The Network is a group of high-level digital security experts from across government, the private sector and security research community invited by The Washington Post to vote in surveys on the most pressing issues in the field. Our regular surveys will highlight insights from some of the most influential people in cybersecurity. They include members of Congress and the Trump administration, the country’s top security researchers and senior leaders at companies as varied as Facebook, General Motors and Visa. Their responses will be featured in The Cybersecurity 202 newsletter and elsewhere on The Post.
Aitel is the founder, president and CEO of Immunity Inc. Recruited by the National Security Agency at the age of 18, Aitel served six years as a security scientist before moving on to work as a consultant for @stake. He launched Immunity Inc. in 2002, advising customers ranging from major financial institutions to Fortune/Global 500 companies to government agencies.
Alperovitch is co-founder and chief technology officer of CrowdStrike. He has received numerous awards and recognitions, including appearing on Fortune’s “40 Under 40” list; Politico’s guide to the 50 most influential doers, thinkers and visionaries; MIT’s “Innovators Under 35” and Foreign Policy’s Leading Global Thinkers.
Baker is a partner at the law firm of Steptoe & Johnson. From 2005 to 2009, he was the first assistant secretary for policy at the Department of Homeland Security. Baker has been general counsel of the National Security Agency and general counsel of the commission that investigated WMD intelligence failures before the Iraq war.
Bankston is the director of New America’s Open Technology Institute. He has previously worked as a litigator and digital rights advocate at the ACLU, Electronic Frontier Foundation and the Center for Democracy and Technology. He serves on the board of the First Amendment Coalition and on the advisory board of the Open Technology Fund.
As vice president of threat intelligence at IBM Security, Barlow leads several teams focused on threat intelligence, research and incident response and preparedness. He was the visionary behind IBM’s X-Force Command, the world’s most sophisticated cyber-simulation environment, and the redesign of IBM’s largest operational watch floor in Atlanta. Barlow works closely with organizations and law enforcement to understand cybersecurity threats firsthand and advises boards of directors and government officials on security practices, frameworks and strategies to manage cybersecurity-related business risk.
Beckerman is the president and CEO of the Internet Association. Under his leadership, association membership has grown to over 40 top Internet companies. Beckerman is regularly cited as an authority on Internet policy and speaks regularly about the industry’s perspective on policy issues. He was recognized by Washingtonian magazine as one of D.C.’s Tech Titans and by Recode as one of Silicon Valley’s top advocates in Washington.
Bejtlich is a principal security strategist at Corelight. Previously, he was chief security officer at Mandiant and chief security strategist at FireEye. He was a military intelligence officer and leader at the Air Force CERT and created the General Electric CIRT.
Blaze is a professor in the Computer and Information Science department at the University of Pennsylvania, where his research focuses on computer security, cryptography, privacy and the relationship between technology and public policy. He is especially interested in the implications of large-scale systems, surveillance technologies and electronic voting.
Brill is Microsoft’s corporate vice president and deputy general counsel for privacy and regulatory affairs. Before Microsoft, Brill joined global law firm Hogan Lovells as partner and co-director of its privacy and cybersecurity practice. Brill also served for six years as a commissioner of the U.S. Federal Trade Commission.
Brooks is the principal market growth strategist for cybersecurity and emerging technologies for General Dynamics Mission Systems. Brooks is also an adjunct faculty member at Georgetown University in its Applied Intelligence Program. He served at the Department of Homeland Security as the first legislative director of the Science & Technology directorate.
Brumley is the CEO and co-founder of ForAllSecure and a professor at Carnegie Mellon University. ForAllSecure's mission is to make the world's software safe. The company also develops automated techniques to find and repair exploitable bugs to make this happen.
Cain has served as Toyota’s director of technology and innovation policy since 2012. Cain handles policy issues relating to connected and automated vehicle technology and robotics, including cybersecurity and data privacy. Previously, Cain was on the staff of the U.S. House Committee on Science, Space, and Technology and served as staff director of the House Science subcommittee on Technology and Innovation.
Carhart is a principal threat hunter at the industrial cybersecurity company Dragos Inc. She is a subject matter expert in cybersecurity incident response with a focus on nation-state adversaries and regularly speaks on the topic at conferences and universities. In 2017, Carhart was named a “Top Woman in Cybersecurity” by Cyberscoop news and received the Guidance EnFuse Women in Technology award.
Carlin, former assistant attorney general for the Justice Department’s National Security Division and current partner in Morrison & Foerster's Washington office, chairs the firm's global risk and crisis management team and advises industry-leading organizations in sensitive cyber and other national security matters. He has served as a top-level official in both Republican and Democratic administrations, most recently as the DOJ’s highest-ranking national security lawyer. In this capacity, Carlin oversaw nearly 400 employees responsible for terrorism, espionage and cyber, and other national security threats.
Carr is an internationally known cybersecurity consultant, entrepreneur and author. He’s a fellow with the Ponemon Institute, senior analyst at Wikistrat and founder of Suits and Spooks and the Securing Mobility Summit.
