Aug 2024 – Aug 2025 · 1 yr

• Founding member of the PAC. By CISOs for CISOs, we are a team working to better the profession and help develop its future.

Oct 2023 – Present · 2 yrs 6 mos

Oct 2023 – Nov 2023 · 1 mo · Tel Aviv District, Israel

• ILC4 was a volunteer organization founded by Gadi and others, created during the Gaza war, with over 2000 volunteers who stepped in to help defend Israeli cyber space. From developing OSINT and cyber intelligence capabilities, through incident response and resiliency work, all the way to supporting abductee families.

May 2022 – Sep 2023 · 1 yr 4 mos

• I work closely with our portfolio companies as well as recreated and lead the CISO Village, a community of hundreds of CISOs built for CISOs, and facilitated by Team8. I also assisted in creating the Data/CDO Village, wrote the now industry best practice on enterprise security and AI, and help with whatever else I can, because that’s what founder mentality is about and I’m happy to be back in startup land.

May 2020 – Jun 2022 · 2 yrs 1 mo · Tel Aviv District, Israel

• I head the CISO’s team in Citi’s AI-CoE, exploring AI/ML security risks, policies, and opportunities for AI adoption. I also head the AI/ML, DevSecOps / Application Security, Threat Intelligence, Third-Party Risk Management/Supply Chain, and Security Program Assessment and Strategy innovation domains for Citi’s Cyber Security Innovation Center, working across the bank with business leaders, engineers, and policy and risk functions, accelerating the adoption and transformation of security technology on-prem and on the cloud.
• My team updated all of Citi’s policies to address Adversarial AI risks, as well as engaging with stakeholders to create a proof-of-concept attack.
• Led the market evaluation and testing of AI, AppSec, and cloud products.
• Facilitated information-sharing relationships with industry peers (NAM and EMEA).
• Assisted in building the 2021 threat intelligence strategy adopted by the global security organization.
• Contributed to the creation of a new DevSecOps strategy across the CI/CD pipeline, resulting in multiple AppSec projects which we are bringing from ideation to implementation, impacting tens of thousands of developers.
• Created and maintained State of Cyber Security Report, leading to wider strategic planning on security program management, data governance, and spend.
• Designed security frameworks and their measurement metrics for the organization, adopted by stakeholders, leading to a justification-based system, with a threat-led approach, changing how product selection is done.

Jun 2018 – Jun 2022 · 4 yrs

• An advisory council with WEF, discussing, and engaging on cyber risk topics.

Jan 2016 – Jul 2023 · 7 yrs 6 mos

• ACoD is an innovative security conference taking the attacker off the pedestal, and creating a community for security professionals to get together and push the art into a science - creating a professional cyber security discipline, as well as models and frameworks, and sharing repeatable operational implementations.
• http://artintoscience.com/

Jul 2014 – Dec 2019 · 5 yrs 5 mos

• Founded and led the company from fundraising ($12 million), to growth ($2.4 million TCV), to acquisition in 2019.
• Market creator and leader in Deception technologies. From introducing the concept in conferences (Honeynet Project, 2012, Blackhat, 2015), to creating an open source community with over 3,000 users and contributors.
• The only security vendor ever chosen for participation in the annual NATO Crossed Swords war games, where the various nations’ teams spent days trying to break through the deception introduced into the exercise. We were invited back.
• Deployed at dozens of large organizations across hundreds of thousands of endpoints, providing mature enterprise technology to help with key pain points such as lateral movement, resulting in the detection of eight nation state threat actors (Chinese, Indian, Iranian, etc.)

Jan 2014 – Jul 2018 · 4 yrs 6 mos

• The Cyber Threat Intelligence Alliance (CTIA) aims to create a professional discipline in the threat intelligence landscape, provide with resources for enterprises, facilitate information sharing, and connect professionals in the field.

Jan 2013 – Oct 2023 · 10 yrs 9 mos · Israel

• Founder and Chair of IL-CERT (Computer Emergency Response Team), Israel’s civilian center for addressing cyber security threats and events:
• Recruited and managed dozens of volunteers, and hundreds through unique social media engagement, which resulted in new threat intelligence sources, where dozens of civilians act as “human sensors” and analysis partners.
• Engaged with hundreds of entities annually, providing a central hub for country-wide incident management (such as during “Anonymous” OP-Israel attacks every April).
• Led incident management in the private and public sectors, from defacements to nation-state level attacks.

Jan 2011 – Jan 2013 · 2 yrs · Israel

• Brought to market PwC services end-to-end, from building the initial methodology, through the sales collateral, to managing relationships across the global partnership, resulting in world-wide adoption by hundreds of PwC Advisory customers. Three of these included:
• PwC’s cyber intelligence service offering.
• A new (at the time) threat-based approach to security assessments, from operations, through risk, to the board, powered by business context. “If you have one dollar, where should you invest it?”
• A DDoS mitigation offering.

