Menu
Menu
Inspiration starts here. Join us at StateRAMP Cyber Summit for visionary keynotes, panel discussions, and live sessions on everything from framework harmonization to cyber risk managements.
We are honored to announce that Nick Leiserson, the Assistant National Cyber Director for Cyber Policy and Programs at the Office of National Cyber Director (ONCD) for the White House, will be delivering the Welcome Keynote at the StateRAMP Cyber Summit. Nicholas brings a wealth of expertise and experience in shaping national cybersecurity policy and strategy.
At Juniper Networks, we believe the network is the single greatest vehicle for knowledge, understanding, and human advancement that the world has ever known. Now more than ever, the world needs network innovation to connect ideas and unleash our full potential. Juniper is taking a new approach to the network — one that is intelligent, agile, secure and open to any vendor and any network environment.
Rubrik (NYSE: RBRK) is on a mission to secure the world’s data. With Zero Trust Data Security™, we help organizations achieve business resilience against cyberattacks, malicious insiders, and operational disruptions. Rubrik Security Cloud, powered by machine learning, secures data across enterprise, cloud, and SaaS applications. We help organizations uphold data integrity, deliver data availability that withstands adverse conditions, continuously monitor data risks and threats, and restore businesses with their data when infrastructure is attacked.
Launched in 2006, Amazon Web Services (AWS) began exposing key infrastructure services to businesses in the form of web services -- now widely known as cloud computing. The ultimate benefit of cloud computing, and AWS, is the ability to leverage a new business model and turn capital infrastructure expenses into variable costs. Businesses no longer need to plan and procure servers and other IT resources weeks or months in advance. Using AWS, businesses can take advantage of Amazon's expertise and economies of scale to access resources when their business needs them, delivering results faster and at a lower cost.
CrowdStrike, a global cybersecurity leader, has redefined modern security with the world’s most advanced cloud-native platform for protecting critical areas of enterprise risk — endpoints and cloud workloads, identity and data.
Our mission at Cohesity is simple: to protect, secure, and provide insights into the world’s data. The largest organizations around the globe rely on us to strengthen their business resilience. With the Cohesity Data Cloud, we are able to deliver on that mission. Our customers can recover from cyber events faster, manage and secure their data at enterprise scale, and gain valuable insights with our industry-leading AI capabilities.
Trusted by more than half of the Fortune 50, Extreme is a market leader in cloud networking. Our innovative solutions help more than 50,000 customers across the globe securely connect devices and applications in new ways, helping to enrich customer experiences, reduce risk, improve operating efficiency, and grow topline revenue.
Palo Alto Networks, the global cybersecurity leader, continually delivers innovation to enable secure digital transformation—even as the pace of change is accelerating
Trustwave is recognized as a global security leader in managed security services (MSS) and managed detection and response (MDR). With more than 2,000 world-class security professionals operating on behalf of clients across 96 countries, Trustwave helps organizations across the globe detect and respond to threats 24x7 in the hybrid multi-cloud world. The elite Trustwave SpiderLabs team provides award-winning threat research and intelligence, which is infused into Trustwave services and products to fortify cyber resilience in the age of advanced threats.
Trusted by over 25 million users worldwide, Jotform’s powerful forms and suite of no-code tools are flexible enough for small businesses and robust enough for enterprises. Jotform helps organizations go from busywork to less work with forms that use conditional logic, accept payments, generate reports, automate workflows, and more. Jotform’s products make it easy for any team to streamline its processes. The options are limitless with Jotform’s 10,000 templates, hundreds of integrations, and almost 400 widgets.
Tanium provides a unified endpoint management and security platform designed to offer real-time visibility, control, and protection for enterprise IT environments. Their solutions help organizations manage and secure their entire IT infrastructure, including endpoint management, risk and compliance, incident response, and digital employee experience. Tanium’s platform leverages a real-time, cloud-scale, and autonomous approach to ensure comprehensive endpoint security and management.
In a world where video is a fundamental part of work, secure and seamless communication is critical. We have spent a decade creating the world’s most flexible and universal video technology. Making it seamless is our priority. Making it private is our default. And making it secure is by design. In doing so, we give customers the ultimate level of control over their data.
At Content Guru, we believe that your customers deserve only the best. That every customer contact should be seamless, personalized, and powered by data. That great CX can set your business apart from the competition.
For over two decades, we’ve worked to bring that belief to life. From cutting-edge cloud-based technology to the support of world-leading CX specialists, Content Guru provides everything you need to revolutionize your customer experience.
Mimecast is a leading AI-powered, API-enabled connected Human Risk Management platform, purpose-built to protect organizations from the spectrum of cyber threats. Integrating cutting-edge technology with human-centric pathways, our platform enhances visibility and provides strategic insight that enables decisive action and empowers businesses to protect their collaborative environments, safeguard their critical data and actively engage employees in reducing risk and enhancing productivity. More than 42,000 businesses worldwide trust Mimecast to help them keep ahead of the ever-evolving threat landscape. From insider risk to external threats, with Mimecast customers get more. More visibility. More insight. More agility. More security.
Led by an experienced and visionary team, Wiz is on a mission to help organizations create secure cloud environments that accelerate their businesses. By creating a normalizing layer between cloud environments, the Wiz platform enables organizations to rapidly identify and remove critical risks.
Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device.
