StateRAMP Leadership
In early 2020, a steering committee of government and industry leaders chartered a non-profit organization called StateRAMP to bring together states to create a common method to verify security.
BY THE NUMBERS
13
Current & Former Government Officials
3
Board Members
16
Steering Committee Members
8
Policy Documents Adopted
1,000+
Steering Committee Meeting Hours in 2020
Board of Directors
Joe Bielawski
President, Knowledge Services
Ted Cotterill
Chief Privacy Officer, State of Indiana
General Counsel, Management Performance Hub
J.R. Sloan
Chief Information Officer, State of Arizona
StateRAMP Steering Committee
Tony Bai
Paul Baltzell
Rich Banta
Thomas Considine, Sr.
Curtis Dukes
Dan Lohrmann
Leah McGrath
Steve Nettles
Jason Oksenhendler
Dugan Petty
Doug Robinson
Fay Tan
Tim Roemer
Jaime Schorr
Teri Takai
Paul Toomey
Jay White
Owen Zorge
Standing Committee Members
The Appeals Committee is comprised of at least five members at all times. Committee members are appointed by the board, who strive to include representation from all stakeholders, including at least one member of the Board of Directors. The Appeals Committee serves as the adjudication board for issues related to the PMO such as a conflict-of-interest claim, disagreements over status determination, or requests for exceptions. They conduct regular meetings and may call special ad hoc meetings as needed. In some cases, the Executive Committee, which includes Board Officers and executive staff, may appoint a subject matter expert to the committee to aid in a claim assessment as needed.
Chair: Owen Zorge, Chief Information Security Officer, City of Chandler, Arizona
Vice Chair: Rich Banta, Co-Owner & CISO, Lifelines Data Center
Members:
- Chance Grubb, ISAC Lead, State of Oklahoma
- Ted Cotterill, Privacy Officer / MPH General Counsel, State of Indiana
- Teri Takai, Executive Director, Center for Digital Government
Advisors:
- Tony Bai, Federal Practice Lead, A-LIGN
- Mase Izadjoo, VP & CISO, Earthling Security
In an effort to ensure all providers have the ability to verify their product and obtain a StateRAMP Authorized status, and in response to community feedback, the StateRAMP Board and Nominating Committee formed the StateRAMP Approvals Committee. The Approvals Committee is comprised of at least five members representing state and local government and higher education and is responsible for serving as the sponsoring government body required for the StateRAMP Authorized security status. Approvals Committee members possess the necessary technical and government policy knowledge and capabilities to review and approve product security packages and ensure government industry verification needs are met.
Chair:
- David S. Allen, Chief Information Security Officer, Georgia Technology Authority
Members:
- David S. Allen, Chief Information Security Officer, Georgia Technology Authority
- Jayson Cavendish, Deputy Chief Security Officer, Michigan Dept. of Technology, Management & Budget
- Rob Main, State Chief Risk Officer, North Carolina Department of Information Technology
- Antoine Charles, Third Party Risk Analyst, Oklahoma Office of Management and Enterprise Services
- Adam Mikeal, Director of IT Policy, Risk, Identity, & Data Management, Texas A&M University Division of IT
The Governance and Nominating Committee is appointed by the Board and will strive to represent all stakeholders. The committee will recommend qualified individuals for Board membership and committee membership, including recommendations for officers and the executive director. The committee will also make recommendations on best practices for governance.
Chair: Jaime Schorr, Chief Procurement Officer, State of Maine
Members:
- Doug Robinson, Executive Director, NASCIO
- Dugan Petty, Retired NASPO ValuePoint, Subject Matter Expert
- J.R. Sloan, CIO, State of Arizona
- Jay White, CISO, State of Mississippi
- Paul Baltzell, VP of Strategy and Business Development, Salesforce
- Fay Tan, Cooperative Contract Coordinator, NASPO ValuePoint
The Standards and Technical Committee is comprised of at least seven members at all times. Committee members are appointed by the Board, who strive to include representation from all stakeholders, including at least one member of the Board of Directors. The Standards and Technical Committee conducts regular meetings and may call special ad hoc meetings as needed. The Standards and Technical Committee makes recommendations to the Board regarding PMO policies, security standards, best practice, and assessment processes.
Chair: Dan Lohrmann, Field CISO, Public Sector, Presidio
Vice Chair: Nancy Rainosek, CISO, State of Texas
Members:
- David Allen, CISO, State of Georgia
- Glenn Herdrich, Information Security Manager, Sacramento County
- Steve Nettles, Statewide Procurement Group Manager, State of Arizona
- Jason Oskenhendler, Senior Manager, Cyber Risk Advisory, Coalfire
- Joe Bielawski, President, Knowledge Services
Advisors:
- Phyllis Lee, Sr. Director of Controls, Center for Internet Security
- Rick Zak, Dir. Regulatory Compliance, U.S. State & Local Government, Microsoft
- Noah Brown, CISO, Knowledge Services / StateRAMP PMO
- Maria Thompson, Cybersecurity Lead, Amazon Web Services
Receive StateRAMP Updates
Interested in StateRAMP? Sign up below to receive StateRAMP Updates.