Principal Team
Jonathan is an independent consultant who specializes in large-scale enterprise security issues, from policy and procedure, through staffing and training, to scalable prevention, detection, and response technology and techniques. With a keen understanding of ROI and TCO (and an emphasis on process over products), he has helped his clients achieve greater success for over a dozen years, advising in both the public and private sectors, from small startups to the Fortune 500.
A popular and insightful speaker, Jonathan has lectured on 6 continents. He's been commissioned to teach NCIS investigators how to use Snort, performed packet analysis from a facility more than 2000 feet underground, and chartered and trained the CIRT for one of the largest U.S. civilian Federal agencies. He currently holds the CISSP, GCIA, and GCIH certifications, is a Certified Instructor and Author with the SANS Institute, and is a member of the GIAC Advisory Board.
A former combat medic, Jonathan still spends some of his time practicing a different kind of emergency response, volunteering and teaching for both the National Ski Patrol and the American Red Cross.
Jonathan Ham on the web
We’re the best in the business, with extensive experience, and the most current knowledge and skills. We cut original research. We teach fleets of graduate students (perhaps including some of your staff). We advise at the highest levels of government and industry.
You’re doing due diligence, so you know this about us, right?
Either way, we like to be open and honest about who we are, and who you get:
Sherri Davidoff is a longtime information security consultant specializing in forensics, penetration testing and incident response. She enjoys designing enterprise security solutions and publishes independent security research.
Ms. Davidoff began her security career as a member of MIT's network security team, where she managed incidents and designed a network flow analysis tool. Subsequently, she founded the incident response team and managed UNIX/Linux security for the Boston Children's Hospital. She has consulted for a wide variety of industries, including financial, health care, manufacturing, academic, and government institutions.
As an insightful researcher, analyst and author, her weekly columns on philosecurity.org are diligently followed by tens of thousands of our peers. Her unique perspectives on the nexus of security, privacy, and technology help shape our perspective, and yours.
Sherri Davidoff on the web
John Strand on the web
John Strand currently is the owner and senior security researcher with Black Hills Information Security, and a consultant with Argotek, Inc for TS/SCI programs. In addition to being a certified SANS instructor, he has lead the SANS Institute’s Community program and continues to consult for them on instructor development. He is a contributing author of Nagios 3 Enterprise Network Monitoring, and a regular contributor to SearchSecurity's "Ask the Expert" series on the latest information security threats. He also regularly posts videos demonstrating the latest computer attacks and defenses at vimeo.com/album/26207. He started the practice of computer security with Accenture Consulting in the areas of intrusion detection, incident response, and vulnerability assessment/penetration testing. John then moved on to Northrop Grumman specializing in DCID 6/3 PL3-PL5 (multi-level security solutions), security architectures, and program certification and accreditation.
He has a master's degree from Denver University and is currently also a professor at Denver University. In his spare time he writes loud rock music and makes various futile attempts at fly-fishing.
