MARITIME RISK SYMPOSIUM

Transcription

1 th Annual MARITIME RISK SYMPOSIUM NOVEMBER 13-14, 2017 TIFFIN UNIVERSITY THE MARION CENTER

2 Welcome Dear Symposium participants, Welcome to the 8th Annual Maritime Risk Symposium, hosted by Tiffin University. It is a pleasure to bring together such a dynamic group of people to discuss maritime cyber security. The dependence of modern ships and ports on technology makes them vulnerable to cyber attack. This year s theme, Cyber Security in the Maritime Transportation System, builds upon the symposiums held at Rutgers (2015) and Long Beach (2016). We developed a series of panels and plenary sessions that highlight some of the most challenging cyber security issues facing the maritime community. Our format is designed to highlight the interdisciplinary nature of maritime cyber security. The program features experts from computer science, big data, physical security, policy, legal, practitioners and regulators to provide transformational insight into existing and emerging cyber security issues. We will also explore how cyber security education and research can prepare the maritime transportation system workforce, and finally, a national panel will discuss cyber security research and its application to the maritime transportation sector. The Symposium will conclude with a final panel to discuss the depth and breadth of the proceedings to capture important insights, observations and innovative ideas and to propose the foundation of future maritime cyber security symposia. We appreciate your attendance and look forward to the sharing of information and ideas. CONTENTS SCHEDULE OF EVENTS Monday, Nov PANEL Threats in Maritime Cyber PANEL Afloat Cyber Vulnerabilities PANEL Legal & Insurance Issues in Maritime Cyber PANEL Advancing Maritime Cyber Education and Research PANEL Maritime Cyber: An Industry Perspective PANEL Maritime Cyber Risk: The Holistic View Tuesday, Nov PANEL Maritime Cyber Risk: The National Labs Panel BIOGRAPHIES...10 ABOUT TIFFIN UNIVERSITY...29 Sincerely, Scott Blough Executive Director Center for Cyber Defense & Forensics Tiffin University Dr. Joseph DiRenzo, III Director of Research Partnerships Research & Development Center U.S. Coast Guard HISTORY OF THE MARITIME RISK SYMPOSIUM...30 SPONSORS / THANK YOU...30

3 MONDAY, NOV. 13, a.m. Transportation Pick-Up at Holiday Inn and Hampton Inn 7:30 a.m. Badge Pick-Up and Breakfast at Marion Center 8 a.m. Welcome by National Co-s Keynote by The Honorable Jim Jordan Opening of Program by Master of Ceremonies VADM Rob Parker 8:35-9:25 a.m. PANEL 1 Threats in Maritime Cyber CAPT Ryan Manning Panelists Daniel M. Meidenbauer, Johns Hopkins University RADM Tom Atkin, USCG (Ret) Jason Warren, USCG Cyber security is one of the most serious economic and national security challenges we face as a nation. Adversaries, including state-sponsored and independent hacker groups, terrorists, transnational organized crime groups and insider threats, can pose significant threats to our nation s Marine Transportation System (MTS). Yet these same systems allow the MTS to operate with an impressive record of efficiency and reliability. The maritime industry continues to increase use of cyber technology. Facility and vessel operators use computers and cyber dependent technologies for communications, engineering, cargo control, environmental control, access control, passenger and cargo screening, and many other purposes. Safety and security systems, such as security monitoring, fire detection and general alarm installations increasingly rely on computers and networks. While these computer and network systems create benefits, they are inherently vulnerable and could introduce new vulnerabilities. Exploitation, misuse or simple failure of cyber systems can cause injury or death, harm the marine environment, disrupt vital trade activity and degrade the ability to respond to other emergencies. Threats in Maritime Cyber will explore potential threats and vulnerabilities with vessels, facilities and impact on the maritime domain in general (to include critical infrastructure) and will discuss the resulting national security implications. From the recent Navy casualties to the NotPetya incident that affected global shipping giant A.P. Moller-Maersk, this panel will serve as an opener to MRS 2017, but will also open the eyes of the audience to the potential threats that cyber risks present to the maritime environment. 9:25-10:40 a.m. PANEL 2 Afloat Cyber Vulnerabilities CAPT David Moskoff, USMMA Panelists Kevin Jones, Ph.D., Plymouth University Jason Kent, AsTech Consulting Tom Longstaff, Ph.D., Johns Hopkins University Cris DeWitt, American Bureau of Shipping Afloat and ashore cyber vulnerabilities share similar maritime exposures. However, due to the unique environment and mobility aspects, afloat cyber issues particularly include connectivity challenges of radio frequency as well as problems presented by remoteness of operations. The very nature of distant and isolated ocean operations is a distinctive cyber vulnerability in itself. Afloat Cyber Vulnerabilities will look at various multi-faceted vulnerabilities which presently confront the industry and those which may be foreseeable for the near term. For instance, as ships, rigs, offshore terminals and floating ports strive toward even newer technologies, the need to recruit trained, well-qualified people will require innovative approaches to attract and retain them. Today, social connections to relatives and friends ashore will be paramount, demanding large data streams resulting in proportionate cyber vulnerabilities. In this regard, and just this past year of , newly launched satellite systems have started to offer online, high-speed data capabilities that were previously unavailable and at a price that is sure to drop with competition. These new highspeed capabilities will also be necessary as Big Data exchange advances. This new and critical transmission capacity is but one of the double-edged swords we must manage to optimize benefits and minimize liabilities. The panel will offer specialized cyber discussion on maritime aspects including vessel operations, business and industry, safety and security, crewing, autonomous operations, as well as research and regulatory issues, merged with discussion on interplay between cyber technology vulnerabilities and human susceptibilities. The range of presenters will be truly informative about what the new afloat maritime cyber environment vulnerabilities are now and those which may be ahead. From massive drone ships to floating cities to offshore energy sector fields, whatever the mind can imagine and artificial intelligence can dream of, Afloat Cyber Vulnerabilities are real and present. 10:40-11:10 a.m. Break 11:10 a.m. - 12:10 p.m. PANEL 3 Legal & Insurance Issues in Maritime Cyber Randall Sandone, Executive Director, CIRI Panelists Kate B. Belmont, Esq., Blank Rome LLP By Skype Jay Kesan, Ph.D., J.D., University of Illinois at Urbana-Champaign Robert Parisi Jr., Esq., Managing Director, Marsh This panel explores residual risk dimensions of cyberattacks. As cyber experts increasingly recommend a pivot from prevention toward detection, a concession that most networks are already compromised at some level or can be penetrated by a determined attacker, 4 MARITIME RISK SYMPOSIUM SCHEDULE OF EVENTS SCHEDULE OF EVENTS NOVEMBER 13-14,

