The Washington PostDemocracy Dies in Darkness

WATCH: Highlights from 2015 Cybersecurity Summit

Reps. Devin Nunes and Adam Schiff sit down with Washington Post investigative reporter Robert O’Harrow to discuss the effect of Speaker John Boehner's resignation from Congress, movement on cybersecurity legislation and the United States' cyber response to global threats. (Video: Meena Ganesan/Washington Post Live)
Placeholder while article actions load

Cybersecurity Summit | Oct. 1, 2015 | The Washington Post

Recent cyber attacks have wreaked havoc on companies and millions of people. Business leaders, lawmakers and security experts gathered in Washington Thursday to discuss and debate the newest tools for cyber defense and policies to better protect companies, consumers and citizens.

[Follow The Post’s cybersecurity coverage here.


Washington Post columnist David Ignatius discusses the recent U.S.-China economic cyberespionage agreement with Assistant Attorney General for National Security John Carlin, Maj. Gen. John Davis, USA (Ret.) of Palo Alto Networks and James Lewis of the Center for Strategic and International Studies. (Video: Meena Ganesan/Washington Post Live)
At The Post's Cybersecurity Summit Thursday, Reps. Devin Nunes and Adam Schiff discuss security concerns related to Hillary Clinton using a private server that contained what government officials now say is classified information. (Video: Meena Ganesan/Washington Post Live)
The Washington Post's Ellen Nakashima, former director of the National Security Agency J. Mike McConnell, Fastly chief security officer Window Snyder and senior counsel to the deputy attorney general Kiran Raj discuss the debate over encryption and what it means for privacy and security. (Video: Meena Ganesan/Washington Post Live)
General Motors' Jeffrey Massimilla, Wells Fargo's William O’Brien, Access Now's Amie Stepanovich and The Washington Post's Shailesh Prakash talk through security tools for keeping consumer trust at The Washington Post's Cybersecurity Summit. (Video: Meena Ganesan/Washington Post Live)
Visa's Ellen Richey, FireEye chief security strategist Richard Bejtlich and GermanoLawLLC founder Judith Germano discuss the challenges of cybersecurity in the private sector at The Washington Post's Cybersecurity Summit. (Video: Meena Ganesan/Washington Post Live)
Rep. Devin Nunes (R-Calif.), who is chairman of the House Permanent Select Committee on Intelligence, spoke at The Post's Cybersecurity Summit Thursday about factions in his party that resulted in House Speaker John Boehner's resignation from Congress. (Video: Meena Ganesan/Washington Post Live)


9:00 a.m. Welcome remarks
Lois Romano, Editor, Washington Post Live

Getting security passed
The latest on cyber policies from Capitol Hill
Rep. Devin Nunes (R-Calif.), Chairman, House Permanent Select Committee on Intelligence
Rep. Adam Schiff (D-Calif.), Ranking Member, House Permanent Select Committee on Intelligence
Moderated by Robert O’Harrow, Investigative Reporter, The Washington Post

Can consumers be protected when everything is connected?
New security tools for keeping their trust
Jeffrey Massimilla, Chief Product Cybersecurity Officer, Vehicle and Vehicle Services Cybersecurity, General Motors Company
William O’Brien, Senior Vice President, Enterprise Information Security, Wells Fargo
Amie Stepanovich, U.S. Policy Manager, Access Now
Shailesh Prakash, Chief Information Officer, The Washington Post
Moderated by Danielle Douglas-Gabriel, Reporter, The Washington Post


Risky Business
Cybersecurity challenges for the private sector
Judith Germano, Founder, GermanoLawLLC; Senior Fellow on Cybersecurity/ Adjunct Professor, NYU School of Law
Richard Bejtlich, Chief Security Strategist, FireEye
Ellen Richey, Vice Chairman, Risk and Public Policy, Visa Inc.,
Moderated by Cecilia Kang, National Staff Writer for Media, Entertainment and Technology, The Washington Post

Should we be afraid of the dark?
The debate over encryption and what it means for privacy and security
J. Mike McConnell, Former Director of National Intelligence and Former Director of National Security Agency; Senior Executive Advisor, Booz Allen Hamilton
Kiran Raj, Senior Counsel to the Deputy Attorney General, U.S. Department of Justice
Window Snyder, Chief Security Officer, Fastly
Moderated by Ellen Nakashima, National Security Reporter, The Washington Post

China, China, China
The future of U.S. global cybersecurity strategy
John Carlin, Assistant Attorney General for National Security, U.S. Department of Justice
Maj. Gen. John Davis, USA (Ret.), Federal Chief Security Officer, Palo Alto Networks
James Lewis, Director and Senior Fellow, Strategic Technologies Program, Center for Strategic and International Studies
Moderated by David Ignatius, Columnist and Associate Editor, The Washington Post

12:00 p.m. Program ends


Rep. Devin Nunes has served in the U.S. House of Representatives since 2003. He currently represents California’s 22nd congressional district, which includes the San Joaquin Valley and portions of Tulare and Fresno Counties. Nunes is chairman of the House Permanent Select Committee on Intelligence and a member of the Ways and Means Committee. He was previously California’s state director for the Department of Agriculture’s Rural Development office.

