Kick off the New Year with SANS Security East 2017 in New Orleans (January 9-14)

Mentor: Bios

Mentors are highly qualified, experienced professionals who make themselves available in your local area to help you learn the course material and get certified. Each Mentor is hand-selected from students that have completed their relevant GIAC certification with scores of 85% or higher.

Emmanuel has worked in the IT field for over 7 years, almost all of that time spent in the Financial Industry. In his current role, he works as a Technical Project Manager within his company's Enterprise Security & Fraud sub-division. He holds a Bachelor of Science in Network & Communication Management and a Master of Science in Information Science where he minored in IT Security. Emmanuel holds both the CompTIA Security+ Certification and the GIAC GSEC Certification. In addition, he serves on the GIAC Advisory Board. Emmanuel is a published science fiction author and he regularly blogs at his website Emmanuel loves to help others become the best they can be and is looking forward to helping others sharpen their security skills through the outstanding courses offered by SANS.

Chris is a Director in IT Security at GlaxoSmithKline where he leads the services that deliver the IT controls that protect the company's network, servers, web and mobile applications, and data. He has led many incident response and vulnerability remediation efforts and has been working for over 20 years in the healthcare industry to promote information protection and IT security. He knows that striking the best balance between security and usability depends on having a clear understanding of the risks that vulnerabilities and threats pose to the business and being able to articulate those risks to senior business leaders. Chris earned his MBA from Drexel University with concentrations in both Management Information Systems and Corporate Finance and holds several professional and security certifications including GPEN, CISM, and a Six Sigma Black Belt.

Chris is an active member of the infosec community and looks for every opportunity to both learn and encourage others to gain a deeper understanding of the fascinating and often intimidating world of information security. He regularly takes part in security training, conferences such as Shmoocon and BSides, and capture-the-flag challenges to apply and grow his skills and understanding.

Laios Barbosa is a Brazilian Army Officer and a senior network and information system security administrator at Brazilian Ministry of Defense. He has a Computer Engineering degree from the Military Institute of Engineering (IME) and a specialization in Information Security. In your career, he is responsible to administer and defend military systems and networks, composed of multiple operation systems, almost linux flavor, several network equipments and defense enterprise solutions (firewall, IPS, IDS), satellite communications, etc. He worked for the United Nations (UN) in Haiti as a peacekeeper and a system and network administrator of Brazilian Battalion. He holds some certifications as CISSP, GSEC, GCED, GCIA, GCIH, GPEN, GWAPT, OSCP (Offensive Security Certified Professional) and OSWP (Offensive Security Wireless Professional). He is a great enthusiast of security challenges and has some rewards as Capture The Flag Victor - Network Penetration Testing and Ethical Hacking - SEC560 - Cyber Defense Initiative 2012, Capture The Flag Victor - Hacker Techniques, Exploits and Incident Handling - SEC504 - SANS Boston 2013, 2nd Place - Netwars Tournament at Cyber Defense Initiative 2012, 3rd Place - Netwars Tournament at Cyber Defense Initiative 2013, Champion of South America Global Cyberlympics 2013 (EC-Council Foundation). It is a great pleasure to be a Mentor and have the opportunity to share knowledge and experience in information security and help to increase the global security awareness.

David Bernal Michelena holds a bachelor's degree in Computer Engineering from the National Autonomous University of Mexico (UNAM). Since June 2015 he serves as a cyber security researcher in Cyber Security Group in Scitum, a large consultant company in Mexico and Latin America. David's main activities are malware analysis, cyber threat intelligence, digital forensics and writing yara and snort rules to detect those threats and protect customers. David also performs ethical offensive activities and writes custom tools that are used in controlled environments to verify that security products do what they claim to do. 
From July 2013 to June 2015 David was a member of Security Events team at Alstom, a large company in energy and transport solutions protecting the endpoint environment of about 90,000 hosts distributed worldwide. In his time in Alstom his main activities were incident response, malware analysis and remediation, forensic analysis, IPS/IDS and SIEM management.
Formerly he served as a Senior Computer Forensic Analyst at Scitum from July 2011 to July 2013. His main activities there were evidence acquisition, analysis, preservation, incident response, log analysis and results reporting to Scitum's customers. In Scitum he had the opportunity to work in challenging projects for Mexican private and public institutions, including large Banks and other large government clients.
From August 2009 to July 2011 he worked as a forensic analyst and incident handler in UNAM Computer Emergency Response Team, which is the first CERT to be created in Mexico. David is GREM, GCFA, GCFE and Access Data certified. He likes programming in several languages and is a command line lover in LINUX and Windows as well.
On his free time, he likes to swim and play the piano.

