Speakers to Date
We’re proud to have the continued support of so many distinguished sponsors for the second year of the GovRAMP Cyber Summit. Their partnership makes this event possible.
Jeff Allen
IoT COO, State of Indiana
Indiana Office of Technology, Chief Operating Officer Jeff Allen was appointed to his position in December of 2022. He has over 23 years of IT experience and has been with the State for 19 years, and with the Office of Technology for 17 of those.
Allen started with the Indiana Department of Administration in the spring of 2004, and came over to IOT as a Desktop Technician in 2006. He also worked as a Systems Administrator on the Tier 3 team before moving into his first management role in 2013. He has served as the Tier 3 team and PC Refresh Manager, and prior to being named COO, had been the Deputy COO over End User Services since 2015.
Allen holds a degree in History from Indiana University and lives in Fishers, Indiana with his wife and three kids. He enjoys boating, camping, and seeing as much live music as possible.
Previously, Windy held multiple leadership roles within the Division, notably managing the State's Cooperative Contracts Program, overseeing $1 billion in public entity spend. Her achievements include implementing a statewide eProcurement system for over 100 public entities, rolling out a solutions-based procurement method, and streamlining contractor reporting processes.
She also spearheaded procurement for critical projects like state-standardized voting equipment and Utah's first learning management system.
Prior to state service, Windy gained extensive private sector experience in strategic sourcing, global program management, regulatory compliance, and sustainability.
This diverse background provides a holistic understanding of procurement dynamics, enabling innovative strategies that deliver value while ensuring compliance.
Windy Aphayrath
Chief Procurement Officer, State of Utah
Windy Aphayrath, Chief Procurement Officer for the State of Utah and Director of its Division of Purchasing and General Services, leads transformative initiatives to enhance efficiency, transparency, and accountability in government procurement. She oversees operations significantly impacting the State's finances and public services, leveraging her strong background in program and project management.
Previously, Windy held multiple leadership roles within the Division, notably managing the State's Cooperative Contracts Program, overseeing $1 billion in public entity spend. Her achievements include implementing a statewide eProcurement system for over 100 public entities, rolling out a solutions-based procurement method, and streamlining contractor reporting processes. She also spearheaded procurement for critical projects like state-standardized voting equipment and Utah's first learning management system.
Prior to state service, Windy gained extensive private sector experience in strategic sourcing, global program management, regulatory compliance, and sustainability. This diverse background provides a holistic understanding of procurement dynamics, enabling innovative strategies that deliver value while ensuring compliance.
Joe Bielawski
President, Knowledge Services
Joe Bielawski is the President of Knowledge Services and a founding member of GovRAMP, where he previously served as its President. Joe is also the founder of RAMPxchange, a cyber and risk management marketplace that connects public and private sector customers with vetted cybersecurity suppliers. Joe is dedicated to serving those who serve others. His commitment to helping public and private organizations navigate the evolving cybersecurity landscape was instrumental in establishing GovRAMP. Under his leadership, Knowledge Services functions as the GovRAMP PMO while RAMPxchange addresses supplier’s authorization cost and complexity apprehensions.
Chris Blanding
Public Sector Cybersecurity Account Executive, Juniper Networks
Chris Blanding is responsible for public sector cybersecurity sales at Juniper Networks. He has over 30 years of experience operating, designing and selling technology solutions serving the critical mission needs of federal, state, local and education customers. Chris spent the last 7 years working with states, higher education institutions and large municipalities to solve key cybersecurity challenges driven by the expansion of networks outside the datacenter and office.
Fred Brittain
Executive Advisor, GovRAMP PMO
Fred Brittain is an experienced and innovative Information Security and IT leader who served as the Chief Information Officer (CIO) for the State of Maine from 2019 to 2023. Prior to joining the state government, he spent 25 years with the University of Maine system, where he rose from leading IT for a single campus to becoming the associate CIO for the entire system. As the CIO of Maine, he was responsible for overseeing the State’s IT policies, infrastructure, cybersecurity, accessibility, and service management. He also led several initiatives to improve the state’s digital capabilities, such as increasing web traffic, enhancing online services, and bringing the State through the pandemic while still providing best in class services to the people of Maine. He was recognized as one of the Top 25 Doers, Dreamers and Drivers by Government Technology magazine in 2023 for his achievements and vision. After leaving the state government, he joined Knowledge Services as the Vice President of Information Security in August 2023, where he continues to apply his expertise and passion for information security to improve the cyber posture of cloud service providers at the national level. Fred Brittain holds a Bachelor of Arts in Mathematics and Computer Science. He is also an avid cyclist and skier living with his family in a log cabin in rural Maine.
Michael Centrella
Head of Public Policy, Security Scorecard
Michael Centrella is a distinguished security leader with over 25 years of experience in investigative, cybersecurity, and protective operations. As Assistant Director of the U.S. Secret Service, he oversaw the agency’s largest operational unit—managing 162 domestic and international offices, 2,150 Special Agents, and 850 mission-critical support personnel. His career includes leading protective missions for world leaders, coordinating multi-jurisdictional investigations into cyber-enabled financial crimes, and fostering lasting partnerships across government, military, intelligence, and private sectors.
