SCIPP Board of Advisors

Security Awarenesssecurity-awareness.html
Secure Web Application Trainingsecure-web-applications-training.html
Why Awareness Training?security-awareness-training-why.html
Why SCIPP?why-us.html
e-Learning (LMS)e-learning-lms.html
SCIPP GAPscipp-gap.html
About Usabout-us.html
Contact Uscontact-us.html
MR. EUGENE SHULTZ, PhD., CISM, CISSP  is the Chief Technology Officer and Information Security Officer at High Tower Software, a company that develops security event management software, He is the author/ co-author of the five books, one on UNIX security, another on Internet security, a third on Windows NT/2000 security, a fourth on incident response, and the latest on intrusion detection and prevention. He has also written over 110 published papers. Gene is the Editor-in-Chief of Computers and Security and is an associate editor of Network Security and Information Security Bulletin. He is also a member of the editorial board for the SANS NewsBites, a weekly information security-related news update, co-author of the Certified Information Security Manager preparation materials, and is on the technical advisory board of the three companies.

He has been professor of computer science at various universities and is retired from the University of California at Berkeley. He has received the NASA Technical Excellence Award, the Department of Energy Excellence Award, the Information Systems Security Association (ISSA) Professional Achievement and Honor Roll Awards, the ISACA John Kuyers Best Speaker/Best Conference Contributor Award, The Vanguard Conference Top Gun Award (for best presenter) twice, the Vanguard Chairman’s Award, and the National Information Systems Security Conference Best Paper Award. Additionally, Gene has been elected to the ISSA Hall of Fame.

While at Lawrence Livermore National Laboratory he founded and managed at the U.S. Department of Energy's Computer Incident Advisory Capability (CIAC). He is also a co-founder of FIRST, the Forum of Incident Response and Security Teams. Dr. Schultz has provided expert testimony before committees within the U.S. Senate and House of Representatives on various security-related issues, and has served as an expert witness in legal cases.


Chief Security Advisor, Microsoft Greater China Region

Convener, ISO/IEC JTC1 SC27 WG4 – Security Controls & Services

Board Member, SCIPP International Advisory Board

Board Member, (ISC)2 Asia Advisory Board

Co-chair, Regional Asia Information Security Exchange (RAISE) Forum

Based in Beijing, Meng-Chow has been a practicing information security professional for more than 20 years, with field experience spanning from technical to management in the various security and risk management roles in the Singapore government, major multi-nationals financial institutions, and security and technology providers.

Meng-Chow has been contributing to the development and adoption of international standards relating to information security since 1998, and initiated the formation of the Regional Asia Information Security Standards (RAISS) Forum in 2004, which has since completed seven meetings and started the development of a number of regionally focused standards deployment guides, and serving as a platform contributing to international standards development in ISO and ITU-T.

In August 2005, Meng-Chow was presented the accolade “IT Evangelist of the Year 2005” by the Singapore National Infocomm Competency Council (NICC) in recognition of his work and contribution to the IT security community and standards arena. Meng-Chow was also the recipient of the “Distinguished Award” and “Distinguish Partner Award” from the Standards, Productivity and Innovation Board (SPRING Singapore) in September 2005, and August 2008, respectively, for his continuous efforts and leadership in shaping the IT security standardization landscape in Singapore.

Meng-Chow received his MSc degree in Information Security from the Royal Holloway and Bedford New College, University of London, and completed his PhD in Information Security Risk Management at the Southern Cross University, Australia. He has been a Certified Information Systems Security Professional (CISSP) since 1998.

Mr. Errol Weiss is an executive vice president with Citigroup’s IT Risk and Program Management office and brings over 20 years of experience in Information Security to this corporate level position.  Mr. Weiss helps ensure that Citigroup receives the most thorough and highest quality threat intelligence from numerous sources including commercial providers and US Government intelligence operations.  He also ensures that threat information is delivered to the right person within Citigroup – an international organization with nearly 400,000 employees.  Formerly a senior network security analyst for the National Security Agency, Mr. Weiss was responsible for conducting vulnerability analyses and penetrations of highly classified US Government computers and network systems.  He assisted in the security engineering and design of secure systems that were capable of resisting deliberate and/or unintentional attack.  Mr. Weiss has more than 10 years of experience delivering and managing Professional IT Security Services to Fortune 100 companies including Managed Security Services, Security Product Implementations and Secure Network Designs.

