Cybersecurity Advisory Committee (CSAC) Members
The CISA Cybersecurity Advisory Committee (CSAC) is comprised of 23 of the nation’s leading experts on cybersecurity, technology, risk management, privacy, and resilience, including a Chair and Vice Chair.
The biographies of the current CISA Cybersecurity Advisory Committee members are provided below.
- Mr. Ron Green (Chair)
Ron Green is a Mastercard Fellow responsible for advocating for strong cybersecurity law and policy with global government and regulatory agencies, deepening public-private partnerships to drive our shared security and strengthening the cohesion between cyber practices within Mastercard.
Previously, Ron served as Mastercard’s chief security officer for 10 years from 2014-2024. In this role, he led a global team that ensured the safety and security of the company's network, as well as internal and external products and services. He was responsible for corporate security, security architecture and engineering, cryptographic key management, business continuity, disaster recovery and emergency management.Ron joined Mastercard in 2014 after serving as deputy chief information security officer at Fidelity Information Services (FIS). Prior to this position, he was director, Investigation and Protections Operations at Blackberry. Ron also served as a senior vice president across several areas at Bank of America.
He has extensive experience working with international and federal law enforcement agencies both as a special agent in the U.S. Secret Service and as an officer in the U.S. Army. With the Secret Service, Ron worked protection and fraud investigations. He was one of the first agents to receive formal training on seizing and analyzing electronic evidence and worked on a number of international cyber-crime investigations.
Ron currently serves as the chair of the Cybersecurity and Infrastructure Security Agency’s Cybersecurity Advisory Committee and chair of the U.S. Secret Service’s Cyber Investigation Advisory Board. He also sits on the N.A. Board of Directors for Santander Bank. Previously, Ron served as chair of the Financial Services Sector Coordinating Council (FSSCC) from 2020-2023.
He holds a bachelor’s degree in mechanical engineering from the United States Military Academy at West Point, is a graduate of the FBI’s Domestic Security Executive Academy and holds a graduate certification in Information Assurance from George Washington University.
- Mr. David DeWalt (Vice Chair)
David DeWalt is one of the preeminent leaders in cybersecurity and technology, leading some of the world’s most influential companies toward immense success over the past 30 years. A four-time CEO, Mr. DeWalt has been at the helm of some of the most impactful companies in the sector, creating more than 20 billion dollars in shareholder value and driving some of the largest acquisition deals and IPOs in history. He currently serves as Founder and CEO of NightDragon, a venture capital and advisory firm building the world’s largest platform for growth for late-state cybersecurity, safety, security, and privacy companies.
A sought-after advisor and executive leader, Mr. DeWalt has held more than 40 board of director roles at influential companies such as Delta Airlines, Optic, Claroty, Five9, Mandiant, and Forescout Technologies. Mr. DeWalt is also a deeply committed public servant dedicated to advancing public-private partnership, including serving four Administrations on the President’s National Security Telecommunications Advisory Committee (NSTAC). A thought leader on cybersecurity and technology issues, Mr. DeWalt has appeared in CNBC, the Wall Street Journal, TechCrunch, Forbes, Bloomberg, and other leading media outlets.
- Ms. Marene Allison
Ms. Marene Allison has served as the Global Chief Information Security Officer for Johnson & Johnson, a position she has held from 2010 to 2023. In this role, she was responsible for protecting the information technology systems and business data for one of the world’s largest healthcare companies. Prior to joining Johnson & Johnson, Ms. Allison served as Chief Security Officer for Medco. There, she was responsible for developing and implementing security strategy and maintaining IT and physical security for over 145 facilities. Ms. Allison also previously served as head of Corporate Security for Avaya, and Vice President of Loss Prevention and Safety for The Great Atlantic and Pacific Tea Company. She has worked as an FBI Special Agent, served in the U.S. Army, and graduated from West Point in the first class to include women.
- Ms. Lori Beer
Lori Beer is the Global Chief Information Officer (CIO) of JPMorgan Chase & Co. and a member of the company's Operating Committee, responsible for the firm's technology systems and infrastructure worldwide. Ms. Beer manages a $17 billion budget and more than 60,000 technologists supporting JPMorgan Chase's retail, wholesale and asset and wealth management businesses. She also serves as the co-sponsor of the firm's Women on the Move Business Resource Group.
