CyberNextDC 2019

Washington, D.C.

Thursday, October 24, 2019
8:00 a.m. - 5:00 p.m. ET

The third annual CyberNextDC event will feature prominent members of the cybersecurity community as well as congressional and administration leadership who are actively engaged in cybersecurity policy issues. The event will also feature top policymakers, leading industry practitioners, and other experts discussing the current state of cybersecurity, fostering critical discussions among participants, and identifying forward thinking approaches to improve cybersecurity.

Keynote

Jeanette Manfra, Assistant Director, Cybersecurity and Infrastructure Security Agency, U.S. Department of Homeland Security
Ms. Manfra leads the Department of Homeland Security (DHS) mission of protecting and strengthening the nation’s critical infrastructure from cyber threats. Previously, Ms. Manfra served as Assistant Secretary for the Office of Cybersecurity and Communications (CS&C) for the National Protection and Programs Directorate (NPPD) before the agency became CISA on November 16, 2018. Prior to this position, Ms. Manfra served as Acting Deputy Under Secretary for Cybersecurity and Director for Strategy, Policy, and Plans for NPPD. Ms. Manfra also served as Senior Counselor for Cybersecurity to the Secretary of Homeland Security and Director for Critical Infrastructure Cybersecurity on the National Security Council staff at the White House.

Election Security: What State and Local Officials Want You to Know

This panel will provide a chance for policy makers and cybersecurity practitioners to hear directly from state and local election officials about what they need and, perhaps more importantly, what they don’t need in advance of the 2020 elections. Audience members will be able to engage directly with election experts and develop a better understanding of their needs and resource limitations.

 

Moderator:

Neil Jenkins, Chief Analytic Officer, Cyber Threat Alliance
Neil leads the CTA’s analytic efforts, focusing on the development of threat profiles, adversary playbooks, and other analysis using the threat intelligence in the CTA Platform. Previously, he served in various roles within the Department of Homeland Security, Department of Defense, and Center for Naval Analyses, where he spearheaded numerous initiatives tied to cybersecurity strategy, policy, and operational planning for both the public and private sectors.

 

Speakers:

Meagan Wolfe, Administrator, Wisconsin Elections Commission

Meagan Wolfe is the Administrator of the Wisconsin Elections Commission, serving as the state’s Chief Election Official. Meagan was appointed by the bi-partisan, six-member Commission in February of 2018 and unanimously confirmed by the Wisconsin State Senate in May of 2019 for a four-year term. Serving as an election security advocate and ambassador for the needs of Wisconsin’s clerks and voters remains her highest priority as the state prepares for the 2020 election cycle. A significant part of her job is ensuring that Wisconsin’s 1,922 local election officials (the most of any state) have the resources and technology they need to conduct elections. Meagan previously served as WEC’s Deputy Administrator, managing the teams that develop and maintain the statewide voter registration system, election security, and all other IT applications of the Commission. Meagan joined state service in 2011, starting in voter outreach and later leading the multi-year redesign of the MyVote Wisconsin voter information portal, a project driven by data collected from comprehensive usability and accessibility studies.

David Stafford, Supervisor of Elections, Escambia County, Florida

David Stafford has served as Escambia County Supervisor of Elections since his election in November of 2004. A graduate of the University of Florida, Stafford is the past president of the Florida State Association of Supervisors of Elections and current legislative chair of the National Association of Election Officials. Following the designation of elections as critical infrastructure by the Secretary of Homeland Security in early 2017, Stafford was asked to serve on the sector’s Government Coordinating Council as one of only nine local election officials nationally. He now serves on the executive committee of the GCG. He helped author the communications and information sharing protocols for threats and incidents affecting the election sector, which were formally adopted in 2018.

Lindsey Forson, Cybersecurity Program Manager, National Association of Secretaries of State

In this role, she manages the association’s information relationships related to cybersecurity issues in election administration and related to other functions of offices of Secretaries of State. She also collects and distributes cybersecurity information and resources for Secretaries of State and their IT staff, and she staffs the NASS Cybersecurity Committee. Forson has an MPA from Auburn University and is a PhD candidate in Auburn University’s graduate program in public administration & public policy with a research focus on security and emergency planning issues in US election administration.

