Deke George
Co-Founder & Chairman / NetSPI
More by Deke George
From Governance to Implementation to Results
In this webinar, we’ll discuss the building blocks of great security programs from governance, automation, implementation models, and more.
Reflections on Black Hat 2011
There were a number of very good presentations this year and the after-hours parties were great, but from a security industry standpoint, Black Hat 2011 seemed like it had less energy this year.
The value of multi-layer / comprehensive pen testing
For the past five years it seems like almost everything in information security has focused on application security and, for the NetSPI consulting practices, our application security business (app pen testing, code review, etc.) has significantly increased.
Thoughts on NetSPIs 10-year anniversary
We celebrated NetSPI’s 10 year anniversary last month. It’s amazing that it has been that long. Reflecting on this in this post.
Counseling the Corporate Board
There was a great quote in a recent Ponemon study sponsored by Cenzic and Barracuda: "Most organizations have been hacked, yet 88 percent still spend more on coffee than on app security."
Is PCI driving the development of information security within healthcare?
I like to watch industries evolve in how they deal with information security. It was interesting to watch retail evolve as PCI got more organized.
Secure360
We held the Secure360 conference in the Twin Cities last week. Presentation topics included PCI, cloud computing, and problems within the security industry.
Risk, Security and Subjectivity Within PCI
In late March Thales released an interesting report on the state of PCI – “PCI DSS Trends 2010: QSA Insights Report.”
Observations from HIMSS
I was at the Healthcare Information and Management Systems Society (HIMSS) national conference last week in Atlanta. Let's discuss.
PCI in Europe Today
I attended the 2009 PCI Community meeting in Europe last week. Since this was a feedback year, there wasn’t a significant amount of new content; however, there were some interesting points regarding PCI adoption in Europe.
Where the CISO Reports
Since the role of the Chief Information Security Officer (CISO) and how he or she reports has a major impact on security and risk, I think it’s interesting to look at how different organizations have structured the position. With that said, there is very little consistency other than a correlation with the industry vertical’s understanding of IT risk.
Mergers & Acquisitions in the Information Security Field
The news about the sale of the VeriSign consulting team to AT&T suggests that there will be many similar transactions in the near term within the information security market.