GL Solutions is an employee-owned corporation that delivers customized software solutions for government agencies, helping them modernize, digitize, and automate their regulatory software systems and increase their capacity to serve the public.
Blue Hill Data Services delivers 24/7, 100% On-Shore Private Cloud solutions, specializing in Mainframe, AS/400 – iSeries, and Server/Cloud Infrastructure fully managed solutions, as well as Colocation, Dedicated Disaster Recovery and Business Continuity, Applications and Remote Support Services. We manage, improve, transform and modernize our client’s critical business applications.
Illumio, the Zero Trust Segmentation company, stops breaches from spreading across the hybrid attack surface. The Illumio ZTS Platform visualizes all traffic flows between workloads, devices, and the internet, automatically sets granular segmentation policies to control communications, and isolates high-value assets and compromised systems proactively or in response to active attacks. Illumio protects organizations of all sizes, from Fortune 100 to small business, by stopping breaches and ransomware in minutes, saving millions of dollars in application downtime, and accelerating cloud and digital transformation projects.
Our team of passionate government insiders design, develop, and deliver government process management software to get the professionals who run democracies unstuck. This way the operators and changemakers who keep government running can worry less about their systems, and more about making a positive impact on society and leaving a legacy.
Coalfire is the premier Cybersecurity and Compliance Services leader for the tech, healthcare, and finance industries.
There has never been a more exciting time in technology. We are experiencing one of the most significant shifts in history, where AI is creating entirely new ways to solve problems, engage customers, and work more efficiently. Google Cloud is ready to help organizations build a new way forward in an increasingly AI-driven world.
Anitian automates cloud security and compliance to accelerate business growth.
Snyk is a developer security platform. Integrating directly into development tools, workflows, and automation pipelines, Snyk makes it easy for teams to find, prioritize, and fix security vulnerabilities in code, dependencies, containers, and infrastructure as code. Supported by industry-leading application and security intelligence, Snyk puts security expertise in any developer’s toolkit.
Paramify simplifies and accelerates the compliance documentation process for organizations, offering tools to generate complete, OSCAL-based SSPs and POAMs in hours. The platform is designed for ease of deployment and collaboration, allowing companies to manage and automate their compliance programs effectively. Paramify's strategic intake process and customizable Risk Solutions ensure that compliance documents are accurate, consistent, and up-to-date, meeting the needs of various cybersecurity frameworks like FedRAMP, StateRAMP, and more.
Project Hosts is a cloud solutions provider (CSP), and a managed service partner (MSP) that specializes in securing applications, data, and workloads on Azure and AWS, while ensuring compliance with regulatory standards, including ISO 27001, HITRUST, StateRAMP, FedRAMP, and DoD Impact Levels 2,4 and 5.
stackArmor has deep professional experience in delivering secure and compliance-oriented IT solutions to regulated industries in Government, Financial Services, Healthcare, and Energy. Our experts help protect you from the cyber threat challenges through systems engineering best practices developed over decades while working with US Federal Agencies requiring compliance with NIST, FFIEC, FISMA, FedRAMP, DHS, StateRAMP, CJIS and DISA.
Leveraging the largest security cloud on the planet, Zscaler anticipates, secures, and simplifies the experience of doing business for the world's most established companies.
John Lee
Vice President, Cloud Solutions
Carahsoft
Vice President, Cloud Solutions, Carahsoft
John Lee is a seasoned executive with expertise in driving revenue growth for technology products and services. Over his career, he has led sales, marketing, business development, product definition, and operations for both startups and established companies, consistently exceeding goals. As an entrepreneur, John has pioneered innovative business technologies to solve complex problems. He specializes in B2G, federal government sales, cloud computing, SaaS, and sales management. Currently, John serves as Vice President of Cloud Solutions at Carahsoft Technology Corp., with prior leadership roles at FedBid, NIC Commerce, and Electric Press.
Joe Bielawski
President
Knowledge Services
President, Knowledge Services
StateRAMP Role: Co-Founder | Past President, Board of Directors
Joe Bielawski is the President of Knowledge Services and a founding member of StateRAMP, where he previously served as its President. Joe is also the founder of RAMPxchange, a cyber and risk management marketplace that connects public and private sector customers with vetted cybersecurity suppliers. Joe is dedicated to serving those who serve others. His commitment to helping public and private organizations navigate the evolving cybersecurity landscape was instrumental in establishing StateRAMP. Under his leadership, Knowledge Services functions as the StateRAMP PMO while RAMPxchange addresses supplier’s authorization cost and complexity apprehensions.
J.R. Sloan
CIO
State of Arizona
CIO, State of Arizona
StateRAMP Role: Co-Founder | President, Board of Directors | Nominating Committee Member
J.R. Sloan is a results-driven leader with over 20 years of experience in technology and 15 years in leading product and program teams. As State CIO, J.R. oversees technology, innovation, development, and IT policies. He also serves as Chairman of the State of Arizona Information Technology Authorization Committee (ITAC), which approves and monitors high-cost technology projects statewide.
Prior to joining the state, J.R. gained experience in both operational and executive roles in engineering, product management, marketing, business development, and customer service for enterprise software companies. He has extensive experience in leading cross-functional teams, building consensus, and achieving strategic objectives. J.R.'s broad knowledge of business and processes coupled with technology and systems integration experience enable him to effectively engage all parts of an organization. He is customer-centric in his approach and results-oriented in his deliverables.