Chabinsky is a partner and the global chair of data, privacy and security at White & Case LLP. He previously served as a member of the White House Commission on Enhancing National Cybersecurity, the general counsel and chief risk officer of CrowdStrike and deputy assistant director of the FBI’s Cyber Division.
Chang is a non-resident affiliate with the Belfer Center’s Cyber Security Project at the Harvard Kennedy School. Chang also works in the financial sector on cybersecurity issues. Before that, Chang served as the staff director of the U.S. House Foreign Affairs subcommittee on Asia and the Pacific. She was the Norman R. Augustine research associate in the Technology & National Security Program at the Center for a New American Security.
Chesney is a law professor at University of Texas at Austin who teaches and writes about an array of national security and cybersecurity issues. He is a co-founder of Lawfare, directs UT’s Strauss Center and co-hosts the weekly National Security Law podcast.
Cilluffo directs George Washington University’s Center for Cyber and Homeland Security. Previously, Cilluffo served as special assistant to President George W. Bush for homeland security.
Cohn is the executive director of the Electronic Frontier Foundation. From 2000 to 2015, she served as EFF’s legal director as well as its general counsel. Cohn first became involved with EFF in 1993, when the foundation asked her to serve as the outside lead attorney in Bernstein v. Department of Justice, the successful First Amendment challenge to the U.S. export restrictions on cryptography.
Cooper is a policy director at the Aspen Institute and a senior adviser at Albright Stonebridge Group. Dr. Cooper joined ASG and Aspen after serving as the executive director of the Berkeley Center for Long-Term Cybersecurity at the University of California, Berkeley, where she managed a $15 million cybersecurity organization and published research on cybersecurity policy. Previously, she served at the U.S. Department of Homeland Security as an attorney advisor to the deputy general counsel and as a policy counselor in the Office of Policy, and worked for over a decade in homeland security consulting.
Connelly is vice president and chief information security officer for Lockheed Martin Corp. Built on over 30 years of experience, he oversees LMC’s Intelligence Driven Defense operations including both the LMC’s Computer Incident Response Team and a global network of security intelligence centers. These centers serve as the company’s focal point for detection, identification and response to all information security incidents across the company. Connelly serves as a board member on the Internet Security Alliance.
Cross is the chief technology officer of network security-as-a-service provider OPAQ Networks. He has led security research efforts at Lancope and IBM’s X-Force Advanced Research team. His areas of expertise include vulnerability disclosure, network security and cyber-conflict.
Cummiskey is the CEO of Cummiskey Strategic Solutions, which specializes in cyber and homeland security consulting. Cummiskey served for 25 years in federal and state government as an under secretary at the Department of Homeland Security, a state chief information officer and state senator. He also serves as a senior fellow with the George Washington University Center for Cyber and Homeland Security.
Daniel is president and CEO of the Cyber Threat Alliance. Previously, Daniel served from June 2012 to January 2017 as special assistant to President Barack Obama and cybersecurity coordinator on the National Security Council staff. In that role, Daniel led the development of national cybersecurity strategy and policy, and ensured that the U.S. government effectively partnered with the private sector, non-governmental organizations and other nations.
Daly is chief technology officer for cybersecurity and special missions for Raytheon Intelligence, Information and Services. He supports the National Security Telecommunications Advisory Committee to the U.S. president. Daly has worked with both the private sector and the federal government on things including software engineering for law enforcement and as a manager of enterprise applications and distributed computing.
Dawson is executive director of i2Coalition and co-founder of Open-i Advisors Inc. Dawson went from 16 years as an executive at Web hosting provider ServInt to help co-found the i2Coalition to ensure that those who build the infrastructure of the Internet have a say in policy that affects them.
Deeks is a professor at the University of Virginia Law School. She previously served in the U.S. State Department as the assistant legal adviser for political-military affairs, among other positions. She serves on the State Department’s Advisory Committee on International Law and is a senior contributor to the Lawfare blog.
Jing de Jong-Chen
De Jong-Chen is general manager of global cybersecurity strategy at Microsoft Corp. She has over 18 years of industry experience with expertise in cybersecurity policy, technology and strategic partnership development. She also serves as vice president of Trusted Computing Group, board adviser for the Science and Technology Innovation Program at the Woodrow Wilson International Center for Scholars and board adviser for the Executive Women's Forum to promote female leadership in security issues.
Joel de la Garza
De la Garza is a partner at Andreessen Horowitz and is focused on information security. Before this, he was the chief security officer at Box. From 2007 to 2013, he was the global head of Threat Management and Cyber Intelligence for Citigroup. Earlier, he ran Security Incident Response for Deutsche Bank.
Eggers is vice president for cybersecurity policy in the Cyber, Intelligence, and Security Division at the U.S. Chamber of Commerce. He leads the Chamber’s Cybersecurity Working Group, which focuses on developing and advocating for the Chamber’s cyber policies before Congress, the administration and the business community.
Ekeland is managing partner for Tor Ekeland Law PLLC (New York) and partner at TorMark Law LLP (California). He represents hackers nationally in federal criminal court and regularly consults on cybersecurity and computer law.
