Trey Herr is a Fellow with the Belfer Center's Cyber Security Project at the Harvard Kennedy School. His work focuses on trends in state developed malicious software, information security risk, and the structure of criminal markets for malware. Trey is also a non-resident fellow with New America’s Cybersecurity Initiative and previously worked with the Department of Defense to develop a risk assessment methodology for information security threats. He holds a Ph.D. and M.A. in Political Science from George Washington University and a B.S. in Theatre and Political Science from Northwestern University.

Richard M. Harrison is the Director of Operations and Defense Technology Programs at the American Foreign Policy Council (AFPC). He currently serves as managing editor of AFPC's Defense Dossier e-journal and as editor of the Defense Technology Monitor e-bulletin. He also directs a briefing series on Capitol Hill to educate Congressional Staff on defense technology issues affecting U.S. national security. Previously, he worked at Lockheed Martin where he functioned as a systems engineer. He completed his M.A. in Security Studies from Georgetown University's School of Foreign Service and earned a B.S. in Aerospace Engineering from Pennsylvania State University. 

Richard M. Harrison 
Co-Editor

CONTRIBUTORS

Trey Herr, Ph.D.
Co-Editor
AUTHORS OF BOOK CHAPTERS

Adrienne Allen is cybersecurity consultant with Slalom Consulting in San Francisco, where she focuses on risk management and cyber incident response planning in critical infrastructure and innovation-space technology organizations. Formerly a lead associate with Booz Allen Hamilton in Washington, DC, she worked closely with the Department of Homeland Security (DHS) and graduated from the University of Virginia and Johns Hopkins University, where she concentrated on Internet governance and security policy.

 

Dr. Aaron Brantly is Assistant Professor in the Department of Social Sciences, the Army Cyber Institute and the Combating Terrorism Center at the United States Military Academy. He has ten years of experience working in international development with a focus on information communications technologies (ICT) innovation and security and holds a Ph.D. in Political Science with a focus on International Relations and Comparative Politics from the School of Public and International Affairs at the University of Georgia.

 

Jane Chong is a graduate of Yale Law School. She previously researched national security issues at the Brookings Institution as a Ford Foundation Law School Fellow.

 

Joshua Corman is a Founder of I am The Cavalry (dot org) and Director of the Cyber Statecraft Initiative for the Atlantic Council. Corman previously served as CTO for Sonatype, Director of Security Intelligence for Akamai, and in senior research & strategy roles for The 451 Group and IBM Internet Security Systems. He co-founded @RuggedSoftware and @IamTheCavalry to encourage new security approaches in response to the world’s increasing dependence on digital infrastructure. Josh's unique approach to security in the context of human factors, adversary motivations and social impact has helped position him as one of the most trusted names in security. He also serving as an adjunct faculty for Carnegie Mellon’s Heinz College and on the 2016 HHS Cybersecurity Task Force.

 

Dr. Ryan Ellis is an Assistant Professor of Communication Studies at Northeastern. His research and teaching focus on topics related to communication law and policy, infrastructure politics, and cybersecurity. Prior to joining Northeastern, Ryan held fellowships at the Harvard Kennedy School’s Belfer Center for Science and International Affairs and at Stanford University’s Center for International Security and Cooperation (CISAC). He received a Ph.D. in Communication from the University of California, San Diego.


Kat Dransfield is a managing director at Eidos Group LLC specializing in how digital systems are created, managed, and used by corporations, governments, and individuals to create competitive advantage. She takes a human-centric approach to risk and emerging technology to develop the organizational structures and communication methods needed to succeed in the information economy. She has experience leading innovation and marketing efforts at the Department of the Navy and Applied Materials. Kat holds an MS in Social Science of the Internet from Oxford University, and a BS in English from the United States Naval Academy.

Mailyn Fidler is a Berkman Fellow at the Berkman Center for Internet & Society at Harvard Law School. She has an MPhil in International Relations from Oxford University, where she was a Marshall Scholar, and a joint degree from Stanford University in computer science and political science. She has worked with a variety of organizations on tech policy issues. Her academic work on tech policy issues has been drawn on by the European Parliament and non-governmental organizations.

Dr. Allan Friedman is the director of cybersecurity initiatives in the Office of Policy Analysis and Development at the National Telecommunications and Information Administration (NTIA), U.S. Department of Commerce. Prior to joining the federal government, Friedman was a noted cybersecurity and technology policy researcher, with positions at George Washington Univer- sity, the Brookings Institution, and Harvard University. He has a degree in computer science from Swarthmore College, and a PhD in public policy from Harvard University, and is the coauthor of Cybersecurity and Cyberwar: What Everyone Needs to Know (Oxford University Press, 2014).