Renowned for bridging physical and cybersecurity disciplines, Michael has driven initiatives to enhance operational resilience, intelligence sharing, and defenses against evolving threats. His expertise spans financial fraud, ransomware, business email compromise, and securing emerging technologies and digital currencies. Academically, he holds a degree in Sociology and Criminal Justice from Cabrini University, is a graduate of American University’s Key Executive Leadership Program, a certified Senior Executive Service member, and has completed the CISO Executive Education Program at Carnegie Mellon University.
Laura Clark
Chief Information Officer, State of Michigan
Laura Clark serves as the chief information officer (CIO) for the State of Michigan, directing the state’s technology and security efforts. As deputy director for the Michigan Department of Technology, Management & Budget (DTMB), she also oversees operations for the department, which provides information technology, business, and administrative services to state employees and stakeholders, as well as Michigan residents, visitors, and businesses.
During her 20-year career in public service, Clark has embraced a hands-on, adaptable approach to leadership. Since being appointed as CIO by Gov. Gretchen Whitmer, she has helped the State of Michigan achieve success through many initiatives, such as the launch of the award-winning Michigan Secure mobile app and successfully securing $20 million in critical cybersecurity funding from the Michigan Legislature for statewide security enhancements.
In her day-to-day work, Clark values the contributions of every person on DTMB’s 5,000 member team and has the unique ability to connect her sense of purpose and service with the overall work and mission of directing the State of Michigan’s technology and security efforts. She leads by example, seeking out opportunities that will allow those around her to succeed. Throughout these efforts, Clark’s compassion, patience, experience, and skills as are helping DTMB and the entire state forge a successful path into the digital future.
Bruce Coffing
Chief Information Security Officer,City of Chicago
Bruce Coffing is an information security professional with over twenty-five years industry experience in information technology and cybersecurity. He is currently the Chief Information Security Officer for the City of Chicago. Prior to joining the City of Chicago, Mr. Coffing held Senior Vice President information security positions at Bank of America and was a Senior Manager at consulting firm Accenture. Mr. Coffing holds the Certified Information Systems Security Professional (CISSP) certification.
Torry Crass
CISO, Public Sector, Tanium
Torry Crass serves as an executive leader in cybersecurity with more than 25 years of information technology experience and with a strong career focus on cyber security for over 10 of those years. Torry is considered a subject matter expert in cybersecurity both in his professional roles as well as within the security community. He brings expertise at both the technical and leadership levels in IT operations, information security, privacy, compliance, and numerous other areas.
As a CISO, Torry brings vision, strategy, and partnership to create successful cybersecurity programs that work by helping to reduce risk and manage IT and information system assets in a way that allows the organization to be successful while continuing towards a better security posture. He has more than a decade of experience in global enterprise environments with continually increasing levels of responsibility that have included local and remote team leadership with global cross-team collaboration, program development, MA&D tasks, and strategic leadership.
Torry is actively involved in the cybersecurity community through service on several advisory boards, leadership of industry conferences, regularly conducting training and presentations, and attending a variety of security conferences such as ACI Jack Voltaic, SecureWorld, BSides, BlackHat, Defcon, and ShmooCon.
Amanda Crawford
Chief Information Officer, State of Texas DIR
Amanda Crawford is the Executive Director of the Texas Department of Information Resources (DIR) and serves as the Chief Information Officer for the State of Texas. In this role, she is responsible for the overall leadership and daily operations of DIR, an agency with an annual fiscal profile of more than $6 billion. DIR's responsibilities include protecting the state's data and critical technology infrastructure, managing a multi-billion-dollar cooperative contracts program, and providing strategic technology leadership and solutions to all levels of Texas government.
Prior to leading the team at DIR, Mandy served at the Office of the Attorney General of Texas (OAG) for more than 17 years. She held various positions at the OAG, including ultimately serving for two and a half years as the Deputy Attorney General for Administration and General Counsel. Mandy is a graduate of The University of Texas at Austin and earned her law degree from the University of Houston Law Center.
Pete Dudek
Associate Director of Federal Services, A-LIGN
Pete Dudek is an Associate Director at A-LIGN, where he leads the delivery of all FedRAMP and GovRAMP audits within the firm’s Federal Practice. He also serves as the primary liaison for A-LIGN’s GovRAMP Champion-level membership. In addition, Pete contributes to the GovRAMP Standards and Technical Committee in an advisory capacity, providing strategic recommendations on industry best practices and assessment methodologies to the Board of Directors.
Adam Ford
Chief Technology Officer, State & Local Government and Education, Zscaler
With over 20 years of experience, Adam has dedicated his career to ensuring that information systems and data are protected and available to meet the unique needs of government organizations. Currently serving as the Chief Technologist at Zscaler, a leading cybersecurity company, Adam plays a crucial role in helping state and local government organizations securely transform their systems. As a respected leader in the public sector market, his expertise and guidance are instrumental in ensuring that the systems that keep government running are not only efficient but also protected from cyber threats.
