ix
© 2011 by Taylor & Francis Group, LLC
Contributors
James Litchko, CISSP-ISSEP, CAP, MBCI, CMAS, is Senior Security Expert
at Litchko & Associates. Mr. Litchko has worked as a security and management
expert for over 30 years. He has been an executive with ve organizations and
supervised and supported the securing of over 200 military, government, and com-
mercial IT systems. Since 2008, he has supported the securing of IT systems at
DHS, DOE, VHA, NASA, EPA, USAF, DOJ, and FEMA. Jim created and taught
the rst graduate IT security course at Johns Hopkins University (JHU) and was
a manager at NSA. Jim holds a masters degree from JHU and has authored ve
books on security and management topics.
Craig S. Wright, CISSP-ISSAP, ISSMP, is a director with Information Defence
in Australia. He holds both the GSE-Malware and GSE-Compliance certica-
tions from GIAC. He is a perpetual student with numerous postgraduate degrees
including an LLM specializing in international commercial law and ecommerce
law, a master’s degree in mathematical statistics from Newcastle, and is working
on his fourth IT-focused masters degree (in system development) at Charles Stuart
University, Australia, where he lectures on subjects in digital forensics. He is writ-
ing his second doctorate on the quantication of information system risk at CSU.
Cheryl Hennell, EdD, MSc, CISSP, SBCI, has worked in the IT industry for
40 years. Her employment includes systems development for the Ministry of
Defence, systems analysis for the Civil Service, European consultancy for a blue
chip organization, and 20 years as a senior university lecturer. She is currently head
of IT and information assurance for Openreach, BT. She earned her master’s in
information systems design from Kingston University, London, and her doctor-
ate from the University of Southampton, UK, and is a specialist in the Business
Continuity Institute, UK. She is also an ambassador for Childnet.
Cheryl was the course director for the rst digital forensics degree in the UK,
which she created and delivered for the University of Portsmouth. She has been an
invited speaker at international conferences in Europe, the Middle East, and Africa.
x ◾ Contributors
© 2011 by Taylor & Francis Group, LLC
Her subjects include information assurance, audit, risk and governance, physical
security, and business continuity and disaster recovery.
Maura van der Linden spent over a decade in software testing at Microsoft
Corpor a tion with a specialization in security testing, including working in the
Security Technology Unit on the Malware Response Team. After serving as a tech-
nical reviewer for MSDN Magazine, she wrote her rst article on SQL injection
testing for MSDN Magazine. She then wrote her rst book, Testing Code Security,
Auerbach, Boca Raton, Florida, in order to teach other testers the need for and
intricacy of security testing. ough now working as a programming writer, she
maintains her close ties to the test and security communities.
Keith Willett, CISSP-ISSAP, has over 25 years experience in information tech-
nology spanning academia and commercial, local, and national governments.
Mr. Willett has a BS in computer science from Towson University, Maryland,
an MS in business from the University of Baltimore, Maryland, and an MSIA
from Norwich University, Vermont, and he holds the CISSP and ISSAP designa-
tions from (ISC)
2
. Willett is the author of Information Assurance Architecture and
coauthor of How to Achieve 27001 Certication, both published by Auerbach.
When not working, Mr. Willet enjoys world travel, cuisine, and wine, and has
enjoyed all in over 125 cities across 30 countries.
..................Content has been hidden....................
You can't read the all page of ebook, please click here login for view all page.