Mr. Weiss is a named inventor on the patent for the Information Sharing and Analysis Center (ISAC).  Today, he is an active user of ISAC services and also serves as advisor to the FS/ISAC Board of Directors and volunteers on several committees where he provides guidance on business processes, operational improvements and membership marketing initiatives.

Mr. Weiss has presented technically at numerous national and international forums and has received accolades for his technical work in penetrations and assessments of computer networks.  Mr. Weiss has a M.S. in Technical Management from Johns Hopkins University and a B.S. in Computer Engineering from Bucknell University.


SCIPP International’s board of advisors is composed of an international body of security luminaries, business executives and training professionals that have lent their expertise, advice and oversight, in an effort to establish and maintain the gold standard associated with our courses and their content.

DR. ANDY JONES is Head of Security Technology Research at the Security Research Centre at British Telecommunications (BT). He leads research into computer forensics, anomaly detection and the development of a risk management methodology. In addition he holds a post as a visiting adjunct at Edith Cowan University in Australia.

His background is of 25 years in Military Intelligence during which he gained experience in both operational and strategic intelligence and then in defense research, where he developed a research group and carried out research into all aspects of information systems. He then moved to the University of Glamorgan in Wales where he was a principal lecturer. While at the University he created a computer forensics research laboratory and lectured on Information Security and computer crime. He was awarded an MBE for his military service.

He has gained a Masters degree in Information Security and Computer Crime and a PhD in Information Security. He is a member of MENSA, the British Computer Society, the High Tech Crime Consortium and the Institute of Information Security Professionals. He has published numerous articles in the areas of information security and computer forensics and four boos, one on Information Warfare, one on information risk management, one on High Technology Crime investigations and one on corporate security and terrorism. He currently holds a post as an Adjunct at Edith Cowan University in Australia and sits on the UK Government Central Sponsor for information Assurance GIPSI Committee and is an assessor for research grant applications for the DTI.

MR. STEPHEN CARRICK-DAVIS is the CEO of Childnet International, a not-for profit organization based in the UK and established in 1995. Today, Childnet works with a wide range of young people and partners throughout the world in its mission to “help make the internet a great and safe place for children.”

Stephen has worked at Childnet since 1998 and was appointed CEO in October 2003. During his time at Childnet he has led the development of award-winning internet education and awareness projects such as Childnet’s “Kidsmart”, “Jenny’s Story” and “Chatdanger” resources as well as the Childnet Awards and Academy programmes which reward young people who are developing outstanding internet projects which directly benefit other children.

Stephen represents Childnet on a number of important bodies including: The UK Government’s Home Office Task Force on Child Protection on the Internet, and The British Educational Communications Technology Safe Use of the Internet Policy Group and Technology Committee. Stephen is also on the Advisory Board of FOSI - the Family Online Safety Institute based in Washington DC.

Stephen has an honors degree from the University of London in Education and Communications, has 3 children and lives in South London.

See for full details of Childnet’s work.

MR. STEPHEN COBB has over twenty-five years of experience in computer security and data privacy, during which he has advised companies and government agencies in numerous countries on a wise range of issues, from cryptography to risk assessment, incident response to security awareness and education. Tens of thousands of students have taken his security and privacy classes through commercial awareness programs and his work on the Master of Science in Information Assurance programs at Norwich University, Vermont. The author of hundreds of articles on security and policy, Stephen published the first comprehensive textbook on computer security for desktops and local area networks in 1992. In 1996, he became a CISSP and cofounded Infosec Labs, a successful security consulting form serving Fortune 500 clients. When Infosec Labs was acquired by Rainbow Technologies, Stephen cofounded a pioneering privacy company from a business prospective.

Stephen is currently an independent consultant and an Adjunct Professor of Information Assurance at Norwich University, designated by the National Security Agency as a Center of Academic Excellence in Information Assurance Education.