Ellis is the chief security officer of Akamai Technologies. He is the designer and patentholder of Akamai's SSL acceleration network, as well as several of the critical technologies underpinning the company’s Kona Security Solutions. Ellis is at the forefront of Internet policy; as a speaker, blogger, member of the FCC CSRIC, supporting Akamai's CEOs on the NIAC and NSTAC, and an advisory board member of HacKid. He is a graduate of MIT and a former U.S. Air Force officer, the recipient of the CSO Magazine Compass Award and Air Force Commendation Medal.
Enright is the director of Google's global privacy legal team. He joined Google in March 2011 after more than 10 years at high-growth start-ups, large consulting practices and Fortune 500 retail and online services organizations.
Espinel is CEO of BSA|The Software Alliance. She leads strategic efforts aimed at shaping the technology landscape in 60 countries. Espinel also serves as president of Software.org: the BSA Foundation and chairs the World Economic Forum's Future of the Digital Economy group. She was an adviser to former President Barack Obama on intellectual property and a chief trade negotiator under George W. Bush.
Fick has been CEO of Endgame since 2012. He is also an operating partner at Bessemer Venture Partners. Before joining Endgame, Fick was CEO of the Center for a New American Security. He led Marine Corps infantry and reconnaissance units in combat in Afghanistan and Iraq. His book about that experience, “One Bullet Away,” was a New York Times bestseller and a Washington Post "Best Book of the Year.”
Finan is CEO and co-founder of Manifold Technology, a provider of high-performance blockchain infrastructure. Finan previously served in the Obama administration as the director for cybersecurity legislation and policy on the National Security Council staff and worked on the development of new cyber-warfare technologies at DARPA.
Flournoy is co-founder and managing partner of WestExec Advisors, a new consulting firm that advises companies on geopolitical risk and navigating international and USG markets. She served as the Undersecretary of Defense for Policy from 2009-2012.
Francois is the research and analysis director at Graphika, where she leads a data science and analysis team focused on analyzing social media manipulations. Before that, she served as the principal researcher for Google’s Jigsaw, where she led interdisciplinary research on state-sponsored cyberthreats against civil society, countering violent extremism and algorithmic biases in machine learning. Francois is a cybersecurity fellow at the New America Foundation and an affiliate at the Harvard-Klein Berkman Center for Internet & Society, where she pursues her work on mechanisms to establish peace and security in the face of cyber conflict.
Galperin is the Electronic Frontier Foundation’s director of cybersecurity. She focuses on protecting vulnerable populations from unwanted tracking and surveillance and has contributed to countless security guides, including EFF's Surveillance Self Defense and the Security Education Companion. She has published research on state-sponsored malware from Vietnam, Syria, Kazakhstan and Lebanon.
Geer is a security researcher with a quantitative bent. He is an electrical engineer (MIT) and a biostatistician (Harvard). He serves as the chief information security officer at In-Q-Tel. His staff produced Kerberos and the X Window System, his cybersecurity consulting firm was the first on Wall Street, and he and a colleague run the Index of Cyber Security. He received the USENIX Lifetime Achievement Award in 2011 and was inducted into the Cybersecurity Hall of Fame in 2016.
Geiger is director of public policy at Rapid7. Previously, Geiger was senior counsel at the Center for Democracy & Technology, where he worked on issues related to government surveillance, privacy and computer crime. Before that, Geiger was senior legislative counsel for U.S. Rep. Zoe Lofgren (D-Calif.), serving as lead staffer for technology and intellectual property issues.
Ghosh founded and was CEO of Invincea until it was acquired by Sophos in March 2017. Before that, he was a program manager at the Defense Advanced Research Projects Agency where he created and managed an extensive portfolio of cybersecurity programs. He was recognized in 2014 by the Washington Business Journal as one of the Top 5 Most Admired CEOs in technology.
Gleicher is Facebook’s head of Cybersecurity Policy. He is an engineer and lawyer, and works at the intersection of technology, security and law. He has built security solutions, investigated and prosecuted cybercrime, and served as director for Cybersecurity Policy on the National Security Council staff.
Grant established and led the National Program Office for the first new cybersecurity program launched by the Obama administration: the National Strategy for Trusted Identities in Cyberspace (NSTIC). As Venable’s managing director of its Technology Business Strategy, he works as part of the firm’s eCommerce, Privacy, and Cybersecurity team to advise clients in the IT, cybersecurity, identity and payments sectors.
Greene is the senior director of global government affairs and policy at Symantec, leading a team that focuses on cybersecurity, data integrity and privacy issues. Previously, Greene was senior counsel with the Senate Homeland Security and Governmental Affairs Committee. Greene is a member of the National Institute of Standards and Technology’s Internet Security and Privacy Advisory Board and was a guest researcher supporting the president’s Commission on Enhancing National Cybersecurity.
