| |
Sondra J. Schneider
Founder & CEO
Instructor, CISSP, CEH/ Q/EH, ESCA/ Q/SA, Q/PTL, CHFI/ Q/FE, Q/EP
 Sondra Schneider is CEO and Founder of Security University, a Reston VA based Information Security and Information Assurance Training and Education Company. For the past 18 years Sondra has been traveling around the world training network professionals to be network and security professionals. In 2004 she was awarded Entrepreneur of the Year at the First Annual Woman of Innovation Awards from the Connecticut Technology Council. She sits on the advisory board for 3 computer security technology companies and is a frequent speaker at computer security and wireless industry events. She is a founding member of the NYC HTCIA and IETF, and works closely with ISC2, ISSA & ISACA chapters and the vendor community to provide qualified computer security training and education. Sondra has her CISSP, CEH/ QEH, ECSA/ QSA, QPTL, and CHFI/ QFE credentials. She is the founder of the QISP - Qualified Information Security Professional Certification, QIAP- Qualified Information Assurance Professional Certification. and classes that are the only CNSS approved Ethical Hacking and Security Penetration Testing approved classes. These classes are CNSS approved 4011, 4012, 4015, 4016E (level5)
Security University Ethical Hacking & Security Analyst / Penetration Testing classes are the only CNSS approved security classes for 8570 IA Training & Continuing Education requirement
C1.4.4.13. Which ensures IA functions meet the Committee on National Security Systems training requirements.
In 2007 -2008 we dedicated our resources to the new Q/ISP - Qualified Information Security Professional Certification, classes and online Exam, the Q/IAP Qualified Information Assurance Professional Certification, classes and online Exam, and the Q/SSE Qualified Software Security Expert Exam. It has paid off, in 2008, SU became the only non-academic education company to have all 22 security education classes CNSS approved. From finding to fixing exploits and vulnerabilities to mitigating security risks, Mastering the Qualified QISP, QIAP, QSSE classes will become your most valuable security classes and certifications.The Q/ISP, Q/IAP and Q/SSE classes and Certifications are the only security classes where you master tactical security skills in performance based classes and labs to be "Qualified" for your job.
In 2008, SU continues working closely with the CWNP Wireless Certifications. Recognizing the need for wireless security training, in 2001 SU partnered with the CWNP Wireless Certification Program as their first Educational partner, as of 2008 SU has trained over 2500 companies/ government agencies and over 4800 professionals for the CWNA, CWSP and CWAP Certifications. 2008 brings a new QWAP Qualified Wireless Analyst Professional Credential to SU's Security Qualification Testing Center.
In 2004 SU was among the first to deliver the EC-Council CEH, ECSA, LPT, and CHFI Certifications. The EC-Council materials are taught to a higher educational level at SU.
In 2004, Security University was among the first to partner with EC-Council to deliver the (CEH) Certified Ethical Hacker certification. In 2007 SU still integrates the SU Qualified Security Analyst and Penetration Tester Methods with EC-Councils ECSA (double certification) to deliver the ECSA (Security Analyst Certification) combined with the EC- council LTP License Penetration Tester Certificate. And in 2006, SU integrated EC-Councils' CHFI Certification with SU's QFE class with the CHFI Computer Forensic Investigator class to build a complete “hands-on" QFE credential.
Sondra has been teaching, consulting and advising on Intrusion Detection and PKI for the past 15 years. An 18 year industry veteran, Sondra wanted to bring the first performance based, hands-on security education and training to her network and security peers. Her quest to build informed, knowledgeable security professionals has taken her around the world. Sondra has established SU International partnerships 6 countries in multiple languages. Ms. Schneider has created corporate security awareness and compliance education workshops for many Fortune 100 companies. Security University teaches how to plan, implement, build & maintain a complete computer security strategy.
Prior to founding Security University, Sondra co-founded IFSEC (1997-1999), the first boutique Information Security Consulting firm, located in New York City. As co-founder and partner, Ms Schneider was responsible for Computer Security Business Strategies and New Business Development. She created and led a team responsible for the introduction and implementation of Intrusion Detection and Public Key Infrastructure solutions for customer networks like AT&T, AT&T managed services, IBM managed Services, New York Life, DOD, and many Insurance and Financial Companies in the NorthEast. Capitalizing on her earlier computer security product experience as NorthEast Director of Business Development for the WheelGroup
(NetRanger IDS, acquired by CISCO), Ms. Schneider brought real-time intrusion detection systems and tools to telecommunication, healthcare, financial institutions and Fortune 500 customers. In 1993-1996, Ms. Schneider became the first Internet Specialist for ATT and introduced the Internet to large ATT clients.
In 1991-1992, Ms. Schneider worked for MFS DataNet to create the “downstream provider” market which sold Internet bandwidth to buildings for the Internet.
Wanted Director of QISP
Director of Qualified Information Security Professional QISP
This person is a full time employee working in the McLean VA area. Responsibilities are teaching Certified Ethical Hacking classes, EC Security Analyst Penetration Testing, Edge Protection, with an incident response background.
Terence Lillard, BSEE, CISSP, Security +,CEH, ITIL, CCNA, MBA
 Terrence V. Lillard has over 25 years of professional consulting experience in the information technology/security arena. Currently, he functions as an information security architect and as a cybercrime/cyberforensics expert. He is actively involved in various computer, intrusion, network cybercrime/cyberforensics engagements and cases, which has included Security Expert Witness testimony.
As a Security Architect, Mr. Lillard has performed security audits and assessments and the design and implementation of security architectures for various corporations and federal/military organizations. This includes performing various aspects of Certification and Accreditation (C&A), IT Contingency Planning, and Enterprise Architecture planning and design.
As a consulting professional, he functioned as a Principal and Managing Consultant for the Microsoft Corporation for nine years. In addition, Mr. Lillard was the IT Security Operations manager for a large metropolitan area city government.
He has taught IT security, cybercrime and cyberforensics, Intrusion, Ethical Hacking, Disaster Recovery and Business Continuity, CISSP, Security+, ITIL courses at various colleges and universities. Mr. Lillard has a BSEE, MBA, and various certifications (e.g., CISSP, ITIL, CCNA, CEH).
Our Summer Interns Wanted Apply NOW!
Internships in Computer Security Training and Education.
Are you a college student looking for an internship in the computer security industry? Security University is the place for you! Security University is a small company without any outside investments, we have been profitable from the beginning, and have been growing quickly every year.
Security University specializes exclusively in computer security training education and certification. We're passionate about security. Our internship program allows talented college students to learn our business by supporting customers by supporting the administration of our internal systems, and public relations to the Security University community of users.
As an Security University Intern you will be given a real project to work with Security University attendees that are interested in persuing their Qualified Information Security Professional (QISP) Credential. You'll attend one of our computer security classes and will receive mentoring from the team management at Security University. You'll learn about computer security and writing secure code from the experts.
Security University internships frequently start as part time employment during the school year and are full time over the summer. Summer only internships are also available.
Absolutely non-negotiable requirements:
- Excellent command of written and spoken English
- Top grades or a track record of success
- Permanent legal right to work in the United States. student visas (J1, F1, etc) cannot be considered.
- Currently enrolled in a 4 year academic institution or Master's program having at least completed your sophomore year.
- Significant coursework in Computer Science (major not required)
- Knowledge of Java or .NET and at least one other common programming language
- Top notch computer programming and testing skills.
- Position is in our office in Reston VA location telecommuting optional
Apply today! Officially, applications are due June 1, 2008, but we process them as they come in, so all available openings may be taken well before June 1.
Applications for 2008 internships are now being processed. They are processed on a first-come, first-served basis so apply soon!
To Apply
To apply for any of these positions, please email us at careers (at) securityuniversity.(dot) net , attaching a current resume in HTML, Word, Plain Text or PDF format. In the body of the email, indicate the position you are interested in and explain why you would be a good fit for this job. If you have a website, send us the URL.
Security University does not discriminate in employment matters on the basis of race, color, religion, gender, national origin, age, military service eligibility, veteran status, sexual orientation, marital status, disability, or any other protected class. We support workplace diversity.
