Presentation by the Albany Law Journal of Science and Technology, Center for Internet Security, the Cybersecurity and Privacy Law Center at Albany Law School, and the Sobota Lecture Series.
Thursday October 19th, 2017 & Friday October 20th, 2017
Albany Law School
80 New Scotland Avenue
Albany, New York 12208
This event is free and open to the public. Eight free CLE credits will be offered.
Thursday October 19th
Keynote Address: 12:30 p.m. - 1:30 p.m.
Mark S. Zaid, Esq., Law Office of Mark S. Zaid
Panel 1: Internet of Things 1:45 p.m. - 3:15 p.m.
Dr. Andrea Matwyshyn, Northeastern University School of Law
William Snyder, Syracuse University School of Law
Scott J. Shackelford, Indiana University School of Law
Dr. David Thaw, University of Pittsburgh School of Law
Panel 2: Insurance and Liability Breach Response 3:30 p.m. - 5:00 p.m.
Dr. Sasha Romanosky, RAND Corporation, Pentagon
Daniel Healy, Anderson Kill
Gus Hurwitz, Nebraska College of Law
Ryan Spelman, Center for Internet Security
Networking Reception to Follow
Friday, October 20th
Panel 3: Cyber 101 9:00 a.m. - 11 a.m.
Dean Antony Haynes, Albany Law School
Dr. Brian Nussbaum, University of Albany
David Turetsky, University at Albany
Chad Walter, GreyCastle Security
Lunch/Keynote Address: 11:30 a.m. - 12:45 p.m.
Steven Spano, COO and President, Center for Internet Security
Panel 4a: Cloud Computing and Legal Issues 1:00 p.m. - 2:30 p.m.
Nicole Black, New York attorney, and the Legal Technology Evangelist at MyCase
Christopher W. Meyer, Whiteman, Osterman & Hana
Panel 4b: Law Enforcement 1:00 p.m. - 2:30 p.m. (concurrent with above panel)
Michael Deyo, New York State Police
Joel Schwarz, BSA
Lt. Col. Mark Visger, West Point
Nicholas Campbell, Stonewall Defense, LLC
Special Agent, FBI
Panel 5a: Breach Response
2:45 p.m. - 4:15 p.m.
Fernando M. Pinguelo, Scarinci Hollenbeck,
Jeffrey Kosseff, U.S. Naval Academy
Joe Vigorito, Annese
Leslie Corbo, Utica College
Panel 5b: Local Government 2:45 p.m. - 4:15 p.m. (concurrent with above panel)
Rick Cobello,Chief Information Security Officer (NY State OTDA)
Jeanna Brown, Digital Towpath Cooperative
Alan Kowlowitz, Center for Technology in Government Fellow at University at Albany
Mark S. Zaid, Esq. is a Washington, D.C., based attorney who specializes in crisis management and innovatively handling simple and complex administrative and litigation matters relating to national security, international law, foreign sovereign and diplomatic immunity, defamation (plaintiff) and the Freedom of Information/Privacy Acts (FOI/PA). Through his practice Mr. Zaid often represents former/current federal employees, particularly intelligence and military officers, defense contractors, Whistleblowers and others who have grievances, have been wronged or are being investigated by agencies of the United States Government or foreign governments, as well as members of the media. Mr. Zaid teaches the D.C. Bar Continuing Legal Education classes on "The Basics of Filing and Litigating Freedom of Information/Privacy Act Requests" (since 2003), "Defending Security Clearances" (since 2006) and "Handling Whistleblower Cases: More Than the Basics" (since 2016). Since 2009, he has been named both a Washington, D.C. Super Lawyer every year (including being profiled) and a "Best Lawyer" in Washingtonian Magazine's bi-annual designation for his national security work. As the National Law Journal once wrote, "if Agent Mulder ever needed a lawyer, Zaid would be his man."
Mr. Zaid is also the Executive Director and founder of the James Madison Project, a Washington, D.C.-based organization, with the primary purpose of educating the public on issues relating to intelligence gathering and operations, secrecy policies, national security and government wrongdoing. Additionally, Mr. Zaid is an adjunct professor at Johns Hopkins University in the Global Security Studies program where he teaches on national security issues. In connection with his legal practice on international and national security matters, Mr. Zaid has testified before, or provided testimony to, a variety of governmental bodies including the Senate Judiciary Committee, the Senate Governmental Affairs Committee, the House Judiciary Committee, the House Government Operations Committee, the Department of Energy, the Public Interest Declassification Board and the Assassination Records Review Board. From 2014-2016, he served as an appointed Member by the Archivist of the United States to the Freedom of Information Act Advisory Committee. "Curiously for this town," once wrote the American Bar Association Journal, "Zaid is an equal opportunity thorn out to pierce the sides of suit jackets bearing both elephants and donkeys on the lapels."