Stephen has an honors degree from the University of Leeds and lives in Florida.

MS. SUZANNE GORMAN joined Omgeo as their Director of Governance. Omgeo is the market leader in development and deployment of post-trade, pre-settlement solutions. Previously, Suzanne was the Managing Director of Corporate Information Security for the Securities Industry Automation Corporation (SIAC) for 15 years. SIAC was responsible for critical components of the US financial infrastructure and operates trading and settlement systems for the New York Stock Exchange (NYSE), American Stock Exchange (AMEX) and Depository Trust Clearing Corporation (DTCC). Through SIAC, Ms. Gorman worked with all these organizations to prevent, respond to, and address, information security threats and incidents. At SIAC and The NYSE Group, Ms. Gorman designed and implemented a comprehensive Information Security program.

Ms. Gorman has over 25 years of experience in the Financial Services Sector, with a career focused on Information Security. Ms. Gorman participated in a number of initiates designed to improve the strength, security and resiliency of the Sector’s critical infrastructure components. She was an active contributor on numerous government councils and advisory committees, and worked on government initiatives on both a state and national level. Ms. Gorman served four years as the Chairperson of the Financial Services Information Sharing Analysis Center (FS/ISAC). The FS/ISAC is a private sector organization that works closely with various government and private sector entities to help assess and prevent myriad threats to the US economy. Primarily, the FS/ISAC provides an anonymous information sharing mechanism through which member firms in the Banking and Finance community can contribute and receive data and analyses on the latest cyber and physical threats facing the Sector. Ms. Gorman served two years as the Chairperson of the ISAC Council. This council was created by 14 critical infrastructure ISACs that works together, and direct;y with The Department of Homeland Security to save costs and identify what cyber and physical threats and incidents should be shared across sectors.

Ms. Gorman also participated in a number of other initiatives. She was a founding member of the Financial Services Sector Coordinating Council (FSSCC); a Co-Chair of Financial and Economic Issues on the New York State Cyber Security and Critical Infrastructure Coordination Committee; and a member of the United States Secret Service New York Electronic Crimes Task Force. Ms. Gorman serves on SignaCerts and NetWitness’  Board of Advisors. Information Security Magazine identified Ms. Gorman as one of the top 25 “Women of Vision” in September 2003. Network World named Ms. Gorman as one of “The 50 Most Powerful People in Networking” in December 2006.

MICHEL E. KABAY, PhD, CISSP-ISSMP began programming computers in assembly language in 1965. In 1976, he received his PhD from Dartmouth College in applied statistics and invertebrate zoology and taught biology, statistics and programming as a university professor in Canada and overseas. In 1979, he joined a computer team for a new 4GL and RDBMS in the U.S. and then joined Hewlett-Packard Canada in 1980 as an operating systems and database performance specialist, winning the Systems Engineer of the Year Award in 1982.

He ran his own consulting firm, JINBU Corporation, from 1986 to 1998, specializing in operations management, facilities security, and corporate security policy development and implementation. He served as Director of Education for the National Computer Security Association (NCSA, later ICSA and the TruSecure) from 1990 to 1999 and then worked with the AtomicTangerine where he supported the International Institute for Information Integrity® (I-4®). He earned his CISSP designation in 1997.

Since 1986, he has published over 950 articles in operations management and security, written a college textbook on enterprise security (McGraw-Hill,  1996), and served as Technical Editor of the 4th Edition of the Computer Security Handbook ( Wiley, 2002). He writes two security-management columns a week distributed by Network World and is working on the 5th edition of the Computer Security Handbook for release in Winter 2008.

He has been a speaker at the United States War College, the Pentagon, NATO HQ, and at NATO Counterintelligence training in Germany. He was inducted into the ISSA Hall of Fame in December 2004 and earned his ISSMP designation from ( ISC)2 in November 2005. Dr. Kabay is the Program Director of the Master's Program in Information Assurance and is the CTO of the School of Graduate Studies at Norwich University, Northfield, VT 05663-1035 USA.

MR. STEPHEN R. KATZ, CISSP has been directly involved in establishing, building and directing Information Security and privacy functions for over twenty-five years. He is the founder and President of Security Risk Solutions, an information security company providing consulting and advisory services to major, mid-size, startup and venture capital companies. Steve is an Executive Advisor to Deloitte, is on the board of Directors of nCircle Inc, on the Technology Advisory Board of Phoenix Technologies and is of the Advisory Board of CSO Magazine. Steve is also a member of the (ISC)2 Americas Advisory Board for Information Systems Security.

Steve organized and managed the Information Security Program at JP Morgan for ten years. In 1995, he joined Citicorp/Citigroup after the Russian hacking incident. At Citi, Steve was the industry’s first Chief Information Security Officer. He spent the next six years directing Citigroup’s global Corporate Information Security office. Steve then joined Merrill Lynch as their Chief Information Security and privacy Officer, where he organized and instituted the company-wide privacy and security program.

Steve has testified before Congress an numerous information security issues and in 1998 was appointed Financial services sector Coordinator for Critical Infrastructure Protection by the Secretary of the Treasury. He was also the first  Chairman of the Financial Services Information Sharing and Analysis Center (FS/ISAC) and is an Advisor to the FS/ISAC Board of Directors.

MR. VICTOR KEONG, CISSP, CISM, CISA is a Partner in the Toronto office of Deloitte in the Security & Privacy Services. Mr. Keong is responsible for the Global Deloitte firm’s Vulnerability Management practice with particular expertise in Information Protection for Internet and Intranet networks, and the full cycle vulnerability management consulting services. Mr. Keong sits on the board of (ISC)2’s Americas Advisory Board, and manages Deloitte’s relationship with (ISC)2 globally. Mr. Keong is a highly regarded security professional, is regarded as one of Deloitte’s pioneers in providing security consulting services to corporate clients around the world. He has also made several media appearances commenting on the pressing security issues of our day.
MS. MICKI KRAUSE, MBA, CISSP is  currently serving as the Assistant Vice President; chief Information Security officer for the Information Security Program at Pacific Life Insurance Co.

Micki Krause has held positions in the Information Security profession for the past 20 years. She is currently the Chief Information security Officer at Pacific Life Insurance Company in Newport Beach, CA, where she is accountable for directing the Information Protection and Security Program for the enterprise. Pacific Life os the 15th largest life insurance company in the nation and provides life and health insurance products, individual annuities, mutual funds, group employee benefits, and a variety of investment products and services.

Krause was named one of the 25 most influential women in the field of information security by industry peers and Information Security magazine as part of their recognition of Women of Vision in the IT Security field and was awarded the Harold F. Tipton Award in recognition of sustained career excellence and outstanding contributions to the profession.

Micki has held several leadership roles in industry-influential groups including the Information Systems Security Association (ISSA) and the International Information System Security Certification Consortium (ISC)2 and is a passionate advocate for professional security leadership. She is a reputed speaker, published author and co-editor of the Information Security Management Handbook series.

MR. KEVIN MANDIA ,CISSP is an internationally recognized expert in the field of information security. He has over fifteen years of experience, beginning in the military as a computer security officer at the Pentagon. He has assisted attorneys, corporations, and government organizations with matters involving information security compliance, complex litigation support, computer forensics, expert testimony, network attack and penetration testing. Mr. Mandia established Mandiant specifically to bring together a core group of industry leaders on this field and solve client’s most difficult information security challenges.

Prior to forming Mandiant, Kevin built the computer forensics and investigations group at Foundstone from its infancy to a multi-million dollar global practice that performed civil litigation support and incident response services. As technical and investigative lead, Mr. Mandia responded on-site to dozens of computer security incidents yearly. He assisted numerous financial services and large organizations in handling and discretely resolving computer security incidents. He also led Foundstone’s computer forensic examiners in supporting numerous criminal and civil cases. He has provided expert testimony on matters involving theft of intellectual property and international computer intrusion cases.

During his career, Mr. Mandia has become an extremely experienced instructor. He has developed specialized classes for the Federal Bureau of Investigations, and personally trained over four-hundred FBI agents in investigating computer crime. He Has also developed specialized training for the United States Attorney’s Office, United States Secret Service, United States Air Force, State Department, the Royal Canadian Mounted Police, and other government agencies. He has trained at the FBI Academy, the National Advocacy Center, and the Federal Law Enforcement Training Center. He developed classes approved by the Continuing Legal Education (CLE) boards in the States of Virginia, New York, and California, and has trained hundreds of attorneys in the technical aspects of computer forensics and network intrusions. In addition to training law enforcement and attorneys, Kevin has provided on-site training at numerous Fortune 500 organizations. He has been a professional lecturer at Carnegie Mellon University and currently teaches courses at The George Washington University.

Mr. Mandia os co-author of Incident Response: Performing Computer Forensics (McGraw-Hill, 2003) and Incident Response: Investigating Computer Crime (McGraw-Hill, 2001). He has also written articles for SC Magazine and The International Journal of Cyber Crime. As a noted expert and author, Mr. Mandia is frequently invited to speak at a variety of forums, from legal conferences to technical security forums. He is regularly scheduled to present at Black Hat, Networld+Interop, TechnoSecurity, and the High Technology Crime Investigators Association. Mr. Mandia continues to advance the state-of-the-industry by presenting well-received articles and books. Kevin holds a Master of Science in Forensic Science from the George Washington University. He is a Certified Information Systems Security Professional, and has held government security clearances at the Top Secret and higher levels.

MR. LYNN MCNULTY, CISSP is the Director of Government Affairs for (ISC)2 and Co-Chair of the (ISC)2 Government Advisory Board for Cyber Security.

Lynn McNulty brings a wealth of information security management experience in government and private practice. During his 30-year career in the federal government, Lynn was Associate Director for Computer Security at the National Institute of Standards and Technology, the first Director of Information Systems Security at the State Department and Security Program Manager at the Federal Aviation Administration. Lynn has been a consultant since 1995, providing government affairs, business development and information security policy consulting services to private and public sector clients. He also served on the (ISC)2 Board of Directors for several years, manages government affairs for (ISC)2 and is Co-Chair of the (ISC)2 Government Advisory Board for Cyber Security. He is a member of the Information Security and Privacy Advisory Board established by the Federal Information Security Management Act.

Lynn is actively pursued by both national and local media outlets for comment as an expert source on U.S. federal government information security policy and related issues.

He has been a guest on PBS’s Jim Lehrer News Hour and has been featured in numerous federal IT publications such as Government Executive Magazine, Federal Computer Week, Government Computer News, Federal Times and SIGNAL Magazine.

MR. SEAN MOSHIR is the founder and current CEO, as well as the Chairman of CellTrust Corporation. During the course of his career, Moshir has focused exclusively on strategic network, enterprise security, and Secure Mobile Information Management (SMIM) software and services that support consumer and business process integrity and optimization. Moshir is also a leading authority on IT security, having founded today’s leading security patch and vulnerability management software company PatchLink™ Corporation ( now Lumension Security) in 1991 and led the Company’s successful growth strategy.

Moshir has led several industry changing technology initiatives including the creation of ManageWare, the world’s first network management language, which he then sold the trade name and rights to IBM. In the early nineties, he co-developed one of the very first network anti-virus VAPs for Central Point Software, which was  eventually acquired by Symantec Corporation. Moshir then created sophisticated network tests called NetBasic which he licensed and then sold to Novell. In 2001, Moshir sold IT management provider Altiris (now Symantec) a system management software program designed for UNIX/Linus operation systems. Just a few years later in 2004, Moshir’s Patchlink Update™ was licensed to Novell.

As founder of the security patch management space, Moshir led Patchlink’s hyper growth aggressively increasing personnel from 18 to over 200 employees and global expansion to the United Kingdom, Australia and Singapore resulting in a 25-fold increase in sales revenue. Mr. Moshir has received recognition and honors from industry and business publications such as Network World, Network Computing, Software Magazine, IT Security, The Wall Street Journal, Forbes, and Inc.

Moshir passionately advocates CellTrust’s core mission to collaborate with the mobile community with the end result of providing an intelligent environment for the trusted and convenient exchange of relevant, often highly confidential and personal data between businesses and consumers via the mobile device.