Our Past Summer Interns
 Michelle Leung is a current student attending Academy of Information Technology at Stamford , CT. She is an accomplished student who enjoys helping people. She participates in the Stamford High School Marching Band and plays the clarinet. Michelle is an active member of Student Council, Origami Club, and Winter Percussion. On her free time she like to read, write, and every girl's favorite, go shopping. Her new favorite band is now Coldplay, and enjoys listening to Kelly Clarkson. She now enjoys simple pleasures of relaxing at a coffee shop with a cup-of-joe and a good book to read.
 Emanuel Olaguivel will be attending the University of Connecticut ,Storrs, fall 2005. He is a 2005 graduate from the Academy of Information Technology . At UCONN, he will be majoring in Civil Engineering. Working with computers is a hobby and he has been MOS certified in some Microsoft programs. During his free time he likes to watch TV, surf the web, and chat with friends. He especially loves playing and watching soccer, his favorite team is Barcelona . He grew up in Peru and moved to Stamford at the age of 6. His goal in life is to be successful in all aspects of life.
Stephen Gantz, CISSP
Instructor
 Stephen Gantz, CISSP, is the senior architect for Roundarch, a systems integrator specializing in the development and delivery of enterprise portal and integration solutions. He also leads Roundarch's security practice, which focuses on application security, security architecture, and compliance with civilian and DoD security policies. Steve has 12 years' experience in technology-related professional services and software development, primarily as an IT architect designing e-commerce, enterprise application integration, customer relationship management, and security systems and infrastructures.
Steve's industry expertise includes federal civilian and state government, financial services, insurance, retail, telecommunications, and higher education. His areas of technical expertise include customer relationship management (CRM) and enterprise resource planning (ERP) applications, middleware technologies, security and e-commerce systems architecture, and data transport and exchange using EDI and XML. He is a regular speaker at industry events on enterprise application integration, e-Commerce, and XML. He holds a Masters Degree in technology policy from the John F. Kennedy School of Government at Harvard University, as well as a Bachelors degree in applied mathematics and statistics from Harvard.
H. Morrow Long, CISSP, CEH, CHFI Instructor
 H. Morrow Long has been a presenter at (and organizer of) several conferences as well as an instructor at Yale University, Fairfield University, the University of New Haven, Gateway Community Technical College and a number of private training institutes.
H. Morrow Long (CISSP, CISM, CEH) is the University Information Security Officer, Director of the Information Security Office and DMCA Notification Agent for Yale University. He has been with Yale University for the past 20 years, participating in many campus and IT projects (Y2K Planning, Business Continuity/DR, Oracle Financials/HR Business Modernization Project, Yale's Windows NT to Windows 2000 Active Directory Migration Project, HIPAA Security).
Morrow Long is also a Visiting Scientist with the Carnegie Mellon University Software Engineering Institute's in the CERT/Networked Systems Survivability group.
Mr. Long is a UNIX, NT and TCP/IP security expert, an author, consultant and educator with more than 23 years of experience with the IP (Internet Protocol) networking protocols and over 13 years of experience designing Internet/Intranet firewalls and information security solutions.
Morrow has written and released several information security software programs into the public domain (including one of the first TCP portscanners and the first audio Web server CGI cited in Wired magazine).
Morrow has taught computer science, networking and information security courses at several Universities (including Yale, the University of New Haven and Fairfield University) and private seminar institutes (including SecurityUniversity).
Mr. Long was one of the original participants in the Infragard program in Connecticut. Morrow was on the executive board of CUISP (Campus University & Information Security Professionals) and also participates in the EDUCAUSE/I2 Computer/Network Security Task Force (a founder of the annual Educause Security Professionals Conference), CISDG (CT InfoSec Discussion Group) and is President of the Connecticut ISSA Chapter.
