2024 Canada Cyber Investigation Summit

Our dates have now been confirmed for October 1-3, 2024.

Located in the heart of downtown in the Hull sector, the Gatineau Convention Center is in Canada's National Capital Region.
*closest airport is Ottawa International Airport (YOW)

Venue:

Palais des congrés de Gatineau
50, boul. Maisonneuve
3rd floor
Gatineau QC
J8X 4H4

* Content will be delivered in English

The HTCIA Canada Cyber Investigation Summit (CCIS) 2024 is the event for investigators at all levels to attend. The event will allow you to see, to learn and to evaluate the best that the industry has to offer.

The High Technology Crime Investigation Association (HTCIA) was created in the 1980’s with a goal of providing it members training and networking opportunities in the field of investigating high tech crimes. While a lot has changed over 40 years, the principle of HTCIA has not - Training for Investigators by Investigators.

The CCIS, in its 5th year, focuses on the rapid changes we are seeing in technology and the need for agility and adaptability, when conducting high tech crime investigations, by delivering invaluable content through hands-on training, leading-edge insights and extensive opportunities to exchange ideas with other event attendees – from investigators to case managers to lawyers. The event will focus on relevant and practical information, inclusive of case simulations, to support an investigator’s inherent desires to succeed at work while encouraging growth in their careers.

HTCIA has strong partnerships with organizations and a membership with affiliating international chapters.

Speakers and Agenda

Sponsor CCIS!

Pricing for CCIS 2024

Early Bird

(by Sep 30, 2024)

Regular

Existing HTCIA Member pricing ($USD):

CCIS registration and includes a one year membership extension

$750

$850

Non-Members (incl membership) ($USD):

CCIS registration and includes a one year membership

$850

$950

Discount Codes available *

10%
10%
15%
20%
20%
20%

Public Sector (Public sector includes municipal to federal)
Group (5+)
Group (10+)
Group (25+)
Currently enrolled Student in a recognized institution
Fully Retired

* Cannot be combined with other group codes

Please email CCIS2024@htcia.org for the specific discount codes

Please email CCIS2024@htcia.org for the Hotel Registration code to
the FOUR POINTS by Sheraton Hotel & Conference Centre Gatineau-Ottawa

Agenda

Agenda can be viewed in two ways:

AGENDA BUTTON: Google sheet with tabs (full details)

Click Here for the AGENDA

(+) "At a glance" dropdown.

Tuesday. October 1

Details included in the Google Sheet, see "AGENDA" button above! (notice worksheets within)

Pre-Conference Training

Transforming DFIR Workflows with Detego Global's Groundbreaking Solutions
Experience Ballistic Imager, the world's fastest forensic imaging tool, which can extract 1TB in under 8 minutes and significantly reduce data acquisition times. Learn to swiftly identify devices containing investigation-critical data using Field Triage, and gain expertise in Media Acquisition, a powerful tool that automates data capture and analysis from multiple devices. The training will also cover Detego Analyse AI+.
* To ensure a seamless learning experience, all participants must bring a laptop with a pre-installed version of Detego (v 4.15), an SSD, and a thumb drive.
For your Detego license and any additional information, please email:
--Javis Olson, at javis.olson@detegoglobal.com or
--CJ Hamidi at cj.hamidi@detegoglobal.com

Blockchain Intelligence Group
“Blockchain Analytics for Law Enforcement" was designed to equip law enforcement personnel with the necessary skills and knowledge to tackle crimes in the digital age. Throughout the day, participants will be introduced to the fundamentals of blockchain technology, emphasizing its role in various high-tech crimes, including cryptocurrency fraud, money laundering, cyber extortion, and crimes against children, such as child exploitation on the dark web.

The training covers using advanced blockchain analytics tools to learn about cryptocurrency and dark web blockchain intelligence, such as tracing and analyzing transactions on the blockchain, enabling officers to identify illicit activities. Experts in the field will share real-life case studies demonstrating how blockchain analytics have been pivotal in solving complex investigations. Interactive workshops will allow participants to apply what they learn in practical scenarios, fostering a hands-on understanding of leveraging technology in law enforcement efforts. This comprehensive training underscored the importance of staying ahead of technological advancements to combat high-tech crimes effectively. Attendance certification will be provided for CPE credits.