J.R. is certified in Pragmatic Marketing and Product Management. His educational background includes Electrical Engineering at the University of Arizona and Architecture and Environmental Design at Arizona State University.
In December 2020, J.R. was named to the inaugural Board of Directors for StateRAMP and currently serves as President where he collaborates to assist this organization in bringing a new model to market for how state and local governments can standardize the approach to meeting their cybersecurity requirements in partnership with cloud service providers. In October 2023, J.R. was named Secretary-Treasurer of the National Association of State Chief Information Officers (NASCIO) Executive Committee, where he provides knowledge and expertise to the organization while continuing his role as State CIO. In addition, he was recognized as a 2023 StateScoop 50 Golden Gov: State Executive of the Year Award winner.
Drew Simonis
CISO
Juniper Networks
Chief Information Security Officer, Juniper Networks
As CISO at Juniper, Drew leads the corporate information security team, which includes setting infosec strategy, standards and policies for the company, security engineering and architecture, corporate incident response, security awareness and security and IT compliance.
Drew brings over two decades of security experience in industries as diverse as telco, high tech, DoD and financial services in companies large and small. Prior to joining Juniper, Drew served as Deputy CISO at Hewlett Packard Enterprise where he led and guided significant technology and program maturity gains including embracing cloud native security in support of HPE’s company transformation, adoption of a threat-based approach for security operations, embracing quantitative risk management and streamlining policy and compliance. Drew also sponsored approaches to recruitment and training that improved diversity while uplifting the core security skills of the organization.
Prior to joining HPE, Drew spent eight years as the CISO for Willis Group Holdings (now Willis Towers Watson). Drew is a frequent presenter on the evolution of cyber security and has co-authored several books on security technology and architecture and articles on cyber organizational paradigms.
Charlie Rote
Deputy CISO
State of Maine
Deputy Chief Information Security Officer, State of Maine
StateRAMP Role: Standards & Technical Committee Chair | Advisor, CJIS-Aligned Task Force
Charles Rote currently serves as the Deputy Chief Information Security Officer for the State of Maine that provides information security to all State of Maine agencies within the executive branch and maintains a cooperative partnership with other branches to provide information security improvements to the whole of government. He serves as the chair of the State Risk and Authorization Management Program, Standards and Technical Committee (StateRAMP) and has security and contingency planning certifications from the Federal Emergency Management Agency, Disaster Recovery Institute International, and the Computing Technology Industry Association.
Dan Lohrmann
CISO
Presidio
Field CISO, Public Sector, Presidio
StateRAMP Role: Standards & Technical Committee Vice Chair | Steering Committee Member | Co-Chair CJIS-Aligned Task Force
Daniel J. Lohrmann is an internationally recognized cybersecurity leader, technologist, keynote speaker and author.
During his distinguished career, Dan has served global organizations in the public and private sectors in a variety of executive leadership capacities, receiving numerous global awards including: CSO of the Year from SC Magazine, Public Official of the Year from Governing Magazine and a Top 25 Resilient CISOs to Watch in Cybersecurity by the AuditBoard.
Lohrmann currently serves as the Field CISO, Public Sector for Presidio, a global digital services and solutions provider accelerating business transformation through secured technology modernization. Lohrmann leads cybersecurity advisory services for public sector clients at Presidio.
Dan also serves as a Senior Fellow at the Center for Digital Government. He is a founding Steering Committee member and committee chair for StateRAMP, and he currently serves as the vice chair of the technical and standards committee for StateRAMP.
Lohrmann led Michigan government’s cybersecurity and technology infrastructure teams from May 2002 – August 2014, including enterprise-wide Chief Security Officer (CSO), Chief Technology Officer (CTO) and Chief Information Security Officer (CISO) roles in Michigan.
Dan has advised senior leaders at the White House, National Governors Association (NGA), National Association of State CIOs (NASCIO), U.S. Department of Homeland Security (DHS), federal, state and local government agencies, Fortune 500 companies, small businesses and non-profit institutions. He has been a keynote speaker at global security and technology conferences from South Africa to Dubai and from Washington D.C. to Moscow.
Dan has more than 30 years of experience in the computer industry, beginning his career with the National Security Agency.
Lohrmann is the co-author of Cyber Mayday and the Day After: A Leader's Guide to Preparing, Managing, and Recovering from Inevitable Business Disruptions, published by Wiley in November, 2021. His co-author is Shamane Tan, and cybersecurity expert residing in Australia.
Lohrmann holds a Master's Degree in Computer Science (CS) from Johns Hopkins University in Baltimore, Maryland, and a Bachelor's Degree in CS from Valparaiso University in Indiana.
Jeff Campbell
Deputy Information Security Officer
FBI CJIS
Deputy Information Security Officer, FBI CJIS
StateRAMP Role: CJIS-Aligned Task Force Member
Mr. Campbell came to the FBI in December 2011 as the Assistant Information Security Officer where he supports state, local, tribal, territorial, and federal information security professionals in all matters related to the CJIS Security Policy. Prior to joining the Bureau, he spent over 14 years in the U.S. Air Force as an information technology specialist. His post-military career saw him as a government contractor in several information security areas. Mr. Campbell held positions as an Information Systems Security Officer and Manager, and he performed security assessments using several sets of governance criteria. Mr. Campbell holds a bachelor’s degree in Computer Science and a current CISSP certification.