Grobman is McAfee’s chief technology officer. Previously, he spent over two decades in senior technical leadership positions at Intel focused on protecting the company’s own assets and building new security architectures into hardware and software as the chief architect for Intel’s vPro platform. He has published multiple technical papers and books, and holds 24 U.S. and international patents in the fields of security, software and computer architecture, with another roughly 20 patents pending.
Hancock is a principal at Advanced Cybersecurity Group, working with Fortune 100 companies and federal agencies on active cyber defense, critical infrastructure, cyber-operations, cyber-deterrence and intelligence. He’s also a senior fellow and adjunct professor at George Washington Center for Cyber and Homeland Security.
Hansen became the chief technology officer of Bit Discovery after his company OutsideIntel was acquired. Hansen has worked for Digital Island, Exodus Communications and Cable & Wireless and at eBay as a senior global product manager of trust and safety, focusing on anti-phishing, anti-malware and anti-virus. Later, he was the vice president of Labs for Whitehat Security.
Healey is senior research scholar at Columbia University’s School for International and Public Affairs, specializing in cyber-conflict and risk. He started his career as a U.S. Air Force intelligence officer, before moving to cyber-response and policy jobs at the White House and Goldman Sachs. He was founding director for cyber-issues at the Atlantic Council where he remains a senior fellow and is the editor of the first history of conflict in cyberspace, “A Fierce Domain: Cyber Conflict, 1986 to 2012.”
Hill is the chief information security official at MITRE Corp., where he works to keep networks secure while aiming not to hinder the creativity he believes powers technical advances.
Howard is the chief security officer for Palo Alto Networks, where he is responsible for the company’s internal security program and the oversight of the Palo Alto Networks Threat Intelligence Team. He served in the Army for 23 years and spent the last two years of his military career running the Army’s CERT.
Niloofar Razi Howe
Howe has been an investor, executive and entrepreneur in the technology industry for the past 25 years with a focus on cybersecurity for the past 10 years. Most recently, Howe served as chief strategy officer and senior vice president of strategy and operations at RSA, a global cybersecurity company. Before RSA, Howe served as the chief strategy officer of Endgame. Before that, Howe spent 12 years leading deal teams in private equity and venture capital, first as a principal at Zone Venture and then as managing director at Paladin Capital Group, a Washington, D.C.-based private equity fund focused on investing in next generation security companies. Howe started her professional career as a lawyer with O’Melveny & Myers and as a consultant with McKinsey & Co.
Irwin is head of security at Tendermint. Previously, Irwin worked to solve security obstacles for non-expert users as a strategic adviser, security executive and former security empress at 1Password.
Jaffer is the vice president for strategy and business development at IronNet Cybersecurity. He previously served as a clerk to Justice Neil M. Gorsuch now on the Supreme Court, the chief counsel and senior adviser for the U.S. Senate Foreign Relations Committee, senior counsel to the House Intelligence Committee and associate counsel to the U.S. president. Jaffer also currently serves as the founder of the National Security Institute and as director of the National Security Law and Policy Program at George Mason University’s law school.
As senior vice president and senior technologist, Joffe leads Neustar’s security initiatives, and serves as Neustar’s national security executive. He has been involved in computing, technology and security for over 40 years. He is the founder of Genuity, sold to GTE (now Verizon) in 1997, and UltraDNS, sold to Neustar in 2006.
Johnson is a partner in the law firm of Paul, Weiss, Rifkind, Wharton & Garrison. He is the former secretary of Homeland Security (2013-2017), and the former general counsel of the Defense Department (2009-2010). Earlier in his career, Johnson was general counsel of the Air Force (1998-2001) and an assistant U.S. attorney in the Southern District of New York (1989-1991). Currently, Johnson is also a director of Lockheed Martin and a non-resident senior fellow at the Harvard Kennedy School.
Kaplan co-founded Synack after serving in several security-related capacities at the Defense Department, including its Incident Response and Red Team. Previously, Kaplan was a global network exploitation and vulnerability analyst at the National Security Agency, where his focus was supporting counterterrorism-related intelligence operations.
Rep. Jim Langevin (D-R.I.)
Langevin is a senior member of the Homeland Security Committee and the Armed Services Committee, where he serves as the ranking member of the subcommittee on Emerging Threats and Capabilities. Langevin is also the co-founder and co-chair of the Congressional Cybersecurity Caucus.
Langner is the founder and CEO of Langner Inc., a software and services company focusing on cyber-physical security. He has spent more than 20 years protecting critical infrastructure and manufacturing companies against cyberthreats, and is recognized for his detailed analysis of the Stuxnet malware.
Lee is the CEO and founder of Dragos, a trusted leader in industrial cyberthreat detection and response. He started his career in the U.S. Air Force and National Security Agency where he built and led a first-of-its-kind mission for the U.S. government to identify national adversaries compromising industrial infrastructure companies.