A 1992 graduate and Associate Editor of the Law Review of Albany Law School of Union University in New York, for which he now sits as a member of its' Board of Trustees, he completed his undergraduate education (cum laude) in 1989 at the University of Rochester, New York with honors in Political Science and high honors in History. Mr. Zaid is a member of the Bars of New York State, Connecticut, the District of Columbia, Maryland and numerous federal courts. He currently possesses TS/SCI eligibility and has had Q level access.
He can be reached at
Mark@MarkZaid.com, and further information on his practice is available at www.MarkZaid.com.
Brig. Gen. Steven J. Spano (ret.) is President and COO of CIS (The Center for Internet Security). CIS is an international nonprofit organization focused on enhancing cybersecurity readiness and response for the public and private sectors. Prior to CIS, General Spano served as the General Manager, Defense and National Security for Amazon Web Service's Worldwide Public Sector. He was one of the key leaders who helped launch and build the business from its inception in 2011. Prior to Amazon Web Services, General Spano served over 28 years in the United States Air Force in a variety of leadership roles. He retired in 2011 from Air Combat Command (ACC) where he served as the Director of Communications, Headquarters Air Combat Command, Langley Air Force Base, VA, responsible for IT vision, policy guidance, and resource allocation supporting the command's warfighting mission. Prior to ACC, General Spano served as the CJ6 for Multi-National Forces Iraq where he was responsible for all IT policy, interoperability and network operations supporting all joint and coalition forces. He also served as the principle advisor to the government of Iraq for Information and Communications Technology reconstruction. General Spano has commanded at the detachment, squadron and group levels. In addition, he served in key joint assignments at the National Security Agency, the Joint Staff, and U.S. Forces Korea.
General Spano was born in Albany, N.Y. He graduated from Christian Brothers Academy in 1979 and Norwich University, Northfield, VT where he was commissioned in 1983 through the Norwich ROTC program.
Nicole Black is a Rochester, New York attorney, author, journalist, and the Legal Technology Evangelist at
MyCase, legal practice management software. She is the nationally-recognized author of "Cloud Computing for Lawyers" (2012) and co-authored "Social Media for Lawyers: The Next Frontier" (2010), both published by the American Bar Association. She also co-authored "Criminal Law in New York," a Thomson West treatise. She writes a regular columns for The Daily Record, Above the Law, and Legal IT Pros, has authored hundreds of articles for other publications, and regularly speaks at conferences regarding the intersection of law, mobile and cloud computing, and internet-based technology. She can be contacted at firstname.lastname@example.org.
Jeanne Brown, Project Director, Digital Towpath Cooperative, has experienced town government in her own town as a Deputy Town Clerk, Supervisor’s Secretary, Assessor’s Clerk, Planning Board Clerk, and Recreation Commission Member, as well as an active community member. This on-the-job training and more than two decades of helping small towns and villages in her area with technology and records management projects have given her an understanding of the business process of small towns that only those of us who have been there can develop. Since 2005, Jeanne has also served as Project Director and Records Management Officer for the Digital Towpath Cooperative.
Nick Campbell is the President and General Counsel for Stonewall Defense. He helps establish overall strategy and direction for the company, while maintaining awareness of competitive landscape, opportunities for expansion, customers, and new industry developments. Nick is also responsible for leading Stonewall's Law Department across the company.
Before founding Stonewall Defense, Nicholas worked in the defense industry as General Counsel and has led multiple high dollar projects.
Prior to entering the civilian sector Nick was an attorney in the U.S. Army JAG Corps. During his time in the JAG Corps he investigated and prosecuted the most serious of felony cases. He is an Army-trained leader with experience in the Department of Defense solving complex problems, leading teams, implementing solutions at the Division and Brigade level, and overseeing procurement regulation efforts to ensure assets are combat ready and meet operational requirements. He is an industry certified professional in Agile processes and DoD acquisition regulations.
A native of Chicago, IL, Nick is currently: a Captain in the Army JAG Reserves; holds a Bachelor of Arts degree from the Virginia Military Institute; a Juris Doctorate from Tulane University; and completed an accelerated program in International Business and Law at Bucerius Law School in Hamburg, Germany.
Rick Cobello has over 25 years experience in enterprise technology and security solutions. His career has spanned from local and state government to Fortune 500 companies. He has global experience in health care and worked with The Secretary of Health, in Brazil, implementing supply chain and compliance systems. He is an adjunct professor in the Albany Law Cyber Security Program teaching on Supply Chains and Cybersecurity.
Leslie Corbo is an Assistant Professor of Cybersecurity at Utica College, teaching undergraduate and graduate courses at Utica College in various B.S. and M.S. cybersecurity, cyber tools, information security, financial crime, and compliance programs. She serves on the college's curriculum committee, Institutional Review Board (IRB), and is the liaison between CompTIA and EC-Council for the academy.
