The CISA Cybersecurity Advisory Committee (CSAC) is comprised of 22 of the nation’s leading experts on cybersecurity, technology, risk management, privacy, and resilience, including a Chair and Vice Chair.
The biographies of the current CISA Cybersecurity Advisory Committee members are provided below.
Mr. Thomas A. Fanning (Chair)
Mr. Thomas A. Fanning is Chair, President, and CEO of Southern Company, the second largest utility company in the United States. Mr. Fanning has worked for Southern Company for more than 40 years and has held 15 different positions in eight different business units, including numerous officer positions with a variety of Southern Company subsidiaries in the areas of finance, strategy, international business development and technology. Elected by the board of directors in July 2010, he became president of Southern Company in August 2010, and assumed the additional responsibilities of chairman and CEO in December 2010. Mr. Fanning is co-chair of the Electricity Subsector Coordinating Council, which serves as the principal liaison between the federal government and the electric power sector to protect the electric grid from threats that could impact national security, including cyber and physical terrorism as well as natural disasters. He also collaborates with the Tri-Sector Executive Working Group, which was formed by the electricity, finance, and communications sectors to enhance national and economic security by developing a cross-sector strategic framework to address existential threats, risk and consequence management. His leadership in cybersecurity was recognized by the U.S. Senate with an appointment to the Cyberspace Solarium Commission, a group developing a protection strategy for the cyberspace interests of the United States. From 2012-2018, Mr. Fanning served on the board of directors of the Federal Reserve Bank of Atlanta and is a past chairman. He is also a past chairman of the Conference of Chairs of the Federal Reserve Banks and the Edison Electric Institute (EEI).
Mr. Ron Green (Vice Chair)
Mr. Ron Green is chief security officer for Mastercard, where he leads a global team that ensures the safety and security of the company's network, as well as internal and external products and services. He is responsible for corporate security, security architecture and engineering, cryptographic key management, business continuity, disaster recovery and emergency management. Mr. Green is a member of the company’s Management Committee. Mr. Green joined Mastercard in 2014 after serving as deputy chief information security officer at Fidelity Information Services (FIS). Prior to this position, he was director, Investigation and Protections Operations at Blackberry. Mr. Green also served as a senior vice president across several areas at Bank of America. He has extensive experience working with international and federal law enforcement agencies both as a special agent in the United States Secret Service and as an officer in the United States Army. With the Secret Service, Mr. Green worked protection and fraud investigations. He was one of the first agents to receive formal training on seizing and analyzing electronic evidence and worked on a number of international cyber-crime investigations. Mr. Green serves on the board of directors for SailPoint Technologies, chairs the Financial Services Sector Coordinating Council (FSSCC), and is a member of the U.S. Secret Service, Cyber Investigation Advisory Board. He holds a bachelor’s degree in mechanical engineering from the United States Military Academy at West Point, is a graduate of the FBI’s Domestic Security Executive Academy and holds a graduate certification in Information Assurance from George Washington University.
Mayor Steve Adler
Mr. Steve Adler is Austin’s 52nd Mayor, having won re-election in 2018 by 40 points in a field of 8 candidates. His top priorities include mobility, affordability, and equity for all Austinites. Mayor Adler is a Trustee of the United States Conference of Mayors, Past Chair of the Capital Area Metropolitan Planning Organization (CAMPO) policy board, and Vice President of the National Council of Democratic Mayors. While he’s been in office the City of Austin passed the largest mobility and affordable housing bonds in its history. The city raised its minimum city wage to $15 per hour, passed city-wide sick leave and second chance hiring protections. Still working on the homelessness challenge, the city has become one of a limited number of cities to achieve effective net zero veteran homelessness. The city has become a world leader on climate change action. Mayor Adler has received broad recognition for innovative leadership. Foreign Policy named him a Global reThinker and Living Cities included Mayor Adler on its list of 25 Disruptive Leaders (along with Facebook’s Mark Zuckerberg and author Ta-Nehisi Coates) to mark that organization’s 25th anniversary.