Leiter is a partner at Skadden, Arps, Slate, Meagher & Flom LLP and Affiliates, where he represents clients in matters involving national security and cybersecurity, cross-border transactions and government investigations. Prior to joining Skadden, Leiter most recently was president of Leidos Defense. He formerly was the director of the National Counterterrorism Center from 2007 until 2011 for both Presidents Bush and Obama, helped to establish the Office of the Director of National Intelligence and served as the deputy general counsel and assistant director of the President’s Commission on the Intelligence Capabilities of the United States Regarding Weapons of Mass Destruction.
Libicki holds the Keyser Chair of Cybersecurity Studies at the U.S. Naval Academy. In addition to teaching, he carries out research in cyberwar, nuclear strategy and the general impact of information technology on domestic and national security. He is the author of a 2016 textbook, “Cyberspace in Peace and War.”
Lotrionte is a Brent Scowcroft scholar at the Atlantic Council with the Cyber Statecraft Initiative in the Scowcroft Center for Strategy and Security. She is also the founder and former director of the CyberProject at Georgetown University, focusing on the role of international and domestic law in recent and emerging developments in the proliferation of weapons, technology and threats. Lotrionte previously served as counsel to the President's Foreign Intelligence Advisory Board at the White House, on the Joint Inquiry Committee of the Senate Select Committee on Intelligence, as an assistant general counsel at the CIA and in the Justice Department.
As CEO of BluVector, Lovejoy's role is developing a product she believes customers truly love. Previously, she was general manager of the IBM Security Services Division, charged with the development and delivery of managed and professional security services to IBM clients worldwide.
Massimilla is vice president for global cybersecurity at General Motors, a role that encompasses both product and corporate cybersecurity functions across all areas of the business. Previously, Massimilla led GM’s global Product Cybersecurity organization, which is developing and implementing protocols and strategies to reduce the risks associated with cybersecurity threats related to advanced technology vehicles and vehicle-connected services.
Matwyshyn is a professor of law at Northeastern University, where she is the co-director of the Center for Law, Innovation, and Creativity. She is also a faculty affiliate of the Center for Internet and Society at Stanford Law School and a senior fellow of the Cyber Statecraft Initiative at the Atlantic Council's Brent Scowcroft Center on International Security. In 2014, she served as the senior policy adviser/academic in residence at the Federal Trade Commission.
McSweeny served as a commissioner of the Federal Trade Commission from 2014 to 2018. Before joining the FTC, McSweeny worked in a variety of government positions including as deputy assistant to President Barack Obama and domestic policy adviser to Vice President Joe Biden, chief counsel of the Justice Department’s Antitrust Division and counsel on the Senate Judiciary Committee.
Meinrath is the Palmer chair in telecommunications at Penn State University and the founding director of X-Lab, a think tank focusing on the intersection of vanguard technologies and public policy. He was elected as an Ashoka fellow for social entrepreneurship in 2012, named to the Time Magazine “Tech 40” as one of the most influential figures in technology and to the “Top 100” in Newsweek's Digital Power Index. He is a recipient of the Public Knowledge IP3 Award for excellence in public interest advocacy. Prior to founding X-Lab, Meinrath was vice president of the New America Foundation, where he founded the Open Technology Institute in 2008.
Merrill is a privacy and information security attorney and technologist. Previously, she served in government as an attorney at the Federal Trade Commission, where she worked on a variety of consumer protection matters including data security, privacy and deceptive marketing and advertising. She runs the Crypto and Privacy Village, which appears at the DEF CON conference each year.
Mickos is CEO of HackerOne, the leading provider worldwide of hacker-powered security. HackerOne operates the Hack the Pentagon program that has enabled the Defense Department to identify and fix 3,600 security vulnerabilities faster and at lower cost than using any other method. Previously, Marten served as senior vice president and general manager at Hewlett-Packard and at Sun Microsystems, and as CEO of Eucalyptus Systems and MySQL AB.
Miller is a security researcher known as the first to hack the iPhone and first to hack an Android phone. He also revealed vulnerabilities that allowed remote compromise of many Fiat Chrysler vehicles. He currently works as principal autonomous vehicle security architect at Cruise Automation.
Mokady is the chairman and CEO of CyberArk, and a pioneer in establishing the Privileged Account Security software market. Since co-founding the company in 1999, Mokady has entrenched CyberArk as the market leader. During his tenure at CyberArk, Mokady has also served as its chief strategist and visionary, overseeing global expansion, management, execution and corporate development. Prior to CyberArk, Mokady specialized in legal management and business development for international high-tech companies.
Montgomery is vice president and chief technical strategist at McAfee. He manages the worldwide team of technical strategists who lead the group’s various business units and is responsible for advancing technical innovation in McAfee’s security solutions. Earlier at McAfee, Montgomery oversaw worldwide government certification efforts and worked with Congress, industry leaders other government leaders and public-sector customers to help ensure that technologies, standards and implementations addressed data security and privacy challenges.
Moore is best known as the founder of the Metasploit Project, the foremost open-source exploit development framework. Metasploit was acquired by Rapid7 in 2009, and Moore built out the commercial Metasploit product line. In addition to his work on Metasploit, Moore is a prolific researcher.