The UFED Reader – Mobile Examination for the Non-Technical User
Cellebrite Reader is a one (1) day entry-level course designed to familiarize users with .UFDR reports in investigations. The course takes non-technical personnel, from investigators to prosecutors, and introduces them to some basic information about digital devices, digital evidence, and their role in investigations. Students are provided hands-on time with Cellebrite Reader and taught how to analyze, sort, tag, and generate reports for their cases. Note: This workshop requires attendees to BYOD (Bring Your Own Device). USB drives containing the required files will be supplied. Ensure you are registered on MyCellebrite (https://community.cellebrite.com/) before the conference starts. For any questions, please reach out to Training@cellebrite.com.Note: Attendees are required to bring their own devices (BYOD) for this workshop. USB drives with the necessary files will be provided. Please ensure you are registered on MyCellebrite (https://community.cellebrite.com/) before the conference begins. For any questions, contact Training@cellebrite.com.

Level: Entry

The KeyNorth Group
In this practical, full day session intended for those who are new to Open-source Intelligence (OSINT) participants will learn fundamental skills for researching, collecting and analyzing information from open sources. The day will end with examples of advanced OSINT topics which can serve as a guide for future training.
Level: Entry

BYOD: *Attendees must provide their own device

Wednesday, October 2

Details included in the Google Sheet, see "AGENDA" button above! (notice worksheets within)

Topics of the day

Keynote Session

IRreplaceable - How to Track Down and Build an Elite Team
[1 hour] (Natasha "Sasha" Hellberg)

Workshops / Training

Capture the Flag
[6 continuous hours, adhoc breaks] (Corey Forman)
Forensic OSINT
[2 hours] (Ritu Gill)
How Compromised Records Can Enhance Your Investigations and Expose Cyber Risk
[2 hours] (Matteo Tomasini)
Cryptocurrency Investigations - Seizure & Recovery
[2 hours] (Arran McWhirter)
Criminal Intelligence: organized crime ab/using laws, AI, cryptocurrencies, and more
[1 Hour] Bruce WATSON /Neal KUSHWAHA
A Behind-the-Scenes Perspective in Fraud Investigations with a Lawyer-CFE-Filmmaker
[1 Hour] Garrick Apollon
Disk Images are Gamblers and Virtualization is Vegas
[2 hours] (Mark Spencer)
Conducting Efficient Investigations with Nebula Document Review and AI Platform
[1 hour] (Jim Loveall / Eric Mandel)
Linkage Analysis: Cryptocurrency, Dark Web & OSINT
[1 hour] (Melissa Maranville)
CAT Labs
[1 hour] (Arran McWhirter)
Cyber/Ransomware Incident Remote Recovery
[1 hour] (David Logue / Eric Mandel)
What the Government of Canada’s “Intelligence Analyst Community of Practice” can do for you?
[1 Hour] Hugh Henry
Decrypting the Digital Maze: Unveiling Hidden Insights through Mobile Forensics and Cryptocurrency Analysis
[1 hour] (Ronen Engler, Ian Esler, and Brent Bowden)

Thursday October 3

Details included in the Google Sheet, see "AGENDA" button above! (notice worksheets within)

Topics of the day

Keynote Session

The Human Cost of a NetWire Compromise
[1 hour] (Mark Spencer)

Workshops / Training

Modern Memory Forensics with Volatility 3
[4 hours] (Andrew Case)
Building OSINT for Operators
{2 hours] (William Rahal)
Preserving Metadata and Logs During a Forensically Sound Cloud Collection
[2 hours] (Joe Caruso)
Canada’s Crypto Economy: Combating Tax Evasion, Facilitators and Cyber Criminals in the Crypto Ecosystem
[1 Hour] (Tom Armstrong)
Utilizing Cloud Architecture for On-Device Collection
[2 hours] (Richard Perillo)
Blockchain Data as Evidence in Criminal Proceedings
[1 hour] (Sgt. Ryan Berry)
Mismanaged Attribution: An OSINT Case Study
[1 hour] (Erin Monahan)
Darkweb Investigations
[2 hours] (Brock Lupton)
Data & Evidentiary Value: What does it say...?
[1 hour] (Anthony Martin)
Overcoming Vehicle Forensic Challenges with Advanced Acquisition Techniques
[2 hours] (Darryl Hawke & Frank Corkery)
Building OSINT Teams
[2 hours] (William Rahal)
Examining Metadata
[1 hour] (Colin Cree)