Ms. Beer joined the firm in 2014 and was most recently the Chief Information Officer for the Corporate & Investment Bank (CIB). Prior to joining the firm, she was Executive Vice President of Specialty Businesses and Information Technology for WellPoint, Inc., responsible for a $10 billion business unit which included WellPoint's Specialty Products.
Ms. Beer is co-chair of the Teach for America New York Advisory Board and a member of the University of Cincinnati Foundation Board of Trustees. She has endowed scholarships at the University of Cincinnati where she holds a Doctor of Commercial Science, honoris causa and the University of Dayton where she holds an honorary doctorate of science, to help increase diversity in STEM careers.
Ms. Beer has been named among the Forbes CIO Next list. Most Influential Women in US Finance by Barron’s, the Most Powerful Women in Banking by American Banker, Top 3 Women in FinTech by FinTech Magazine and a Merit Award recipient by the Women's Bond Club. Beer has also been recognized as a Computerworld Premier 100 IT Leader and National Association for Female Executives Women of Excellence Health Care Champion.
Ms. Beer holds a Bachelor of Science degree in Computer Science from the University of Dayton.
- Mr. Brian Gragnolati
Mr. Brian Gragnolati is a healthcare executive with over 35 years of experience including numerous leadership roles. Mr. Gragnolati is President & CEO of Atlantic Health System, a New Hersey healthcare organization with $4 billion in revenue and 20,000 team members. In addition to this role, he is an Executive Partner at Concord Health Partners and a Director at Revology.
Mr. Gragnolati is also the former Chair of the Board of Trustees of the American Hospital Association (AHA). As a nationally respected voice in healthcare, Mr. Gragnolati played a key role in public relations and media communications during the pandemic. He regularly appears on CNBC, MSNBC, and Bloomberg Radio, sharing his insight on the nation’s most pressing health care concerns.
Prior to Atlantic Health, Mr. Gragnolati was Senior Vice President at Johns Hopkins Medicine and President & CEO of Suburban Hospital. He also held executive positions at WellSpan Health, University of Vermont Medical Center and Baystate Medical Center in Springfield, MA. Mr. Gragnolati has been honored by Modern Healthcare as one of the 100 Most Influential People in Healthcare and was selected by Governor Phil Murphy for the Office of the Governor’s COVID-19 Restart & Recovery Advisory Council and Professional Advisory Committee. Mr. Gragnolati is a member of the Boards of Directors of Provident Bancorp, Inc. (NASDAQ:PVBC) and Provident Bank.
Mr. Gragnolati holds a bachelor’s degree in Health Systems Analysis from the University of Connecticut, an MBA from Western New England College, and an Executive Leadership Certificate from the JFK School at Harvard University.
- Mr. Royal Hansen
Royal Hansen is the Vice President of Engineering at Google. Most recently, he led the Privacy, Safety and Security team, which is the central engineering function that builds and scales the foundational technology that keeps billions of people safe online.
Over the last several years, Royal and his team have focused on cybersecurity threat detection, analysis and counterabuse, building advanced AI/ML security technologies, and protecting privacy, identity and data. He continues to work on safety innovations across Google, so that users, governments, and society can benefit.
Prior to Google, Royal worked in the financial services industry, with leadership positions at American Express, Goldman Sachs, Morgan Stanley and Fidelity Investments. In these roles, he focused on protecting the security and integrity of the companies’ technology systems and the information they processed, managed regulatory risk and compliance standards, and enabled technical resilience through his teams’ work on disaster recovery and business continuity.
Royal began his career at cybersecurity startup @stake, acquired by Symantec. He holds a BA in Computer Science from Yale University, and was awarded a Fulbright fellowship in information sciences and Arabic language study, which he completed at the United Arab Emirates University.
