Judges
Lynn McNulty, CISSP
Director of Government Affairs for (ISC)²
Co-chair of the (ISC)² U.S. Government Advisory Board for Cyber Security
Mr. McNulty brings a wealth of information security management experience in government and private practice. During his 30-year career in the federal government, Lynn was Associate Director for Computer Security at the National Institute of Standards and Technology (NIST) where his duties included policy liaison for computer security issues between NIST and other federal agencies, the Congress, and the private sector. He also played a major role in implementing the provisions of the Computer Security Act of 1987. Prior to his role at NIST, Lynn held positions as the first Director of Information Systems Security at the State Department and Security Program Manager at the Federal Aviation Administration. Lynn has positively influenced information security policy regarding everything from export controls on commercial encryption products and critical infrastructure protection to the deployment of public key infrastructure.
Since 1995, Lynn has been a consultant providing government affairs, business development and information security policy consulting services to private and public sector clients. A former member of the (ISC)² Board of Directors, Lynn helped facilitate the establishment of the (ISC)² organization in 1989. He currently manages government affairs for (ISC)² and is a founding member and Co-Chair of the (ISC)² Government Advisory Board for Cyber Security, a volunteer group of 18 senior-level information security professionals from government and industry responsible for counseling (ISC)² on policies, trends and certifications within the public sector. He is also a member of the Information Security and Privacy Advisory Board established by the Federal Information Security Management Act.
Lynn has been awarded the Department of Commerce Silver Medal, the Department of State Superior Honor Award and has twice received the Federal 100 Award from Federal Computer Week. In June of 2007, Lynn was awarded the 2007 Colloquium Industry Award by the Colloquium for Information Systems Security Education (CISSE) for his outstanding leadership in industry relations with information assurance education. Most recently, Lynn was named one of only three individuals to receive the exclusive Fellow of (ISC)² designation, a distinguished honor granted by the (ISC)² Board of Directors to those influential information security professionals who have made outstanding contributions throughout their careers to the information security profession.
Mr. McNulty is a native of Oakland, California, and graduated from the Berkley campus of the University of California with a Bachelor in Political Science. He also received a Master of Arts in International Relations from San Jose State University, San Jose, California, and a Master of Science in Administration from the George Washington University in Washington, D.C..
Lynn is actively pursued by both national and local media outlets for comment as an expert source on U.S. federal government information security policy and related issues. He has been a guest on PBS's Jim Lehrer News Hour and has been featured in numerous federal IT publications such as Government Executive Magazine, Federal Computer Week, Government Computer News, Federal Times and SIGNAL Magazine.
Jane Scott Norris, CISSP-ISSAP, ISSMP, CAP, CISM
Co-Chair (ISC)² Government Advisory Board for Cyber Security
Former Dean for the School of Applied Information Technology
FSI, the training institute for the U.S. Department of State
Jane Scott Norris is a security consultant whose prior experience includes serving as the first Chief Information Security Officer of the U.S. Department of State, a role that earned her finalist honors in the Computer Security Institute's Information Security Executive of the Year in 2004 and 2005. She also led a State Department team that developed the Certification and Accreditation Professional (CAP) credential. A member of the (ISC)² Government Advisory Board (GAB) for six years, three of them as co-chair, she is Chair of the GAB Executive Writers’ Bureau. In 2008, Ms. Norris was elected to (ISC)²’s Board of Directors.
Art Friedman, CISSP
Senior Technical Advisor
Committee on National Systems Security
Mr. Art Friedman currently serves as the Senior Strategist for Privilege Management for the Department of Defense, leading an effort to develop policy and strategy for access control to improve the Department’s ability to securely share information. He has held various technical and management positions at the National Security Agency supporting the Committee on National Security Systems, the Nuclear Command and Control mission, the development of tools and capabilities in the area of computer network defense, and systems security engineering. Additionally, he has supported the Office of the Secretary of Defense developing policy for Biometrics, Identity Management, and provided guidance for the Department’s Information Assurance Research and Technology program. He also worked in the private sector for The MITRE Corporation and Booz Allen Hamilton as a systems security engineer.
Additionally, he is a Certified Information Systems Security Professional serving on a Government Advisory Board for Cyber Security, (ISC)², and is an adjunct faculty member teaching network security classes for Towson University.
Mr. Friedman has an undergraduate degree in Mathematics from Hofstra University and graduate degrees in Business Administration from Boston University and National Security Policy from the United States Army War College. He recently retired from the U.S. Army Reserves supporting the United States Strategic Command’s cyber mission.
Mr. Friedman lives in Maryland and spends his free time sailing on the Chesapeake Bay with his wife.