Moss is the founder and CEO of DEF CON Communications and the founder of the Black Hat Briefings, two of the world’s most influential information security events. Moss is an angel investor to start-ups in the security space, technical adviser to the TV series “Mr. Robot” and serves on the board of directors for Compagnie Financière Richemont SA. Moss is a member of DHS’s Advisory Council and a commissioner on the Global Council on the Stability of Cyberspace. In a prior life, Moss served as the chief security officer and was a vice president of ICANN, the Internet Corporation for Assigned Names and Numbers.
Moussouris is the founder and CEO of Luta Security, which specializes in government and multiparty supply chain vulnerability coordination. Moussouris was invited by the State Department to help renegotiate the Wassenaar Arrangement, which changed export-control language to include technical exemptions for vulnerability disclosure and incident response. She has over 20 years of leadership in information security as a former penetration tester at @stake to creating Microsoft Vulnerability Research. She advised for years at the Defense Department, resulting in the launch of the Hack-the-Pentagon program.
O’Connor is the president and CEO of the Center for Democracy and Technology. O’Connor has worked in privacy, data and digital policy at companies, law firms and government, including her appointment as the first chief privacy officer of the Department of Homeland Security.
Olsen is the president and chief revenue officer at IronNet Cybersecurity. He previously served as director of the National Counterterrorism Center, general counsel for the National Security Agency and in a number of leadership positions at the Justice Department. Olsen teaches at Harvard Law School.
Painter has been a leader on cyber-issues for over 25 years, first as a federal prosecutor in Los Angeles handling some of the most high-profile cyber-cases in the country, then holding senior positions at the Justice Department and FBI. From 2009 to 2011, Painter served as senior director for Cybersecurity Policy at the National Security Council in the White House. From 2011 until he left the government last fall, he served as the first coordinator for cyber-issues in the State Department and spearheaded the creation of a whole new area of diplomacy around the globe involving the full range of cyber-issues — including cybersecurity, international security, cybercrime, human rights online and Internet governance. Among other things, he currently serves as a commissioner on the Global Commission for the Stability of Cyberspace and a member of the board of the Center for Internet Security.
Pescatore is director of emerging security trends at the SANS Institute, the largest cybersecurity training organization. He joined SANS in 2013 after 14 years as Gartner’s lead security analyst. He started his security career at the NSA and in the Secret Service.
Pfefferkorn is the cryptography fellow at the Stanford Center for Internet and Society. Her work focuses on investigating and analyzing the government's policy and practices for forcing decryption and/or influencing crypto-related design of online platforms and services, devices and products, both technically and through the courts and legislatures. Pfefferkorn also researches the benefits and detriments of strong encryption on free expression, political engagement, economic development and other public interests.
Phatak is CEO at NSS Labs and is responsible for leading the company’s endeavors to advance transparency and accountability within the cybersecurity industry. Under Phatak’s leadership, NSS Labs has become recognized globally as the most trusted source for independent fact-based cybersecurity guidance. Before NSS Labs, he founded and led several Internet and cybersecurity companies including Lucid Security and Intermedia Sciences Group, one of the first Internet-service providers and security consulting firms in the United States.
Plunkett, a former director of Information Assurance for the National Security Agency, is principal of Plunkett Associates, a cybersecurity consulting firm. She is a senior fellow at Harvard’s Belfer Center where she supports the Defending Digital Democracy Project and is an adjunct professor in the Cybersecurity Department of the University of Maryland University College Graduate School.
Rep. John Ratcliffe (R-Tex.)
Ratcliffe is chairman of the U.S. House Homeland Security Cybersecurity and Infrastructure Protection subcommittee. In this role, he focuses on oversight of the Department of Homeland Security’s cybersecurity mission.
Richey is vice chairman of risk and public policy of Visa, leading the company’s strategic policy initiatives and risk management. She also leads crisis management at the executive level and is a member of Visa’s Executive Committee. Before assuming her current role, Richey concurrently served as chief legal officer and chief enterprise risk officer.
Rhoades is the managing director of the Cybersecurity and Technology Program at the Aspen Institute, where he oversees and facilitates the work of Aspen’s Cyber Strategy Group. Previously, Rhoades served in the Obama administration as a director for Legislative Affairs on the National Security Council staff focusing on counterterrorism, defense and intelligence programs. He also served at the Defense Department, where he advised senior leaders on congressional actions, plans and urgent issues affecting the department.
With over two decades of experience C. Thomas (Space Rogue) helped found L0pht Heavy Industries where he created the Hacker News Network and went on to work at companies such as @Stake, Trustwave, Tenable and others. He currently works for IBM X-Force Red where he assists clients in understanding their risks and how they can meet compliance and security challenges.
Schneier is an internationally renowned security technologist. He is the author of 13 books — including “Data and Goliath: The Hidden Battles to Collect Your Data and Control Your World” — as well as hundreds of articles, essays and academic papers. Schneier is a fellow and lecturer at the Harvard Kennedy School.
