About Us

Board Members

Executive Committee
Chairman  William O'Connell William O'Connell
Chief Business Security Officer
ADP  
Vice Chairman Christopher Krebs Christopher C. Krebs
Director of Cybersecurity Policy
Microsoft
 
Secretary Keith Gordon Keith Gordon
Global Information Security
Bank of America 
Treasurer  Chris Boyer Chris Boyer
Assistant Vice President, Public Policy
AT&T Services, Inc.

 



Directors
Ian Quinn Ian M. Quinn
Director, Outreach and Awareness, Global Information Security
Barclays 
Ed Hearst Ed Hearst
Vice President, U.S. Government Business Development
BlackBerry 
Craig Goodwin 

Craig Goodwin
Vice President and Chief Information Security Officer
CDK Global
 

Anthony Grieco Anthony Grieco
Senior Director, Security and Trust Organization
Cisco  
Jim Janco

Jim Janco
Senior Director for Operational Compliance
Comcast Corporation

Andrew Lee Andrew Lee
Chief Executive Officer
ESET North America 
Ben Petrosky Ben Petrosky
Senior Policy Counsel, Public Policy & Government Relations
Google Inc. 
Eric Davis  Eric Davis
Senior Director, Product Management
LifeLock
Joe Mignano Joe Mignano
Vice President, Channels
Logical Operations
Ronald Green  Ron Green
Chief Security Officer
Mastercard
Sami Nassar Sami Nassar
Vice President, Cybersecurity Solutions
NXP Semiconductors
Andy Steingruebl Andy Steingruebl
Director of Product and Ecosystem Security
PayPal     
Matt Little Matt Little
Vice President of Product Development
PKWARE
 Janet Levesque Janet  Levesque
Chief Information Security Officer
RSA, The Security Division of EMC
Bill Leigher
 
William Leigher (RADM-ret.)
Director, Government Cyber Solutions
Raytheon Intelligence, Information and Services 
Lance Spitzner  Lance Spitzner 
Director, SANS Securing The Human 
SANS Institute
 Carl Holshouser Carl Holshouser
Senior Director, Global Government Relations
Visa  
   

William O'Connell
Chief Business Security Officer
ADP

Bill O’Connell serves as vice president of global trust assurance for ADP, one of the world’s largest providers of business outsourcing and human capital management solutions. Mr. O'Connell leads a global team responsible for all client security assurance, vendor assurance and security communications, training and awareness.   

Prior to joining ADP, Bill led his own consulting practice and also worked for Deloitte, building and executing on strategic information security roadmaps for chief information security officers and chief information officers of global Fortune 500 firms. Additionally, Bill previously held several leadership roles across information technology domains. Bill has co-led a number of initiatives that received industry recognition and are considered best practice solutions. Two examples of the recognized work include a trusted platform security infrastructure initiative and the architecture of a client security portal. Both initiatives were recognized in industry as IDG© and ISE© Projects of the Year.

Bill holds B.S. and MBA degrees, both from the University of Maryland, holds numerous security and technology certifications, including CISA, CISSP, ITIL and PMP, and is an Ironman triathlete.   


Chris Boyer
Assistant Vice President, Public Policy
AT&T Services Inc.

Chris Boyer is assistant vice president of public policy at AT&T Services, Inc., where he is responsible for the company's policy positions and advocacy related to cybersecurity. Boyer also represents AT&T as its point of contact with the president's National Security Telecommunications Advisory Council (NSTAC) and serves as chair of the National Institute of Standards and Technology (NIST) Information Security and Privacy Advisory Board (ISPAB). Boyer is also the former vice-chair and a current member of the executive committee of the Communications Sector Coordinating Council (CSCC) and since 2009 has served on the board of directors of NCSA. He also serves on multiple working groups at the Federal Communications Commission's (FCC's) Communications Security Reliability and Interoperability Council (CSRIC). He holds a bachelor's degree in business administration from the University of Kansas and a master's in business administration from the University of Houston.