Jerry G. Ormaner, CISSP, CIO, CISM,
Assistant Director, Security Planning and Policy
Operations Services Staff
Justice Management Division
U.S. Department of Justice
Jerry Ormaner currently serves as Senior Information Technology Project Manager for Department of Justice’s (DOJ) Operations Services Staff. Jerry manages critical DOJ services for the following DOJ customers: Department of Homeland Security’s (DHS) Immigration and Customs Enforcement (ICE); DHS US-VISIT; DHS U.S. Citizenship and Immigration Services; and DOJ’s Litigation Case Management System (LCMS). These customers’ systems involve sensitive but classified information and critical infrastructure data. Jerry’s job responsibilities involve: mitigating security concerns or risks associated with these enterprise-wide critical systems; mitigating complex technical challenges as they develop; testing disaster recovery capabilities; assisting customers with certification and accreditation activities; and working with customer senior management executives to escalate and resolve risks to systems as they may develop.
Jerry Ormaner served as Assistant Director for U.S. Department of Justice’s Security Program for over twelve years. In this very important role, Jerry managed the operational security program for the Department of Justice's critical infrastructure: enterprise-wide voice and data networks; data centers; and related systems. He coordinated the certification and accreditation for IT systems/networks and data centers; managed the contingency planning activities for the Operations Services Staff and the Continuity of Operations Planning for the DOJ's Office of Chief Information Officer; and evaluated vendor security support including training programs for the Department. He has utilized contracted security vendors as well as internal resources to provide security management training for DOJ and other Information Resource Management employees.
Mr. Ormaner assisted the FBI with certification and accreditation of their critical systems and with DOJ Information Management and Security Support, he managed the security oversight and issuance of policy guidance for DOJ's sensitive but unclassified systems and networks. In addition to establishing one of the first successful penetration testing and follow-up security improvement programs in the civilian government, he also supported the Federal Government and the Department's PKI working group and related pilots for DOJ, FBI and DEA.
Prior to this, Mr. Ormaner held several positions with the Internal Revenue Service, including the Information Resources Management and Infrastructure Technology Group. He led the design of up-front security for enterprise-wide data systems involving electronic filing applications for the multi-billion dollar Tax Systems Modernization Program and the Secure Dial-In (SDI) Network for IRS. With the General Services Administration FTS 2000, Mr. Ormaner coordinated the design and installation of new FTS data and voice circuits for federal customers. Prior to government service, he was with American Telephone & Telegraph, Communications where he was a Network Designer and Market Administrator for National Accounts.
Mr. Ormaner holds a BA from State University of New York in Business and English, an MBA in Management and Marketing from Marymount University, Virginia, and Chief Information Officer Certification from Carnegie Mellon University, Pennsylvania. He is also a Certified Information Systems Security Professional (ISC2) and Certified Information Security Manager (ISACA).
2_Public_Content/About_ISC2/Awards_and_Designations/GISLA/j_goldenphoto.jpg)
James L. Golden, CGEIT, CISSP, CISM; Associate Partner, IBM Corporation, Security, Privacy, Wireless, and IT Governance
James has a professional consulting practice in IT Governance and Information Security. Also a retired Senior Executive from USPS where he held various lead positions in areas such as IT Governance, Corporate Information Security, PMO for $900 million infrastructure enhancement program and Y2K. He is also a retired Naval Reserve Security Group, CAPTAIN (O6) were held key leadership positions. He is currently serving on several professional committees and boards; Government Advisory Board for Cyber Security (ISC)², CGEIT Test Enhancement Committee (ISACA), Federal Information Assurance Conference Advisory Board and co-Chair (FBC), and External Relations Committee (ISACA). Mr. Golden has been recognized by his peers with the USPS IT Lifetime Achievement Award, Federal 100 and many other awards, and is also a recognized international speaker on Information Security and IT Governance.
2_Public_Content/About_ISC2/Awards_and_Designations/GISLA/Ashworth.jpg)
Michael P. Ashworth, CISSP, ISSAP, ISSMP, CAP, CGEIT, CISA
Director, Information Security Division, Office of Inspector General, Department of the Interior
Michael joined the Department’s Office of Inspector General as the Director, Information Security Division in February 2008. As the Director, Michael leads information security evaluations of the Department’s Bureaus and Offices, including the annual evaluation of the Department’s information security program performed under the Federal Information Security Management Act. Michael manages a geographically dispersed team of information security inspectors and provides subject matter expertise for information technology audits and inspections conducted by the Inspector General’s Office.
Michael first joined the Department in February 2006 where he served as the Department’s Enterprise Services Network (ESN) Security Manager. As the ESN Security Manager, Michael served as the senior expert and consultant on matters pertaining to the security of information and information systems supporting Interior's assets. In addition, he was the lead advisor in network and systems design to ensure implementation of appropriate system security policies and provided oversight on a multimillion dollar Network and Security Operations Center statement of work.
Prior to joining the Department of the Interior, Michael was the Director, IT Security and Compliance for Nextel Communications, a Fortune 200 telecommunications and wireless data company located in Reston, VA. While at Nextel, Michael was responsible for securing Nextel’s electronic information, enterprise network, and all of its interconnected business systems. Michael represented Nextel on several of the National Reliance and Interoperability Council (NRIC) teams for telecommunications and cell phone security. In addition, he led internal technical investigations and managed Nextel’s computer forensics lab.