CCIS Apparel

Shop for CCIS Apparel

Disclaimers:
- The relationship between HTCIA and Fundy Tactical is a mutual agreement of customer (HTCIA) and supplier (Fundy Tactical).
- The CCIS apparel website is managed by Fundy Tactical and any material purchased through the website is done in affiliation to Fundy Tactical.

- Fundy Tactical only ships to addresses in Canada.

Keynote Speakers

Natasha "Sasha" Hellberg (Oct 2)

Senior Manager of Threat Intelligence Research
Ernst & Young

Mark Spencer (Oct 3)

President
Arsenal Consulting

Bio

Natasha ("Sasha") Hellberg, a Senior Manager of Threat Intelligence Research at Ernst & Young, is a powerhouse in the world of cybersecurity. With a knack for incident response and handling, Natasha has led numerous high-stakes operations, ensuring swift and effective mitigation of cyber threats. Her expertise in threat hunting has uncovered some of the most elusive malware, keeping organizations one step ahead of cyber adversaries. Natasha’s approach is not just about reacting to incidents but proactively hunting down threats before they can cause harm.

Beyond her technical prowess, Natasha is a passionate mentor and advocate for cybersecurity talent in the community. She has guided countless budding professionals, sharing her knowledge and fostering the next generation of cyber defenders. Her advocacy work extends to public speaking engagements and forums where she champions best practices and the importance of cyber hygiene. Natasha’s blend of deep technical expertise and her common-sense approach makes her a respected and beloved figure in the cybersecurity community.

Bio

Mark Spencer is President of Arsenal Consulting, where he leads engagements involving digital forensics for law firms, corporations, and government agencies. Mark is also President of Arsenal Recon, where he guides development of digital forensics tools. He has more than 25 years of law-enforcement and private-sector digital forensics experience. He has led the Arsenal team on many high-profile and high-stakes cases, from allegations of intellectual-property theft and evidence spoliation to support of terrorist organizations and military coup plotting. Mark has testified in cases which include United States v. Mehanna and United States v. Tsarnaev.

Special Guest / Invité Spécial

Simon Fournier (Oct 2)

Directeur chez Service de police
de la Ville de Gatineau

Bio

Speakers

Andrew Case

Director of Research
Volexity

Chris Pierre

CISSP, CFE, Managing Dir.
The KeyNorth Group

Ritu Gill

Co-Founder
Forensic OSINT

William Rahal

Founder
PROSINT

Bio

Andrew Case is the Director of Research at Volexity and has significant experience in incident response handling and malware analysis. He has conducted numerous large-scale investigations that span enterprises and industries. Case is a core developer of the Volatility memory analysis framework, and a co-author of the highly popular and technical forensics analysis book “The Art of Memory Forensics: Detecting Malware and Threats in Windows, Linux, and Mac Memory.”

Bio

Ritu Gill is an Intelligence Analyst with over 17 years of experience working with Canadian law enforcement, 12 of those years were with the Royal Canadian Mounted Police (RCMP). During her tenure with the RCMP, she specialized in open source intelligence, and worked on high profile investigations. As part of RCMP’s international capacity building program, Ritu trained law enforcement in Bangladesh and India in the use of the internet as an investigative tool. In 2016 Ritu set up a consulting business providing OSINT training and research to law enforcement and related entities across North America. Ritu holds a Bachelor’s Degree in Criminology from Kwantlen Polytechnic University, and is actively involved in the OSINT community.

