Who is VSR
VSR was founded by a former @stake consultant, George Gal whose vision was to create a firm focused on delivering the highest quality information security consulting services. Our company structure and operations allow us to be nimble, provide unbiased recommendations and remain vendor neutral.
The VSR management team consists of proven industry experts who each bring unique expertise that add value to our services.
George D. Gal, Founder & Managing Partner
As managing partner George oversees all major corporate functions. George has over fourteen years of application security experience. His specialties include application security assessment and attack simulation with significant experience within the financial services, retail, health care, commercial software & service provider market sectors. At VSR George works with clients as a subject matter expert performing application security assessments ranging from secure code review, architectural review, black-box penetration testing and application security training.
Prior to VSR, George was a Senior Security Consultant with @stake involved in both the attack simulation and forensics / incident response centers of excellence. George is a graduate of Northeastern University with Bachelor of Science and Master of Science degrees in Computer Science.
Timothy D. Morgan, Partner & Digital Forensics Practice Lead
Tim specializes in application security, cryptography, forensics and incident response, and leads VSR's digital forensics practice. Having over nine years of experience with network security, secure application development, incident response and penetration testing, Tim has a broad technical background. At VSR Tim works with clients to assist in securing their computing infrastructure through focused assessments, such as penetration tests on custom and off-the-shelf applications, security code reviews, software and network architecture assessments, and incident response policy reviews.
Prior to VSR, Tim worked in the financial and commercial software sectors where he gained experience in secure software development and acted as a first responder, investigating dozens of internal incidents and external threats. Tim earned his computer science degrees from Harvey Mudd College (BS) and Northeastern University (MS).
John Redford, Partner & Training Services Practice Lead
John has an extensive background in secure application and systems infrastructure development, with over eighteen years implementation and innovation experience. Using his extensive knowledge of diverse software platforms, John assists VSR clients to implement solutions that are both secure and practical. John develops and delivers training materials to educate clients, focusing on fundamental security threats and modern defensive programming techniques. He also performs architectural assessments, code reviews, and application penetration testing.
Prior to VSR, John was a security consultant with @stake and Symantec, where he implemented penetration testing and reporting tools. Previously, he worked in the financial sectors of Boston and New York.
Dan Rosenberg, Vulnerability Research Practice Lead
Dan is an accomplished software vulnerability researcher, having published dozens of vulnerabilities in both open source and commercial applications. His current research interests include kernel security (especially on Linux) and exploit development on mobile devices. At VSR, he performs code reviews, penetration testing, and identifies vulnerabilities in third-party applications to provide clients with proactive security assurance.
Dan completed his Master of Science and Bachelor of Science degrees in Computer Science at Brown University, where his research focused on topics such as cloud computing security, cryptography, and application security.