CSAC Members

CISA Cybersecurity Advisory Committee members

The CISA Cybersecurity Advisory Committee (CSAC) is comprised of 22 of the nation’s leading experts on cybersecurity, technology, risk management, privacy, and resilience, including a Chair and Vice Chair.

The biographies of the current CISA Cybersecurity Advisory Committee members are provided below.


Mr. Thomas A. Fanning (Chair)

Mr. Thomas A. (Tom) Fanning is chairman, president and chief executive officer (CEO) of Southern Company, America’s premier energy company. He has worked for Southern Company for more than four decades and has held 15 different positions in eight different business units, including numerous officer positions with a variety of Southern Company subsidiaries in the areas of finance, strategy, international business development and technology. Prior to his current role, Mr. Fanning served as the company’s chief operating officer.

In this role, he was responsible for Southern Company’s generation and transmission, engineering and construction services, research and environmental affairs, system planning and competitive generation business units and leading Southern Company’s efforts on business strategy. Mr. Fanning also previously served as the company’s chief financial officer (CFO), where he was responsible for the accounting, finance, tax, investor relations, treasury and risk management functions. Prior to his time as CFO, Mr. Fanning was president and CEO of Gulf Power.

In addition to his work with Southern Company, Mr. Fanning has served for nearly a decade as co-chair of the Electricity Subsector Coordinating Council, the principal liaison between the federal government and the electric power sector addressing threats to the electric grid. Mr. Fanning also serves on the Cyberspace Solarium Commission, a group tasked with developing a protection strategy for the cyberspace interests of the United States. From 2012-2018, Mr. Fanning served on the board of directors of the Federal Reserve Bank of Atlanta and is a past chairman of the Conference of Chairs of the Federal Reserve Banks and the Edison Electric Institute (EEI).

Mr. Fanning’s accolades include being named CEO of the Year at the S&P Global Platts Global Energy Awards and receiving EEI’s Distinguished Leadership Award, the American Football Coaches Foundation’s CEO Coach of the Year Award, and the Bobby Jones Award presented by the Atlanta Area Council of the Boy Scouts of America.


Mr. Ron Green (Vice Chair)

Mr. Ron Green is chief security officer for Mastercard, where he leads a global team that ensures the safety and security of the company's network, as well as internal and external products and services. He is responsible for corporate security, security architecture and engineering, cryptographic key management, business continuity, disaster recovery and emergency management. Mr. Green is a member of the company’s Management Committee. Mr. Green joined Mastercard in 2014 after serving as deputy chief information security officer at Fidelity Information Services (FIS). Prior to this position, he was director, Investigation and Protections Operations at Blackberry. Mr. Green also served as a senior vice president across several areas at Bank of America. He has extensive experience working with international and federal law enforcement agencies both as a special agent in the United States Secret Service and as an officer in the United States Army. With the Secret Service, Mr. Green worked protection and fraud investigations. He was one of the first agents to receive formal training on seizing and analyzing electronic evidence and worked on a number of international cyber-crime investigations. Mr. Green serves on the board of directors for SailPoint Technologies, chairs the Financial Services Sector Coordinating Council (FSSCC), and is chair of the U.S. Secret Service, Cyber Investigation Advisory Board. He holds a bachelor’s degree in mechanical engineering from the United States Military Academy at West Point, is a graduate of the FBI’s Domestic Security Executive Academy and holds a graduate certification in Information Assurance from George Washington University.


Mayor Steve Adler

Steve Adler is Austin’s 52nd Mayor, having won re-election in 2018 by 40 points in a field of 8 candidates. His top priorities include mobility, affordability, and equity for all Austinites. Mayor Adler is a Trustee of the United States Conference of Mayors, Past Chair of the Capital Area Metropolitan Planning Organization (CAMPO) policy board, and Vice President of the National Council of Democratic Mayors. While he’s been in office the City of Austin passed the largest mobility and affordable housing bonds in its history. The city raised its minimum city wage to $20 per hour, passed city-wide sick leave and second chance hiring protections. Still working on the homelessness challenge, the city has become one of a limited number of cities to achieve effective net zero veteran homelessness. The city has become a world leader on climate change action. Mayor Adler has received broad recognition for innovative leadership. Foreign Policy named him a Global reThinker and Living Cities included Mayor Adler on its list of 25 Disruptive Leaders (along with Facebook’s Mark Zuckerberg and author Ta-Nehisi Coates) to mark that organization’s 25th anniversary.


