Gary McGraw is the CTO of Cigital, Inc., a software security consulting firm with headquarters in the Washington, D.C. area and offices throughout the world. He is a globally recognized authority on software security and the author of eight best selling books on this topic. His titles include Software Security, Exploiting Software, Building Secure Software, Java Security, Exploiting Online Games, and 6 other books; and he is editor of the Addison-Wesley Software Security series. Dr. McGraw has also written over 100 peer-reviewed scientific publications, authors a monthly security column for SearchSecurity and Information Security magazine, and is frequently quoted in the press. Besides serving as a strategic counselor for top business and IT executives, Gary is on the Advisory Boards of Dasient (acquired by Twitter), Fortify Software (acquired by HP), Wall + Main, Inc., and Raven White. His dual PhD is in cognitive science and computer science from Indiana University where he serves on the Dean's Advisory Council for the School of Informatics. Gary served on the IEEE Computer Society Board of Governors and produces the monthly Silver Bullet Security Podcast for IEEE Security & Privacy magazine (syndicated by SearchSecurity).
Contributions from Gary McGraw, Contributor
- BSIMM4: Secure development's measuring stick
- McGraw: Don't 'hack back'; instead, build security in
- 'Trusted on busted': Three-legged mobile app security
- Can a badness-ometer adress third-party software?
- Gary McGraw's 13 principles for secure system design
- McGraw: Twelve common software security activities
- McGraw dismisses appeal for offensive cyberweapons
- Ten commandments for software security
- Security awareness training a smart move, say experts
- Congress should support software fixes, expert says
- Mobile security: It’s the software, stupid
- McGraw on cloud computing pros and cons for security
- Gary McGraw on how fixing badware can mitigate malware
- Gary McGraw: Build security in from start