About Us

Board Members

Executive Committee
      

 
Secretary Andrew Lee Andrew Lee
Chief Executive Officer
ESET North America 
 
At Large  Chris Boyer Chris Boyer
Assistant Vice President, Public Policy
AT&T Services, Inc.

 



Directors
William O'Connell William O'Connell
Chief Business Security Officer
ADP 
Ian Quinn Ian M. Quinn
Director, Outreach and Awareness, Global Information Security
Barclays 
Ed Hearst Ed Hearst
Vice President, U.S. Government Business Development
BlackBerry 
Anthony Grieco Anthony Grieco
Senior Director, Security and Trust Organization
Cisco 
Jim Janco

Jim Janco
Senior Director for Operational Compliance
Comcast Corporation

Paula Bruening Paula J. Bruening
Senior Counsel for Global Privacy Policy
Intel Corporation
Bill Rosenthal
 
Bill Rosenthal
Chief Executive Officer
Logical Operations
Christopher Krebs

 Christopher C. Krebs
Director of Cybersecurity Policy
Microsoft
Sami Nassar Sami Nassar
Vice President, Cybersecurity Solutions
NXP Semiconductors
 
Andy Steingruebl Andy Steingruebl
Director of Product and Ecosystem Security
PayPal   
Matt Little Matt Little
Vice President of Product Development
PKWARE
Janet Levesque Janet  Levesque
Chief Information Security Officer
RSA, the Security Division of EMC
Bill Leigher William Leigher (RADM-ret.)
Director, Government Cyber Solutions
Raytheon Intelligence, Information and Services 
Masha_Sedova  Masha Sedova
Senior Director, Trust Engagement
Salesforce 
Lance Spitzner
 
Lance Spitzner 
Director, SANS Securing The Human 
SANS Institute  
Carolyn Herzog  Carolyn Herzog
Chief Compliance Officer, Vice Pesident, Legal and Public Affairs
Symantec Corporation
 Carl Holshouser Carl Holshouser
Senior Director, Global Government Relations
 Visa
   

William O'Connell
Chief Business Security Officer
ADP

Bill O’Connell serves as vice president of global trust assurance for ADP, one of the world’s largest providers of business outsourcing and human capital management solutions. Mr. O'Connell leads a global team responsible for all client security assurance, vendor assurance and security communications, training and awareness.   

Prior to joining ADP, Bill led his own consulting practice and also worked for Deloitte, building and executing on strategic information security roadmaps for chief information security officers and chief information officers of global Fortune 500 firms. Additionally, Bill previously held several leadership roles across information technology domains. Bill has co-led a number of initiatives that received industry recognition and are considered best practice solutions. Two examples of the recognized work include a trusted platform security infrastructure initiative and the architecture of a client security portal. Both initiatives were recognized in industry as IDG© and ISE© Projects of the Year.

Bill holds B.S. and MBA degrees, both from the University of Maryland, holds numerous security and technology certifications, including CISA, CISSP, ITIL and PMP, and is an Ironman triathlete.   


Chris Boyer
Assistant Vice President, Public Policy
AT&T Services Inc.

Chris Boyer is assistant vice president of public policy at AT&T Services, Inc., where he is responsible for the company's policy positions and advocacy related to cybersecurity. Boyer also represents AT&T as its point of contact with the president's National Security Telecommunications Advisory Council (NSTAC) and serves as chair of the National Institute of Standards and Technology (NIST) Information Security and Privacy Advisory Board (ISPAB). Boyer is also the former vice-chair and a current member of the executive committee of the Communications Sector Coordinating Council (CSCC) and since 2009 has served on the board of directors of NCSA. He also serves on multiple working groups at the Federal Communications Commission's (FCC's) Communications Security Reliability and Interoperability Council (CSRIC). He holds a bachelor's degree in business administration from the University of Kansas and a master's in business administration from the University of Houston.


Ian M. Quinn
Director, Outreach and Awareness, Global Information Security
Barclays

At Barclays, an international banking and financial services company headquartered in London, Ian Quinn leads a global team responsible for outreach management, cybersecurity communications and training and awareness programs.

Prior to joining Barclays, Ian was a member of the U.S. Government Senior Executive Service, with more than 28 years of law enforcement experience in the second-largest federal criminal investigative agency in the United States and an expertise in leading global federal law enforcement programs and operations. Ian retired as the deputy assistant director for U.S. Immigration and Customs Enforcement, Homeland Security Investigations (HSI), Investigative Services Division and Cyber Crimes Center. He was the director of the HSI Cyber Crimes Center (C3), which combats transnational cybercrime and the criminal exploitation the internet both domestically and internationally. He holds a bachelor's degree in criminal justice from Michigan State University.


