CyberSecurity - 2 Years In Review

Panelists:

Dave Bowen - CIO, FAA

Darren Ash - CIO, NRC

Robert Carey - CIO, Navy

Jim E. Finch - Assistant Director, Cyber Division, FBI

Dean Turner - Director, Global Intelligence Networks, Symantec Corporation

Dr. Eric Cole - Chief Scientist, Lockheed Martin

Moderator

Jim Flyzik -Flyzik Group

Jim served over 27 years in the federal government. He served as Senior Advisor to Governor Ridge in the White House Office of Homeland Security (OHS). He provided advice to OHS on the National Strategy and Information Management in support of the OHS mission. From February 1998 until December 2002, Jim also served as the Vice Chair of the Federal Government CIO Council overseeing numerous governmentwide IT initiatives. He was also a member of the President's Critical Infrastructure Protection Board.

Prior to this, from August 1997 until April 2002, Jim was the Deputy Assistant Secretary for Information Systems and Chief Information Officer (CIO) for the Department of the Treasury. He provided oversight, strategic planning and management direction on over $3.0 billion in annual information technology and information infrastructure programs within Treasury and its fourteen Bureaus. Jim also served as the Acting Assistant Secretary for Management for the Treasury Department from January 20, 2001 until February 8, 2002. In that role he provided oversight of all Treasury bureaus and served as the principal policy advisor to the Secretary and Deputy Secretary on matters involving the internal management of the Department and its bureaus. Jim received the Secretary Certificate of Appreciation on February 12, 2002 for his efforts during this transition period.

Prior to his Treasury positions, Jim worked for 15 years at the U.S. Secret Service where he held key IT management positions, including the Chief of the Communications Division, providing world class telecommunications in support of Secret Service tactical and operational requirements.

Jim has extensive public speaking experience and frequently serves as a featured speaker at industry events. He has developed, and currently teaches part-time, a graduate level course on Information Systems Security and Risk Assessment at the University of Maryland. Jim was given the Stanley J. Drazek Excellence in Teaching Award in 1998 by the University of Maryland.

Jim has an undergraduate degree in Business Administration and Computer Science and a Masters of Business Administration (MBA) from the University of Maryland with an area of concentration in Information Systems Management.

Prior to his Blue Shield position, Mr. Bowen was Senior Vice President for Information Management and CIO of Catholic Healthcare West (CHW), the 5th largest healthcare delivery system in the United States. He was responsible for CHW's Information Management and Telecommunications resources for CHW's 46 hospitals, located throughout California, Arizona, and Nevada. He managed an operating budget of over $90 million and an annual capital budget of $ 50 million. He also managed CHW's Year 2000 initiative with a total 3-year operating and capital budget of over $140 million.

Prior to joining CHW, Mr. Bowen was the Sr. Vice President for Information Systems and Chief Information Officer at the Baptist Health System, Inc., of Birmingham, Alabama, a 13-hospital system and the largest integrated healthcare delivery system in Alabama. He was also CIO of its wholly-owned HMO, Health Partners of Alabama.

Mr. Bowen is the former Board Chairman of the Coastside Family Medical Center, former Chairman of the Blue Cross Blue Shield Association IT Roundtable, and member of the Blue Cross Blue Shield Association Interplan Technology Advisory Council. He is a member of the American Institute of CPAs, the Hospital Information and Management Systems Society (HIMSS), and is a charter member of the College of Healthcare Information Management Executives (CHIME).

Mr. Bowen has an undergraduate degree in Economics from Ursinus College, Collegeville, Pennsylvania and a Masters Degree in Business with Distinction from the Johnson Graduate School of Business, Cornell University, Ithaca, New York. He is also a Certified Public Accountant, holds an FAA Commercial Pilot certificate, and has over 25 years of flying experience.

Prior to joining the NRC, Mr. Ash worked as Department of Transportation's (DOT) Associate Chief Information Officer for IT Investment Management. For close to two years, he led DOT's information assurance & security, privacy, enterprise architecture, capital planning, and information resource management activities. He began working at DOT in 2003, where he led their capital planning and enterprise architecture efforts, in response to the Clinger-Cohen Act and the E-Government Act of 2002.

Mr. Ash began his government career with the Internal Revenue Service where he supported the agency's modernization program, with a focus on project management, economic analyses, and capital planning. In 1998, he joined the Department of Treasury and supported the Chief Information Officer on all capital planning and IT budget matters.

Mr. Ash is a native Californian, he grew up in Napa where he graduated from Vintage High School. In 1990 he received his Bachelor of Arts International Studies from American University in Washington, D.C. He holds a Master of Public Administration from Syracuse University (1991), and a Master of Science in Information Systems Technology from George Washington University (2004). He graduated from the American Council for Technology/Industry Advisory Council's Partners Program (2005). Mr. Ash was named one of the Federal Computer Week's "Federal 100" in 2000 and received the Federal CIO Council's "Technology Leadership Certificate" in 2000 and 2001.

He was a leader in the development of a Federal CIO Council-sponsored publication, A Summary of First Practices and Lessons Learned in Information Technology Portfolio Management, (2002), and was contributor to another Federal CIO Council-sponsored publication, Smart Practices in Capital Planning, (2000).