Prior to working at Yale University Mr. Long was a Member Technical Staff at the ITT Advanced Technology Labs in Stratford and Shelton (1984-6) Connecticut and a Lead Programmer Analyst developing INVESTWARE(TM) at New England Management Systems (NEMS 1982-84).Mr. Long holds a B.S. in Communications from the Boston University School of Communication (1981) and a M.S. C.I.S. (Computing and Information Systems) from the University of New Haven (1986).
Mr. Long holds a B.S. in Communications from the Boston University School of Communication (1981) and a M.S. C.I.S. (Computing and Information Systems) from the University of New Haven (1986) as well as CISSP, CISM and CEH certification.
Morrow has contributed to several papers and books on computer security, computer crime, digital forensics, network survivability and information assurance.
Keith Parsons, CEH, CWNA, CWSP, CWAP
Instructor / Wireless Advisor
 Keith Parsons is Managing Director of the Institute for Network Professionals. A gifted presenter, Keith is known for his wit and broad technical expertise. He holds over 38 technical certifications and has earned an MBA from the Marriott School of Management. He is author (or editor) of a dozen technical publications and has developed six technical certification programs. He travels throughout North America, Europe, Africa, Asia and Australia in behalf of a wide variety of IT vendors, explaining networking technology to industry professionals.
Mr. Parsons has developed and delivered Hands-On Technology training to thousands of individuals worldwide for Fortune 100 companies, including IBM, Microsoft, Verisign, Novell, and many others. Though qualified to teach a wide variety of network certifications, for the past four years Mr. Parsons has dedicated himself to training Wireless LANs and network security.
Kimberly Graves
Instructor
CWNA, CWSP, CWAP, CWNE, CISSP, CEH, ECSA, MCSE
 Please join SU in congratulating one of our top wireless instructors, on qualifying as the # 2 CWNP Instructor!
Congratulations Kimberly!
Graduating in 1995 from American University , with a major in political science and a minor in computer information technology, Kimberly quickly learned that the technical side of her degree was going to be a far more interesting and challenging career path than something that kept her inside the beltway.
Starting with a technical instructor position at a computer training company in Arlington , VA , Kimberly used the experience and credentials gained from that position to begin the steady accumulation of the other certifications that she now uses in her day to day interactions with colleagues and students. Since gaining her Certified Novell Engineer Certification (CNE) in the matter of a few months at her first job, Kimberly's expertise in networking and security has grown to encompass certifications by Microsoft, Cisco and Comptia.
With over 10 cumulative years invested in the IT industry, Kimberly has amassed 8 instructor grade networking and security certifications. She has served various educational institutions in Washington DC , as an adjunct professor while simultaneously serving as a subject matter expert for several certification programs such as the Certified Wireless Network Professional (CWNP) and Intel Certified Network Engineer. Recently Kimberly has been utilizing her Certified Wireless Network Associate (CWNA), Certified Wireless Security Professional (CWSP) and Certified Ethical Hacker (CEH) certificates to teach and develop course material for the Department of Veterans Affairs, USAF and the NSA. Kimberly currently works with Symbol Technologies and other leading wireless vendors across the country to train the next generation of wireless security professionals.
outside of the wireless network security field, Kimberly is a multi-engine instrument rated pilot who enjoys using her plane to travel with her husband and daughter to unique weekend destinations on the east coast. While back on the ground she likes bike riding and spending time in the ring with her horse Roxy.
Diana Kelly
Instructor
 Diana Kelley has been working professionally for over 12 years creating secure network architectures and business solutions for large corporations and delivering strategic, competitive knowledge to security software vendors. She is a security industry Analyst with Baroudi Bloor, a top-tier analyst firm where she has delivered strategic advice to, among others, IBM and Psionic (acquired by Cisco.) She also serves as the Vice President of Security Technology for Safe3W, Inc, a provider of strong, two factor authentication.
At The Hurwitz Group, Diana was the Senior Security Analyst and provided executive strategy advice to Entrust and other clients. She served as a Manager in KPMG's Financial Services Consulting practice, where her clients included Bank of America, General Electric, Merrill Lynch, MetLife and The Travelers.