Karen Sorady
VP of MS-ISAC Strategy and Plans
Center for Internet Security
VP of MS-ISAC Strategy and Plans, Center for Internet Security
StateRAMP Role: Steering Committee Member
Karen Sorady is the Vice President of the Multi-State Information Sharing and Analysis Center (MS-ISAC) Strategy and Plans division at the Center for Internet Security. In this role, Karen’s focus is on establishing relationships with key member segments, including the MS-ISAC Executive Committee, external association partners and the US Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency, to develop strategies and plans to provide solutions and best practices which positively impact the cyber security interests of our State, Local, Tribal and Territorial members.
Karen has a wealth of experience in cybersecurity and information technology having retired as New York State’s Chief Information Security Officer after a more than 30-year public sector career. Her background includes executive cyber and information technology leadership, governance, strategic planning, risk management, security outreach and awareness, threat and vulnerability management, and incident response.
Ms. Sorady holds a Master of Business Administration from the University of Albany, NY and a Bachelor of Arts in Psychology from the State University College at Oneonta, NY. She holds certifications as an Information Systems Security Professional (CISSP), in Risk and Information Security Controls (CRISC) and in Strategic Planning, Policy and Leadership (GSTRT).
Joshua Kadrmas
Cyber Risk Analyst Team Lead
State of North Dakota
Cyber Risk Analyst Team Lead, State of North Dakota
StateRAMP Role: Approvals Committee Member
Josh is a Cyber Risk Analyst Team lead for NDIT (North Dakota Information Technology) and has been with the State of North Dakota for 18 years, including the past 5 years at NDIT. He has served as an Information Security Officer for Health and Human Services and also for the nation’s only State-owned bank – Bank of North Dakota. Today, Josh leads the cyber risk management team, which focuses on three areas to proactively identify and address risk: third-party, business resilience, and applications. The team has assessed nearly 400 vendors in the first three years of the third-party risk management program.
Josh is also a member of the NDIT Artificial Intelligence Governance Council, Information Technology Leadership Team, StateRAMP national authorization approvals committee, and holds a CGRC certification from ISC(2).
Josh is a lifelong resident of North Dakota and his wife have two children. In his free time, he likes to: storm chase, fish, golf, travel, and enjoy North Dakota’s expansive outdoors. He’s also an avid Minnesota Twins and Vikings fan.
Ken Weeks
Chief Information Security Officer
State of New Hampshire
Chief Information Security Officer, State of New Hampshire
StateRAMP Role: Approvals Committee Member
Ken Weeks is the Chief Information Security Officer for the State of New Hampshire. He spent most of his adult life as a Naval Officer, Special Duty, Cryptology and Information Warfare, and retired as a CAPT (O6). Although most of his time was spent in the Pacific Theater, he also enjoyed several all-inclusive trips to Somalia, Iraq, and Afghanistan. After the Navy, he worked as an Executive Leader of Cyber Operations at the National Security Agency (NSA). Ken spent a couple years in the private sector as a Consultant with Booz Allen Hamilton and then moved to New Hampshire and back into public service. Since he always works in rooms with no windows and under artificial lights, he spends the rest of his time as an avid four seasons outdoor sportsman with his spouse, teenagers and two Irish Wolfhounds.
Naomi Ward
Manager Vendor Risk Management
Commonwealth of Massachusetts
Manager Vendor Risk Management, Commonwealth of Massachusetts
StateRAMP Role: Standards & Technical Committee Member | StateRAMP/NASPO Task Force Member
Naomi Ward is the Commonwealth of Massachusetts expert in Third Party Risk Management. In her current role with the Enterprise Risk Management Office, she works closely with senior leadership to incorporate risk awareness into the process of decision-making. Her current responsibilities include conducting assessments, expanding third-party continuous monitoring programs, collaborating with Commonwealth Secretariate CISO’s, building relationships with key partners including StateRAMP, developing tools for enterprise communication, and creating internal training and awareness.
Her background in executive level leadership and auditing combined with a high level of organizational communication skills drives her role in Enterprise Risk Management. Previously, Naomi held the positions of Executive Director of the Wyoming National Guard Youth Challenge Program and adjunct professor in communication courses. She also has 10 years of internal audit experience in both the public and private sectors.
Early in her career, she picked up the book by James P. Owen, The Code of the West. She attributes the 10 principles outlined in this book to her success as an ethical leader.
Naomi holds a comprehensive degree in Communications from Evangel University and an Master of Business Administration MBA from Jones International University. She sits on the NASPO/StateRAMP taskforce committee. She is a member of the Third-Party Risk Association, ISACA, and the Advanced Cyber Security Center (ACSC).
Gayle Berkeley
Director of Information Security
Rubrik
Director of Information Security, Rubrik
StateRAMP Role: CJIS-Aligned Task Force Member
Gayle Berkeley covers Public Sector Compliance as an Information Security Director at Rubrik. With over 20 years of software and SaaS company experience, she enjoys making security and compliance easier for everyone involved. In recent years, Gayle has been a serial FedRAMP Sherpa, leading Cloud Service Organizations to success in navigating strategic business transformation and the complexities of earning U.S. government authorization for their cloud services. Gayle lives with her husband Michael and three Savannah Cats in Oak Hill, Virginia.