Ms. Marene Allison
Ms. Marene Allison currently serves as the Chief Information Security Officer for Johnson & Johnson, a position she has held since 2010. In this role, she is responsible for protecting the information technology systems and business data for one of the world’s largest healthcare companies. Prior to joining Johnson & Johnson, Ms. Allison served as Chief Security Officer for Medco. There, she was responsible for developing and implementing security strategy and maintaining IT and physical security for over 145 facilities. Ms. Allison also previously served as head of Corporate Security for Avaya, and Vice President of Loss Prevention and Safety for The Great Atlantic and Pacific Tea Company. She has worked as an FBI Special Agent, served in the U.S. Army, and graduated from West Point in the first class to include women.
Ms. Lori Beer
Ms. Lori Beer is the Global Chief Information Officer (CIO) of JPMorgan Chase & Co. and a member of the company's Operating Committee, responsible for the firm's technology systems and infrastructure worldwide. In this role, she manages a budget of more than $12 billion and over 53,000 technologists supporting JPMorgan Chase's retail, wholesale and asset and wealth management businesses. She also serves as the co-sponsor of the firm’s Access Ability Business Resource Group. Ms. Beer joined the firm in 2014 and was most recently the Chief Information Officer for the Corporate & Investment Bank (CIB). Prior to joining JPMorgan, she was Executive Vice President of Specialty Businesses and Information Technology for WellPoint, Inc., responsible for a $10 billion business unit which included WellPoint's Specialty Products. Ms. Beer serves as a Trustee of the University of Cincinnati Foundation Board and a member of the Teach for America New York Advisory Board. She has endowed scholarships at the University of Cincinnati and University of Dayton to help increase diversity in STEM careers.
Mr. Bobby Chesney
Mr. Bobby Chesney is the Dean of the University of Texas School of Law, where he also holds the James A. Baker III Chair in the Rule of Law and World Affairs. He is known internationally for his scholarship relating both to cybersecurity and national security. He founded and continues to guide the Integrated Cybersecurity Studies program at UT’s Strauss Center for International Security and Law (where he served as the director for many years), and is the author of a popular eCasebook on the legal, policy, and institutional aspects of that topic. He is a co-founder of Lawfare, the nation’s leading online source for analysis of national security legal issues, and he co-hosts the popular show The National Security Law Podcast. He is a member of the Cybersecurity Advisory Committee of the U.S. government’s Cybersecurity and Infrastructure Security Agency. Dean Chesney attended Harvard Law School and Texas Christian University, graduating both magna cum laude. He clerked on the United States District Court for the Southern District of New York and the United States Court of Appeals for the Second Circuit, and practiced law in the litigation department of David Polk & Wardwell. Before joining UT in 2008, he was a member of the faculty of Wake Forest University School of Law, where he won multiple teaching awards. He is from San Antonio.
Ms. Vijaya Gadde
Ms. Vijaya Gadde is Twitter’s legal, public policy, and trust and safety lead. Prior to joining Twitter in 2011, Ms. Gadde was senior director, legal at Juniper Networks; previously, for nearly a decade, she worked at Wilson Sonsini Goodrich & Rosati. Ms. Gadde serves on the Board of Trustees of NYU Law School and the Board of Directors of Mercy Corps, a global humanitarian aid and development organization, which partners with communities, corporations, and governments. Ms. Gadde is also a co-founder of #Angels, an investment collective focused on funding diverse and ambitious founders pursuing bold ideas. Ms. Gadde earned a J.D. from New York University School of Law and a B.S. in industrial and labor relations from Cornell University.
Ms. Niloofar Razi Howe
Ms. Niloofar Razi Howe is currently a senior operating partner at Energy Impact Partners, a venture capital fund investing in companies shaping the energy landscape of the future. She also serves on the boards of directors of Tenable, Inc., Morgan Stanley Banks, Pondurance (as Executive Chair), Recorded Future, Swimlane, and Tamr. She is a life member at the Council on Foreign Relations and a Fellow, International Security Initiative, at New America, a nonprofit, nonpartisan think tank. Previously, Ms. Howe served as chief strategy officer and senior vice president of Strategy and Operations at RSA, a global cybersecurity company, where she led corporate strategy, corporate development and planning, business development, global program management, business operations, security operations and federal business development. Prior to RSA, Ms. Howe served as the chief strategy officer of Endgame (acquired by Elastic), a leading enterprise software security company, where she was responsible for driving market and product strategy, as well as leading marketing, product management, corporate development, and planning. Ms. Howe spent twelve years leading deal teams in private equity and venture capital; first as a principal at Zone Ventures, an early-stage venture capital firm in Los Angeles, and then as managing director at Paladin Capital Group, a Washington, D.C.-based private equity fund focused on investing in next-generation security companies.