Keith Gordon
Global Information Security
Bank of America

Keith Gordon leads Bank of America's cyber threat intelligence and customer protection (CTICP) team, responsible for leveraging threat intelligence to influence and establish industry-wide standards for cybersecurity. In addition, CTICP partners with communications and learning and development to deliver education and engagement opportunities that drive safer online behavior among internal and external stakeholders.

Keith began his career with the bank in 2003 in global information security supporting consumer banking technologies and focusing on technology risk, security and fraud. In 2010, he was appointed the security, fraud and identity executive, developing and managing authentication, security strategies and product development for consumer banking. Gordon left the bank in 2013 to take on a role as enterprise information security and IT risk management executive at Capital One and returned to Bank of America in August 2014 as the business information security officer for retail, preferred and small business and global wealth & investment technology and operations. He graduated from Anderson University with a Bachelor of Arts in marketing and mathematics. He lives in Charlotte, NC.
 


Ian M. Quinn
Director, Outreach and Awareness, Global Information Security
Barclays

At Barclays, an international banking and financial services company headquartered in London, Ian Quinn leads a global team responsible for outreach management, cybersecurity communications and training and awareness programs.

Prior to joining Barclays, Ian was a member of the U.S. Government Senior Executive Service, with more than 28 years of law enforcement experience in the second-largest federal criminal investigative agency in the United States and an expertise in leading global federal law enforcement programs and operations. Ian retired as the deputy assistant director for U.S. Immigration and Customs Enforcement, Homeland Security Investigations (HSI), Investigative Services Division and Cyber Crimes Center. He was the director of the HSI Cyber Crimes Center (C3), which combats transnational cybercrime and the criminal exploitation the internet both domestically and internationally. He holds a bachelor's degree in criminal justice from Michigan State University.


Ed Hearst
Vice President, U.S. Government Business Development
BlackBerry 

Ed Hearst has a distinguished career in government, law and global business. He is known as an expert on technology,telecommunications and international trade policy. Mr. Hearst joined BlackBerry in 2013 as vice president, government affairs, and now serves as vice president, U.S. government business development. Prior to working at BlackBerry, he led global government affairs at Sybase for 10 years, both when it was an independent company and following its acquisition by SAP. 

Mr. Hearst's extensive government experience includes the legislative and executive branches of the U.S. government as well as an independent regulatory agency. In particular, Mr. Hearst served as senior counsel to the U.S. House of Representatives Committee on Energy and Commerce, where his fields of responsibility included telecommunications, technology and international trade policy. Mr. Hearst also served as a senior attorney at the Federal Communications Commission (FCC), where he drafted telecommunications regulations. Mr. Hearst was also appointed to an executive branch position as senior policy advisor at the U.S. Department of State.

Mr. Hearst's private sector experience prior to joining Sybase was as vice president, worldwide business development and global trading web at Commerce One, a business-to-business e-commerce software company. He also practiced corporate, trade and regulatory law at Jones Day. 

Mr. Hearst is a Phi Beta Kappa and magna cum laude graduate of the University of California at Berkeley, where he received his B.A. and J.D. 


Craig Goodwin
Vice President and Chief Information Security Officer
CDK Global

A native of England, Craig Goodwin joined CDK with more than 15 years of experience leading security across both the public and private sectors. Craig started his career with British military intelligence and has more recently held CISO and CSO roles for various global companies, including Arriva Group PLC, Wolseley Group PLC and Monster Worldwide.

Craig’s global team comprises of all CDK’s security experts from around the world and will work closely with technology teams to manage cybersecurity for both customer-facing solutions and internal systems and work with facilities and business units to manage physical security and associate protection programs.

Craig brought to CDK extensive security experience and qualifications, including being a certified chief information security officer (CCISO) and a certified information systems security professional (CISSP). He lives in Fareham, England, with his wife Kerry and their two young children.  In his spare time, he is an avid runner, having competed this year in a number of Ultra-Marathons. He also coaches his son’s “Under 7’s” Soccer team.

Craig’s rare combination of business experience and expert security knowledge consistently allowing him to demonstrate the ability to position security as a business enabler and not simply a "cost center." An enigmatic and inspirational leader in the field, he is often called upon to represent his views in industry leading publications and through high profile speaking engagements.


