Our Security Guides

Information Security can be confusing and overwhelming,
we’re here to guide you through from start to finish on your penetration test.

Beau Bullock

Beau Bullock

Security Analyst

Beau has held positions in the financial and health industries and has experience with all aspects of enterprise network security including penetration testing, vulnerability analysis, data loss prevention, wireless security, firewall management, and employee security training. Beau is a Hack Naked TV host, and frequent speaker at industry events.

Brian Fehrman

Brian Fehrman

Security Analyst

Brian has been interested in security from the time his family obtained their first computer. He found a passion for programming by learning to code, from there he learned to apply this knowledge to interacting with the physical world through signal processing, robotics, computer vision, and artificial intelligence.

Brian King

Brian King

Security Analyst

Brian’s IT career started with telephone technical support, transitioned to supporting software dev toolkits, and eventually to leading a team focused on testing internal applications during corporate mergers. In 2008, he moved to information security, where he developed application security testing and reporting standards, before becoming a security analyst.

David Fletcher

David Fletcher

Security Analyst

David has more than 20 years of IT experience working for the United States Air Force. During this time he worked in a wide array of disciplines including system administration, vulnerability management, boundary defense, web application programming, database programming/administration, installation level network operations, and research and development.

Derek Banks

Derek Banks

Security Analyst

Derek has over 20 years of experience in the IT industry as a systems administrator for multiple operating system platforms, and monitoring and defending those systems from potential intruders. He has worked in the aerospace, defense, banking, manufacturing, and software development industries. Derek has experience with creating custom host and network based monitoring solutions.

Ethan Robish

Ethan Robish

Security Analyst

Ethan has worked with BHIS since the beginning.  Previously, he implemented defensive security solutions for the Exchange Online security team as a Microsoft intern. Ethan also competed on a programming team that placed 3rd in the International Collegiate Programming Competition Regionals, allowing them to compete in the ICPC World Finals.

Joff Thyer

Joff Thyer

Security Analyst

Joff has over 15 years of experience in the IT industry in roles such as enterprise network architect and network security defender. He has experience with intrusion detection and prevention systems, penetration testing, engineering network infrastructure defense, and software development. Joff also co-hosts the Security Weekly podcast.

John Strand

John Strand

Owner & Security Analyst

John has both consulted and taught hundreds of organizations in the areas of security, regulatory compliance, and penetration testing.  He is a coveted speaker and much loved SANS teacher. John is a contributor to the industry shaping Penetration Testing Execution Standard and 20 Critical Controls frameworks.

Jordan Drysdale

Jordan Drysdale

Security Analyst

Jordan came to BHIS from the front lines of the tech support wars – working on storage platforms and firewall solutions. He knows Windows Domain infrastructure and is certified with Cisco, VMware, Microsoft and HP products. Jordan started by doing test setup and is now a full fledged penetration tester.

Kelsey Bellew

Kelsey Bellew

Security Analyst

Kelsey started as an intern while attending South Dakota School of Mines and Technology, and started full time after graduation.  She has previously worked in mobile development and in technical support.

Lisa Woody

Lisa Woody

Security Analyst

Lisa’s interest in coding started in high school, when she taught herself C++ to compete in a state-wide programming competition. In her free time, she works on a team that is developing a smart wheelchair for people with advanced mobility loss.

Matthew Toussain

Matthew Toussain

Security Analyst

Matt is a teacher, writer, and hacker. He served as the Senior Cyber Tactics Development Lead for the U.S. Air Force. He is a guest instructor at UTSA and the SANS Institute as well as the author of SEC460. Matt is an avid supporter of cyber competitions including CCDC, Netwars, and CDX.

Mike Felch

Mike Felch

Security Analyst

Michael began his career in 1997 as a Linux Administrator which eventually led to numerous offensive security roles, software development and hardware/software security research. Michael is also a lead forensics instructor for TeelTech, an Officer for OWASP Orlando (Chief Breaker) and an organizer for BSides Orlando.

Rick Wisser

Rick Wisser

Security Analyst

Rick has over 15 years of experience in networking, system infrastructure, and deployment.  His past experience includes working in an information systems capacity, engineering, and engineer management. Rick served in the Air Force and his career has involved medical systems, aerospace/defense, telephone, storage devices, radio frequency, wireless communications and other specific proprietary computing systems.

Sally Vandeven

Sally Vandeven

Security Analyst

Sally has many years of experience in the IT field, holding positions as Application Developer, System Administrator, Security Analyst and Forensic Analyst. Sally has taught computer security courses at a local community college, but her most fulfilling teaching gig was homeschooling her children for ten years.