- Ms. Niloofar Razi Howe
Ms. Niloofar Razi Howe is currently a senior operating partner at Energy Impact Partners, a venture capital fund investing in companies shaping the energy landscape of the future. She also serves on the boards of directors of Tenable, Inc., Morgan Stanley Banks, Pondurance (as Executive Chair), Recorded Future, Swimlane, and Tamr. She is a life member at the Council on Foreign Relations and a Fellow, International Security Initiative, at New America, a nonprofit, nonpartisan think tank. Previously, Ms. Howe served as chief strategy officer and senior vice president of Strategy and Operations at RSA, a global cybersecurity company, where she led corporate strategy, corporate development and planning, business development, global program management, business operations, security operations and federal business development. Prior to RSA, Ms. Howe served as the chief strategy officer of Endgame (acquired by Elastic), a leading enterprise software security company, where she was responsible for driving market and product strategy, as well as leading marketing, product management, corporate development, and planning. Ms. Howe spent twelve years leading deal teams in private equity and venture capital; first as a principal at Zone Ventures, an early-stage venture capital firm in Los Angeles, and then as managing director at Paladin Capital Group, a Washington, D.C.-based private equity fund focused on investing in next-generation security companies.
- Mr. Chris Inglis
Mr. Chris Inglis last served as the National Cyber Director within the Executive Office of the President. He was confirmed by Congress in June 2021. In this role he served as the President’s senior advisor for cyber issues and led the implementation of national cyber policy and strategy. He retired from the Department of Defense in January 2014 after 41 years of federal service, including 28 years at the National Security Agency (NSA) and 7.5 years as its Deputy Director. Mr. Inglis began his career at NSA as a computer scientist followed by tours in information assurance, policy, time-sensitive operations, and signals intelligence organizations. His military career includes over 30 years of service in the U.S. Air Force and Air National Guard, retiring as Brigadier General in 2006. Mr. Inglis holds the rating of Command Pilot. During his military service, he commanded units at the squadron, group, and joint force headquarters levels. After retirement from federal service, Mr. Inglis continued to serve in a variety of national security positions, including as a U.S. Naval Academy Looker Distinguished Visiting Professor for Cyber Studies, service as a special government employee on the Defense Science Board and advisory boards in support of US Strategic Command, the National Intelligence University, the Director of National Intelligence, and as a commissioner on the U.S. Cyberspace Solarium Commission. His private sector experience includes service on several public boards and as a managing director at Paladin Capital.
- Mr. Rahul Jalali
Rahul Jalali was appointed Executive Vice President and Chief Information Officer in May 2023, and joined Union Pacific Railroad in November 2020. In this position, Mr. Jalali serves as the organization’s technology thought leader, ensuring the enterprise vision to be the safest, and most efficient railroad is realized via the lens of tech-enabled innovation. This includes embracing cutting edge capabilities like artificial intelligence (AI), and thoughtful automation of business processes with technology. He is a leader passionate about team culture, driving meaningful evolution of both business outcomes and talent development in parallel. Mr. Jalali is an active member of the advisory committee of the US Cybersecurity and Infrastructure Security Agency (CISA). In this role Mr. Jalali serves to speak on behalf of the transportation industry and provide advice to keep the national critical infrastructure safe from cyber threats.
Prior to joining Union Pacific, Mr. Jalali spent 23 years with retail behemoth Walmart Inc. in increasing leadership roles, most recently as Corporate Vice President in the technology division serving Walmart International. In that role he specialized in developing world-class global technology solutions and organizations that could scale platforms, leverage data, and build quality products to optimize the business.
Mr. Jalali holds a bachelor’s degree in computer science from the Birla Institute of Technology and Science (BITS) in Pilani, India. He currently serves on the Board of Directors for Make a Wish Nebraska as well as Habitat for Humanity foundations. He and his family are passionate about involvement in the local community development projects with a focus on the well-being of children.
- Mr. Jim Langevin
Congressman Jim Langevin most recently served as a senior member of the House Armed Services Committee, on which he chaired the Cyber, Innovative Technologies, and Information Systems Subcommittee and served on the Subcommittees on Seapower and Projection Forces and Strategic Forces. He was a senior member of the Committee on Homeland Security and served on its Subcommittees on Intelligence & Counterterrorism and Cybersecurity, Infrastructure Protection, & Innovation.
Congressman Langevin was one of four legislators appointed to serve on the Cyberspace Solarium Commission, and he co-founded and co-chaired the Congressional Cybersecurity Caucus to increase awareness around the need for stronger cybersecurity. A national leader on securing our nation’s technology infrastructure against cyber threats, Congressman Langevin has authored or co-authored dozens of pieces of cybersecurity legislation, including most recently the National Cyber Director Act.