Ms. Marene Allison

Ms. Marene Allison currently serves as the Chief Information Security Officer for Johnson & Johnson, a position she has held since 2010. In this role, she is responsible for protecting the information technology systems and business data for one of the world’s largest healthcare companies. Prior to joining Johnson & Johnson, Ms. Allison served as Chief Security Officer for Medco. There, she was responsible for developing and implementing security strategy and maintaining IT and physical security for over 145 facilities. Ms. Allison also previously served as head of Corporate Security for Avaya, and Vice President of Loss Prevention and Safety for The Great Atlantic and Pacific Tea Company. She has worked as an FBI Special Agent, served in the U.S. Army, and graduated from West Point in the first class to include women.


Ms. Lori Beer

Lori Beer is the Global Chief Information Officer (CIO) of JPMorgan Chase & Co. and a member of the company's Operating Committee, responsible for the firm's technology systems and infrastructure worldwide. Ms. Beer manages a $14 billion budget and over 55,000 technologists supporting JPMorgan Chase's retail, wholesale and asset and wealth management businesses. She also serves as the co-sponsor of the firm's Access Ability Business Resource Group.

Ms. Beer joined the firm in 2014 and was most recently the Chief Information Officer for the Corporate & Investment Bank (CIB). Prior to joining the firm, she was Executive Vice President of Specialty Businesses and Information Technology for WellPoint, Inc., responsible for a $10 billion business unit which included WellPoint's Specialty Products.

Ms. Beer is a member of the Teach for America New York Advisory Board. She's also a member of the University of Cincinnati's Lindner College of Business Advisory Council and the University of Cincinnati Foundation Board of Trustees. She has endowed scholarships at the University of Cincinnati where she holds a Doctor of Commercial Science, honoris causa and the University of Dayton where she holds an honorary doctorate of science, to help increase diversity in STEM careers.

Ms. Beer has been named among the Most Influential Women in US Finance by Barron’s, the Most Powerful Women in Banking by American Banker and a Merit Award recipient by the Women's Bond Club. Ms. Beer has also been recognized as a Computerworld Premier 100 IT Leader and National Association for Female Executives Women of Excellence Health Care Champion.

Ms. Beer holds a Bachelor of Science degree in Computer Science from the University of Dayton.


Mr. Bobby Chesney

Mr. Bobby Chesney is the Dean of the University of Texas School of Law, where he also holds the James A. Baker III Chair in the Rule of Law and World Affairs.  He is known internationally for his scholarship relating both to cybersecurity and national security. He founded and continues to guide the Integrated Cybersecurity Studies program at UT’s Strauss Center for International Security and Law (where he served as the director for many years), and is the author of a popular eCasebook on the legal, policy, and institutional aspects of that topic.  He is a co-founder of Lawfare, the nation’s leading online source for analysis of national security legal issues, and he co-hosts the popular show The National Security Law Podcast. He is a member of the Cybersecurity Advisory Committee of the U.S. government’s Cybersecurity and Infrastructure Security Agency.  Dean Chesney attended Harvard Law School and Texas Christian University, graduating both magna cum laude. He clerked on the United States District Court for the Southern District of New York and the United States Court of Appeals for the Second Circuit, and practiced law in the litigation department of David Polk & Wardwell. Before joining UT in 2008, he was a member of the faculty of Wake Forest University School of Law, where he won multiple teaching awards. He is from San Antonio.


Ms. Vijaya Gadde

Ms. Vijaya Gadde most recently served as Twitter’s legal, public policy, and trust and safety lead. Prior to joining Twitter in 2011, Ms. Gadde was senior director, legal at Juniper Networks; previously, for nearly a decade she worked at Wilson Sonsini Goodrich & Rosati. Ms. Gadde serves on the Board of Trustees of NYU Law School and the Board of Directors of Mercy Corps, a global humanitarian aid and development organization, which partners with communities, corporations, and governments. Ms. Gadde is also a co-founder of #Angels, an investment collective focused on funding diverse and ambitious founders pursuing bold ideas. Ms. Gadde earned a J.D. from New York University School of Law and a B.S. in industrial and labor relations from Cornell University.

Ms. Niloofar Razi Howe

Ms. Niloofar Razi Howe is currently a senior operating partner at Energy Impact Partners, a venture capital fund investing in companies shaping the energy landscape of the future. She also serves on the boards of directors of Tenable, Inc., Morgan Stanley Banks, Pondurance (as Executive Chair), Recorded Future, Swimlane, and Tamr. She is a life member at the Council on Foreign Relations and a Fellow, International Security Initiative, at New America, a nonprofit, nonpartisan think tank. Previously, Ms. Howe served as chief strategy officer and senior vice president of Strategy and Operations at RSA, a global cybersecurity company, where she led corporate strategy, corporate development and planning, business development, global program management, business operations, security operations and federal business development. Prior to RSA, Ms. Howe served as the chief strategy officer of Endgame (acquired by Elastic), a leading enterprise software security company, where she was responsible for driving market and product strategy, as well as leading marketing, product management, corporate development, and planning. Ms. Howe spent twelve years leading deal teams in private equity and venture capital; first as a principal at Zone Ventures, an early-stage venture capital firm in Los Angeles, and then as managing director at Paladin Capital Group, a Washington, D.C.-based private equity fund focused on investing in next-generation security companies.


