Government Security News
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Information <strong>Security</strong> Leadership<br />
Award winners<br />
Continued from page 7<br />
bridging the gap between standard<br />
course material and the daily reality<br />
of civil servants and DoD personnel.<br />
On Right: Award Presented by: Charles<br />
“Chuck” McGann, CISSP, CISM, IAM, Chief<br />
Cyber Strategist, CRGT, Manager of Corporate<br />
Information <strong>Security</strong>, U.S. Postal Service,<br />
Retired, (ISC)² U.S. <strong>Government</strong> Advisory<br />
Council Member<br />
Winner in Middle: Benjamin Bergersen, cloud<br />
cybersecurity program manager, MAX.gov<br />
Shared Services, U.S. Department of Education<br />
On Left: David Shearer, CISSP, PMP, (ISC)²<br />
Executive Director<br />
Process/Policy: Benjamin Bergersen,<br />
cloud cybersecurity program<br />
manager, MAX.gov Shared Services,<br />
U.S. Department of Education<br />
Bergersen utilized his expertise<br />
in the areas of governmentwide<br />
collaboration, building high<br />
performance teams, business process<br />
transformation, IT governance,<br />
strategy, enterprise architecture,<br />
information security and portfolio<br />
management to lead security transformation<br />
of cybersecurity business<br />
processes for MAX.gov Shared Services.<br />
His ability to coordinate dozens<br />
of staff, multiple major applications,<br />
hundreds of servers and over<br />
120,000 users employing the Federal<br />
Risk Authorization Management<br />
Program (FedRAMP) model<br />
resulted in MAX.gov becoming the<br />
first federal agency application and<br />
software-as-a-service agency to become<br />
FedRAMP authorized.<br />
Most Valuable Industry Partner:<br />
The CERT Coordinating Center,<br />
Vulnerability Research and Coordination<br />
team, Carnegie Mellon<br />
University Software Engineering<br />
Institute<br />
The team pioneered efforts in<br />
vulnerability research automation<br />
for existing and emerging computing<br />
domains that have significantly<br />
strengthened the larger US-CERT<br />
mission of improving information<br />
security and providing value to industry<br />
partners. The team deployed<br />
On Left: David Shearer, CISSP, PMP, (ISC)²<br />
Executive Director<br />
Winner on Right representing Team: The<br />
CERT Coordinating Center (CERT/CC)<br />
Vulnerability Research and Coordination<br />
team, Carnegie Mellon University Software<br />
Engineering Institute<br />
the Tapioca automated vulnerability<br />
discovery tool and applied it to the<br />
11,000 applications available on the<br />
Google Play Store. Within a period<br />
of several days, over 20,000 vulnerabilities—or<br />
15 percent of the total<br />
vulnerabilities identified in 2014—<br />
were discovered. These results are<br />
enabling this new community of<br />
developers and vendors of the platforms<br />
they use to adopt better security<br />
practices and increase the utility<br />
to the expanding universe of mobile<br />
devices.<br />
Up-and-Coming Information <strong>Security</strong><br />
Professional: Samuel A.<br />
Maroon, IT operations instructor,<br />
U.S. State Department<br />
Winner On Left: Samuel A. Maroon, IT operations<br />
instructor, U.S. State Department<br />
On Right: David Shearer, CISSP, PMP, (ISC)²<br />
Executive Director<br />
Maroon spends his spare time<br />
teaching and managing the Wounded<br />
Warrior Cyber Combat Academy,<br />
a program administered by<br />
the Federal IT <strong>Security</strong> Institute on<br />
behalf of the FITSI Foundation. Maroon<br />
has worked with more than 30<br />
injured veterans, volunteering 15-<br />
20 hours per week, to train veterans<br />
to help protect their country against<br />
cyber attacks. By engaging these<br />
male and female wounded warriors,<br />
he is tapping into a very talented<br />
and motivated resource pool to assist<br />
addressing the current shortage<br />
of skilled cybersecurity workers<br />
while helping to protect our national<br />
infrastructure.<br />
F. Lynn McNulty Tribute: W. Hord<br />
Tipton, CISSP, former executive<br />
director, (ISC)²<br />
Tipton was the first government<br />
CIO to obtain a Certified Information<br />
Systems <strong>Security</strong> Professional,<br />
helping to bring high-profile<br />
attention to the need for a more<br />
professionalized information security<br />
workforce. Throughout his<br />
career, Tipton drove support and<br />
advocated for federal government<br />
workforce initiatives such as the<br />
NICE Framework, DoD Directive<br />
8570 and reform of OPM’s 2210<br />
In Middle: Award presented by Corey Schou,<br />
Chairperson, Ph.D., CSSLP, Fellow of (ISC)²<br />
On Right: W. Hord Tipton, CISSP, former<br />
executive director, (ISC)2<br />
On Left: David Shearer, CISSP, PMP, (ISC)²<br />
Executive Director<br />
Job Series. He spearheaded<br />
major initiatives such as<br />
(ISC)²’s Global Academic<br />
Program and U.S.A Cyber<br />
Warrior Scholarships that<br />
are currently assisting the<br />
government in filling its cybersecurity<br />
workforce gap.<br />
Tipton has been instrumental<br />
in fostering the security<br />
education and certification<br />
of hundreds of thousands of<br />
individuals worldwide. He<br />
has dedicated his life to the<br />
advancement of the information<br />
security profession<br />
in the U.S. government and beyond,<br />
and is considered one of the most<br />
influential people in security.<br />
The U.S.A. Cyber Warrior<br />
Scholarship recipient was also announced<br />
during the GISLA ceremony.<br />
This scholarship program was<br />
developed by the (ISC)² Foundation<br />
in collaboration with Booz Allen<br />
Hamilton to help close the government’s<br />
cyber workforce gap by providing<br />
cyber security career training<br />
to qualified veterans who served<br />
in the U.S. military.<br />
Scholarship recipient Wajahat<br />
Qureshi ended his active duty in the<br />
Navy in 2007.He has served with<br />
Navy Reserve Command, and in<br />
2013 was named Sailor of the Year.<br />
His career goals include attaining<br />
his CISSP and earning a commission<br />
into the U.S. Navy Reserve as<br />
the information warfare designated<br />
officer.<br />
8 9<br />
On Left: David Shearer, CISSP, PMP, (ISC)² Executive<br />
Director<br />
On Right: Scholarship RECIPIENT: Wajahat Qureshi<br />
The winners were selected by<br />
a judging committee of senior information<br />
security experts from<br />
(ISC)2’s U.S. <strong>Government</strong> Advisory<br />
Council.<br />
For more information on the<br />
GISLA program, including selection<br />
criteria and eligibility requirements,<br />
visit www.isc2.org/gisla. For more<br />
information about the U.S.A. Cyber<br />
Warrior Scholarship, visit https://<br />
www.isc2cares.org.