About the Author

Michael Gregg is the president of Superior Solutions, Inc., a Houston-based security assessment and training firm. He has more than 20 years of experience in the IT field. He holds two associate’s degrees, a bachelor’s degree, and a master’s degree. Some of the certifications he maintains are the following: CISSP, MCSE, CCNA, CTT+, A+, N+, Security+, CIW Security Analyst, CEH, NSA IAM, SCNP, DCNP, CCE, and TICSA.

He has consulted and taught for many Fortune 500 companies. Although consulting consumes the bulk of Michael’s time, he enjoys teaching. Michael has a proven reputation as both a dynamic and influential speaker. His delivery style is considered energetic and entertaining, yet insightful. Michael has written articles for various magazines and is a frequent contributor to IT websites. He is also the author and technical editor of other books, including CISSP Exam Cram 2. Michael led the development of Villanova University’s Online Security curriculum.

He is a member of the American College of Forensic Examiners and of the Texas Association for Educational Technology. When not working, Michael enjoys traveling and restoring muscle cars.

David Kim, B.S.E.E., is the Senior Vice President and Chief Operating Officer of Security Evolutions, Inc. (SEI) and former Chief Operating Officer of (ISC)² Institute. SEI specializes in IT security training, IT security consulting services, and IT security development. David is responsible for leading the vision of SEI’s information security products and services portfolio and managing the day-to-day operations for SEI’s P&L Business Units.

David’s IT and IT security experience encompasses more than 20 years of technical engineering and management in the IT field. This experience includes LAN/WAN, internetworking, enterprise network management, and IT security. Currently, he is an active IT security consultant, trainer, and developer and is instrumental in defining SEI’s products and service portfolio. David also program manages large-scale risk and vulnerability assessment projects for large commercial, government, and higher-education clients throughout the world. In addition, he works with large service organizations developing risk and vulnerability assessment professional services, all based on the same foundational elements found in this book.