Here's how we're different: we're a group of TEACHING consultants. We know what we're doing, and we'll explain how we do it.

Jonathan Ham

Certified SANS Instructor, CISSP, GCIA, GCIH

Jonathan Ham is an independent consultant who specializes in large-scale enterprise security issues, from policy and procedure, through staffing and training, to scalable prevention, detection, and response technology and techniques. With a keen understanding of ROI and TCO, he has helped his clients achieve greater success for over 12 years, advising in both the public and private sectors, from small startups to the Fortune 500. He's been commissioned to teach NCIS investigators how to use Snort, performed packet analysis from a facility more than 2000 feet underground, and chartered and trained the CIRT for one of the largest U.S. civilian Federal agencies. He currently holds the CISSP, GCIA, and GCIH certifications, and is a Certified Instructor with the SANS Institute.

Sherri E. Davidoff

MIT 2003, GCFA and GPEN-certified

Sherri Davidoff is an independent information security consultant specializing in forensics, penetration testing and incident response. She began her security career as a member of MIT's network security team, where she managed incidents and designed a network flow analysis tool. Subsequently, she founded the incident response team and managed UNIX/Linux security for the Boston Children's Hospital. She has consulted for a wide variety of industries, including financial, health care, manufacturing, academic, and government institutions. Ms. Davidoff holds her GCFA forensic certification and her GPEN penetration testing certification. She has an S.B. in Computer Science and Electric Engineering from MIT.

John Strand

Certified SANS Instructor, Professor at Denver University

John Strand is a certified SANS instructor. He teaches: 504 "Hacker Techniques, Exploits and Incident Handling," 517, "Cutting Edge Hacking Techniques," and 560 "Network Penetration Testing." He is a contributing author of Nagios 3 Enterprise Network Monitoring, and a regular contributor to SearchSecurity's "Ask the Expert" series on the latest information security threats. He also regularly posts videos demonstrating the latest computer attacks and defenses at vimeo.com/album/26207. He started the practice of computer security with Accenture Consulting in the areas of intrusion detection, incident response, and vulnerability assessment/penetration testing. John then moved on to Northrop Grumman specializing in DCID 6/3 PL3-PL5 (multi-level security solutions), security architectures, and program certification and accreditation. He has a master's degree from Denver University and is currently also a professor at Denver University.