After serving as secretary for the state’s Constitutional Convention in 1986, Congressman Langevin won election to the Rhode Island House of Representatives, and in 1994, became the nation’s youngest Secretary of State. His leadership resulted in reforms to Rhode Island’s outdated election system and a landmark report documenting widespread violations of the state’s Open Meetings Law. He served in that role until winning election to Congress in 2000.
Congressman Langevin is the first quadriplegic to serve in the U.S. House of Representatives.
At the age of 16, Congressman Langevin was injured while working with the Warwick Police Department in the Boy Scout Explorer program. A gun accidentally discharged and a bullet struck Langevin, leaving him paralyzed. The tremendous outpouring of support from his community inspired Congressman Langevin to give something back and enter public service. He is driven by the belief that everyone deserves a fair opportunity to make the most of their talents.
Congressman Langevin graduated from Rhode Island College and earned a Master’s Degree in Public Administration from the Kennedy School of Government at Harvard University. He resides in Warwick, Rhode Island
- Ms. Cathy Lanier
Ms. Cathy Lanier serves as the Chief Security Officer (CSO) for the National Football League (NFL). As the league’s CSO, Ms. Lanier supervises all operations and activities of the NFL security department. She oversees coordination with the league office and all 32 clubs, in addition to working with federal, state, and local law entities to ensure the security of the NFL’s venues, fans, players, staff and infrastructure. She acts as the primary supervisor of investigative programs, event security (including the Super Bowl) and international games, game integrity programs, and department administration. Prior to serving in her current role as Senior Vice President and Chief of Security at the NFL, Lanier held the position of Chief of Police with the Washington, D.C. Metropolitan Police Department (MPD) from 2007 to 2016. Lanier rose through the ranks of the MPD to earn various commendable honors including becoming the first female police chief of the nation’s capital, the first commanding officer of Homeland Security and Counter-Terrorism for D.C. Police, one of a small number of female chiefs in the nation at the time, and the longest serving chief on the D.C. force. When serving as Chief of Police, Ms. Lanier’s innovative strategies were credited with reducing violent crime in Washington, D.C. by 21 percent from 2007 to 2015 while the city’s population grew by 15 percent. Ms. Lanier is a graduate of the Federal Bureau of Information National Academy and the United States Drug Enforcement Administration’s Drug Unit Commanders Academy. She holds Bachelor's and Master’s Degrees in Management from Johns Hopkins University, and a Master's Degree in National Security Studies from the Naval Postgraduate School in Monterey, California.
- Mr. Doug Levin
Mr. Doug Levin is co-founder and director of the K12 Security Information eXchange (K12 SIX), a national non-profit dedicated solely to helping U.S. schools protect themselves from emerging cybersecurity threats. As a subsidiary of the Global Resilience Federation, K12 SIX leverages cross-sector information sharing experience and insights from the financial services, legal, manufacturing, and energy sectors to the benefit of the K-12 education sector. Mr. Levin brings over three decades of education and technology policy, research, and non-profit experience to the role. Previously, he served as executive director of the State Educational Technology Directors Association and—prior to that—in leadership roles with the American Institutes for Research and the National Association of State Boards of Education. In addition, he currently serves on the U.S. Department of Education K-12 Cybersecurity Government Coordinating Council (GCC) and has been recognized as one of the most influential people in education technology. He is a graduate of William & Mary and earned a master’s degree in Sociology from The George Washington University.
- Mr. Kevin Mandia
Mr. Mandia is the Founder of Mandiant and Former CEO of Mandiant, Google Cloud, he currently holds the position of Strategic Advisor at Google Cloud.
In 2004, Mr. Mandia founded Mandiant Corporation, a leading provider of cybersecurity incident management software and services. Following its acquisition by FireEye in 2013, Mandiant went on to become the core of FireEye’s highly successful cybersecurity business. From 2016 until the company’s acquisition by Google in September 2022, Mr. Mandia served as CEO and a member of the Board of Directors of FireEye and later, Mandiant, Inc., following its corporate name change.