Previously, Leslie worked as a Senior Information Security Program Manager for PhishMe, Inc. She worked with organizations to educate employees using controlled phishing scenarios through consulting, planning, simulated execution, and analysis. Leslie has worked with academic institutions and other organizations in data collection, designing and conducting studies involving employee's behavior towards phishing emails. Prior to her role at PhishMe, she worked as a Cybersecurity Analyst, an IT-Security Analyst, and an Information System Security Manager (ISSM) on DoD and DHS Science and Technology efforts, managing information systems while developing, implementing, and enforcing information security plans, policies, and procedures. As an IT-Security Analyst, she conducted forensic investigations, analysis, and incident response.
Corbo is a member of ACM, ISACA, and serves on the Academic Advisory Board for the DC3 Academic Cyber Curriculum Alliance (DACCA) which is tasked with developing curriculum accreditation methodologies under the Department of Defense Cyber Crime Center's (DC3) Center CDFAE program.
Leslie is completing her Doctorate of Science (D.Sc.) in Information Assurance and Cybersecurity from Capitol College, Laurel, MD. Her areas of research include phishing emails, sentiment analysis, and behavior analysis. Her education includes a M.S. in Cybersecurity from Utica College, and a B.S. (summa cum laude) in Cybersecurity and Information Assurance with a concentration in Cybercrime Investigations and Forensics. Ms. Corbo holds certifications in CompTIA's Security+, GSEC, as well as various certifications from the DoD's Defense Security Service and FEMA.
Michael Deyo is Assistant Counsel to the New York State Police, and also serves as primary legal counsel for the New York State Intelligence Center. In these roles, Mr. Deyo provides a broad range of general legal counsel services to the Division of State Police, with particular emphasis on federal and state laws related to criminal and counterterrorism intelligence functions, electronic surveillance, and the investigation of crimes and evidence stemming from the use of electronic devices.
Prior to joining the State Police, Mr. Deyo was in private practice with an Albany-based law firm for several years, focusing on corporate investigations, regulatory compliance, civil litigation, forensic investigations, and privacy laws. Before that, Mr. Deyo led the information security, electronic discovery, and computer forensics practices for a private consulting firm. Mr. Deyo has worked on a wide variety of computer crime, information assurance, privacy, and data security investigations over a span of more than 15 years.
Mr. Deyo received a B.S. in Criminal Justice—Economic Crime Investigation from Utica College of Syracuse University in 2000, and his J.D. from Albany Law School in 2007. Mr. Deyo currently serves as an Adjunct Law Professor at Albany Law School on the topics of electronic discovery in civil litigation and electronic surveillance in criminal investigations.
Dean Antony Haynes joined Albany Law School in December 2015. He has extensive litigation experience in the intellectual property, securities, and criminal defense areas. He served as an associate at the law firm Quinn Emanuel Urquhart & Sullivan, LLP, in Washington, D.C., and before that at Williams & Connolly LLP, in Washington, D.C. Prior to practicing law, Antony was an Assistant Professor of Computer Science at the U.S. Air Force Academy, where he taught courses in programming, developed the Academy’s Information Assurance curriculum, and created the intercollegiate Cyber Defense Exercise. He has extensive experience with a host of software and hardware technologies, including Cisco routers, Motorola microprocessors, TCP/IP networking protocols, SQL databases, and web-based programming. He developed an on-line survey-system for the Department of Epidemiology at a major university. After the Air Force Academy he was an associate at Chatham Financial Corporation, Capital Markets, Kennett Square, Pa., where he led a company-wide software eff ort, wrote financial software and coordinated technical developers. He is a distinguished graduate of the U.S. Air Force Academy, where he was recognized as the top computer science graduate. He received his M.S. in Computer Science from the University of Illinois at Urbana/Champaign, where his thesis focused on machine learning and expert systems.
Daniel J. Healy is a partner in Anderson Kill’s Washington, D.C. office. After starting his career with Anderson Kill, he spent over five years serving as a Trial Attorney with the United States Department of Justice, Tax Division. He served as lead trial counsel and often led teams with more junior attorneys to litigate cases involving tax shelters, fraud, substantive tax disputes and claims to real property. He regularly appeared in federal, state and bankruptcy courts across the country. While doing so, he received numerous awards, including three Outstanding Attorney awards and one Special Commendation. He also served as the E-Discovery
Coordinator for the Tax Division. Mr. Healy represents policyholders seeking insurance coverage, and is Deputy Co-Chair of the Cyber Insurance Recovery Practice Group, as well as a member of the firm’s Regulated Products Group.
Gus Hurwitz is an assistant professor of law and co-director of the Space, Cyber, & Telecom Law Program at the University of Nebraska College of Law. His work builds on his background in law, technology, and economics to consider the interface between law and technology and the role of regulation in high-tech industries. He has a particular expertise in telecommunications law and technology, including data- and cybersecurity.