Raluca is an experienced Information Security and Privacy specialist, holding a Master Degree in IT Security, and several industry recognized certifications: GSEC, CISSP, CRISC, CISM, CISA, CIPT and PMP. With her employer, Raluca is heavily involved in various cyber security initiatives, leading information risk assessments, supporting the application security program, participating in the development of security architecture patterns for new platforms and technologies. Raluca is also a former Computer Science teacher, with 10+ teaching experience. Raluca is a believer in continuing education, so when she is not studying for a new certification or a new skill, she loves helping others learn and having again the opportunity to teach!

Mike Cardosa is currently the Assistant Vice President of Information Security and Risk Management at The Church Pension Group. His experience includes information security, systems administration, technical architecture design, and business process engineering. Prior to working at CPG, Mike was a consultant at Accenture where he worked on projects for both the US Department of Treasury and Columbia University. He has multiple GIAC certifications as well as the CISSP. He developed and maintains Winquisitor, an information gathering tool for MS Windows, for which he earned his GCIH Gold certification. Mike holds an MBA from the New York University Stern School of Business and a BS from Georgetown University.

Michael A. Curtis (Mike) has over 20 years of experience in the security field and has held several key leadership positions at Rollins, Virtual IT Experts, and Additionally, Mike is active in the security community having served as a past member of the Symantec Customer Advisory Board, and is an officer in the Atlanta (ISC)2 Chapter. Mike holds a BSEE, cum laude, from Northeastern University, an MBA from Bentley College and a CISSP.

Jeremy Druin works as an internal pen-tester, incident responder, and defect-remediation expert for a multi-national transportation logistics company. Other responsibilities include web vulnerability assessment operations, setting application and database security standards, creating developer training programs, and teaching developers how to architect, design and write secure applications. Additionally Jeremy develops the open-source Mutillidae 2.x training environment and consults on web-application security topics. As the Director of Education for the Kentuckiana ISSA chapter, Jeremy presents on web application pen-testing and remediation along with operating the "webpwnized" YouTube video channel. Jeremy has a Bachelor in Computer Science from Indiana University and is a GIAC-certified Network/Web Application Pen-Tester and Exploit Developer.

Steve Elovitz is currently a Manager within Mandiant's security consulting team. Mr. Elovitz has a broad range of experience in the industry and has delivered both proactive and reactive services to government and commercial clients. Steve has significant experience in IR, forensics, as well as penetration testing. Steve graduated from Pennsylvania State University with a BS in Information Science and holds multiple certifications including: GPEN, EnCE, CEH, and CISSP. Throughout his career, Steve has gained experience as a sysadmin, a developer, and as both a red team and blue team analyst. 

Charles Gifford (Chazz) is a recognized expert within cybersecurity and has been working in the information technology and security field since 1997. Over the course of his career, Chazz has held various technical and leadership positions within the Aerospace and Manufacturing Industry. Chazz currently leads a Global Security and Risk Team for a fortune 500 company that spans everything region. Chazzs latest scholastic achievement is graduating with honors from the University of Maryland University College in the Masters of Science in Information Technology focused in Information Assurance. Chazz has specialized in mentoring, metrics and measuring effectiveness of security teams throughout the last 5 years of experience.