Mr. Mandia began his cybersecurity career in the United States Air Force as a Computer Security Officer, and later as a Special Agent in the Air Force Office of Special Investigations. Mr. Mandia is a General Partner at Ballistic Ventures and serves as a member of the Cybersecurity Advisory Committee for the Cybersecurity and Infrastructure Security Agency since December 2021.Mr. Mandia is the Founder of Mandiant and Former CEO of Mandiant, Google Cloud, he currently holds the position of Strategic Advisor at Google Cloud.
In 2004, Mr. Mandia founded Mandiant Corporation, a leading provider of cybersecurity incident management software and services. Following its acquisition by FireEye in 2013, Mandiant went on to become the core of FireEye’s highly successful cybersecurity business. From 2016 until the company’s acquisition by Google in September 2022, Mr. Mandia served as CEO and a member of the Board of Directors of FireEye and later, Mandiant, Inc., following its corporate name change.
Mr. Mandia began his cybersecurity career in the United States Air Force as a Computer Security Officer, and later as a Special Agent in the Air Force Office of Special Investigations. Mr. Mandia is a General Partner at Ballistic Ventures and serves as a member of the Cybersecurity Advisory Committee for the Cybersecurity and Infrastructure Security Agency since December 2021.
- Mr. Ciaran Martin
Professor Ciaran Martin is Professor of Practice in the Management of Public Organizations. Prior to joining the School, Ciaran was the founding Chief Executive of the National Cyber Security Centre, part of the Government Communications Headquarters.
Professor Martin led a fundamental shift in the UK’s approach to cybersecurity in the second half of the last decade. He successfully advocated for a wholesale change of approach towards a more interventionist posture and this was adopted by the Government in the 2015 National Security Strategy, leading to the creation of the NCSC in 2016 under his leadership. The NCSC’s approach has been lauded for responding quickly to incidents and giving the British public clear and prompt advice on responding to them, putting previously classified information in the hands of industry so that companies can defend themselves more effectively, major improvements in automatic cybersecurity like countering brand spoofing and rapidly taking down malicious sites, and projecting the UK’s leadership in cybersecurity across the world. Mr. Martin’s work, which led to him being appointed Companion of the Order of the Bath for services to international and global cybersecurity in the 2020 New Year’s Honour’s list, has also been recognized and honored in the United States and elsewhere across the world.In addition to his work at Oxford, Professor Martin advises the Government of Australia on its cybersecurity strategy and is an adviser at Paladin Capital Ltd in Washington, D.C.
- Mr. Jeff Moss
Mr. Jeff Moss is the founder and President of DEF CON Communications, which organizes and manages the annual DEF CON information security conference. He is an internationally recognized expert in internet and information security. Since 2017, Mr. Moss has also served as a commissioner on the Global Council on the Stability of Cyberspace (GCSC). In 2016, Mr. Moss joined Richemont as a Director and a member of the Board’s Nominations and Strategic Security Committees. Between April 2011 and December 2013, Mr. Moss was the Chief Security Officer and for the Internet Corporation for Assigned Names and Numbers. Prior to creating Black Hat Briefings, Mr. Moss was a director at Secure Computing Corporation where he helped establish their Professional Services Department. He started his professional career at Ernst & Young, LLP in their Information System Security division. In 2013, Mr. Moss was appointed as a Nonresident Senior Fellow at the Atlantic Council, associated with the Cyber Statecraft Initiative, within the Brent Scowcroft Center on International Security. From 2009 through 2020, Mr. Moss was a member of the U.S. Department of Homeland Security Advisory Council.
- Ms. Nicole Perlroth
Ms. Nicole Perlroth spent a decade at The New York Times where she was the lead reporter on cybersecurity and digital espionage. Over her career she has reported on Russian hacks of nuclear plants, petrochemical plants, and elections; North Korean cyberattacks against movie studios, banks and hospitals; Iranian attacks on oil companies, banks and political campaigns; and hundreds of Chinese cyberattacks, including a months-long hack of The New York Times. She is the author of the New York Times bestselling book “This Is How They Tell Me The World Ends,” about the global cyber arms race. Ms. Perlroth was a member of the Council on Foreign Relations' Cyber Task Force. She now serves as an adviser to Ballistic, the venture capital firm, and a number of cybersecurity start-ups. She is a graduate of Princeton University, earned a master’s degree from Stanford University and is a guest lecturer at the Stanford Graduate School of Business.