For the past three years, Mr. Carey served as the DON Deputy Chief Information Officer (Policy and Integration). Reporting directly to the DON CIO, he served as the principal advisor to the CIO and was responsible for managing and leading the DON CIO staff, developing strategies for achieving IM and IT enterprise integration across the Department of the Navy.

Mr. Carey joined the staff of the DON CIO in February 2000, during which time he served as the DON CIO eBusiness Team Leader through June 2003. During this period he also served as the Director of the Department of the Navy Smart Card Office from February through September 2001.

Prior to his time with the DON CIO, Mr. Carey served in a variety of engineering and program management leadership positions within the Acquisition Community in the Undersea Warfare domain including Director of the Surface Ship Sonar Dome Program Office, Chief Engineer, and Deputy Program Manager of the Undersea Weapons Program Office. Mr. Carey began his career in Government service with the Department of the Army in October 1982 at the Aberdeen Proving Ground, MD, where he worked as a Test Director managing developmental and operational testing of small arms and automatic weapons.

Mr. Carey attended the University of South Carolina where, in 1982, he received a BS degree in Engineering. He earned a Master of Engineering Management degree from the George Washington University in 1995. He is a member of the Acquisition Professional Community and has been awarded the Department of the Navy Meritorious Civilian Service Award, the Department of the Navy Superior Civilian Service Award, as well as numerous other Performance Awards.

He is an active member of the United States Navy Reserve and holds the rank of Commander, Civil Engineer Corps.

Mr. Finch began his career with the FBI from March 1976 through November 1979 as a support employee. He returned to the FBI on June 8, 1984 as a special agent and has served in the Indianapolis, Cleveland, Houston, and Knoxville Divisions, as well two assignment tours at FBI Headquarters. His assignments include service as an investigative agent in the FBI's Violent Crimes and Organized Crime/Drug, White Collar Crimes, and Undercover Programs, and he served as a member of the Indianapolis SWAT team. Mr. Finch's FBI management assignments include service as a Supervisory Special Agent in the Office of Professional Responsibility at FBI Headquarters, where he investigated allegations of serious employee misconduct throughout the FBI; in the Houston Division, where he managed a drug squad with investigative responsibility for organized crime investigations; as a group supervisor in the Houston Division of DEA with an Enforcement Group comprised of FBI and DEA special agents; and in the Houston Division, where he created and managed the division's first National Infrastructure Protection Center Squad.

In 2001, Mr. Finch was appointed as Assistant Special Agent in Charge of the Knoxville Division, where he assumed management responsibility for all investigative and administrative programs. In 2003, Mr. Finch was promoted to Inspector at FBI Headquarters, where he was responsible for managing the inspections of FBI field offices, FBI Headquarters divisions, and FBI Legal Attaché offices outside the United States.

On November 25, 2004, Director Mueller selected Inspector Finch to be Special Agent in Charge of the Milwaukee Field Office.

On May 5, 2006, Mr. Finch was designated Assistant Director, Cyber Division.

Turner was one of the co-founders of SecurityFocus in 1999 and served as its Director of Operations and Content until the company's acquisition by Symantec in 2002. Prior to forming SecurityFocus, Turner worked for Network Associates as their Competitive Analysis Manager for their security product line.

Turner has a broad range of expertise from Operations and Network Security to Incident Analysis. He has spoken at various Defense and Security Conferences and maintains a research interest with the academic community on such issues as Information Warfare and Infrastructure Protection.

Turner has a bachelor's degree in political science and strategic studies from the University of Calgary, Canada and a master's degree in security studies from the University of Hull, U.K..

Dr. Cole has 15 years of demonstrated success working at leading information systems integration and security companies, including several executive positions. Throughout his career, he has focused on strategies for anticipating, preventing, and responding to enterprise-wide security challenges through perimeter defense, secure network design, vulnerability discovery, penetration testing, and intrusion detection systems.

Dr. Cole has served as Chief Scientist at Lockheed Martin, with responsibility for building and growing teams of multidisciplinary professionals in the application of advanced information technology skills. As Chief Scientist, he leads consulting, research, and development efforts that advance the state-of-the-art in information systems security. His teams consistently succeed in bridging the gap between traditional business and technology mindsets with unique, leading-edge security solutions. Dr. Cole is also a Lockheed Martin Fellow - an award the company makes only to the top 1% of its 140,000 work force. Cole spent ten years at the Central Intelligence Agency before joining The Sytex Group as Chief Technology Officer where he worked until the company was acquired by Lockheed Martin.

Dr. Cole earned a Ph.D. from Pace University (with a concentration in Information Security), and a Masters and BS in Computer Science from the New York Institute of Technology.

Dr. Cole is the author of many professional articles and 3 books: Hackers Beware, Hiding in Plain Site, Network Security Bible, and Insider Threat. He also holds faculty appointments at the Institute for Applied Network Security and the SANS Institute. He is a by-invitation member of the Common Vulnerability and Exposures Editorial Board and is an invited Member of the HoneyNet project. These accomplishments have positioned him as an internationally sought-after speaker on security topics, including for SANS Institute-sponsored presentations. Dr. Cole created several Government Information Assurance Counsel (GIAC) certification programs. He appears in the international Who's Who in Information Technology.