4 MONDAY, NOV. 13, 2017 (continued) enterprise risk managers need to consider legal exposures, business disruption and other catastrophic impacts from a cyberattack. In tandem with the consideration of consequential and residual risk, they also need to assess their insurance coverage, understanding the types of insurance coverage appropriate for their risk profile. On this panel, lawyers with experience in maritime and cyber breach coaching will share knowledge about reducing risks and how to handle a cyber incident. Additionally, insurance considerations and a discussion of the changing cyber insurance marketplace will be shared with attendees. From these talks, attendees will learn more about special considerations of risk associated with the maritime market segment, what risk mitigation steps they should take now, what to do to reduce legal exposures in the event of a cyberattack, and other incident handling considerations that reduce risk and aid insurance claims. 12:10-1:10 p.m. Lunch Break 12:50-1:10 p.m. Luncheon Speaker Jeff Moulton, Louisiana State University 1:10-2:30 p.m. PANEL 4 Advancing Maritime Cyber Education and Research Chris Doane, USCG Panelists RADM Kevin Lunday, USCG Dave Mayhew, Ph.D., University of Alabama Susanne Wetzel, Ph.D., Stevens Institute Sean Plankey, BP Maj Alan C. Lin, USAF, AFIT Defense of our Maritime Transportation System (MTS) is critical to our nation s economic security. This defense includes cyber security as the MTS becomes increasingly reliant upon technology. Both the MTS workforce and government regulators need to be educated on all aspects of cyber security including vulnerabilities, threats, methods and defenses to protect the viability of the MTS. If the MTS workforce is uninformed on cyber security and their daily interactions with often innocuous systems that actually offer hackers access to critical cyber infrastructure, the risk of a successful cyberattack crippling operations is very high. Similarly, if government officials are not adequately educated on MTS technology vulnerabilities to cyberattack and appropriate defenses, they will fail in their responsibilities to enhance the effectiveness and efficiency of MTS operations. This failure could result in over-regulation, creating unnecessary cost for the industry leading to distrust and acrimony undermining the common goal of defending the MTS. A panel of government, industry and academic experts in cyber security will discuss the best methods for educating our workforce and government regulators on cyber security. The panel will also discuss research opportunities for improving education on cyber security. The outcome of these discussions will be recommendations toward best-value methods for defending the MTS from cyberattack through education and innovation. 2:30-3 p.m. Break 3-3:50 p.m. PANEL 5 Maritime Cyber: An Industry Perspective Mike Edgerton, Hudson Trident Panelists James Dean, TrueCourse Advisory Services, LLC Max Bobys, HudsonAnalytix, Inc. RADM John Crowley (Ret) While cyber security is a concern for governments and has clear implications for national security, the bulk of the responsibility to secure cyberspace in the maritime domain falls to industry. The maritime industry is complex, and by its nature, international. The global nature of shipping and ports exacerbates the challenge of establishing effective cyber security programs that meet the needs of industry and the U.S. government, as well as other governments. Recently, the International Maritime Organization has released guidance for shipboard cyber security and the U.S. Coast Guard has released a draft Navigation and Inspection Circular for domestic port facilities. In both cases, the vessel or port operators will be responsible for assessing cyber security risks and implementing effective solutions. Maritime cyber defense is five-to-seven years behind financial services and other industries that have been targets much earlier. What can we learn and leverage from those industries to accelerate or even get ahead of the cyber criminals? While the private sector needs to be responsive to governmental concerns and requirements, are there additional considerations that the private sector needs to consider such as the interests of third parties, the insurance industry, P&I Clubs and investors? If so, how can these interests be reconciled? Do they need to? An additional area of possible consideration is the requirement to balance enterprise and business security issues with those of government. Is there a disconnect or an opportunity for business? 3:50-4:50 p.m. PANEL 6 Maritime Cyber Risk: The Holistic View CAPT Paul Tortora, USN (Ret), USNA Panelists David Nicol, Ph.D., University of Illinois Mark Heckman, Ph.D., University of San Diego Andrew Pasternak, U.S Department of Homeland Security 6 MARITIME RISK SYMPOSIUM SCHEDULE OF EVENTS SCHEDULE OF EVENTS NOVEMBER 13-14,

5 MONDAY, NOV. 13, 2017 (continued) When one considers threats to maritime security, the discussion often turns to such issues as piracy, terrorism, illegal human and contraband traffic, port security, cargo security or other illegal activities. These threat considerations are thought of mostly in terms of the physical space, and often as singular threat vectors. The discussion of maritime threats rarely turns to the larger, less defined, and not wellunderstood area of maritime cyber risk. Last year, the Maritime Safety Committee (MSC 96) approved a set of interim guidelines on maritime cyber risk management, primarily aimed at enabling stakeholders to take necessary steps to safeguard shipping from current and emerging threats and vulnerabilities related to digitization, integration and automation of processes and systems in shipping. The systems that stakeholders should take those steps to safeguard include a wide range of systems such as: Bridge Systems; propulsion and machinery management and power control systems; access control systems; passenger servicing and management systems; passenger facing public networks; administrative and crew welfare systems; and communication systems. While these may seem like singular or various disparate systems, in many cases, these systems are quite interconnected internally and externally, with existing and unknown vulnerabilities. As we move to more and more digitally connected maritime systems, to include autonomous and adaptive technologies, the holistic view of how these and future systems interconnect and present even more of a cyber security risk to safe transit, flow of commerce, and freedom of movement at sea and into and out of ports. Given that the pace of using and installing such systems will only increase, how should stakeholders adequately protect currently installed systems of various stages of technological advances, while planning for even more advanced and interconnected maritime systems in the future? 4:50-5 p.m. Day One Summary VADM Rob Parker 5 p.m. VADM Rob Parker Introduces Student Poster Session Poster Session: Student / Faculty David Nicol, Ph.D., University of Illinois Vice Rick Luettich, PhD., University of North Carolina Abstract Reviewers Jackie Earle, Ph.D., USCG Kelli Frakes, Ph.D., American Military University Rick Luettich, Ph.D., University of North Carolina Brian Simpkins, Ph.D., American Military University Mark Heckman, Ph.D., University of San Diego Ali Yurekli, Ph.D., Tiffin University Kevin Cashen, Tiffin University CDR Mike Plumley, USCGA Judges Fred Roberts, Ph.D., Rutgers University Rick Luettich, Ph.D., UNC Gabe Weaver, Ph.D., University of Illinois CAPT Drew Tucci, CO, USCG Sector LIS CAPT Paul Tortora, USNA RADM Mike Parks, USCG (Ret) Prof Rick Paxton, Campbell University Jack McCready, Ph.D., University of San Diego Roland Varriale, Argonne National Lab CDR Mike DeWalt, USN 5-5:30 p.m. Break 5:30-7:30 p.m. Reception (Heavy hors d oeuvre) Wall St. Pub 7:15-7:45 p.m. Transportation back to Hampton Inn & Holiday Inn TUESDAY, NOV. 14, a.m. American Public University System Student Breakfast Osceola Theatre, Gillmor Student Center 7:15 a.m. Transportation Pick-Up at Holiday Inn and Hampton Inn 7:30 8 a.m. Breakfast at Marion Center 8:15-8:45 a.m. Keynote by RDML Joanna Nunan 8:45-9:45 a.m. PANEL 7 Maritime Cyber Risk: The National Labs Panel Craig Moss, Oak Ridge National Laboratory Panelists Jovana Helms, Ph.D., Lawrence Livermore National Laboratory Shawn Ricketts, Pacific Northwest National Laboratory Stacy Prowell, Ph.D., Oak Ridge National Laboratory Roland Varriale, Argonne National Laboratory The mission of the Department of Energy s National Laboratories is to advance science and technology to fulfill its sponsors missions, of which the Department of Homeland Security and the United States Coast Guard are. Additionally, leveraging research and infrastructure that exists at the National Laboratories can expand the reach of the USCG and the eleven current Centers of Excellence (COE). The goal of this panel is to communicate maritime cyber security capabilities including operational, infrastructure and research at four National Laboratories (Argonne National Laboratory, Lawrence Livermore National Laboratory, Oak Ridge National Laboratory and Pacific Northwest National Laboratory) then discuss possible ideas for collaboration across the USCG/COE. These collaborations may include access to infrastructure, inclusion in research or information about operational procedures. Note that the collaborations could go from the USCG/COE to the National Laboratories or from the National Laboratories to the USCG/COE. 9:45-10:15 a.m. LSU Mobile Cyber Lab 10:15-10:45 a.m. Break 10:45-11:45 a.m. Wrap Up Session Summarize Event & Research Questions Developed RADM Fred Rosa, USCG (Ret), Johns Hopkins University 8 MARITIME RISK SYMPOSIUM SCHEDULE OF EVENTS SCHEDULE OF EVENTS NOVEMBER 13-14,

6 TUESDAY, NOV. 14, 2017 (continued) REAR ADMIRAL TOM ATKIN KATE BELMONT, J.D. Panelists Fred Roberts, Ph.D., Rutgers University RADM Kevin Lunday, USCG CYBER Command Laurie Thomas, University of Findlay Maj Gen Randy Church Kee, USAF (Ret), Arctic Domain Awareness Center of Excellence RADM Tom Atkin is founder and managing principal of The Atkin Group, a firm that provides strategic and operational advice to senior government and corporate executives. Prior to founding The Atkin Group, Tom served as the acting assistant secretary of defense for Homeland Defense and Global Security. He was responsible for Department of Defense (DoD) strategy and policy on cyber, countering weapons of mass destruction, space, homeland defense, domestic antiterrorism, global force protection, continuity of government, mission assurance, critical infrastructure, defense support to civil authorities, border security support and technology/equipment transfers to domestic agencies. He also served as the DoD domestic crisis manager, DoD principal cyber advisor, and executive director of the Council of Governors. Kate Belmont, J.D. is an associate at Blank Rome LLP and concentrates her practice in the areas of admiralty and maritime law, commercial litigation and arbitration. She represents clients in a wide variety of both domestic and international maritime and commercial matters, including maritime casualties, charter party disputes, vessel arrests and maritime cyber security. 11:45 a.m. - Noon Report and Wrap Up 12:15 p.m. Speed Networking Lunch 12:30-5 p.m. Transportation to CMH 12:30-2:30 p.m. MRS 2018 First Planning Session Luncheon (2018 planning team only) Osceola Theater, Glllmor Student Center 1-4 p.m. Speed Mentoring Holly Wendelin, USCG Speed Mentors: Wendy Chavez, USCG Johnnie Green, Special Agent in Charge, NCIS SE Asia Field Office Maj Gen Randy Church Kee, Arctic Domain Awareness Center of Excellence Craig Moss, ORNL LTC Teri Williams, OHANG Laurie Thomas, University of Findlay 10 MARITIME RISK SYMPOSIUM SCHEDULE OF EVENTS Biographies Atkin retired from the Coast Guard as a Rear Admiral (Upper Half) after more than 30 years of service in various operational and strategic roles. He has significant government experience, serving in roles at the White House National Security Council, Department of Defense, Department of Homeland Security, Federal Emergency Management Agency, and U.S. Navy. He is a graduate of the United States Coast Guard Academy, earning a Bachelor of Science degree in mathematical sciences. He earned a Master of Science degree in management science from the University of Miami. Belmont is a member of the Maritime Law Association Cyber Security Committee and also serves as the NY/NJ Chapter president of Women s International Shipping & Trading Association ( WISTA ) USA. She also teaches Information Security & Law as an adjunct professor at the Stevens Institute of Technology. In 2015, Belmont was named Cyber Security and Data Privacy Trailblazer, by The National Law Journal. She earned a Bachelor of Arts degree, with honors, from Barnard College and a Juris Doctorate degree from Fordham University School of Law. SCOTT BLOUGH Scott Blough is the executive director of the Center for Cyber Defense & Forensics and an associate professor in the Department of Criminal Justice and Security Studies at Tiffin University, where he specializes in cyber defense and digital forensics, policy development, corrections, BIOGRAPHIES NOVEMBER 13-14,

7 SCOTT BLOUGH (continued) international crime, and terrorism. Blough is the national co-chair for the 2017 Maritime Risk Symposium and is a member of the United States Coast Guard Research and Development Center s Maritime Cyber University Partnership Effort: Fostering Collaboration, Research & Contributions to the Body of Knowledge, and serves as a strategic advisor to the Maritime and Port Security Information Sharing and Analysis Organization. He is a member of InfraGard; the Ohio Cyber Collaboration Committee, where he is the of the Governance Sub-Committee; the Information Systems Security Association Central Ohio Chapter; and is an active participant in the Information Security Summit. Blough has authored numerous publications on cyber defense, international justice and corrections issues, and consults on cyber security, security and justice policy, technology application and corrections issues. His recent publications include: Maritime Cyber Security: What About Forensics, Issues in Maritime Cyber Security (2017); Cyber Shoal Waters: Understanding and Meeting Emerging Cyber Threats to the Marine Transportation System, Maritime Reporter and Engineering News (2017); Shoring up Cyber: Maritime Cyber Hygiene, Maritime Reporter and Engineering News (forthcoming 2017). Prior to Tiffin University, he served as chief of the Bureau of Adult Detention in the Ohio Department of Rehabilitation and Correction, where he had oversight of over 250 jails throughout Ohio. His publication, Minimum Standards for Jails in Ohio, serve as the administrative rules governing jail operations in Ohio. He earned a Master of Science degree from Tiffin University and is currently pursuing a Doctor of Philosophy degree in International Security (ABD) from the University of Southern Mississippi. MAX BOBYS Max Bobys draws on 24 years of experience with technology startups, enterprise risk management and new product development, spanning such disciplines as cyber security and integrated physical/electronic security systems in the maritime security space. As vice president of global strategies for HudsonAnalytix, Inc., a global maritime risk management firm, he is responsible for identifying new and emerging capabilities to bring to the global maritime industry and leads the company s cyber risk management practice in bringing to market best-in-class cyber risk management, assessment and threat information sharing solutions tailored specifically to the global maritime industry. He also works closely with HudsonTrident, the company s security arm, in supporting maritime clients with converged and evolving cyber physical security requirements. Mr. Bobys previously served in a variety of executive positions at such companies as Civitas Strategy Group, providing specialized advisory support to companies in the Homeland Security, defense and intelligence markets. He has also successfully co-founded several companies offering innovative, first-to-market capabilities in the cyber security, intelligence, and compliance management spaces. In these roles he worked with numerous Fortune 500 companies, government agencies and non-governmental organizations and has supported a wide range of clients, including various U.S. federal, state and local government bodies, including all branches of the U.S. Department of Defense, NATO, and numerous allied governments in Europe, Latin America and the Caribbean. He currently advises the Organization of American States Inter-American Committee on Ports on matters of maritime cyber risk management and serves on the Delaware Bay Area Maritime Security Committee s Sub- Committee on Cyber Security. DAVID HAUKUR BOYD David Haukur Boyd, originally from Iceland, serves as operations analyst in the Operations Analysis Division, U.S. Coast Guard Pacific Area. Having served in three U.S. Coast Guard Cutters and one Naval Destroyer, Boyd completed the requirements and has a Merchant Marine License as Master of up to 1500 tons and Chief Mate of vessels of unlimited tonnage. He has over 30 years of combined military and civil service in the U.S. Coast Guard and his sea time is now served as often as possible as a cruise ship passenger. Boyd earned a Bachelor of Science degree in mathematics from the U.S. Coast Guard Academy and a Master of Science degree in public administration from California State University, East Bay. JOHN CROWLEY John Crowley is executive director of the National Association of Waterfront Employers (NAWSE). NAWSE serves as the voice of the marine terminal and stevedore industry and promotes marine cargo efficiency, security and safety, a clean environment, international trade and economic growth. Over the course of his term, he has been a lecturer on port and terminal security matters with particular focus on private sector innovative container scanning technology and industrywide discussion on growing cyber security concerns. He is a member and the of the National Maritime Security Advisory Committee. Prior to serving NAWE, Crowley served as senior vice president for law and regulatory affairs for APM Terminals North America, Inc. There, he also served in leadership roles for safety, security and environmental matters at facilities across North, Central and South America. His work exposed him to global port security challenges. Included facilities ranged from among the most sophisticated located in Virginia to older facilities all required to meet global security standards. Crowley served and retired as a Rear Admiral in the U.S. Coast Guard after active service for 33 years. He served in both senior operational and legal positions as well as in five Cutters, twice in Command. His last assignment was as the Ninth District Commander, responsible for maintaining maritime security throughout the Great Lakes, extensively coordinating with state and federal organizations as well as Transport Canada. He was a leader in formulating the first National Maritime Security Strategy. JAMES DEAN James Dean brings 30-years experience in providing hands-on leadership of business, information technology and security strategy to the financial services and maritime industry. His experience includes information technology and consulting management at leading FinTech companies and international consulting firms - including KPMG and BearingPoint. He also Holds CISSP and AML/CA certifications. He founded TrueCourse, which provides cyber security policy, strategy and management advisory services to the maritime, shipping and port operations industries. He is a very active in the payments industry and co-chairs 12 MARITIME RISK SYMPOSIUM BIOGRAPHIES BIOGRAPHIES NOVEMBER 13-14,