Mr. Kevin Mandia

Mr. Kevin Mandia is the Chief Executive Officer and a Director of Mandiant, formerly FireEye. Mr. Mandia was appointed FireEye CEO in June 2016 and joined the company’s Board of Directors in February 2016. He was previously President of FireEye from February 2015 until June 2016. Mr. Mandia joined FireEye as Senior Vice President and Chief Operating Officer in December 2013, when FireEye acquired Mandiant, the company he founded in 2004. Before Mandiant, Mr. Mandia was the Director of Computer Forensics at Foundstone (acquired by McAfee Corporation) from 2000 to 2003, and the Director of Information Security for Sytex (later acquired by Lockheed Martin) from 1998 to 2000. Mr. Mandia also served in the United States Air Force, where he was a computer security officer in the 7th Communications Group at the Pentagon, and a special agent in the Air Force Office of Special Investigations (AFOSI).

Mr. Jeff Moss

Mr. Jeff Moss is the founder and President of DEF CON Communications, which organizes and manages the annual DEF CON information security conference. He is an internationally recognized expert in internet and information security. Since 2017, Mr. Moss has also served as a commissioner on the Global Council on the Stability of Cyberspace (GCSC). In 2016, Mr. Moss joined Richemont as a Director and a member of the Board’s Nominations and Strategic Security Committees. Between April 2011 and December 2013 Mr. Moss was the Chief Security Officer and for the Internet Corporation for Assigned Names and Numbers. Prior to creating Black Hat Briefings, Mr. Moss was a director at Secure Computing Corporation where he helped establish their Professional Services Department. He started his professional career at Ernst & Young, LLP in their Information System Security division. In 2013 Mr. Moss was appointed as a Nonresident Senior Fellow at the Atlantic Council, associated with the Cyber Statecraft Initiative, within the Brent Scowcroft Center on International Security. From 2009 through 2020 Mr. Moss was a member of the U.S. Department of Homeland Security Advisory Council.


Ms. Nuala O'Connor

Nuala O’Connor is the SVP and chief counsel, digital citizenship, at Walmart. Nuala leads the company’s Digital Citizenship organization, which advances the ethical use of data and responsible use of technology. This team of lawyers, compliance professionals, policy experts, and technologists are responsible for policies and corporate programs in the fields of data privacy and data governance, digital identity, emerging technologies, including ethical AI and biometrics, and information management.

Before joining Walmart, Ms. O’Connor served as president and CEO of the Center for Democracy and Technology. In the private sector, Ms. O’Connor has served in a variety of privacy leadership and legal counsel roles at Amazon, GE and DoubleClick. In the public sector, Ms. O’Connor served as the first chief privacy officer at the U.S. Department of Homeland Security. She also served as deputy director of the Office of Policy and Strategic Planning, and later as chief counsel for technology at the U.S. Department of Commerce. She began her legal career in private practice at Sidley Austin, Venable and Hudson Cook.

Ms. O’Connor, who is originally from Belfast, holds a B.A. from Princeton University, an M.Ed. from Harvard University and a J.D. from Georgetown University Law Center. She lives in the Washington, D.C., area with her husband Peter Bass, their six children and their three dogs.

Ms. Nicole Perlroth

Ms. Nicole Perlroth spent a decade at The New York Times where she was the lead reporter on cybersecurity and digital espionage. Over her career she has reported on Russian hacks of nuclear plants, petrochemical plants, and elections; North Korean cyberattacks against movie studios, banks and hospitals; Iranian attacks on oil companies, banks and political campaigns; and hundreds of Chinese cyberattacks, including a months-long hack of The New York Times. She is the author of the New York Times bestselling book “This Is How They Tell Me The World Ends,” about the global cyber arms race. Ms. Perlroth was a member of the Council on Foreign Relations' Cyber Task Force. She now serves as an adviser to Ballistic, the venture capital firm, and a number of cybersecurity start-ups. She is a graduate of Princeton University, earned a master’s degree from Stanford University and is a guest lecturer at the Stanford Graduate School of Business.