Congressman Adam Schiff represents California’s 28th Congressional District. In his 8th term in the House of Representatives, Schiff currently serves as ranking member of the House Permanent Select Committee on Intelligence, and as a member of the Benghazi Select Committee. The House Permanent Select Committee on Intelligence oversees the nation’s intelligence agencies including components of the Departments of Defense, Homeland Security, Justice, State and Energy. Schiff is currently on a leave of absence from the House Appropriations Committee.

John P. Carlin
Assistant Attorney General for National Security, U.S. Department of Justice

John P. Carlin, is the assistant attorney general for National Security and serves as the Department of Justice’s top national security attorney. He oversees nearly 400 employees responsible for protecting the country against international and domestic terrorism, espionage, cyber, and other national security threats. Carlin joined the National Security Division after serving as chief of staff and senior counsel to Robert S. Mueller III, director of the FBI. A career federal prosecutor, Carlin previously served as national coordinator of DOJ’s Computer Hacking and Intellectual Property program and as an assistant United States attorney for the District of Columbia.

Richard Bejtlich is chief security strategist at FireEye, and was Mandiant’s chief security  officer when FireEye acquired Mandiant in 2013. He is a nonresident senior fellow at the Brookings Institution and an advisor to Threat Stack, Sqrrl and Critical Stack. Bejtlich was previously director of Incident Response for General Electric, where he built and led the 40-member GE Computer Incident Response Team (GE-CIRT). He began his digital security career as a military intelligence officer in 1997 at the Air Force Computer Emergency Response Team, Air Force Information Warfare Center and Air Intelligence Agency. Richard is a graduate of Harvard University and the United States Air Force Academy.

Retired U.S. Army Major General John Davis is VP and Federal CSO for Palo Alto Networks, where he is responsible for expanding cybersecurity initiatives and global policy for the international public sector and assisting governments around the world to successfully prevent cybersecurity attacks. Prior to joining Palo Alto Networks, John served as the Senior Military Advisor for Cyber to the Under Secretary of Defense for Policy and served as the Acting Deputy Assistant Secretary of Defense for Cyber Policy. His military decorations include the Defense Superior Service Medal, Legion of Merit, and the Bronze Star Medal. John earned a Master of Strategic Studies from the U.S. Army War College, Master of Military Art and Science from U.S. Army Command and General Staff College, and Bachelor of Science from U.S. Military Academy at West Point.

Judith Germano
Founder, GermanoLawLLC; Senior Fellow on Cybersecurity/Adjunct Professor, NYU School of Law

Judith H. Germano advises public and privately-held companies on cybersecurity and privacy matters, and represents companies and individuals on complex white-collar criminal and regulatory-compliance issues. As the founding member of GermanoLawLLC, Germano has counseled clients on matters of corporate governance, internal investigations and crisis management, as well as criminal and civil defense. Germano also serves as a senior fellow on cybersecurity and an adjunct professor of law at New York University School of Law, focusing on critical cybersecurity and privacy issues and leading the Center on Law and Security’s cybersecurity task force of corporate executives and senior government officials. Germano previously was chief of economic crimes at the U.S. Attorney’s Office for the District of New Jersey. A federal prosecutor for 11 years, she supervised and prosecuted criminal crimes involving cybercrime, securities and other financial fraud, identity theft, corruption and national security.

James Andrew Lewis is a senior fellow and program director at the Center for Strategic and International Studies. Before joining CSIS, he worked at the Departments of State and Commerce. He was the advisor for the 2010, 2013 and 2015 United Nations Group of Governmental Experts on Information Security and led a Track II dialogue on cybersecurity with the China Institute of Contemporary International Relations.

Jeffrey Massimilla
Chief Product Cybersecurity Officer, Vehicle and Vehicle Services Cybersecurity, General Motors Company

Jeffrey Massimilla was named chief product cybersecurity officer of Vehicle and Vehicle Services Cybersecurity for General Motors Company in 2014. Massimilla leads the team developing and implementing protocols and strategies to reduce risks associated with cybersecurity threats related to the vehicle and vehicle-connected services. Previously, he served as the engineering manager of Next-Generation Infotainment Systems and Integrations.

