THE CYBER OREGON MISSION
To build tangible solutions to protect the digital lives of all Oregonians.
We believe cybersecurity is a shared responsibility and must be accessible to all.
OREGON CYBERSECURITY ADVISORY COUNCIL
The Oregon Cybersecurity Advisory Council was established under Senate Bill 90, signed by Governor Kate Brown on September 19, 2017, to develop a shared vision for the establishment of a cross-sector Cybersecurity Center of Excellence, in collaboration with Oregon’s cyber-related industries, private sector security practitioners, educational institutions, law enforcement and local governments.
The Council serves as the statewide advisory body to the State Chief Information Officer on cybersecurity and provides a statewide forum for discussing and resolving cybersecurity issues. The advisory body also provides information and recommends best practices concerning cybersecurity and resilience measures to public and private entities. In addition, the Council helps coordinate cybersecurity information sharing and promote shared and real-time situational awareness between the public and private sectors throughout the state. The Council is also very focused on encouraging the development of the State’s cybersecurity workforce through programs designed to build workforce skills, disseminating best practices, facilitating cybersecurity research and encouraging industry investment and partnership with post-secondary institutions of education and other career readiness programs.
Oregon Cybersecurity Advisory Council
Alex Z. Pettit, PhD
Chief Information Officer, State of Oregon
Alex Z. Pettit serves as the chief information officer (CIO) for the State of Oregon where he is responsible for all of the state agencies’ information and telecommunications systems. He was appointed to his position by Governor Kate Brown in January 2014.
Since his appointment as State CIO, Dr. Pettit has worked to implement HB 3099 (2015), a law that permanently reassigned responsibility for IT service delivery at the state data center and designated the State CIO as an independent official, directly responsible to the Governor as the primary advisor on statewide IT policy and operations.
Among other provisions, the bill also codified an incremental funding and development process for IT projects over $1 million and provided a delegation of authority over enterprise IT and telecommunications projects. Additionally, Dr. Pettit served as the interim CIO for Cover Oregon following its failed launch and directed the successful transition of the state to the federal health exchange.
Prior to joining the State of Oregon, Dr. Pettit served as the first CIO for the State of Oklahoma from 2010 until December 2013. As the CIO for Oklahoma, Dr. Pettit developed a comprehensive and measurable framework defining, delivering and supporting the activities of the 132 agencies for the State.
Dr. Pettit completed his Ph.D. in Information Science from the University of North Texas, where his dissertation focused on the study or requirements analysis within software development practices.
Previously, Dr. Pettit held other IT leadership positions within public, private and higher education institutions, including: vice president at Marsh McLennan Risk Consulting; chief technology officer for the City of Denton, Texas; and senior manager at Ernst & Young. He also developed and tested disaster recovery plans during the renovation of the Tom Watkin Jr. data center at Brown University and served as a consultant for the U.S. Environmental Protection Agency.
Chief Information Security Officer, State of Oregon
Stefan Richards is the chief information security officer for the State of Oregon and leads the Enterprise Security Office (ESO) which brings enterprise security functions into a single organization. The ESO is directly accountable for the security of state data center operations, real-time security monitoring and incident response, enterprise security policy, enterprise security architecture and dissemination of best practices. In this capacity, he leads a cross-functional team to meet business goals and IT security objectives. Mr. Richards drives statewide information security policy, procedures and standards, coordinating state security efforts with federal partners, including: the FBI, Department of Homeland Security (DHS) and departments within the U.S. military. Mr. Richards also oversees the security operations of the state data center, which serves more than 100 state agencies, boards and commissions. Additionally, he manages the state-level security compliance programs, including NIST 800-53/FISMA, ISO 27001, CJIS, FTI, MARS-E, PCI DSS and HIPPA/HITECH.
Mr. Richards was previously CISO and chief privacy officer for Cover Oregon, building an end-to-end security and privacy program for Oregon’s online health insurance marketplace, working with both the IRS and CMS in ensuring compliance with IRS Pub 1075, NIST 800-53/FISMA and CMS MARS. In this role he led the development of security requirements, supporting technical architecture and security solution implementations across a heterogeneous environment within and across agency and private sector boundaries.