Bio

Bill's passion for research and the internet make him a natural OSINT specialist with a wealth of experience in developing capabilities, training, and new methodologies for OSINT.
Starting fast in 2021 by leading a 27-person proof-of-concept detachment, he spent the last few years pushing the envelope of what OSINT can become in the Canadian Armed Forces, receiving a commendation for his work.
His qualifications include a Bachelor of Computer Science from the University of Guelph (with areas of application in Computer Engineering and Data Simulation & Modelling) and a range of industry training in OSINT, Geomatics, and Organizational Leadership.

Brock Lupton

VP - Product & Innovation
Sapper Labs Groups

Erin Monahan

Law Enforcement Solutions Specialist
Ntrepid

Matteo Tomasini

Founder/CTO
District 4 Labs

Joe Caruso

CEO/CTO
Global Digital
Forensics

Bio

Brock is proud to lead the amazing team building and supporting Hunchly. WIth 10+ years of experience in open source intelligence and cybersecurity and an extensive background in operational support, he brings a dynamic approach to meet every new challenge. Previously, he led the OSINT team at Sapper, providing tailored intelligence support to commercial and government clients, and focusing on projects investigating the Wagner Group and Russian cognitive warfare activities in Africa. Prior to joining Sapper Labs, Brock served in a variety of roles in the Canadian Armed Forces.

Bio

Matteo Tomasini is Founder/CTO of District 4 Labs, a deep and dark web data company that offers investigators and cyber analysts access to billions of records with compromised personally identifying information. Matteo is also Managing Director and Cyber Practice Lead for Prescient, a global risk management and intelligence services firm. Matteo previously served as Director of Incident Response and Threat Intelligence at BlueVoyant and as a senior practitioner at K2 Intelligence. Matteo’s expertise includes Deep and Dark Web investigations, social media intelligence, online threat monitoring, threat attribution and complex cyber investigations. In addition to managing and working on all the above matters, Matteo has also personally developed new tools and technologies to enhance them.

Bio

With over 20 years of active in-the-field experience, Joseph Caruso is a recognized industry leader in the fields of cyber security, computer forensics and eDiscovery. His experience and exposure in the industry is unrivaled and dates as far back 1980 where he developed databases and real-time systems with the capability of processing millions of transactions on a daily basis. Mr. Caruso is a seasoned technology expert who has led incident response teams for Fortune 500 companies and is a highly regarded expert, including serving in an advisory capacity for national cyber security councils for two US Presidents.

Neal Kushwaha

Chair, NSCOESN
(Canada)

Arran McWhirter

Director - Client Solutions
CATLabs

Tom Armstrong

Compliance Advisor
TRM

Javis Olson

N.A. Solutions Provider
Detego Global

Bio

Neal Kushwaha is a recipient of the Royal Humane Silver Medal of Bravery and commendation from the Governor General of Canada, an international bilingual speaker, a guest lecturer at Stellenbosch University, and a motivational speaker. He operates an Ottawa based consulting company, IMPENDO Inc. (member of the Paris Call) serving governments and international agencies as clients. His research and consulting fall within the cross-section of cyberspace, security, law, policy, and politics.

Bio

Arran McWhirter joined CAT Labs in May 2024 where he specializes in delivering tools and training programs that enable governments to effectively seize crypto assets from criminal organizations and adversarial nation states. His work addresses the growing use of cryptocurrency for laundering illicit proceeds. Prior to CAT Labs, Arran was a Supervisory Special Agent with the U.S. Department of Homeland Security, Homeland Security Investigations (HSI) where he led investigative and forensic teams that focused on transnational criminal organizations and threat actors that use emerging technology to promote their criminal enterprises. He began his career with the U.S. Department of State, Diplomatic Security Service (DSS) working domestic assignments in Washington, DC and North Carolina where he conducted fraud investigations and led protective security details for the U.S. Secretary of State and visiting foreign dignitaries. He also served internationally as a Regional Security Officer in the U.S. Embassies in Buenos Aires, Argentina and Lima, Peru.
He is ACAMS certified and holds multiple certifications in blockchain analytics and crypto asset recovery.
Arran holds a MA of Forensic Psychology from John Jay College of Criminal Justice, City University of New York and a BA in Psychology from James Madison University. He has two children in college in New York and in his spare time can be found somewhere hiking in Colorado, where he lives with his spouse Nicole and their two Kooikerhondjes.