She has experience in managing penetration testing, conducting security audits and has been certified on a number of security products such as the original TIS Gauntlet and HP Virtual Vault. Diana speaks frequently at major conferences, such as 802.11 Planet, BlackHat, InfoSec, NetWorld/InterOp, The Internet Security Conference, and ComDex, on security topics and has been quoted in publications such as Information Security Magazine and The Wall Street Journal as a security expert. She has authored numerous White Papers and research documents, wrote the chapter on "PKI and Directories" for the book PKI: A Wiley Tech Brief and contributed articles to Security Focus inFocus, Security Products Magazine, and was interviewed by WNBC on the topic of Internet security.
Bruce Potter.
Instructor
 Bruce Potterhas a broad information security background. From application security assessments to low-level smartcard analysis to wireless network deployments, Bruce has worked in both the open- andclosed-source communities. He is a co-author of an upcoming book on 802.11 security published by O'Reilly and Associates. Bruce is the founder of The Shmoo Group of security, crypto, and privacy professionals. Through The Shmoo Group, Bruce has assisted in the development of open-source software tools and participated in various events designed to promote the use of cryptography. He is also the founder and president of NoVAWireless.org, a non-profit community wireless initiative in Northern Virginia. Bruce has spoken at several conferences including Black Hat, DefCon, and the Washington DC chapter of SecurityGeeks.
Ed Tittel.
Instructor
 Ed Tittel has been an active writer and instructor in the computing field since 1994. That same year, he also started his own company LANWrights, Inc. Now the content division of iLearning.com, his group specializes in writing, training, and consulting on Web markup languages, information security, IT certification, and general networking topics and technologies.
A 20-plus year industry veteran, Ed has been teaching courses on Windows security at NetWorld+Interop since 1996 (and was a member of the Program Committee for that conference from 1993 to 1999). Ed is also the author of over 130 computer books. He writes regularly for Certification magazine, InformIT.com, Cramsession.com, and numerous TechTarget.com Web sites (including sites devoted to Windows 2000, information security, networking, and Web development topics).
In 1997, Ed developed and implemented the concept for Exam Cram, now the best-selling series of IT certification books in the world. He still serves as series editor for the recently-revived Exam Cram 2 for Que Certification (a Pearson Technology Group imprint). Recently, Ed has contributed to titles on numerous information security certifications, including TICSA, Security+, and CISSP for Pearson and Sybex Books. Prior to starting his own company in 1994, Ed worked for Novell from 1988 to 1994, where his job titles including networking consultant, systems engineer, national marketing manager, and director of technical content for trade shows and developer conferences.
In earlier incarnations in computing, Ed has also worked as a manager, a software developer, and a trainer. He also taught for Austin Community College in their Certified Webmaster program from 1996 to 2001 on Windows, TCP/IP and a variety of markup language topics.
 Kevin Cardwell
Instructor, CEH/QEH, ECSA/QSA, CHFI/QFE,
Kevin Cardwell spent 22 years in the U.S. Navy, during this time he tested and evaluated Surveillance and Weapon system software, some of this work was on projects like the Multi-Sensor Torpedo Alertment Processor (MSTRAP), Tactical Decision Support System (TDSS), Computer Aided Dead Reckoning Tracer (CADRT), Advanced Radar Periscope Discrimination and Detection (ARPDD), and the Remote Mine Hunting System (RMHS). He has worked as both software and
systems engineer on a variety of Department of Defense projects and was selected to head the team that built a Network Operations Center (NOC) that provided services to the command ashore and ships at sea in the Norwegian Sea and Atlantic Ocean . He served as the Leading Chief of Information Security at the NOC for six years prior to retiring from the U.S. Navy. During this time he was the leader of a 5 person Red Team that had a 100% success rate at compromising systems and networks.
He currently works as a free-lance consultant and provides consulting services for companies throughout the US , UK and Europe . He is an Adjunct Associate Professor for the University of Maryland University College where he participated in the team that developed the Information Assurance program for Graduate Students which is recognized as a Center of Excellence program by the National Security Agency (NSA). He is an Instructor and Technical Editor for Computer Forensics, and Hacking courses. He has presented at the Blackhat USA Conference. He is a Certified Ethical Hacker (CEH), and holds a BS in Computer Science from National University in California and a MS in Software Engineering from the Southern Methodist University (SMU) in Texas. His current research projects are in Computer Forensic evidence collection on "live" systems, Professional Security Testing and Advanced Rootkit technologies.