Mr. Kevin Mandia
Mr. Kevin Mandia is the Chief Executive Officer and a Director of Mandiant, formerly FireEye. Mr. Mandia was appointed FireEye CEO in June 2016 and joined the company’s Board of Directors in February 2016. He was previously President of FireEye from February 2015 until June 2016. Mr. Mandia joined FireEye as Senior Vice President and Chief Operating Officer in December 2013, when FireEye acquired Mandiant, the company he founded in 2004. Before Mandiant, Mr. Mandia was the Director of Computer Forensics at Foundstone (acquired by McAfee Corporation) from 2000 to 2003, and the Director of Information Security for Sytex (later acquired by Lockheed Martin) from 1998 to 2000. Mr. Mandia also served in the United States Air Force, where he was a computer security officer in the 7th Communications Group at the Pentagon, and a special agent in the Air Force Office of Special Investigations (AFOSI).
Mr. Jeff Moss
Mr. Jeff Moss is the founder and President of DEF CON Communications, which organizes and manages the annual DEF CON information security conference. He is an internationally recognized expert in internet and information security. Since 2017, Mr. Moss has also served as a commissioner on the Global Council on the Stability of Cyberspace (GCSC). In 2016, Mr. Moss joined Richemont as a Director and a member of the Board’s Nominations and Strategic Security Committees. Between April 2011 and December 2013 Mr. Moss was the Chief Security Officer and for the Internet Corporation for Assigned Names and Numbers. Prior to creating Black Hat Briefings, Mr. Moss was a director at Secure Computing Corporation where he helped establish their Professional Services Department. He started his professional career at Ernst & Young, LLP in their Information System Security division. In 2013 Mr. Moss was appointed as a Nonresident Senior Fellow at the Atlantic Council, associated with the Cyber Statecraft Initiative, within the Brent Scowcroft Center on International Security. From 2009 through 2020 Mr. Moss was a member of the U.S. Department of Homeland Security Advisory Council.
Ms. Nuala O'Connor
Ms. Nuala O’Connor is the Senior Vice President and Chief Counsel, Digital Citizenship at Walmart. She oversees the Digital Citizenship team responsible for providing advice across the company on issues related to privacy, use of data and data governance, use of emerging technologies, cybersecurity, and records management. Ms. O’Connor is a member of the President’s Inclusion Council, which focuses on advising, collaborating, and inspiring on issues and enterprise efforts to promote inclusive environments. Before joining Walmart, she served as the President and CEO of the Center for Democracy and Technology, a global nonprofit focused on digital civil liberties. In the private sector, Ms. O’Connor served as both Vice President of Compliance and Customer Trust and Associate General Counsel for Privacy and Data Protection at Amazon, was the Chief Privacy Leader at General Electric, and held both privacy leadership and legal counsel roles at DoubleClick. In the public sector, Ms. O’Connor served as the first Chief Privacy Officer at the U.S. Department of Homeland Security (DHS) where she founded the DHS privacy office and was responsible for groundbreaking policy development on the use and protection of personal information in national security and law enforcement settings. She also previously served as deputy director of the Office of Policy and Strategic Planning, and later as Chief Counsel for Technology at the U.S. Department of Commerce.
Ms. Nicole Perlroth
Ms. Nicole Perlroth spent a decade at The New York Times where she was the lead reporter on cybersecurity and digital espionage. Over her career she has reported on Russian hacks of nuclear plants, petrochemical plants, and elections; North Korea's cyberattacks against movie studios, banks and hospitals; Iranian attacks on oil companies, banks and political campaigns; and hundreds of Chinese cyberattacks, including a months-long hack of The New York Times. She is the author of the New York Times bestselling book “This Is How They Tell Me The World Ends,” about the global cyber arms race. Ms. Perlroth is the recipient of several journalism awards including best technology reporting by the Society of Business Editors and Writers. She is a graduate of Princeton University and earned a master’s degree from Stanford University.
Mr. Matthew Prince
Mr. Matthew Prince is co-founder and CEO of Cloudflare, a web infrastructure and security company. Today the company runs one of the world's largest networks, which spans more than 250 cities in over 100 countries, and is recognized by Inc. Magazine as one of the Best-Led Companies in America. Mr. Prince is a World Economic Forum Technology Pioneer, a permanent member of the Council on Foreign Relations, and a winner of the 2011 Tech Fellow Award. Prior to founding Cloudflare, he co-created Project Honey Pot, an open-source community of webmasters that monitors online fraud and abuse.