J. Mike McConnell is a senior executive advisor and former vice chairman of Booz Allen Hamilton, where his primary roles included serving on the firm’s leadership team and leading Booz Allen’s cybersecurity business. After retiring from the Navy in 1996 as a vice admiral, McConnell joined Booz Allen, and led the development of the firm’s Information Assurance business and the firm’s Intelligence business focused on policy, transformation, homeland security and intelligence analytics. In 2007, he was asked by President George W. Bush to become the second director of National Intelligence and served as the DNI for two years under President Bush and President Obama. He also was a member of the National Security Council. During his 29-year career as a U.S. Navy intelligence officer, McConnell served as the intelligence officer for the chairman of the Joint Chiefs of Staff and the secretary of defense. From 1992 to 1996 he served as director of the National Security Agency under President George H.W. Bush and President Bill Clinton. He has also served as the chairman and chief executive of the Intelligence and National Security Alliance.

William O’Brien is a senior vice president and information security officer at Wells Fargo Bank, where his primary role is ensuring that information security is effectively implemented and integrated across technology and mobility segments. Previously, O’Brien was director of global information security and privacy at Sony Corporation of America and director of operations for Deloitte’s Center for Security and Privacy Solutions. He also served as special assistant to Vice President Cheney for Homeland Security Affairs and director of cybersecurity policy in the Executive Office of President George W. Bush.

Shailesh Prakash is chief information officer of The Washington Post. He is a member of The Post’s central executive team and runs  engineering groups for all aspects of Washington Post digital, mobile, video, advertising and print support functions. Prakash began his career as a software engineer building compilers for Motorola’s two-way pagers, moving to positions at Sun Microsystems and Netscape, where he designed and implemented enterprise-class J2EE application platforms, and Microsoft where he was a key member of the Bing search engine. He also was the vice president in charge of technology for Sears Holdings, where he oversaw end-to-end digital operations for,,, and

Kiran S. Raj is currently senior counsel to the deputy attorney general. He advises the Department of Justice’s senior leadership and with particular focus on national security, cybersecurity, and civil litigation. Raj also serves as an adjunct professor at George Mason University School of Law where he teaches national security law and surveillance law. Previously, Raj worked at Kellogg Huber — a Washington, D.C.-based trial litigation firm where he focused on intellectual property and patent litigation. He served as a law clerk to Judge Pierre N. Leval of the United States Court of Appeals for the Second Circuit. Raj was also lead program manager at Microsoft Corporation and was responsible for developing and deploying software tools and technologies that improved the security, compatibility and overall application experience of the Windows operating system.

Ellen Richey, who first joined Visa in 2007, leads risk management at Visa, including enterprise risk, settlement risk, and risks to the integrity of the broader payments ecosystem. She coordinates the company’s strategic policy initiatives and works with legislators, regulators and clients globally regarding payment system security and other issues of strategic importance to Visa. Richey also leads crisis management at the executive level and is a member of Visa’s Executive Committee. Previously, Richey concurrently served as Visa’s chief legal officer and chief enterprise risk officer. She worked at Washington Mutual Inc. as senior vice president of enterprise risk management and executive vice president of card services. She was also vice chairman of Providian Financial Corporation. Earlier in her career, Richey was a partner in the San Francisco law firm Farella, Braun & Martel, where she specialized in corporate, real estate and financial institution matters.

Window Snyder is chief security officer at Fastly, where she oversees the company’s expanding security offerings through its global edge infrastructure platform. Previously, Snyder was at Apple and developed security and privacy strategies for iOS and OS X. While at Mozilla Corporation, she drove efforts to secure Mozilla’s web browser, Firefox. At Microsoft, she helped the company open lines of communication between Windows developers and outside security researchers and vendors. She is also the co-author of the book “Threat Modeling.”

Amie Stepanovich
U.S. Policy Manager, Access Now

Amie Stepanovich is a U.S. policy manager at Access Now. She leads projects on digital due process and responds to threats at the intersection of human rights and communications surveillance. Previously, Stepanovich was the director of the Domestic Surveillance Project at the Electronic Privacy Information Center, where she testified in hearings in the Senate, House of Representatives and state legislatures. She was co-chair for the 2014 Computers, Freedom and Privacy Conference and is the Committee on Individual Rights and Responsibilities’ liason to the American Bar Association’s Cybersecurity Working Group. She was also named as a privacy ambassador by the Information and Privacy Commissioner of Ontario, Canada.

Biographies are provided by speakers and edited only for length and clarity. Additional speakers will be announced.