Metka Radanovic CWNA, CWSP, CISSP
Instructor
Metka Dragos has more than twenty years of experience in IT industry and delivering training programs. Her corporate career included positions in Application Programming, Database Administration, System Administration and Network Engineering. Experience gained from these positions, years of mentoring and certifications from Microsoft, Cisco and CWNP give her unique blend of real life and classroom scenarios that she passionately shares with her students. As a consultant, Metka works with clients in greater Bay Area with a specialty in LAN/WLAN security and analysis.
She holds a B.S. degree in Information Technology, Microsoft MCSE and MCT, Planet3 Wireless CWNE and CWNT and Cisco certifications.
Her outside of technology life is catching up with her family and the rest of the world.
Scott Moulton
Instructor
Certified Computer Forensic Specialist,
Forensic Strategy Services, LLC
 In the emerging field of computer forensics, few people have the expertise to understand not only how to recover missing or corrupted information from computer equipment and other media, but also how to administer painstaking precautions so the recovered evidence remains applicable in an audit or admissible in court. Scott Moulton, president of Forensic Strategy Services, LLC, is one of those experts.
In his more than 20-year career working with computers, Mr. Moulton has been responsible for data backup, network and server support, data recovery and backup protection. He is skilled in recovering deleted information useful as legal proof, researching cases and providing the technical knowledge and support attorneys need to settle cases favorably. He has worked with certified fraud examiners and forensic accountants. He has given depositions, testified, and investigated many complex cases involving homicide, embezzlement, theft, divorce, child pornography and corporate fraud, among others.
Mr. Moulton is also a partner in Network Installation Computer Services, Inc. and a database development company, OP5 Technologies. Although they are independent businesses, both companies provide resources Mr. Moulton can call upon to develop custom applications to support his forensic cases. He finds the partnership of several businesses hones his ability to multitask and forces him to stay abreast of all new developments in computer forensics, security and data recovery. As a consequence, virtually no explains computer forensics better than Scott Moulton.
With a deft blend of high-tech FLASH and true crime stories, Mr. Moulton's presentations are always lively and informative. He demonstrates how computer forensics works to recover seemingly lost evidence that can help establish guilt — or innocence — without a shadow of doubt.
Jay Beale
Instructor
 Jay Beale is a security specialist focused on host lockdown and security audits. He is the Lead Developer of the Bastille project, which creates a hardening script for Linux, HP-UX, and Mac OS X, a member of the Honeynet Project, and the Linux leader in the Center for Internet Security. A frequent conference speaker and trainer, Jay speaks and trains at the Black Hat and LinuxWorld conferences, among others. A senior research scientist with the George Washington University Cyber Security Policy and Research Institute, Jay makes his living as a security consultant through the MD-based firm Intelguardians, LLC, where he works on security architecture reviews, threat mitigation and penetration tests against Unix and Windows targets.
Jay wrote the Center for Internet Security's Unix host security tool, currently in use worldwide by organizations from the Fortune 500 to the Department of Defense. He leads the Center's Linux Security benchmark team and, as a core participant in the non-profit Center's Unix teams, is working with private enterprises and US agencies to develop Unix security standards for industry and government.
Aside from his CIS work, Jay has written a number of articles and book chapters on operating system security. He is a columnist for Information Security Magazine and previously wrote a number of articles for SecurityPortal.com and SecurityFocus.com. He co-authored the Syngress international best-seller "Snort 2.0 Intrusion Detection" and also contributed the Host Lockdown chapter in 'Unix Unleashed,' served as the security author for 'Red Hat Internet Server' Jay's currently finishing a Linux hardening book focused on Bastille entitled, 'Locking Down Linux.'
Formerly, Jay served as the Security Team Director for MandrakeSoft, helping set company strategy, design security products, and pushing security into the third largest retail Linux distribution.
|
|