MR. BILL MURRAY, CISSP is an executive consultant for Cybertrust Corporation and Associate Professor at the Naval Postgraduate School. He is a Certified Information Security Professional (CISSP) and chairman of the governance and Professional Practices committees of (ISC)2, the certifying body. Bill is an advisor on the Board of directors of the New York Metropolitan Chapter of ISSA. He has more than fifty years experience in information technology and more than forty years in security. During more than twenty-five years with IBM, his management responsibilities included development of access control programs, advising IBM customers on security, and the articulation of the IBM security product plan. He is the author of the IBM publication Information System Security Controls and Procedures.

Mr. Murray has made significant contributions to the literature and the practice of information security. He is a popular speaker on such topics as network security architecture, encryption, PKI, and Secure Electronic Commerce. He is a founding member of the International Committee to establish the  “Generally Accepted System Security Principles” (GSSP, now referred to as the GASSP) as called for in the National Research Council’s Report: Computers at Risk. Bill remains as an active member of this committee. He is a founder and board member of the Colloquium on Information System Security Education (CISSE).

He has been recognized as a founder of the systems audit field and by Information Security Magazine as a Pioneer in Computer Security. In 1987, he received the Fitzgerald Memorial award for leadership in data security. In 1989, he received the Joseph J. Wasserman Award for contributions to security, audit and control. In 1995, he received a Lifetime Achievement Award from the Computer Security Institute. In 1999, he was enrolled in the ISSA Hall of Fame in recognition of his outstanding contribution to the information security community. In 2007, he received the Harold F. Tipton Award in recognition of his lifetime achievement and contribution. He holds a Bachelor Science Degree in Business Administration from Louisiana State University. He is a graduate of the Jesuit Preparatory High School of New Orleans.


On December 21, 2009, the White House announced that Schmidt had been appointed to the Executive Office of the President of the United States to serve as the Cyber-Security Coordinator of the Obama Administration. This position is known more commonly as the "Cybersecurity Czar" position.

Schmidt holds a bachelor's degree in business administration (BSBA) and a master’s degree in organizational management (MAOM) from the University of Phoenix. He also holds an honorary doctorate degree in humane letters. Schmidt’s certifications include CISSP and CISM.] He is a professor of practice at the Georgia Institute of Technology's GTISC, professor of research at Idaho State University, adjunct distinguished fellow with Carnegie Mellon's CyLab, and a distinguished fellow with the Ponemon Institute.

Previously, Schmidt served as a cyber-adviser in President George W. Bush's White House and has served as chief security strategist for the US CERT Partners Program for the National Cyber Security Division through Carnegie Mellon University, in support of the Department of Homeland Security. He has served as vice president and chief information security officer and chief security strategist for eBay.

In May 2003, Schmidt retired from the White House after 31 years of public service in local and federal government. After the 9/11 attacks, he was appointed by President Bush as the vice chair of the President’s Critical Infrastructure Protection Board and as the special adviser for cyberspace security for the White House in December 2001.

While at the White House, he assisted in the creation of the US National Strategy to Secure CyberSpace. He assumed the role as the chair in January 2003 until his retirement in May 2003, when he joined eBay.

In 1997, Schmidt joined Microsoft, as the director of information security, chief information security officer (CISO), and chief security officer (CSO). He was the co-founder of the Trustworthy Computing Security Strategies Group.

In 1994, Schmidt was a supervisory special agent and director of the Air Force Office of Special Investigations (AFOSI)Computer Forensic Lab and Computer Crime and Information Warfare Division.[17] In 1996, while serving in that position, he established the first dedicated computer forensic lab in the government, which was the basis for the formation of the Defense Computer Forensic Laboratory (DCFL).

Prior to the AFOSI in 1994, Schmidt was with the FBI at the National Drug Intelligence Center, where he headed the Computer Exploitation Team. Before working at the FBI, Schmidt was a city police officer from 1983 to 1994 for the Chandler Police Department in Arizona where he served on the SWAT team and the Organized Crime and Drug Enforcement Unit, and formed and led the Special Enforcement Team.

Schmidt began his government service in the United States Air Force in 1967, where he studied chemical weapons, high explosives, and nuclear weapons while attending munitions school. Between 1968 and 1974, Schmidt completed three tours of duty in Southeast Asia during the Vietnam War. He left active military duty in 1974 when started his civil service career at the Gila Bend Air Force Auxiliary Field, since renamed as the Barry M. Goldwater Air Force Range and served as chief of transportation and deputy director of resource management until 1982.

He served in the Arizona Air National Guard with the 161st Communications Squadron based at Phoenix International Airport, from 1989 until 1998. In 1998, Schmidt transferred to the U.S. Army Reserves as a special agent, Criminal Investigation Division, where he continues to serve and is currently assigned to the Computer Crime Investigations Unit (CCIU). He has also served with the 315th MP Det (CID) at Ft. Lawton in WA. He has testified as an expert witness in federal and military courts in the areas of computer crime, computer forensics and Internet crime

Schmidt was the first president of the Information Technology Information Sharing and Analysis Center.[23] He is a former executive board member of the International Organization of Computer Evidence, and served as the co-chairman of the Federal Computer Investigations Committee.

He served as a board member for the CyberCrime Advisory Board of the National White Collar Crime Center, and was a distinguished special lecturer at the University of New Haven, Conn., teaching a graduate certificate course in forensic computing. He has also taught courses for the FBI and DEA on the use of computers and law enforcement investigations.

He served as an augmented member to the President's Committee of Advisors on Science and Technology in the formation of an Institute for Information Infrastructure Protection.

MR. HAL TIPTON, CISSP, ISSAP, ISSMP  is currently an independent consultant and Past-President of the International Information System Security Certification Consortium, (ISC)2, was Director of Computer Security for Rockwell international Corporation for about 15 years. He initiated the Rockwell computer and data security program in 1977 and then continued to administer, develop, enhance and expand the program to accommodate the control needs produced by technological advances until his retirement from Rockwell in 1994.

He has been a member of the Information Systems Security Association (ISSA) since 1982, was President of the Los Angeles Chapter in 1984, and President of the national organization of ISSA (1987 - 1989). He was added to the ISSA Hall of Fame and the ISSA Honor Role in 2000. He was a member of the National Institute for Standards and Technology (NIST) Computer and Telecommunications Security Council and the National Research Council Secure Systems Study Committee (for the National Academy of Science).

He has published several papers on information security issues in: Auerbach Publishers “Handbook of Information Security Management”, “Data Security Management”,  “Information Security Journal”, national Academy of Sciences - “Computers at Risk” Data Pro reports, Elsevier, and ISSA “Access” Magazine. Additionally, he is currently serving as Editor of the Auerbach “Handbook of Information Security” publications.

He has been a speaker at all the major information security conference including” Computer Security Institute, the ISSA Annual Working Conference, the Computer Security Workshop, MIS Conferences, AIS Security for Space Operations, DOE Computer Security Conference, National Computer Security Conference, IIA Security Conference, EDPAA, UCCEL Security & Audit Users Conference, and Industrial Security Awareness Conference. He has conducted/participated in information security seminars for (ISC) 2, Frost & Sullivan, UCI, CSULB, System Exchange Seminars and the Institute for International Research. He participated in the Ernst & Young video “Protecting Information Assets.

He received the Computer Security Institute “Lifetime Achievement Award” in 1994 and the (ISC) 2Hal Tipton Award” in 2001. He has a B.S. in Engineering from the U.S. Naval Academy, a M.A. in Personnel Administration from George Washington University, and a Certificate in Computer Science from the University of California at Irvine.

MR. ED ZEITLER recently retired from the Executive Director position at (ISC)2. Prior to joining (ISC)2, he served as the head of information security at  VW Credit Inc., Charles Schwab, Fidelity Investments, Bank of America, and security pacific National Bank.

Mr. Zeitler has also participate on various committees such as the Los Angeles County Computer Crime Task Force, Department of the Treasury’s Financial Management Services Security advisory Panel, ANSI X9.E9 and X9.F2 Working Groups for security of financial systems, U.S. Treasury's EFT Task Force Subcommittee on Interoperability, ABA Information Systems Security Committee, (ISC)2 Qualifications Review Committee, National Computer System, Security and Privacy Advisory Board, and National Research Council’s Panel for Information Technology that annually reviews the National Institute of Science and Technology’s (NIST) Information Technology program. Mr. Zeitler holds a Bachelor of science in Mathematics and a Master of Science in Systems Engineering from the University of Arizona. While at Charles Schwab, Mr. Zeitler was a registered brokerage representative.


© Copyright 2006-2012. SCIPP International, Inc. All Rights Reserved.

All Contents of this site constitute the property of SCIPP International, Inc.,

and may not be copied, reproduced, or distributed without prior written permission.

MARK D. RASCH, Esq. joined FTI as managing director in the Technology practice in February 2007. He brings over 24 years of experience in the information security field, having served for nine years as the head of the United States Department of Justice computer crime unit, and having prosecuted key cases involving computer crime, hacking, computer fraud and computer viruses.  As managing director at FTI, Mr. Rasch will be focused on helping clients in the areas of computer security, privacy and incident response. 

Mr. Rasch has spent the last 15 years consulting with commercial and governmental clients on matters related to computer security, regulatory compliance, and electronic evidence handling and computer incident response. For the past 3 years he was the senior vice president and chief security counsel and Solutionary. Prior to Solutionary, Mr. Rasch helped establish the SAIC Center for Information Protection (CIP), a business unit within SAIC dedicated to commercial information security consulting. Starting with 9 people, the CIP developed first into Global Integrity Corporation, a wholly owned SAIC subsidiary, and then was acquired by Predictive Systems, Inc. Prior to that, he was in private practice with the Washington, D.C. office of Arent, Fox, Kintner, Plotkin & Kahn. 

While at the Department of Justice, he was responsible for investigations of computer hacking cases including those of the so-called “Hanover Hacker” ring, Kevin Mitnick and the prosecution of Robert T. Morris, author of the Cornell Internet Worm in 1988. He helped the FBI and Treasury Department develop their original procedures on handling electronic evidence. He created and taught classes at the FBI Academy and the Federal Law Enforcement Training Center on electronic crime and evidence. 

He has taught evidence law at the Catholic University School of Law, and white collar and computer crime at the American University School of Law. He has taught other computer and privacy law courses and incident response classes at the University of Fairfax, George Washington University, George Mason University, and James Madison University. He has also lectured at Stanford University, Harvard University and Harvard Law School. 

Mr. Rasch is frequently featured in news media on issues related to technology, security and privacy including. He has appeared on or been quoted by NBC News, MSNBC, Fox News, CNN, The New York Times, Forbes, PBS, The Washington Post, NPR and other national and international media. He writes a monthly column in Symantec’s Security Focus online magazine on issues related to law and technology and is a regular contributor to Wired magazine.



W. Hord Tipton, CISSP-ISSEP, CAP, CISA, Executive Director, (ISC)²

Mr. Tipton is the Executive Director for (ISC)², the global leader in educating and certifying information security professionals throughout their careers. A member of the Board of Directors since 2005, Tipton previously served as president and chief executive officer of Ironman Technologies, where his clients included IBM, Perot Systems, EDS, Booz Allen Hamilton and Symantec. Before founding his own business, he served for five years as Chief Information Officer for the U.S. Department of the Interior for over five years. There, he managed IT operations for 2,500 DOI offices with 3,650 IT employees, 5,800 contracted employees and an IT portfolio of US$1.2 billion. Tipton served in a number of business roles prior to his work as a full-time CIO.

He was directly responsible for balancing resource usage involving forestry, recreational programs, mineral extraction, law enforcement, and wild land firefighters throughout the United States. As director for international programs for the Minerals Management Service, he implemented a mining regulatory program in Indonesia and collaborated with Russian officials to implement improved mining processes.  Before entering government service, he worked for 13 years as an engineer for Union Carbide Nuclear Corporation in Oak Ridge, Tennessee.

Tipton holds a bachelor’s degree from the University of Morehead and a master’s degree from the University of Tennessee, and in 2004, he received the Distinguished Rank Award from the President of the United States, the highest lifetime award attainable by a federal civil servant.