Evolution of the Cybersecurity Ecosystem Journal - Author Bios
COO Partners in Performance, America
Bret has 25+ years of experience in electronics, high technology and consulting including many years in cyber security. He was the original VP/GM of Internet Security System’s Managed Security and Knowledge Services Business Unit. He also 10 years running a semiconductor equipment manufacturer with facilities in U.S. and Korea during which time his firm consulted companies on microchip level security.
Chair OASIS OpenC2 Technical Committee
Joe Brule has been working with NSA since 1997 and has focused on the Information Assurance mission since 2003. Currently, Mr. Brule is a cyber-engineer in the Capabilities Directorate and is a co-chair for the OASIS OpenC2 Technical Committee. His previous experience includes mission assurance for satellite systems, COMSEC engineering for space systems, Executive Secretary for the National Space INFOSEC Steering Council, and contributor to System Threat Assessment Reports and Capstone Threat Assessments. (satellite systems and the global information grid). Mr. Brule has also contributed to CNSS Policy Number 12 (Space IA Policy) and was the primary author of a CNSS Memorandum (TRANSEC for Space Systems).
CISO Advanced Cybersecurity Group
Geoff Hancock is the Chief Cybersecurity Executive at Advanced Cybersecurity Group responsible for strategy, operations and tactical implementation of cyber programs. He’s a cybersecurity expert with more than 25 years’ experience, a bachelor’s degree in computer science a CISSP and has several other cybersecurity and business certifications. Prior to starting Advanced Cybersecurity Group, Mr. Hancock served in a number of executive cybersecurity and business roles, including CISO, CSO, GM Cyber business-technical solutions, Vice President Security Operations and CTO at several fortune 200 companies. Prior to that Mr. Hancock was in Joint Special Operations Command as a Special Operations Solder specializing in Intelligence, Operations and Cybersecurity and worked across DoD and the Intelligence community on national security and cyber security issues.
He has spent his cyber career in technical and business operations in Military, Intelligence Community, Civilian agencies and many critical infrastructure sectors. Mr. Hancock has advised/co-authored the NIST Cybersecurity Framework and is an advisor to the Center for Internet Security and is an active contributor to the CIS 20 Critical Security Controls. During his career he has built or run over 20 Security Operations Centers including the Pentagon.
Mr. Hancock is an Adjunct professor at George Washington University where he co-created and teaches the World Cyber MBA Program. He is guest lecture on several technical cyber disciplines at NDU, NIU and UCF. He has authored/co-authored white papers, articles research papers and national policy recommendations.
He services on the adviser council for CISO Magazine and the National Technology Security Coalition.
He is also chairman of the Federal CISO Advisory Council and advises several cybersecurity startups.
Product Line CTO for Analytics Cisco
TK brings nearly 25 years of network and security experience to Cisco. With a penchant for driving technical innovation, he is responsible for integrating security solutions with private and public cloud-based computing platforms. He previously served as CTO for Lancope where he was responsible for leading the company’s evolution toward integrating security solutions with private and public cloud-based computing platforms. Prior to that, he served as CTO of nCircle, driving product innovation that defined the vulnerability management and configuration compliance market. Before joining nCircle, he served as Vice President of Network Services for Morgan Stanley Online, where he built and secured a highly available online trading system. Previously, Keanini was a systems engineer at Cisco, advising top financial institutions on the design and architecture of their data networking infrastructures. He is a Certified Information Systems Security Professional (CISSP).
Data Breach Investigations Report (DBIR) Author at Verizon
Philippe Langlois is currently a Data Breach Investigations Report Author at Verizon. For the last 3+ years he was Technical Product Manager for the CIS Critical Security Controls. In this role he leads an international community of cyber security experts who develop best practices known as the CIS Critical Security Controls for Effective Cyber Defense, a set of actions proven to mitigate 85% of the most prevalent cyber threats. He manages the production, writing, and publication of a range of cyber security resources. Working in collaboration with users of the CIS Critical Security Controls, he ensures the quality and utility of the Critical Controls guidance plus the availability of tools, scripts, and other resources aiding users with implementation of the Controls.
Previously he served as a Program Manager at the Multi-State Information Sharing and Analysis Center (MS-ISAC), within the Center for Internet Security. He managed the Nationwide Cybersecurity Review, establishing unique expertise in State, Local, Tribal and Territorial cyber security practice and assessment; co-chaired the Metrics, and Business Continuity/Recovery/Cyber Exercise Work Groups, and planned MS-ISAC sponsored exercises. He holds a Masters of Infrastructure Protection and International Security, a BA in Criminology and certifications as a Global Industrial Cyber Security Professional (GICSP), GIAC Penetration Tester (GPEN) and GIAC Critical Security Controls Certification (GCCC).
Kathy Lee Simunich
Computer Scientist Argonne National Laboratory
Kathy Lee Simunich is a Computer Scientist in the Strategic Security Sciences (SSS) division at Argonne National Laboratory. She has an M.S. Degree in Computer Science and a B.S. Degree in Meteorology. She has over three decades of experience in developing cross-platform model integration and simulation systems across many domains such as military logistics, environmental modeling systems, endangered species habitat management, real-time chemical and biological monitoring and analysis systems, health care procedures at hospitals, used nuclear fuel transportation and storage logistics, as well as the Cyber Fed Model, a communication framework for sharing Cyber Threat Information across the DOE, US. Government, and the North American Electrical Sector.
Federal CTO Symantec
Aubrey has 33 years of experience in Network & Cybersecurity Systems Engineering with both Carrier (fixed and mobile) and Enterprise environments. He came to Symantec through acquisition of Solera Networks which specialized in incident response and forensics where he was the Federal SE Manager. Prior SE positions included Qosmos/ENEA, Ellacoya Networks, CloudShield, Springtide and iPolicy Networks with a focus on security, traffic engineering/management and network analytics. He has an in-depth and hands-on understanding of networking from layer 2 through 7. With a total of 12 years in Deep Packet Inspection (DPI) and derivative technologies, his key focus helping solve key issues related to network visibility/context, advancing workflow efficiency for cyber defenders through the fusion of network, application, user, and threat analytics. A key focus area is securing cloud adoption/migration. Aubrey is currently the Federal CTO at Symantec.
Global Lead Security Architect EMC
Served as the IETF Security Area Director, Kathleen Moriarty is the Global Lead Security Architect with the EMC Office of the CTO (now Dell EMC) working on technology strategy and standards. Kathleen has been the primary author of multiple published standards and actively contributes to security standards activity in the IETF. Previously, as the Practice Manager for security consulting at EMC, Kathleen was responsible for oversight of key projects, and development of security programs, in addition to serving as the acting CISO of a global investment banking firm. Kathleen has also been the head of IT Security at MIT Lincoln Laboratory and the Director of Information Security at FactSet Research Systems. Kathleen holds a Masters of Science degree in Computer Science from Rensselaer Polytechnic Institute.
President and CEO, Global Cyber Alliance
Philip Reitinger has served as the President and CEO of the Global Cyber Alliance since December 2015. GCA is a non-profit organization focused on eradicating cybersecurity risks – risk by risk. Formerly he filled senior cybersecurity roles at VisionSpear LLC, Sony and Microsoft. In 2009 Mr. Reitinger was appointed as the Deputy Under Secretary for the National Protection and Programs Directorate at DHS. He also served as the first Executive Director of the DoD’s Cyber Crime Center, and as Deputy Chief of the Computer Crime and Intellectual Property Section at DOJ. Mr. Reitinger has been awarded the Secretary of Homeland Security’s Distinguished Service Medal and the Attorney General’s John Marshall Award.
Chief Visionary Officer and Technical Advisor to the CEO, DarkLight Inc.
A recognized thought leader in the defense and intelligence communities, Shawn Riley, Chief Visionary Officer and Technical Advisor to the CEO at DarkLight Inc., brings over 25 years of cyber security, all source cyber threat intelligence, and artificial intelligence experience with an unparalleled understanding of the pitfalls that overtake modern security teams.
Senior Vice President and Chief Evangelist, CIS
Tony Sager is a Senior Vice President and Chief Evangelist for CIS (The Center for Internet Security). In this role, he leads the development of the CIS Controls, a worldwide consensus project to find and support technical best practices in cybersecurity. Tony also serves as the Director of the SANS Innovation Center, a subsidiary of The SANS Institute.
Tony retired from the National Security Agency (NSA) after 34 years as an Information Assurance professional. He started his career in the Communications Security (COMSEC) Intern Program, and worked as a mathematical cryptographer and a software vulnerability analyst. In 2001, Tony led the release of NSA security guidance to the public. He also expanded the NSA’s role in the development of open standards for security.
Mr. Sager holds a B.A. in Mathematics from Western Maryland College and an M.S. in Computer Science from The Johns Hopkins University.
Kumar has 15 years of experience in the enterprise security and log management space leading product development efforts at ArcSight and SumoLogic. He has a passion for helping organizations improve the efficacy of their security operations, and personally witnessed the limitations of existing solutions in helping SOC analysts detect threats buried deep within mountains of alerts and events. This frustration led him to co-found LogicHub™ to empower cyber analysts by building intelligence automation, not just analytics.
Most recently Kumar was Co-founder and Vice President of Engineering at Sumo Logic. Previously, he was the data architect at Mint.com which was acquired by Intuit. Kumar was also one of the early engineering leads for the analytics and solutions team at ArcSight, and saw the company grow from zero revenue to IPO. Kumar earned his M.S. in Computer Science from Columbia University and B.S. in Computer Science from IIT Kharagpur.
Group Leader The MITRE Corporation
Charles Schmidt is a Group Lead at the MITRE corporation, where he has worked for over 18 years in the field of cybersecurity. He has spent most of that time supporting security automation research and developing cybersecurity standards. He holds a Bachelors degree in both Mathematics and Computer Science from Carleton College and a Masters degree in Computer Science from the University of Utah.
IACD Technical Director JHU/APL
Kimberly K. Watson is a member of the Senior Staff at the Johns Hopkins Applied Physics Laboratory and is a Technical Director for Integrated Adaptive Cyber Defense (IACD). Ms. Watson was a technical leader at the Department of Homeland Security (DHS) from 2013-2015. Prior to her DHS role, she worked at NSA for more than 25 years, most of which was spent performing vulnerability discovery and technology evaluation activities.
Security Engineer Mastercard
Donnie Wendt is a security engineer for MasterCard responsible for the design, architecture, and configuration of the security controls and monitoring protecting the MasterCard networks. His professional background includes over 30 years in information technology in various roles, including software development, network design, call center design, and project management. He joined MasterCard in 2004 as a Web engineer before moving into information security. He is also an adjunct professor of cybersecurity at Utica College.
Donnie earned a Master’s degree in Cybersecurity from Utica College and a Bachelor’s degree in Business Administration from Webster University. He maintains a Certified Information Systems Security Professional (CISSP) certification. He is currently pursuing a Doctorate of Science in Computer Science with an emphasis in Information Assurance and Cybersecurity from Colorado Technical University. His research focuses on security automation and adaptive cyber defense within the financial services industry.