Bio

Tom Armstrong currently serves as TRM's Compliance Advisor where he provides expert guidance and advisory support to traditional financial institutions, emerging crypto businesses, tax authorities and regulators on industry best practices for the detection and prevention of money laundering, tax evasion and financial crime within digital assets. Prior to joining TRM, Tom spent over nine years at Goldman Sachs leading various investigative teams. He served as the Head of Financial Crime Compliance Digital Assets at Goldman Sachs, leading the strategic efforts to build the bank’s first dedicated financial crime compliance team covering digital assets. He also served as the Global Head of the Forensics Group, Head of the Financial Intelligence Unit, and Transaction Surveillance Group.

Bio

Prior to joining Detego Global, Javis was employed by SOCOM Digital Forensics trainer based in Fort Liberty, NC. In addition to his role at Detego Global, Javis serves in the US Army Reserves currently. During his 18 years of service in the military, he has been deployed to Afghanistan and Africa on multiple combat tours.
Javis has also been deployed with various tier-one assets to enable support with electronic device forensics. He also ran an EAC lab in Nigeria, showcasing his expertise in this field.

Garrick Apollon

Lawyer-Filmmaker and CFE
Founder, CPE Studios

Darryl Hawke

Ontario Provincial Police (Retired)
Special Constable

Frank Corkery

Teel Tech Canada/Europe
Sales & Forensic Services

Ronen Engler

Product Specialist and a Customer Success Manager at Cellebrite

Bio

Garrick Apollon is a lawyer-filmmaker and owner of CPE Studios, a company specializing in the production of documentary films for continuing professional development (CPD) for legal and accounting professionals. An alumnus of the University of Pennsylvania Carey Law School (Penn Law), Garrick was trained in visual legal advocacy Penn Program on Documentaries & the Law. Garrick has almost 20 years of experience as a corporate lawyer with a focus on training and professional development. Garrick has taught and trained thousands of university students and professionals in Canada and internationally. A part-time professor at the University of Ottawa’s Telfer School of Management since 2005, Garrick teaches Corporate Governance and Ethics at the Executive MBA program, among other subjects. He has authored ten peer-reviewed articles in American law journals. Garrick is a strong advocate for social justice and pro bono legal services, earning him several awards.

He was called to the Law Society of Ontario in 2004 and holds degrees in civil law (LL.B.) from Université Laval and a Juris Doctor (J.D.) from the University of Ottawa. He also holds a Master of Law in International Business Law (LL.M.) from Université Laval, a Master of Comparative Law (LLCM) from Penn Law and is a Certified Fraud Examiner (CFE) with the Association of Certified Fraud Examiners (ACFE).Garrick Apollon, JD, LLB, LLM, LLCM, CFE

Bio

Darryl Hawke recently retired from the Ontario Provincial Police after 31 years of service as a civilian investigator and Special Constable. Darryl has 15 years experience in Forensic Identification specializing in digital crime scene reconstruction, digital image enhancement and bullet trajectory analysis. His last 15 years with the O.P.P., Darryl was a Forensic Analyst/Investigator within the Cyber Operations Section - Digital Forensics Unit. He has extensive training and experience in computer, smartphone and vehicle acquisition and analysis. For the past several years Darryl honed his skill in all avenues of advanced data extraction methods including JTAG, ISP, Chip-Off and other direct chip reading techniques. Included with advanced extraction methods is training in microsoldering and device repair to render dead devices functional for data extraction. Darryl holds several industry recognized certifications including IACIS - CFCE & ICMDE, Cellebrite - CCME, Magnet - MCFE & MCCE and Berla - CVST & CVSE. Darryl continues to work in the field of Digital Forensics and also volunteers some of his time to IACIS as a Peer Review Coach.

