Richard Bejtlich is technical director for the Monitoring Operations
Division of ManTechs Computer Forensics and Intrusion Analysis group.
He is responsible for all aspects of CFIAs security monitoring service.
Richard was previously a principal consultant at Foundstone, performing
incident response, emergency network security monitoring, and security
research and training. Prior to joining Foundstone in 2002, he served
as senior engineer for managed network security operations at Ball
Aerospace & Technologies Corporation. From 1998 to 2001 then-Captain
Bejtlich defended global American information assets in the Air Force
Computer Emergency Response Team (AFCERT), performing and supervising
the real-time intrusion detection mission.
Formally trained as an intelligence officer, Richard holds degrees
from Harvard University and the United States Air Force Academy. He
wrote The Tao of Network Security Monitoring: Beyond Intrusion
Detection. Future works include Extrusion Detection: Security
Monitoring for Internal Intrusions, and Real Digital Forensics. He
contributed original material to Hacking Exposed, 4th Ed., Incident
Response, 2nd Ed., and several Sys Admin magazine articles. Richard
earned his CISSP certification in 2001 and CIFI credentials in 2004.
His home page is http://www.taosecurity.com/ and his popular Web log resides at