Alexander Gessen is the National Director of Forensics at HaystackID
Alexander Gessen has earned his place among the giants of digital forensics over the years, working on high-profile cases and defying the impossible time and time again with respect to data recovery and discovery. He is a member of Mensa, and earned his Master’s Degree in Electrical Engineering from Moscow Power Institute, and his Master’s Degree in Computer Science and Cybernetics from Moscow State University in Moscow, Russia.
Alexander began his career in the early 1980s as a senior software engineer, and quickly became Director of Research and Development, overseeing the creation of a word processor that was hailed as the best in the field by PC World back in 1985. Since, he has been far more entrenched in digital forensics, serving as an examiner and the Head of Information Security at other points in his storied career.
His deep and comprehensive understanding of the software associated with eDiscovery, information security and litigation support positions Mr. Gessen to best serve clientele, and lead HaystackID in the process.
Mr. Gessen enjoys the challenges and opportunities involved in working at HaystackID and competing at a high level in a rapidly evolving industry. His favorite movie is Magnificent Seven, and he has worked on cases for some of the largest corporations in the country, as well as various federal agencies.
Curriculum Vitae Alexander Gessen, CCE, EnCE, CBE, CCO, CCPA, CISSP
Systems: Windows, Windows Servers, Microsoft Exchange, Unix, OS X
Software: EnCase, X-Ways Forensic, FTK, F-Response, Internet Evidence Finder, Arsenal Recon, SQLite Forensic Reporter, Volatility, VMWare, Wireshark, X1 Social, Password Recovery Forensic, Paladin, Helix, Kazeon, StoredIQ, Relativity, Netwitness, Cellebrite, Oxygen, Tarantula, BlackLight, Lantern, Mac Forensic Lab
Current – National Director of Forensics, HaystackID
National Director of Forensic Services team providing expertise in forensic data collection and analysis, information security, risk assessment and electronic evidence preservation for the corporate enterprise. Additionally, assists clients with expert witness testimony and support for internal, state and federal investigations.
Senior Forensic Investigator, FDIC (Federal Deposit Insurance Corporation)
Special computer forensic assignments as a government contractor.
eDiscovery Consultant & Computer Forensic Investigator, eMag Solutions LLC
Large scale governmental multi-agency eDiscovery project. Responsibilities: project management, collections, processing, troubleshooting, client support. Multiple computer forensic investigations.
Associate, Booz Allen Hamilton
Advanced Persistent Threat investigations. Loss of Personally Identifiable Information(PII) investigations. eDiscovery collections over large networks. Microsoft Exchange 2007 and 2010 email collections. Developed methodology for network acquisitions and collections utilizing F-response Enterprise in conjunction with EnCase Forensic or FTK Imager, as an alternative to EnCase Enterprise. That methodology overcame difficulties experienced by EnCase Enterprise with latest versions of full disk endpoint encryption.
Computer Forensic Examiner & Head of Information Security, IBI Ltd.
Utilized in-depth knowledge of Computer Security and Computer Forensics to perform: data manipulation analysis; investigation of theft of intellectual property and trade secrets; data recovery; email restoration and analysis; forensic preservation; human resources investigations; eDiscovery; and litigation support.
Responsible for creation of company’s Computer Forensics Lab, including selection of tools, hardware, and software; selection and implementation of methods and techniques for collection, proper storage and analysis of evidence; and presentation of findings.
Performed digital evidence collection and examination using evidence-gathering techniques, investigative and chain-of-custody procedures, and tools approved and accepted among peers and in a court of law.
Responsible for all aspects of company’s internal information security. Developed and implemented policies, evaluated and selected hardware and software tools and methods, and implemented access rules.
DIGITAL FORENSIC CERTIFICATIONS
I reached Certified Information Systems Security Professional (CISSP) status following independent research and a formal examination CISSP by the International Information System Security Certification Consortium in 2007. My ID # 104213 has been renewed three times, and remains current till January 2019.
I was certified as an EnCE – EnCase Certified Examiner by Guidance Software following two one-week training courses and two exams (theory and practical) in 2008. My certification #15-0708-2577 has been renewed three times, and remains current till July 2019.
I was certified as a CCE – Certified Computer Examiner by The International Society of Forensic Computer Examiners following independent study and four formal exams (one theory and three practical) in 2013. My certificate #1533 has been renewed three times and remains current till May 2019.
I was certified as a CBE – Certified BlackLight Examiner by BlackBag technologies, Inc. following 16-hour BlackLight Tool Training course and certification exam in 2017. My certificate remains current till August 2020.
I was certified as a CCO – Cellebrite Certified Operator, by Cellebrite Mobile Synchronization following 14-hour Training course and certification exam in 2017. My certificate remains current till December 2019.
I was certified as a CCPA – Cellebrite Certified Physical Analyst, by Cellebrite Mobile Synchronization following 21-hour Training course and certification exam in 2017. My certificate remains current till December 2019.
MENSA, INFRAGARD, HTCIA, HTCC, ASDFED, ISFCE
Has been offered as an expert witness and testified at hearing, or by affidavit, or declaration,
or certification in the following cases: