I've been working in information security since 1995. I work in the information security field, but I like and spend part of my time in the Network Designing.

I have a B.S. on Computer Science (called "Ingeniería de Sistemas" in spanish) and a MBA from EAFIT University. I also have a Master of Science in Information Security Engineering (MSISE) from SANS Technology Institute. 

I currently serve as Information Security Coordinator (same functions as CSO) at Empresas Públicas de Medellín E.S.P in Medellín, Colombia. I work as a teacher for IT Audit, ITIL and information security techniques at Universidad de San Buenaventura. I teach also computer networks at Universidad Santo Tomás de Aquino - Medellin.

I'm proud of being involved with SANS Institute, where I've been Local Mentor and Community SANS Instructor for Computer Forensics, Investigation and Response, Intrusion Detection In-depth, Defensible .NET and Hacker Techniques, exploits and incident handling. I have been coauthor for Browser Forensics course with Peter Charles Hewitt, coauthor for Protecting your Personal Privacy on the Internet course, Advisory Board member,  founder and currently vice chair member of the GIAC Ethics Council. You can use this page to report any ethics complaints to us.

If you need any information security training from SANS in Medellín, inside Colombia or any nearby country, I am happy to assist you! Contact me and we can discuss how to solve your needs.

I am a Internet Storm Center (ISC) handler!! The ISC provides a free analysis and warning service to thousands of Internet users and organizations, and is actively working with Internet Service Providers to fight back against the most malicious attackers. ISC handlers detect problems, analyze threats and disseminate both technical as well as procedural information to the general public.

There's a program called wbf (Web Browser Forensics) that I wrote for the SANS Browser Forensics course to parse the history file of firefox, opera and epiphany browsers. If you want to know more about it, click here.

I installed a  linux box to perform QoS but then I had a question: How can I know what's the amount of bandwith spent for every class? I wrote a small program for monitoring classes configured for a specific interface. If you want to know more about it, download it here.

The Cisco IOS operating system is prone to malware infections. You can find here a proof of concept that allows to control an IOS device from an IRC channel and another proof of concept that masks the output of some CLI commands to mask a tunnel to the Network Administrator.