His work has appeared in journals including the George Mason, Iowa, Connecticut, and Pennsylvania Law Reviews, the Harvard Journal of Law and Technology, and the Michigan Telecommunications and Technology Law Review. He has been cited by the D.C. Circuit Court of Appeals ( in dissent), U.S. Senators, FCC Commissioners, and was recognized as a Cyber Security & Data Privacy Trailblazer by the National Law Journal. He has testified before Congress, participated in roundtable discussions hosted by the FCC, presented to the United States Army's 7th Signal Command on the technological challenges of cybersecurity regulation, and presented to international regulatory agencies.
He started his academic career as a visiting assistant professor at George Mason University Law School, after which he did a fellowship at the University of Pennsylvania Law School before moving to the University of Nebraska. He was previously a trial attorney with the Department of Justice Antitrust Division and a researcher in a computer and computational sciences section at Los Alamos National Lab.
He received his J.D. from the University of Chicago Law School and holds an M.A. in economics from George Mason University. He received his B.A. from St. John’s College.
Jeff Kosseff received his juris doctor from Georgetown University Law Center, and a Master of Public Policy and Bachelor of Arts from the University of Michigan. Before joining the Naval Academy, he practiced cybersecurity and privacy law at Covington & Burling LLP in Washington, DC. He was a law clerk to Judge Milan D. Smith, Jr. of the United States Court of Appeals for the Ninth Circuit and Judge Leonie M. Brinkema of the United States District Court for the Eastern District of Virginia. He also has served on the adjunct faculty of American University. Before becoming a lawyer, Jeff was a technology and political journalist for The Oregonian newspaper. He was a finalist for the Pulitzer Prize in national reporting and recipient of the George Polk Award.
Alan Kowlowitz has brought his 32 years of experience with the New York State Archives and the former Office for Technology (OFT) (now Information Technology Services (ITS)) to CTG as a Government Fellow. He is presently a consultant with the New York State Technology Enterprise Corporation (NYSTEC) within its Information Security practice. Alan is applying his deep knowledge of NYS government, its critical challenges, and his expertise in electronic records management and preservation, information security, information policy development, identity management, open government and other areas to CTG projects. He has authored, co-authored or edited a number of CTG publications focused on electronic records management, information sharing, and access to government information. Alan has also participated in CTG projects that range from developing tools to assist organizations in developing content management systems to the role of public libraries within an open government ecosystem.
During his tenure at both the State Archives and OFT, Alan was involved with CTG projects in various capacities. While at the State Archives he co-authored and was principal State Archives participant in the Models for Action project. While at OFT he served on the Advisory Group for Gateways project and cooperated with CTG on many other e-Government initiatives.
Alan was on the staff of the State Archives between 1979-1999 where he helped establish and then manage that institution’s electronic records program. He also assisted OFT in drafting New York State’s Electronic Signatures and Records Act (ESRA). Between 2000-2004, Alan served on the OFT team that developed the ESRA regulations and guidelines and established the State’s e-Government/e-Commerce Program. During his tenure with both the State Archives and OFT, Alan has had extensive experience working with local governments on electronic records and e-government issues. As a member of the NYSTEC Security Practice he has worked on risk assessments and reviews for State agencies focused on FISMA and HIPAA compliance.
Dr. Andrea M. Matwyshyn is an academic and author whose work focuses on technology and innovation policy, particularly information security, consumer privacy, intellectual property, and technology workforce pipeline policy. Her full vitae is available here.
Professor Matwyshyn is a (tenured full) professor of law / professor of computer science (by courtesy) at Northeastern University, where she is the co-director of the Center for Law, Innovation, and Creativity (CLIC). She is also a faculty affiliate of the Center for Internet and Society at Stanford Law School and formerly a visiting research collaborator at the Center for Information Technology Policy at Princeton University, where she was the Microsoft Visiting Professor of Information Technology Policy during 2014-15. Professor Matwyshyn is also a Senior Fellow of the Cyber Statecraft Initiative at the Atlantic Council's Brent Scowcroft Center on International Security and a US-UK Fulbright Commission Cyber Security Scholar award recipient in 2016-2017.
She has worked in both the public and the private sector. In 2014, she served as the Senior Policy Advisor/ Academic in Residence at the U.S. Federal Trade Commission. As public service, she has testified in Congress on issues of information security regulation, and she maintains ongoing policy engagement. Prior to entering the academy, she was a corporate attorney in private practice, focusing her work on technology transactions. She continues to maintain collaborative technology industry relationships and has authored articles for the popular business press.
Professor Matwyshyn has previously held primary appointments in University of Pennsylvania's Wharton School, Northwestern University School of Law, and the University of Florida Levin College of Law. She has also held visiting appointments or affiliations at the University of Oxford, University of Cambridge, University of Edinburgh, Singapore Management University, Indian School of Business, University of Notre Dame, and Princeton University. Her Erdos number is 4. Her primary hobbies are photography, documentary film, and collecting books about Grace Hopper.