Do you need Security to Have Privacy? A View of the Legislative Landscape

Nearly all major privacy laws and regulations – from the Gramm-Leach-Bliley Act to the European General Directive for Privacy Regulation – include express data security requirements. Yet, some members of Congress and other commentators have suggested that security provisions will only serve to make privacy legislation more difficult to pass while others suggest that they can’t vote for a bill without security.  What type of security is being discussed in these bills and how will they affect consumers?

 

Moderator:

Heather West, Head of Public Policy, Americas, Mozilla

Heather is a policy and tech translator, product consultant, and long-term internet strategist guiding the intersection of emerging technologies, culture, governments, and policy. Areas of focus include digital identity, data governance, data security, net neutrality, privacy, and intermediary liability protections in the digital age. At Mozilla, maker of the Firefox browser, Heather leads policy work for the Americas, with a global focus on data governance.

 

She works with stakeholders and policymakers in DC as well as global product and policy teams and was recognized as one of the 2014 Forbes 30 Under 30 in Law and Policy. She helped found the public policy team at CloudFlare, a website performance and security company, served as global and Federal privacy and security issue expert on Google’s public policy team, and started her career working on government technology, privacy, and identity management at the public interest group Center for Democracy and Technology.

Speakers: 

Harley Geiger, Director of Public Policy, Rapid7

Harley Geiger leads the company's policy engagement on cybersecurity, encryption, computer crime, exports, and digital trade issues. Prior to working at Rapid7, Geiger was Advocacy Director at the Center for Democracy & Technology (CDT), where he worked on issues related to government surveillance, privacy and computer crime. Prior to that, Geiger was Senior Legislative Counsel for U.S. Representative Zoe Lofgren of California, serving as lead staffer for technology policy. Geiger is an attorney and is CIPP/US certified.

Peter Lefkowitz, Chief Privacy & Digital Risk Officer, Citrix
Peter Lefkowitz is Chief Privacy & Digital Risk Officer at Citrix Systems.  Peter oversees legal, regulatory and enterprise risk associated with data, products and systems, as well as policy engagement on digital issues.  Prior to joining Citrix, Peter worked at GE, where he served as Chief Privacy Officer (Corporate) and then as Senior Data Rights Management Counsel (Digital) and at Oracle, where he was Vice President of Privacy and Security Legal and Chief Privacy Officer. Peter was the 2018 Chairman of the Board of the International Association of Privacy Professionals; he is a member of the Boston Bar Association Council and an Adjunct Professor at Boston College Law School. Peter holds degrees from Yale College and Harvard Law School.

Michelle Richardson, Director, Center for Democracy and Technology’s Privacy and Data Project
Michelle and her team advocates for policies and technical solutions that protect individual privacy, empower users, and advance social justice. Michelle has testified before Congress, advised government agencies, and frequently appears in national press. Her recent work has focused on consumer privacy, Internet of Things policy, cybersecurity, surveillance, and encryption. Michelle previously led the ACLU’s preeminent legislative campaigns against overreaching surveillance programs and served as a counsel for the House Judiciary Committee. She received her B.A. from the University of Colorado and her J.D. from American University, Washington College of Law. She currently serves as a Senior Fellow at George Washington University’s Center for Cyber and Homeland Security.    

Jessica Rich, Former Director, Bureau of Consumer Protection, Federal Trade Commission

Jessica Rich is one of the nation’s leading experts on privacy and consumer protection, with

years of experience drawn from government service, consumer advocacy, and private

practice. Notably, Rich served as Director of the FTC’s Bureau of Consumer Protection from 2013 to

2017, where she led hundreds of attorneys and investigators in the mission to protect

consumers from deceptive and unfair practices in the commercial marketplace.

Following her departure from the FTC, Rich served as Vice President of Advocacy for

Consumer Reports from 2017-2018, where she led the nonprofit’s consumer advocacy and

mobilization efforts. Rich started her career in private practice in New York City, and is a graduate of New York University Law School and Harvard University. Rich now provides independent consulting on a variety of consumer protection and privacy issues.

