Peter H. Gregory, The Official Website

Incorporating Security and Risk Into Everyday Thought

Peter H. Gregory, CISA, CISSP, DRCE is an American information security manager, computer security specialist, and writer. He is a thirty-year IT veteran, having worn every hat and coat in the IT closet.

Peter discovered computers in the 1970s in his first year at the University of Nevada where he was taking a Fortran programming course when computer programs were still typed in on punch cards. Since then he has worked in local government, banking, non-profit, gaming, wireless telecommunications, and financial management. His roles have ranged from software engineer to UNIX administrator, network engineer, systems architect, database architect, security analyst, logical security strategist, writer, lecturer and trainer.

Peter Gregory is the author of over twenty books on computer security and information technology and has published works with:

John Wiley & Sons
Osborne McGraw Hill
Course Technology/Cengage Publishing
O'Reilly Media
Sun Microsystems Press

In 1999 his first book, Solaris Security, was published in English, Chinese, and Japanese language editions. He has also published over twenty articles on security in Computerworld, and has been interviewed for articles in Computerworld, Information Security Magazine, and C|Net News and frequently speaks at industry conferences and events including RSA, SecureWorld Expo, West Coast Security Forum, SIM, and InfraGard.

Peter is a member of the Board of Advisors and lecturer for the NSA-certified University of Washington Certificate Program in Information Assurance & Cybersecurity, and on the Board of Advisors and the lead instructor for the University of Washington Certificate Program in Information Systems Security. He is also a member of the board of directors of the Evergreen State chapter of InfraGard. As an InfraGard member, Peter served as an expert witness in the 2006 cybercrime case, United States vs. Christopher Maxwell. He is also the founding member of the Pacific CISO Forum.

Peter's day time job is the business use of technology as an information security manager. He is highly familiar with data security laws and regulations including Sarbanes Oxley, HIPAA, COPPA, NERC, PCI, CA SB1386, and with well known standards and audits including ISO17799, ISO27001, and SAS70. He also has a keen understanding of business processes, the software development life cycle, and other core processes found in business. He has many years of experience developing and enforcing security policy, security awareness, and virtually all other activities that are considered essential practices for the protection of business information and assets.