Chris Meyer is Of Counsel at Whiteman, Osterman & Hanna. Chris leads the firm's Privacy, Cybersecurity and Information Management Practice. He provides advice to clients in a wide variety of industries where privacy, cybersecurity and information management are critical business concerns, including health care, education, finance, mobile applications, managed services, and information technology.
Chris's experience includes:
- Drafting and implementing policies relating to privacy, information security, data retention, social media use, acceptable computer use, and workplace monitoring;
- Negotiating privacy and cybersecurity provisions in commercial agreements;
- Drafting business associate agreements (BAAs);
- Advising on issues relating to the Health Information Portability and Accountability Act (HIPPA) and Health Information Technology for Economic and Clinical Health Act (HITECH);
- Conducting risk analyses in mergers & acquisitions, as well as general commercial transactions;
- Conducting privacy and cybersecurity assessments relating to compliance with U.S. and international privacy and data protection laws, including the European General Data Protection Regulation (GDPR) and Canadian Personal Information Protection and Electronic Documents Act (PIPEDA);
- Litigation involving data breach, theft of confidential information and trade secrets, and defamation;
- Advising on issues relating to the Electronic Communications Privacy Act (ECPA) and Stored Communications Act (SCA);
- Advising on website legal issues, including compliance with the Americans with Disabilities Act (ADA) and Digital Millennium Copyright Act (DMCA);
- Advising on cyber insurance coverage and claim issues; and
- Responding to cyber attacks.
Chris also is an Adjunct Professor of Law at Albany Law School. His course on Global Data Privacy (Spring 2018) focuses on understanding and navigating overlapping and often conflicting data privacy and data protection laws around the world, including cross-border transfer issues.
Dr. Brian Nussbaum is an assistant professor in the College of Emergency Preparedness, Homeland Security and Cybersecurity at the University at Albany. He focuses on cybersecurity and cyber threats, terrorism and terrorism analysis, homeland security, risk and intelligence analysis, and critical infrastructure protection. He also serves as a fellow of the Cybersecurity Initiative at New America, an affiliate scholar at the Center for Internet and Society (CIS) at Stanford Law School, and a senior fellow with the Center for Cyber and Homeland Security (CCHS) at George Washington University.
Dr. Nussbaum formerly served as senior intelligence analyst with the New York State Office of Counter Terrorism (OCT), a part of the New York State Division of Homeland Security and Emergency Services (DHSES). He oversaw both terrorism and cyber threat analysis efforts at New York's designated state fusion center, the New York State Intelligence Center (NYSIC). Dr. Nussbaum served as a subject matter expert on international terrorism, and helped to create NYSIC's Cyber Analysis Unit (CAU). He worked for almost a decade in New York State's homeland security agencies and was the author and project lead on the New York State risk-based funding formula, a formula that was used to distribute over $300 million dollars in Homeland Security Grant Program (HSGP) funds between 2006 and 2014. Additionally, Dr. Nussbaum served as the first-ever Visiting Professor of Homeland Defense in the Strategic Wargaming Division at the Center for Strategic Leadership and Development, part of the United States Army War College in Carlisle, PA (2012-2013). As such, he has experience in war gaming, simulation, and professional education incorporating interactive and active-learning techniques. He received his PhD and MA in Political Science from the University at Albany and BA in Political Science from Binghamton University. His work has appeared in numerous books and journals including Studies in Conflict and Terrorism, Global Crime, and the Journal of Applied Security Research.
Fernando M. Pinguelo, Esq. (CIPP), a partner and chair of Scarinci Hollenbeck, LLC's Cyber Security & Data Protection and Crisis Management groups, is a trial lawyer who devotes his practice to complex business disputes with an emphasis on cyber, media, intellectual property, and employment matters in U.S. federal and state courts; and is admitted to practice in New Jersey, New York, Pennsylvania, and Washington, D.C. Fernando's experience addresses all facets of litigation (trial, mediation, arbitration, appellate) in both federal and state courts and he regularly handles "crisis litigation," including emergency applications filed with the courts. Most recently, a leading global information services company retained him to address a data breach incident reportedly involving the theft of 15 million customers' sensitive data.
He serves on state and federal committees, including appointments by the Chief Judge of the District of New Jersey to serve on the Merit Selection Panel for federal magistrate judgeship selection and Chief Justice of the Supreme Court of New Jersey to serve on the Evidence Rules Committee. He is also an Adjunct Professor at Seton Hall Law School and he received a Fulbright Specialist appointment from which he served as a visiting faculty member at Universidade Presbiteriana Mackenzie, São Paulo. Fernando is the author of numerous publications, including a chapter author for
eDiscovery for Corporate Counsel (Chapter 17) (Thomson-West, 2014-present editions) and
New Jersey Federal Civil Procedure (Chapter 10) (ALM, 2013-present editions); and lectures nationally and internationally on those topics, including for the Judicial College of New Jersey and Escola Paulista da Magistratura, São Paulo. He created the
ABA Journal award-winning eDiscovery blog
eLessons Learned, www.eLLblog.com, and the cybersecurity blog
eWhiteHouse Watch, www.eWHWblog.com.