 

Taylor Grossman is Technology Analyst at Clark Street Associates, a consulting firm in Palo Alto that works with emerging technology companies. Previously, she was Cyber Research Associate at the Hoover Institution, Stanford University, where she conducted research in cyber policy and cybersecurity. She has also served on the staff of the Office of the Assistant Secretary of Defense for Public Affairs. Taylor has a B.A. in Political Science with Distinction and Honors in International Security Studies from Stanford University. Her senior thesis on homeland security warning systems won the Firestone Medal for excellence in undergraduate research.

 

Lauren Boas Hayes is a cyber threat intelligence professional at Deloitte & Touche LLP who lives in Oakland, California by way of Washington, DC. She works at the nexus of the public and private sectors to develop cyber threat intelligence programs. She has worked in and studied the foreign policy community and seeks to shape U.S. engagement in cyberspace.

 

Drew Herrick is a Political Science PhD candidate specializing in international relations and research methods at George Washington University. He is also a Non-resident National Cybersecurity Fellow in the International Security Program at New America. His research primarily focuses on the intersection of international security and technology, especially counter-norm activity, offensive social media operations, and the military value of cyber capabilities. (drewherrick.com)

 

Jonah Force Hill is an internet policy specialist in the Office of International Affairs at the National Telecommunications and Information Administration (NTIA), U.S. Department of Commerce. He works on a range of Internet policy issues, including global data flows, Internet “fragmentation,” and cybersecurity policy. Previously, he served at a San Francisco-based national security consultancy where he advised corporate and public-sector clients on cybersecurity policy and strategy at the U.S. Department of State, and at the Office of the Cybersecurity Coordinator at the White House. He holds an MPP from the Harvard Kennedy School of Government, an MTS from Harvard Divinity School, and a BA from the University of California, Los Angeles.

Robert M. Lee is CEO of the critical infrastructure cyber security company Dragos Security LLC, a SANS Institute course author and researcher, and a Ph.D. candidate at Kings College London. He gained his start in cyber security as an Air Force Cyber Warfare Operations Officer in the US Intelligence Community. He may be found on Twitter @RobertMLee

 

Dr. Herbert Lin is senior research scholar for cyber policy and security at the Center for International Security and Cooperation and Research Fellow at the Hoover Institution, both at Stanford University. He is one of twelve commissioners selected by the White House and Congressional leadership for the President’s Commission on Enhancing National Cybersecurity. He is also Chief Scientist, Emeritus for the Computer Science and Telecommunications Board, National Research Council (NRC) of the National Academies and Adjunct Senior Research Scholar and Senior Fellow in Cybersecurity (not in residence) at the Saltzman Institute for War and Peace Studies in the School for International and Public Affairs at Columbia University. Prior to his NRC service, he was a professional staff member and staff scientist for the House Armed Services Committee (1986-1990). He received his doctorate in physics from MIT.

 

Anastasia Mark is a China specialist at Deloitte & Touche LLP, with a focus on cyber security and other issues of national defense. She graduated from Dartmouth College in 2011 with a Bachelor's degree in Political Science and Government and will graduate from Georgetown University in 2016 with a Master of Arts degree in East Asian Studies.

 

Robert Morgus is a Policy Analyst with New America's Cybersecurity Initiative where his research focuses on policy and other interventions to lessen the number and impact of cybersecurity incidents. His past research has focused on the intersection of cybersecurity and international affairs around incident response, risk management, and international norm development. Morgus has spoken about cybersecurity at a number of international forums including NATO’s CyCon, the Global Conference on Cyberspace at The Hague, and Cy Fy 2015 in New Delhi, India. His research has been published by the New York Times, Slate, the IEEE, peer-reviewed academic journals, and numerous other national and international media outlets.

 

Professor Paul Ohm is a Professor of Law at the Georgetown University Law Center where he specializes in information privacy, computer crime law, intellectual property, and criminal procedure and serves as a faculty director for the Center on Privacy and Technology at Georgetown. Before becoming a professor, he served as an Honors Program trial attorney in the U.S. Department of Justice’s Computer Crime and Intellectual Property Section, during which time he advised federal law enforcement agents and prosecutors in the enforcement of the Computer Fraud and Abuse Act. 

 

Eric Ormes is a cybersecurity specialist currently working in the private sector. He was previously employed by the U.S. government including service as a United States Air Force Communications and Information Officer. 

 

Jason Rivera is a professionally internationally experienced intelligence, cyber operations, and investigations expert who possesses over nine years innovating at the intersection of security operations and technology. He is a Manager at Deloitte & Touche LLP where he specializes in the development of cyber threat intelligence, investigations, and security operations programs for both commercial and federal clients. Prior to Deloitte, Jason served approximately seven years in the United States Army as an Intelligence Officer where he attained the rank of Captain and participated in a variety of roles to include assignments at the National Security Agency, United States Cyber Command, as well as having served in combat tours overseas.

