Gadi Evron

Current

• Security Executive at Self employed
• Operations Manager and Founder at Zeroday Emergency Response Team
• Organizer at Security Conferences

see less...

Past

• Security Evangelist at Beyond Security
• Israeli Government CERT manager at Tehila, the Israeli Government ISP and eGovernment project
• Information Security Manager (CISO) at Tehila, the Israeli Government ISP and eGovernment project

• Security Consultant at Self employed
• Security Research and Management Positions at IDF, Military Intelligence

see less...

2 more...

Education

• Military Criminal Investigations - IDF

Recommended

11 people have recommended Gadi

Connections

500+ connections

Industry

Computer & Network Security

Gadi Evron’s Summary

I am looking for a management position in the security industry where I can contribute technically and make a difference strategically. When relevant, I'd like my position to also include the use of my vast global network of connections and high press visibility.

I am recognized as a leader in Internet security operations and am arguably the world's top expert on botnets--certainly the first, and am known for having exposed several other major risks. I lead global task forces to fight cyber crime, and chair world-wide conferences.

Career highlights:
I chaired the world's first task force for fighting phishing, wrote the official postmortem analysis for the 2007 attacks against Estonia and coordinated the online response to scams taking advantage of hurricane Katrina victims. I facilitate communication between registrars, ISPs, law enforcement, security researchers and policy makers, run a technical exchange of information globally between CISOs, etc.

Gadi Evron’s Specialties:

Originally a techie, I'm a tactical doer who thinks strategically. I'm a campaign manager and an agent of change.

Trained in security management and strategy, I also developed specialties in combining the realms of technology and marketing: facilitating communication between R&D and marketing, as well as opening new sales channels, designing new products and solutions, and building brands.

Gadi Evron’s Experience

• Security Executive

  Self employed

  (Internet industry)

  2007 — Present (2 years )

  A client I can disclose (2008)
  Afilias Global Registry Services, Security Architect.
  
  In this position I was charged with affecting change in the corporate security culture, as well as was given charge of several projects.
  
  We designed a DDoS attack resistant infrastructure and response plan, which is now being implemented.
  
  I created wide-ranging industry and community relations, positioning Afilias as a trusted and known party in the security realm.
  
  I led the effort to rid Afilias' .info registry zone from fastflux domains, which was successful, as well as fought the abuse by spammers by collecting actionable intelligence and building plans for an abuse desk.
  
  While doing so, I also represented Afilias in a few conferences such as the 2007 United Nations Internet Governance Forum (IGF) at which I spoke.

• Operations Manager and Founder

  Zeroday Emergency Response Team

  (Computer & Network Security industry)

  2005 — Present (4 years )

  ZERT is a global incident response organization working closely with vendors such as Microsoft. It is a volunteer organization which is ready to patch zeroday attacks in the case a vendor is unable to do so and the Internet or a large majority of its users are at risk.
  
  http://isotf.org/zert/

• Organizer

  Security Conferences

  (Research industry)

  April 2004 — Present (5 years 8 months)

  ISOI stands for Internet Security Operations and Intelligence. It is a non-profit and closed workshop for vetted and trusted individuals in government, law enforcement, industry and academia in North America and world-wide. In it sensitive subjects relating to the security of the Internet infrastructure, combating cyber crime, phishing, botnets and fraud are being discussed.
  
  ISOI 1 was hosted by Cisco and supported by the ISC.
  http://isotf.org/isoi.html
  
  ISOI 2 was hosted by Microsoft and supported by Trend Micro.
  http://isotf.org/isoi2.html
  
  ISOI 3 was hosted by ICANN, ISOC and Afilias, and supported by Sunbelt Software.
  http://isotf.org/isoi3.html
  
  ISOI 4 was hosted by Yahoo! and supported by various local SF-bay companies.
  http://isotf.org/isoi4.html
  
  ISOI 5 was hosted by the Estonian CERT and supported by Norman.
  http://isotf.org/isoi5.html
  
  ISOI 6 was hosted by the University of Texas, Dallas, and supported by Baylor University.
  http://isotf.org/isoi6.html
  
  I also organize TAUSEC, a monthly forum at the Tel Aviv University.

