, a firm dedicated to helping clients achieve higher levels of security. Prior to joining Caliber, he was Director of Security and Compliance for Healthagen, Aetna's emerging businesses division. From 1999 to 2006, he led application security for multiple teams in Microsoft's product groups. John has 19 years of experience in information technology and software, and 15 years of experience in IT security. His security and compliance back-ground is in healthcare and secure development. John is married and enjoys time spent with his lovely wife and their six children.

Peterson, Lisa

Lisa Peterson CISA, CRISC, CISSP has worked in Information Security for 20 years, and is a Security Analyst for Progressive Insurance. Her current focus is in governance, risk and compliance. She is a part-time instructor at Cleveland State University and also speaks on security topics. She serves on the board for the Information Security Summit, the Northeast Ohio chapter of ISACA, and the Northeast Ohio chapter of CSA.

Pryor, Janice

Pulsifer, Jonathan

Jonathan has seven years of experience in network analysis and over 15 years behind the keyboard.á His experience ranges from the home lab to multi-gigabit government production environments. Recently, Jonathan decided to spread his wings and attain his GCIA certification and become a member of the SANS/GIAC Advisory Board. Jonathan's goal is to become GSE certified. In his most recent years, Jonathan has been employed as a network defense instructor for the Canadian Armed Forces and has had the privilege of training the next generation of talented individuals to conduct defensive cyber operations for the Canadian military. Jonathan is a fan of social media, and you can tweet him at @JonPulsifer or contact him through his website

Schallock, Felix

Felix has more than 20 years of experience in IT and IT security. He held positions as IT systems engineer and IT advisory manager at a big four company. He has experience in IS management, IS auditing, IS consulting, attack & penetration testing, and IT forensics. He holds a BSc (hons) in science of computing (University of Derby) and a MBA (Open University). His certifications include among others CISA, CISM, CISSP, GCUX, GCIH and EnCE. He was a key contributor to the OSSTMM.

He enjoys sharing his knowledge and learning from peers. He is looking forward to active discussions in class.

Scheidel, Greg

Greg Scheidel has over 20 years of hands-on experience in IT including desktop and server support, network design and implementation, application development and programming, IT service management, IT security, and information assurance. He currently leads the security branch of a large program responsible for providing security engineering, Assessment and Authorization (A&A) support and assessment activities, and general information assurance and security advice and recommendations. Greg excels at communicating with technical and non-technical stakeholders, firmly believes IT and security must serve business needs rather than exist for their own sake, and is passionate about teaching others while reinforcing and honing his own knowledge.

Snow, Selvan

Selvan has been in IT for over 23 years, specializing in Unix/Linux Systems Administration. He has previously worked at the IBM and the US Air Force (focusing on parallel processing and Distributed Security and File Systems). As an IT Manager at Progressive Insurance, he has led teams from IT Operations to Enterprise Architecture. His current focus is IT Security Engineering and Architecture. He is also a Adjunct Professor at Cleveland State University teaching Java and Unix/Linux Systems Programming. His current efforts include an active proposal with the CIS Department to establish a DOH (Department of Homeland Security) accredited Information Security track at CSU.

Squire, Jonathan

Jonathan Squire is a founding member of the Information Security Group of a well known publishing and media company. Jonathans expertise covers a wide range of skills including security architecture, incident response, hacker attack and defense techniques, reverse engineering, and extreme curiosity in how everything works. While working at his day job, Jonathan is credited with accomplishments that include developing an Information Security model for the enterprise, architecting a secure, centralized credit card processing solution, and guiding the design of the security infrastructure deployed throughout many customer facing properties. Mr. Squire is also responsible for providing direction in governance and industry best practices. Jonathan regularly scopes and leads penetration testing and security assessment initiatives, as well as providing guidance for corrective actions and performing debriefings across all levels of the organization. In his spare time, Jonathan is known to enjoy disassembling any piece of technology that cost more than $20 just to find out what else it can do. This propensity for abusing technology is easily witnessed by viewing the buckets of broken parts strewn throughout his basement as well as the creations that rise from the rubble. Jonathan has presented on many of these creations and the flaws that allowed the security to be bypassed on these systems at conferences including BlackHat and Hack in the Box. Jonathan is very passionate about information security and always strives to challenge the status quo and to improve everything he can. Jonathan shares that passion with his student in his teaching style and his genuine willingness to share and engage students in all topics related to information security.