Keynote

Robert L. Strayer Deputy Assistant Secretary, Cyber and International Communications and Information Policy, U.S. Department of State
Robert L. Strayer is the Deputy Assistant Secretary for Cyber and International Communications and Information Policy.  In this capacity, he leads development of international cybersecurity, Internet, data, and privacy policy and related negotiations with foreign governments. He has led dozens of bilateral and multilateral dialogues with foreign governments’ foreign affairs and communications ministries.

 

Mr. Strayer was named by the President, as an Ambassador, to lead the 90-plus person U.S. delegation to the International Telecommunication Union (ITU) Plenipotentiary Conference in Dubai, United Arab Emirates in 2018, and served as vice-chair of the conference. He managed the successful election of first U.S. citizen to an ITU senior management position in more than two decades.  The United States also achieved successful, pro-innovation results on resolutions related to cybersecurity and emerging technologies.

Megan Stifel, Senior Policy Counsel, Global Cyber Alliance

Megan Stifel is Executive Director, Americas, at the Global Cyber Alliance. She previously served as Cybersecurity Policy Director at Public Knowledge. Megan is a Senior Fellow in the Atlantic Council’s Cyber Statecraft Initiative and a Visiting Fellow at George Mason University’s National Security Institute. Megan previously served as a Director for International Cyber Policy at the National Security Council, where she worked to expand the U.S. government's information and communications technology policy abroad, including in connection with cybersecurity, internet governance, bilateral and multilateral engagement, and capacity building. Prior to the NSC, Ms. Stifel served in the U.S. Department of Justice as Director for Cyber Policy in the National Security Division and as counsel in the Criminal Division’s Computer Crime and Intellectual Property Section. Ms. Stifel was previously in private practice, where she advised clients on sanctions and FCPA compliance. Before law school, Ms. Stifel worked for the U.S. House of Representatives Permanent Select Committee on Intelligence. She received a Juris Doctorate from the Maurer School of Law at Indiana University, and a Bachelor of Arts, magna cum laude, from the University of Notre Dame. She is a partner with Social Venture Partners Charleston.

Kristin Judge, CEO/President, Cybercrime Support Network

Kristin was elected to serve as a Washtenaw County Commissioner in 2008 and supported the U.S. Department of Homeland Security in growing cybersecurity outreach to state and local government officials. After elected office, she worked at the Center for Internet Security, focusing on connecting state and local governments to federal services and technology needed to improve cyber security.

As Director of Government Affairs at the National Cyber Security Alliance (NCSA), Kristin worked with Google, FTC, FBI, SBA, DHS, NIST, congressional leaders and other key stakeholders across the country to educate consumers and businesses how to protect sensitive data. To address the needs of cybercrime victims, Kristin founded the nonprofit Cybercrime Support Network (cybercrimesupport.org) and works with federal, state and local law enforcement and consumer protection agencies to help consumers and small businesses affected by cybercrime.  With their United Way partners, CSN has been awarded over $3M in DOJ federal grants to serve victims and is building the US “Cyber 911” to serve millions of cybercrime and online fraud victims.

Future of Federal Cybersecurity in Modernized Environments

This panel will discuss the more modern IT architectures that agencies are adopting and the types of security solutions that underpin those environments.  It will also cover how government wide security programs are adapting to support those more modernized IT ecosystems.


Moderator:

Ross Nodurft, Senior Director of Cybersecurity Services, Venable LLP
Ross counsels clients on issues related to risk management, government policy standards and regulatory compliance, and incident management. Having served as principal of risk management at a digital identity and cybersecurity firm and chief of the Office of Management and Budget's (OMB) Cyber Team in the White House, Ross has significant experience with advising clients on how to navigate issues dealing with cybersecurity policy, incident response, and incident recovery.

 

Speakers:

Chris Jensen, Federal Business Development Manager, Tenable

Chris Jensen has been active in Public Sector contracting for over 25 years and has achieved success in a broad range of leadership roles, including contract management, program management, business development and capture.  At Tenable, Chris’s responsibilities include leading Tenable Business Development support of the CDM Program.  Chris began his professional career as an officer in the U.S. Navy.  After leaving active service, he continued to serve in the U.S. Navy Reserve until his retirement in 2008.  A graduate of the U.S. Naval Academy, Chris also holds a J.D. from The George Washington University Law School. 