 

Sasha Romanosky, Ph.D. researches topics concerning the economics of security and privacy, national security, applied microeconomics, and law & economics. He is a Policy Researcher at the RAND Corporation. Sasha holds a Ph.D. in Public Policy and Management from Carnegie Mellon University and a B.S. in Electrical Engineering from the University of Calgary, Canada. He was a Microsoft research fellow in the Information Law Institute at New York University and was a security professional for over 10 years within the financial and e-commerce industries at companies such as Morgan Stanley and eBay. Sasha is also co-author of the Common Vulnerability Scoring System (CVSS), an international standard for scoring computer vulnerabilities.

 

Paul Rosenzweig is the founder of Red Branch Consulting PLLC, a homeland security consulting company, and a Senior Advisor to The Chertoff Group. Mr. Rosenzweig formerly served as Deputy Assistant Secretary for Policy in the Department of Homeland Security and is a Distinguished Visiting Fellow at the Homeland Security Studies and Analysis Institute and Professorial Lecturer in Law at George Washington University.

 

Matthew Russell is an experienced cyber intelligence consultant at Deloitte & Touche LLP and a veteran Special Operations intelligence operator and instructor, specializing in low-visibility, high risk intelligence collection operations. He is in an internationally seasoned, expert that specializes in developing programmatic solutions to difficult business and cyber security issues. Matt effectively operates in both the federal and commercial lines of business by incorporating and optimizing intelligence collection and analytic activities across diverse client environments.

 

Nathaniel Tisa is a researcher at Deloitte & Touche LLP and policy advocate focused on the intersection of law, technology, and civil liberties and its implications for national security. He graduated from Georgetown University in 2014 and will enter law school as a JD candidate in Fall 2016.

 

Dr. Abraham Wagner is a Lecturer in Law at Columbia Law School and Senior Fellow at the Center for Advanced Study on Terrorism. Dr. Wagner holds both Ph.D. and JD degrees and served for over 30 years in various U.S. Government posts at the National Security Council, the Intelligence Community, and Department of Defense, including the Defense Advanced Research Projects Agency (DARPA) at the time of the transition to the Internet.  He has also served on the Defense Science Board and the scientific advisory boards of NSA and CIA.  For two years he served as the co-chair of an advisory panel for the Director of Central Intelligence focused on the evolution of cyberspace (Global Information Infrastructure) and requirements for the Intelligence Community.

 

Dr. Rand Waltzman joined the Software Engineering Institute of Carnegie Mellon University as Associate Director of Research in May 2015 after a five-year tour as a Program Manager in the Information Innovation Office of Defense Advanced Research Projects Agency (DARPA).  At DARPA, he created and managed the Social Media in Strategic Communications program as well as the Anomaly Detection at Multiple Scales insider threat detection program. Previously he worked at Lockheed Martin Advanced Technology Laboratories (LM-ATL), the Royal Institute of Technology in Stockholm, University of Maryland, Teknowledge Corporation, and the Applied Physics Laboratory of the University of Washington.

 

David Weinstein is the Chief Technology Officer (CTO) for the State of New Jersey. He previously served as the State’s first Cybersecurity Advisor. Prior to returning to his native state of New Jersey, Dave served at the United States Cyber Command at Fort Meade, where is portfolio spanned cyber operations, policy, and planning. In 2014, Dave was recognized by Forbes as a “top cyber policy expert” and his analysis and commentary has been featured in numerous media and academic publications. Dave is a Cybersecurity Fellow with New America and an “Influencer” with the Christian Science Monitor’s Security and Privacy project. In 2016, the New Jersey Tech Council awarded Dave the Non-Profit CISO of the Year. Dave holds degrees from Johns Hopkins University Georgetown University’s School of Foreign Service.

 

Heather West leads public policy for the Americas at Mozilla, the maker of the Firefox browser. She is part policy-to-tech translator, part product consultant, and part long-term Internet strategist. She was recognized as one of the 2014 Forbes 30 Under 30 in Law and Policy and is a Christian Science Monitor Passcode Influencer. She helped found the public policy team at CloudFlare, a website performance and security company; served as global and Federal privacy and security issue expert on Google’s public policy team; and started her career working on privacy, and identity management at the public interest group Center for Democracy and Technology. She holds a dual B.A. in Computer Science and Cognitive Science from Wellesley College and is a Certified Information Privacy Professional (CIPP/US).

 

Beau Woods is the Deputy Director of the Cyber Statecraft Initiative in the Brent Scowcroft on International Security, and an active participant in the I Am The Cavalry initiative. These activities focus on ensuring the connected technology that can impact life and safety is worthy of our trust. Prior to that, Beau spent over a decade in information security, providing strategy, guidance, and advisory. Over the past several years, he has consulted with private sector, NGOs, US agencies and legislative staff, and the White House. Beau graduated from the Georgia Institute of Technology with a BS in psychology.