Matt Helin has over 10 years experience in the IT and data communications field. He is a former network and systems engineer who has shifted his primary focus to all things information security for the past few years. He holds the CISSP and GCIH certifications and currently works in the information security department for a high profile e-commerce company. Matt is excited to mentor SEC 504 because it is generally a person's first exposure to common hacking tools. Witnessing first hand how systems are breached can be amazing, alarming, and eye opening.

From load FILENAME,8, the Start button... to touch interfaces, technology has been a constant companion (and sometimes obsession) for Cliff.

Cliff's professional career started 18+ years ago as a help desk analyst supporting mainframes and dial-up internet. He progressed through desktop support, desktop management and server administration and joined the security team in late 2008. The wide diversity of topics in security has Cliff thirsting for knowledge like he was a teenager again.

Cliff currently holds CISSP, CISM, GPEN, GCIH, GWAPT, GXPN, OSCP, MCSA and Security+ certifications. 

Occasionally (read rarely), Cliff will add something mildly informative to

Jason Kinder has over 17+ years of experience in the IT and InfoSec industry working in the private sector as a network administrator, network engineer, and then moving to manage a distributed IT group before making the jump over to InfoSec. The jump over to InfoSec has put him in a position to manage InfoSec Operations for a multi-billion dollar defense contractor battling some of today's shared adversaries. Through the course of his career his has gained the MCSE and CNE certs back in the day and worked hard recently to achieve the CISSP certification and more recently his GCIH. Backed by a breadth of technical skill and knowledge, it also takes some keen business sense and acumen to properly navigate today's corporate environment. While working in IT, Jason earned a Bachelor's of Science Degree from Wright State University in Dayton, OH in 2001 followed by an MBA with a concentration in Management, Change and Innovation also at Wright State University in 2009. The technical and business skills he has amassed over his career are key to being successful and properly understanding today's security landscape and how it impacts the business. Jason is very excited about the opportunity to Mentor SEC504 as a way to give back to the community, broaden people's minds, and training the InfoSec staff of tomorrow. The challenge is here and now with adversaries evolving and regularly knocking on our doors. Jason will help students be better prepared to identify and deal with these challenges on a regular basis.

Bill has a Bachelor?s of Science in Criminal Justice from the University of Alabama Birmingham and a Master's of Science in Technical Management from Embry Riddle Aeronautical University.  Currently he is working on his Masters of Science in Information Security Engineering through SANS Technical Institute and has numerous certifications through SANS.  Bill began his career in computer technology in the early 1990's while working at the University of Alabama Birmingham. There, he learned many of the widespread platforms and operating systems, employing computer troubleshooting and virus removal skills. He has been employed with Northrop Grumman for 17 years, during which he has performed several roles including desktop support, client engineering, systems engineering, and most recently information security.

Travis Lee is the Director of Penetration Testing at AppSec Consulting with over 11 years of experience in Information Security, Network and System Administration, and System Architecture. He has expertise in many areas including network and web application penetration testing, mobile and client application penetration testing, security management and operations, vulnerability research, cyber-physical systems, and conducting technical training. He has discovered and responsibly disclosed numerous vulnerabilities in commercial software, web applications, and cyber-physical control systems.

Travis is a Computer Science graduate of the University of Hawaii at Manoa and holds numerous professional certifications including the prestigious GSE, OSCE, OSCP, GXPN, GREM, GPEN, GCIA, GCIH, GCFA, GSNA, GSEC, CISSP, and MCSA. Additionally, Travis has achieved the distinctive title of SANS Cyber Guardian (Red Team). Travis is also a Cyber Warfare Officer for the Air National Guard and part of a leading, nationally recognized Cyber Operations unit that conducts worldwide, full spectrum network security operations to improve the DoD Global Information Grid and the Air Force's network security posture. Prior to joining AppSec, Travis worked in the utilities industry and higher education.

