David has been a network engineer, consultant, security designer and architect, author, and technical instructor since the early 1980's and has specialized in IT security and compliance work in the recent years. David is a certified instructor for The SANS Institute and has been an instructor with SANS since 2012. David is the lead instructor for the CISSP certification course, and his students consistently rate David's lectures as excellent. A recent survey showed that approximately 93% of the students attending his CISSP classes passed the very challenging 6-hour certification exam on their first attempt. David has lectured on information systems security, compliance, and network engineering to prestigious groups including The Smithsonian Institute, the U.S. Military Academy at West Point, the U.S. Army Advanced Battle Command, the U.S. Navy Seventh Fleet, the U.S. Department of the Interior, Cisco Systems, Inc., Oracle Corporation, Symantec Corporation, Hewlett-Packard Company, and JP Morgan Chase & Co. Global Financial Services, to name a few.
In addition to writing and lecturing, David routinely performs as an IT security and compliance consultant, performing gap analysis and remediation services largely focused in the Payment Card Industry Data Security Standard (PCI-DSS credit card data), and the Healthcare Information Portability and Accountability Act (HIPAA - patients' medical information) for medical practices. He is a Qualified Security Assessor of PCI and a Microsoft Subject Matter Expert on the Windows Active Directory enterprise network operating system platform. He performs as a security designer and architect working with Dell SecureWorks security consulting.
David is an author, a lecturer, and technical editor of books, curriculum, certification exams and computer based training videos. He has had ten books published to date, with five of them focused on IT security, and the others targeting enterprise level network engineering, network architecture, and operating system administration.