Notably, Chambers & Partners listed Fernando as a "Recognized Practitioner" in its
2017 Chambers USA: Privacy & Data Security lawyer ranking guide,
The National Law Journal recognized him as a "Cybersecurity & Data Privacy Trailblazer" in 2015, and he has received Martindale-Hubbell's
AV Preeminent rating since 2011. He earned accreditation as an information privacy professional (CIPP) from the International Association of Privacy Professionals. Fernando earned his B.A.,
magna cum laude, from Boston College in 1994 and his J.D. from Boston College Law School in 1997.
Sasha Romanosky researches topics on the economics of security and privacy, national security, applied microeconomics, and law & economics. He is a Policy Researcher at the RAND Corporation and a faculty member of the Pardee RAND Graduate School. Sasha holds a Ph.D. in Public Policy and Management from Carnegie Mellon University and a B.S. in Electrical Engineering from the University of Calgary, Canada. He was a Microsoft research fellow in the Information Law Institute at New York University and was a security professional for over 10 years in the financial and e-commerce industries at companies such as Morgan Stanley and eBay. Sasha is also co-author of the Common Vulnerability Scoring System (CVSS), an international standard for scoring computer vulnerabilities. For the past year, Sasha has been on detail at the Pentagon as a Cyber Policy Advisor in the Office of the Secretary of Defense (OSD). He oversees the Department's Vulnerability Equities Process, the Vulnerability Disclosure Program, and other cyber security and cyber policy matters.
Joel Schwarz oversees BSA's Global Internet Enforcement Department, focused on monitoring and combatting Internet-facilitated software infringement via multiple channels, including auction/marketplace websites, digital downloads, peer-to-peer and other file-sharing networks and protocols, and stand-alone e-commerce sites. In addition to traditional notice and takedowns/cease and desists, enforcement mechanisms also include removals of search engine links, removal of Google ads, payment processors, and targeted (permanent) removal of repeat infringing sellers from marketplace platforms. Schwarz is also responsible for development and tracking of metrics for measuring success of each programmatic component - including corresponding compliance rates - the goal being to maximize value for members, accounting for their unique business models, and the need to identify and address evolving threats and trends.
Schwarz is also responsible for overseeing BSA's Data Analytics Department, ensuring timely and accurate compilation, analysis, use and dissemination of data relating to BSA's Internet, cybercrime, and end-user enforcement programs world-wide, as well as linking together new sources of organizational data to enable cross-organizational sharing and reporting from other departments (and external data sources).
Schwarz previously served as the National Counterterrorism Center's (NCTC) 1st Civil Liberties and Privacy Officer (CLPO), supervising the NCTC Civil Liberties and Privacy Office; an office which he stood up in April 2011. In that capacity, he provided NCTC with advice and oversight on privacy and civil liberties matters, and spearheaded development, implementation and oversight of a holistic, agency-wide compliance program. Mr. Schwarz also provided guidance to the Office of the Director of National Intelligence (ODNI) on building civil liberties and privacy protections into the ODNI's Cyber Threat Intelligence Integration Center (CTIIC), the formation of which was announced in early 2015 and is still in process. Prior to his role as NCTC's CLPO, Mr. Schwarz was an Assistant Civil Liberties Protection Officer for ODNI, focusing on activities relating to counterterrorism, use of technology, and cybersecurity.
Before joining the ODNI, Mr. Schwarz was an attorney with the United States Department of Justice's ("DOJ") Computer Crime and Intellectual Property Section ("CCIPS"), where he prosecuted cases involving the use of the Internet, and provided Internet investigation/prosecution training, and technical assistance to governments and law enforcement around the world. Prior to DOJ, Mr. Schwarz worked as Counsel on E-Commerce for MetLife, where he advised MetLife lines of business on E-commerce issues, including privacy, security, and technology-related matters, and served as the New York State Attorney General's Special Counsel for Internet Matters (Investor Protection & Securities Bureau), and Assistant Attorney General with the New York Attorney General's Internet Bureau.
Mr. Schwarz received his law degree from Albany Law School, cum laude, and received his undergraduate degree from the State University of New York (SUNY) Binghamton, cum laude. He subsequently completed a certification in Advanced Information Technologies from New York University.
Scott J. Shackelford serves on the faculty of Indiana University where he is Cybersecurity Program Chair along with being a Research Fellow at the Harvard Kenney School's Belfer Center for Science and International Affairs, Director of the Ostrom Workshop Program on Cybersecurity and Internet Governance, a Senior Fellow at the Center for Applied Cybersecurity Research, an Affiliated Scholar at the Stanford Center for Internet and Society, and a Term Member at the Council on Foreign Relations. Professor Shackelford has written more than 100 books, articles, and essays for diverse outlets ranging from the
University of Illinois Law Review and the
American Business Law Journal to the
Christian Science Monitor,
Huffington Post, and the
San Francisco Chronicle. He is also the author of
Managing Cyber Attacks in International Law, Business, and Relations: In Search of Cyber Peace (Cambridge University Press, 2014). Both Professor Shackelford's academic work and teaching have been recognized with numerous awards, including a Harvard University Research Fellowship a Stanford University Hoover Institution National Fellowship, a Notre Dame Institute for Advanced Study Distinguished Fellowship, the 2014 Indiana University Outstanding Junior Faculty Award, and the 2015 Elinor Ostrom Award.