8 JAMES DEAN (continued) a payment industry Law Enforcement Alliance Program. In this capacity, he has worked closely with the National Cyber & Forensic Training Alliance, Federal Bureau of Investigation and the United States Secret Service regarding cyber security and fraud. Part of the responsibilities in this role have been to lead the development of fraud and cyber crime scenarios and related best practices in the payment industry. Jim also serves on the Federal Reserve Board s Secure Payments Task Force and is an advisor to the Intelligence Community through the private sector program of the Office of the Director of National Intelligence. In addition, he serves as co-chair of programs committee of SE chapter of Business Executives for National Security. CRIS DEWITT Cris DeWitt is responsible for Operational Technology Cyber Security for the American Bureau of Shipping and is a frequent presenter on industrial control system cyber security on maritime assets. His day-to-day activities include mentoring ABS Cyber Safety team in field work and bringing field problems into the lab to research and solve. He is currently solving six tough cyber security questions posed by the USCG through a Steven s Institute project. DeWitt is credentialed as a Certified Information System Security Professional, a Global Industrial Control System Professional and was recently named a Senior Fellow by the Information Systems Security Association. His research interests include Raspberry Pi applications and machine learning. 14 MARITIME RISK SYMPOSIUM BIOGRAPHIES JOE DiRENZO III, Ph.D. CHRISTOPHER W. DOANE Joe DiRenzo III is Director of Research Partnerships at the United States Coast Guard (USCG) Research and Development Center. He began his career in the Navy, serving in both the submarine and surface warfare communities. He later transitioned to the USCG and held many roles before rising to the position of senior advisor to the area commander for science, technology, innovation and research. In 2015 he assumed his current position at the USCG Research and Development Center, assuming the additional duties of Director, Science and Technology Innovation Center, which is a joint effort with the department. Christopher W. Doane has been with the Coast Guard for more than 34 years as a military officer and civilian. He currently serves as the senior strategic planner and assistant division chief for resources at the U.S. Coast Guard Atlantic Area in Portsmouth, Va. His work includes the development and implementation of the area commander s various strategic plans. He also serves as the U.S. Coast Guard chair at the Joint Forces Staff College in Norfolk. A five-time winner of the service s prestigious JOC Alex Haley award, he has published more than 300 articles on various maritime terrorism and port security topics. He is currently on the Board of Trustees of Tiffin University, the Advisory Board of the Department of Homeland Security (DHS) Center of Excellence Coastal Resilience Center at the University of North Carolina, Chapel Hill and the Federal Coordinating Committee for the DHS Center of Excellence Critical Infrastructure Resilience Institute at the University of Illinois Champaign Urbana. He is a seven-time national co-chair of the Maritime Risk Symposium and was the co-chair of the Maritime Cyber Symposium held at Rutgers and California Maritime Academy. He teaches for American Military University and Northcentral University. DiRenzo is a graduate of the United States Naval Academy, earned a Master of Business Administration degree from California Coast University, and is a graduate of both the Naval War College and Marine Corps Command and Staff College. He earned a Doctor of Philosophy degree in business administration (Homeland Security Specialization) in 2007 at Northcentral University. Doane earned a Bachelor of Science degree in biological technology from the University of Maine at Machias. He also has a Master of Arts degree in national security and strategic studies from the U.S. Naval War College, and a Master of Science degree in ocean engineering from the University of New Hampshire. He has written extensively on maritime security topics providing articles for a variety of national and international periodicals and text books. MIKE EDGERTON A retired military officer, having served in both the U.S. Navy and Coast Guard, Mike Edgerton has been a security consultant working in over 50 countries for 10 years. He currently serves as vice president of HudsonTrident, a multinational consultancy specializing in security services for the maritime sector worldwide. A primary area of focus for Mike is the area of converged security. In this approach, an enterprise s security is managed across disciplinary lines with the integration of physical, operational and cyber/information security. Edgerton is a Certified Protection Professional, is a Fellow of the UK s Security Institute and is a member of ASIS Council on Global Terrorism, political Instability and International Crime. He is the author of, A Practitioner s Guide to Effective Maritime and Port Security. He earned a Bachelor of Arts degree in international relations from Bucknell University, a diploma from the U.S. Naval War College and a Master of Science degree in strategic intelligence from the Defense Intelligence Agency s National Intelligence University. MARK HECKMAN, Ph.D. Kevin Heckman has worked in the field of information security for more than 30 years as an engineer, researcher, practitioner and educator. His wide-ranging career has spanned many areas of information security including: research and development of very high-assurance, multi-level secure systems for use in government and the military; research and development of intrusion detection and security event management systems; and general IT security and compliance for commercial organizations in the financial and health industries. His research interests include fundamental science and engineering principles underlying the practice of security. He is currently a professor of practice and teaches in the Cyber Security Engineering and Technology program at the University of San Diego. BIOGRAPHIES NOVEMBER 13-14,

9 MARK HECKMAN, Ph.D. (continued) Heckman earned both a Master of Science and a Doctor of Philosophy degree in computer science at the University of California, Davis and is a Certified Information Systems Security Professional and Certified Information Systems Auditor. JOVANA HELMS, Ph.D Jovana Helms is currently deputy associate program leader for the Infrastructure and Resilience Program in Global Security Directorate at Lawrence Livermore National Laboratory. She leads projects in the area of cyber security, risk and resilience analysis, and modeling and simulation for critical infrastructure and federal networks. She previously gained experience at Sandia National Laboratories as a senior member of technical staff focusing on cyber security, risk analysis, critical infrastructure protection and disaster planning and response. Helms earned a Bachelor of Science degree in electrical engineering from the School of Electrical Engineering at the University of Belgrade. She also earned both a Master of Science degree and a Doctor of Philosophy degree in electrical and computer engineering from the University of California, Davis. KEVIN JONES, Ph.D. Kevin Jones has worked in both corporate entities and academia, in the U.S. and abroad, over the course of his career. He is currently a professor of computing science and executive dean of the Faculty of Science and Engineering at the University of Plymouth. The Faculty contains the Schools of Computing and Mathematics, Biological and Marine Sciences, Geography, Earth and Environmental Sciences, and Engineering. His research and teaching interests cover the trustworthiness of complex systems, including cyber security, with a focus on the maritime domain. Jones earned a Bachelor of Science degree in computer science, with honors, from the University of Reading, a Master of Science degree in computation from the University of Oxford, and a Doctor of Philosophy degree from the University of Manchester. Kevin is a Fellow of the Institute of Marine Engineering, Science and Technology, the Institute of Engineering and Technology and the BCS The Chartered Institute for IT. He is a senior member of both the Institute of Electrical and Electronics Engineers and the Association for Computing Machinery, and is a Liveryman of the Worshipful Company of Information Technologists. CONGRESSMAN JIM JORDAN Jim Jordan was raised in Champaign County, Ohio, graduating from Graham High School, where he was a four-time state champion in wrestling. He went on to earn a Bachelor s degree in economics from the University of Wisconsin, where he was a two-time NCAA wrestling champion. He later earned a Master s degree in education from The Ohio State University and a Juris Doctor from Capital University in Columbus, Ohio. Jordan is a fiscal conservative and throughout his career, he has led the fight against tax hikes, including those proposed by his own political party. In Congress, Jordan has also emerged as a prominent defender of the taxpayer s pocketbook through his work on spending issues. In 2009, he introduced the only balanced budget alternative to President Obama s budget. In the 112th Congress, Jordan served as man of the House Republican Study Committee, the largest caucus of conservatives, advancing conservative ideas and solutions on Capitol Hill. In the 114th Congress, Jordan helped found the House Freedom Caucus, and served as its first man. Jordan serves on the House Judiciary Committee and the House Oversight and Government Reform Committee, where he serves as man of the Subcommittee on Health Care, Benefits, and Administrative Rules. MAJOR GENERAL RANDY CHURCH KEE Maj Gen Randy Church Kee, is executive director of the Arctic Domain Awareness Center at the University of Alaska, a Department of Homeland Security Center of Excellence where he leads a distributed team in a comprehensive effort of science and technology, research and development. Kee is a retired U.S. Air Force general and has commanded at the squadron, group and wing levels. He served as the vice commander of the U.S. Global Air Mobility Center. His staff assignments include U.S. Transportation Command, Headquarters USAF, and the U.S. Joint Staff in both Operations and Strategic Plans and Policy Directorates. He has contributed to U.S. Arctic Strategy, supported domain awareness technology development and contributed to Defense Support on Arctic planning initiatives. He culminated his military service as the director of strategy, policy, planning and capabilities for U.S. European Command in Stuttgart, Germany. Kee earned a bachelor s degree in mathematics from Oregon State University and master s degrees in administrative management from Gonzaga University, transportation management/air mobility from USAF Air Mobility Warfare Center and Air Force Institute of Technology, and strategic studies from Air War College. He has also completed many other military education programs including a National Security Studies Program at George Washington University. 16 MARITIME RISK SYMPOSIUM BIOGRAPHIES BIOGRAPHIES NOVEMBER 13-14,

10 JASON KENT Jason Kent is a 20-year veteran of the information security industry and currently serves as chief technology officer of AsTech, a consulting company that focuses on information security and security architecture for infrastructure, endpoints as well as web applications. Kent speaks globally on his research into application security as it concerns the internet of things and industrial endpoints, as well as leading various enterprises into creating security programs at any scale. He is a graduate of Ohio Dominican University, earning a combined Bachelor of Arts/Bachelor of Science degree in business communications and has gone on to earn numerous certifications including Cisco networking, project management and a software security foundations certificate from Stanford University. JAY P. KESAN, Ph.D., J.D. Jay P. Kesan is a professor at the University of Illinois, College of Law where he is H. Ross & Helen Workman Research Scholar and director of the Program in Intellectual Property and Technology Law. His research work focuses on computer security, informational privacy and intellectual property. At the University of Illinois, he is appointed in the College of Law, the Department of Electrical & Computer Engineering, the Information Trust Institute, the Coordinated Science Laboratory and the College of 18 MARITIME RISK SYMPOSIUM BIOGRAPHIES Business. He is also a co-principal investigator in the Critical Infrastructure Resilience Institute (CIRI), which is a DHS S&T Center of Excellence at Illinois. Kesan earned a Juris Doctor, summa cum laude from Georgetown University, where he received several awards including Order of the Coif and served as associate editor of the Georgetown Law Journal. After graduation, he clerked for Judge Patrick E. Higginbotham of the United States Court of Appeals for the Fifth Circuit. Prior to attending law school he earned a Doctor of Philosophy degree in electrical and computer engineering from the University of Texas at Austin, and worked as a research scientist at the IBM T.J. Watson Research Center in New York. His recent publications can be found on SSRN (Social Science Research Network) at ssrn.com. MAJOR ALAN C. LIN, Ph.D. Maj Alan C. Lin is keenly focused on the cyber world. He currently serves as an assistant professor of computer science in the Department of Electrical and Computer Engineering at the Air Force Institute of Technology, Wright-Patterson Air Force Base. His research there focuses on cyber training and education, digital forensics, software engineering and space systems. He is an acquisition officer (SPRDE-III, STM-II) and in the space cadre. Lin earned a Bachelor of Science degree in computer engineering and computer science from Rutgers University, and Master of Science and Doctor of Philosophy degrees in computer science from the Air Force Institute of Technology. TOM LONGSTAFF, Ph.D. Tom Longstaff is a program manager and principal cyber security strategist for the Asymmetric Operations Sector of the Applied Physics Laboratory at Johns Hopkins University. His work involves a wide variety of info centric operations projects on behalf of the U.S. government to include cyber security, autonomy, nuclear command and control, automated incident response, technology transition of cyber R&D, information assurance, intelligence and global information networks. Current interests also include cyber deception, interactive adaptive cyber defense, insider threat, cyber-physical systems and intrusion detection. He is also the chair of the Computer Science, Cyber Security, Data Science, and Information Systems Engineering Programs within the Whiting School at Johns Hopkins. He is an editor for Computers and Security, and has previously served as associate editor for IEEE Security and Privacy, general chair for the New Security Paradigms Workshop and Homeland Security Technology Conference, and numerous other program and advisory committees. His academic publications span topics such as malware analysis, information survivability, insider threat, intruder modeling and intrusion detection. Longstaff earned a Bachelor of Arts degree in physics and mathematics at Boston University, and a Master of Science degree in applied science and Doctor of Philosophy degree in computer science from the University of California, Davis. REAR ADMIRAL KEVIN E. LUNDAY RADM Lunday commands Coast Guard Cyber Command and serves as the assistant commandant for Command, Control, Communications, Computers and Information Technology (C4IT) where he is responsible for delivering effects in and through cyberspace to operate and defend Coast Guard networks, enable Coast Guard operations and protect the maritime transportation system. He previously served as the Director of Exercises and Training (J7), U.S. Cyber Command, where he was responsible for joint training of the Cyber Mission Force and delivery of trained and ready cyberspace forces for the Department of Defense. Lunday earned a Bachelor of Science in marine engineering from the U.S. Coast Guard Academy, is a distinguished graduate of the National War College with a Master of Science in national security strategy and is a graduate of the Naval War College (College of Naval Command and Staff). He holds a Juris Doctor from George Washington University Law School and is a judge advocate and licensed to practice law in Virginia and before the U.S. Supreme Court. He has earned numerous individual military awards include the Defense Superior Service Medal, Legion of Merit (2), Meritorious Service Medal (3), Coast Guard Commendation Medal (4) with Operational Distinguishing Device and Coast Guard Achievement Medal (2) with Operational Distinguishing Device. He is the recipient of the U.S. Intelligence Community National Intelligence Certificate of Distinction and was awarded the American Bar Association SCAFL Outstanding Military Service Career Judge Advocate Award. BIOGRAPHIES NOVEMBER 13-14,

11 CAPTAIN RYAN MANNING CAPT Ryan Manning is chief of the Coast Guard s Office of Port and Facility Compliance at the U.S. Coast Guard Headquarters in Washington D.C. where he is responsible for developing and implementing national Coast Guard policies concerning port, cargo and international supply chain safety and security. These include enforcement of the Maritime Transportation Security Act and other laws, regulations and policies pertaining to the safety, security, stewardship and resilience of our nation s ports and facilities. Manning earned a Bachelor of Science degree in civil engineering from the U.S. Coast Guard Academy and a Master of Science degree in mechanical engineering from the Naval Postgraduate School. He also earned a Master of Science degree in join campaign planning and strategy from the Joint Forces Staff College. DAVID MAYHEW, Ph.D. David Mayhew has more than 30-years of software industry experience and currently serves as the director of the Secure Architecture Initiative (SAI) and the Secure Architecture and Infrastructure Laboratory (SAIL) at the University of Alabama. technology that switches on a scale and speed that is otherwise impossible. Mayhew earned a Bachelor of Science degree in psychology and a Doctor of Philosophy degree in computer science, has authored a book on C++ performance optimization, and has been granted more than 35 patents. DANIEL M. MEIDENBAUER Daniel Meidenbauer has more than 10 years of experience performing a variety of engineering research efforts with specific expertise in cyber systems engineering, electro-mechanical equipment development and naval systems integration with Johns Hopkins University and the U.S. Navy. He is a member of the senior professional staff in the Applied Physics Laboratory at Johns Hopkins where he is regarded as a key thought leader for maritime cyber analysis efforts and is heavily involved in cyber-physical systems and critical infrastructure cyber strategy. Prior to Johns Hopkins, Meidenbauer was a naval officer supporting nuclear engineering efforts at NAVSEA 08, Naval Reactors. He continues to serve as a Cryptologic Warfare Officer in the U.S. Navy Reserve. Meidenbauer earned a Bachelor of Science degree in electrical engineering from Virginia Polytechnic Institute and State University and a Master of Engineering Management degree from Old Dominion University. CAPTAIN DAVID B. MOSKOFF S. CRAIG MOSS, II CAPT David A. Moskoff is a professor in the Department of Marine Transportation at the United States Merchant Marine Academy (USMMA). A recognized expert in maritime cyber security, he has chaired panels and steering groups for various external symposia, conferences and maritime-related exercises/drills. He has acted as USMMA point of contact for the USCG, USCG National Maritime Center and the Department of Defense (DoD) Threat Reduction Agency, providing independent study to midshipmen in maritime security and counter-terrorism venues. He is a senior expert advisor to NATO s Transport Group for Ocean Shipping, senior advisor to the DoD s Purposeful Interference Response Team, serves as a DoT/MARAD/USMMA representative to other federal entities, has represented the Department of Homeland Security abroad, and has made numerous presentations throughout the United States and internationally. He also serves as president of MARITECH, a marine consulting and maritime services firm. Craig Moss is a senior program manager at Oak Ridge National Laboratory (ORNL) where he manages and develops homeland security research and development programs. In this role, he interacts with federal, state and local agencies to understand their operational requirements regarding homeland security missions. He analyzes operational gaps, working with ORNL researchers and the agency, to identify research and technology opportunities that can be applied to solve these complex national security challenges. He also coordinates and oversees the research and development activities at ORNL in support of the agency s needs. Moskoff earned a Bachelor of Science degree in marine transportation from the State University of New York Maritime College and a Master of Science in information technology from American Intercontinental University. He has a certified American Bureau of Shipping surveyor, certified ABS/QE ISO/ ISM third party external lead auditor as well as third party auditor for the American Waterways Operators Responsible Carrier Program, a certified vessel security officer, facility security officer and company security officer. He also holds a current USCG Unlimited Master s License and has commanded both steam and diesel ships. As a lieutenant colonel in the U.S. Army Medical Service Corps, Moss filled many roles, with the final assignment as the medical chemical, biological, radiological and nuclear defense staff officer at the Army Office of the Surgeon General. He earned a Bachelor of Science degree in physics from Austin Peay State University and a Master of Science degree in radiological health physics from Oregon State University. Mayhew was principal architect of both StarFabric and Advanced Switching. While working as chief technologist and fellow for Advanced Micro Devices (AMD), he pioneered an entirely new monolithic switch 20 MARITIME RISK SYMPOSIUM BIOGRAPHIES BIOGRAPHIES NOVEMBER 13-14,

12 JEFF MOULTON DAVID M. NICOL, Ph.D. Jeff Moulton has in-depth experience within the intelligence communities assessing and defining corporate-level and globally deployable network security solutions. He is executive director of Stephenson s National Center for Security Research and Training and the Transformation Technologies and Cyber Research Center at Louisiana State University (LSU) and is president & CEO of LSU s non-profit applied research and development corporation Nascent Technologies Corporation. David Nicol is the Franklin W. Woeltge professor of electrical and computer engineering at the University of Illinois at UrbanaChampaign (UIUC), and director of the Information Trust Institute (iti.illinois.edu). He is principal investigator for two recently awarded national centers for infrastructure resilience: the Department of Homeland Security-funded Critical Infrastructure Reliance Institute (ciri. illinois.edu), and the Department of Education funded Cyber Resilient Energy Delivery Consortium (cred-c.org). He is also principal investigator for the Boeing Trusted Software Center, and the National Science Association-funded Science of Security lablet. Prior to joining UIUC, he served on the faculties of the computer science departments at Dartmouth and the College of William and Mary. His research interests include trust analysis of networks and software, analytic modeling, and parallelized discrete-event simulation, research which has led to the founding of startup company Network Perception. Prior to LSU, Moulton served as the director of program development and information operations for Georgia Tech Research Institute. Before that he was information assurance assistant program manager at the Naval Surface Warfare Center. In this role he established an Information Assurance Division for the Deployable Joint Command and Control Joint Program Office. He provided leadership and direction for all information assurance facets of the $566M Joint Program of Record and managed the many facets of a major Department of Defense acquisition program. Moulton earned a Master of Science degree in management from Troy State University and served a twenty-four year career with the United States Air Force. He held a diverse set of technical and leadership positions across the globe, including communications and information functional manager for Air Force Special Operations Command, Hurlburt Air Force Base. 22 MARITIME RISK SYMPOSIUM BIOGRAPHIES Nicol earned a Bachelor of Arts degree in mathematics (1979) from Carleton College and a Master of Science and Doctor of Philosophy, both in computer science, from the University of Virginia. He is a Fellow of the Institute of Electrical and Electronics Engineers and Fellow of the Association for Computing Machinery (ACM). He is the inaugural recipient of the ACM SIGSIM Outstanding Contributions award, and co-author of Discrete-Event Systems Simulation, the widely used undergraduate textbook. REAR ADMIRAL JOANNA NUNAN RDML Joanna Nunan is the senior Coast Guard commander for the Great Lakes and Saint Lawrence Seaway, an area that encompasses eight states, a 1,500 mile international border, and a workforce of over 6,000 Coast Guard active duty, reserve, civilian and auxiliary men and women. She graduated from the Coast Guard Academy and her early sea duty was in the Caribbean, Gulf of Mexico and Western Pacific before she became the last commanding officer of the WWII era USCGC IRONWOOD in Kodiak, Alaska. Ashore, Nunan served the duties of military advisor to the Secretary of Homeland Security. She served as deputy sector commander in San Juan, Puerto Rico, and sector commander, Honolulu, Hawaii. Nunan earned a Master of Business Administration degree from Rensselaer Polytechnic Institute and her Merchant Mariner License as Master (1,600 Tons), Second Mate (2,000 Tons) and Third Mate (Unlimited). She was a Seminar XXI Fellow in MIT s Center for International Studies, a Coast Guard Fellow at the Center for Strategic and International Studies, and she completed the Homeland Security Executive Leaders Program at the Naval Postgraduate School s Center for Homeland Defense and Security as well as Harvard s National Preparedness Leadership Initiative. ROBERT A. PARISI JR., J.D. Robert Parisi is a managing director and national cyber product leader in Marsh s New York City headquarters. His current responsibilities include advising clients on issues related to intellectual property, technology, privacy and cyber-related risks as well as negotiating with the carriers on terms and conditions. He is also responsible for coordinating Marsh s global cyber network. Prior to joining Marsh, he was the senior vice president and chief underwriting officer (CUO) of ebusiness risk solutions at AIG. Robert joined AIG as legal counsel for its professional liability group and held several executive and legal positions, including CUO for professional liability and technology. While at AIG, he oversaw the creation and drafting of underwriting guidelines and policies for all lines of professional liability. Parisi was also instrumental in the development of specialty reinsurance to address aggregation of risk issues inherent in cyber, privacy and technology insurance. In addition to working with AIG, he has also been in private practice, principally as legal counsel to various Lloyds of London syndicates. Parisi earned a Bachelor of Arts degree in economics from Fordham College and a Juris Doctor from Fordham University s School of Law. He has received many honors including: one of the Rising Stars of Insurance by Business Insurance, a Power Broker by Risk & Insurance magazine and part of a Top Cyber Risk Broking Team by Advisen. BIOGRAPHIES NOVEMBER 13-14,

13 VICE ADMIRAL ROBERT C. PARKER VADM Robert Parker is currently an independent consultant and advisor for national and homeland security, maritime security and operations and cyber awareness. He is a Senior Fellow for the U.S. National Defense University Keystone, Capstone and Pinnacle courses and the U.S. Naval War College Combined Forces Maritime Component Commander Course. Parker served more than 35 years as a commissioned officer in the U.S. Coast Guard. His last post was Commander, Coast Guard Atlantic Area, where he served as the operational commander for all U.S. Coast Guard missions within a geographic region that ranged from the Rocky Mountains to the Arabian Gulf and spanned across 40 states and three territories. Prior to this, he was the first USCG officer to be U.S. Southern Command s Director of Security and Intelligence (J3/J2) in Miami, coordinating all U.S. military operations and intelligence efforts in the Caribbean, and Central and South America including the Department of Defense support to coordinated interagency responses after catastrophic earthquakes in Haiti and Chile in Admiral Parker holds a Master of Arts degree in national security and strategic studies from the U.S. Naval War College and completed a one-year National Security Fellowship at the John F. Kennedy School of Government at Harvard University. He is a 1979 graduate of the U.S. Coast Guard Academy. He attended 2006 National Defense University s CAPSTONE Program in 2006 and PINNACLE in Admiral Parker is an Honorary Master Chief in the United States Coast Guard, his most prized personal award. 24 MARITIME RISK SYMPOSIUM BIOGRAPHIES ANDREW PASTERNAK Andrew Pasternak serves as a risk and vulnerability analyst within the Department of Homeland Security, National Protection and Programs Directorate, Office of Cyber and Infrastructure Analysis. His work focuses primarily on transportation systems critical infrastructure, civil maritime operations and cyber security, and undersea cables. His efforts have led the Office of Cyber and Infrastructure Analysis to produce several maritime-related products, including documents focused on seaport cyber security, automated container terminals and container shipping disruptions. Pasternak earned a Bachelor of Arts degree in history from Georgetown University and a Master of Arts degree in intelligence and security studies from Brunel University, London. SEAN PLANKEY Sean Plankey is the Cyber Intelligence Advisor for BP, a global energy company. In this role, he works to maintain awareness and understanding of the threats and vulnerabilities emanating from cyberspace. Building relationships across the public and private sector, Sean works with government, private sector and academic organizations to enhance BP s situation awareness and guide its strategic and tactical cyber defense. Sean reports to the chief security officer, but works in seamless conjunction with BP s Digital Security Team to ensure cyber threats are viewed as a blended threat. His current research interest involves the operation of industrial control systems in contested environments. In addition to his work at BP, Plankey served as a Deputy CIO for Naval Intelligence for the U.S. Navy and deputy division chief for the U.S. Coast Guard where he currently serves as a lieutenant commander in the Reserves. Plankey earned a Bachelor of Arts degree from the U.S. Coast Guard Academy in management, and a Master of Science in computers and information technology from the University of Pennsylvania. STACY PROWELL, Ph.D. Dr. Stacy Prowell serves as the director of Oak Ridge National Laboratory s Vehicle Security Center. He is also the Laboratory s chief cyber security research scientist and is the program manager for the Lab s Cyber Security for Energy Delivery Systems program. Prowell s research focuses on exploiting physical sensors and properties to detect and prevent intrusion, on deep semantic analysis of compiled software, and on the security of software led to the Hyperion system, which received a 2015 R&D 100 award and two awards for technology transfer. Previously, he worked in the CERT Program of the Software Engineering Institute on automated analysis of malware. In his spare time, he is an associate professor of electrical engineering and computer science at the University of Tennessee. Dr. Prowell earned a Bachelor of Science degree and a Doctor of Philosophy degree, both in computer science from the University of Tennessee. He is a senior member of the Institute of Electrical and Electronics Engineers where he is also a Distinguished Lecturer for the Transportation Electrification Community. SHAWN RICKETTS Shawn Ricketts has more than 25 years of experience leading programs supporting the Department of Defense, the intelligence community in technology assisted analytics, and the full spectrum of cyber security and network operations. He currently serves as the cyber security manager at the Pacific Northwest National Laboratory. A retired naval aviator, he has served in aviation, intelligence and Information Operations (IO) billets on numerous command battle staffs. He earned Intelligence Officer Subspecialty qualifications through a Defense Intelligence Agency, Joint Military Intelligence College Master s program and by specializing in network and cyber IO. He also earned a Bachelor of Science degree in electrical engineering from the University of Notre Dame. BIOGRAPHIES NOVEMBER 13-14,