Mr. Ted Schlein
Mr. Ted Schlein is a General Partner at Kleiner Perkins and a leading expert on cybersecurity and enterprise software. The founding Chief Executive Officer of Fortify Software, Schlein has led Kleiner Perkins’ involvement in several successful investments including Alien Vault, Arcsight, CarbonBlack, Chegg, Internet Security Systems, IronNet, Phantom Security, Mandiant, Oakley Networks, Segment and Shape Security. Mr. Schlein serves on the board of directors of several companies including Apiiro, Area1 Security, Chegg, FullStory, Interos, Incorta, Inspirato, IronNet, Rebellion Defense, Reputation, Synack, Trusona and UJet. Prior to Kleiner Perkins, Mr. Schlein served as Vice President, Enterprise Solutions at Symantec and led Symantec’s move into the software utilities market, launching its commercial antivirus solution that quickly emerged as the industry gold standard. Mr. Schlein is the former chairman of the National Venture Capital Association (NVCA), the former president of the Western Association of Venture Capitalist and is the founder of DoD-sponsored DeVenCI program. He currently serves on the Board of Trustees of the University of Pennsylvania and the Dean’s Board of Advisors of the Engineering School at the University of Pennsylvania. Additionally, Mr. Schlein serves on the Board of Trustees at InQTel and frequently participates as an opinion leader in public, private and government forums, providing perspectives on security technology, related investments, and market adoption trends. Mr. Schlein holds a B.A. degree in economics from the University of Pennsylvania.
Mr. Stephen Schmidt
Stephen Schmidt is the Chief Security Officer for Amazon. He leads security engineering, product development, and regulatory programs. Mr. Schmidt joined Amazon in February 2008. From March 2010 to January 2022, he served as the Chief Information Security Officer for Amazon Web Services (AWS). Prior to joining Amazon, Mr. Schmidt had an extensive career at the Federal Bureau of Investigation (FBI), where he served as a senior executive. His responsibilities at the FBI included a term as acting Chief Technology Officer, Section Chief, responsible for the FBI’s technical collection and analysis platforms, and as a Section Chief overseeing the FBI’s Cyber Division components responsible for the technical analysis of computer and network intrusion activities.
Ms. Suzanne Spaulding
Ms. Suzanne Spaulding is senior adviser for homeland security and director of the Defending Democratic Institutions project at the Center for Strategic and International Studies (CSIS). She also serves as a member of the Cyberspace Solarium Commission. Previously, Ms. Spaulding served as Under Secretary for National Protection and Programs at the Department of Homeland Security (DHS), charged with strengthening cybersecurity and protecting the nation’s critical infrastructure. In this role she led the development and implementation of national policies for strengthening the security and resilience of critical infrastructure against cyber and physical risks, including the National Infrastructure Protection Plan and key presidential directives and executive orders. Ms. Spaulding also led security regulation of the chemical industry, biometrics and identity management, emergency communications, and the Federal Protective Service. As a member of the board of directors for the First Responder Network Authority, Ms. Spaulding helped oversee the complex and unprecedented effort to deploy the first nation-wide broadband network for public safety. Outside of her government roles, Ms. Spaulding has worked in the private sector, including as Security Counsel for the Business Roundtable, and currently serves on a number of corporate and non-profit boards.
Mr. Alex Stamos
Mr. Alex Stamos is working to improve the security and safety of the Internet through teaching and research as the Director of the Stanford Internet Observatory, a cross-disciplinary program studying the abuse of the internet. He also helps companies secure themselves as a Partner in the Krebs Stamos Group. He has served as Chief Security Officer at Facebook and Yahoo and was a co-founder of iSEC Partners. Mr. Stamos has investigated and responded to several historical events and has been called the “Forrest Gump of InfoSec” by friends. He is a member of the Aspen Cybersecurity and Information Disorder Commissions, Annan Commission on Elections and Democracy and advises NATO’s Cybersecurity Center of Excellence. He has spoken on six continents, testified in Congress, served as an expert witness for the wrongly accused, earned a BSEE from UC Berkeley and holds five patents.