Bio

Frank is a digital forensics examiner and technical sales representative for Teel Technologies Canada based in Ottawa, Ontario. He has been with Teel since 2018. His focus is on conducting and managing digital forensic investigations following industry standard methodology for a wide range of private, public and government organizations. Frank also works with clients to support their needs for forensics hardware, software, and services.

Bio

Ronen serves as both a Product Specialist and a Customer Success Manager at Cellebrite, where he has dedicated over 14 years to advancing the field of digital intelligence. With a Master’s in Electrical Engineering from NYU, Ronen has contributed significantly to Cellebrite’s innovative solutions, specializing in handling complex customer needs and ensuring the successful deployment of cutting-edge technologies. As an integral member of Cellebrite’s esteemed team, Ronen has also played a pivotal role in the Capture the Flag (CTF) challenges, showcasing his expertise in digital forensics and cybersecurity. Together, Ronen and his colleagues at Cellebrite are driven by a powerful mission: to accelerate justice by empowering law enforcement and investigative agencies with the tools and knowledge to uncover the truth swiftly and efficiently. His deep technical expertise and strategic vision make him a sought-after speaker and leader in the digital forensics community.

Ian Esler

Account Executive - Canada
Chainalysis, Inc.

Brent Bowden

Regulatory & Financial Crimes Country Lead - Canada
Chainalysis, Inc.

Sgt. Ryan Berry

National Cybercrime
Coordination Center
(NC3)

Melissa Maranville

Investigation Training Advisor
Blockchain Intelligence Group

Bio

With over a decade of experience working as a National Security and defence executive in leading tech firms, Ian currently serves as the Canadian National Security and Defence Leader at Chainalysis. In this role, Ian drives the National Security and defence mission forward with a focus on blockchain intelligence solutions. Ian is committed to fortifying trust in blockchain technology and equipping National Security and Defence organizations with cutting-edge intelligence solutions. Ian's expertise in cyber, Intellegeance, cloud, and national security fuels his dedication to advancing measures that safeguard nations and their citizens, ensuring success through a shared mission of enhanced security.

Bio

With fifteen years of experience in the Federal, Provincial/State Government landscape, Brent has developed a strong passion for National Security/Public Safety and how teams leverage technology to achieve their core missions. More specifically, he joined Chainalysis two years ago and now works directly with Financial, Tax and Regulatory, as the respective Country Lead in Sales, continuing to influence policy, regulation, cyber and complex financial crimes.

Bio

Sgt. Ryan Berry has been a regular member of the RCMP since 2008 and is currently posted to the National Cybercrime Coordination Center (NC3) in Ottawa. Ryan has spent the past 11 years working in Federal Policing in both Nova Scotia and Ontario, primarily investigating Proceeds of Crime, Money Laundering, Financial Crime and related substantive offenses. Ryan developed a specialty in Cryptocurrency elements of criminal investigations and for the past 6 years has worked in this field providing, support, training, and guidance to domestic and international law enforcement agencies.

Bio

Melissa Maranville, PhD-c, is an Investigation Training Advisor at Blockchain Intelligence Group and serves as the Founder/CEO of DeVille and Associates, LLC, situated in Knoxville, Tennessee, USA. With an extensive background spanning over 30 years, Melissa delivers comprehensive consulting and training services to law enforcement agencies nationally and globally. Her areas of expertise encompass intricate subjects such as criminal forensics, cryptocurrency, dark web, social media, open-source intelligence (OSINT), and linkage analysis, with a primary emphasis on the investigation of child sexual abuse material (CSAM) and Internet Crimes Against Children (ICAC). Melissa holds certifications in forensic investigations, cryptocurrency, and blockchain forensics and is a nationally accredited law enforcement instructor with IADLEST. Apart from her training responsibilities, Melissa proficiently conducts forensic investigations, gathers digital evidence for human trafficking and CSAM cases, and is an expert witness on social media platforms and websites regarding child exploitation, CSAM and trafficking. Melissa is a master researcher, subject matter expert (SME), expert witness, speaker, and thought leader.