Anthony Grieco
Senior Director, Security and Trust Organization
Cisco

Anthony Grieco leads Cisco's Trust Strategy Office and is responsible for helping countries with security strategy and planning that ensure trust as they look to digitize key industries and government. Mr. Grieco leads efforts to build strong cybersecurity partnerships with customers, governments and partners globally to enable business growth and transformation by accelerating the use of trusted technology, development and implementation of secure processes, policies and culture.

Mr. Grieco is also responsible for Cisco's security and trust efforts related to the Internet of Things (IoT). Risk governance, next-generation architectures and working with the larger IoT ecosystem are all efforts focused on ensuring security, trust, data protection and privacy are core to the future of IoT. 

Mr. Grieco joined Cisco in January 1999, and he has held a variety of leadership roles in development engineering, product management, marketing and strategic planning. He is a trusted security advisor to industry and Cisco customers around the globe. 

Mr. Grieco holds a master's degree in electrical engineering from North Carolina State University and a bachelor's degree in electrical engineering from the University of Alabama, Birmingham.


Jim Janco
Senior Director for Operational Compliance
Comcast Corporation

Jim Janco has nearly twenty years of telecom related experience. He joined Comcast in July, 2003 after spending seven years in communications and media consulting with Accenture. As senior director for operational compliance, Jim is responsible for policy compliance for Comcast data and video products, which entails ensuring operational excellence, completeness and rigor in various delivery frameworks. In this role, Jim conducts user research and defines various policies for several programs, including Usage Based Billing, Comcast/ NBCU Content Protection and Comcast’s Digital Literacy/Parental Control initiatives. Jim also has responsibility for emerging policy areas such as Comcast’s sustainability program. In the area of data compliance, Jim maintains regulatory reporting responsibility for Comcast for such reports as Form 477 and Internet stand alone reporting to the FCC and oversees data reconciliation projects to ensure data accuracy for these highly visible reports. In these roles, Jim engages multiple stakeholders from within the Comcast and the related industries to ensure alignment of best practices and policy consensus.      

While at Comcast, Jim has enjoyed success in operations, product and policy roles. In the area of operations, Jim has managed the Network Abuse group, overseeing customer operations as well as the deployment of data intercept devices to support law enforcement orders. In the area of product development, Jim managed the product strategies for McAfee and Norton AntiVirus programs as well as the brand launch of Constant Guard, the Comcast online safety and security platform. 


Andrew Lee
Chief Executive Officer
ESET North America

Mr. Lee brings to ESET a unique blend of corporate and security expertise. Having served as chief research officer at ESET from 2004 to 2008, Lee was responsible for building ESET's reputation as a world-class research organization. Prior to accepting the role of CEO at ESET in January of 2011, Lee served as chief technology officer for K7 Computing, an antivirus software and internet security company, where he was responsible for all aspects of K7's technology, leading acquisitions and bringing new products to the market. More about Mr. Lee here


Ben Petrosky
Senior Policy Counsel, Public Policy & Government Relations
Google Inc.

Ben Petrosky works on the public policy strategy team at Google, where he focuses on data governance, including leading Google's efforts on security and law enforcement. Prior to joining the public policy team, Ben was a product consultant for Nest Labs, Inc., where he counseled teams on wide-ranging issues, including internet law, privacy and intellectual property. From 2012 to 2014, he was a product counsel at Google focusing on consumer products, including Photos, Google+ and Gmail. Before his time at Google, Ben was in private practice in New York City at O'Melveny & Myers LLP. He lives in San Francisco and holds an A.B. in comparative political science and French language from Brown University and a J.D. from Columbia Law School.


Eric Davis
Senior Director, Product Management
LifeLock

Eric Davis is a senior director of product management at LifeLock, where he leads the secure development of new LifeLock products. An accomplished digital security, safety and user trust product management executive, Eric previously worked at Google, where he was responsible for protecting more than a billion users of Android apps and founded and led Google's anti-malvertising, trust and safety and Android security investigations and operations teams. Prior to his time at Google, Eric was the international trust and safety product manager at eBay and managed international product expansion at Netscape.

