Blogger Profiles

Andrew Hay

As the Integration Services Program Manager for Q1 Labs Inc., Andrew’s primary responsibility is to research log and vulnerability technologies for integration into QRadar, their flagship network security management solution. He is also founder and CEO of Koteas Corporation, a leading provider of end to end security and privacy solutions for government and enterprise. Andrew has extensive experience in enterprise network, firewall, VPN, intrusion (IDS/IPS/HIPS), and network security management (NSM/SIM/SEM/NBA) technologies.Andrew is a strong advocate of security training, certification programs, and public awareness initiatives. He also holds several industry-leading certifications including the CCNA, CCSA, CCSE, CCSE NGX, CCSE Plus, Security+, GSEC, GCIA, GCIH, SSP-MPA, SSP-CNSA, NSA, RHCT, and RHCE.In his spare time, Andrew presents at security conferences, creates security training materials and white papers, contributes to forums, and acts as an instructor for the SANS Institute Local Mentor, and Stay-Sharp programs. In February 2008 Andrew co-authored his first book entitled The OSSEC Host-based Intrusion Detection Guide through Elsevier.

Rory Bray

Rory Bray is senior software engineer at Q1 Labs Inc. with years of experience developing Internet and security-related services. In addition to being a long-time advocate of Open Source software, Rory has developed a strong interest in network security and secure development practices. Rory has a diverse background, which includes embedded development, web application design, software architecture, security consulting and technical editing. This broad range of experience provides a unique perspective on security solutions.In February 2008 Rory co-authored his first book entitled The OSSEC Host-based Intrusion Detection Guide through Elsevier.

Dr. Anton Chuvakin

Dr. Anton Chuvakin, GCIA, GCIH, GCFA (http://www.chuvakin.org) is a recognized security expert and book author. In his current role as a Chief Logging Evangelist with LogLogic, a log management and intelligence company, he is involved with projecting LogLogic’s product vision and strategy to the outside world, conducting logging research as well as influencing company vision and roadmap.A frequent conference speaker, he also represents the company at various security meetings and standards organizations. He is an author of a book “Security Warrior” and a contributor to “Know Your Enemy II”, “Information Security Management Handbook”, “Hacker’s Challenge 3″, “PCI Compliance” and the upcoming book on logs. Anton also published numerous papers on a broad range of security and logging subjects. In his spare time he maintains his security portal http://www.info-secure.org and several blogs such as one at http://www.securitywarrior.org.

Harlan Carvey

Harlan is a nerd who does incident response and computer forensics work, and is based out of the Metro DC area. In an effort to demonstrate just how much of a nerd he is, Harlan has authored three books on incident response, computer forensics, and Perl scripting, all for the Windows platform. His dislikes include being required to use EnCase for analysis, and he enjoys moonlit walks on the beach, Registry analysis, Perl’s ‘use’ and ‘require’ pragmas, and a frothy ale with a nice copper color.

Daniel Cid

Daniel Cid is the creator and main developer of the OSSEC HIDS (Open Source Security Host Intrusion Detection System). Daniel has been working in the security area for many years, with a special interest in intrusion detection, log analysis and secure development. He is currently working at Q1 Labs Inc. as a software engineer. In the past, he worked at Sourcefire, NIH and Opensolutions. Daniel holds several industry certifications including the CCNP, GCIH, and CISSP.

Ron Gula

Ron Gula was the original author of the Dragon IDS and CTO of Network Security Wizards which was acquired by Enterasys Networks. At Enterasys, Mr. Gula was Vice President of IDS Products and worked with many top financial, government, security service providers and commercial companies to help deploy and monitor large IDS installations. Mr. Gula was also the Director of Risk Mitigation for US Internetworking and was responsible for intrusion detection and vulnerability detection for one of the first application service providers. Mr. Gula worked for BBN and GTE Internetworking where he conducted security assessments as a consultant, helped to develop one of the first commercial network honeypots and helped develop security policies for large carrier-class networks. Mr. Gula began his career in information security while working at the National Security Agency conducting penetration tests of government networks and performing advanced vulnerability research. Mr. Gula has a BS from Clarkson University and an MSEE from the University of Southern Illinois. Ron Gula was the recipient of the 2004 Techno Security Conference “Industry Professional of the Year” award.

Shyaam Sundhar

Shyaam Sundhar is a security analyst at Symantec MSS. He has been working as an analyst for almost two years, where he was a threat analyst and intrusion signature writer in the previous job. Shyaam, has a background in information security, computer security and information assurance though academia. He holds a Master’s in Information Security from the George Washington University, Master’s Certificate in Computer Security and Information Assurance from the George Washington University and graduate level security certificate in Computer Security from Stanford University. With active professional membership with ACM, ACFE, ISACA and IACSP, he has been actively participating in the community in a very stealthy way. He holds professional certs such as, GPCI, GCDS, GLDR, SSP-CNSA, SSP-MPA, SSP-GHD, GREM, GHTQ, GWAS, GIPS and GCFA. He is a board member at IARIA research group where he has participated as TPC, Chair and Co-Chair of several IEEE conferences related to Security. His profile can be found at http://www.linkedin.com/in/intrusion.

Raffael Marty

As chief security strategist and senior product manager, Raffy is customer advocate and guardian - expert on all things security and log analysis at Splunk. With customers, he uses his skills in data visualization, log management, intrusion detection, and compliance to solve problems and create solutions. Inside Splunk, he is the conduit for customer issues, new ideas and market requirements to the development team. Fully immersed in industry initiatives, standards efforts and activities, Raffy lives and breathes security and
visualization. His passion for visualization is evident in the many presentations he gives at conferences around the world.

Active in standard committees like CEE (common event expression) and OVAL (open vulnerability and assessment language), he is also creator of automation tools Thor and AfterGlow, founder of the security visualization portal http://secviz.org, and contributing author to a number of books on security and visualization. Before coming to Splunk he managed the solutions team at ArcSight, was an IT security consultant for PriceWaterhouse Coopers, and was a member of the Global Security Analysis Lab at IBM Research, where he participated in various intrusion detection related research projects.

Peter Giannoulis

Peter is an information security consultant in Toronto, Ontario. Over the last 9 years Peter has been involved in the design and implementation of client defenses using many different security technologies. He is also skilled in vulnerability and penetration testing having taken part in hundreds of assessments. Peter has been involved with SANS and GIAC for quite some time as an Authorized Grader for the GSEC certification, courseware author, exam developer, Advisory Board member, Stay Sharp instructor and is currently a Technical Director for the GIAC family of certifications. He currently maintains The Academy - www.theacademy.ca, which is the first information security video website that assists organizations in implementing and troubleshooting some of the most popular security products. Peter’s current certifications include: GSEC, GCIH, GCIA, GCFA, GCFW, GREM, GSNA, CISSP, CCSI, INFOSEC, CCSP, & MCSE.