- Mr. Ted Schlein
Mr. Schlein is executive chairman and founding partner at Ballistic Ventures and general partner at Kleiner Perkins. A Midas investor and leading expert on cybersecurity and enterprise software, Schlein has spent over 35 years helping to create transformative companies and has led Kleiner Perkins’ involvement in several successful investments including Alien Vault, Arcsight, CarbonBlack, Chegg, Internet Security Systems, LifeLock, Phantom Security, Mandiant, Oakley Networks, Segment and Shape Security.
Prior to Kleiner Perkins, Schlein served as Vice President, Enterprise Solutions at Symantec and led Symantec’s move into the software utilities market, launching its commercial antivirus solution that quickly emerged as the industry gold standard.
Mr. Schlein is the former chairman of the National Venture Capital Association (NVCA), is an active member of the CISA Cybersecurity Advisory Committee, Homeland Security Advisory Council and the NSA Advisory Board. Additionally, Mr. Schlein serves on the Board of Trustees at InQTel and the Board of Trustees of the University of Pennsylvania. He is regularly called onto advise government leaders as they navigate society’s digital infrastructure, providing perspectives on security technology, related investments, and market adoption trends. Mr. Schlein holds a B.A. degree in economics from the University of Pennsylvania.
- Mr. Robert Scott
Mr. Robert Scott is the Commissioner of the New Hampshire Department of Environmental Services, a position he has held since 2017 after having previously worked in the agency for 17 years. Between 2012 and 2017, Bob was Commissioner at the NH Public Utilities Commission. In 2016, he retired as a cyberspace operations officer with the Air National Guard after 30 years of military service, having commanded three Air Force squadrons in his military career.
Mr. Scott serves as cybersecurity advisor for critical infrastructure to Governor Christopher T. Sununu. In that role, he is Managing Director of the New England Utility Cybersecurity Integration Collaborative, serves on the State Cyber Threat Working Group, and oversees initiatives to enhance critical infrastructure cybersecurity, including for the energy sector, drinking water and wastewater treatment systems and dams. As Public Utilities Commissioner he served on the Board of Directors of the National Association of Regulatory Utility Commissioners and its Committee on Critical Infrastructure and co-chaired the New England Conference of Public Utilities Commissioners’ Subcommittee on Cybersecurity. He currently represents New England on the Environmental Council of the States workgroup to assist the states and EPA in implementing funding from the Bipartisan Infrastructure law for drinking water and wastewater infrastructure. He works closely with diverse stakeholders in addressing many major public health, environmental, and infrastructure challenges. Mr. Scott has a Bachelor of Science degree in mechanical engineering from Lehigh University.
- Ms. Suzanne Spaulding
Ms. Suzanne Spaulding is the Senior Advisor for Homeland Security and Director of the Defending Democratic Institutions Project at the Center for Strategic and International Studies. She also served as a member of the Cyberspace Solarium Commission (CSC) and now CSC 2.0. Ms. Spaulding served as Under Secretary for National Protection and Programs at the Department of Homeland Security, where she led the development and implementation of national policies for strengthening the security and resilience of critical infrastructure against cyber and physical risks, including the National Infrastructure Protection Plan and key presidential directives and executive orders. Ms. Spaulding also led security regulation of the chemical industry, biometrics and identity management, emergency communications, and the Federal Protective Service. As a member of the board of directors for the First Responder Network Authority, Ms. Spaulding helped oversee the complex and unprecedented effort to deploy the first nation-wide broadband network for public safety. She also served as Assistant General Counsel at Central Intelligence Agency, as chief counsel for the Senate and House intelligence committees, and as executive director for commissions on Weapons of Mass Destruction and terrorism. Outside of her government roles, Ms. Spaulding has worked in the private sector, including as Security Counsel for the Business Roundtable, and currently serves on a number of corporate and non-profit boards.
- Mr. George Stathakopoulos
Mr. George Stathakopoulos leads the Enterprise information security program at Apple, which protect Apple’s corporate assets, retail stores, and customer data. Prior to joining Apple, Mr. Stathakopoulos served as Vice President of Information Security and Corporate IT at Amazon. George’s organization built programs to protect Amazon and its customers, and was also responsible for IT infrastructure and other technology resources. He began his career in information security at Microsoft, where he served as General Manager of the Microsoft Security Response Center, responsible for product security.