Eric holds a bachelor's degree from the University of California, Berkeley, and is the co-author of several security-related patents.


Joe Mignano
Vice President, Channels
Logical Operations

Joe Mignano first joined Logical Operations (then Element K) in 2011, serving in various marketing, program management and business development roles before joining the leadership team as vice president and general manager of training delivery. In this role, Joe expanded the training delivery business by developing urgency for security awareness training and built a team capable of delivering security awareness training on a large scale to meet customer demand.

As vice president of channels, Joe is responsible for demand generation and publicity efforts related to Logical Operations certification programs and developing channel partnerships aimed at introducing Logical Operations as a certification brand to new audiences. Joe’s team brings vendor-agnostic certifications to market covering a wide range of high-demand information technology skill areas, including cybersecurity, cloud computing, mobile applications programming, secure coding and virtualization.

Joe is passionate about helping organizations validate their cybersecurity awareness knowledge and ensuring organizations understand this responsibility is shared by the entire organization – not just the IT department.


Ron Green
Chief Security Officer
Mastercard

Ron Green leads a global team that ensures the safety and security of the Mastercard network and internal and external products and services. He is responsible for corporate security, architecture and engineering, security event management and incident response and also oversees cryptographic key management, business continuity, disaster recover and emergency management.

Mr. Green joined Mastercard in 2014 after serving as deputy chief information security officer at Fidelity Information Services, where he led a team responsible for North American information security operations, including security architecture and engineering programs, security testing and governance. Prior to this position, Mr. Green was director of investigation and protections operations at BlackBerry, where he was responsible for global cyber and physical investigations, security operations centers, network security architecture, technical surveillance countermeasures and threat intelligence programs. He also served as a senior vice president across several areas at Bank of America.

Mr. Green has extensive experience working with international and federal law enforcement agencies both as a special agent in the United States Secret Service and as an officer in the United States Army. With the Secret Service, Mr. Green worked protection and fraud investigations. He was one of the first agents to receive formal training on seizing and analyzing electronic evidence and worked on a number of international cybercrime investigations.

Mr. Green serves on several advisory councils, including the Financial Services/ Information Sharing and Analysis Center and the Overseas Security Advisory Council. He holds a bachelor’s degree in mechanical engineering from the United States Military Academy at West Point, is a graduate of the FBI’s Domestic Security Executive Academy and holds a graduate certification in information assurance from the George Washington University. 


Christopher C. Krebs
Director of Cybersecurity Policy
Microsoft 

Chris Krebs is a member of Microsoft's U.S. government affairs team in Washington, D.C. As director of cybersecurity policy, he leads Microsoft's U.S. policy work on issues related to cybersecurity and lawful access. Prior to joining Microsoft, Chris advised industry and federal, state and local government customers on a range of cybersecurity and risk management issues. He also served in the U.S. Department of Homeland Security, playing a formative role in a number of national and international risk management programs.


Sami Nassar
Vice President, Cybersecurity Solutions
NXP Semiconductors

Sami Nassar is an industry-recognized digital security expert, speaker and technologist dedicated to driving data security and privacy standards and solutions across industries, including solutions for mobile payments, the Internet of Things and connected cars. 

Sami leads NXP's cybersecurity solutions group. His diverse background has taken him around the globe, from founding startup companies in Silicon Valley to building and leading large international engineering and marketing teams with diverse cultural, functional and geographic backgrounds.

Prior to joining NXP Semiconductors, Mr. Nassar held key executive positions, among them general manager of the advanced solution group at Renesas, managing director of strategic marketing at Hitachi and managing director at Schlumberger (now Gemalto). 


Andy Steingruebl
Director of Product and Ecosystem Security
PayPal

As director of product and ecosystem security for PayPal, Andy Steingruebl leads a team focused on improving the security of internet protocols and internet security governance. Andy and his team also work to strengthen the security of PayPal's global products with an emphasis on improving both security and usability through a focus on research and innovation. PayPal processed $282 billion in payments in 2015.

Mr. Steingruebl worked in security for more than 18 years in a multitude of highly regulated environments, including healthcare and financial services. His background includes security management at a mid-sized software company, in the pharmaceutical division of a large healthcare company and at a research university.

