Alpha's Jeff Kalwerisky in InformationWeek

On his first week on the job (I haven't even had the chance to introduce him on the blog yet!), Jeff Kalwerisky is already making waves in the media. InformationWeek published an article on "DNS poisoning" yesterday, and they called on Jeff to offer his counsel to readers. As the new Chief Security Evangelist at Alpha, Jeff's been working overtime to spread the security gospel, and he had some thoughtful words of advice for IT managers facing the dangers of DNS hacking. Here's what Jeff told InformationWeek.



As Chief Security Evangelist for Alpha, Jeff is providing input and oversight on the development of our Web Security Framework, an integrated security system developers use to protect applications and data from unauthorized access. He also counsels Alpha Software VARs, customers, and partners on matters relating to application security, compliance, privacy, and governance.

Jeff has specialized in information security and risk management for over 20 years, including a tour of duty as Executive of the Security and Risk Management practice at Accenture. He focuses on information risk, information security governance, and security standards, including ISO-27002, PCI-DSS (Processing Card Industry Data Security Standard), and CoBIT (Control Objectives for Information and Associated Technologies).

He has consulted to Fortune 100 companies and national governments, helping them develop enterprise security governance policies and frameworks, and deploy technology solutions that strengthen information security and data privacy/protection. He also managed security-related projects, including risk assessments, vulnerability testing, and security incident triage.

Jeff was also appointed Principal Security Architect for U.K.’s National Health Service IT infrastructure project, which remains the largest healthcare IT development initiative in history serving 50 million people.

Before Accenture, Kalwerisky was VP of Consulting Services for SecureWare, which pioneered the world’s first Internet bank, Security First National Bank. His work ensured Security First and connected banks were secure, and capable of passing audits by the Office of the Controller of the Currency.

Before that, Kalwerisky served as director of global security for VeriSign where he was responsible for ensuring that affiliates in 30 countries adhered to VeriSign’s rigorous security standards. He also managed an international team of security managers to design, deploy, and monitor these secure data centers around the globe. These centers protected the sensitive cryptographic keys used to electronically sign digital certificates, the life blood of e-commerce.

Kalwerisky is the author of Windows NT: Guidelines for Security, Audit and Control and Security Audit and Review Guide. His executive training courses on the use of advanced technologies for secure e-commerce, such as cryptography and biometrics, have been delivered to executives and developers internationally.

He's a busy guy! And off to a great start! Way to go, Jeff.