Ed Hearst
Vice President, U.S. Government Business Development
BlackBerry 

Ed Hearst has a distinguished career in government, law and global business. He is known as an expert on technology,telecommunications and international trade policy. Mr. Hearst joined BlackBerry in 2013 as vice president, government affairs, and now serves as vice president, U.S. government business development. Prior to working at BlackBerry, he led global government affairs at Sybase for 10 years, both when it was an independent company and following its acquisition by SAP. 

Mr. Hearst's extensive government experience includes the legislative and executive branches of the U.S. government as well as an independent regulatory agency. In particular, Mr. Hearst served as senior counsel to the U.S. House of Representatives Committee on Energy and Commerce, where his fields of responsibility included telecommunications, technology and international trade policy. Mr. Hearst also served as a senior attorney at the Federal Communications Commission (FCC), where he drafted telecommunications regulations. Mr. Hearst was also appointed to an executive branch position as senior policy advisor at the U.S. Department of State.

Mr. Hearst's private sector experience prior to joining Sybase was as vice president, worldwide business development and global trading web at Commerce One, a business-to-business e-commerce software company. He also practiced corporate, trade and regulatory law at Jones Day. 

Mr. Hearst is a Phi Beta Kappa and magna cum laude graduate of the University of California at Berkeley, where he received his B.A. and J.D. 


Anthony Grieco
Senior Director, Security and Trust Organization
Cisco

Anthony Grieco leads Cisco's Trust Strategy Office and is responsible for helping countries with security strategy and planning that ensure trust as they look to digitize key industries and government. Mr. Grieco leads efforts to build strong cybersecurity partnerships with customers, governments and partners globally to enable business growth and transformation by accelerating the use of trusted technology, development and implementation of secure processes, policies and culture.

Mr. Grieco is also responsible for Cisco's security and trust efforts related to the Internet of Things (IoT). Risk governance, next-generation architectures and working with the larger IoT ecosystem are all efforts focused on ensuring security, trust, data protection and privacy are core to the future of IoT. 

Mr. Grieco joined Cisco in January 1999, and he has held a variety of leadership roles in development engineering, product management, marketing and strategic planning. He is a trusted security advisor to industry and Cisco customers around the globe. 

Mr. Grieco holds a master's degree in electrical engineering from North Carolina State University and a bachelor's degree in electrical engineering from the University of Alabama, Birmingham.


Jim Janco
Senior Director for Operational Compliance
Comcast Corporation

Jim Janco has nearly twenty years of telecom related experience. He joined Comcast in July, 2003 after spending seven years in communications and media consulting with Accenture. As senior director for operational compliance, Jim is responsible for policy compliance for Comcast data and video products, which entails ensuring operational excellence, completeness and rigor in various delivery frameworks. In this role, Jim conducts user research and defines various policies for several programs, including Usage Based Billing, Comcast/ NBCU Content Protection and Comcast’s Digital Literacy/Parental Control initiatives. Jim also has responsibility for emerging policy areas such as Comcast’s sustainability program. In the area of data compliance, Jim maintains regulatory reporting responsibility for Comcast for such reports as Form 477 and Internet stand alone reporting to the FCC and oversees data reconciliation projects to ensure data accuracy for these highly visible reports. In these roles, Jim engages multiple stakeholders from within the Comcast and the related industries to ensure alignment of best practices and policy consensus.      

While at Comcast, Jim has enjoyed success in operations, product and policy roles. In the area of operations, Jim has managed the Network Abuse group, overseeing customer operations as well as the deployment of data intercept devices to support law enforcement orders. In the area of product development, Jim managed the product strategies for McAfee and Norton AntiVirus programs as well as the brand launch of Constant Guard, the Comcast online safety and security platform. 


Andrew Lee
Chief Executive Officer
ESET North America

Mr. Lee brings to ESET a unique blend of corporate and security expertise. Having served as chief research officer at ESET from 2004 to 2008, Lee was responsible for building ESET's reputation as a world-class research organization. Prior to accepting the role of CEO at ESET in January of 2011, Lee served as chief technology officer for K7 Computing, an antivirus software and internet security company, where he was responsible for all aspects of K7's technology, leading acquisitions and bringing new products to the market. More about Mr. Lee here


Paula J. Bruening
Senior Counsel for Global Privacy Policy
Intel Corporation

Paula J. Bruening is based in Washington, D.C., and coordinates privacy policy across Intel Corporation, bringing to her work extensive experience in government, advocacy and international organizations. Before joining Intel she was vice president for global policy at the Centre for Information Policy Leadership, where she focused on emerging technologies and innovative privacy solutions, including accountability, governance for big data and analytics and use-based models for data protection and management. She has also held positions at the Center for Democracy and Technology, where her portfolio spanned issues of privacy, free expression and online safety; the congressional Office of Technology Assessment, where she began her career in technology policy as a senior analyst; the U.S. Department of Commerce's National Telecommunications and Information Administration, where she served as a senior attorney advisor and advised the Clinton administration on a wide range of international internet governance issues; and the Organization for Economic Coopration and Development and APEC, where she served as a consultant. 

