Bob works for a Software as a Service provider that services charitable foundations and financial institutions where he is responsible for program management, compliance, SOC operations, penetration testing, and privacy. He consults several organizations on beginning and managing their information security programs and is a SANS Community Instructor. He is an advocate that defenders must be capable of blue team functions as well as red team to be successful and has earned GCIH, GPEN and GWAPT certifications. He has also achieved other certifications including the CISSP, GSEC, and CIPP/E. Justin is a Systems Administrator for a Software as a Service provider that services charitable foundations and financial institutions. He is a self-ascribed “nerd” with a sizeable video and board game collection. A nostalgic child of the 90’s and has no interest in growing up any time soon. [@**infosecbobh**](https://twitter.com/infosecbobh) <https://www.linkedin.com/in/bobhewitt/>