I am an independent information security (a.k.a. cybersecurity) consultant, expert witness, professional speaker, and writer with over 35 years of experience in IT – the last 29 of which I’ve dedicated to information security. Before starting Principle Logic in 2001, I served in various information technology and security roles for
I have appeared on CNN television and CBS Radio as an information security expert and have been quoted multiple times in the Wall Street Journal as well as in Entrepreneur Magazine, Fortune Small Business, Men’s Health, Women’s Health, Woman’s Day, and Inc. Magazine’s IncTechnology.com. My work has also been referenced by the PCI Security Standards Council in their Data Security Standard Wireless Guidelines. I am a highly-regarded information security speaker and have keynoted, presented workshops, and served as a panelist at seminars and conferences hundreds of times for groups such as TechTarget, Gartner, RSA, ISACA, Evanta, and ALAS. Additionally, I’ve presented hundreds of webcasts/webinars for TechTarget, Spiceworks Ziff Davis, and other outlets.
I have written/co-written 12 information security books including one of the all-time best-selling books on information security and vulnerability/penetration testing Hacking For Dummies (currently in its 7th edition) as well as Hacking Wireless Networks For Dummies, Point-of-Sale Security For Dummies, Next-Generation IPS For Dummies, HP Converged Infrastructure For Dummies, PCI Cardholder Data Protection For Dummies, Identity & Access Management For Dummies, Securing the Mobile Enterprise For Dummies, and Laptop Encryption For Dummies (all by Wiley), The Definitive Guide to Email Management and Security and Implementation Strategies for
I have written 37 whitepapers and over 1,300 articles on information security. I am a regular contributor of security content for TechTarget’s Security, CIO, and ERP websites. I have also written for Spiceworks Ziff Davis, IBM’s Security Intelligence website, Rapid7’s blog, SecurityInfoWatch (Security Technology Executive Magazine), Iron Mountain’s website, Information Security Magazine, CSOOnline.com, and Computerworld.com.
I serve as a faculty member (consultant) for the Institute of Applied Network Security (IANS) where I specialize in vulnerability management, incident response, and vulnerability and penetration testing. I am the founder and past president of the Technology Association of Georgia’s Information Security Society. I also serve as an Industry Advisory Board member for Kennesaw State University’s Department of Computer Engineering.
I earned my bachelor’s degree in Computer Engineering Technology from Southern College of Technology and my master’s degree in Management of Technology from Georgia Tech. I also hold the Certified Information Systems Security Professional (CISSP) certification which I obtained in 2001.