StateRAMP Leadership

The Appeals Committee is comprised of at least five members at all times. Committee members are appointed by the board, who strive to include representation from all stakeholders, including at least one member of the Board of Directors. The Appeals Committee serves as the adjudication board for issues related to the PMO such as a conflict-of-interest claim, disagreements over status determination, or requests for exceptions. They conduct regular meetings and may call special ad hoc meetings as needed. In some cases, the Executive Committee, which includes Board Officers and executive staff, may appoint a subject matter expert to the committee to aid in a claim assessment as needed.

Members:

• Ted Cotterill, Privacy Officer / MPH General Counsel, State of Indiana
• Ray Yepes, Chief Information Security Officer, State of Colorado’s Governor’s Office of Information Technology 
• Owen Zorge, Chief Information Security Officer, City of Chandler, AZ
• Charlie Mewshaw, Chief Information Security Officer, Fayetteville State University 
• Rich Banta, Co-Owner and Chief Information Security Officer, Lifelines Data Center
• Teri Takai, Executive Director, Center for Digital Government
• Ramanuj Kushwaha, Leader, US Public Sector Market Transformation and Growth, Cisco

Advisors:

• Jeff Wann, Chief Information Officer, The State of Missouri, IT Services Division, Office of Administration
• Neil Slagle, Director of Information Systems, City of Springfield
• Jennifer Hawks, Vice President, Government Services, NCC Group 
• Tony Bai, Federal Practice Lead, A-LIGN
• Mase Izadjoo, VP & CISO, Earthling Security

In an effort to ensure all providers have the ability to verify their product and obtain a StateRAMP Authorized status, and in response to community feedback, the StateRAMP Board and Nominating Committee formed the StateRAMP Approvals Committee. The Approvals Committee is comprised of at least five members representing state and local government and higher education and is responsible for serving as the sponsoring government body required for the StateRAMP Authorized security status. Approvals Committee members possess the necessary technical and government policy knowledge and capabilities to review and approve product security packages and ensure government industry verification needs are met.

Members:

• Jayson Cavendish, Chief Security Officer, Michigan Dept. of Technology, Management & Budget
• Rob Main, State Chief Risk Officer, North Carolina Department of Information Technology
• Antoine Charles, Third Party Risk Analyst, Oklahoma Office of Management and Enterprise Services
• Adam Mikeal, Director of IT Policy, Risk, Identity, & Data Management, Texas A&M University Division of IT
• Todd Ryan, Chief Information Officer, Hillsborough County Sheriff’s Office, Florida

The Governance and Nominating Committee is appointed by the Board and will strive to represent all stakeholders. The committee will recommend qualified individuals for Board membership and committee membership, including recommendations for officers and the executive director. The committee will also make recommendations on best practices for governance.

Members:

• Doug Robinson, Executive Director, NASCIO
• Dugan Petty, Retired NASPO ValuePoint, Subject Matter Expert
• J.R. Sloan, CIO, State of Arizona
• Fay Tan, Legal Counsel, NASPO ValuePoint
• McCall Ginsberg, Deputy General Counsel, Georgia Department of Administrative Services 

The Standards and Technical Committee is comprised of at least seven members at all times. Committee members are appointed by the Board, who strive to include representation from all stakeholders, including at least one member of the Board of Directors. The Standards and Technical Committee conducts regular meetings and may call special ad hoc meetings as needed. The Standards and Technical Committee makes recommendations to the Board regarding PMO policies, security standards, best practice, and assessment processes.

Members:  

• Sean Hughes, Assistant Secretary for Technology, Security, and Operations/Chief Operating Officer, Massachusetts Executive Office of Technology Services and Security 
• Danielle Cox, Chief Information Security Officer, State of West Virginia
• Charles Rote, Deputy Chief Information Security Officer, Maine Office of Information Technology 
• Matthew Kelly, Deputy Chief Information Security Officer for Security Policy & Governance, Texas Department of Information Resources 
• Steve Nettles, Statewide Procurement Group Manager, State of Arizona
• Dan Lohrmann, Field Chief Information Security Officer, Public Sector, Presidio
• Jason Oskenhendler, Senior Manager, Cyber Risk Advisory, Coalfire
• Joe Bielawski, President, Knowledge Services
• Richard Zak, Data Governance & Compliance, US State & Local Government, Microsoft 

Advisors:      

• Jim Garrett, Chief Information Security Officer, State of Missouri
• Earl Crane, Adjunct Faculty, University of Texas at Austin 
• Phyllis Lee, Sr. Director of Controls, Center for Internet Security
• James Mason, Chief Technology Officer (Interim), NASPO
• Maria Thompson, Cybersecurity Lead, Amazon Web Services
• Rashad Munawar, Director, Security Compliance and Operations, BlackBerry Government Solutions
• Siddique Chaudhry, Manager, Global Public Sector Security Compliance, Snowflake, Inc.