Meet Jeremiah Grossman, CTO Of WhiteHat Security - InformationWeek
IoT
IoT
Business & Finance
News
2/23/2007
10:25 AM
50%
50%
RELATED EVENTS
Building Security for the IoT
Nov 09, 2017
In this webcast, experts discuss the most effective approaches to securing Internet-enabled system ...Read More>>

Meet Jeremiah Grossman, CTO Of WhiteHat Security

Jeremiah Grossman, a former information security officer at Yahoo, is on a quest to make Web apps more secure. He's ambitious, having founded WhiteHat Security in 2001--when many tech companies were closing up shop--to provide continuous security monitoring of Web-based apps, which he knew would play a major factor in the Web's resurgence. And he's not afraid to break a sweat.

Jeremiah Grossman
CTO Of WhiteHat Security

Interview by Larry Greenemeier


Jeremiah Grossman, CTO Of WhiteHat Security -- Photograph by Jeffery Newbury

Photograph by Jeffery Newbury

1
GONE PHISHIN'
Keeping out every phishing attack is important, Grossman says. "It only takes one phishing attack, and nobody wants to click on your links anymore. Once customers lose trust, it's really hard, if not impossible, to get it back."

2
JUST BROWSING
At last summer's Black Hat conference, Grossman predicted IT departments were 18 months away from attacks that would infect users' Web browsers with JavaScript malware embedded in the Web sites they visit. Once the browser is infected, the corporate network is next. Since that time, "I've only been confirmed in my belief, especially with the focus on cross-site scripting attacks on the Web."

3
SECURITY ADVOCATE
A founder of the Web Application Security Consortium and a contributing member of the Center for Internet Security Apache Benchmark Group, Grossman regularly posts his insights on several security e-mail lists. One clear message: "The payloads being delivered by Web application attacks are much more severe than in years past."

4
AYE, MATE
A fan of contact sports, Grossman has played Australian rules football in the Bay Area for three years. In football, "I play the ruck. That's the guy who always goes up for the ball and gets hit."

5
DEFENSE IN DEPTH
When he's not defending Web apps, Grossman is studying self-defense. He took up Brazilian jujitsu last year. "I've been an Ultimate Fighting Championship fan for years, and the jujitsu style of fighting is a lot of ground and pound; I really wanted to give it a try."

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
How Enterprises Are Attacking the IT Security Enterprise
How Enterprises Are Attacking the IT Security Enterprise
To learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Register for InformationWeek Newsletters
White Papers
Current Issue
2017 State of IT Report
In today's technology-driven world, "innovation" has become a basic expectation. IT leaders are tasked with making technical magic, improving customer experience, and boosting the bottom line -- yet often without any increase to the IT budget. How are organizations striking the balance between new initiatives and cost control? Download our report to learn about the biggest challenges and how savvy IT executives are overcoming them.
Video
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll