Progress Report on CyberSecurity in the Federal Government
Top CyberSecurity Priorities
Key Challenges to still overcome in IT Security
A Vision for The Future-how can we be proactive and prevent attacks
Panelists: Greg Schaffer – Assistant Secretary for CyberSecurity & Communications, DHS RADM David Glenn – J6, USCYBERCOM William (Curt) Barker – Associate Director and Chief Cybersecurity Advisor, NIST Information Technology Laboratory Lee Holcomb – Vice President,Strategic Initiatives Cyber Operations, Lockheed Martin Information Systems & Global Solutions Ed White – Senior Director of Civilian Business Development, McAfee Tim Brown – SVP, Cheif Architect & Distinguished Engineer in CA Security Managment
Moderator: Jim Flyzik -Flyzik Group
About the Panel
Jim Flyzik President The Flyzik Group
Jim Flyzik is the President of TheFlyzikGroup www.theflyzikgroup.com . The company specializes in Strategic Business Consulting, Performance Based Contracting Consulting and Training and Thought Leadership media events. The company assists small, medium and large companies in providing world-class government services. Jim also serves as the Chairman of the Information Technology Association of America Committee on Homeland Security. Jim also hosts the monthly radio program, The Federal Executive Forum on WFED 1500 AM and www.federalnewsradio.com .
Jim served over 27 years in the federal government. He served as Senior Advisor to Governor Ridge in the White House Office of Homeland Security (OHS). He provided advice to OHS on the National Strategy and Information Management in support of the OHS mission. From February 1998 until December 2002, Jim also served as the Vice Chair of the Federal Government CIO Council overseeing numerous government wide IT initiatives. He was also a member of the President’s Critical Infrastructure Protection Board.
Prior to this, from August 1997 until April 2002, Jim was the Deputy Assistant Secretary for Information Systems and Chief Information Officer (CIO) for the Department of the Treasury. He provided oversight, strategic planning and management direction on over $3.0 billion in annual information technology and information infrastructure programs within Treasury and its fourteen Bureaus. Jim also served as the Acting Assistant Secretary for Management for the Treasury Department from January 20, 2001 until February 8, 2002. In that role he provided oversight of all Treasury bureaus and served as the principal policy advisor to the Secretary and Deputy Secretary on matters involving the internal management of the Department and its bureaus. Jim received the Secretary Certificate of Appreciation on February 12, 2002 for his efforts during this transition period.
Prior to his Treasury positions, Jim worked for 15 years at the U.S. Secret Service where he held key IT management positions, including the Chief of the Communications Division, providing world class telecommunications in support of Secret Service tactical and operational requirements. Jim served as Team Leader on Vice President Gore’s National Performance Review (NPR) Information Technology Team. Following this assignment, he was selected as Chairman of the Government Information Technology Services Working Group, to implement the NPR Information Technology recommendations and coordinate the government services portion of the National Information Infrastructure (NII). He was given the prestigious Eagle Award as the government information technology executive of the year in 1994, a Meritorious Presidential Rank Award in 1995, the Armed Forces Communications and Electronics Association Award for Excellence in Information Technology in 1996, the AFFIRM Award for Outstanding Service to the Citizens in 1997, the Industry Advisory Council Award for Special Achievements and Leadership in 1997, the AFFIRM IRM Executive of the Year Award in 1998, and the Distinguished Rank Executive Award from President Clinton in 1999. In 2001 the Federation of Government Information Processing Councils presented him the John J. Franke award for outstanding government service. In March 2002, Jim was selected by the Federal CIO Council to receive the Azimuth Award as the Government Executive of the Year.
Jim has extensive public speaking experience and frequently serves as a featured speaker at industry events. He has developed, and currently teaches part-time, a graduate level course on Information Systems Security and Risk Assessment at the University of Maryland. Jim was given the Stanley J. Drazek Excellence in Teaching Award in 1998 by the University of Maryland.
Jim has an undergraduate degree in Business Administration and Computer Science and a Masters of Business Administration (MBA) from the University of Maryland with an area of concentration in Information Systems Management.
Greg Schaffer Assistant Secretary for CyberSecurity & Communications DHS
As Assistant Secretary for CS&C, Schaffer will work within NPPD to lead the coordinated efforts of CS&C and its components, including the National Cyber Security Division, the Office of Emergency Communications, and the National Communications System. He will engage the public and private sectors as well as international partners to prepare for, prevent, and respond to catastrophic incidents that could degrade or overwhelm the nation’s strategic cyber and communications infrastructure. Until earlier this year, Schaffer served as Senior Vice President and Chief Risk Officer for Alltel Communications, where he owned responsibility for logical security, physical security, internal and external investigations, fraud, law enforcement relations, privacy and regulatory compliance. Schaffer previously held multiple Vice President-level positions at Alltel Communications-including Chief Risk Officer, Chief Security Officer and Chief Information Security Officer-from 2004-2007.
Before joining Alltel, Schaffer was Director of PricewaterhouseCoopers Cybercrime Prevention and Response Practice, where he developed and implemented computer forensic examinations in connection with major internal investigations at Fortune 500 companies, from 1999-2004. Previously, Schaffer served as a computer crime prosecutor in the Computer Crime and Intellectual Property Section at the U.S. Department of Justice from 1997-1999, following a nine-year career as a litigator for various firms. Schaffer holds a J.D. from the University of Southern California Law Center and a B.A. from the George Washington University
William (Curt) Barker Associate Director and Chief Cybersecurity Advisor SNIST Information Technology Laboratory
Mr Barker is directly responsible for planning, directing, and implementing the policies and programs of the NIST cybersecurity program. He also conceives and implements strategic plans and executive direction to ensure that the scientific and technical activities promote the mission and goals of Lab/Program and NIST. Mr. Barker is also Acting Chief of NIST’s Information Access Division and is the Department of Commerce Lead for the National Strategy for Trusted Identities in Cyberspace. He was recently assigned to the Department of Commerce Office of Policy and Strategic Planning as head of the Cybersecurity and Privacy Coordination Office. He was also recently Chief of the Information Technology Laboratory’s Computer Security Division. Prior to becoming Division Chief, Mr. Barker was Program Manager for NIST Personal Identity Verification activities. He managed development of the HSPD #12-mandated Federal Information Processing Standard 201 and several NIST recommendations and guidelines that implement the FIPS. Mr Barker previously managed development of several NIST guidelines required by FISMA and is participating in the development of a number of NIST cryptographic publications. He has worked in the information security field since 1966. Before joining NIST, Mr. Barker worked in National Security Agency information assurance organizations, and subsequently held private sector positions of Vice President and Director of Independent Research and Development at two information assurance companies: PE Systems and Trusted Information Systems.
Lee Holcomb Vice President Strategic Initiatives Cyber Operations Lockheed Martin Information Systems & Global Solutions
As Vice President of Strategic Initiatives, Lee Holcomb leads the Lockheed Martin Center for Cyber Security Innovation (CCSI) and manages technology solution development, process excellence and talent development. In this capacity, Holcomb shapes technology initiatives with a significant focus on strategic research and development. Previously Holcomb served as Vice President of Advanced Solutions for Lockheed Martin Business Process Solutions, where he supported program managers in identifying competitive solutions and utilizing state -of-the-art technology to bring best value to Lockheed Martin customers.
Prior to joining Lockheed Martin in 2006, Holcomb served as Chief Technology Officer for the Department of Homeland Security. In that role, he led the development of the Homeland Security Enterprise Architecture including the initial foundation for the merger of 22 Federal agencies to form the Department of Homeland Security. Prior to joining DHS, Holcomb served as the Chief Information Officer for the National Aeronautics and Space Administration where he led the implementation of the Outsourcing Desktop Initiative, an agency-wide desktop computing outsourcing project involving 30,000 computers to achieve lower cost, increased interoperability and improved service delivery.
Holcomb holds a Bachelor of Arts degree from the University of California at Los Angeles, a Master of Science in mechanical engineering from California Institute of Technology, and an MBA from Massachusetts Institute of Technology Sloan School of Management.
Ed White Senior Director of Civilian Business Development McAfee
Ed White is the Senior Director of Civilian Business Development for McAfee Public Sector. He is responsible for developing McAfee’s strategy for supporting the needs and policies affecting the Federal government Civilian Agencies as well as the Critical Infrastructure (CIP,CI/KR), and Healthcare Communities. A 20 year veteran of the Federal IT industry, Ed started his career in public service within the Intelligence Community and since moving to the private sector has held leadership positions in Fortune 500 companies such as Microsoft, HP/EDS, EMC, Wang, and McAfee. In addition, Ed actively serves as McAfee’s representative supporting DHS’ Critical Infrastructure Partnership Advisory Council (CIPAC), IT-SCC (IT Sector Coordinating Council), Industrial Control Systems Joint Working Group (ICSJWG), and co-chairs the IT-SCC Protective Programs Committee and the Enduring Security Framework (ESF) Taxonomy Committee. Ed holds a BSBA from Old Dominion University.
Tim Brown Senior Vice President, Chief Security Architect Security Management Business Unit CA Technologies
Tim Brown, is a senior vice president and chief architect for Security Management at CA, Inc. He has overall technical direction and oversight responsibilities for the CA security products. This includes CA solutions in the areas of Identity Management, Role Modeling and Management, Server Security (Access Control), Data Loss Protection, Web Access management and Single Sign-on (SSO). With more than 20 years of information security expertise, Brown has been involved in many areas of security including compliance, threat research, vulnerability management, consumer and enterprise identity and access management, network security, encryption and managed security services.
Brown has worked with many companies and government agencies to implement sound and practical security policies and solutions. Recently he provided expert testimony at a hearing entitled “Cyber Security R&D” before the House Committee on Science and Technology, Subcommittee on Research and Science Education. In his testimony, Brown represented the views of the Business Software Alliance and CA regarding the state of cyber security education, research and public and private sector partnerships. Brown also is a frequent speaker on Cloud Security, Identity and Privacy.
Prior to joining CA he spent 12 years at Symantec where in the CTO office he was responsible for companywide technical architecture, integration, gap analysis and technical strategy. Prior to joining the Symantec CTO office Brown focused on Symantec’s enterprise security architecture and the collection, correlation and prioritization of security data. Brown joined Symantec through the company’s acquisition of Axent Technologies. At Axent he was responsible for the Identity Management, SSO and multifactor authentication products.
Brown is an avid inventor with 15 filed patents in the areas of next generation identity services, Endpoint Virtualization, Data Loss Prevention, Network Access Control, and fine grained entitlements. He is active in promoting cross-industry initiatives and has participated on a number of standards boards.
Brown earned a Bachelor of Science degree in computer science from Massachusetts College of Liberal Arts and continues his education with the Wharton School of Business Executive Education program.