My day job as the Head of Global Security and Infrastructure involves a great deal of work researching, planning for and evaluating security
solutions. I've specifically been spending a lot of time on Intrusion Detection, Encryption, Incident Handling, Audit Preparation and Wireless Security issues.
Retail Decisions (the company I work for) is a Member of the PCI Security Standards Council, the governing body that controls the PCI Data Security Standard. This allows us to have feedback into the process shaping the regulations.
In February 2006 I was interviewed as part of the SANS What Works program. This interview
entitled "What Works in Intrusion Detection and Prevention" was webcast
and has been written up as a case study.
During the Summer of 2006, I Mentored the SANS 504 Class, "Hacker Techniques, Exploits, and Incident Handling" at Rutgers University. The mentor version of
this class lasts 10 weeks and is intended for students who can't get away from work for a week to take the full program. I had a great group of 12 students. I've also
taken the SANS 503 Track: Intrusion Detection In-Depth.
I currently hold a CISSP certification, as well as a GCIH (GIAC Certified Incident Handler). Some of my security related presentations
will be posted here later this year. I'm also a member of the NJ Infragard.
I am a Faculty Member for the Institute for Applied Network Security in Boston. I have presented at their Forums in Chicago, New York, Washington D.C., and Dallas.
My talks have focused on:
The Institute keeps a bio on me here.
