Coalfire Acquires Digital Resources Group in California

Rick Dakin, CEO, Co-founder and Chief Security Strategist

We have reached a new milestone at Coalfire and have announced the recent acquisition of privately held Digital Resources Group (DRG) in Redwood City, California. We are excited about our latest venture as it consolidates our leadership position within the IT Governance Risk and Compliance (IT GRC) services industry. As we continue to grow, acquisitions such as this will help us gain new staff, clients, skills and additional geographical presence enabling Coalfire to continue to provide top-notch services.

This is a big deal for both companies.  For DRG, our new colleagues gain the benefits of joining a larger company and will appreciate the processes and support that come from being part of a larger team.  In addition, Coalfire’s SaaS platform will streamline engagements for DRG’s existing clients and offer them new, valuable services. For Coalfire, we expand our reach into critical markets in California, New England, Latin America and the Caribbean.  

DRG is a twin to Coalfire in many ways.  Like Coalfire, DRG is a leading PCI Assessor with deep technical skills in application security, penetration testing and controls reviews.  We have a like-minded approach to delivering quality client services and a strong work ethic that will further enhance our mutual reputation as a leading independent assessor.  DRG’s collaborative style, which is similar to Coalfire’s own, will make it easy to cross-level knowledge and skills with our new team.

In closing, I welcome Jim Cowing, DRG’s founder, to our team. Mr. Cowing will serve as Regional Vice President and Managing Director for our West Region.  Together, we will become the premier independent IT GRC firm in Silicon Valley and around the world.
Rick Dakin


Rick Dakin — CEO, Co-founder and Chief Security Strategist

Recent Posts

Post Topics



Accounting Agency AICPA Assessment assessments ASV audit AWS AWS Certified Cloud Practitioner AWS Certs AWS Summit bitcoin Black Hat Black Hat 2017 blockchain Blueborne Breach BSides BSidesLV Burp BYOD California Consumer Privacy Act careers CCPA Chertoff CISO cloud CMMC CoalfireOne Compliance Covid-19 credit cards C-Store Culture Cyber cyber attacks Cyber Engineering cyber incident Cyber Risk cyber threats cyberchrime cyberinsurance cybersecurity danger Dangers Data DDoS DevOps DevSecOps DFARS DFARS 7012 diacap diarmf Digital Forensics DoD DRG DSS e-banking Education encryption engineering ePHI Equifax Europe EU-US Privacy Shield federal FedRAMP financial services FISMA Foglight forensics Gartner Report GDPR Google Cloud NEXT '18 government GRC hack hacker hacking Halloween Health Healthcare heartbleed Higher Education HIMSS HIPAA HITECH HITRUST HITRUST CSF Horror Incident Response interview IoT ISO IT JAB JSON keylogging Kubernetes Vulnerability labs LAN law firms leadership legal legislation merchant mobile NESA News NH-ISAC NIST NIST 800-171 NIST SP 800-171 NotPetya NRF NYCCR O365 OCR of P2PE PA DSS PA-DSS password passwords Payments PCI PCI DSS penetration Penetration Testing pentesting Petya/NotPetya PHI Phishing Phising policy POODLE PowerShell Presidential Executive Order Privacy program Ransomware Retail Risk RSA RSA 2019 Safe Harbor Scanning Scans scary security security. SOC SOC 2 social social engineering Spectre Splunk Spooky Spraying Attack SSAE State Stories Story test Testing theft Virtualization Visa vulnerability Vulnerability management web Wifi women XSS