Meredith Ward
Deputy Executive Director
NASCIO
Deputy Executive Director, NASCIO
StateRAMP Role: StateRAMP/NASPO Task Force Member
Meredith Ward is the Deputy Executive Director for the National Association of State Chief Information Officers (NASCIO) and has served at the association since 2013. Meredith has 20 years of experience in state, local, federal and international professional associations. Prior to her current position, Meredith worked in government and media affairs in Washington, DC, and acquired over 10 years of experience building relationships with Members of Congress, their staff and members of the media. Meredith has worked extensively on issues related to cybersecurity, IT acquisition, criminal justice, workforce and state technology. Meredith holds a Bachelor of Arts degree, with an emphasis on Government, from Centre College.
Jonathan Askins
Director of National Strategic Accounts
C Spire
Director of National Strategic Accounts, C Spire
Jonathan Askins is the director of the Arkansas Department of Transformation and Shared Services (TSS) Division of Information Systems (DIS) and is also the state’s Chief Technology Officer. He has more than twenty-five years of experience in business development, operations, contract negotiation, and management. Mr. Askins comes to DIS from Acxiom Corporation, where he served as a Senior Client Management Director. He helped to guide new product strategy in the company’s government business sectors. From 1998 to 2000, Mr. Askins worked at the Arkansas Economic Development Commission, where he led a cabinet-level task force to encourage investment into Arkansas’ tourism industry. In 2018, Governor Hutchinson appointed Mr. Askins to the state Data Transparency Commission, which he served as vice chair. Jonathan currently serves at the Director of National Accounts for C Spire – a technology and communications company based in Jackson, MS. His role is to work with networking teams across the country to help them deploy and manage complicated networking solutions in the most efficient way possible. Askins holds a bachelor’s degree in Communications from the University of Montevallo in Montevallo, AL. He and his wife, Leigh Anna, reside in Scott.
Tony Sauerhoff
Deputy CISO and State Cybersecurity Coordinator
State of Texas
Deputy Chief Information Security Officer and State Cybersecurity Coordinator, State of Texas
StateRAMP Role: CJIS-Aligned Task Force Member
Tony Sauerhoff is a Deputy State Chief Information Security Officer for the Texas Department of Information Resources (DIR) and the State Cybersecurity Coordinator. Tony has over 30 years of experience in IT and cybersecurity and served in leadership positions with the federal judiciary and the U.S. Department of Defense. He began his career as a communications specialist in the U.S. Air Force. Tony has a Bachelor of Science in Cybersecurity from Champlain College, a Master of Science in Information Security and Privacy from the University of Texas at Austin, and holds CISSP and GSLC cybersecurity certifications.
Ryan Murray
Deputy Director and CISO
State of Arizona
Deputy Director and CISO, State of Arizona
Mr. Murray joined the Arizona Department of Homeland Security in July 2021 and currently serves as the Deputy Director over the Statewide Information Security and Privacy Office and as the Interim Chief Information Security Officer for the State. He also previously served as the Chief Information Security Officer for the Arizona Department of Revenue for three and a half years.
In his current role, Deputy Director Murray provides tactical and operational leadership for the Office, and strategic planning, facilitation, and coordination of cybersecurity efforts throughout the State.
Born and raised in Arizona, prior to joining the State in 2018, Ryan worked in several public sector organizations throughout the state. He has nearly 20 years experience in IT and Information Security, is a Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP) and holds a Bachelors in Cyber Security and Information Assurance from Western Governors University.
This year Mr. Murray looks forward to making progress on several key initiatives, including measuring true cybersecurity readiness across the state, continued maturation of the Department’s Cyber Readiness Program for local governments and schools, increased collaboration for cyber information sharing and collective defense across the State, and further developing the cybersecurity workforce through creative strategic partnerships.
Nikki Rosecrans
Manager of Information Security & Compliance
Arapahoe County, Colorado
Manager of Information Security & Compliance, Arapahoe County, Colorado
StateRAMP Role: CJIS-Aligned Task Force Member
I am proud to be a woman leading the way in Information Security, Compliance, and positive leadership. As a leader, I believe in the power of a positive attitude and contagious energy. As Jon Gordon says, "Positive energy doesn't mean that I have to be a rah-rah leader. It means that from my heart, I simply broadcast the love, passion, positivity, and purpose that I have for my team, organization, and mission."
My experience, passion, and background lie in Cybersecurity, Governance, Risk, and Compliance, Incident Response, and of course, Networking. Building and fostering relationships is my strength!
Recognizing the importance of building relationships across different sectors of society, I have pursued efforts to create partnerships between professional services, State, Local, Tribal and Territorial (SLTT) partners, and non-profit organizations within local communities.
Growing up in Denver, Colorado, and having lived in both the city and a rural area of Southern Colorado, I focused on continuing my education, training, and experience in leadership and strategic communications. I graduated from CSU-Global on January 10, 2021, with a Bachelor of Science Degree in Communications.
I believe in working hard, working smart, and being patient. As Denzel Washington said, "We don't plan to fail. We fail to plan." It is not failure that will stop us but the decision to stop at our first failure. I am not extraordinary; I am an ordinary woman who chooses every day to make one more extraordinary decision.
My career and personal development aspirations include pursuing my M.S. in Cybersecurity and Assurance in October 2024, while obtaining the following certifications: CISM, (ICS)2, CompTIA, CompTIA PenTest+, and CASP+.
When I am not working, I enjoy spending time with my husband and daughters and exploring our beautiful state through the lens of the great outdoors.
