2006-2007 Executive Board Biographies:

Lieutenant Colonel Curtis A. Carver is an Army officer and Academy Professor at the United States Military Academy. As the Associate Dean for Information and Educational Technology, Curt provides strategic leadership focused on providing a pervasive computing environment in support of the development of leaders of character.

Over the last twenty-two years, Curt has served in a number of leadership positions including platoon leader, company commander, battalion operations officer, and division deputy G-6. His military awards include the Army Meritorious Service Medal with three oak leaf clusters, the Army Commendation with three oak leaf clusters, the Army Achievement Medal with three oak leaf clusters, and National Service Medal with star device. While he followed the traditional path of an Army Signal Officer, his forte has been web-based, adaptive, highly responsive decision support systems such as TACWEB and DPASS which have been widely utilized throughout the Army.

Curt holds a PhD in computer science and is a member of the AACE, ACM, ASEE, IEEE, UPE, and PKP. His research focus during his student years was agent-based, adaptive intrusion response. He has over one hundred academic works and a researcher in information assurance, adaptive hypermedia and computer science education. Curt won the 1995 EDSIG Best Overall Paper Award, 1996 IEEE Frontiers in Education Ben Dasher Best Paper Award, 1996 and 1997 EDMEDIA Outstanding Paper Award, 1997 AFCIA Best Paper Award, and EISTA 2003 Best Track Paper Award and honorable mentions at CCSC 2001. He is the program chair of the Federal Information Security Systems Education and Awareness conference (FISSEA) [2003, 2004, 2005, 2006]. He is on the executive board for the FISSEA conference and the Federal Information Assurance Conference.

Away from the office, Curt is an avid computer gamer in the massively, multiplayer genre. He is also heavily involved with cadet development outside the classroom as the head Values Education Team member for cadet company H-1, head officer representative for the women’s soccer team, and mentor for approximately twenty cadets.

Barbara Cuffie retired from the Social Security Administration (SSA) in June 2004. She was the Principal Security Officer and the Internal Control Officer for the Office of Systems (OS) at the time of her retirement. Ms. Cuffie assisted OS executive management in ensuring that the information technology system (ITS) security program effectively protected the Agency's numerous ITS assets, including both data and systems. Ms. Cuffie had served as the project manager for component-wide security initiatives related to confidentiality, integrity, authentication, non-repudiation and/or availability on numerous occasions. She routinely worked with a network of ITS security professionals, auditors, and systems managers at all levels to help provide OS' management reasonable assurance that both the ITS security program and internal control infrastructure complied with a host of governing directives.

Ms. Cuffie was an active participant in both SSA's Critical Infrastructure Protection Workgroup and the Continuity of Operations Planning Workgroup. As such, she frequently briefed OS' executive management on security and internal control issues to ensure that senior management received the information needed to make informed decisions about developing and implementing necessary risk mitigation strategies. Ms. Cuffie had a significant role in establishing and documenting guidelines to assist SSA's technical personnel in incorporating security and internal controls appropriately throughout the various phases of the software development life cycle.

Throughout her 37-year career at SSA, Ms. Cuffie focused on various aspects of information systems security and also actively participated in leadership positions in ITS security professional organizations. She became a CISSP in 1998 and is a past president of the Baltimore Metropolitan Chapter of the Information Systems Security Association (ISSA). In 2000 she became the Assistant Chair of the Executive Board of the Federal Information Systems Security Educators' Association (FISSEA). In March 2001, she became the Chair of the FISSEA Executive Board and in that capacity represented FISSEA on the Security Program Managers Forum Steering Committee, which is sponsored by the National Institute of Standards and Technology. For several years, Ms. Cuffie was a member of the Editorial Advisory Board for SC Info Security News Magazine and is still a regular contributor in the FISSEA newsletter. She also served as a member of the (ISC) 2 Government Advisory Board from its inception until November 2005. Since 2004 she has continued to serve as the Assistant Chair of the Executive Board of FISSEA.

Charlie has Bachelor's and Master's degrees in Aeronautical Engineering from the University of Minnesota and an MBA from Cleveland State University. While with the Air Force's Aerospace Research Labs, he published several basic research results in experimental hypersonics. He has contributed to the development of numerous fluid dynamics analysis codes, as well as similar tools in other disciplines. He is a former supervisor at Glenn Research Center, and a part-time landscaper. He is currently Manager of all IT Security Training for NASA. He also represents Glenn Research Center on NASA's Agency Software Working Group.

Ms. Susan Hansche, CISSP-ISSEP is the training director for information assurance at PEC Solutions in Fairfax, Virginia. She has over 15 years experience in the training field and has specific expertise in designing, developing, and implementing Information Assurance training programs for Federal agencies. Since 1998, she has managed the role-based information assurance training program for the U.S. Department of State. She is the lead author of "The Official (ISC)2 Guide to the CISSP Exam" (January 2004), which is a reference for professionals in the information system security field studying for the Certified Information System Security Professional (CISSP) exam. Her second book "Information System Security Engineering: A Handbook for the ISSEP" will be released Summer 2005. In addition, Susan has written numerous articles on information system security and training topics and has given many presentations at conferences and seminars.

