Ido Dubrawsky (CISSP, Security+, CCNA) is the Chief Security Advisor for Micro-soft’s Communication Sector Americas division. His responsibilities include providing subject matter expertise on a wide range of technologies with customers as well as discussions on policy, regulatory concerns, and governance. Prior to working at Microsoft, Ido was the acting Security Consulting Practice Lead at AT&T’s Callisma subsidiary and a Senior Security Consultant where he as tasked with helping to rebuild the practice. Ido has held a wide range of previous roles including Network Security Architect for Cisco Systems Inc. on the SAFE Architecture Team. He has worked in the systems and network administration field for almost 20 years in a variety of environments from government to academia to private enterprise and has a wide range of experience in various networks, from small to large and relatively simple to complex. Ido is the primary author of three major SAFE white papers and has written, and spoken, extensively on security topics. He has been a regular contributor to the Security Focus Web site on a variety of topics covering security issues. He holds a B.Sc. and an M.Sc. in Aerospace Engineering from the University of Texas at Austin.
Naomi J. Alpern currently works for Microsoft as a consultant specializing in unified communications. She holds many Microsoft certifications, including an MCSE and MCT, as well as additional industry certifications such as Citrix Certified Enterprise Administrator, Security+, Network+, and A+. Since the start of her technical career, she has worked in many facets of the technology world, including IT administration, technical training, and, most recently, full-time consulting. She likes to spend her time reading cheesy horror and mystery novels when she isn’t browsing the Web. She is also the mother of two fabulous boys, Darien and Justin, who mostly keep her running around like a headless chicken.
Michael Cross (MCSE, MCP+I, CNA, Network+) is an internet specialist/programmer with the Niagara Regional Police Service. In addition to designing and maintaining the Niagara Regional Police’s Web site (www.nrps.com) and intranet, he has also provided support and worked in the areas of programming, hardware, database administration, graphic design, and network administration. In 2007, he was awarded a Police Commendation for the work he did in developing a system to track high-risk offenders and sexual offenders in the Niagara Region. As part of an IT team that provides support to a user base of over 1000 civilian and uniformed users, his theory is that when the users carry guns, you tend to be more motivated in solving their problems.
Michael was the first computer forensic analyst in the Niagara Regional Police Service’s history, and for five years, he performed computer forensic examinations on computers involved in criminal investigations. The computers he examined for evidence were involved in a wide range of crimes, including homicides, fraud, and possession of child pornography. In addition to this, he successfully tracked numerous individuals electronically, as in cases involving threatening e-mail. He has consulted and assisted in numerous cases dealing with computer-related/Internet crimes and served as an expert witness on computers for criminal trials.
Michael has previously taught as an instructor for IT training courses on the Internet, Web development, programming, networking, and hardware repair. He is also seasoned in providing and assisting in presentations on Internet safety and other topics related to computers and the Internet. Despite this experience as a speaker, he still finds his wife won’t listen to him.
Michael also owns KnightWare, which provides computer-related services like Web page design, and Bookworms, which provides online sales of merchandise. He has been a freelance writer for over a decade and has been published over three dozen times in numerous books and anthologies. When he isn’t writing or otherwise attached to a computer, he spends as much time as possible with the joys of his life: his lovely wife, Jennifer; darling daughter Sara; adorable daughter Emily; charming son Jason; and beautiful and talented daughter Alicia.
Jeremy Faircloth (Security+, CCNA, MCSE, MCP+I, A+, etc.) is a Senior Principal IT Technologist for Medtronic Inc., where he and his team architect and maintain enterprisewide client/server and Web-based technologies. He also acts as a technical resource for other IT professionals, using his expertise to help others expand their knowledge. As a systems engineer with over 18 years of real-world IT experience, he has become an expert in many areas, including Web development, database administration, enterprise security, network design, and project management. He currently lives in Minnesota with his wife, Christina, and son, Austin, both of whom support his lifestyle as a professional geek (which he greatly appreciates). Jeremy has contributed to several Syngress books, including Microsoft Log Parser Toolkit (Syngress, ISBN: 978-1-932266-52-8), Managing and Securing a Cisco SWAN (ISBN: 978-1-932266-91-7), C# for Java Programmers (ISBN: 978-1-931836-54-8), Snort 2.0 Intrusion Detection (ISBN: 978-1-931836-74-6), Perl Scripting for Windows Security (ISBN: 978-1-59749-173-0), and Security+ Study Guide & DVD Training System (ISBN: 978-1-931836-72-2).
