Speaking at the Washington Post’s Cybersecurity Summit on Thursday, Assistant to the President for Homeland Security Lisa Monaco said the White House has a framework in place for responding to cyberattacks. “When countries violate those norms, there’s an isolation of that country,” Monaco said. “There’s an agreement that you can impose sanctions.” Noting the sensitivity in revealing classified information, Monaco said that if making attribution public is in the country’s interest, “we will do so.”
      Program Highlights
      Speaking at the Washington Post’s Cybersecurity Summit on Thursday, Patrick Heim, Head of Trust and Security at Dropbox, said he doesn’t believe that we’ve struck the right balance between our technological capabilities and policy discussions. “I believe right now that the capabilities may actually exceed the policy discussions,” Heim said. Noting that the mechanical sophistication is sometimes relatively low in cyberattacks, Heim says policies need to reflect criminals who are often highly skilled and organized.
      • Oct 6, 2016
      Speaking at the Washington Post’s Cybersecurity Summit on Thursday, Thomas Hicks, Commissioner of the U.S. Electoral Assistance Commission, said that it would take “an army” to hack into our voting system because it is so decentralized. “Forty-seven out of 50 states use our voter-certification equipment in one way or another,” Hicks said. “In every system that we certify, none of them are connected to the internet, so there will not be any sort of internet hack into voting machines themselves.”
      • Oct 6, 2016
      Speaking at the Washington Post’s Cybersecurity Summit on Thursday, Juan Zarate, chairman and co-founder of Financial Integrity Network, said it can be ethical for private sector companies to hack foreign governments. Citing the constitution, Zarate noted, “Congress has the right to issue letters of marque and reprisal,” a provision created in the context of maritime security domain that applied to non-state actors and can be likened to this situation. Earlier in the program, Zarate noted that the private sector often validates cybercrimes for the U.S. government.
      • Oct 6, 2016
      Speaking at the Washington Post’s Cybersecurity Summit on Thursday, Brett Leatherman, Assistant Section Chief of the Cyber Operational Engagement Section at the Federal Bureau of Investigation, said the willingness of the government to step out early and collaborate with private companies to solve cybercrimes is necessary for understanding what happened and how to respond. “Criminals are partnering all the time,” Leatherman said. “If we (public and private sectors) don’t partner together, we’re going to continue to lose that battle as opposed to gain footing on that adversary,” Leatherman said. For the FBI, he noted, speed is important. “What we've learned in last five years is that sharing threats two weeks after they're received is no longer acceptable." Leatherman says the private-public partnership is key to extracting and analyzing a malware network quickly.
      • Oct 6, 2016
      9:05 a.m. Protecting Personal Data
      Brian Reed
      ZeroFOX is the #SocialMediaSecurity Company – protecting businesses and brands from the bad things on social. As ZeroFOX Chief Product Officer, Brian C. Reed brings over 25 years of experience in strategy, product leadership and technology innovation. At ZeroFOX, Brian drives the overall go-to-market, solutions portfolio and product management. Brian formerly served as Chief Mobility Officer at Good Technology (#1 mobile security), BoxTone (#1 mobile service management), and FormScape (#1 in document automation). Brian has a proven track record of success in across multiple technology markets including security, mobility, analytics, database, app development, app performance, process automation, middleware, and SaaS has worked with standards bodies including ANSI and ISO. Brian is frequent writer/speaker including Gartner, CIO Summit, ITExpo, MobileEnterprise, Interop, and JavaOne. Brian has global experience across Americas, Europe and Asia and is a graduate of Duke University with degrees in Biomedical and Electrical Engineering.
      Patrick Heim
      Head of Trust & Security at Dropbox
      Patrick Heim is the head of trust and security at Dropbox, where he manages security and compliance for both the company and its service. He joined Dropbox in January of 2015 with over 20 years of information security and technology experience. Previously, he served as chief trust officer at Salesforce.com, where he built and ran a world-class security team that contributed to making Salesforce one of the most trusted enterprise cloud vendors. Patrick also held chief information security officer positions at Kaiser Permanente and McKesson Corporation and senior positions at Ernst & Young and two early-stage security technology companies. Patrick advises security startups and serves on the board of directors at Cylance.
      Kristen Neller Verderame
      Kristen Neller Verderame founded Pondera International in 2007 with the goal of helping entrepreneurs, small businesses and executives succeed with top quality business and legal advice at reasonable rates. Her passion for cyber security has also led her to develop a specialized practice working with industry and government to facilitate positive progress in this important area. Kristen spent the bulk of her professional career in a variety of roles within BT (British Telecom) Group plc. Her last role was Vice President and General Counsel for the company’s US operations, where she was a leading member of the management team that drove 150% revenue growth and a quadrupling of the workforce (via organic and inorganic activity) over a three-year period in the US.
      Robert O'Harrow Jr.