• Security Evangelist

  Beyond Security

  (Computer & Network Security industry)

  2006 — 2008 (2 years )

  Working under the title of "Security Evangelist", in this position I fulfilled the duties of the in-between guy. On the one hand I was technical and helped design the company's products and new development, while on the other--
  I supervised two software development projects, acted as chief editor for SecuriTeam, then the second biggest security portal online, created a successful blogging site for them with 15,000 unique readers a week.
  
  I worked closely with the marketing department as I brought in new clients and opened new high-level sales channels.
  
  I managed the beSIRT incident response team and formed/maintained outside relations and ties.
  
  My duties as "evangelist" were in building a brand, and whether outside or inside the company, oil the communication and make things happen. Another side to this was translating business and technical people to each other.
  
  This was supposed to be a temporary and task-specific job, for a period of two months. I stayed for 2 years.

• Israeli Government CERT manager

  Tehila, the Israeli Government ISP and eGovernment project

  (Government Agency; 10,001 or more employees; Internet industry)

  2005 — 2006 (1 year )

  In this position we formed the Israeli Government CERT.
  
  I was directly responsible for establishing trust relationship with other government organizations, NGOs and the private sector. We facilitated information sharing, coordinated government-wide and country-wide incident response and responded to government-wide incidents.
  
  We created a centralized trusted location for people having abuse and security issues in Israel to go to, and the local relationships to back that responsibility.
  
  I spearheaded the creation of a working group to coordinate security efforts between Israeli ISPs and other large corporations.

• Information Security Manager (CISO)

  Tehila, the Israeli Government ISP and eGovernment project

  (Government Agency; 10,001 or more employees; Internet industry)

  2004 — 2006 (2 years )

  "You don't need your firewalls! Gadi is Israel's firewall."
  
  -- Itzik (Isaac) Cohen, "Computers czar", Senior Deputy to the Accountant General, Israel's Ministry of Finance, at the government's CIO conference, 2005.
  
  Tehila is a department under the Israeli Ministry of Finance (which for historical reasons is in charge of IT for the government).
  
  Tehila provides the entire government with Internet service, hosting, eCommerce, etc. It is also the eGovernment (online government) project and manages the certificate authority which will eventually integrate PKI in passports and identification cards, etc.
  
  During my employment I developed the organization's incident response capabilities, established bilatteral relations with foreign governments and NGOs, designed and directed security architecture and all other aspects of being a CISO from the testing of new products to penetration testing to standardization and compliance

• Security Consultant

  Self employed

  (Government Administration industry)

  2004 — 2004 (less than a year)

  During this year I worked with two organizations.
  
  Aladdin Knowledge Systems, where I briefly managed a research team in charge of responding to new virus threats.
  
  The Israeli Central Bureau of Statistics, where I consulted on corporate security, virus protection, security strategy and compliance.

• Security Research and Management Positions

  IDF, Military Intelligence

  (Government Agency; 10,001 or more employees; Defense & Space industry)

  2000 — 2003 (3 years )

  During my service in the Israeli Military I had several positions, the first of which was a technical one centered on network security. The following positions were management and boot-strapping positions for research and analysis, technical and otherwise.

Additional Information

Gadi Evron’s Groups:

•    CSORoundtable
•    Lifeboat Foundation Scientific Advisory Boards
•    Black Hat Speakers
•    Information Security Community
•    NANOG - The North American Network Operators' Group
•    Privacy Professionals
•    Zorch
•    Job Networking in Israel
•    8200 Fellowship - Israeli IDF
•    Fraud, Phishing and Financial Misdeeds
•    Telecom & Mobile VAS Professionals Worldwide
•    Security Leaders Group
•    Internet Security Operations Community
•    Search & Find a Job in Israel
•    Fuzzing
•    Search & Find an Executive Job in Israel
•    Information Sharing - NEISAS