Jan 2009 – Jan 2016 · 7 yrs

• A research fellow with Tel Aviv University's Yuval Ne'eman Workshop on Science, Technology and Security, which is at the School of Government and Policy, managed by Prof. Isaac (Itzik) Ben-Israel.
• I research as well as coordinate research into cyber security and information warfare.

Jan 2007 – May 2012 · 5 yrs 4 mos

• AVG - Anti Virus
• Emerging Threats Specialist, Consulting, 2008 - 2011.
• Advised the CTO and VP of R&D on new technologies and developments, which resulted in a new cloud strategy, as well as product roadmap changes.
• Tracked R+D, threat research, and product innovation, so the CTO organization could engage in product development and new business opportunities.
• Afilias - Global Registry Services
• Security Architect, 2007 – 2008.
• Delivered a data science project studying domain data for discovering fraudulent domain registrations, actively stopping fraud and other attacks
• Led the product and architecture design to enhance the existing DNS hosting offering with DDoS attack resistance.
• Created wide-ranging industry and community relations, positioning Afilias as a trusted and known party in the security realm.
• Coordinated with the global security community to lead the effort to rid Afilias' .info registry zone from fastflux domains.
• Regularly represented Afilias as a speaker at conferences globally, both in the security realm (ISOI) and Internet governance (UN Internet Governance Forum).

Jan 2006 – Jan 2008 · 2 yrs

• Helped Design and was product manager for beSTORM security assessment tool.
• Chief editor and community manager for web portal Securiteam.
• Brought the Securiteam Blogs site from 80 to 15,000 visitors a month.
• Established new high-level sales channels and brought in new clients.
• Managed the beSIRT incident response team.
• Formed and maintained industry relationships and business partnerships.
• Built the Securiteam brand name.

Jan 2005 – Jan 2006 · 1 yr

• Founded and managed the Israeli government CERT (2004).
• Created a collaborative platform for Israeli ISPs to coordinate incidents and share information, one of the first such platforms in the world, with hundreds of incidents managed in a year, and facilitating a trusted environment for the provider community and corporations to engage on security and abuse.
• Facilitated bilateral relations with other governments (such as with US-CERT, and the Taiwanese CERT), with valuable threat intelligence sharing relationships created, lasting to this day.
• Developed “cleaner” tools for Israeli-specific malware, and the support organizations around them (help desk, press, etc.), helping hundreds of thousands and establishing the CERT’s reputation.

Jan 2004 – Jan 2006 · 2 yrs

• "You don't need your firewalls! Gadi is Israel's firewall."
• Itzik (Isaac) Cohen, "Computers czar", Senior Deputy to the Accountant General, Israel's Ministry of Finance, at the government's CIO conference, 2005.
• Managed security for the Israeli government Tehila project (E-Government and ISP services).
• Built a detection and response project, with a home-brewed SIEM-like system, before these were available, and later on with a CA-based product.
• Created incident response capabilities.
• Contributed to regulation and standardisation in Israel.
• Designed and directed security architecture and policy.
• Tested new products and services, from penetration testing to encryption.

Jan 2005 – Jan 2012 · 7 yrs

• ZERT is a global incident response organization working closely with vendors such as Microsoft. It is a volunteer organization which is ready to patch zeroday attacks in the case a vendor is unable to do so and the Internet or a large majority of its users are at risk.
• http://isotf.org/zert/

Apr 2004 – Jan 2011 · 6 yrs 9 mos

• ISOI stands for Internet Security Operations and Intelligence. It is a non-profit and closed workshop for vetted and trusted individuals in government, law enforcement, industry and academia in North America and world-wide. In it sensitive subjects relating to the security of the Internet infrastructure, combating cyber crime, phishing, botnets and fraud are being discussed.
• ISOI 1 was hosted by Cisco and supported by the ISC.
• http://isotf.org/isoi.html
• ISOI 2 was hosted by Microsoft and supported by Trend Micro.
• http://isotf.org/isoi2.html
• ISOI 3 was hosted by ICANN, ISOC and Afilias, and supported by Sunbelt Software.
• http://isotf.org/isoi3.html
• ISOI 4 was hosted by Yahoo! and supported by various local SF-bay companies.
• http://isotf.org/isoi4.html
• ISOI 5 was hosted by the Estonian CERT and supported by Norman.
• http://isotf.org/isoi5.html
• ISOI 6 was hosted by the University of Texas, Dallas, and supported by Baylor University.
• http://isotf.org/isoi6.html

Jan 2000 – Jan 2003 · 3 yrs

• Led an intelligence research desk as first intelligence cyber analyst in the service, establishing a base for research in the field, creating inter-service relationships, and led research on topics ranging from fake news to adversary capabilities, directly affecting decision-making in collection and operational requirements.
• Led a unit of hackers in research and development efforts, building security products used internally as well as in cyber operations.