Prior to Zscaler, Adam served as Chief Information Security Officer for the State of Illinois. In this role, he had responsibility for cybersecurity for various agencies, boards and commissions under the Governor. During his tenure the State of Illinois modernized and grew its security practice to protect systems and data that drive critical services to Illinois residents.
In addition to serving State Agencies, Adam oversaw State and Local security partnership and collaboration efforts including operation of the Illinois Election Cyber Navigator program in coordination with the Illinois State Board of Elections and the Illinois State Police.
Adam joined the Office of the CISO as Security Engineering Manager in 2017 and also served as Deputy CISO prior to becoming CISO. Before coming to security, he spent more than 15 years in data center and wide area network engineering and architecture roles with the Illinois Department of Innovation and Technology and the Illinois State Police.
Adam was named the 2023 NASCIO Thomas M. Jarrett State Cybersecurity Leadership Award winner in 2023 and received a 2023 StateScoop 50 State Leadership of the Year Award.
He earned a Bachelor of Arts degree in Political Science from Illinois College and a Master of Science in Cybersecurity and Information Assurance from Western Governors University.
Alan Fuller
Chief Information Officer, State of Utah
Alan Fuller was appointed chief information officer for the State of Utah in March 2021. As CIO, Fuller oversees all IT functions for executive branch agencies in Utah with the goal to improve innovation and improve government services through the use of technology.
Kevin E Greene
Chief Security Strategist, Public Sector, BeyondTrust
Kevin E. Greene is a seasoned cybersecurity expert and strategist, renowned for championing initiatives that enhance cybersecurity practices to protect the nation against cyberattacks. His expertise has earned him pivotal roles in leading government and private sector organizations, including the Department of Homeland Security (DHS), The MITRE Corporation, OpenText and currently, is the Chief Security Strategist, Public Sector at BeyondTrust. Kevin has also played instrumental roles in building cybersecurity programs across government agencies as a program manager.
Leadership at DHS
As a computer scientist and program manager within the DHS Science and Technology Directorate, Kevin spearheaded impactful federally funded research and development (R&D) initiatives in software assurance, software security, and emerging technologies. He partnered with prominent universities and industry leaders—including George Mason University, Indiana University, RIT, Purdue University, University of Wisconsin-Madison, Georgetown University, Kestrel Technology, Denim Group, Secure Decisions, Software Engineering Institute (SEI), Hughes Research Labs (HRL), and Johns Hopkins/APL—to advance tools and methods for testing and securing software.
Kevin successfully transitioned and commercialized research into actionable solutions, including:
- Hybrid Analysis Mapping (HAM)
- Static Tool Analysis Modernization Project (STAMP)
- Common Architectural Weakness Enumeration (CAWE)
- CodePulse for code coverage testing
- General Analysis Toolkit (GATOR)
- Software Assurance Marketplace (SWAMP)
His work on HAM has notably influenced Gartner’s perspective on Application Security Posture Management tools, featuring prominently in Gartner’s Application Vulnerability Correlation (AVC) hype cycle.
Contributions at MITRE
At The MITRE Corporation, Kevin contributed to the MITRE ATT&CK research under the Center for Threat-Informed Defense (CTID) and spearheaded DevSecOps initiatives. He was a key contributor to the Common Weakness Enumeration (CWE) program and served on MITRE’s DevSecOps Tiger Team, advancing cybersecurity best practices for public and private sector stakeholders.
Public Sector Leadership at OpenText
As Public Sector CTO at OpenText Cybersecurity, Kevin supported state, local, and education sectors through sales enablement and go-to-market strategy for enterprise cybersecurity solutions. He provided thought leadership, technical authority, and strategic alignment for federal initiatives, engaging with customers as a trusted advisor. Kevin also represented OpenText at cybersecurity conferences as a keynote speaker and panelist.
Industry Engagement and Thought Leadership
Kevin is deeply involved in several advisory boards, working groups, and committees, including:
- Advanced Technology Academic Research Center (ATARC)
- Center for Strategic International Studies (CSIS), Federal Cloud Commission
- Cybersecurity and Infrastructure Security Agency’s (CISA) Joint Cyber Defense Collaborative (JCDC)
- CISA Cyber Safety Review Board (CSRB), supporting member.
A frequent speaker on cybersecurity topics such as threat intelligence, software security, Zero Trust, and FedRAMP, Kevin contributes thought leadership to industry forums. His writings have been featured in leading publications, including Dark Reading, Federal News Network, SC Media, CIO, and GovExec.
Kevin’s ongoing contributions to the cybersecurity landscape exemplify his dedication to advancing the field and safeguarding critical systems and infrastructure.