Andy has a background in software security and both UNIX and network administration. He holds a bachelor’s degree in philosophy from the University of Chicago.


Matt Little
Vice President of Product Development
PKWARE 

Matt is a technologist at heart with more than a decade of experience in the IT industry. In his role as VP of product development, Matt oversees planning, development and lifecycle management for next-generation PKWARE offerings, including Viivo. Matt also plays a critical role in setting and driving product strategy and go-to-market activities for these products. Prior to his current role, Matt held jobs as MIS/IT director and IT manager for PKWARE. He has also worked for Compuware and Johnson Controls. Matt graduated from Marquette University with a bachelor’s degree in computer science. 


William Leigher (RADM-ret.)
Director, Government Cyber Solutions
Raytheon Intelligence, Information and Services 

William Leigher leads Raytheon Intelligence, Information and Services' government cyber solutions team, which works with the U.S. Department of Defense and federal civilian agency customers to solve their toughest cyber challenges. He has experience in securing enterprise networks on a global scale and developing methods for predicting and managing risks around areas of potential intrusion. During his 33-year career with the U.S. Navy, Leigher served as director of warfare integration for information dominance for the chief of naval operations and deputy commander for U.S. Fleet Cyber Command. He has worked in the areas of intelligence, cyberspace, electronic warfare and analytics. He has a degree in political science from the University of Maine and a master's in national security and strategic studies from the Naval War College.


Janet Levesque
Chief Information Security Officer
RSA, the Security Division of EMC 

In her role as chief information security officer at RSA, the Security Division of EMC, Janet spearheads the enterprise information security program and is responsible for maintaining a global risk strategy to determine acceptable levels of risk for the enterprise. 

Janet joined RSA after 25 years of progressive leadership experience in technical audit, information security and risk management domains. Most recently, she established the information security and compliance program at Aspect Software. She designed and built the information security program to support initial SOX, and PCI compliance mandates at Circles, a Sodexo company and wore several hats at an internet grocery delivery service during the dot com boom. Janet’s foundational years were spent in public accounting at Arthur Andersen assisting clients in financial services, consumer products, retail and high technology industries to improve business performance by managing risks associated with the deployment and use of technology.

She graduated from the University of Vermont with a Bachelor of Science and holds Certified Information Security Manager (CISM) and Certified Information Systems Auditor (CISA) 1993-­2003 designations.


Lance Spitzner
Director, SANS Securing the Human
SANS Institute


Lance Spitzner has more than 20 years of security experience in cyber threat research, awareness and training. He invented the concept of honeynets, founded the Honeynet Project and published three security books. Lance has worked and presented in more than 25 countries and helped more than 350 organizations plan, maintain and measure their security awareness programs. In addition, Lance is a serial tweeter (@lspitzner), avid blogger and works on numerous community security projects. Before working in information security, Mr. Spitzner served as an armor officer in the Army's Rapid Deployment Force and earned his master's in business administration from the University of Illinois. 


Carl Holshouser
Senior Director, Global Government Relations
Visa
Carl Holshouser handles a broad range of technology policy issues at Visa, including data security, privacy and cybersecurity.

Prior to joining Visa in 2013, Carl led all Washington, D.C. efforts for RCC Consultants, a global telecommunications, technology and engineering consulting firm. Before working at RCC, Carl handled data and cybersecurity and other technology policy issues at Textron Systems, a global defense and technology company. While at Textron, he led business development efforts for the company's data analysis software and cyber business opportunities with the government and its advocacy efforts on Capitol Hill. From 2007 until 2011, Carl was a principal at Capitol Partners, Inc., a Washington, D.C.-based government affairs firm. He handled budget, appropriations, defense and commerce issues on behalf of the firm's clients. Carl also served as a Capitol Hill staff member in the offices of U.S. Senator Kay Bailey Hutchison and U.S. Representative Lamar Smith. 

Carl is a native of San Antonio, TX, and graduated from the University of Texas at Austin with a Bachelor of Arts in government and communications, liberal arts honors and high university honors.