About Deke George

Deke George, a co-founder of NetSPI, is a business-oriented IT executive. He has significant entrepreneurial experience as both a member and founder of multiple startups. He began his career as a founder of the computer forensics program at Ontrack (now Kroll-Ontrack). In this capacity, he has worked on high-profile computer fraud and computer evidence cases in the United States and abroad. As an entrepreneur with a focus on creating client oriented solutions, Deke has been involved in a variety of roles including consultant, sales, and leadership for a number of technology based organizations. Deke holds a B.A. in Physics from Middlebury College in Vermont.

Security Industry

Reflections on Black Hat 2011

Deke George

August 10th, 2011

There were a number of very good presentations this year and the after-hours parties were great, but from a security industry standpoint, Black Hat 2011 seemed like it had less energy this year.
READ POST

Security Industry

The value of multi-layer / comprehensive pen testing

Deke George

July 20th, 2011

...you've got to look comprehensively at risk within all aspects of your IT environment. Because while you may not be looking at these things, it's certain that at some point, someone looking for the easiest way in will be looking at exploiting these weaknesses.
READ POST

Security Industry

Thoughts on NetSPIs 10-year anniversary

Deke George

May 20th, 2011

"...I think we’re seeing a sea change in attitudes and accountability with regards to information security."
READ POST

Security Industry

Counseling the Corporate Board

Deke George

March 2nd, 2011

There was a great quote in a recent Ponemon study sponsored by Cenzic and Barracuda: "Most organizations have been hacked, yet 88 percent still spend more on coffee than on app security."
READ POST

Security Industry

Is PCI driving the development of information security within healthcare?

Deke George

June 14th, 2010

I like to watch industries evolve in how they deal with information security. It was interesting to watch retail evolve as PCI got more organized. The PCI Council put together the DSS with dates and penalties for breaches and non-compliance, …
READ POST

Security Industry

Secure360

Deke George

May 21st, 2010

We held the Secure360 conference in the Twin Cities last week. Presentation topics included PCI, cloud computing, and problems within the security industry. While it can get tiring discussing the industry’s problems, I like trying to understand the difficult nature of …
READ POST

Security Industry

Risk, Security and Subjectivity Within PCI

Deke George

April 2nd, 2010

In late March Thales released an interesting report on the state of PCI – “PCI DSS Trends 2010: QSA Insights Report.” The report was written by the Ponemon Institute and it highlights the difficulty of taking into account risk, security …
READ POST

Compliance

Observations from HIMSS

Deke George

March 10th, 2010

I was at the Healthcare Information and Management Systems Society (HIMSS) national conference last week in Atlanta. Overall, the conference wasn’t much different than past years. From an information security perspective the presentations and conversations were limited, but there were …
READ POST

Compliance

PCI in Europe Today

Deke George

November 3rd, 2009

It’s been discussed quite frequently that the Europeans are behind North America in implementing PCI, especially at the merchant level. . . The consensus at this year’s conference was that this situation is beginning to change.
READ POST