NetSPI Authors

  • Alex Crittenden

    Author Alex Crittenden is a 15-year technology and finance veteran - having worked with leading organizations in several areas of technology strategy and implementation. His experience with a variety of technology disciplines (EHR solutions, payment systems, data collection, and application development) and his financial and strategic focus have allowed him to make an impact with organizations like GE, Best Buy, McKesson, NCR, and VeriFone.

    VIEW ALL POSTS

  • Chris Secrest

    Author Chris Secrest has a BS in Information Science from the University of Wisconsin and over 10 years of IT audit and information security experience including design, implementation, and compliance audit. Prior to NetSPI, Chris was the Information Security Auditor for a large hospital system. His experience working on both strategic security initiatives as well as detailed compliance consulting projects has given Chris a unique insight into the impact that security and compliance have on our clients in a variety of industries.

    VIEW ALL POSTS

  • Dan Gardner

    Author Dan Gardner oversees all technology development including software development, quality assurance, and system integration. He assumed this position in February 2008. Previously, Dan was Chief Technology Officer at Renew Data Corp., as well as one of the original founders. Renew is a leader provider of e-discovery and electronically stored information risk management services. Renew went from startup to a $30M-plus company in less than five years and has made the Inc. 500 list twice. Dan has also held software development positions at TranScape (a Pitney Bowes company) and Ontrack Data International. Dan holds a bachelor’s degree in Mathematics from St. John’s University, and a master’s degree in Mathematics from the University of Notre Dame.

    VIEW ALL POSTS

  • Deke George

    Author Deke George, a co-founder of NetSPI, is a business-oriented IT executive. He has significant entrepreneurial experience as both a member and founder of multiple startups. He began his career as a founder of the computer forensics program at Ontrack (now Kroll-Ontrack). In this capacity, he has worked on high-profile computer fraud and computer evidence cases in the United States and abroad. As an entrepreneur with a focus on creating client oriented solutions, Deke has been involved in a variety of roles including consultant, sales, and leadership for a number of technology based organizations. Deke holds a B.A. in Physics from Middlebury College in Vermont.

    VIEW ALL POSTS

  • Eric Humphries

    Author Eric has over 15 years of information security experience including network engineering, UNIX administration, and consulting. He has performed security assessment and penetration testing projects for financial services, healthcare, and technology organizations. In particular, Eric specializes in network architecture and device security, secure storage, and virtualization technologies. Eric has experience designing and maintaining secure networks, systems, and storage solutions. In more recent years, Eric has focused on consulting in these areas, as well as performing system, network, and application penetration testing. Eric also has experience with maintaining and assessing PCI environments.

    VIEW ALL POSTS

  • Karl Fosaaen

    Author Karl Fosaaen holds a BS in Computer Science from the University of Minnesota. He has four years of consulting experience in the computer security industry and in that time has worked in a variety of industries, financial services, health care, and hardware manufacturing. Karl specializes in network and web application penetration testing and has extensive knowledge of social engineering disciplines including physical site + network access (capture the flag) and email phishing.

    VIEW ALL POSTS

  • Michael Anderson

    Author Michael Anderson holds a BS in Computer Science from the University of Minnesota. He started his career with NetSPI as an intern and has been with NetSPI for over 3 years. Michael has five years of information security experience specializing in penetration testing and code review with a strong focus on mobile applications and gaming security. Michael also co-developed Thunderclap, a cloud-based program that tests for client incident response. Additionally, Michael appears on the 2012 Google Security Hall of Fame for discovering a vulnerability in Google’s software.

    VIEW ALL POSTS

  • Ryan Wakeham

    Author Ryan Wakeham has approximately ten years of computer security experience, seven of them with NetSPI. He holds a BA in Computer Science from Carleton College and an MS degree in Information Security from the Georgia Institute of Technology. Ryan leads NetSPI’s Assessment Team, which performs network and application penetration tests, code reviews, and infrastructure assessments. He also consults directly with clients on IT risk management and security program development projects. He brings to his work sound insight into security issues and the communication skills to effectively and thoroughly convey risks and recommended remedies to clients.

    VIEW ALL POSTS

  • Steve Kerns

    Author Steve has a BS in Computer Science from MNSU, Moorhead and over 25 years of computer security experience including consulting, application development, database administration, and system administration. He also has experience in designing and managing secure systems and applications. He has performed security assessment projects for healthcare, nuclear, manufacturing, pharmaceutical, banking and educational organizations. He is an active participant in the information security community. Before NetSPI, Steve worked for the world’s largest privately held company to develop applications, both web and thick client, for the research department and to secure the web applications for multiple business units. Steve also spent almost 10 years as a consultant for a large computer company to develop applications for numerous Fortune 500 companies.

    VIEW ALL POSTS

  • Seth Peter

    Author Seth Peter is a computer security expert with extensive experience with all aspects of information security. He was a co-founder of the computer forensics team at Kroll Ontrack where he provided expert witness testimony and depositions regarding high profile computer security cases. As the founder and CTO of NetSPI, he is a national leader in risk management and security program assessment. Seth has provided consulting to over 100 different organizations within financial services, government, health care, education, nuclear energy, and retail. Seth is a Payment Card Industry Qualified Security Assessor. Seth holds a B.A. degree in Mathematics from Kenyon College.

    VIEW ALL POSTS

  • Scott Sutherland

    Author Scott is currently responsible for the development, and execution of penetration testing at NetSPI. His role includes researching and developing tools, techniques, and methodologies used during network and application penetration tests. Scott has been providing IT security services to medium sized to Fortune 50 companies for over 10 years. His goal has been to help them identify the risks that exist in their environment, and develop prioritized remediation plans that take into account their business constraints and requirements. As part of that experience Scott has had the opportunity to perform security assessment projects for financial, healthcare, retail, nuclear, manufacturing, and pharmaceutical, organizations. As an active participant in the information security community, Scott also contributes technical security blog posts, whitepapers, and presentations on a regular basis through NetSPI.

    VIEW ALL POSTS

  • Tony Fulda

    Author Tony has more than eight years information technology, information system security and technology training experience, and has performed technical and enterprise risk assessments for a number of clients in the higher education, healthcare, public sector, telecommunications, and retail industries. He has led or participated in Payment Card Industry security assessments for a number of Fortune 100 companies.

    VIEW ALL POSTS

  • Yan Kravchenko

    Author Yan has over 14 years of consulting experience in Information Technology and Information Security, specializing in security program development and management, security assessments, and IT audits. Yan has performed and managed numerous security assessment and IT audit projects in the education, government, healthcare, manufacturing, and agriculture sectors. A particular focus recently has been information security in healthcare. Yan is a founding member of the HITRUST SIG in the Twin Cities, which helps organizations affected by healthcare regulations evaluate and begin implementing the HITRUST Common Security Framework, or CSF.

    VIEW ALL POSTS