Kevvie Fowler (GCFA Gold, CISSP, MCTS, MCSD, MCSE) is the Director of Managed Security Services at TELUS, where he delivers specialized security, incident response, and forensic services. He is also the founder and principal consultant of Ringzero, a company focusing on the security and forensic analysis of Microsoft products.
Kevvie is the author of SQL Server Forensic Analysis and the contributing author of How to Cheat at Securing SQL Server 2005, and The Best Damn Exchange, SQL, and IIS Book Period. In addition to writing books, he also reviews security- and forensic-related book proposals for publishers and is a SANS GIAC Gold advisor who reviews and helps guide the direction of emerging security and forensic research.
As an expert within the information security industry, Kevvie has presented at leading security conferences such as Black Hat and SecTor and is a member of the High Technology Crime Investigation Association.
Michael Gregg (CISSP, CISA, CISM, MCSE, MCT, CTT+, A+, N+, Security+, CNA, CCNA, CIW Security Analyst, CCE, CEH, CHFI, DCNP, ES Dragon IDS) is the founder and Chief Technology Officer of Superior Solutions Inc., a Houston-based IT security consulting firm. Superior Solutions performs security assessments and penetration testing for Fortune 1000 firms. Michael is responsible for working with organizations to develop cost-effective and innovative technology solutions to security issues and for evaluating emerging technologies. Michael supervises client engagements to ensure high-quality solutions are developed for software design issues, systems administration concerns, policy development, and security systems testing.
Michael has more than 20 years of experience in the IT field and holds two associate’s degrees, a bachelor’s degree, and a master’s degree. He has written or cowritten a number of other books, including Que’s Certified Ethical Hacker Exam Prep 2 and Wiley’s How to Build Your Own Network Security Lab. He is a member of the American College of Forensic Examiners, the Independent Computer Consulting Association, and speaks at many security conferences and events.
Mark Horninger (A+, Net+, Security+, MCSE+I, MCSD, MCAD, MCDBA, MCTS, MCITP, MCPD) is manager of database operations at Internet Pipeline Inc. He is also the founder of Haverford Consultants Inc. (http://www.haverford-consultants.com/), located in the suburbs of Philadelphia, PA. He develops custom applications and system engineering solutions, specializing primarily in Microsoft .NET technology and Microsoft SQL Server. He is a contributing author to Securing SQL 2005, Configuring and Troubleshooting Windows XP Professional MCSE Windows 2000 Professional Study Guide, and Designing SQL Server 2000 Databases for .NET Enterprise Servers published by Syngress, an imprint of Elsevier Inc. Mark has also served as an adjunct professor at Kaplan University teaching Web design.
Mark has over 20 years of computer consulting experience and has passed 50+ Microsoft certification exams. He lives with his wife, Debbie, and son, Robby, in the Philadelphia area.
C. Eric Irvin (CISSP, MCITP: Enterprise Admin, MCSE, MCSA, CCNA) is a Security Engineering Analyst for Blue Cross and Blue Shield of Alabama, and consultant for IrvTech, LLC. He specializes in security project management, as well as end-user security awareness, and security compliance assurance. He specializes in Cisco routers, switches, and VPN solutions. His focus is in providing business-enablement solutions that provide functionality and security to the customers of his organization.
Eric holds a bachelor’s degree from Amridge University, and is a member of Infragard and the Information Systems Security Association. He volunteers his security background with local municipal government organizations. Eric currently resides in Birmingham, Alabama.
Eric wrote the practice exam questions for this book.
Alun Jones (MVP, MCP) is the President of Texas Imperial Software. Texas Imperial Software develops secure networking software and provides security engineering consulting services. Texas Imperial Software’s flagship product is WFTPD Pro, a secure FTP server for Windows, written entirely by Alun.
Alun entered the security engineering field as more and more of WFTPD’s support needs indicated that few companies were trying to meet their needs for security on the Internet. His current day job is as an Information Systems Security Engineer at Premera Blue Cross, a health insurance provider based in the Pacific Northwest of the USA.
Alun has attended, but not completed, university at Corpus Christi College, Cambridge, and Bath University, and now lives in Seattle, Washington, with his wife, Debbie, and son, Colin.