Glen Herdrich
Chief Information Security Officer, Sacramento County
Glenn Herdrich is an accomplished leader in the field of information security, currently serving as the head of the Information Security Office at Sacramento County. He is passionate about providing top-tier information security services that safeguard County systems and protect constituent data. Glenn's approach to information security is grounded in the belief that simplicity and collaboration are key to success. By fostering coordination and synergy between people, processes, and technology, he has been able to significantly improve information security awareness and controls at the County. In addition to his role at the County, Glenn serves on the board of directors for GovRAMP where he leverages his expertise and leadership to promote cybersecurity best practices through education and policy development to improve the cyber posture of public institutions and the citizens they serve.
David Hinchman
Director – IT & Cybersecurity, GAO
On GAO’s Information Technology and Cybersecurity team, Dave Hinchman oversees government-wide reviews of critical infrastructure cybersecurity, the federal cyber workforce, and cloud computing security. His multi-disciplinary teams primarily focus on emerging cybersecurity issues and how new technologies, including artificial intelligence, are being used by the federal government to better secure the resources vital to the delivery of citizen services. In addition, Dave leads work on IRS’s business systems modernization program, as well as other government-wide IT management and operations issues. He previously managed GAO’s reviews of federal data center optimization and border security technology. Prior to joining GAO in 2002, Dave worked for several private sector firms, including PricewaterhouseCoopers, and served as a Surface Warfare Officer in the United States Navy. Dave has a master’s degree in business administration from the Eller School of Management at the University of Arizona, and a bachelor’s degree in anthropology from Vassar College.
Nick Hughes
Coop. Portfolio Manager, NASPO ValuePoint
Nick is a Cooperative Portfolio Manager within the National Association of State Procurement Officials (NASPO). He works with public entities, suppliers, and all contract stakeholders to ensure smooth management of both the contract administration and solicitation processes.
Prior to joining NASPO Nick was the Assistant Director at the State of Utah’s central procurement office overseeing its entire cooperative contract program which consisted of over 1300 contracts. During his time, he developed extensive experience with complex acquisitions and contract disputes. Additionally, Nick oversaw all purchases for the Utah Department of Health and Human Services and personally managed all statewide medical contracts. He served a four-year term as an Advisory Board Member for a National Medical Cooperative, the Minnesota Multistate Contracting Alliance for Pharmacy (MMCAP). Nick graduated with a Juris Doctorate from the S.J. Quinney College of Law at the University of Utah.
Nick currently resides in Salt Lake City, Utah, with his beautiful wife and 2 boys. In his free time, he can be seen going to the gym, on the mountain slopes, out and about with his family, or spending his life savings on bubble wands and churros at the most magical place on earth, Disneyland.
John Israel
Chief Information Security Officer, State of Minnesota
John Israel is the State of Minnesota's Chief Information Security Officer (CISO). At MNIT, he leads the executive branch cybersecurity teams, the Minnesota Cybersecurity Task Force (MCTF), and collaborative efforts to engage with entities statewide to build effective cybersecurity strategies across all levels of government in the state.
John has over 25 years of IT experience leading, building, and growing cybersecurity and IT functions in municipal, county, and state entities integrating highly technical functions into strategic organizational operations. Before joining MNIT in 2008, John led IT operations for the Washington County Sheriff's Office.
Most recently, John served as the state's Interim CISO overseeing cybersecurity operations for the state and multiple grant-funded outreach programs that provide cybersecurity support and resources to counties, port cities, and tribal nations throughout Minnesota. John has held many leadership roles in our organization.
In his roles at MNIT, including Deputy CISO and Security Operations Center (SOC) leader, John has been instrumental in building the state's security operations teams. This includes the state's first Security Operations Center (SOC) and the cybersecurity threat intelligence sharing capabilities within the Minnesota Fusion Center hosted by the Bureau of Criminal Apprehension. In 2019, John received the Visionary Security Operations Leader of the Year from the Cyber Security Summit.
John holds a Bachelor of Arts degree from Concordia University in Saint Paul, a Master of Science degree from Norwich University in Vermont, and a Certified Information Systems Security Professional (CISSP) certification from ISC(2).
Drew Kahle
Information Security Program Manager, Rubrik
Drew Kahle is an Information Security Program Manager at Rubrik, having supported the FedRAMP Moderate authorized Rubrik Security Cloud - Government offering since April 2025. With over 15 years of experience, Drew specializes in governance, risk, and compliance for the US Public Sector, particularly in obtaining and maintaining FedRAMP authorizations at both Moderate and High impact levels. His background includes leading FedRAMP initiatives at Salesforce and BetterUp, where he successfully managed complex compliance programs, external audits, and continuous monitoring activities. He holds multiple industry certifications, including CISSP, CISSP-ISSAP, CCSP, CISA, and AWS Certified Cloud Practitioner.
John Lee
Vice President, Carahsoft
John J. Lee is Vice President of Cloud Solutions of Carahsoft Technology Corp. As a seasoned executive with more than 30 years of experience in the government IT industry, he provides a senior-level focal point for their cloud-based security frameworks activities, such as FedRAMP, DoD IL and StateRAMP cloud service offerings, and launched and grown new pay-as-you-go, consumption-based licensing models. Having led sales, marketing, business development, product definition, and operations for start-up and established companies, he has helped redefine how cloud-based products and services are marketed and acquired in the public sector.
Thomas MacLellan
Director, Government Affairs & Strategy, Palo Alto Networks
Thomas MacLellan leads Palo Alto Networks’ state and local government affairs practice. In this capacity, his role is to educate policymakers on current and emerging cybersecurity threats, national and international trends, and strategic policy opportunities to improve cyber defenses.
Thomas has over 20 years’ experience working nationally on a range of issues including cybersecurity, homeland security, disaster response, public safety broadband, and digital privacy. He has led government affairs for two multinational cybersecurity companies and was Director of Homeland Security, Technology, and Public Safety for the National Governors Association (NGA). At NGA, Thomas led the Governors Homeland Security Advisors Council (GHSAC) and created the first national effort to improve state cybersecurity. Thomas also staffed the Council of Governors and led a national effort to help states implement FirstNet. In each of these roles, Thomas regularly worked with senior homeland security and public safety officials, federal agencies, the White House, and Congress.
Thomas has trained governors and other C-Suite executives on disaster response and has worked closely with DHS, FCC, DOJ, FEMA, HHS, and DoD. He has published numerous articles and served on multiple federal and state advisory councils.
Thomas is a graduate of the College of the Holy Cross and the Center for Homeland Defense & Security at the Naval Postgraduate School in Monterey. He also earned an Executive Certificate from Harvard University on mitigating cybersecurity risks and was named by StateScoop as a Top Industry Leader.
Jeff Maxon
Chief Information Technology Officer, State of Kansas
Jeff was appointed Chief Information Technology Officer (CITO) in October 2023. He has been with the State of Kansas since 2009, most recently serving as the State’s Chief Information Security Officer (CISO)
Jeff brings a wealth of experience to the role. In his 12 plus years with the State, he has forged relationships with agency leadership and the legislature. His work on cybersecurity from a whole-of-state approach has improved the cyber posture of Kansas and created collaborative opportunities for how state, local, and critical infrastructure work together.
While with the State, Jeff has been the recipient of several awards including recognition in 2022 as a top Global CISO by Cyber Defense Magazine. He holds licenses and professional certifications, including Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and Certificate of Cloud Security Knowledge (CCSK). In addition, Jeff serves as a Cyber Defense Systems Operations Craftsman for the Kansas Air National Guard. He holds a Master of Science in Information Assurance and Cybersecurity from Capella University and a Bachelor of Science in Computer Information Science from Washburn University.
Greg McCarthy
Chief Information Security Officer, City of Boston
Greg McCarthy is the first Chief Information Security Officer for the City of Boston and career public servant. Since joining the City of Boston’s Cybersecurity Team in 2010, Greg has led key initiatives including the rollout of multi-factor authentication and the City’s first cybersecurity awareness program. Greg continues to drive efforts to modernize technology, enhance training, and build partnerships that strengthen cybersecurity citywide. Greg is a cybersecurity leader and change agent who is focused on strengthening cybersecurity for the City of Boston and all municipal governments through partnership and cooperation. Greg is also the Co-founder and Chair of the Coalition of City CISOs, promoting collaboration among municipal cybersecurity leaders nationwide. Greg holds an undergraduate degree in Criminal Justice and a graduate degree in Information Assurance, both from Northeastern University, as well as his Certified Information Security Manager (CISM) and Project Management Professional (PMP) certifications.
Leah McGrath
Executive Director, GovRAMP
Leah McGrath serves as Executive Director of GovRAMP, the organization formerly known as StateRAMP. McGrath was instrumental in launching the initiative in 2020, working in close collaboration with government and industry leaders to establish its original governance structure and cybersecurity policy framework. She oversaw the organization as it evolved into GovRAMP—a nationally recognized, public-private partnership advancing standardized cybersecurity verification for cloud solutions across the broader government ecosystem.
In recognition of her vision and leadership in strengthening cyber resilience across both the public and private sectors, McGrath was named to NextGov’s 2025 Federal 100 and to Government Technology’s 2023 Top Doers, Dreamers and Drivers list, honoring the individuals driving real impact in the modernization of government technology.
With over two decades of experience at the intersection of government, policy, and innovation, McGrath brings a proven track record in strategic planning, cross-sector collaboration, and digital transformation. Prior to her role with GovRAMP, she served as the first Deputy Mayor of the City of Fishers, Indiana, where she helped lead the city's transformation into a nationally ranked smart city. Her efforts included spearheading Fishers’ first long-range comprehensive plan and launching city-wide modernization initiatives—efforts that contributed to the city being named Money magazine’s #1 Best Place to Live in America in 2017.
Throughout her career, McGrath has remained committed to improving outcomes for citizens through secure, scalable, and forward-thinking technology solutions. Today, she continues to serve as a national voice for supplier assurance, cyber policy alignment, and innovation in the public sector.
