The NITSIG Advisory
Board (AB) is comprised of Insider Risk Management (IRM) Subject Matter
Experts with extensive experience in IRM Programs.
AB members have
managed U.S. Government Insider Threat Programs, or currently manage or
support industry and academia IRM Programs.
Advisory board
members will provide oversight, educational, strategic, operational and
tactical guidance to support the mission of the NITSIG, and also help to
facilitate building collaborative relationships with individuals
that manage or support IRM Programs. Below is a summary of AB members’
backgrounds and experience in IRM.
NITSIG Advisory Board
Disclaimer
Advisory Board Members (ABM's) have been selected for their IRM expertise, not because of who they are employed by.
Some
ABM's may have had to receive approval from their employer to act as an ABM.
ABM's are participating in their on personal capacity, not as a
representative of their employer.
ABM's are volunteers, and are not paid.
ABM's are bound to the NITSIG ABM Code of Ethics.
Some ABM's may be serving in a non-attributable capacity, due to the
sensitive nature of their work, and the organization or company they
work for.
ABM's are entitled to their opinions related to IRM, and their opinions may not reflect the opinions of other
ABM's or the NITSIG.
Products And Manufacturers Referenced Any commercial products, services or manufacturers that may be
referenced by an ABM, is presented for informational purposes only, and
does not constitute product approval or endorsement by the ABM or the
NITSIG.
Legal Advice Nothing presented by an ABM or the NITSIG should be construed as
"Binding" legal advice. Please contact your organizations attorney, for
legal advice, or to interpret any U.S. Federal Government laws,
regulations, statutes, etc.
NITSIG Advisory Board Members
This
link
provides a complete overview of the NITSIG, advisory board members and
the very positive comments from our membership and other individuals
that have attended NITSIG meetings, workshops and Insider Threat
Symposium & Expo events
Jim Henderson,
CISSP, CCISO
NITSIG Founder, Chairman
Founder / Director Of Insider Threat Symposium & Expo
Insider Threat Researcher / Speaker
FBI InfraGard Member
CEO of
Insider Threat Defense Group, Inc.
Insider Risk Management (IRM)
Program Training & Consulting Services
IRM Program Training Course Instructor
Insider Risk / Threat Vulnerability Assessment & Mitigation Specialist
IRM Program Gap Analysis / Evaluation & Optimization Expert
Mr. Henderson has over 15 years of
experience protecting classified information up to the Top Secret
SCI Level.
Mr.
Henderson has been responsible for the development, implementation and management of complex
enterprise Insider Threat
Programs, Cyber Security-Information Systems Security Programs,
Information Assurance Programs, for U.S. Government, DoD, IC
Agencies, Cleared Defense Contractors, State Governments, large
and small businesses.
Mr. Henderson has held numerous high
level security positions working for the following government
agencies: U.S. Special Operations Command, Central Intelligence
Agency, Defense Intelligence Agency, DoD Insider Threat
Counterintelligence Group, Defense Security Services, Department of
Energy and Health and Human Services.
The ITDG Has
Provided IRM Training / Consulting Services To An Impressive List
Of 675+ Clients:
White House, U.S. Government Agencies, Department Of Defense (U.S.
Army, Navy, Air Force & Space Force, Marines), Defense Contractors,
Intelligence Community Agencies (DIA, NSA, NGA), Law Enforcement
(DHS, TSA, FBI, U.S. Secret Service, DEA, Police Departments),
Critical Infrastructure Providers (Power & Water), Aviation /
Aerospace Providers (JetBlue Airways, Delta Airlines, Spacecraft
Manufacturing & Launch), Banking & Financial Industry (Visa, Capital
One Bank, BB&T Bank, HSBC Bank, KeyBank, Goldman Sachs, American
Express, Equifax, TransUnion), Health Care Industry, Universities,
Fortune 100 / 500 companies and others; Microsoft, Verizon, Walmart,
Home Depot, Nike, Tesla, Dell Technologies, Nationwide Insurance,
Discovery Channel, United Parcel Service, FedEx Custom Critical, and
many more. (Client
Clisting)
Students have
endorsed and given ITDG training EXCEPTIONAL reviews for the
comprehensive knowledge and resources provided. Please read the
feedback from our students on this
link.