James P. Litchko is a senior information systems security author and strategic advisor. He has over twenty-five years experience assessing and developing information technology (IT) security solutions. He has held senior executive positions and advised executives at several of the largest commercial IT security companies. During his twenty-year Naval career, as a surface warfare and cryptographic officer, he spent twelve years supporting operations in the Atlantic, Pacific, European, and Middle Eastern theaters. His last five years in the Navy were in staff and technical positions at the National Security Agency (NSA) and the National Computer Security Center (NCSC), where he was Staff Chief for the Director. Since 1988, he has been an instructor for computer and network security at Johns Hopkins University, the MIS Training Institute, and the National Cryptologic School. He has been a keynote speaker, presenter, and facilitator at over 30 events a year and a professional member of the National Speakers' Association. He has provided IT security presentations to Congressional staffs, Gartner Group, Conference Board, Canadian Embassy and Communications Security Establishment, Price Waterhouse, Merck, Exxon, Freddie Mac, Cambridge University, University of Mexico, SANS Institute, Computer Security Institute, Defense Intelligence University, and National Defense University. He has served on several government-sponsored, IT security working groups and was the past Chair of the ASIS International IT Security Council. A student of Ken Blanchard, Ph.D., author of The One-Minute Manager®, he holds a Masters degree in Information Systems from Johns Hopkins University and a Bachelors degree in Industrial Technology from Ohio University. He has authored or co-authored the following books: KNOW Your Life, KNOW IT Security, and KNOW Cyber Risk. Additionally, he provides management, business development, and strategic planning support for high-tech start-up companies.

Mrs. Gretchen Ann Morris has twelve years teaching and troubleshooting experience on a variety of software packages and hardware configurations. She has a solid and diverse background in computer software/hardware, electronics troubleshooting, training, course development, and management. Most recently, she has five years experience with on-line course development and web page design. Training difficult concepts is her area of expertise. She has a Bachelor of Applied Science in Resource Management degree from Troy State University, and a Master of Arts degree in Biblical Counseling from Trinity Theological Seminary. She is a CISSP and is certified as an Instructional Designer/Developer from Langevin. In her current position with RSIS as a Sr. Consultant/Technical Staff, she is a vital part of the NASA IT Security Awareness and Training Center team which supports over 55,000 users across the Agency.

Louis Numkin is an Information Technology Specialist (Security) in the FISMA Program Office of the Mission Assurance and Security Services organization of the Internal Revenue Service. As Team Lead for the Security Awareness and Training Team, his duties relate to security awareness, training, education, and the like. Prior to IRS, he provided many facets of computer security for the Nuclear Regulatory Commission (as part of the team which earned the first ever FISMA "A" grade in 2003) and the General Services Administration's FTS2000 before that. Numkin's Bachelor's Degree in Business Administration and Masters Degree in Technology of Management (majored in Management Information Systems and Computer Systems) are from the American University. He has also received his Certified Information Security Manager professional certification from ISACA. Louis provides computer security awareness sessions on request from various Federal Agencies and conferences, schools (elementary through high school), senior citizen centers, and social organizations. He volunteers as a Red Cross Blood Donation Coordinator, Elections Judge, and an AARP Tax Counselor for the Elderly. Retired from the US Army Reserves as a Sergeant Major, he has also served as Worshipful Master of his Masonic Lodge, and is a National Committee Chair as well as President of Walter Reed Chapter of the National Sojourners, Inc. After editing the Federal Information Systems Security Educators' Association (FISSEA) News and Views for several years he was elected Chair of the FISSEA Exec Board in 2004, again in 2005, and was honored to receive the cherished FISSEA Educator of the Year Award for 1998.

K Rudolph is the founder and Chief Inspiration Officer at Native Intelligence, Inc., a firm that has spent the last ten years supporting security awareness efforts of government organizations and private industry clients. K is a CISSP, holds a degree from Johns Hopkins University, and is the author of the chapter on Security Awareness in the soon-to-be-published three-volume "Handbook of Information Security." Windows Security published an interview with K last year where the topic was "Security Awareness Programs." K's strengths include enthusiasm and creativity, which allow her to make security awareness activities fun and memorable. Several hundred thousand people worldwide have taken security awareness courses that K has developed. These security awareness courses have been translated into Japanese, Italian, and German.

K is a contributor to NIST Special Publication (SP) 800-16 - Information Technology Security Training Requirements: A Role- and Performance-Based Model - published in April 1998. She is a requested speaker at security events and conferences. K submitted the winning entry for the FISSEA Security Awareness Trinket contest in 2005. She is currently working on an illustrated cyber security awareness book with Mich Kabay of Norwich University. K's Office Manager is a cat. Besides security awareness, her interests include contact juggling, photography, and baking cookies..

A transplanted Floridian, Mary Ann Strawn worked for Georgia Tech in Atlanta and Booz-Allen & Hamilton in Chicago before coming to Washington. Prior to joining Information Technology Services at the Library of Congress she was with the Department of State for 10 years. She has been a part of the team building the computer security program at the Library from its early stages and has had an opportunity to participate in a wide range of programs. She initiated production of the Library's computer security web site and is involved in it's maintenance. Responsibilities include coordinating computer security awareness activities throughout the Library in addition to programs, seminars, publications and publicity. She assists with employee orientation, coordinates alert monitoring and advanced computer security education. She worked on the development of the computer security awareness training curriculum. Mary Ann attended universities in Georgia and Florida and has degrees in psychology and journalism.

LTC Will Suchan has twenty-two years of active military service. He is currently serving as the Program Director of the Information Technology Core Program in the Department of Electrical Engineering and Computer Science. His previous military assignments include tours as a Signal Officer with the 25th Infantry Division (Light), the 101st Airborne Division (Air Assault), and the 1st Signal Brigade in the Republic of Korea. In 2001 he migrated into the Army's Information Systems Engineering career field.

Will is a strong advocate for education, training and awareness in information assurance, and he was a driving force behind the creation of an Information Assurance curriculum at Mesa Community College in Arizona. He is a member of AFCEA, IEEE, and ACM, and has been inducted into the PKP and UPE academic honor societies. Will is a 1984 graduate of West Point, and subsequently earned both a Master of Computer Science and a Ph.D. in Computer Science from Arizona State University, where his most recent graduate work was in the area of Information Assurance.