Ryan Murray
Chief Information Security Officer, State of Arizona
Mr. Murray joined the Arizona Department of Homeland Security in July 2021 and currently serves as the Deputy Director over the Statewide Information Security and Privacy Office and as the Chief Information Security Officer for the State. He also previously served as the Chief Information Security Officer for the Arizona Department of Revenue for three and a half years.
In his current role, Deputy Director Murray provides both tactical and operational leadership for the State's cybersecurity office, as well as leads the strategic planning, facilitation, and coordination of cybersecurity efforts throughout the State.
Prior to joining the State in 2018, Ryan has enjoyed a lifelong career of public service throughout all levels of government in Arizona. He has over 20 years experience in IT and Information Security, is a Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP) and holds a Bachelors in Cyber Security and Information Assurance from Western Governors University.
Anthony O’Neill
Chief Information Security Officer, Commonwealth of Massachusetts
Anthony is the CISO and Chief Risk Officer at the Commonwealth of Massachusetts, Executive Office of Technology Services & Security. As the State’s lead IT agency, the executive team is responsible for planning, development, communications and implementation of the Commonwealth’s digital transformation, including enhancing data security, safeguarding privacy, and improving service delivery to the end user.
Anthony is an accomplished attorney having represented Fortune 500 companies from the technology sector in pursuing claims in global antitrust litigation. He focuses his practice on complex disputes, antitrust, information security, data privacy and eDiscovery strategy. During his time at the Commonwealth, Anthony has helped organize the agency’s legal department and build the Commonwealth’s first enterprise eDiscovery program, which provides eDiscovery professional services to all executive branch agencies and independent government agencies in Massachusetts.
In his current role, he is charged with developing, refining, scaling and running the enterprise risk management and security programs for the Commonwealth of Massachusetts, and ensures their operational efficiency. On an ongoing basis, he provides operational risk management for value creation and protection, and serves as an internal advisor to organizational governance and leadership.
Dugan Petty
Board Member, GovRAMP
Dugan Petty - a former State CIO in Oregon - currently serves on the GovRAMP Board Directors and is a Fellow at the National Academy of Public Administrators and the Center for Digital Government.
Since retiring from state government in 2012, he continues to foster improvements in both public procurements and technology including.
- State Procurement Practices Study and Ranking, Governing Magazine 2013 and 2018.
- Best Practice Guide for Cloud and As-A-Service Procurement, Center for Digital Government 2014 and 2022.
- NASPO ValuePoint’s groundbreaking 2016 Utah Cloud Solutions cooperative procurement and other IT&C contracts.
In addition to servicing six years as the Oregon CIO, he served as the Chief Procurement Official in both Alaska and Oregon and the State Risk Manager in Oregon.
Petty is a past president of both NASCIO and NASPO, and a founding member and past Chair of the Western States Contracting Alliance, now NASPO ValuePoint.
Victoria Yan Pillitteri
Manager, Security Engineering & Risk Management Group, NIST
Ms. Victoria Yan Pillitteri is a supervisory computer scientist in the Computer Security Division at the National Institute of Standards and Technology (NIST). Ms. Pillitteri is the Manager of the Security Engineering and Risk Management Group and leads the Risk Management Framework team/Federal Information Security Modernization Act (FISMA) Implementation Project. In that role, she develops the suite of risk management guidance used for managing cybersecurity risk in the federal government and coordinates the associated stakeholder outreach and public-private sector collaboration efforts. Ms. Pillitteri leads the Joint Task Force working group, a partnership with the Department of Defense, the Intelligence Community, and Civilian Agencies to develop a unified security framework to protect the U.S. Government from cyber-attacks, and is co-chair of the Federal Cybersecurity and Privacy Professionals Forum hosted by NIST.
Ms. Pillitteri previously led programs in smart grid and cyber-physical systems cybersecurity, worked on the Framework for Improving Critical Infrastructure Cybersecurity, the Privacy Framework, and served as a program analyst in the NIST Office of the Director.
Ms. Pillitteri holds a B.S. in Electrical Engineering from the University of Maryland and an M.S. in Computer Science with a concentration in Information Assurance from The George Washington University. She has completed the Key Executive Leadership Program at American University and the Office of Personnel Management (OPM) Senior Executive Service Candidate Development Program, receiving an SES certification by the OPM Qualifications Review Board. Ms. Pillitteri is a Certified Information Systems Security Professional (CISSP).
Jennifer Pittman-Leeper
SLED Field Chief Information Security Officer, Axonius
Jennifer Pittman-Leeper, SLED Field CISO, Axonius
David Resler
Senior Director, GovRAMP PMO
David Resler is an accomplished manager of IT Security & Infrastructure with over 30 years experience successfully managing and leading large-scale programs. Prior to joining Knowledge Services in 2021, David oversaw the IT Security, Data Center, and Networking groups for 14 years at Performance Assessment Network and its successor organization, PSI Services. There, David managed the NIST 800-53 compliance program and supported multiple Federal organizations including TSA, CBP, FBI, DEA, and FAA. While at Performance Assessment network, David led their migration from NIST 800-53r3 to NIST 800-53r4. David holds a Bachelor of Science in Computer and Electronics Technology from Indiana State University. He is a member of the Executive Advisory Board for the Eleven Fifty Academy serving on the Cyber Security Committee. He lives with his wife and their two rescue black labs in the suburban Indianapolis area. Fun Fact: David was once told by an FBI agent who was conducting a routine background investigation that he was one of the most boring people he had ever investigated.
Nikki Rosecrans
Chief Information Security Officer, Arapahoe County
Nikki is the Manager of Information Security and Compliance/Chief Information Security Officer (CISO) for Arapahoe County, Colorado—one of the most populous counties in the state’s north central region. Since joining in 2022, she has authored the County’s first Information Security Policy, co-authored the Cyber Incident Response Plan, and launched its inaugural vulnerability management program. Nikki also leads the County’s application rationalization project and serves as the Local Agency Security Officer (LASO), HIPAA Security Officer, and Digital Accessibility Program Manager where she has led the Counties Digital Accessibility Program. Her diverse background spans law enforcement support, emergency management, and peer support, equipping her with a unique, mission-driven perspective on cybersecurity and public service. Nikki holds a bachelor’s degree in communications with an emphasis in Strategic Communications and a Graduate Certificate in Cybersecurity (CISO) Leadership from Carnegie Mellon University. Nikki currently serves as Vice President of CGAIT and Vice Chair of the Approvals Committee for GovRAMP, fostering collaboration among IT leaders in Colorado government. She is known for her inclusive, strategic leadership and her commitment to building secure, accessible, and effective digital services.
Tony Sauerhoff
Chief Information Security Officer, State of Texas
Tony Sauerhoff is the Chief Information Security Officer (CISO) for the State of Texas. As State CISO, Tony oversees the team responsible for developing state agency security policies and standards, facilitating the statewide cybersecurity awareness training program, providing statewide incident response capabilities, collecting and analyzing security incidents from across the state, the coordination of security services, and promoting information sharing across the public and private sector cybersecurity communities. Before moving into his current role, Tony served as the Senior Deputy CISO and the State Cybersecurity Coordinator. He also chaired the Texas Cybersecurity Council. Tony has over 30 years of experience in IT and cybersecurity in the public and private sectors and served in leadership positions with the U.S. Department of Defense and the federal judiciary prior to joining DIR in 2022. He began his career as a communications specialist in the U.S. Air Force. Tony has a Bachelor of Science in Cybersecurity from Champlain College, a Master of Science in Information Security and Privacy from the University of Texas at Austin and holds CISSP and GSLC cybersecurity certifications.
Kate Shelby
IDOA Deputy Commissioner, State of Indiana
Kate Shelby joined the Indiana Department of Administration as Chief of Staff, Chief Strategy Officer, and Deputy Commissioner of Procurement in January, where she is responsible for IT, Operations, and implementing strategic government efficiency initiatives. Previously, Kate was the CIO and Chief Legal Counsel at the Indiana Department of Transportation, where she led multiple enterprise-wide strategic initiatives, including development of the IT strategic plan to overhaul and consolidate hundreds of applications, cyber security, and agencywide process reengineering initiatives, saving $42 million in one year alone. She was the COO at the Department of Workforce Development after the Great Recession, where she took Indiana from the second worst to #2 in the nation for program integrity. Kate also served as the first General Counsel for a national technology consulting firm, where she earned a merit-based award as the Association of Corporate Counsel Top 10 In-House Counsel in Their 30s. She managed a $15 billion contract portfolio for a Fortune 500 company and has worked as a corporate and government litigator.
J.R. Sloan
Chief Information Officer, State of Arizona
J.R. Sloan joined the State of Arizona in 2013 after working in the technology industry for over 20 years in operational and executive-level roles in both private and public organizations. As State CIO, J.R. oversees technology innovation, IT governance, policies, and standards, as well as the delivery and operations of enterprise IT services and programs for ASET. He also serves as Chairman of the State of Arizona Information Technology Authorization Committee (ITAC) which approves and monitors high-cost technology projects statewide.
Focused on digital transformation for the state, J.R. spearheads projects that make a significant difference for Arizona. He led the creation and implementation of Arizona’s Cloud-First Policy which has resulted in the closure of 90 on-premise data centers and the successful migration of over 2,900 applications and has generated more than $10.8 million in recurring cost savings/avoidance. He standardized the development and security for over 130 state agency websites which have increased the number of online services available to Arizonans by 250% in a two-year period and has brought process efficiencies as much as 15x. Completing the rollout of Google Workspace as the enterprise email and calendaring solution to 86 executive branch agencies (40,000+ mailboxes) and now driving the ongoing adoption of the full collaboration capabilities. He also serves as an executive sponsor for key IT initiatives driven by ADOA like Business One Stop and HRIS Modernization.
J.R. works collaboratively with IT leadership across the executive branch agencies to promote key enterprise initiatives, establish statewide IT policies, and identify enterprise opportunities that will yield better efficiencies and economies of scale.
J.R. is certified in Pragmatic Marketing and Product Management. His educational background includes Electrical Engineering at the University of Arizona and Architecture and Environmental Design at Arizona State University.
During his off hours, J.R. enjoys spending time with his four children and first grandchild as well as hiking, sampling Arizona’s local restaurants and participating in ministries and leadership at his church.
Megan Smyth
Director of Legal Education, NASPO
Megan R. Smyth is the Director of Legal Education for the National Association of State Procurement Officials (NASPO). She has been with NASPO since 2016, previously serving in the roles of Senior Research Advisor, Director of Research & Innovation, and General Counsel. At NASPO, Megan has focused on the topics of IT procurement, policy and governance, continuing legal education for state procurement attorneys, and the improvement of the relationship between legal and central procurement in the states. She leads the team that develops and plans the NASPO State Procurement Attorney Law Institute, currently in its 12th year.
Prior to joining the team at NASPO, Megan practiced for eight years as a civil litigator in the Commonwealth of Kentucky, mediating and trying cases related to insurance coverage, liability, property damage, personal injury, and employment law. She received her J.D. from the University of Kentucky Rosenberg College of Law, and a B.A. in Philosophy from Transylvania University. Megan holds bar memberships in the Commonwealth of Kentucky, and court admissions in the U.S. District Courts for the Eastern District of Kentucky and the Western District of Kentucky.
Karen Sorady
VP of MS-ISAC Member Engagement, CIS
Karen is the Vice President of MS-ISAC Member Engagement at the Center for Internet Security. Karen served over three decades with the New York State Office of Information Technology Services, operating most recently as the as Chief Information Security Officer. Karen has a wealth of experience and has continued to grow the MS-ISAC network as local governments and counties seek to modernize their cybersecurity practices and services.
Teri Takai
Chief Programs Officer, Center for Digital Government
Teri is the Chief Programs Officer of the Center for Digital Government, a national research and advisory institute on information technology policies and best practices in state and local government. Teri worked for Ford Motor Company in global application development and information technology strategic planning. From Ford, she moved to EDS in support of General Motors.
Teri’s public service career began in Michigan where she served as the State CIO, then as CIO of the State of California, and subsequently the CIO of the U.S. Department of Defense, the first woman appointed to this role. Teri is a member of several industry advisory boards.
Jessica Van Eerde
Chief Operations Officer & General Counsel, GovRAMP
Jessica Van Eerde serves as Chief Operating Officer and General Counsel at GovRAMP. With more than a decade of experience navigating the complex intersections of law, procurement, and cybersecurity within State, Local, and Higher Education (SLED) sectors, Jessica plays a critical role in advancing GovRAMP’s mission to strengthen and streamline cybersecurity across the nation.
A strategic operator and trusted advisor, Van Eerde drives execution across key initiatives, ensuring organizational agility and compliance while scaling programs to meet the growing demands of GovRAMP’s diverse member base. Her multidisciplinary background uniquely positions her to navigate regulatory environments, negotiate complex agreements, and lead with both legal and operational foresight. Van Eerde’s leadership reflects a deep commitment to fostering innovation, advancing cybersecurity readiness, and supporting the evolving needs of the public sector in an increasingly interconnected world.
Meredith Ward
Deputy Executive Director, NASCIO
Meredith Ward is the Deputy Executive Director for the National Association of State Chief Information Officers (NASCIO) and has served at the association since 2013. Meredith has over 20 years of experience in state, local, federal and international professional associations and is a 2024 Women in Cyber honoree. Prior to her current position, Meredith worked in government and media affairs in Washington, DC, and acquired over 10 years of experience building relationships with Members of Congress, their staff and members of the media. Meredith has worked extensively on issues related to cybersecurity, public sector workforce, technology acquisition, criminal justice and state technology. Meredith holds a Bachelor of Arts degree, with an emphasis on Government, from Centre College.
Ken Weeks
Chief Information Security Officer, State of New Hampshire
Ken Weeks is the Chief Information Security Officer for the State of New Hampshire. He spent most of his life as a Naval Officer, Special Duty, Cryptology, and Information Warfare, and retired as a CAPT (O6). Although most of his time was spent in the Pacific Theater, he also enjoyed several all-inclusive trips to Somalia, Iraq, and Afghanistan. After the Navy, he worked as an Executive Leader of Cyber Operations at the National Security Agency (NSA). Ken spent a couple years in the private sector as a Consultant with Booz Allen Hamilton and then moved to New Hampshire and back into public service. He spends the rest of his time as an avid four-season outdoor sportsman with his best friend and spouse, Marie-Claude, two college students (when they are home), and two Irish Wolfhounds.
Antoinette Webster
Assistant Director, Procurement Programs and Services, State of Connecticut
Antoinette Webster, Assistant Director, Procurement Programs and Services, State of Connecticut