      Robert O’Harrow Jr. is a reporter with the investigative unit of The Washington Post who has focused on privacy, national security, federal contracting and the financial world. In two decades at The Post, he has won multiple journalism awards. They include the 2013 Sigma Delta Chi Award for Zero Day, a series about cybersecurity and cyberwar, and a regional Emmy for a Zero Day video. O’Harrow previously won the top prize from Investigative Reporters and Editors for exposing fraud, waste and abuse in homeland security contracting. O’Harrow has been a Pulitzer Prize finalist twice, most recently in 2009 for a series of explanatory stories about the global financial crisis, and a four-time finalist for the Gerald Loeb Award for business writing. He is the author of the 2005 book “No Place to Hide,” about data profiling, surveillance and national security. He was co-producer of a radio documentary by the same name. In 2003, he won the Carnegie Mellon Cybersecurity Journalism Award.
      9:30 a.m. Hacking and Leaks: Political Targets
      Michael Sussmann
      Michael Sussmann is a partner in the Privacy and Data Security Practice at Perkins Coie LLP, focusing on consumer privacy, computer and network intrusions, Internet- and technology-related investigations, surveillance and regulatory compliance and national security issues. In 2016, Sussmann was named to the DNC Cybersecurity and Privacy Advisory Board.
      Brett DeWitt
      Brett DeWitt is currently the Senior Policy Advisor for Cybersecurity for the U.S. House of Representatives Committee on Homeland Security. Mr. DeWitt currently advises Chairman Michael McCaul (R-TX) and other Members of Congress on the Committee on all Federal policy and legislation involving cybersecurity, data protection, privacy, infrastructure protection, and security technologies. Recently, Mr. DeWitt was the lead staffer for the development, drafting, and passage of H.R. 3696, the National Cybersecurity and Critical Infrastructure Protection Act, in the U.S. House of Representatives. This cybersecurity legislation codifies and strengthens the U.S. Department of Homeland Security’s cybersecurity mission to ensure U.S. critical infrastructure protection and improve cyber incident response efforts. Additionally, the legislation enables the sharing of real-time cyber threat information across the critical infrastructure sectors while also ensuring the protection of privacy and civil liberties. Mr. DeWitt has served on the Committee on Homeland Security for over four years.
      Rich Barger
      Rich is a pioneer in threat intelligence analysis and is the Chief Intelligence Officer and Director of Threat Intelligence at ThreatConnect. In 2011, Rich sought likeminded security experts and together they founded ThreatConnect. Rich has more than 15 years supporting DC’s most elite cyber defense and intelligence organizations from within both public and private sector as former U.S. Army Intelligence Analyst and security consultant. Rich is an analyst at heart, and his technical and operational vision is truly what makes ThreatConnect a disruptive new technology for organizations worldwide. Rich leads ThreatConnect Research, a globally recognized threat research team. Rich maintains a variety of professional industry certifications, and a BS in Information System Security. Rich is married and is a proud father.
      Thomas Hicks
      Thomas Hicks was nominated by President Barack H. Obama and confirmed by unanimous consent of the United States Senate on December 16, 2014 to serve on the U.S. Election Assistance Commission (EAC). Prior to his appointment with EAC, Commissioner Hicks served as a Senior Elections Counsel and Minority Elections Counsel on the U.S. House of Representatives Committee on House Administration, a position he held from 2003 to 2014. In this role Mr. Hicks was responsible for issues relating to campaign finance, election reform, contested elections and oversight of both the Election Assistance Commission and Federal Election Commission. His primary responsibility was advising and providing guidance to the committee members and caucus on election issues. Mr. Hicks has talked with Americans in every state about their voting experiences. In addition, he has worked with state and local election officials across America to address critical election concerns.
      Elise Viebeck
      Elise Viebeck is a national enterprise reporter for The Washington Post. She previously covered Congress, cybersecurity and healthcare for The Hill.
      10:00 a.m. Cyberspace: The 21st Century Warzone
      Frank J. Cilluffo
      Frank J. Cilluffo is an Associate Vice President at The George Washington University where he leads a number of national security and cyber security policy and research initiatives. Cilluffo directs the Center for Cyber and Homeland Security, is co-director of GW’s Cyber Center for National and Economic Security and along with the School of Business, launched the university’s World Executive MBA in Cybersecurity program. Cilluffo serves or has served on various national security-related committees sponsored by the US government and non-profit organizations, including the Homeland Security Advisory Council, where he served as the Vice Chairman of the Future of Terrorism Task Force, chaired by Congressman Lee Hamilton. Cilluffo also served as a member of the Secure Borders and Open Doors Advisory Committee, Defense Science Board committees and summer studies, and along with Norm Augustine, chaired the first Quadrennial Homeland Security Review Advisory Council.