Over 1000+ individuals have
attended ITDG training and received Insider Threat Program Manager /
Insider Risk Program Manager
Certificates.
NSA previously awarded the ITDG a contract for an Information Systems Security
Program / Insider Threat Mitigation Training Course. This course was
taught to 100 NSA Security Professionals (ISSM / ISSO), the DoD,
Navy, National Nuclear Security Administration, Department of Energy
National Labs, and to many other organizations.
Mr. Henderson
previously worked for the DoD Insider Threat Counterintelligence
Group (ITCIG) (Contractor), as an Insider Threat Security Analyst.
The mission of the ITCIG was to help the DoD design an Insider
Threat Program Framework.
Mr. Henderson
had the unique opportunity to review and analyze how DoD and
Intelligence Community (IC) Agencies developed, implemented and
managed their Insider Threat Programs, even before National Insider
Threat Policy (NITP) was released. NITP requirements were built off
of existing DoD and IC Agencies Insider Threat Program Frameworks.
From his
extensive experience with the DoD ITCIG, this enabled him to design
and develop a comprehensive, structured and resourceful Insider
Threat Program Development - Management Training Course, that meets and exceeds NITP and NISPOM Conforming
Change 2 requirements.
NITSIG Co-Founder,
Advisory
Board Member /
Technical Advisor
KBR, Inc.
Director,
Defensive Cyber Operations
Mr. Holt
has over 20+ years of Cyber Security and 15+ years of Insider Threat
Program Development - Management experience supporting the U.S.
Government.
Mr. Holt
supported the Executive Office of the President implementing a Data
Loss Prevention & Insider Threat technical capability.
Mr. Holt’s
track record of mitigating data loss and mission compromise is well
known and highly respected throughout the Intelligence Community (IC)
and Department of Defense (DoD).
Mr. Holt is
well known within the DoD and IC specifically for his experience in;
Computer Network Defense, Security Control Assessments, Risk
Management Framework (RMF), Complex System Requirements or Cross
Domain Solutions, Security Engineering, Vulnerability Assessments and
Insider Threat Program Creation & Implementation.
One of his
highlights was when he was the Technical Director for the Consolidated
Afloat Networks and Enterprise Services (CANES). He led this $2
Billion+ project that consisted of 12 direct reports and over 200
personnel cross-functionally and cross culturally; ensuring precision,
synergy, accuracy, and full cyber security compliance utilizing a
transformational Risk Management Framework (RMF) strategy.
Former Senior
Intelligence Service Officer With The Central Intelligence Agency (CIA)
CIA Insider Threat Program Manager
Mr. Knutsen retired as a
Senior Intelligence Service Officer with the Central Intelligence
Agency, after 30 years of service.
Within the National
Clandestine Service, he was responsible for creating the vision, and
leading the Agency’s sophisticated Counterintelligence and Security
Technical Insider Threat Detection Program, which became recognized as
the ‘Gold Standard’ for the U.S. Government Intelligence Community.
Mr. Knutsen lead an
interagency team of technical and policy experts in response to
unauthorized disclosure from WikiLeaks resulting in the adoption of
numerous enhancements to protect sensitive information.
Mr. Knutsen has supported
both commercial and government customers to enhance their Insider Threat
Programs.
Shawn Thompson
NITSIG
Advisory
Board Member /
Legal Advisor
Insider Threat Management Group CEO
Mr. Thompson a
licensed attorney with over 20 years of experience investigating and
prosecuting malicious employees and managing Insider Threat Program's.
Mr. Thompson is
widely recognized for his Insider Threat expertise and unparalleled
scope and breadth of experience.
Mr. Thompson has
been involved with creating and managing Insider Threat Program's for
numerous federal agencies.
Mr. Thompson worked
with the National Insider Threat Task Force led to the creation of the
National Insider Threat Policy and Insider Threat Program Minimum
Standards for Executive U. S. Government Agencies.
Mr. Thompson is a
co-instructor for classes taught by the Insider Threat Defense Group,
providing legal guidance for ITP Development - Management.
Guidehouse Management Consulting Company
Insider Threat Program Senior Official (ITPSO)
As the Guidehouse
ITPSO, Mr. Cheeseman is responsible for maintaining Guidehouse’s Insider
Threat Program.