- Mr. Kevin Tierney
Mr. Kevin Tierney is Chief Cybersecurity Officer and Vice President, responsible for all aspects of cybersecurity throughout General Motors. Mr. Tierney leads enterprise, product, and manufacturing cybersecurity programs, with a focus on security architecture, penetration testing, cyber risk management, incident response, vulnerability management, intelligence, awareness and training, and governance.
Prior to his current role, Mr. Tierney served as the Chief Product Cybersecurity Officer, where he led the team responsible for the developing and implementing security control strategies to reduce the risk associated with cybersecurity threats related to the vehicle and vehicle connected services. Under his leadership, General Motors launched the first security vulnerability disclosure program of any major automaker. He also served as Director, Vehicle Architecture Cybersecurity, where he led the team responsible for developing on-vehicle security protocols and requirements in addition to managing supply chain security. Mr. Tierney was also responsible for building one of the industry’s first internal red team penetration testing labs, with staff in Warren, Michigan and Tel Aviv, Israel.
Mr. Tierney serves as Vice-Chair of the Automotive Information Sharing & Analysis Center, an independent, non-profit organization which allows for sharing of threat and vulnerability information and creation of best practices within the industry.
Mr. Tierney holds a bachelor’s degree in Electrical Engineering from Rose-Hulman Institute of Technology, and master’s degrees in Systems Engineering from Purdue University and Business Administration from the University of Indiana.
- Mr. Alex Tosheff
Mr. Tosheff is a distinguished leader with over 25 years of business and technical leadership experience in the cybersecurity and technology industry. Most recently serving as the Senior Vice President and Chief Security Officer at VMware (acquired by Broadcom), he led all facets of cybersecurity, physical security, and enterprise resiliency on a global scale.
As the CSO at VMware, Mr. Tosheff led all aspects of cybersecurity in support of the company’s $65B market capitalization. In addition, he played a key role in shaping and executing the company's cybersecurity product strategy, helping to align investments to VMware's go-to-market. Mr. Tosheff led VMware through the COVID pandemic in his role as crisis management chair, coordinating efforts to ensure the safety and well-being of all employees globally, ensuring business continuity in support of VMware’s role in critical infrastructure.
Mr. Tosheff serves on the Board of Directors of Tenable, Inc., serving on both the Audit Committee and the Cyber Committee. He also serves as executive advisor to Zoom, Inc. and Material Security, Inc.
In recognition of his expertise and leadership in the cybersecurity domain, Mr. Tosheff was appointed to the Cybersecurity and Infrastructure Security Agency (CISA) Advisory Board by Director Jen Easterly in 2023. This voluntary role underscores his dedication and service in shaping national and global cybersecurity strategies and policies.
Mr. Tosheff's diverse career includes previous global leadership roles, including Chief Information Security Officer at PayPal, Inc. and BillMeLater, Inc. Prior to that, he served as a Venture Partner for St. Paul Venture Capital and held the position of Chief Technology Officer at Science Applications International Corporation (SAIC).
Mr. Tosheff holds a Bachelor of Science in Physics from California State University.
- Ms. Nicole Wong
Ms. Nicole Wong is the Principal of NWong Strategies, where she specializes in assisting high-growth technology companies and non-profit organizations to develop international privacy, content, and regulatory strategies. She previously served as Deputy U.S. Chief Technology Officer in the Obama Administration, focused on internet, privacy, and innovation policy. Prior to her time in government, Ms. Wong was Google’s Vice President and Deputy General Counsel, and Twitter’s Legal Director for Products. She is an internationally recognized expert on privacy and free expression, and frequently speaks on issues related to law and technology, including five appearances before the U.S. Congress. Ms. Wong serves on the boards of the Filecoin Foundation, an independent organization that stewards the growth of technologies for a decentralized web; the Open Technology Fund, an independent non-profit working to advance global internet freedom; The Markup, a non-profit investigative news organization covering technology; and the Mozilla Foundation, which promotes the open internet. She also currently serves as an advisor to the Albright Stonebridge Group, Future of Privacy Forum, Tech Talent Project, the Trust & Safety Professional Association, and WITNESS.