Ms. Bruening holds a B.A. from John Carroll University and a J.D. from Case Western Reserve University. 


Bill Rosenthal
Chief Executive Officer 
Logical Operations 

Bill Rosenthal returned to his roots by acquiring Logical Operations in April 2012 and currently serves as chief executive officer (CEO). Bill first joined Logical Operations in 1987 as VP of sales and marketing and became president in 1992. As president, he oversaw the leading supplier of computer training products worldwide and supervised the operations of Ziff-Davis University, the leading web-based computer skills site.  

As CEO, Bill has led the development of a robust portfolio of information security offerings. Through strategic partnerships with the top certifying bodies in the industry, including Cisco and CompTIA, Logical Operations has become a leader in the facilitation of instructor-led security training. Additionally, Bill has provided strategic direction in the development of Logical Operations’ own information security certification development.

Bill recognizes the need to increase awareness around security issues, and is seen as a thought leader in the information security training industry. From technical insights, to training delivery best practices, Bill regularly provides expert insight into the ways in which education can strengthen our information systems. 


Christopher C. Krebs
Director of Cybersecurity Policy
Microsoft 

Chris Krebs is a member of Microsoft's U.S. government affairs team in Washington, D.C. As director of cybersecurity policy, he leads Microsoft's U.S. policy work on issues related to cybersecurity and lawful access. Prior to joining Microsoft, Chris advised industry and federal, state and local government customers on a range of cybersecurity and risk management issues. He also served in the U.S. Department of Homeland Security, playing a formative role in a number of national and international risk management programs.


Sami Nassar
Vice President, Cybersecurity Solutions
NXP Semiconductors

Sami Nassar is an industry-recognized digital security expert, speaker and technologist dedicated to driving data security and privacy standards and solutions across industries, including solutions for mobile payments, the Internet of Things and connected cars. 

Sami leads NXP's cybersecurity solutions group. His diverse background has taken him around the globe, from founding startup companies in Silicon Valley to building and leading large international engineering and marketing teams with diverse cultural, functional and geographic backgrounds.

Prior to joining NXP Semiconductors, Mr. Nassar held key executive positions, among them general manager of the advanced solution group at Renesas, managing director of strategic marketing at Hitachi and managing director at Schlumberger (now Gemalto). 


Andy Steingruebl
Director of Product and Ecosystem Security
PayPal

As director of product and ecosystem security for PayPal, Andy Steingruebl leads a team focused on improving the security of internet protocols and internet security governance. Andy and his team also work to strengthen the security of PayPal's global products with an emphasis on improving both security and usability through a focus on research and innovation. PayPal processed $282 billion in payments in 2015.

Mr. Steingruebl worked in security for more than 18 years in a multitude of highly regulated environments, including healthcare and financial services. His background includes security management at a mid-sized software company, in the pharmaceutical division of a large healthcare company and at a research university.

Andy has a background in software security and both UNIX and network administration. He holds a bachelor’s degree in philosophy from the University of Chicago.


Matt Little
Vice President of Product Development
PKWARE 

Matt is a technologist at heart with more than a decade of experience in the IT industry. In his role as VP of product development, Matt oversees planning, development and lifecycle management for next-generation PKWARE offerings, including Viivo. Matt also plays a critical role in setting and driving product strategy and go-to-market activities for these products. Prior to his current role, Matt held jobs as MIS/IT director and IT manager for PKWARE. He has also worked for Compuware and Johnson Controls. Matt graduated from Marquette University with a bachelor’s degree in computer science. 


William Leigher (RADM-ret.)
Director, Government Cyber Solutions
Raytheon Intelligence, Information and Services 

William Leigher leads Raytheon Intelligence, Information and Services' government cyber solutions team, which works with the U.S. Department of Defense and federal civilian agency customers to solve their toughest cyber challenges. He has experience in securing enterprise networks on a global scale and developing methods for predicting and managing risks around areas of potential intrusion. During his 33-year career with the U.S. Navy, Leigher served as director of warfare integration for information dominance for the chief of naval operations and deputy commander for U.S. Fleet Cyber Command. He has worked in the areas of intelligence, cyberspace, electronic warfare and analytics. He has a degree in political science from the University of Maine and a master's in national security and strategic studies from the Naval War College.