Schwartz is Venable's managing director of cybersecurity services. Previously, Schwartz served on the National Security Council, as special assistant to the president and senior director for cybersecurity, where he led legislative and policy outreach to businesses, trade groups and others. Before that, Schwartz led the Commerce Department’s Internet Policy Task Force, worked at the National Institute of Standards and Technology and served for 12 years at the Center for Democracy and Technology.
Segal is the Ira A. Lipman chair in emerging technologies and national security and director of the Digital and Cyberspace Policy Program at the Council on Foreign Relations. An expert on security issues, technology development and Chinese domestic and foreign policy, Segal was the project director for the CFR-sponsored Independent Task Force report “Defending an Open, Global, Secure, and Resilient Internet.” His book “The Hacked World Order: How Nations Fight, Trade, Maneuver, and Manipulate in the Digital Age” describes the increasingly contentious geopolitics of cyberspace.
Sell is chairman and co-founder of numerous technology start-ups including 533DZ, c0sm0, r00tz, SuperSessions, Whistler and Wickr. Sell also serves on advisory boards for leading Washington think tanks, including the Center for Democracy and Technology and the Center for Strategic and International Studies, where she is co-chair of Workforce Acceleration on the Cyber Policy Agenda for President Trump. For almost two decades, Sell managed zero-day vulnerabilities, government and press relations for DEF CON.
Singer is a strategist at New America and best selling author of multiple books, including “Cybersecurity and Cyberwar: What Everyone Needs to Know;” “Ghost Fleet: A Novel of the Next World War,” and the forthcoming “LikeWar: The Weaponization of Social Media.”
Soltani is an independent researcher and technologist specializing in privacy, security and behavioral economics. He formerly served as the chief technologist for the Federal Trade Commission and as a senior adviser to the U.S. Chief Technology Officer in the White House Office of Science and Technology Policy.
Spaulding is senior adviser for Homeland Security as part of the International Security Program at the Center for Strategic and International Studies. She spent over 30 years working national security issues for Republican and Democratic administrations and on both sides of the aisle in Congress, most recently as under secretary at DHS for cybersecurity and critical infrastructure protection, as well as in private practice. She is on the faculty of the National Association of Corporate Directors; the board of the Center for Cyber and Homeland Security at George Washington University; advisory board of the Defending Digital Democracy Project at Harvard University’s Belfer Center; and a member of the Aspen Homeland Security Institute. Spaulding served as chair of the American Bar Association’s Standing Committee on Law and National Security; security counsel to the Business Roundtable; member of the CSIS Commission on Cybersecurity for the 44th Presidency; and co-founder of the ABA Cybersecurity Task Force.
Stamos is an adjunct professor and Hoover Fellow at Stanford University. He’s the former chief security officer at Facebook. He has previously worked as the chief information security officer of Yahoo and was the co-founder of iSEC Partners.
Currently serving as the director of the CERT division of the Software Engineering Institute, Stempfley has more than 20 years of public service aimed at leveraging technology to transform and improve lives. She has held cybersecurity and technology leadership positions at the Software Engineering Institute at Carnegie Mellon University, the MITRE Corporation, Department of Homeland Security and the Defense Information Systems Agency.
Stepanovich is U.S. policy manager and global policy counsel at Access Now, where she works to ensure that laws and policies on surveillance and cybersecurity recognize and respect human rights. She manages and develops the organization's U.S. policy and leads global projects at the intersection of human rights and government surveillance.
Stewart works in Deloitte & Touche LLP’s cyber risk practice focusing on cyber, privacy and emerging technologies. She served as the senior policy adviser for Cyber Infrastructure & Resilience Policy at the Department of Homeland Security in the Obama administration focusing on a number of domestic and international cyber and technology policy issues. Prior to working at DHS, Stewart was the senior manager, legal affairs at Cyveillance Inc., now LookingGlass Cyber Solutions.
Stiennon is the chief research analyst at IT-Harvest. He is the author of several books on cyberwar and is a lecturer at Charles Sturt University in Australia.
Strayer is the deputy assistant secretary for cyber and international communications and information policy at the State Department. Previously, Strayer was the general counsel for the U.S. Senate Foreign Relations Committee under the leadership of Sen. Bob Corker (R-Tenn.).
Sulmeyer is the Belfer Center's cybersecurity project director at the Harvard Kennedy School. Before Harvard, he served as the director for plans and operations for cyber-policy in the Office of the Secretary of Defense.
Swire teaches privacy and cybersecurity at Georgia Tech and is senior counsel at Alston & Bird. He was one of five members of President Barack Obama’s Review Group on Intelligence and Communications Technology, and served as chief counselor for Privacy at the Office of Management and Budget under President Bill Clinton.
Teplinsky is an adjunct professor at the American University’s Washington College of Law, a faculty fellow at AU's Internet Governance Lab and an advisory board member for CrowdStrike. A graduate of Princeton University and Harvard Law School, Teplinsky began her career at the NSA and practiced technology law at Steptoe & Johnson LLP, where she counseled multinational clients on a wide array of issues including cybersecurity, data protection and electronic surveillance.