      Juan Zarate
      Juan Zarate is a senior adviser at the Center for Strategic and International Studies (CSIS), chairman and cofounder of the Financial Integrity Network, and a visiting lecturer in law at the Harvard Law School. Mr. Zarate also serves as chairman and senior counselor for the Foundation for Defense of Democracies’ Center on Sanctions and Illicit Finance (CSIF), as senior national security analyst for CBS News and MSNBC, and as a senior fellow at the Combating Terrorism Center at West Point. Mr. Zarate served as the deputy assistant to the president and deputy national security adviser for combating terrorism from 2005 to 2009, where he was responsible for developing and implementing the U.S. government’s counterterrorism strategy and policies related to transnational security threats. Mr. Zarate was the first ever assistant secretary of the treasury for terrorist financing and financial crimes, where he led domestic and international efforts to attack terrorist financing, the innovative use of the Treasury Department’s national security–related powers, and the global hunt for Saddam Hussein’s assets. Mr. Zarate is a former federal prosecutor who served on terrorism prosecution teams prior to 9/11, including the investigation of the USS Cole attack. He has earned numerous awards for his work, including the Treasury Medal.
      Richard Bejtlich
      Richard Bejtlich is Chief Security Strategist at FireEye, and was Mandiant's Chief Security Officer when FireEye acquired Mandiant in 2013. He is a nonresident senior fellow at the Brookings Institution and an advisor to security start-ups. He is pursuing a Doctor of Philosophy in War Studies at King's College London. He was previously Director of Incident Response for General Electric, where he built and led the 40-member GE Computer Incident Response Team (GE-CIRT).
      Craig Timberg
      Craig Timberg is a national technology reporter for The Washington Post, specializing in privacy, security and surveillance. He grew up in suburban Maryland and graduated from Connecticut College. Since joining The Post in 1998, he has been a reporter, editor and foreign correspondent and has co-authored a book, “Tinderbox: How the West Sparked the AIDS Epidemic and How the World Can Finally Overcome It.” He contributed to the Post’s Pulitzer Prize-winning coverage of the NSA.
      10:30 a.m. Critical infrastructure
      Brett Leatherman
      Brett Leatherman manages the FBI Cyber Division Outreach personnel and teams tasked with the mission to engage key private sector partners to mitigate cyber threats to the United States, U.S. interests, and critical infrastructure. His management responsibility includes over 50 personnel dedicated to the Cyber Division's mission to connect the dots between public and private sector technical intelligence, and the timely sharing of cyber threat and vulnerability information.
      Michelle Digruttolo
      Michelle DiGruttolo is a Senior Managing Director at Ankura Consulting Group based in Washington, DC. She brings more than 23 years of experience in geopolitical threat analysis and national security. Ms. DiGruttolo leads the geopolitical advisory practice. She leverages her analytical tradecraft to help firms navigate the complex nuances of frontier and emerging markets in Africa, Asia, Latin America and the Middle East, and identify risks and opportunities in those regions
      Michael Wagner
      As a member of the Information Security & Risk Management as well Supply Chain IT Leadership Teams, Mr. Wagner has responsibility for information security in the following areas for J&J: Digital Asset Risk Management; Lab, Manufacturing and Distribution; Third Party Risk; Internal Security Assessments; and J&J Product Security. Additionally, he is currently a LtCol in the USAF Reserves supporting the US Air Force Academy and a member of the Board of Directors for the National Health ISAC. Mr. Wagner holds a BS in Biology, US Air Force Academy; and a MS in Telecommunications Management, University of Maryland University College.
      Brian Fung
      Brian Fung covers technology for The Washington Post, focusing on telecommunications and the Internet. Before joining the Post, he was the technology correspondent for National Journal and an associate editor at the Atlantic.
      11:00 a.m. Interview with Lisa Monaco
      Lisa O. Monaco
      As the President’s Homeland Security and Counterterrorism Advisor, Lisa Monaco is responsible for advising the President on all aspects of counterterrorism policy and strategy and coordinating homeland security-related activities throughout the Executive Branch. She chairs meetings of the Cabinet-level Homeland Security Principals Committee, which advises the President on homeland security policy issues and crises. Ms. Monaco is responsible for policy coordination and crisis management on issues ranging from terrorist attacks at home and abroad to cybersecurity and natural disasters.
      Interviewed by Ellen Nakashima
      Ellen Nakashima is a national security reporter for The Washington Post. She focuses on issues relating to intelligence, technology and civil liberties. She previously served as a Southeast Asia correspondent for the paper. She wrote about the presidential candidacy of Al Gore and co-authored a biography of Gore, and has also covered federal agencies, Virginia state politics and local affairs. She joined the Post in 1995.
      About Washington Post Live
      Washington Post Live is the newsroom’s live journalism platform. Government and business leaders, emerging voices and newsmakers discuss the most pressing issues of the day.
        Presenting Sponsor:
          Supporting Sponsor:
            Related Content
            SEPTEMBER 28: Connected Cities
            SEPTEMBER TBD: The Daily 202 Live With James Hohmann
            OCTOBER 6: Cybersecurity Summit
            OCTOBER 18: PostPartisan Presidential Debate Pregame and Viewing Party
            OCTOBER 25: Free to State
            NOVEMBER 10: The Next Generation of Veterans
            NOVEMBER 30: Juvenile Justice
            DECEMBER 6: Chasing Cancer