Phil Odence | Vice President & General Manager

Phil is General Manager of Black Duck On-Demand Audits. He works closely with Black Duck’s law firm partners and the open source community. A frequent speaker at industry events, Phil chairs the Linux Foundation's Software Package Data Exchange (SPDX) working group. With over 20 years’ software industry experience, Phil came to Black Duck from Empirix where he served as Vice President of Business Development and in other senior management positions, and was a pioneer in VoIP testing and monitoring. Prior to Empirix, Phil was a partner and ran consulting at High Performance Systems, a startup computer simulation modeling firm. He began his career with Teradyne's electronic design and test automation (EDA) software group in product, sales and marketing management roles. Phil has an AB in Engineering Science and an MS in System Simulation from the Thayer School of Engineering at Dartmouth College.

Recent Posts

Most of our readers understand that an open source software audit involves expert consultants analyzing a proprietary code base using Black Duck tools. The deliverable is a report that identifies open source in the code as well as associated risks. If you’d like to understand our process — what

| MORE >

Black Duck is well-known for open source audits, but that is only a piece of the technology due diligence puzzle. Auditing code quality assesses other aspects of a company’s software assets and completely complements an open source audit. Both audit types dive into issues that impact the valuation

| MORE >

Looking back five or ten years, companies managing open source risk were squarely focused on license risk associated with complying with open source licenses. Beginning in 2014, when open source security vulnerabilities began to get names (like Heartbleed, Shellshock and Poodle), open source

| MORE >

JSON (JavaScript Object Notation) is an extremely flexible, lightweight format for exchanging data of all sorts. It lives up to json.org’s description as “an ideal data-interchange format.” But use of some JSON projects is limited by the JSON license. Concern with the license is not new, but the

| MORE >

The private equity industry has shifted a big focus to technology. An article from the Wall Street Journal says, “So far this year, tech companies accounted for 46% of all U.S. buyouts.” And TechCrunch muses that tech buyouts may be “the new IPO.” For software companies and their investors,

| MORE >

Just two blocks from Mr. Trump’s victory celebration, Black Duck was also popping corks at the M&A Advisor Awards Gala where we received a Product and Service of the Year award for our Open Source Risk Assessment. These were the 15th annual such awards and our organization and service were

| MORE >

I occasionally get the question about when a code base really really  needs an audit. Biased though I am, I sincerely believe that in anticipation of an M&A transaction whenever software assets are a significant part of the valuation of a company, someone ought to perform a detailed audit. Why Get

| MORE >

It’s been several years since Mark Driver at Gartner said that not using open source puts a company at a competitive disadvantage. In that time, I’ve spoken with several venture capitalists who echoed that sentiment. A start up that isn't taking advantage of the benefits of open source

| MORE >

I recently read the 2016 Edition of the IT Due Diligence Guide by Jim Hoffman. It’s a valuable reference for anyone involved in mergers and acquisitions. Certainly, an acquirer who does not have a well-established process will benefit. However, I believe even experienced acquirers will find it a

| MORE >

"We had a client who was doing an acquisition and would have brought you in, but it was too late in the process.” It’s frustrating to hear that because I bet we could have pulled it off. The reality is that we’re very often brought in late in the process; it’s just the nature of mergers and

| MORE >
Page 1