Jonathan “J.J.” Thompson
Thompson is the founder and CEO of Rook Security, an IT security firm providing security strategy, crisis management, and security operations services. Founded in 2008, Indianapolis-based Rook Security provides 24/7 managed detection and response to prevent incidents from affecting business operations.
Visner is the director of the National Cybersecurity Federally Funded Research and Development Center, which MITRE operates in support of the National Institute of Standards and Technology's National Cybersecurity Center of Excellence. Visner also serves as an adjunct professor of cybersecurity policy at Georgetown University.
Watters is executive vice president for corporate strategy at FireEye. He entered the cybersecurity industry through his acquisition, turnaround and sale of iDEFENSE from 2002 to 2005. In 2007, he founded iSIGHT Partners and served as its chairman and CEO until its acquisition by FireEye in 2016.
Weatherford is senior vice president and chief cybersecurity strategist at vArmour. He is a former principal at the Chertoff Group; was deputy under secretary for cybersecurity at the Department of Homeland Security in the Obama administration; and previously held the roles of chief information security officer in both the states of California and Colorado. He is a retired U.S. naval officer.
Weber is the founder and director of the Center for Long Term Cybersecurity at the University of California at Berkeley, where he directs a large-scale multidisciplinary research program on emerging cybersecurity issues at the intersection of new technologies, human behavior and risk calculations made by firms and governments.
Weinstein is the vice president of threat research at Claroty, a New York-based industrial cybersecurity firm. Before Claroty, Weinstein served as the chief technology officer of New Jersey. He began his career at U.S. Cyber Command.
Weitzner is founding director of the MIT Internet Policy Research Initiative, principal research scientist at CSAIL and teaches Internet public policy in MIT’s Electrical Engineering and Computer Science Department. He was U.S. deputy chief technology Officer for Internet Policy in the White House, where he led initiatives on cybersecurity, copyright and digital trade policies, and was responsible for the Obama administration’s Consumer Privacy Bill of Rights and the OECD Internet Policymaking Principles. Weitzner is a founder of the Center for Democracy and Technology, led the World Wide Web Consortium’s public policy activities and was deputy policy director of the Electronic Frontier Foundation.
Wenger is director of cybersecurity public policy at Cisco Systems. His work focuses on a range of technology policy issues relating to security and privacy, including IoT, AI, autonomous vehicles and government electronic surveillance. He held a similar role at Microsoft before coming to Cisco. Before joining the private sector, Wenger worked as an attorney in the Justice Department’s Computer Crime and Intellectual Property Section, the Federal Trade Commission and the New York State Office of the Attorney General prosecuting computer crimes and online scams.
At Mozilla, maker of the Firefox browser, West leads policy work for the Americas with a global focus on data governance. West is a policy and tech translator, product consultant and long-term Internet strategist guiding the intersection of emerging technologies, culture, governments and policy. Areas of focus include digital identity, data governance, data security, net neutrality, privacy and intermediary liability protections.
Wheeler is senior director of data trust and threat & vulnerability management at Splunk as well as cybersecurity policy fellow at New America. She has written and spoken on information security best practices and the future of cyberwarfare at the U.S. Federal Trade Commission, the OECD, and multiple security conferences. She wrote the book "Women In Tech.”
Jamie Winterton is the Director of Strategy for Arizona State University’s Global Security Initiative. She steers the university’s cybersecurity research strategy and drives partnerships with government and industry. Jamie has provided expert testimony to the U.S. Senate on the impact of large data breaches. Before joining ASU, Jamie was a scientist at Lockheed Martin’s Advanced Technology Center.
Wysopal, chief technology officer at CA Veracode, oversees technology strategy and information security. Wysopal has testified to Congress on government security and how vulnerabilities are discovered in software. He is the author of “The Art of Software Security Testing.”
Yoran is chairman and CEO of Tenable. Previously, he served as president of RSA, leading its transformation into a successful global security company. Yoran joined RSA through the acquisition of NetWitness, the network forensics company he founded and led as CEO.
Harvard law and computer science professor and co-founder of the Berkman Klein Center for Internet and Society, Zittrain’s research interests include battles for control of digital property and content, cryptography, electronic privacy, the roles of intermediaries within Internet architecture, human computing and the deployment of technology in education. He is currently focused on the ethics and governance of artificial intelligence, jointly teaching a course on the topic with the MIT Media Lab. He wrote “The Future of the Internet -- And How to Stop It.”
Zheng is vice president at the Business Roundtable where she leads technology, cyber and innovation policy. Previously, she directed the Technology Policy Program at the Center for Strategic and International Studies, worked on cyber programs at the Defense Advanced Research Projects Agency and was a professional staff member for the Senate Homeland Security and Governmental Affairs Committee.
Zhu is chief information security officer at Brave Software, building a new web browser focused on security, privacy and respecting user choice. She was previously a staff technologist at the Electronic Frontier Foundation and a senior security engineer at Yahoo. Zhu has worked on a variety of open source security projects such as SecureDrop, Let's Encrypt, HTTPS Everywhere, and Privacy Badger.