Cybersummit Session Day 2: Promoting Security in the Software Supply Chain


12:10 - 12:50 pm - Promoting Security in the Software Supply Chain. Session Participants: Daniel Kroese - CISA, Allan Friedman - NTIA, Trey Herr - Atlantic Council, Kate Stewart - Linux Foundation,

Watch the Session!

Want more? Watch Day Two.

About The Speakers

Daniel Kroese, CISA

Speaker: Daniel Kroese, CISADaniel Kroese is CISA’s Deputy Assistant Director (A) for National Risk Management. In his leadership role within the NRMC and CISA, he focuses significant effort on public-private partnerships to enhance cybersecurity and infrastructure resilience. At the NRMC he has been actively involved in information and communications technology supply chain risk management efforts, 5G security and resilience initiatives, and the launch of the National Critical Functions construct to evolve understanding of cross-cutting risk to critical infrastructure. Prior to joining the NRMC, Daniel was Senior Advisor to Director Krebs at CISA. Daniel previously served as Chief of Staff to Congressman John Ratcliffe who chaired the Cybersecurity and Infrastructure Protection Subcommittee in the House of Representatives. Throughout these roles, Daniel has been on the front lines of important cybersecurity debates and has developed deep connections across industry and government alike.

Daniel is a graduate of the University of Pennsylvania, and a native of Seattle, WA.

Allan Friedman, NTIA

Speaker: Allan Friedman, NTIADr. Allan Friedman is Director of Cybersecurity Initiatives at National Telecommunications and Information Administration in the US Department of Commerce. He coordinates NTIA’s multi-stakeholder processes on cybersecurity, focusing on addressing vulnerabilities in embedded systems and across the software world. Prior to joining the Federal Government, Friedman spent over 15 years as a noted information security and technology policy researcher at Harvard’s Computer Science Department, the Brookings Institution and George Washington University’s Engineering School. He is the co-author of the popular text "Cybersecurity and Cyberwar: What Everyone Needs to Know," has a degree in computer science from Swarthmore College, and a Ph.D. in policy from Harvard University.

Trey Herr, Atlantic Council

Speaker: Trey Herr, Atlantic CouncilDr. Trey Herr is the Director of the Cyber Statecraft Initiative under the Scowcroft Center for Strategy and Security at the Atlantic Council. His team works on the role of the technology industry in geopolitics, cyber conflict, the security of the internet, cyber safety, and growing a more capable cybersecurity policy workforce. Previously, he was a Senior Security Strategist with Microsoft handling cloud computing and supply chain security policy as well as a fellow with the Belfer Cybersecurity Project at Harvard Kennedy School and a non-resident fellow with the Hoover Institution at Stanford University. He holds a PhD in Political Science and BS in Musical Theatre and Political Science.

Kate Stewart, Linux Foundation

Speaker: Kate Stewart, Linux FoundationKate Stewart is a Senior Director of Strategic Programs at the Linux Foundation. She is responsible for the Open Compliance programs.  Her focus is on embedded open source programs, and working with them to improve  best practices in security and support for use in safety critical applications. She has launched Real-Time Linux, ELISA, CHAOSS and Zephyr Project.  With over 30 years of experience in the software industry, she has held a variety of roles and worked as a developer in Canada, Australia, and the US and for the last 20 years has managed software development teams in the US, Canada, UK, India, and China.