Mr. Cheeseman is
responsible for monitoring, triaging events, building use cases, and
coordinating with key stakeholders across Guidehouse. By establishing
processes in an ever-changing environment.
Mr. Cheeseman is
responsible for ensuring Guidehouse’s data and personnel remain secure
against insider threats.
Mr. Cheeseman has
over 18 years of law enforcement, intelligence, cyber security, and
insider threat experience.
Mr. Cheeseman has
supported the establishment of multiple Insider Threat Programs across
government and commercial sector.
Develop, implement
and lead the insider risk and protective intelligence function of the
organization; responsible for daily monitoring of various information
sources to detect emerging threats and trends affecting our company's
physical security, geopolitical landscape, and forecasting future
threats. This involves conducting detailed research and analysis on
security threats, creating intelligence reports, risk assessments, and
maintaining an updated threat matrix across all facilities.
Collaborate with
internal stakeholders and establish relationships with external networks
to expand access to threat intelligence information. Additionally,
conduct vulnerability assessments, propose risk mitigations and
contingency plans, and coordinate information sharing with security
peers to optimize threat visibility and resource planning.
My role also
encompasses insider risk management, including developing strategies,
policies, and procedures to identify, assess, investigate and mitigate
insider threats. Stay updated on the latest security intelligence
tradecraft and implement advanced monitoring tools to detect anomalies
and potential threats in real-time, ensuring compliance with regulatory
requirements and industry standards.
Andrew Frisbie,
CISSP
NITSIG Advisory Board Member
NBT Bancorp,
Inc. Vice President / Director Of Information Security
Provide strategic leadership to and oversight of the Information
Security, Cyber Operations, Third-Party Risk Management and Insider Risk
Management Programs.
Mr. Smith worked
closely with key stakeholders to define requirements to help develop,
implement and support the Insider Threat Program.
Mr. Smith serves as
member of the Insider Threat Working Group.
Mr. Smith leads
cyber investigations as part of Insider Threat Program Hub, and works
closely with the Counterintelligence Team and the Insider Threat Program
Manager.
Mr. Smith is
responsible for the deployment and configuration of the User Entity
Behavior Analytics (UEBA) tool.
Mr. Smith works
closely with data owners to facilitate access to approved data sources
to support the UEBA tool.
Mr. Smith served as
Technical Lead for the DLP pilot project in support of the Insider
Threat Program.
Walsingham Group, Inc. / A Service Disabled Veteran Owned Business
Chief Operating Officer / Director Security Services
Mrs. Kelly George
serves as the Chief Operating Officer at Walsingham Group, with a tenure
of 12 years within the organization. Her strategic leadership has been
instrumental in positioning Walsingham Group as a provider of special
operations support services and comprehensive logistics, operations, and
maintenance solutions for the Department of Defense and Intelligence
Community.
Mrs. George has over 22
years of experience in the Special Operations and Intelligence
Community. Her professional journey includes pivotal roles such as
Global Security Officer, Program Officer, Identity Management Ops
Officer, and executive professional at the Joint Operations Command and
Defense Intelligence Agency. She has undertaken deployments globally,
supporting the Intelligence Community and United States Special
Operations Command. Kelly has also shared her expertise through adjunct
undergraduate instruction across various disciplines of Intelligence &
Security Studies.
Mrs. George serves as an
Advisory Member and active contributor on esteemed committees including
the National Industrial Security System (NISS) National Industrial
Security Program Policy Advisory Subcommittee and the National
Classification Management Society (NCMS) International Security
Subcommittee. Notably, as the Chief Security Officer, she was honored
with the Defense Counterintelligence and Security Agency James S.
Cogswell Award in June 2022.
Mrs. George holds a Master
of Arts in Business and Organizational Security from Webster University,
complemented by a Bachelor of Science in Business Administration from
Fayetteville State University.