Ned Miller, MVISION Cloud Business Unit Executive for US Public Sector, McAfee
Ned Miller, a 30+ year technology industry veteran is responsible for McAfee’s MVISION Cloud Business Unit for the US Public Sector. In addition, he has served as the Chief Technology Strategist for the McAfee’s Public Sector Division. Mr. Miller primarily collaborates with government thought leaders to ensure that McAfee’s technologies and services align to government requirements and standards initiatives such as FedRAMP and the NIST Risk Management Frameworks. Mr. Miller strives to be a trusted advisor and guides customers towards creating positive outcomes and solving the most complex challenges facing cyber security and privacy professionals today.

Venice Goodwine, Chief Information Security Officer, U.S. Department of Agriculture
Ms. Goodwine serves as the Chief Information Security Officer for the US Department of Agriculture.  She has over 26 years of Information Technology experience spanning private industry, contracting, active and reserve military service, and the federal government.  Her experience includes leading large IT organizations, developing agency-wide strategy and policy, establishing governance, overseeing cybersecurity operations, executing IT acquisition, and program management. Prior to her current position, Ms. Goodwine served as a cyber advisor to the Marine Corps Systems Command leadership responsible for delivering capabilities to the USMC warfighter.  Her diverse roles include Commander of an Air Force Cyber Squadron, Lead Cyber Policy Analyst at Headquarters Air Force, Pacific Region Communications Planner, and USMC Program Manager/Regional Contracting Officer Representative.

Keynote

Congressman Will Hurd (R-Texas)
Will is the first member to serve the 23rd District of Texas in Congress for three consecutive terms in a decade. In 2017, Will was appointed by Speaker Ryan to serve on the House Permanent Select Intelligence Committee, where he serves as Ranking Member of the Subcommittee on Intelligence Modernization and Readiness. Will was also selected by Republican Leader Kevin McCarthy this year to serve on the House Appropriations Committee, where he is a member of the Subcommittees on Military Construction and Veterans Affairs along with Transportation, Housing and Urban Development.

 IoT: Managing Risk in a Connected World

Moderator:

Eric Wenger, Cybersecurity and Privacy Policy, Global Government Affairs, Cisco

Eric Wenger is a Director for Government Affairs and leads Cisco's cybersecurity public policy work globally. Eric came to Cisco from Microsoft, where he was Policy Counsel. He was a Trial Attorney in the Department of Justice's Computer Crime and Intellectual Property Section and a Special Assistant United States Attorney in DC’s Computer Hacking & Intellectual Property Unit. He served as an Attorney in the Federal Trade Commission's Bureau of Consumer Protection and an Attorney Advisor to then Commissioner Thomas B. Leary. He was also Assistant Attorney General in New York, where he started the first statewide law enforcement unit in the U.S. focused on e-commerce. Eric earned his undergraduate degree at Cornell University and graduated with Honors from George Washington University Law School.

Speakers:

Trevor Rudolph, Vice President, Global Digital Public Policy, Schneider Electric
Trevor Rudolph directs Schneider’s technology policy and regulatory affairs strategy in North America, Europe, and Asia.  Prior to joining Schneider, Rudolph served for five years as the first appointed Chief of the Cyber and National Security Division at the White House Office of Management and Budget.  Rudolph is a two-time winner of the Federal 100 Award.  As a former government official, Rudolph counsels global policymakers on crafting technology policy that balances the interests of both consumers and industry.  He is regularly quoted in Politico, Federal Computer Week, and Federal News Radio and has appeared on Al Jazeera English, Sky News, and the ABC show, the Bridge.

Adam Sedgewick, Senior IT Policy Advisor, NIST

Adam Sedgewick serves as Senior IT Policy Advisor at the NIST. In this role, he advises NIST and Department of Commerce leadership on cybersecurity and technology policy issues. In 2017, he served as Technology Policy Advisor in the Commerce Department’s Office of Policy and Strategic Planning. Previously, he was Senior Advisor to the Federal CIO Council. Sedgewick served as Professional Staff Member for the Senate Committee on Homeland Security and Governmental Affairs for nine years, handling cybersecurity and federal IT policy. He has twice received the Fed 100 award for his contributions to the Federal IT community and both BankInfoSecurity and GovInfoSecurity named him a “Top Ten Influencer.” In 2014 he was named one of Security Magazine’s Most Influential People in Security.