Sternstein, Jon

Jon Sternstein has years of experience in the security industry and has been a lead contributor to securing a wide variety of environments from the education to financial and healthcare. Jon is the co-chair of the Technology Resources Workgroup at the North Carolina Healthcare Information and Communications Alliance (NCHICA). Jon has worked on both the offensive and defensive sides of the security industry. He graduated with a B.A. in Computer Science, minor in Business Studies, and holds GPEN, CISSP, CCNA, Certified Ethical Hacker (CEH), and many other security certifications. He has presented at DerbyCon and Raleigh Security B-Sides conferences and is one of the organizers of the Raleigh B-Sides conference.

Jon has a strong passion for security and experimenting with new technology. He has always been a supporter of teaching and knowledge sharing. Outside of security, Jon enjoys traveling the world, great music, and playing guitar.

Taylor, Ron

Ron has been working in the information security field for the past 15 years. He worked as a consultant for ten years, gaining experience in many areas. For the past five years he has been working as an engineer for Cisco Systems in RTP. His focus is on evaluating the security of Cisco products and working with the development teams to implement high security standards. Ron is a subject matter expert in DISA STIGÔs and web application penetration testing. He also holds many industry certifications including GPEN, GCIH, GWAPT, RHCE, CCSP, CCNA, CISSP and MCSE.

van Niekerk, Colin

Colin van Niekerk is an avid technology enthusiast and Information Security Specialist who broke his first computer at age 8. By age 12, he had coded his first game, which included a simple, home baked Artificial Intelligence engine and at 15 he was sneaking out of bed at night to read his fathers BSc Computer Science textbooks.

In more recent years, he has attained the GCFE and GCFA certifications and joined the SANS/GIAC DFIR Advisory Board. Honours and awards include winning a Netwars tournament and a Lethal Forensicator Coin.

Colin is currently a Security Specialist within a large health insurance and financial services company where he spends his days either on Linux servers, buried in his digital forensics lab or consulting to the business on security related matters.

Colin tweets sporadically (@colinvanniekerk) and his LinkedIn profile is available here:

ventura, brian

Brian has 20+ years in Information Technology, ranging from systems administration to project management and information security. He is an Information Security Architect at the City of Portland. Brian obtained the CISSP certification earlier this year and has previously been certified with Linux and Solaris. Brian has always been eager to promote others learning and sharing solutions with the community.

Villanti, Jon

Jon Villanti is an IT Security Manager with a Fortune 50 financial services company in Houston, TX. He has 22 years of IT experience; 12 years focused in IT security.

Prior to his current role, Jon has worked as an IT Security consultant, VP of Operations, CIO / VP and CEO. Jon├┬ó├┬├┬s private sector experience is augmented by over 20 years of Air Force experience, ranging from Intelligence Operations, Fighter Pilot, and Cyberspace Operations.

As a SANS mentor Jon enjoys working with students to realize their own ├┬ó├┬├┬Eureka├┬ó├┬├┬ moments, mastering relevant curriculum in support of personal and professional goals.

Jon holds several IT Security certifications including CISSP, GPEN, GCIH and GSEC. His LinkedIn profile is You can follow @houston_jon on Twitter.

Wright, Jeffery

Jeff has over 20 years in Information Technology. He enjoys InfoSec and looks for every opportunity to both learn and train others on new techniques as they come to his attention. Jeff holds 9 industry certifications including the giac GCIH, GPEN, and GWAPT. In his spare time Jeff enjoys building test networks and spending time with his wife and 2 kids. Jeff looks forward to sharing the exciting world of Incident Handling with each and everyone of you :-)