I am a founder and the Chief Technology Officer of Protegrity in Stamford, CT. I created the architecture of the Protegrity database security technology. Prior to joining Protegrity, I worked 20 years at IBM in software development and as a consulting resource to IBM's Research organization, specialized in the areas of IT Architecture and IT Security. I received my US Green Card of class EB 11 (Individual of Extraordinary Ability, after endorsement by IBM Research in 2004).
I am the inventor of more than 15 patents in the areas of Encryption Key Management, Policy Driven Data Encryption, Internal Threat Protection, Data Usage Control and Intrusion Prevention. One line of my research during the last 15 years is in the area of managing and enforcing policies (security, encryption, audit) for databases, including more than 10 joint projects with research and development teams at IBM, Microsoft, Hewlett-Packard, Oracle, Sybase, Informix, Teradata, and RSA.
I am a research member of the International Federation for Information Processing (IFIP) WG 11.3 Data and Application Security and a member of ANSI X9. Leading journals and professions magazines, including IEEE Xplore, ISACA and IBM Journals, have published more than 100 of my in-depth professional articles and papers. I received Industry's 2008 Most Valuable Performers (MVP) award together with technology leaders from IBM, Cisco Systems, Ingres, Google and other leading companies. I have given a series of presentations at leading security and database conferences in US, Europe and ASIA, and frequent tutorials at the Information Systems Security Association (ISSA) and Information Systems Audit and Control Association (ISACA). I received a master's degree in physics in 1979 from Chalmers University of Technology in Sweden.
Specialties:IT Architecture, IT Security, Data Encryption, Key Management,Databases, PCI DSS.
Areas of Expertise
Security, Compliance, Regulations, PCI DSS, ANSI X9, privacy, Encryption, Tokenization, Databases
An idea worth spreading
Encryption will not be a long term approach to data security
I'm passionate about
Family, encryption, tennis, golf and sailing
Talk to me about
Why will encryption not be a long term approach to data security?
People don't know I'm good at
Finding talent for new technolgy
My TED story
Finding new ways of solving data security and privacy problems