Dr. Amit Elazari, Director, Global Cybersecurity Policy, Intel

Amit is a Director, Global Cybersecurity Policy at Intel Corporation and a Lecturer at UC Berkeley’s School of Information. She graduated with her JSD (Doctor of Science of Law) from UC Berkeley School of Law. Her work on security, privacy and Intellectual Property law has been published in leading journals and presented in top conferences including USENIX Enigma, USENIX Security, DEF CON, RSA, BlackHat, and featured in the New York Times and Wall Street Journal. She graduated Summa Cum Laude from her LL.M. in IDC, Israel following the submission of a research thesis in the field of intellectual property law and standard-form contracts. She holds an LL.B. and a B.A. in Business Administration (Summa Cum Laude) from IDC.

Todd Carroll, Vice President of Cyber Operations, CybelAngel
Todd Caroll brings over 20 years of experience in the FBI’s cyber, counterintelligence, and counterterrorism branches. Caroll has been instrumental in evangelizing CybelAngel’s data leak detection technology throughout North America, and is responsible for managing the U.S. cyber operations unit. Prior to joining CybelAngel, Carroll served as the Deputy Special Agent in Charge of the FBI’s fourth largest field office, in Chicago. Carroll oversaw investigations related to cyber and physical security, threat intelligence, risk analysis, compliance, insider threat identification and mitigation strategy. Carroll holds four GIAC certifications in information and cyber security, an M.S. in Cyber Security from University of Maryland (UMUC), and a B.S. in Law Enforcement Administration from Western Illinois University. Carroll also graduated from Carnegie Mellon University’s CISO-Executive Education Program.

Keynote

Chris Krebs, Director, Cybersecurity and Infrastructure Security Agency, U.S. Department of Homeland Security

Christopher Krebs serves as the first director of the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA). Mr. Krebs was originally sworn in on June 15, 2018 as the Under Secretary for the predecessor of CISA, the National Protection and Programs Directorate (NPPD). Mr. Krebs was nominated for that position by President Trump in February 2018. Before serving as CISA Director, Mr. Krebs was appointed in August 2017 as the Assistant Secretary for Infrastructure Protection. In the absence of a permanent NPPD Under Secretary at the time, Mr. Krebs took on the role of serving as the Senior Official Performing the Duties of the Under Secretary for NPPD until he was subsequently nominated as the Under Secretary and confirmed by the Senate the following year.

Stalkerware: Is Enough Being Done to Prevent Technology Enabled Harassment and Domestic Violence?

When designed to operate in complete stealth mode, with no persistent notification to the device owner, stalkerware can give abusers, stalkers, and other perpetrators a robust tool to perpetrate harassment, monitoring, stalking, fraud, and abuse. This type of abuse can be terrifying, traumatizing, and raises significant safety and privacy concerns. This panel will discuss the availability of these apps, the use of them as a tool for abuse, and the steps government and industry can take to help combat the problem. 

Moderator:

Ari Schwartz, Managing Director of Cybersecurity Services, Venable LLP
A leading voice in national cybersecurity policy, Ari guides the establishment of cybersecurity consulting services for Venable and directs Venable's Cybersecurity Risk Management Group.  Ari assists organizations with understanding and developing risk management strategies, including implementation of the Cybersecurity Framework and other planning tools to help minimize risk. Ari also coordinates the Coalition for Cybersecurity Policy and Law, a group of leading cybersecurity companies dedicated to educating policymakers on cybersecurity issues and promoting a vibrant marketplace for cybersecurity technology solutions. Prior to joining Venable, Ari was a member of the White House National Security Council, where he served as special assistant to the president and senior director for cybersecurity. Ari also served in the Department of Commerce, where he advised the secretary on technology policy matters related to the National Institute of Standards and Technology (NIST), the National Telecommunications and Information Administration (NTIA), and the U.S. Patent and Trademark Office (USPTO).

Speakers:

Erica Olsen, Director, Safety Net, National Network to End Domestic Violence
Since joining National Network to End Domestic Violence (NNEDV) in 2007, Erica has advocated on behalf of survivors of gender-based violence by educating and advocating victim service providers, policymakers, and technology companies on issues of technology abuse, privacy, and victim safety. She has provided trainings to technologists, attorneys, law enforcement officials, victim advocates, and other practitioners in the United States and internationally.

