• ES2

Looking to be a better Cyber Security Hunter? Ask an ES2 expert!

ES2’s Lead Penetration Tester Mihai Lazarescu and Head of Computing at Curtin University recently attended the SANS SEC 555 training in Canberra, and found it to be extremely rewarding as it provided some real-world in depth analysis approaches for large organisations looking to be more effective at preventing, and in the worse case, detecting and stopping malicious activity. 


Mihai believes the key challenge today is not in collecting data but rather in selecting and enriching the data needed for better system defence. The course provided a detailed methodology for: (1) gathering and analysing network data and (2) post-exploitation defensive approaches to handle sophisticated intrusions. The best bit that Mihai liked about the training was that it involved intensive hands-on exercises and was capped off with a day-long challenge.


Mihai is an experienced IT professional with extensive background in research, implementation, management, auditing and compliance work in the ICT field and tertiary education. Dr. Lazarescu has published over 70 papers in peer reviewed publications (15 journals, 58 conference papers) and is very familiar with Cyber Security industry training, and he has already attended past SANS courses covering Security and Forensics ( DoDD8140 Compliant forensics training, SANS FOR508, SEC503, SEC506, SEC504) and is looking to see this through to his next certification, which is now an impressive list:


• ISC2 CISSP

• CREST Registered Tester

• GIAC Web Application Tester (GWAPT) 

• GIAC Penetration Tester (GPEN)

• GIAC Mobile Device Security Analyst (GMOB) 

• GIAC Reverse Engineering Malware (GREM) 

• GIAC Continuous Monitoring (GMON) 

• GIAC Security Essentials (GSEC) 

• GIAC Unix Security Administrator (GCUX) 

• GIAC Incident Handling (GCIH) 

• GIAC Intrusion Analyst (GCIA) 

• GIAC Secure Programmer .NET (GSSP-.NET)