SANS Instructors

Kathryn encourages her students to be inquisitive and learn how to make the first step in finding answers to the unknowns. Her main goal is to give students a tool-set to allow them to be productive in the office. “I love teaching students the areas we currently understand, and paving the way for them to go away, pick up those research pieces and dig deeper into the lesser known aspects of the OS and applications. I am not one to be constrained by the live demo curse and love to break out into tools to show how things work in real life. I have always learned much more by doing than watching, and this is very much my teaching style too.” she says.

Justin Henderson is the founder and CEO of H&A Security Solutions, a SANS Senior instructor, and author of two of SANS' popular Blue Team courses.

Michael Hennick is a SANS Instructor and currently CISO and Senior Network Security Architect for Solipsys Corporation, a wholly owned subsidiary of the Raytheon Company. He is responsible for overseeing cyber operations for the company, including secure network architecture and design, incident response and forensics, vulnerability management, proactive threat assessments and penetration testing. He also teaches as an adjunct faculty for the University of Maryland, Baltimore County (UMBC) Cybersecurity Master’s Program. Additionally, he independently consults with small businesses to assist in their cybersecurity needs.

Josh is a Digital Forensics Expert with Cellebrite. Previously, he was a Senior Vice President with Kroll, the Forensic Scientist Manager of the N.C. State Crime Lab and a Forensic Computer Agent with the North Carolina State Bureau of Investigation.

David Hoelzer has fundamentally advanced cybersecurity by pioneering the GIAC Security Expert (GSE) certification, leading AI-driven threat detection initiatives, and developing MAVIS, an open-source ML tool enhancing code review processes.

Mike is a SANS Technology Institute graduate, earning his master’s degree in information security engineering with an Industrial Control Systems focus. Besides his work at Dragos, Inc. he teaches ICS612: ICS Cybersecurity In-Depth at SANS.

Micah Hoffman has over 20 years of experience in the information technology field supporting federal government, commercial, and internal customers in their efforts to discover and quantify information security weaknesses.

John redefined modern SOC operations by engineering globally adopted blue team strategies and co-creating the GSOC cert. Through the Blueprint podcast and SANS leadership, he’s unified thousands of defenders around real-world detection tactics.

Tomohisa is the Assistant Manager of Global Security at Tokio Marine Holdings, where he supports the global security strategy. His research has given him a breadth of experience in offensive & defensive technologies, security consulting, and secure development.

Peter Jackson is a Lead Industrial Cyber Specialist & Senior Systems Engineer based in New Plymouth, NZ. He leads the SGS ECL Cyber team of ICS Cyber Security Engineers supporting the industrial sector in New Zealand. His background includes control and safety systems experience as a TÜV certified Functional Safety Engineer.

teaser. what is this for? should this be toward the top of th epage

Eric is a co-founder and principal security engineer at Puma Security focusing on modern static analysis product development and DevSecOps automation. He is co-author and instructor for three SANS Cloud Security courses.