Melissa is also a Ph.D. candidate at Grand Canyon University in Phoenix, Arizona. Her dissertation topic is "A Case Study of Ineffective Legislation: Moral Panic and the Sex Offender Registry." Upon completing her Ph.D., Melissa aims to influence new sex offender legislation concerning the tracking and tracing of registered and non-registered sex offenders and absconders. She also earned a bachelor's and master's degree from the University of Tennessee in Knoxville, TN.

Bruce Downey

Training Instructor
Cellebrite

Jim Loveall

Advisory Services Consultant
KLDiscovery

David Logue

Lead Data Recovery Engineer
Ontrack Data Recovery

Eric P. Mandel

Director, Global Advisory Services
KLDiscovery

Bio

Jim Loveall works with clients to develop and implement cost-effective, efficient and defensible discovery and data archiving strategies using the Nebula Ecosystem. His area of focus includes assisting clients in preparing for litigation and responding to investigations or regulatory requests. Leveraging his deep roots in technology, Mr. Loveall provides solutions that optimize the use of technology to increase overall efficiencies and lessen cost and risk. Jim previously served for over a decade in various roles at KLDiscovery, including as a member of the Advisory Services team.
Prior to joining KLDiscovery in 2012, Mr. Loveall spent 10 years at a major global food company where he managed the company’s global security and electronic investigations. Global Security investigations were for criminal matters and included cases in counterfeit and product tampering, financial crimes such as bribery, fraud and anything that posed significant or potential catastrophic risk to the company. The electronic investigations included managing all the computer forensics globally, along with all the collections and processing for eDiscovery matters.

Bio

David Logue is the Operations Manager and Lead Data Recovery Engineer at Ontrack Data Recovery. Dave assists customers worldwide with data recovery from failed or damaged computer systems while ensuring efficiency and quality at every stage of the data recovery process. Dave joined Ontrack in 2001 and has over 20 years of data recovery experience. Leveraging Dave's expertise, he currently leads teams whose members specialize in the remote recovery of high-end SAN and NAS storage technologies, data erasure and sanitization verification of storage media, and provides technical support to customers. Dave also works closely with Ontrack development teams to communicate client needs, build innovative tools, and create and deliver custom solutions for specific data loss needs. He is further involved with the system administration & storage teams in managing the IT infrastructure for the data recovery business. Before joining Ontrack, he held server and database administration positions with a leading healthcare company and management roles within their technical support teams. Dave received two B.A. degrees in Business Administration and Psychology from Hamline University. He also earned a J.D. from Hamline University School of Law and is licensed to practice in Minnesota. Specialties: Data Recovery, Data Sanitization and Verification, MS SQL, Oracle, Exchange, VMware, Product Management, Ransomware Recovery

Bio

Eric is an attorney, legal technologist, and privacy professional who has spent the past 13 years focused on solving complex problems at the intersection of law and technology. He has served in senior leadership roles in several industry trade associations, including The Sedona Conference, EDRM, the Legal Technology Professionals Institute, and the Association of Certified E-Discovery Specialists (ACEDS), and is a frequent speaker on a broad range of topics relating to electronic discovery, information governance, data regulatory compliance, and data privacy and data protection. Additionally, Eric has worked on numerous leading publications, including The Sedona Principles, Third Edition.

Hugh Henry

Outreach & Comm Lead, Intel Analyst Community of Practice
Privy Council Office, Gov't of Canada

Richard Perillo

Digital Forensics Expert
Rythmic Insights

Anthony Martin

Chair, CCIS

Colin Cree

Director
EFS e-Forensic Services Inc

Bio

Hugh is responsible for organizing events, developing IACOP’s on-line presence and building a network of Canadian and Allied intelligence practitioners, experts and academics across the public and private sectors. He is also the IACOP lead on OSINT. Hugh is excited to be contributing to an improved, networked security and intelligence community.

Since 2002, he has held various intelligence-related analytical, advisory, supervisory and instructor positions at the Intelligence Assessment Secretariat at PCO, at the Canadian Academy of Intelligence Analysis, and at the Integrated Terrorism Assessment Centre at the Canadian Security Intelligence Service.