Jennifer (JPL) Pittman-Leeper
Senior Security Strategist
GMI
Senior Security Strategist, GMI
Jennifer Pittman-Leeper, more commonly known as JPL, has nearly two decades of experience as a strategic thought leader and policy developer for State Government. At GMI, JPL works directly with SLED customers across the country develop their Cybersecurity and Whole of State strategies. She helps establish governance and policies around enterprise solutions, funding strategies, and guiding customers from initial deployment through operational maturity.
Robert Siple
Security Assurance Specialist – US-SLED Lead
AWS
Security Assurance Specialist - US-SLED Lead, AWS
StateRAMP Role: CJIS-Aligned Task Force Member
Robert Siple is the U.S. State, Local, and Education (SLED) Security & Compliance Assurance Specialist at Amazon Web Services (AWS), where he enhances security and manages risk. He also serves on the StateRAMP CJIS-Aligned Task Force, aligning cybersecurity practices with CJIS standards. Robert holds a master's degree in cyber security and information assurance and certifications including CISSP, CISA, CISM, and CySA+. His career spans various roles in information security, focusing on strengthening security frameworks and ensuring compliance.
Leah McGrath
Executive Director
StateRAMP
Executive Director, StateRAMP
StateRAMP Role: StateRAMP Staff | Board of Directors
Serving as the Executive Director, Leah McGrath has been involved with StateRAMP since its formation. In 2020, she spent countless hours working alongside Steering Committee members to develop StateRAMP’s governance and policy framework. Prior to her work with StateRAMP, McGrath held leadership positions in both the public and private sector, including serving as the first deputy mayor of the City of Fishers, Indiana. During her tenure, Fishers transformed from a town into a smart, vibrant, entrepreneurial city and was named the #1 Best Place to Live in America in 2017 by Money magazine. As deputy mayor, she helped lead modernization efforts and spearheaded city-wide efforts to develop the city’s first long-range, comprehensive plan. McGrath’s 20-year career has been focused on working to improve government outcomes at the state and local level, helping shepherd government into the digital age securely and effectively for the citizens it serves.
Megan Smyth
Director of Legal Education
NASPO
Director of Legal Education, NASPO
StateRAMP Role: StateRAMP/NASPO Task Force Member
Megan Smyth is the Director of Legal Education for the National Association of State Procurement Officials (NASPO). In this role, she strives to create a community of learning and solution sharing among the attorneys who practice in government contracting. Since joining NASPO in 2016 Megan has served as General Counsel, the Director of Research & Innovation, and a Senior Policy Analyst. She has a BA from Transylvania University in Lexington, Kentucky with a major in Philosophy and minors in Communications and Political Science, and a J.D. from the University of Kentucky Rosenberg College of Law. Before coming to NASPO, she spent eight years as a civil litigator specializing in insurance, tort, and employment law, trying cases throughout the Commonwealth of Kentucky.
Jessica Van Eerde
Chief of Operations
StateRAMP
Chief of Operations, StateRAMP
StateRAMP Role: StateRAMP Staff | CJIS-Aligned Task Force | StateRAMP/NASPO Task Force Member
Jessica Van Eerde is StateRAMP’s Chief of Operations, where she passionately represents and supports StateRAMP’s mission and its members. A seasoned leader with over a decade of experience working with State and Local Governments, as well as in the realm of Higher Education, Jessica brings a wealth of knowledge to her role. Her expertise spans various domains, including law, procurement, and professional development. Notably, Jessica plays a pivotal role in the leadership of the TX-RAMP StateRAMP partnership, driving initiatives that optimize cybersecurity tools and resources for State, Local, and Education (SLED) organizations nationwide. Her dedication to advancing cybersecurity excellence is reflected in her strategic leadership and commitment to forging impactful collaborations.
Jaime Schorr
Chief Cooperative Procurement Officer
NASPO
Chief Cooperative Procurement Officer, NASPO
StateRAMP Role: Steering Committee Member
Jaime C. Schorr is the Chief Cooperative Procurement Officer for the National Association of State Procurement Officials. Her passion is competitive procurement, but loves a really well-written contract. Jaime is responsible for facilitating over $22B in spend with more than 600 suppliers and ensuring successful relationship between public entities and suppliers. She most recently served as the Chief Procurement officer for the State of Maine. Jaime supported NASPO as a member of the Board of Directors and the President Elect in 2022. She also serves on the steering committee for StateRAMP, a non-profit education and policy development entity for cybersecurity. Jaime completed her Bachelor of Arts degree in criminal justice from The George Washington University, her Master of Business Administration from the New England College, and her Juris Doctor from Regent University.
Jaime lives in Surprise, Arizona with her husband and two boys. She loves to explore and take on new adventures when she is not on the sidelines of the soccer field or football field cheering on her boys! Coffee, chocolate, a slow ride in a vintage car, and supporting favorite sports teams are the perfect addition to any day!
Ted Cotterill
CPO and MPH General Counsel
State of Indiana
CPO and MPH General Counsel, State of Indiana
StateRAMP Role: Secretary and Treasurer, Board of Directors | Appeals Committee Member | StateRAMP/NASPO Task Force Member
Recently named a Top 25 Doer, Dreamer & Driver by GovTech, Ted Cotterill serves as Indiana Chief Privacy Officer and as General Counsel for the Indiana Management Performance Hub, where he designed and implemented Indiana’s legal framework for responsible data-driven innovation. Ted’s practice focuses on governance, ethics, compliance, licensing, and privacy issues presented by AI, complex digital infrastructure partnerships, cloud services, and product development across various standards and regulatory frameworks. He serves as a founding officer of StateRAMP, co-chair of the NASCIO Privacy & Data Protection Forum, and in his community as VP of the Greater Allisonville Community Council. Ted earned his JD from the Indiana University McKinney School of Law, is recognized as a Fellow of Information Privacy by the International Association of Privacy Professionals, and was honored by the Indiana Lawyer with a Leadership in Law Award in 2022.
