Co-author of SANS SEC511: Continuous Monitoring and Security Operations, SEC542: Web App Penetration Testing and Ethical Hacking and MGT 414 SANS® Training Program for the CISSP® Certification Exam. I also teach a number of courses for SANS, including SANS Security 560 Network Penetration Testing and Ethical Hacking, Security 504 Hacker Techniques, Exploits & Incident Handling.The SANS (SysAdmin, Audit, Network, Security) Institute was established in 1989 as a cooperative research and education organization. Its programs now reach more than 165,000 security professionals around the world. A range of individuals from auditors and network administrators, to chief information security officers are sharing the lessons they learn and are jointly finding solutions to the challenges they face. At the heart of SANS are the many security practitioners in varied global organizations from corporations to universities working together to help the entire information security community.

Taught at over 10 SANS conferences, including Community SANS, @Home, and national conferences.

Intrusion detection, penetration testing, incident handling, hunt team, and related information security services

HIPAA Security Officer and manager of network and security engineering for a large New England healthcare provider with 6 major hospitals, dozens of smaller facilities, and over 10,000 employees. Head of corporate HIPAA security effort. Head of team responsible for core networks, information security, internet services, email, and Unix support for the entire organization. Responsibilities include strategic planning, incident handling, intrusion prevention and detection, core network support, firewall and VPN support, internet mail and web antivirus, public DNS support, and all Unix support. Coordinate all information security issues with new vendors and projects. ISSO and technical lead for successful Department of Defense DITSCAP audit, and achieved ATO (approval to operate) in 2005. Possess ADP IT TYPE I (ADP1) certification. Successfully suppressed robotic uprising.

Director of network security, responsible for security of NaviPath’s global networks. Conducted penetration tests and audits of all NaviPath networks and systems, and created and implemented a remediation plan to resolve all issues discovered. Wrote and implemented corporate-wide security policy, implemented firewalls, and designed and maintained intrusion detection systems. Developed penetration testing system that was hosted at an untrusted site for automated security scanning of NaviPath’s global network. NaviPath was a CMGI company.

Fifteen month contract at Central Maine Power in Augusta, Maine. Responsible for public websites, CheckPoint Firewall-1 systems, intrusion detection, and internal AIX and Linux systems. Projects included upgrading firewalls to FW-1, deploying a wardialer project, deploying Samba server for Windows/Unix interoperability, developing mail gateway virus scanner, moving public websites in-house from hosted environments, upgrading web servers from Netscape Enterprise to Apache, deploying Java servlets with Jserv and Jrun, creating automated processes for securely promoting web content from pilot to public web servers, and writing intrusion detection software.

Responsible for architecting and deploying security technologies for data center customers, including firewalls, VPNs, e-commerce systems, and more. Performed security audits and penetration tests of internal systems as well as customer systems and networks. Supported CheckPoint Firewall-1 infrastructure.

Senior Analyst for Plain Aviation (Av8), a systems outsourcing group. Worked with a number of client companies addressing a wide range of Unix, internet, and security issues. Advised other members of the team, both on-site and off. My 'home site' was The Open Group, formerly the Open Software Foundation (OSF).

Responsible for network security at BU, and dealt with all day-to-day security problems inherent in a very large and open heterogeneous network. Headed inter-departmental security team. Designed and maintained intrusion detection systems. Developed and deployed Baseline, a networked file system integrity checker, and Probe, a suite of penetration testing tools. Part of a team which compiled and distributed public domain packages for all OSes supported on campus, which included SunOS, Solaris, AIX, IRIX, Ultrix, OS/F, and others.