Michael B.

Wilson
3961 Via Marisol, Unit 317 mw-resume@mgwilson.org
Los Angeles, CA 90042 Cell (818) 403-1497

OBJECTIVE
I would like to continue to work in the fields Computer forensics and
Computer security. I would like to work with a small team of like minded
individuals that know more than me in some areas, and less than me in
others, allowing for a constant learning experience. I have found Expert
Testimony very challenging, and would like to do much more of it, both in
State and Federal venues.

CERTIFICATIONS
GIAC GCFA Gold #128
EnCE
PUBLICATIONS
GCFA Practical, 10/05/2004
http://www.giac.org/certified_professionals/practicals/gcfa/128.php
SUMMARY OF QUALIFICATIONS
. Extensive experience with computer forensics, electronic discovery,
and incident response
. Testified as an Expert Witness in the field of Digital Forensics in
both State and Federal courts
. Testified as an Expert Witness in the field of Web Hosting in the
California state courts
. Extensive Experience with litigation support
. Extensive experience with network and computer security principles,
design, and implementation
. Extensive experience with project and personnel management
. Fourteen years experience in the design, implementation, and support
of Unix and MS Windows workstation and server systems
. Experience with malware analysis, penetration testing, and system
security assessments
. Experience with the creation and implementation of security policies
and procedures in a global computing environment
. Experience with administration of Window 95-2003, Linux-based, and
Solaris operating systems
. Experience with network packet analysis
. Experience with IDS/IPS implementation and administration
. Experience with SOX compliance issues and solutions
. Experience with Unix mail and DNS administration
. Extensive experience with shell, Perl and Python scripting
. Experience with network services design, implementation, and
administration
. Experience providing system administration support for enterprise
level applications
. Extensive experience with operational and customer support
. Highly motivated, self-starting, team player, with a strong desire to
learn and excel
SOFTWARE SKILLS SUMMARY
. Forensic analysis software including EnCase 5-6, EnCase Enterprise,
EnCase eDiscovery 2-4, Forensics Toolkit 1.7, Netanalysis, Discovery
Attender for Exchange, Quest, Transcend Mail Migrator, Autopsy, TCT,
and Sleuthkit
. Security software including Blink, Retina, REM, Nessus, Tripwire,
IPchains, Snort, Nmap, Metasploit, Tcpdump, and Spector CNE
. BigFix Enterprise Suite Patch and configuration management
. UNIX system components including DNS, FTP, NFS, NIS, NTP, SMTP, SSH,
TCP/IP, and Samba
. Email software including Qmail, Postfix, Courier IMAP, CommunigatePro,
and Sendmail
. Windows system components including DNS, DHCP, WINS, Domain Control,
and AD
. Solaris operating systems including Solaris 7, 8, and 9
. Scripting languages including bourne shell, c shell, Perl, Python, and
awk
. Web services including Apache and IIS
HARDWARE SKILLS SUMMARY
. Forensic acquisition hardware such as write blockers, disk imagers,
and Forensic Acquisition PCs
. Various PC workstations, and servers, including Compaq, Dell, Gateway,
and HP systems
. Various Unix based workstations and servers, including HP, IBM, Sun,
and SGI
. Tippingpoint IPSs
. YellowJacket 802.11b/g Wi-Fi Analyzer
. Ironport A50 Mail Gateway Appliance
. Radware Web Server Director Load Balancer
. Network hardware including routers, switches and hubs for Ethernet
networks
EXPERIENCE
Guidance Software Inc.
Position: Senior Forensic Consultant (11/08 to Present)
Senior Forensic Consultant (05/08 to 08/08)
Forensic Consultant (08/07 to 05/08)
I am responsible for leading implementations of the company's EnCase
Enterprise product, leading forensic examinations, and conducting large
scale electronic discovery projects, both internally and for GSI clients.
As one of the few consultants with Expert Testimony experience, I am also
called in for ongoing and upcoming cases that have a high potential for
deposition and/or court testimony.
Specific responsibilities include:
. Expertise in computer forensic examinations for clients following
industry standard processes and procedures
. Conduct electronic discovery collections using the EnCase eDiscovery
suite, as well as Discovery Attender for Exchange
. Provide expert witness testimony and depositions in Digital Forensics,
and reasonable and proper investigative procedures
. Provide expertise in the EnCase Enterprise investigative
infrastructure and possess the ability to discuss its capabilities
 with customers
. Work independently or as part of a team on large-scale projects at
client sites and in the lab
. Provide project management and technical leadership on mid and large
scale electronic discovery projects
. Deploy and interpret the results of network related analysis tools
. Understanding of network configurations and the ability to quickly
assess network vulnerabilities
. Provide first responder support of incident response investigations
. Provide on-site installation and orientation services relating to
EnCase, EnCase Enterprise, and EnCase eDiscovery products
. Ensure the integrity of original electronic evidence so it is
admissible in a court of law
. Train customers and GSI personnel in the use of Encase Enterprise and
Encase Command Center products
. Mentor Forensic Consultants and Lab Technicians in GSI technology,
methodology, policies, and procedures