William C. Snyder is a Visiting Assistant Professor of Law at the Syracuse University College of Law, teaching Cyber Security Law and Policy, National Security Law, Federal Criminal Law, Computer Crimes, Counterterrorism Law, Prosecuting Terrorists in Article III Courts, Federal Courts and Evidence. He also teaches Public Administration and Law at Syracuse University's Maxwell School of Citizenship and Public Affairs. In addition, he is a member of the faculty of the Institute for National Security and Counter-Terrorism, a joint venture of the College of Law and the Maxwell School. Professor Snyder has been teaching at the College of Law since 2006.
Professor Snyder received his Bachelor of Arts degree cum laude in political science with a concentration in international relations from Yale College of Yale University. He received his Juris Doctor degree magna cum laude from Cornell Law School where he served on the Cornell Law Review and was elected to the Order of the Coif.
Prior to teaching, Professor Snyder was a career federal prosecutor. He served over 13 years as an Assistant United States Attorney (AUSA) in the Western District of Pennsylvania and the District of Columbia. Prior to receiving his law degree, Snyder served as an Assistant to the Attorney General of the United States and was Deputy Administrative Assistant to Pennsylvania Governor Dick Thornburgh.
As an AUSA, Snyder initiated prosecution of the largest felony case in the history of the Western District of Pennsylvania while assigned as legal counsel to the Greater Pittsburgh Violent Crimes/ Gang Task Force. In addition, he participated in intelligence investigations and drafted emergency plans while assigned to that district's Joint Terrorism Task Force and the Anti-Terrorism Advisory Council. He served as the district's Crisis Response Manager.
While serving with the United States Department of Justice, Snyder completed the following courses for Department officials taught at the Attorney General's Advocacy Institute: Basic International Law, 2003; National Security Law(classified), 2003; Computer Crimes, 1998; Basic Narcotics, 1994; Interview and Interrogation, 1991; and Trial Advocacy, 1990.
Professor Snyder is a member of the Bar of the United States Supreme Court, the Supreme Court of Pennsylvania, the United States Court of Appeals for the District of Columbia Circuit, and the United States District Court for the Western District of Pennsylvania. He serves on the Advisory Committee of the Dick Thornburgh Forum for Law and Public Policy.
Ryan Spelman is a Senior Director at the Center for Internet (CIS), a nonprofit organization focused on improving cyber security for public and private sector entities. Ryan is responsible for identifying new opportunities to improve global cyber security and new partnerships for sharing CIS best practices and resources. Prior to his work at CIS, Ryan served as Director of the New York State Senate’s Committee on Homeland Security. While serving as Committee Director, Ryan led and advised state legislators in developing statewide policies and legislation pertaining to homeland security and veterans, established the Homeland Security Business Roundtable, which brought together leaders of Fortune 500 companies and senior state public safety officials to collaborate on the development of security and disaster preparation policies, and represented the State Senate on the development of legislation that established New York State’s Division of Homeland Security and Emergency Services (DHSES).
Ryan holds a Masters of Public Administration (MPA) from the University at Albany’s Nelson A. Rockefeller College of Public Affairs & Policy, specializing in Public Safety, a GIAC Critical Controls Certification, and a GIAC Security Leadership Certification. While he has presented in over 25 states and travelled to almost all 50, he prefers being home in upstate New York with his beautiful wife, wonderful kids and crazy dog.
David Thaw is an Assistant Professor of Law and Information Sciences at the University of Pittsburgh and an Affiliated Fellow of the Information Society Project at Yale Law School. He is an internationally-recognized expert on cybersecurity law and policy. His work uses computing and information empirical methods to understand the nature and character of cybersecurity risks. He uses scientific data in his legal and policy scholarship to examine how regulatory frameworks drive cybersecurity practices "on the ground." David's other areas of research include privacy, cybercrime, legal issues of cyberwarfare, and administrative law and regulatory theory.
Prior to joining the Pitt faculty, David taught at the University of Connecticut and the University of Maryland. He also practiced cybersecurity and privacy regulatory law at Hogan Lovels (formerly Hogan & Hartson) and was previously a Postdoctoral Fellow at Yale Law School.
David holds a Ph.D. from UC Berkeley's School of Information, a J.D. from Berkeley Law, a M.A. in Political Science from UC Berkeley and a B.S. in Computer Science and a B.A. in Government & Politics from the University of Maryland.