Dr. Kate Starbird
Dr. Kate Starbird is an Associate Professor in the Department of Human Centered Design & Engineering and is a co-founder and current Faculty Director of the Center for an Informed Public at the University of Washington. She is also adjunct faculty at the Paul G. Allen School of Computer Science & Engineering and a data science fellow at the eScience Institute. Dr. Starbird’s research addresses human-computer interaction and the emerging field of crisis informatics — the study of how information and communication technologies are used during crisis events. Her research examines how people use social media to seek, share, and make sense of information after natural disasters (such as earthquakes and hurricanes) and man-made crisis events (such as acts of terrorism and mass shooting events). Her current focus is on the spread of disinformation in this context. Dr. Starbird’s research touches on broader questions about the intersection of technology and society—including the vast potential for online social platforms to empower people to work together to solve problems, as well as salient concerns related to abuse and manipulation of and through these platforms and the consequent erosion of trust in information.
Mr. George Stathakopoulos
Mr. George Stathakopoulos leads the Enterprise information security program at Apple, which protect Apple’s corporate assets, retail stores, and customer data. Prior to joining Apple, Mr. Stathakopoulos served as Vice President of Information Security and Corporate IT at Amazon. George’s organization built programs to protect Amazon and its customers, and was also responsible for IT infrastructure and other technology resources. He began his career in information security at Microsoft, where he served as General Manager of the Microsoft Security Response Center, responsible for product security.
Ms. Alicia Tate-Nadeau
Ms. Alicia Tate-Nadeau was appointed by Governor J.B. Pritzker to serve as the Illinois Homeland Security Advisor and Director of the Illinois Emergency Management Agency (IEMA) in January 2019. Ms. Tate-Nadeau brings more than three decades of experience in national security, emergency management, and public safety issues. Prior to her appointment to Director of IEMA, Ms. Tate Nadeau served as Executive Director of the Chicago Office of Emergency Management and Communications where she implemented and managed the third largest 9-1-1 call center in the nation. Ms. Tate-Nadeau spent more than three decades with the Illinois National Guard, retiring in 2017. Her time in the military included serving as the Assistant Adjutant General for the Illinois National Guard and concurrently as the Deputy Commanding General, Army National Guard, United States Army Maneuver Support Center of Excellence in Fort Leonard Wood, Missouri.
Ms. Nicole Wong
Ms. Nicole Wong is the Principal of NWong Strategies, where she specializes in assisting high-growth technology companies and non-profit organizations to develop international privacy, content, and regulatory strategies. She previously served as Deputy U.S. Chief Technology Officer in the Obama Administration, focused on internet, privacy, and innovation policy. Prior to her time in government, Ms. Wong was Google’s Vice President and Deputy General Counsel, and Twitter’s Legal Director for Products. She is an internationally recognized expert on privacy and free expression, and frequently speaks on issues related to law and technology, including five appearances before the U.S. Congress. Ms. Wong serves on the boards of the Filecoin Foundation, an independent organization that stewards the growth of technologies for a decentralized web; Friends of Global Voices, a non-profit organization dedicated to supporting citizen and online media projects globally; The Markup, a non-profit investigative news organization covering technology; and the Mozilla Foundation, which promotes the open internet. She also currently serves as an advisor to the AI Now Institute, the Albright Stonebridge Group, the Alliance for Securing Democracy, the Center for New American Security’s Digital Freedom Forum, Luminate, Refactor Capital, and WITNESS.
Mr. Christopher Young
Mr. Christopher Young is Executive Vice President of business development, strategy, and ventures at Microsoft. He is responsible for driving growth across the company by establishing strategic partnerships, setting corporate strategy, and identifying high impact investments through Microsoft’s corporate venture arm. Mr. Young is the former CEO of McAfee, LLC. Under his leadership, McAfee grew to protect mission-critical systems and data for more than two-thirds of the Global 2000 and more than 500 million consumers. Earlier in his career, Mr. Young led cybersecurity efforts at Cisco, RSA and AOL. He also led end user computing at VMware and cofounded the company Cyveillance. Mr. Young currently serves on the board of directors of American Express. He previously served as a member of the President’s National Security Telecommunications Advisory Committee. He has also been a board member of Snap Inc., Rapid7, and the Cyber Threat Alliance, and has served on the board of trustees of Princeton University.