Dugan Petty
Retired NASPO ValuePoint
NASPO
Retired NASPO ValuePoint, NASPO
StateRAMP Role: StateRAMP Board | StateRAMP/NASPO Task Force Member
Dugan Petty serves as a Senior Fellow for the Center for Digital Government, StateRAMP Board Director and a Fellow at the National Academy of Public Administrators.
Since retiring from state government in 2012, he worked to improve the intersection of public procurement and technology.
In Oregon state government for 15 years, he served as the state’s Chief Procurement Official, Risk Manager, and six years as the state’s Chief Information Officer. His collaborative leadership led to a new e-government delivery system, greater open government applications, strengthening security, modernizing Oregon’s procurement statutes and a strategic sourcing initiative called Smart Buy that improved contract outcomes and reduced costs.
Before coming to Oregon, he served in the Alaska state government as the Director of General Services and Chief Procurement Officer. Petty is a past president of both the National Association of State Chief Information Officers (NASCIO) and the National Association of State Procurement Officials (NASPO), and a founding member and past Chair of the Western States Contracting Alliance, now NASPO ValuePoint.
NASCIO recognized Dugan with its 2013 Outstanding Achievement Award. Government Technology named him one of its Top 25 Doers, Dreamers and Drivers for 2011. He received the NASPO Julio Mazzone Distinguished Service Award in public purchasing in 2004.
Marlin McFate
Public Sector CTO & CISO
Cohesity
Public Sector CTO & CISO, Cohesity
Marlin McFate serves as Public Sector Chief Technology Officer and Chief Information Security Officer for Cohesity, bringing more than 20+ years of engineering, leadership and technology experience leading long-term technical initiatives. In his role as Public Sector CTO/CISO, he explores emerging technologies, and recommends strategies, through research and collaboration with business and technology leaders across the company and public sector organizations. He is the strategic and supportive voice for customers, partners and team members, ensures successful secure solution delivery and advises on the direction of Cohesity’s research and development of its ML/AI powered data security and management solutions. An empathetic and engaged leader, Marlin is an Army veteran and an experienced technologist focused on mission success.
Jim Corns
Executive Director, Department of Enterprise Solutions (DoES)
Baltimore County Public Schools
Executive Director, Department of Enterprise Solutions, Baltimore County Public Schools
Jim Corns has worked in public education for 30 years in four school systems in the state of Maryland with 23 of those years being at the senior IT leadership level. In 2016, Jim took a position in Baltimore County Public Schools (BCPS) as the Director of Innovation and Digital Safely. Under his leadership in this position, BCPS earned the CoSN Trusted Learning Environment seal. In 2018, Jim was promoted to the Executive Director position of Information Technology for BCPS where he oversaw the technology ecosystem for the third largest school system in Maryland and 22th largest in the US. His leadership was tested in 2020 when BCPS was the victim of a massive cyberattack. His focused direction allowed BCPS to continue instruction in three school days and rebuild its entire technology ecosystem within a year. This rebuild held “Security by Design” as a core tenet. A new Student Information System was put in place, all core services were moved to cloud systems, end user security was dramatically increased, and the overall efficiency of the ecosystem was dramatically improved.
Fadi Fadhil
SLED Field CTO
Palo Alto Networks
SLED Field CTO, Palo Alto Networks
Fadi Fadhil is a seasoned CIO with over 20 years of experience, currently serving as CIO at Palo Alto Networks, where he focuses on cybersecurity strategy for government and education agencies. Known for his leadership and ability to deliver exceptional results, Fadi is a thought leader in cybersecurity, with a history of impactful roles, including serving as a technology consultant for the U.S. military during the Iraq conflict.
Brian O’Connor
Director – Global Security & Compliance Office
Extreme Networks
Director - Global Security & Compliance Office, Extreme Networks
Brian O'Connor is a seasoned executive with over 30 years of experience in business development, marketing, and sales, currently serving as Director of Global Security & Compliance and Director of Strategic Business Development at Extreme Networks. Specializing in State & Local Government and Federal Agencies, Brian has led award-winning teams in driving large-scale digital transformation and advancing smart city initiatives.
Mark Dellavalle
Senior Vice President of Global Systems Engineering
Extreme Networks
Senior Vice President of Global Systems Engineering, Extreme Networks
Mark Dellavalle is the Senior Vice President of Global Systems Engineering at Extreme Networks, where he leads the systems engineering team and enhances technical advisory services. With over 30 years of experience, Mark is recognized for his expertise in solving complex customer challenges and driving success in systems engineering.