Prior to his career at Nextel, Michael spent more than 12 years with the United States Air Force where he served as Special Agent, Air Force Office of Special Investigations. As a Special Agent, Michael performed high-tech criminal investigations, as well as counterintelligence and counterterrorism operations around the world. Michael was decorated 5 times for meritorious service and received the National Defense Service Medal for his service in Operation Desert Storm. After leaving the U.S. Air Force, Michael served as a contract instructor at the FBI Academy, Quantico, VA, where he taught federal and international law enforcement officials modern high-tech investigative techniques.
Michael holds a Master of Education degree with a major in Psychology, a Bachelor of Science degree with a major in Occupational Education and Associate degree in Criminal Justice. In addition, Michael maintains several professional certifications, including: Certified Information Systems Security Professional (CISSP), Information Systems Security Architecture Professional (ISSAP), Information Systems Security Management Professional (ISSMP), Certified in the Governance of Enterprise Information Technology (CGEIT), and Certified Information System Auditor (CISA)
Most recently, Michael graduated from Wayland Baptist University, Plainview, TX, with a Master's Degree. While attending Wayland, he was on the President's List for academic achievement and graduated with a 4.0 grade point average.
In his professional career, Michael has lived in Newmarket, U.K., Western Texas, Southern Florida, and Northern Virginia, USA.
2_Public_Content/About_ISC2/Awards_and_Designations/GISLA/Mary%201c.jpg)
Mary S. Heard, CISSP, CDP, A+, CPA, CISA, CIA
Deputy Director - Emerging Technologies
From March 2008 through June 2009, Mary Heard was Acting ACIO for Cyber Security. Ms. Heard was a member of the first cadre of computer specialists in the USDA Office of Inspector General; she served as Deputy ACIO in the Office of Cyber Security when she returned to the Department in January 2006. After reorganization, Ms. Heard became Deputy Director for the Office of Emerging Technologies where she is working on enterprise-wide security initiatives.
She returned to Agriculture from the State Department, Office of Inspector General, where she was responsible for the audits of global IT inspections. During this time, Mary obtained several credentials and certifications in accounting and information technology: She has a dual certification as both a Certified Public Accountant (CPA) and a Certified Information Systems Security Professional (CISSP). Mary has also worked overseas with the Food and Agriculture Organization of the United Nations.
Mary Heard was born in Northern Virginia where she currently resides. She received her Bachelor of Science Degree in Mathematics and her Master of Business Administration Degree from Virginia Polytechnic Institute and State University.
2_Public_Content/About_ISC2/Awards_and_Designations/GISLA/pjk-headshot.jpg)
Patrick J. Kelly
Associate of (ISC)² for CISSP, Member of (ISC)² Government Advisory Board Executive Writers Bureau, Alumnus of the Scholarship for Service (CyberCorp) Program and IT Analyst at the Federal Reserve Board
Patrick J. Kelly attended Florida State University on a Bright Futures Scholarship where he received his B.S. in 2005. While there, he had the opportunity to work in the State Senate, provide IT support for a local communications company and serve as an accounting clerk for the law firm of Foley & Lardner, LLP. Following graduation, Mr. Kelly was accepted into the Masters of Public Policy program at George Washington University and the Scholarship for Service (CyberCorp) Program through the National Science Foundation. There he tailored his studies to focus on Computer Security & Information Assurance Policy. In May of 2007 he accepted an internship at the Federal Reserve Board of Governors and returned in 2008 after graduation as an IT Analyst in the Reserve Bank Operations & Payment Systems Division.
2_Public_Content/About_ISC2/Awards_and_Designations/GISLA/murray1.jpg)
Dara Gordon Murray, CISSP
Director of Information Technology Security
Program Support Center, U.S. Department of Health and Human Services
Ms. Murray is the Director, IT Security, Program Support Center, U.S. Department of Health & Human Services. She holds a Bachelor of Science (B.S.) and Master of Business (MBA) of Administration from University of Maryland, University College, College Park and a Master of Science, (M.S.) Johns Hopkins University, Baltimore Maryland. Her main course of study was computer science, telecommunications engineeringand business management. She was one of the first to hold the credential as a Certified Information Systems Security Professional (CISSP) and is a distinguished member in good standing on the ISC2 board of directors. She is also a certified Project Manager, Certified Cryptologist, National Security Agency.
She has worked in many aspects of the security field, ranging from information system, physical, personnel, counterintelligence, and computer crime investigations for the Nuclear Regulatory Commission, Justice Department, Federal Bureau of Investigation, National Science Foundation, Smithsonian Institution. Dara's primary responsibilities are with assisting the institutions risk management, security planning, audit response, FISMA compliance, certification and accreditation, and intrusion detection & prevention.