Through the Safety Net Project, Erica works with private industry, state, and federal agencies and international groups to improve safety and privacy for victims in this digital age. She regularly provides consultation to leading technology companies on the potential impact of technology design and reporting procedures on survivors of abuse. She also provides technical assistance on technology safety to professionals working with survivors.

Erica’s prior work at the New York State Coalition Against Domestic Violence included writing curriculum and training statewide on a project focusing on the intersection of domestic violence and disabilities. Erica has a Masters in Social Work from SUNY Albany and a Certificate in Non-Profit Management from the Center for Women in Civil Society.

Laura-Kate Bernstein, Senior Counsel, Computer Crime and Intellectual Property, Department of Justice’s Criminal Division

Laura-Kate Bernstein is a senior counsel in the Computer Crime and Intellectual Property Section of the Department of Justice’s Criminal Division, where she prosecutes federal cybercrime and advises on policy issues related to emerging computer crime, specifically non-consensual pornography, sextortion, swatting, doxing, and cyber-facilitated hate crime.  Before she joined CCIPS, Laura-Kate clerked for the Honorable Scott W. Stucky of the United States Court of Appeals for the Armed Forces.  She holds a J.D. from Harvard Law School.

Jacqueline Connor, Attorney, Federal Trade Commission

Jacqueline Connor is an attorney in the Division of Privacy and Identity Protection at the Federal Trade Commission in Washington, D.C. She investigates and litigates violations of U.S. laws enforced by the Commission that govern the privacy and security of consumer information.  Ms. Connor served as a staff attorney on the FTC v. Wyndham Worldwide litigation and is currently working on various non-public investigations and consent negotiations.  She has investigated and resolved matters involving data security, privacy, the Child Online Privacy Protection Act, the Gramm-Leach-Bliley Act, and the Fair Credit Reporting Act.  Most recently, Ms. Connor was involved in the FTC’s settlement with Equifax Inc. Ms. Connor earned her BA from Georgetown University and her JD from Boston University School of Law.  

Kim Allman, Director, Government Affairs, Symantec

Kim Allman joined Symantec’s government affairs team following the acquisition of LifeLock and leads efforts on privacy and consumer cyber safety. Kim is a veteran of Capitol Hill and the state capitols and served six years in the Obama Administration leading government affairs efforts for the Corporation for National and Community Service. In addition. Kim ran the national state legislative programs for the Recording Industry Association of America (RIAA) and TechAmerica. Kim was the Pac Director and Government Affairs Manager for MCIWorldCom’s Southeast Region and Press Secretary for Congresswoman Louise Slaughter. Kim serves on the Board of the Identity Theft Resource Center.

Grant Schneider, Senior Director for Cybersecurity, National Security Council; and Federal Chief Information Security Officer, Office of Management and Budget

Senior Director for Cybersecurity Policy, National Security Council

Grant Schneider serves as the Federal Chief Information Security Officer (CISO) and Senior Director for Cybersecurity Policy within the National Security Council staff. In these roles, Mr. Schneider leads teams of cybersecurity experts who develop and oversee crosscutting policies to enhance the Nation's cybersecurity. Mr. Schneider and his staff seek to improve the Nation's cybersecurity in three ways: enhancing the overall defensive posture of Federal and Critical Infrastructure Cybersecurity; leveraging government-wide national capabilities to identify and mitigate threats to Federal cybersecurity; and effective information sharing and incident response.

Mr. Schneider played an instrumental role in the government-wide response to the OPM cybersecurity incidents in 2014 and 2015. Prior to joining the White House as Cybersecurity Adviser to the Federal Chief Information Officer in 2014, Mr. Schneider served as the Defense Intelligence Agency's CIO for seven years.

Closing Remarks:

Michael Daniel, President and CEO, Cyber Threat Alliance
Michael leads the CTA team and oversees the organization’s operations. Prior to joining the CTA in February 2017, Michael served from June 2012 to January 2017 as Special Assistant to President Obama and Cybersecurity Coordinator on the National Security Council Staff. In this role, Michael led the development of national cybersecurity strategy and policy and ensured that the US government effectively partnered with the private sector, non-governmental organizations, and other nations.