As Chief Information Security Officer, Greg brings more than 30 years of experience in legal technology, information security, infrastructure management, and firm operations.

Greg has a deep understanding of the evolving cybersecurity threat landscape and the practical challenges law firms face in protecting sensitive client, firm, and business information. He is responsible for developing, implementing, and maintaining security strategies that support the confidentiality, integrity, and availability of the firm’s data and systems while balancing the daily operational needs of the firm.

Greg’s technical experience spans network security, application security, cloud security, identity and access management, incident response, disaster recovery, infrastructure planning, telecommunications, and end-user technology support.

Greg regularly collaborates with firm leadership, officers, and committees to help align security initiatives with broader business priorities. He works to ensure that cybersecurity decisions are not made in isolation, but are balanced against operational efficiency, user experience, cost, risk, compliance obligations, and the firm’s long-term goals.

In addition to his role as CISO, Greg serves as the firm’s network architect and is responsible for planning, designing, managing, and securing the firm’s data communication networks. His responsibilities include maintaining reliable systems, evaluating emerging technologies, coordinating with vendors, and ensuring that the firm’s technology infrastructure continues to support a secure and productive work environment.

Prior to serving as CISO, Greg served as the firm’s IT Director for more than 20 years. In that role, he was responsible for planning, implementing, managing, securing, and maintaining the firm’s information technology and telecommunications systems. Greg has also developed and implemented numerous customized software applications for Sussman Shank, often working closely with outside software developers to define requirements, improve workflows, and deliver practical solutions for the firm. He also has significant experience developing and leading firm-wide in-house technology training programs.

Greg is currently pursuing his CIPT certification.

I bring a practical, hands-on understanding of technology, cybersecurity, and law firm operations developed over more than three decades in the legal technology field. My experience has taught me that effective technology leadership is not only about systems, software, and security controls; it is also about understanding people, business priorities, risk, communication, and trust.

One of my strengths is the ability to connect technical decisions to real-world firm needs. I understand the importance of protecting sensitive information, but I also recognize that security must support the work of the firm rather than unnecessarily complicate it. I strive to find the right balance between strong security, operational efficiency, user experience, and sound business judgment.

I take pride in being dependable, prepared, and steady in complex situations. Whether working through a security issue, planning infrastructure improvements, coordinating with vendors, or helping users adopt new technology, I believe successful outcomes depend on clear communication, strong relationships, and a willingness to understand the needs of the people involved.

My goal is to use my experience, judgment, and work ethic to help strengthen the firm, reduce risk, improve operations, and support the people who rely on technology every day.

Outside of the office, Greg enjoys walking his dog, Pebbles, in the beautiful hills of Northwest Portland. He also enjoys landscaping and spending time restoring an old Porsche.