Previous to joining the government, Hugh was an Adjunct Associate Professor at Royal Military College of Canada and served in the Canadian Armed Forces for five years. He has a PhD in History from the University of Cambridge.

Bio

Richard Perrillo is a recognized digital forensics investigator with over 20 years of experience. He is a certified encase examiner, computer examiner, cybersecurity forensic analyst, consultant, and expert witness and consults in matters as such. His expertise has exposed him to manage high-profile and large-scale investigations where his understanding of forensic techniques and analytics have been pivotal in uncovering critical digital evidence. As a multi-subject matter expert, he is also highly proficient in evaluating the accuracy, appropriateness, and reliability of other experts’ data & opinions, which increases accuracy, efficiency, and positive case outcomes and able to support the understanding of non-technical stakeholders. He is also committed to staying at the forefront of digital forensics and technical advancements, which enhances his credibility and provides legal teams with a significant advantage in court.

Bio

Anthony is a seasoned investigator conducting various investigations utilizing various tools, data sets, including spreadsheets, like Excel, and everyday applications. A key success factor has been his ability to understand the advantages of data sets, rule building for the purpose of gathering evidence and communicating his investigation findings in satisfying the burden of proof for the business. He has conducted investigations that include device forensics, intellectual property and signal integrity. Prior to investigations, Anthony facilitated and conducted audits of internal IT systems, and their process flows for accuracy and integrity purposes.

Bio

TBD

Bio

Plan Your Trip Today!

Ottawa

Visit Ottawa and Gatineau

Come experience the best of Canada's capital city. You will be near attractions like Parliament Hill, and many museums.

Gatineau

Tourism

Museums

Tourism

Organizing Committee

Denis Roussel

IEC President

Gilles Racine

IEC Executive Member
Organizing Committee

ccis2024[at]htcia.org

Anthony Martin

Chair
Organizing Committee

chair.ccis[at]htcia.org

Roxanne Bronsard

Co-Chair & Secretary
Organizing Committee

David Ehrlich

HTCIA Office
Organizing Committee

Jeanette Foster

HTCIA Office
Organizing Committee

Corey Forman

Stream Coordinator
Capture The Flag (CTF)

Bio

Corey has been working in the field of Digital Forensics in multiple facets for more than two decades. While currently working in the Criminal Investigations Division of the Canada Revenue Agency, he spent 17 years in the Canadian Armed Forces, and was among the first of CAF's Cyber Operators. Corey is also an instructor on the Computer Forensic Examiner course at the Canadian Police College, an active contributor to the REMnux and SIFT Open Source digital forensics tool suites, and develops several of his own open-source solutions, including Time Decode and Win-FOR.

Alexandre Bruce

Stream Coordinator
Open source intelligence (OSINT)

Bio

Title: Senior Program Officer - National Fisheries Intelligence Service

Alexandre Bruce has been actively practicing Open-Source Intelligence for over 15 years. He currently
leads the Open Source Information Collection Program (OSIC) for the National Fisheries Intelligence
Service at the Department of Fisheries and Oceans. Prior to leading the national OSIC Program, he
worked for the Royal Canadian Mounted Police and in a private sector financial institution in Anti-
Money Laundering and fraud investigations.

Thomas Yohannan

Stream Coordinator
Cloud Investigations

Bio

Thomas is Co-Founder of Digital DNA. The Digital DNA team has developed Rocket – the cloud-native remote forensic data collection platform for Windows & MacOS devices.

As a former attorney with sales & technical partnerships skills, Thomas focuses on security, data forensics and law [with a pinch of cyberinsurance]. His passion is bringing products & services to market through a mix of lateral thinking, research, analysis and an understanding of risk and regulatory frameworks for high touch verticals to help enterprises companies succeed.

From early-stage tech firms [Cvent], to international leaders [Cisco & Aon] and industry giants [UBS & Goldman Sachs], Thomas has been fortunate to spend my career crafting messages and growing bottom lines for some of the world's best IT solutions corporations.

Education: USC J.D. | NYU M.B.A | Binghamton [SUNY]. B.A.