Twitter: @eelsivart


Roy Luongo is a cyber professional with over 15 years experience. As a CNO operator, Roy has performed offensive cyber operations and adversary emulation for the federal government for many years. He served as a technical director for interactive operations and the Chief, NSA Red Team. As a SME for the United States Army and the Department of Defense(DOD) he has developed thousands of cyber professionals through direct training and workforce design used throughout the DOD and other Federal organizations. Mr. Luongo holds two Masters Degrees in Information Management and Cyber Security Additionally, he holds CISSP, GCIH, GPEN, GXPN, GAWN, and GMOB certifications. He has worked with local high schools to mentor teams to the final rounds of both the Cyber Patriot and Maryland Cyber Competitions and is an avid promoter of cyber skills in middle and high school curriculums. Mr. Luongo has also served as a member of the Center of Academic Excellence, Cyber for the Department of Defense, working with Universities and Colleges to expend curriculums and degree programs in Cyber Security and Cyber Defense. Roy enjoys working with like-minded individuals and mentoring for the SANS Institute, allows him to experience the growth of cyber in a small group collaborative setting. Mentorship allows him to give back to a community that has given him so much.

Lisa Peterson CISA, CRISC, CISSP has worked in Information Security for 20 years, and is a Security Analyst for Progressive Insurance. Her current focus is in governance, risk and compliance. She is a part-time instructor at Cleveland State University and also speaks on security topics. She serves on the board for the Information Security Summit, the Northeast Ohio chapter of ISACA, and the Northeast Ohio chapter of CSA.

Steven Romero is a 20-year technical professional with experience in IT operations, ICS engineering, project management, & training. Steven is passionate about information security, and is a strong advocate and beneficiary  of the SANS hands-on approach to learning. Please join Steve and thousands of other InfoSec professionals who have advanced their knowledge and career through the SANS training and certification program.

Joe Vest has worked in the information technology industry for over 17 years with a focus on red teaming, penetration testing and application security.  As a former technical lead for a DoD red team, he has extensive knowledge of cyber threats and their tools, tactics and techniques, including threat emulation and threat detection.  Joe is the co-founder of the security consulting company MINIS LLC, providing innovative solutions for the mitigation against an ever-changing cyber threat.  As a leading security professional, he has achieved numerous security certifications: OSCP, CISSP-ISSMP, CISA, GPEN, GCIH, GWAPT, CEH, Security+

Jim Voorhees was named MSISM Program Director of SANS Technology Institute (STI) in November 2011. A graduate of STI, Dr. Voorhees has had a varied career in government and private industry. He earned his Ph.D from the Johns Hopkins School for Advanced International Studies after earning degrees in International Affairs from the George Washington University and working on the editorial staff of the International Food Policy Research Institute. After writing a book for the Kettering Foundation (Dialogue Sustained) and experience with Kettering, the Congressional Research Service, and IREX, Dr. Voorhees entered the IT industry as a technical writer, he quickly moved on to systems administration, then IT security and SANS. He has worked on security at several government agencies, including the FBI and the IRS, and currently works for Sage Management as a Network Security Engineer on a DOD contract.

Tom Webb has 9 years of experience in IT Administration and Security. Tom started his career working for state law enforcement where he was responsible for network design, implementation and security. He is currently employed with the University of South Carolina as an Information Security Officer where his primary role includes: Lead Incident Handler and Forensic investigations, Penetration Testing, Vulnerability Management, and Risk Assessments. In these roles, Tom has worked extensively with a variety of operating systems and tools, such as Novell Netware, Linux, OS X, Snort, Juniper, Cisco, Checkpoint, and numerous open source forensic and incident response tools.

Tom has a B.S in Information Management from the University of South Carolina. He holds various certification including: GIAC Certified Incident Handling (GCIH), GIAC Systems and Network Auditor (GSNA), GIAC Certified Forensic Analyst (GCFA), GIAC Assessing Wireless Networks(GAWN), GIAC Reverse Engineering Malware (GREM) and Certified Information Systems Security Professional (CISSP).