14 FRED ROBERTS Ph.D. RANDALL J. SANDONE LAURIE THOMAS CAPTAIN PAUL TORTORA Fred Roberts is a distinguished professor of mathematics at Rutgers University and director of the Command, Control and Interoperability Center for Advanced Data Analysis, a Department of Homeland Security University Center of Excellence at Rutgers University. For 16 years he directed the Center for Discrete Mathematics and Theoretical Computer Science, an original National Science Foundation Science and Technology Center. Roberts has served as co-chair of the NJ Universities Homeland Security Research Consortium, on the Health and Human Service Secretary s epidemiology modeling group, the NJ Governor s Health Emergency Preparedness Advisory Council and the NJ Domestic Security Preparedness Task Force Planning Group. Roberts has authored four books, over 185 scientific articles, and edited 21 books, the most recent of which on maritime cyber security was published in August His homeland security research interests include large venue security, resource allocation, container inspection, border security, behavioral responses to disasters, maritime cyber security and homeland security aspects of global environmental change. He has received the Commemorative Medal of the Union of Czech Mathematicians and Physicists, the Distinguished Service Award of ACM SIGACT, the National Science Foundation Science and Technology Centers Pioneer Award. He earned a Doctor of Philosophy degree from the University of Pennsylvania and received an honorary doctorate from the University of Paris-Dauphine. Randall J. Sandone is the executive director of the Critical Infrastructure Resilience Institute, a joint initiative of the Applied Research Institute and the Information Trust Institute at the University of Illinois at Urbana- Champaign. He is also a member of the Strategic Advisory Board of the Maritime and Port Security Information Sharing and Analysis Organization. Sandone has had a comprehensive career guiding research and technology projects in settings ranging from start-ups to Fortune 100 companies. He was the founder and CEO of a high-assurance software company that became the global leader in its market. The company grew to a staff of 120 with offices throughout the United States, Europe, the Middle East and Pacific Rim. He established strategic marketing and distribution alliances with Big Iron computer manufacturers such as Sun Microsystems, IBM and Fujitsu-Siemens. He also secured significant customer relationships with a wide range of organizations in the defense, intelligence and law enforcement communities as well as commercial customers including Credit Suisse, UBS, Chase Bank, the Federal Reserve, Volkswagen AG and Major League Baseball. In this, and in other executive leadership, he was responsible for technology transition and licensing, commercialization, product development and financial management. Sandone earned his MBA from the University of Utah. Prior to his civilian career, he served as an Airborne-Ranger Infantry Officer and helicopter gunship pilot in the U.S. Army. He was the Distinguished Graduate (top graduate) of the U.S. Army Rotary Wing Aviator Course, Commandant s List graduate of the Infantry Officers Course, and twice-selected Outstanding Junior Officer of the 82nd Airborne Division, Ft. Bragg, NC. Laurie Thomas public safety and security work experience spans more than forty years and includes serving in conservation law enforcement as well as with a municipal police department. She served the State of Ohio as chief park officer of East Harbor State Park and was a reserve police officer for the police department of Sandusky, Ohio. She joined the University of Findlay s Center for Terrorism Preparedness, now the All Hazards Training Center, in 2003 and is now head of the University s Facility Security Plan Services Unit. Her primary role for the University is conducting facility security plan audits and related services for maritime facilities subject to MTSA, the Maritime Transportation Security Act of Thomas served two terms as a member of the National Maritime Security Advisory Committee, one as vice-chair. Under the guidance of the Coast Guard, the National Maritime Security Advisory Committee advises the Department of Homeland Security and Congress about maritime security issues. She has served as Facility Security Officer (FSO) for the Port of Monroe Mich., the Trenton, Mich. Marine Terminal, and is currently FSO of the Meldrum Ore Dock in Huron, Ohio. CAPT Paul Tortora is the Director of the Center for Cyber Security Studies and was the first chair of the new Cyber Science Department at the United States Naval Academy. He recently retired from the Navy following a 26-year active duty career as both a nuclear submarine officer and a naval intelligence officer. During his active service, he served and deployed on two nuclear fast attack submarines, two amphibious assault ships and a nuclear aircraft carrier, conducting peacetime and combat operations across the globe. His ashore assignments included director of training at the Navy and Marine Corps Intelligence Training Center, on the staff of the director of naval intelligence, as the intelligence officer and naval aide to the Secretary of the Navy, and on the staff of the Office of the Director of National Intelligence. Tortora is a graduate of the U.S. Naval Academy, where he earned a Bachelor of Science degree in mathematics. He also earned a Master of Science degree in management from the University of Maryland and a Master of Arts degree in national security strategy from the U.S. Naval War College. His personal awards include the Legion of Merit, the Defense Meritorious Service Medal and the Meritorious Service Medal. He is a recipient of both the National Military Intelligence Association s Vice Admiral Rufus Taylor Award for Intelligence Leadership and the Rear Admiral Edwin T. Layton Award for outstanding leadership in Naval Intelligence. 26 MARITIME RISK SYMPOSIUM BIOGRAPHIES BIOGRAPHIES NOVEMBER 13-14,

15 ROLAND VARRIALE Roland Varriale has worked in various capacities from a business analyst to an intelligent transportation systems researcher and developer. He currently works as a cyber security analyst at Argonne National Laboratory. His current research includes the application of machine learning and adversarial networks to vehicle security as well as creating more holistic security plans for intrinsically insecure systems. He also has an interest in the application of security principles and protocols to VANETs and Intelligent Transportation Systems as well as personal device security on the Internet of Things. Varriale earned a Bachelor of Science degree in computer science from Manhattan College and a Master of Science in software engineering from the University of Scranton. JASON S. WARREN Jason Warren serves as the U.S. Coast Guard s cyber security specialist for maritime critical infrastructure and the marine transportation system at U.S. Coast Guard Headquarters in Washington D.C. He works closely with government and private sector security leaders to develop cyber risk management programs utilizing the National Institute of Standards cyber security framework. He also leads a team of cyber security specialists that develop cyber security policy and standards which assist with reducing cyber security risk 28 MARITIME RISK SYMPOSIUM BIOGRAPHIES in our nations seaports and vessels, and promotes cyber security threat and information sharing within the Maritime domain. He served 30 years as a Coast Guard active duty officer and retired in His robust background includes numerous assignments in the fields of maritime critical infrastructure protection, cyber information sharing, cyber security forensics and cyber security audit and compliance. Warren graduated from Excelsior University with a Bachelor of Science degree in computer science and a Master of Science degree in cyber security. He is also a Certified Information Systems Security Professional (CISSP). SUSANNE WETZEL, Ph.D. Susanne Wetzel is a professor in the Computer Science Department at Stevens Institute of Technology, where she leads a broad research program in cyber security and algorithmic number theory. She has contributed to research advances in secure multi-party computation (with applications in bartering, reconciliation, electronic voting and auctions), wireless security, privacy, biometrics, security economics and lattice-based cryptography. She developed and directs the department s undergraduate degree program in cyber security, which graduated its first class in Spring Her work in cyber security education and research has been supported by grants from National Science Foundation, Department of Homeland Security and the Department of Defense. Wetzel received her Diploma in computer science from the University of Karlsruhe (Germany) and a Doctor of Philosophy in computer science from the Saarland University (Germany). TIFFIN UNIVERSITY Tiffin University (TU) was established in 1888 and offers nationally accredited graduate and undergraduate degrees in business administration, top-notch bachelor s and master s degrees in criminal justice and social sciences, and distinctive degrees in the arts and sciences. TU has successfully transitioned from traditional seated students to a mixture of seated and online students, from across the country and around the world. The main campus in Tiffin is a beautiful 130-acre blend of traditional historic and modern buildings that create a vibrant and warm home for an educational community. TU graduate and undergraduate programs are offered online and at Fremont, Toledo, and several sites in the Greater Cleveland area. The MBA is also offered in Bucharest, Romania. There are no ivory towers at Tiffin University. Almost all faculty have spent time working in the field and bring to the classroom real, first-hand knowledge about the subjects they re teaching. They also bring with them valuable, realworld connections to enable and empower our students to find the best internships and other experiences that will transform their future. For information, visit or call THE CENTER FOR CYBER DEFENSE & FORENSICS The Center for Cyber Defense & Forensics at Tiffin University is focused on improving the education and training of future cyber defense and forensic personnel. The Center enhances the cyber capabilities of educational, private and governmental sectors through training, education, research, services and outreach. For more information about The Center for Cyber Defense & Forensics, Tiffin University s Cyber programs, or other programs through the School of Criminal Justice and Social Sciences, visit criminaljustice/programs. NOVEMBER 13-14,