WARNER MUSIC GROUP

Position: Corporate Security Manager (11/04 to 8/07)
Responsible for the effective creation and implementation of information
security policies and procedures, risk assessment and mitigation, as well
as managing day to day security related tasks.
Specific responsibilities include:
. Assist with the creation and implementation of corporate security
standards and policies
. Lead forensic investigator for WMG policy and legal related incidents
. Basic Malware analysis
. Work with third party vendors to conduct external penetration testing
on Burbank DMZ
. Coordinate ongoing vulnerability assessments with a variety of tools,
including Nessus, Retina, ISS, and Nmap.
. Create and maintain basic incident handling guidelines for common
security incidents
. Coordinate and participate in security incident handling and forensics
for intrusion based incidents
. Deployment and ongoing administration of a worldwide IM auditing
solution
. Evaluate, purchase, and implement various security related
applications such as P2P management systems, Patch and Configuration
Management tools, Host and Network based IDS/IPS systems,
vulnerability scanners, and log consolidation software
. Translate security requirements and information into effective
presentations for non-technical users
. Act as a knowledge base of Sarbanes Oxley compliance issues
. Assist with security aspects of IT infrastructure planning and
implementation
. Project Management
. Build and manage a team of Security Engineers to assist in security
related matters
. Configure and deploy various virtual and physical systems for security
department use
. Work closely with the IT and Networking groups within WMG to insure
security issues are addressed in a timely manner
 WARNER MUSIC GROUP
Position: Technical Manager, Iservices (10/03 to 11/04)
Manager of the Web Properties team responsible for security, architecture,
implementation, and administration of 90% of the web assets of WMG,
consisting of 700+ websites, 100+ Load Balanced Linux and Windows Servers,
various Database server, email servers, and External DNS for WMG and most
of its affiliates.
Responsibilities in addition to Sr. System Administrator functions include:

. Auditing security implementations in development and production

environments
. Coordination of DNS migration of 750+ domains to Verisign DNS
Assurance Service
. Network traffic reporting using MRTG
. Managing Unix and NT system administrators
. Project Management

WARNER MUSIC GROUP

Position: Senior Systems Administrator (3/01 to 10/03)
(Consultant, Collective Technologies Corporation 3/01
to 1/03)
Member of the Web Properties team.
Specific responsibilities include:
. Assisting with the design, testing, and implementation of the Burbank
Production web hosting environment
. Design, implementation, and administration of the Radware Load
Balancer configuration
. Design, implementation, and administration of external DNS for WMG and
affiliates
. Assist with major datacenter migration
. Installing and administering multiple Stand-alone and Load Balanced
IIS 5 and Linux Apache web sites
. Assisting in capacity and security planning for Burbank web hosting
environment
. Installing and administering multiple NT server and Windows 2000 Adv.
Server systems for production environments
. External email administration using CommunigatePro Mail Server
software
. MySQL and MS SQL Database setup and maintenance
. Auditing firewall ACLs and suggesting security related improvements
. Perl scripting for various web and file management task automation
. Installing and configuring Tripwire for Servers on NT and Unix
platforms

COLLECTIVE TECHNOLOGIES CORPORATION

Position: Consultant (4/00 to 1/03)
Consultant, assigned to various short-term projects internally and at
companies including:
Warner Music Group
Boeing Space Systems
Go.com
Rare Medium
Specific responsibilities included:
. Perl scripting
. Automation of Pro/Mechanica Analysis runs
. Benchmark automation and data consolidation (Unix and NT)
. Installation and configuration of various operating systems including
RedHat Linux, Solaris, SunOS, and Windows 2000/NT
. Installation and configuration of various hardware including Netapp
file servers, and A1000 disk arrays
. Installation and configuration of various software including Sun
Jumpstart, Apache, Samba, NIS, NIS+, and PGP
. Designing and implementing automounted application directory
. Repairing and expanding on current backup procedures and programs
. Installing and configuring scheduled log auditing on Unix systems
. Helping with interview and review of potential System Admin hires
. Interviewing potential consultant recruits
. Member of internal QA group

PARAMETRIC TECHNOLOGY CORPORATION

Position: Systems Administrator (2/97 to 6/99)
Senior Systems Administrator (6/99 to 4/00)

Member of a team responsible for installation, configuration, and

administration of a heterogeneous environment consisting of Windows NT and
95, IRIX, Solaris, SunOS, HP-UX, and DEC Alpha systems.
Specific responsibilities included:
. Recommending and implementing security procedures, and planning for
future security requirements
. Planning and implementing NT server installations at local and remote
sites
. Administrating and supporting DNS, NIS, WINS, DHCP, and network
printing services for local networks
. Installing, troubleshooting, and maintaining various OS's and
applications on more than 400 various workstations and servers
. Training and supervising junior system administrators in their daily
tasks
. Administrating and supporting Catalyst 5000/5500 switches and F740/330
Network Appliance file servers
. Implementing NTP in a global user environment for over 150 users
. Documenting procedures for day-to-day operations
EDUCATION
B.S. MECHANICAL ENGINEERING University of California, Santa Barbara, 1993
REFERENCES Furnished upon request