Top Qs
Timeline
Chat
Perspective

Michael Gregg

American computer scientist From Wikipedia, the free encyclopedia

Remove ads

Michael Gregg is an American computer security expert, author, and educator known for his leadership in public- and private-sector cybersecurity initiatives. He has written or co-authored more than twenty books on information security, including Inside Network Security Assessment and Build Your Own Security Lab. [1]Gregg is the CEO of Superior Solutions, Inc. and was appointed Chief Information Security Officer for the state of North Dakota. He has also testified before the United States Congress on cybersecurity and identity theft.[2][3]

Quick Facts Nationality, Education ...
Remove ads

Education

Summarize
Perspective

According to his LinkedIn profile and congressional biography, Gregg holds two associate degrees, a bachelor's degree, and a master's degree.[4][5] His education includes:

Gregg has served as lead faculty for the online cybersecurity program at Villanova University, where he developed and taught courses in penetration testing, digital forensics, and secure design.[5] He is also listed as a cybersecurity program advisor for DeVry University in Houston.[5][4]

Professional certifications

More information Certification, Abbreviation ...
Remove ads

Career

Summarize
Perspective

As of March 2025, Gregg serves as Chief Information Officer and Director of Field Strategy for Palo Alto Networks, where he leads strategic cybersecurity initiatives for public-sector and enterprise clients.[5]

From 2020 to early 2025, Gregg held several leadership roles within North Dakota Information Technology (NDIT). He was appointed Chief Information Security Officer (CISO) in June 2021 and previously served as Director of Cybersecurity Operations. As CISO, he built a 65-member team, established the state's first Cyber Fusion Center, and expanded endpoint protection from 20,000 to 250,000 devices. He implemented agile methodologies, including SIPOC diagrams and Scrum, to improve workflow velocity, and launched a third-party risk management framework that reduced remediation costs by 80 percent.[7][8]

Prior to joining North Dakota state government, Gregg was Global Chief Information Security Director for International Container Terminal Services from 2017 to 2020. He led the development of a global cybersecurity program across operations on five continents, deploying vulnerability management tools, a security operations center (SOC), mobile device management, multi-factor authentication, and global security awareness campaigns. He also oversaw incident response, technical controls for IT/OT environments, and created CAPEX/OPEX security budgets.[5]

From 2007 to 2017, Gregg was CISO at Superior Solutions, Inc., a Houston-based consulting firm serving Fortune 500 companies and public agencies. His work included security assessments, incident response planning, and compliance strategies for health care, telecommunications, financial services, and property management clients. He helped secure government systems following cyberattacks and implemented HIPAA-compliant mobile access solutions.[9]

Concurrently, from 2004 to 2017, Gregg served as Lead of the Cybersecurity Program at Villanova University. He designed a multi-course professional certification curriculum, selected subject matter experts, and taught advanced cybersecurity topics as an adjunct professor.[5]

Gregg is a frequent keynote speaker at national and international cybersecurity conferences, including the (ISC)² Security Leadership Conference, Hacker Halted, and GovWare.

Remove ads

Media coverage

Summarize
Perspective

Michael Gregg has been featured as a cybersecurity expert across numerous national media outlets. He has appeared on television segments for Fox News, CBS News, ABC News, NBC News, CNN, CNBC, and ESPN, discussing topics such as webcam hacking, cell phone security, browser hijacking, and cyber fraud. In addition to television and radio appearances, Gregg has contributed articles and expert commentary to publications including The New York Times, HuffPost, Kiplinger, and TechTarget. His expertise has also been highlighted in online profiles, podcasts, and congressional briefings, establishing him as a recognized authority in cybersecurity.[10]

Appearances and print

More information Media outlet, Title/topic ...

Podcasts

Gregg has been featured as a guest on several cybersecurity-focused podcasts, where he has discussed risk management, workforce development, and public-sector innovation.

  • "Michael Gregg, CISSP, Chief Information Security Officer, North Dakota" – The CISO Diaries (April 4, 2022)
Gregg discusses his career path, leadership style, and cyber priorities as a state-level CISO.
Listen on Apple Podcasts
  • "The Security 'Onion' with Michael Gregg of Catalyst Network Solutions" – The MSP Stack Podcast (January 25, 2022)
A conversation on layered cybersecurity strategies, endpoint management, and defense in depth.
Listen on Apple Podcasts
  • "EP 171: Getting Buy‑In for Cybersecurity" – Cyber Risk Management Podcast (November 19, 2024)
Gregg explores strategies to secure executive support for cybersecurity initiatives in large organizations.
Listen on Cyber Risk Management
  • "Michael Gregg on Advanced Persistent Threats and the Growing Threat of Cybercrime" – YouTube interview (~2012)
Gregg explains the evolution of APTs and how organizations can prepare for advanced cyber threats.
Watch on YouTube
Remove ads

Congressional testimony

On January 16, 2014, Gregg testified before the United States House Committee on Science, Space, and Technology during the hearing HealthCare.gov: Consequences of Stolen Identity.[18] Appearing alongside cybersecurity professionals David Kennedy and Waylon Krush, he explained how breaches could compromise personal health records.

According to SecuritySift, Gregg explained that a successful breach could allow unauthorized access to personal data, with the worst consequences occurring after the initial compromise.[19]

He warned that linking federal and state exchanges created a broad attack surface, recommending encrypted data storage, multi-factor authentication, continuous vulnerability assessments, and targeted incident response planning.[20] The Houston Chronicle reported that Gregg cautioned about the potential “real-world damage” if security flaws were left unresolved.[21]

Remove ads

Awards and honors

  • Named one of North America’s Top 100 CISOs (2023) by Cybersecurity Ventures and SecureWorld.[22]
  • Received the CISO Visionary Leadership Award (2024); invited to speak at cybersecurity briefings at the White House in 2023 and 2024.[23]
  • Listed in Government Technology magazine’s “Top 25 Doers, Dreamers & Drivers” (2024), recognizing public-sector innovation and leadership.[24]

Professional memberships

  • Member of the Ponemon Institute, serving as a fellow and contributing to privacy and security research initiatives.[25]
  • Member of the Independent Computer Consulting Association (ICCA), a professional organization for IT consultants. [26]
  • Member of the Texas Association for Educational Technology (TxAET), reflecting involvement in technology education within the state. [26]

Publications

More information Title, Publisher ...
Remove ads

Legacy and impact

Gregg has contributed to state-level cybersecurity efforts through the development of the Joint‑Cybersecurity Operations Command (J‑CSOC), an initiative that originated in North Dakota and expanded into a multi-state cyber threat intelligence network. The program facilitates information sharing and coordination among state governments on cybersecurity matters.[27][28]

In 2024, Gregg was recognized by Government Technology magazine as part of its Doers, Dreamers & Drivers list, which cited his work incorporating artificial intelligence into cybersecurity operations and supporting the creation of cybersecurity apprenticeship programs focused on workforce development.[29]

His work has been referenced in discussions on public-sector approaches to digital infrastructure, emphasizing intergovernmental collaboration and strategies to address workforce shortages in cybersecurity.

Remove ads

References

Loading related searches...

Wikiwand - on

Seamless Wikipedia browsing. On steroids.

Remove ads