David Turetsky is a visiting assistant professor at the College of Emergency Preparedness, Homeland Security and Cybersecurity at the University at Albany. He brings more than 35 years of experience, including senior roles in business, government, and law. Immediately before joining the University at Albany, he was based in Washington D.C., where he co-led the cybersecurity, privacy and data protection practice at global law firm Akin Gump Strauss Hauer & Feld LLP, and engaged with businesses and industry association clients in diverse industries on a broad range of related legal and policy issues. In addition to winning professional recognition from organizations such as Legal 500 US, he serves as a member of the American Bar Association's Cybersecurity Legal Task Force, co-leads the privacy and security working group of the Information Sharing and Analysis Organization Standards Organization created pursuant to an Executive Order issued by President Obama, and was co-chair of the Federal Communications Bar Association's Emergency Preparedness and Homeland Security Committee.
Before joining Akin Gump, Mr. Turetsky served as a senior leader at the Federal Communications Commission (FCC), for most of his tenure as Chief of the Public Safety and Homeland Security Bureau, where he led cybersecurity policy for the FCC, including its public-private efforts and its engagement in Obama interagency cybersecurity work led by the White House and other agencies. He also led the FCC’s efforts regarding emergency communications and related emergency preparedness and homeland security issues, working closely with stakeholders and other government agencies, and oversaw the FCC’s continuity of operations program. He served briefly as Deputy Chief of the FCC’s International Bureau. In business, Mr. Turetsky served as a senior officer of a telecommunications services start-up that he helped to grow and bring public; and twice served as Management Trustee, while in private law practice, appointed by federal courts on the recommendation of the Bush Department of Justice (DoJ), to manage all aspects of mobile wireless service businesses in a total of 20 mostly rural markets under merger consent decrees until those businesses were divested (about 6 months each time). He led or co-led the antitrust practice of another global law firm for 7 years and has more than 20 years of experience in major law firms, mostly as a partner, in Washington D.C., and in New York City. In the Clinton Administration, Mr. Turetsky served as a Deputy Assistant Attorney General for Antitrust in the DoJ, with special responsibility for competition enforcement and policy issues affecting regulated industries, in the U.S. and abroad. This included a senior leadership role for the DoJ in working with the White House and Congress in the development, passage and implementation of the Telecommunications Act of 1996. Mr. Turetsky has a J.D. from the University of Chicago School of Law (where he won the moot court competition and volunteered in the Mandel Legal Aid Clinic), studied at the London School of Economics and Political Science, and has a B.A.magna cum laude from Amherst College. He writes and speaks often and is regularly quoted in the press.
Joe Vigorito is the Director of Mobility & Security at Annese. With over 30 years’ experience, Joe's credentials include being both a Fellow and Diplomate for the American Board for Certification in Homeland Security, certified in Disaster Preparedness and as a National Threat Analyst, a member of Building Industry Consulting Services International, the Information Systems Security Association and the Information Systems Audit and Control Organization. Joe is a former Fortune 250 HIPAA Security Officer, as well as CISO and Chief Privacy Officer, and while working currently for Annese, Joe is also a Homeland Security Emergency Manager.
Lieutenant Colonel Mark Visger currently serves as an Assistant Professor in the Department of Law at the U.S. Military Academy at West Point. During his four years as Assistant Professor, Colonel Visger has served as course director for three courses—Cyber Law, International Law, and National Security Law; and healso teaches Constitutional and Military Law. In addition to his teaching experience, Colonel Visger has served as a Judge Advocate (military attorney) in the U.S. Army since 1997. During his tenure as a Judge Advocate, ColonelVisger has served in a number of legal positions, including serving as the Staff Judge Advocate (general counsel) to the Commanding General of First Army Division West at Fort Hood, Texas, during which time he also served as the Preliminary Hearing Officer in the court-martial of United States v. Bowe Bergdahl. He has also worked extensively in prosecuting and defending cases under the Uniform Code of Military Justice, and has earned an Expert Military Justice Practitioner qualification. In addition, Colonel Visger has deployed to Iraqand Bosnia-Herzegovina, where he advised the command on the Internationaland Operational Law aspects of re-building each country. Colonel Visgerreceived his J.D. (Magna Cum Laude) from Washington and Lee University School of Law and his LL.M. (Harlan Fiske Stone Scholar) from Columbia Law School.
Chad Walter is the Vice President, Business Development at GreyCastle Security. In this role, Chad leads a growing team of cybersecurity business development professionals and is an integral part of the GreyCastle Security strategy team.
Chad has amassed over 20 years of strategic leadership and developmental experience within cybersecurity, information technology and executive leadership. He has served as CEO of CFWalter Consulting, LLC, President of IntegraLED, Director of Channel Development for Network Box USA, Vice President of Operations for Chile-IT, and as the President and COO for D&D Consulting.
Formerly of Huntsville, Texas, Chad resides with his wife, Cindy, and their two children in Clifton Park, New York