Mr. Matthew Prince

Mr. Matthew Prince is co-founder and CEO of Cloudflare, an Internet infrastructure and security company. Today Cloudflare runs one of the world's largest networks, which spans more than 275 cities in over 100 countries and has been recognized by Inc. Magazine as one of the Best-Led Companies in America. Mr. Prince is a World Economic Forum Technology Pioneer, a permanent member of the Council on Foreign Relations, and a winner of the 2011 Tech Fellow Award. Prior to founding Cloudflare, he co-created Project Honey Pot, an open-source community of webmasters that monitors online fraud and abuse.


Mr. Ted Schlein

Mr. Ted Schlein is a general partner at Kleiner Perkins, and executive chairman and founding partner at Ballistic Ventures. Mr. Schlein has spent the last 35 years helping to create transformative companies. A Midas of investing, Mr.Schlein has served on over 50 public and private company boards, which include many of the world’s greatest cybersecurity companies. As a company leader, he was the founding CEO of Fortify Software, which was later acquired by Hewlett-Packard. Prior to Kleiner and Ballistic, Mr. Schlein served as vice president, Enterprise Solutions at Symantec. There he led the company’s earliest antivirus effort, which included a move into the software utilities market with the launch of a commercial antivirus solution that became the industry gold standard. Mr. Schlein is the former chairman of the National Venture Capital Association (NVCA), a national alliance advocating the role of venture investing in job creation, technology innovation, and economic development. He is also the former president of the Western Association of Venture Capitalists and the founder of DoD-sponsored DeVenCI program. He is an active member of the CISA Cybersecurity Advisory Committee, Homeland Security Advisory Council, NSA Advisory Board, the National Security Institute Advisory Board, and the Council on Foreign Relations, Independent Task Force on Cybersecurity. Additionally, Mr. Schlein serves on the Board of Trustees at InQTel, the Board of Trustees of the University of Pennsylvania and the Dean of Advisors of the Engineering School at the University of Pennsylvania and is regularly called on to advise government leaders as they navigate society’s digital infrastructure, providing perspectives on security technology, related investments, and market adoption trends. Mr. Schlein holds a B.A. degree in economics from the University of Pennsylvania.


Mr. Stephen Schmidt

Stephen Schmidt is the Chief Security Officer for Amazon. In his role, Mr. Schmidt leads Amazon’s security engineering teams, proactive security engagements, regulatory work, and security operations and response. Mr. Schmidt joined Amazon in February 2008. From March 2010 to January 2022, he served as the Chief Information Security Officer for Amazon Web Services (AWS). Prior to joining Amazon, Mr. Schmidt had an extensive career at the Federal Bureau of Investigation (FBI), where he served as a senior executive. His responsibilities at the FBI included a term as acting Chief Technology Officer, Section Chief, responsible for the FBI’s technical collection and analysis platforms, and as a Section Chief overseeing the FBI’s Cyber Division components responsible for the technical analysis of computer and network intrusion activities.


Ms. Suzanne Spaulding

Ms. Suzanne Spaulding is the Senior Advisor for Homeland Security and Director of the Defending Democratic Institutions Project at the Center for Strategic and International Studies (CSIS). She also served as a member of the Cyberspace Solarium Commission and now CSC 2.0. Ms. Spaulding served as Under Secretary for National Protection and Programs at the Department of Homeland Security (DHS), where she led the development and implementation of national policies for strengthening the security and resilience of critical infrastructure against cyber and physical risks, including the National Infrastructure Protection Plan and key presidential directives and executive orders. Ms. Spaulding also led security regulation of the chemical industry, biometrics and identity management, emergency communications, and the Federal Protective Service. As a member of the board of directors for the First Responder Network Authority, Ms. Spaulding helped oversee the complex and unprecedented effort to deploy the first nation-wide broadband network for public safety. She also served as Assistant General Counsel at CIA, as chief counsel for the Senate and House intelligence committees, and as executive director for commissions on WMD and terrorism. Outside of her government roles, Ms. Spaulding has worked in the private sector, including as Security Counsel for the Business Roundtable, and currently serves on a number of corporate and non-profit boards.


Mr. Alex Stamos

Mr. Alex Stamos is working to improve the security and safety of the Internet through teaching and research as the Director of the Stanford Internet Observatory, a cross-disciplinary program studying the abuse of the internet. He also helps companies secure themselves as a Partner in the Krebs Stamos Group. He has served as Chief Security Officer at Facebook and Yahoo and was a co-founder of iSEC Partners. Mr. Stamos has investigated and responded to several historical events and has been called the “Forrest Gump of InfoSec” by friends. He is a member of the Aspen Cybersecurity and Information Disorder Commissions, Annan Commission on Elections and Democracy and advises NATO’s Cybersecurity Center of Excellence. He has spoken on six continents, testified in Congress, served as an expert witness for the wrongly accused, earned a BSEE from UC Berkeley and holds five patents.