Liaison /
Partnership Outreach Coordinator To Private Sector & Universities
Air Force Office
Of Special Investigations
Insider Threat Program Manager For The U.S. Department Of Justice
Operations Chief For The Counterintelligence Directorate & Insider
Threat Program Manager / Pentagon Force Protection Agency
As a highly experienced
leader of global teams in both public and private industry, Carrie
Staugler is a well-recognized expert in her field. Carrie’s career
started with over a decade of Active-Duty service in the U.S. Air Force,
after which she served in the Air Force Office of Special
Investigations, followed by roles at the Pentagon Force Protection
Agency as Operations Chief for the Counterintelligence Directorate and
the Insider Threat Program Manager. From here, Carrie went on to serve
as the Insider Threat Program Manager for the U.S. Department of
Justice, before joining the private sector as a departmental leader in
some of the most recognized enterprise corporations in the world.
A Credentialed Federal
Investigator, Carrie has an extensive background in conducting and
handling employee investigations, as well as consulting with executives
and partners on remediation actions. Since she has supported every step
of risk mitigation, from prevention to incident response and policy
change, she brings specialized knowledge to the Advisory Board. In
addition to continued leadership, Carrie serves the security community
as a passionate educator on Security and Counterintelligence Risk
Awareness and training.
Carrie was selected to
participate in the American University Key Executive Leadership Program
and holds both a BS and MS in Criminal Justice / Law Enforcement
Administration. The organizations she has served include the U.S. Air
Force, the Department of Defense with, the Department of Justice,
Bridgewater Associates, The Clearing House, Paypal (including
subsidiaries Venmo, Braintree, EBay, and GoPay), Zoom and Marriott
International. She also serves on the Advisory Board for Teramind.
Capital One Bank
Director, Cyber Insider Threat And Technical Investigations
Kevin Burton serves as Director, Cyber Insider Threat and Technical
Investigations (ITTI) at Capital One, where he leads the Cyber Insider
Threat function. In this role, Kevin collaborates with key stakeholders
to protect the organization’s critical data by assessing threats to
lines of business (LOB) operations, communicating these threats to the
LOBs, and designing strategies to mitigate these threats. Additionally,
Kevin guides the ITTI investigators & analysts that identify insider
threat attack patterns, providing insight on the latest cybersecurity
threats to the Cyber Senior Leadership team.
Prior to Capital One, Kevin served over 20 years as an FBI Special
Agent. Kevin entered on duty with the FBI in 2002, and was assigned to
the Philadelphia Division, where he conducted a myriad of
investigations, including cyber, counterterrorism, counterintelligence,
violent crime and civil rights. .
In 2006, Kevin was promoted to Supervisory Special Agent (SSA) and
transferred to the Cyber Division, where he served as PM and Unit Chief
(UC) leading CONUS and OCONUS national security and criminal cyber
investigations. Kevin is one of the plank holders who stood up the
National Cyber Investigative Joint Task Force (NCIJTF). In 2010, Kevin
transferred to the Washington Field Office and served as SSA of a cyber
investigative squad, Cyber Crime PM and Cyber TF Coordinator. In 2013,
Kevin transferred to Behavioral Analysis Unit-2 (BAU-2), Cyber
Behavioral Analysis Center (CBAC) providing cyber behavioral analysis
support for cyber investigations. In 2015, Kevin was promoted to UC of
BAU-2, which houses the Cyber Behavioral Analysis Center (CBAC) and
Counterintelligence Behavioral Analysis Program (BAP), which provides
behavioral analysis support for cyber and counterintelligence operations
for the USIC, FVEY, and US Military.
Kevin is a graduate of St. John’s University with a B.S. in Criminal
Justice and the University of Maryland University College (UMUC), where
he earned his M.S. in Cyber Security and MBA. Kevin holds information
security credentials, including CISSP, CCISO, GSEC, GCFA, GCIH, GCFE,
GISP, GSLC, and is a Certified Scrum Master. Kevin also serves as an
Adjunct Associate Professor for UMUC ’s Graduate Cyber Security Program.
Kevin served approximately eight years as a police officer with the NYPD
as a Patrol Officer, Task Force Officer, and later with the Street Crime
Suppression Unit, where he interdicted violent street crimes.
Kevin served as an enlisted USMCR Marine Radio Operator (2531) for the
6th Communication Battalion. In his final active duty tour, Kevin served
as instructor at The Basic School, Marine Corps Base Quantico, where he
trained more than 2,000 newly commissioned officers for service in the
Fleet Marine Force. In 2015, Kevin retired from the USMC Reserve at the
rank of Major.