Mohan Krishnamurthy Madwachar is the GM–Network Security at Almoayed Group in Bahrain. Mohan is a key contributor to Almoayed Group’s projects division and plays an important role in the organization’s security initiatives including network, information, and physical security. Mohan has a strong networking, security, and training background. His tenure with companies such as Schlumberger Omnes and Secure Network Solutions India adds to his experience and expertise in implementing large and complex network and security projects. Mohan holds leading IT industry-standard and vendor certifications in systems, networking, and security.
Mohan would like to dedicate his contributions to this book to his beloved wife Pallavi.
Mohan has coauthored six books published by Syngress: Designing & Building Enterprise DMZs (ISBN:1597491004), Configuring Juniper Networks NetScreen & SSG Firewalls (ISBN:1597491187), How to Cheat at Securing Linux (ISBN: 1597492078), How to Cheat at Administering Office Communications Server 2007 (ISBN:1597492126), Microsoft Forefront Security Administration Guide (ISBN: 1597492447), and The Real MCTS/MCITP Windows Server 2008 Configuring Applications Infrastructure Exam 70-643 Prep Kit (ISBN: 1597492478). He also writes in newspaper columns on various subjects and has contributed to leading content companies as a technical writer and a subject matter expert.
Kenneth Majors (MCSE, MCSA, Project+, VMware VCP, Citrix CCEA, CCA) is a Senior Technology Advisor for Choice Solutions LLC. Choice Solutions is a systems integrator headquartered in Overland Park, Kansas. Choice Solutions provides IT design, project management, and support for enterprise computing systems. Kenneth is a key contributor to defining best practices for Microsoft technologies including Windows Server, Hyper-V and SharePoint, Citrix XenApp, XenServer, and XenDesktop, VMware ESX and VDM, and development of documentation standards. As such, he develops technology solutions and methodologies focused on improving client business processes. These technology solutions touch every part of a system’s lifecycle—from assessment, blueprint, construct, and deployment on projects to operational management and strategic planning for the business process.
Kenneth holds a bachelor’s degree from Colorado Technical University. He currently resides in Olathe, Kansas, with his loving and supportive wife, Sandy, and near their children, Tabitha and Keith, and their grandsons, Wesley “Peanut” and Austin.
Tony Piltzecker (CISSP, MCSE, CCNA, CCVP, Check Point CCSA, Citrix CCA), author and technical editor of Syngress Publishing’s MCSE Exam 70-296 Study Guide and DVD Training System and How to Cheat at Managing Microsoft Operations Manager 2005, is an independent consultant based in Boston, Massachusetts. Tony’s specialties include network security design, Microsoft operating system and applications architecture, and Cisco IP telephony implementations. Tony’s background includes positions as systems practice manager for Presidio Networked Solutions, IT manager for SynQor Inc., network architect for Planning Systems Inc., and senior networking consultant with Integrated Information Systems. Along with his various certifications, Tony holds a bachelor’s degree in business administration. Tony currently resides in Leominster, Massachusetts, with his wife, Melanie, and his daughters, Kaitlyn and Noelle.
David K. Wallace is Director of Network Operations and Chief Security Officer for Internet Pipeline, the leader in SAS that supports marketing, selling, and processing solutions for the nation’s top insurance carriers and producers, David oversees all data center operations, infrastructure, business continuity planning, and security. He brings to iPipeline over 15 years of systems and management experience. Since joining iPipeline, David’s team has implemented multiple security enhancements and programs (HIPAA Compliance), infrastructure upgrades, and VMware to provide scalability and redundancy of Internet Pipeline’s services. iPipeline’s infrastructure growth and scalability are key as they continue to bring cutting edge technology to the insurance and financial markets.
Prior to iPipeline, David spent seven years as the Director of Information Technology at ICG Commerce in King of Prussia, Pennsylvania. ICG Commerce is one of the largest and most successful Procurement Outsourcing Providers in the world. There he built their data center capabilities from scratch to a 24 × 7 fully redundant network and systems that are utilized throughout the world.
David holds a bachelor’s degree in business administration and a minor in information systems. He is currently working on an M.B.A. from Villanova University, Villanova, Pennsylvania. David lives in Ardmore, Pennsylvania, a suburb just outside of Philadelphia. He would like to thank his nine nieces and nephews (Ben, Claire, Fiona, Owen, Jane, Gavin, Kieran, Colin, and Torin) for all their love, support, and the joy they add to his life.