Dr. Kate Starbird

Dr. Kate Starbird is an Associate Professor in the Department of Human Centered Design & Engineering and is a co-founder and current Director of the Center for an Informed Public at the University of Washington. She is also adjunct faculty at the Paul G. Allen School of Computer Science & Engineering and a data science fellow at the eScience Institute. Dr. Starbird’s research addresses human-computer interaction and the emerging field of crisis informatics — the study of how information and communication technologies are used during crisis events. Her research examines how people use social media to seek, share, and make sense of information after natural disasters (such as earthquakes and hurricanes) and man-made crisis events (such as acts of terrorism and mass shooting events). Currently, she focuses on the spread of rumors and disinformation in this context. Dr. Starbird’s research touches on broader questions about the intersection of technology and society—including the vast potential for online social platforms to empower people to work together to solve problems, as well as concerns related to abuse and manipulation of and through these platforms and the consequent erosion of trust in information.


Mr. George Stathakopoulos

Mr. George Stathakopoulos leads the Enterprise information security program at Apple, which protect Apple’s corporate assets, retail stores, and customer data. Prior to joining Apple, Mr. Stathakopoulos served as Vice President of Information Security and Corporate IT at Amazon. George’s organization built programs to protect Amazon and its customers, and was also responsible for IT infrastructure and other technology resources. He began his career in information security at Microsoft, where he served as General Manager of the Microsoft Security Response Center, responsible for product security.


Ms. Alicia Tate-Nadeau

Ms. Alicia Tate-Nadeau was appointed by Governor J.B. Pritzker to serve as the Illinois Homeland Security Advisor and Director of the Illinois Emergency Management Agency (IEMA) in January 2019. Ms. Tate-Nadeau brings more than three decades of experience in national security, emergency management, and public safety issues. Prior to her appointment to Director of IEMA, Ms. Tate Nadeau served as Executive Director of the Chicago Office of Emergency Management and Communications where she implemented and managed the third largest 9-1-1 call center in the nation. Ms. Tate-Nadeau spent more than three decades with the Illinois National Guard, retiring in 2017. Her time in the military included serving as the Assistant Adjutant General for the Illinois National Guard and concurrently as the Deputy Commanding General, Army National Guard, United States Army Maneuver Support Center of Excellence in Fort Leonard Wood, Missouri.


Ms. Nicole Wong

Ms. Nicole Wong is the Principal of NWong Strategies, where she specializes in assisting high-growth technology companies and non-profit organizations to develop international privacy, content, and regulatory strategies. She previously served as Deputy U.S. Chief Technology Officer in the Obama Administration, focused on internet, privacy, and innovation policy. Prior to her time in government, Ms. Wong was Google’s Vice President and Deputy General Counsel, and Twitter’s Legal Director for Products. She is an internationally recognized expert on privacy and free expression, and frequently speaks on issues related to law and technology, including five appearances before the U.S. Congress. Ms. Wong serves on the boards of the Filecoin Foundation, an independent organization that stewards the growth of technologies for a decentralized web; Friends of Global Voices, a non-profit organization dedicated to supporting citizen and online media projects globally; The Markup, a non-profit investigative news organization covering technology; and the Mozilla Foundation, which promotes the open internet. She also currently serves as an advisor to the AI Now Institute, the Albright Stonebridge Group, the Alliance for Securing Democracy, the Center for New American Security’s Digital Freedom Forum, Luminate, Refactor Capital, and Tech Talent Project, the Trust & Safety Professional Association, and WITNESS.


Mr. Christopher Young

Mr. Christopher Young is Executive Vice President of business development, strategy, and ventures at Microsoft. He is responsible for driving growth across the company by establishing strategic partnerships, setting corporate strategy, and identifying high impact investments through Microsoft’s corporate venture arm. Mr. Young is the former CEO of McAfee, LLC. Under his leadership, McAfee grew to protect mission-critical systems and data for more than two-thirds of the Global 2000 and more than 500 million consumers. Earlier in his career, Mr. Young led cybersecurity efforts at Cisco, RSA and AOL. He also led end user computing at VMware and cofounded the company Cyveillance. Mr. Young currently serves on the board of directors of American Express. He previously served as a member of the President’s National Security Telecommunications Advisory Committee. He has also been a board member of Snap Inc., Rapid7, and the Cyber Threat Alliance, and has served on the board of trustees of Princeton University.

Was this webpage helpful?  Yes  |  Somewhat  |  No