Janet Levesque
Chief Information Security Officer
RSA, the Security Division of EMC 

In her role as chief information security officer at RSA, the Security Division of EMC, Janet spearheads the enterprise information security program and is responsible for maintaining a global risk strategy to determine acceptable levels of risk for the enterprise. 

Janet joined RSA after 25 years of progressive leadership experience in technical audit, information security and risk management domains. Most recently, she established the information security and compliance program at Aspect Software. She designed and built the information security program to support initial SOX, and PCI compliance mandates at Circles, a Sodexo company and wore several hats at an internet grocery delivery service during the dot com boom. Janet’s foundational years were spent in public accounting at Arthur Andersen assisting clients in financial services, consumer products, retail and high technology industries to improve business performance by managing risks associated with the deployment and use of technology.

She graduated from the University of Vermont with a Bachelor of Science and holds Certified Information Security Manager (CISM) and Certified Information Systems Auditor (CISA) 1993-­2003 designations.


Masha Sedova
Senior Director, Trust Engagement
Salesforce

Masha Sedova is an industry-recognized people-security expert, speaker and trainer focused on engaging people to be key elements of secure organizations. At Salesforce she has built a team that drives a secure mindset among all employees using user security behavior testing and data analytics paired with elements of gamification and positive psychology. The scope of her work runs the gamut from general awareness such as phishing and reporting activity to secure engineering practices by developers and engineers. She and her team have built security simulations, company-wide competitions and custom lab environments to drive effective learning of key security behaviors. Her efforts have culminated in a security program that is altering the way Salesforce's employees, customers and partners and large corporations approach security.

Prior to her work with Salesforce, Masha was the principal founder of Dymera Strategies Consulting, where she conducted social engineering and security awareness training for international companies and government agencies based on tools, techniques and methods of prominent cyber warfare actors. Masha has also worked for Northrop Grumman and BAE Systems as a cyber threat researcher.


Lance Spitzner
Director, SANS Securing the Human
SANS Institute


Lance Spitzner has more than 20 years of security experience in cyber threat research, awareness and training. He invented the concept of honeynets, founded the Honeynet Project and published three security books. Lance has worked and presented in more than 25 countries and helped more than 350 organizations plan, maintain and measure their security awareness programs. In addition, Lance is a serial tweeter (@lspitzner), avid blogger and works on numerous community security projects. Before working in information security, Mr. Spitzner served as an armor officer in the Army's Rapid Deployment Force and earned his master's in business administration from the University of Illinois. 


Carolyn Herzog
Chief Compliance Officer, Vice President, Legal and Public Affairs 
Symantec Corporation

Carolyn Herzog leads the following teams within Symantec's Legal and Public Affairs (LPA) Department: Office of Ethics and Compliance, Privacy Program Office, Litigation, Employment, Product Legal, Global Enterprise Go-To-Market, License Compliance, and Americas Sales and Services. Ms. Herzog moved to this position from her prior role as vice president and head of LPA for Symantec's Europe, Middle East and Africa region, based in the United Kingdom. Carolyn joined Symantec in December 2000, with the acquisition of AXENT Technologies, where she was general counsel and based in Washington, D.C.  Symantec is a global leader in cybersecurity, operating in more than 50 countries and providing products, managed cloud and technical services and support to consumers, small businesses, the public sector and the largest global organizations. 

Carolyn has served on the European Board of the Association of Corporate Counsel and is an advisor to IPWatch System Corporation. Before moving to the technology sector, she worked in the international development arena, both in the nonprofit sector and at the World Bank in Washington, D.C. She lives in the San Francisco Bay area with her husband and their two daughters. 


Carl Holshouser
Senior Director, Global Government Relations
Visa
Carl Holshouser handles a broad range of technology policy issues at Visa, including data security, privacy and cybersecurity.

Prior to joining Visa in 2013, Carl led all Washington, D.C. efforts for RCC Consultants, a global telecommunications, technology and engineering consulting firm. Before working at RCC, Carl handled data and cybersecurity and other technology policy issues at Textron Systems, a global defense and technology company. While at Textron, he led business development efforts for the company's data analysis software and cyber business opportunities with the government and its advocacy efforts on Capitol Hill. From 2007 until 2011, Carl was a principal at Capitol Partners, Inc., a Washington, D.C.-based government affairs firm. He handled budget, appropriations, defense and commerce issues on behalf of the firm's clients. Carl also served as a Capitol Hill staff member in the offices of U.S. Senator Kay Bailey Hutchison and U.S. Representative Lamar Smith. 

Carl is a native of San Antonio, TX, and graduated from the University of Texas at Austin with a Bachelor of Arts in government and communications, liberal arts honors and high university honors.