Joel Scambray is co-author of Hacking Exposed (http://www .hackingexposed.com), the international best-selling Internet security book that reached its third edition in October 2001. He is also lead author of Hacking Ex- posed Windows 2000, the definitive insider’s analysis of Microsoft product security, released in September 2001 and now in its second foreign language translation. Joel’s past publications have included his co-founding role as InfoWorld’s Secu- rity Watch columnist, InfoWorld Test Center Analyst, and inaugural author of Microsoft’s TechNet Ask Us About...Security forum.

Joel’s writing draws primarily on his years of experience as an IT security consultant for clients ranging from members of the Fortune 50 to newly minted startups, where he has gained extensive, field-tested knowledge of numerous security technologies, and has designed and analyzed security architectures for a variety of applications and products. Joel’s consulting ex- periences have also provided him a strong business and management background, as he has per- sonally managed several multiyear, multinational projects; developed new lines of business accounting for substantial annual revenues; and sustained numerous information security enter- prises of various sizes over the last five years. He also maintains his own test laboratory, where he continues to research the frontiers of information system security.

Joel speaks widely on information system security for organizations including The Computer Security Institute, ISSA, ISACA, private companies, and government agencies. He is currently Managing Principal with Foundstone Inc. (http://www.foundstone.com), and previously held po- sitions at Ernst & Young, InfoWorld, and as Director of IT for a major commercial real estate firm. Joel’s academic background includes advanced degrees from the University of California at Davis and Los Angeles (UCLA), and he is a Certified Information Systems Security Professional (CISSP).

—Joel Scambray can be reached at joel@webhackingexposed.com.