Dr. Eric Cole: A cybersecurity authority, Dr. Cole is the founder of Secure Anchor Consulting. With experience working for the CIA, he’s a trusted expert in the incident response domain. His contributions include authoring books, hosting training sessions, and assisting organizations in their cybersecurity strategies.
Mandiant (FireEye): While Mandiant is a company rather than an individual, its significance in incident response cannot be overlooked. Founded by Kevin Mandia, the company is renowned for its expertise in addressing breaches and mitigating cyber threats.
Lenny Zeltser: A seasoned professional in cybersecurity, Lenny is an instructor at the SANS Institute. His courses on malware analysis and incident response provide practical insights and have trained numerous cybersecurity professionals.
Johannes Ullrich: As the dean of research for the SANS Technology Institute, Johannes is deeply involved in incident response research. He’s also the creator of DShield, which helps organizations detect and respond to suspicious activities.
Chris Sanders: A seasoned incident handler, Chris is the founder of Applied Network Defense. He’s authored multiple books on network security and incident detection and is renowned for his contribution to open-source security projects.
Harlan Carvey: Known for his deep insights into Windows forensics, Harlan is an expert in analyzing incidents. His books and tools have become foundational resources for professionals diving deep into Windows incident response.
Lesley Carhart: Often known by her online moniker “hacks4pancakes”, Lesley is a digital forensics and incident response expert with deep expertise in real-world incident handling. She’s been active in sharing her insights through blogs, talks, and on social media platforms.
Chad Tilbury: A faculty member at the SANS Institute, Chad’s expertise in digital forensics and incident response is well respected. He’s provided training to various law enforcement agencies and is known for his investigative acumen.
Rebecca Brown: As the founder of RABT Cybersecurity and Communications, Rebecca has an impressive track record in incident response. Her approach to incidents, from identification to resolution, has been highlighted in numerous cybersecurity conferences.
David Cowen: A partner at G-C Partners, David’s incident response work is deeply rooted in forensics. His “Hacking Exposed Computer Forensics” series is considered one of the definitive guides in the field.
