Tim is a Senior Instructor and course author (SEC560) at SANS, the most trusted and largest source for information security training and security certification in the world. Through the course of his career, Tim has performed penetration tests on a wide range of organizations and technologies. Tim has gained information security experience in a variety of industries including previous positions in control systems, higher education, financial services, and manufacturing. Tim is an experienced international speaker, having presented to organizations around the world. Tim is the creator of the Kerberoasting, a widely utilized Red Team penetration test technique to extract kerberos tickets in order to offline attack the password of enterprise service accounts. Tim earned his MBA through the University of Texas.
GWAPT, GPEN, GMOB, GCED, and GCIH
Mike Saunders has over 25 years of experience in IT and security and has worked in the ISP, financial, insurance, and agribusiness industries. He has held a variety of roles in his career including system and network administration, development, and security architect. Mike been performing penetration tests for nearly a decade. Mike is an experienced speaker, speaking at conferences such as DerbyCon, Circle City Con, regional BSides including Minneapolis , Kansas City, and Winnipeg, SANS Enterprise Summit, the NDSU Cyber Security Conference, and SANS and Red Siege webcasts. He has participated multiple times as a member of NCCCDC Red Team.
GCIH, GPEN, GWAPT, GMOB, CISSP, and OSCP
Senior Security Consultant
Corey Overstreet is an experienced penetration tester and red team operator. He has been engaged with Fortune 500 organizations across a variety of industries, including financial services, government services, and healthcare. Additionally, he has over five years of systems administration and VMWare administration experience. He has participated as a member of the SECCDC Red Team since 2016.
OSEP, OSCE, OSCP, and OSEE
Jason Downey has over ten years of professional experience, mostly in the healthcare industry. Jason has primarily served in network and network security roles with additional experience in systems administration. Jason actively attends all major cons and an avid CTF player for many years.
GPEN, GCIH, CCNA R&S, CCNA Security, CEH, CHFI
Justin Palk has more than 16 years of experience in IT and information security, and has worked in the academic, federal civilian government and health research sectors. He has held a variety of roles including system administrator, developer, auditor, assessment team lead and web application penetration tester. He regularly competes in CTFs in the U.S. and Europe.
GCIH, GWAPT, GPEN, GMOB, GDSA
Senior Security Consultant
Alex Norman has over 20 years of experience in IT and security including nearly 10 years as a penetration tester across Fortune 500 companies, cloud environments, and all levels of government systems. Prior to information security he worked for 10 years as a web developer. Additionally he frequently volunteers at industry conferences including serving as Co-director for BSidesDC for 5 years.
Director of Customer Relations
In the past, Mike has been a security analyst/tester/COO for a boutique penetration testing firm, and executive producer of the largest infosec podcast in the world. He enjoys traveling internationally and has co-organized conferences in four different states and two countries and has co-taught ‘Offensive Countermeasures: The Art of Active Defense’ at Black Hat Europe.
Trained as a Civil Engineer, he has worked in QA, technical support, vulnerability management advisor, and as both a firewall and network security analyst. He loves learning, collecting certifications and has a BSCE from Northeastern.
GPEN, GCIA, GCIH, GCFA, GWAPT, GCWN