U.S. GISLA® Winners
Congratulations to the 2013 U.S. Government Information Security Leadership Award Winners
Category: Community Awareness
- The Task Force Cyber Team, led by Wendy Huskey, CISSP, Security+, FITSI-M, deputy information assurance program manager, HQ Army Materiel Command (AMC). The team was responsible for the information security education and awareness of more than 70,000 dedicated military and civilian employees, with an impact in all 50 states and 150 countries. Through its efforts, the team has enabled the AMC -- the largest Army Command - to become the second best trained and certified compliant command that steadily maintains a 98% overall IA training and certification compliant posture.
Category: Federal Contractor
- The Registration, Compliance, and Verification (RCV) Modernization Team at the Selective Service System (SSS), led by David Ratnaraj, PMP, program manager, Advanced Information Services, Inc. With no disruption, the 17-person team replaced a mission-critical legacy mainframe system with a secure, optimized, and maintainable Web-enabled SOA-based solution that achieved zero cyber security vulnerabilities in over 680,000 source lines of code. The team met demanding security requirements and incrementally "built security in" throughout the Software Development Life Cycle (SDLC), resulting in an annual cost avoidance of $2.5 million for SSS.
Category: Process/Policy Improvement
- The Mobile Technology Tiger Team (MTTT), led by David Carroll, CISSP, chief security architect, U.S. Department of Homeland Security (DHS). Kevin Cox, CISSP, Assistant Director Infosec Technologies Team, Department of Justice (DOJ), Chi Hickey, FICAM Testing Program Manager, General Services Administration (GSA), and Raj Pillai, Identity Management and Systems Architect, GSA, assembled a team comprised of 46 members from numerous government agencies, the MTTT in collaboration with 21 other federal stakeholders, developed a common criterion for mobile computing programs and gained approval for distribution across the federal space. The common security baseline approach of the Federal Mobile Security Baseline, the Mobile Computing Decision Framework, and Mobile Security Reference Architecture promises to save other federal agencies significant funds while furthering the Federal CIO’s larger ongoing effort to enable safe, secure delivery of digital information and services.
Category: Technology Improvement
- USDA NITC Cloud Service Provider FedRAMP Certification Team, led by James Steven, COTR, associate chief information officer, National Information Technology Center (NITC), OCIO, U.S. Department of Agriculture (USDA). The team, working closely with the FedRAMP Project Management Office (PMO), enabled USDA NITC to become the first federal agency to achieve FedRAMP certification for its government-owned and managed USDA Enterprise Data Center (EDC) Cloud Service Offerings. The project came in under budget and two months ahead of schedule. Thanks to the team's collaboration and its leader's history of information security advocacy, the program's FedRAMP System Security Plan provides a model that meets and exceeds Federal Information Security Management Act (FISMA) requirements, and makes it easier to extend cloud-computing services to agencies outside the USDA and for all inter-government agreements.
Category: Workforce Improvement
- Major General Earl Matthews, CISSP, director, Cyberspace Operations, U.S. Air Force (USAF) and leader of the AF Cyberspace Workforce Development Program, has made significant progress toward shaping the 45,000-person cyberspace workforce to meet dynamic requirements in the cyberspace mission area. Of the project's many successful strategies, Maj. General Matthews and his staff, in collaboration with the White House, partnered with industry in a "Transitioning Service Member" pilot, initiated the "Knowledge Ops Management Center" pilot, and forged the first-ever "Year of the Cyber Civilian" campaign that would drive career transition for 19,000 civilians.