Fred Brittain
Executive Advisor to StateRAMP
StateRAMP PMO
Executive Advisor to StateRAMP, StateRAMP PMO
Fred Brittain is an experienced and innovative Information Security and IT leader who served as the Chief Information Officer (CIO) for the State of Maine from 2019 to 2023. Prior to joining the state government, he spent 25 years with the University of Maine system, where he rose from leading IT for a single campus to becoming the associate CIO for the entire system. As the CIO of Maine, he was responsible for overseeing the State’s IT policies, infrastructure, cybersecurity, accessibility, and service management. He also led several initiatives to improve the state’s digital capabilities, such as increasing web traffic, enhancing online services, and bringing the State through the pandemic while still providing best in class services to the people of Maine. He was recognized as one of the Top 25 Doers, Dreamers, and Drivers by Government Technology magazine in 2023 for his achievements and vision. After leaving the state government, he joined Knowledge Services as the Vice President of Information Security in August 2023, where he continues to apply his expertise and passion for information security to improve the cyber posture of cloud service providers at the national level. Fred Brittain holds a Bachelor of Arts in Mathematics and Computer Science. He is also an avid cyclist and skier living with his family in a log cabin in rural Maine.
Stacey Carswell
Government Engagement Director
StateRAMP
Government Engagement Director, StateRAMP
As the Government Engagement Director for the northeast region at StateRAMP, Stacey helps participating governments adopt StateRAMP by providing guidance on process improvement, change management, and cybersecurity education. Stacey has over a decade of experience in government procurement and policy development. She continues to support public servants through education and policy development.
Glenn Herdrich
Director, Information Security Manager
County of Sacramento
Information Security Manager, DTEch, County of Sacramento
StateRAMP Role: Board of Directors | Nominating Committee Member
Glenn Herdrich is an accomplished leader in the field of information security, currently serving as the head of the Information Security Office at Sacramento County. He is passionate about providing top-tier information security services that safeguard County systems and protect constituent data. Glenn's approach to information security is grounded in the belief that simplicity and collaboration are key to success. By fostering coordination and synergy between people, processes, and technology, he has been able to significantly improve information security awareness and controls at the County. In addition to his role at the County, Glenn serves on the board of directors for StateRAMP where he leverages his expertise and leadership to promote cybersecurity best practices through education and policy development to improve the cyber posture of public institutions and the citizens they serve.
Hyatt Regency Indianapolis
1 S Capitol Ave, Indianapolis, IN 46204
StateRAMP will NOT contact you by phone or e-mail asking you to book a room. If you receive this kind of phone call or e-mail do not book and do not give over your credit card details.
The benefits of booking in our room block:
If you have any questions regarding the information above, please contact the hotel directly.
The StateRAMP Cyber Summit 2024 is a premier event focused on cybersecurity in the public sector. It brings together industry leaders, government officials, cybersecurity professionals, and thought leaders to discuss key challenges, share best practices, and explore innovative solutions in the realm of state and local government cybersecurity.
The StateRAMP Cyber Summit 2024 will be held on Thursday, September 12, 2024 at the Hyatt Regency in Indianapolis, IN.
The StateRAMP Cyber Summit is ideal for cybersecurity professionals, government officials, policymakers, IT leaders, technology vendors, and anyone interested in advancing cybersecurity initiatives within the public sector.
The StateRAMP Cyber Summit will cover a wide range of topics including cloud security, risk management, compliance frameworks, whole-of-state, incident response, procurement best practices and more. View our agenda here for a deeper dive.
Registration for the StateRAMP Cyber Summit 2024 can be completed online through our registration portal at stateramp.org/cyber-summit-2024/registration/. Simply fill out the registration form to secure your spot.
Attendance at the StateRAMP Cyber Summit is free for public sector participants. For private sector attendees, the registration fee is $1500. However, private sector StateRAMP members enjoy a discounted rate of $1000. Additionally, extra discounts are offered to private sector StateRAMP members based on their membership tier.
The StateRAMP Cyber Summit will be held in-person at the Hyatt Regency in Indianapolis, IN, from 7:45 am to 6:00 pm EST.
By attending the StateRAMP Cyber Summit, you will have the opportunity to gain valuable insights from industry experts, network with peers, explore cutting-edge technologies, and contribute to the advancement of cybersecurity in the public sector.
Our lineup of keynote speakers and presenters includes cybersecurity leaders, government officials, industry experts, and thought leaders. Stay tuned for announcements regarding our featured speakers!
Yes, the StateRAMP Cyber Summit will feature interactive networking sessions, tabletop booths, and opportunities to connect with fellow attendees, speakers, and sponsors.
Yes, sponsorship and exhibitor opportunities are available for StateRAMP members looking to showcase their products and services to our audience. For more information, please contact us at staterampmarketing@carahsoft.com.
Recordings, slides, and other materials from the Cyber Summit sessions will be made available to registered attendees after the event through our online platform.
Yes, many sessions will include dedicated Q&A segments where attendees can engage with speakers and ask questions.
Yes, all participants are expected to adhere to our code of conduct, which promotes a respectful and inclusive environment for all attendees. The code of conduct will be provided to registered participants prior to the event. Additionally, please note that the Cyber Summit has a business casual dress code.
To receive updates and announcements about the StateRAMP Cyber Summit, please subscribe to our newsletter here and follow us on social media platforms for the latest news and information.
Yes, we are pleased to offer 4 continuing professional education (CPE) credits to those who attend the event. CPE certification at the StateRAMP Cyber Summit is being administered by Carahsoft Technology Corp. Carahsoft is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education of the National Registry of CPE Sponsors. For more information on the CPE credits we are offering, the CPE sponsor, NASBA, and the submission process, please click here.