Mr. Richards previously served other public and private organizations in security management and security product development roles, including Intel, GE and Microsoft. Mr. Richards has held leadership roles in the development of security policy and industry security products which are still used today, and has experience addressing both information privacy and information security.
Treasurer, Oregon Cybersecurity Advisory Council
President & CEO, Technology Association of Oregon (TAO)
Skip Newberry is president and CEO of the Technology Association of Oregon (TAO), which promotes technology in Oregon and advocates for public policies that ensure the continued growth and success of Oregon’s tech industry, and focuses on professional networking and talent development.
Before joining TAO, Mr. Newberry served as an economic development policy advisor to Portland Mayor Sam Adams, where he helped create Portland’s first comprehensive economic development strategy in 16 years, recognizing software as a key industry cluster. While at the City of Portland, his projects included the adoption of the nation’s first open source software procurement policy at the municipal level, an award-winning regional open data initiative and the development of resources to support entrepreneurship, like the Portland Seed Fund. Previously, Mr. Newberry was a corporate and IP attorney and entrepreneur.
Additionally, Mr. Newberry is the chairman of the board of directors of the Technology Councils of North America (TECNA), which is a global network of technology and entrepreneurship associations, and he serves on advisory boards for Wells Fargo and Worksystems, Inc. He is also a 2012 recipient of the Portland Business Journal’s 40 Under 40 award.
He holds a J.D. from the University of Connecticut School of Law and a Bachelor’s degree in international relations from Colby College. A frequent speaker on technology trends and topics, economic development, public-private partnerships and civic innovation. When he's not working on behalf of the region's tech industry, Mr. Newberry enjoys exploring the Pacific Northwest with his family.
Chair, Oregon Cybersecurity Advisory Council
Senior Vice President, operations & Finance, IGNW
Kerri Fry is Senior Vice President, Operations & Finance for IGNW. Her focus on personal customer service, dynamic employee culture, consistent personnel development, and steady financial growth give IGNW a competitive edge in the cybersecurity industry. Her background in operations, business processes and finance gives her the perspective to see business needs of today while planning for future growth. She previously served as President of Redhawk Network Security.
Ms. Fry has a Bachelor of Arts degree in Management and Organizational Leadership from George Fox University. Her heart for orphan care and her eye for detail have benefited the board of Otino Waa Children’s Village. Co-leading two trips to Uganda helped to confirm a love of adventure and community, both at home and abroad. Additionally, she serves on the steering committee for the Technology Alliance of Oregon’s Bend: STEAM community. You might also find her volunteering around the community or camping and hiking with her husband and son.
Charlie Kawasaki, CISSPVice Chair, Oregon Cybersecurity Advisory CouncilChief Technical Officer, PacStar
Charlie Kawasaki joined PacStar in early 2005 to lead the company’s technology strategy and future product roadmap for its proprietary product lines. He continues in that role today. Charlie has extensive experience in product development, software engineering, technology licensing, patent development, business development, product marketing, general management and M&A.
Prior to joining PacStar, Charlie provided his expertise to early stage technology companies, where he created dozens of software solutions in such industries as Internet infrastructure, cybersecurity, energy management, software utilities and relational databases. Charlie served as CEO of RuleSpace, Inc., which created world-leading technology for Internet parental controls applications used by companies such as AOL, Yahoo, SBC, BellSouth, and Microsoft. Before RuleSpace, he held product development and engineering management roles at The Palace, Inc., Creative Multimedia Corp., Central Point Software, Inc., Asymetrix Corp. and Microrim, Inc.
Apart from his various company roles, Charlie has a career long commitment to economic and industry development through association board service, including Software Association of Oregon, Regional Alliance for Infrastructure and Network Security, and Smart Grid Northwest. He currently serves as a board member of the Technology Association of Oregon (TAO) and co-chairs the TAO Cyber Lab. He is also co-founder and manager of NW Cyber Camp (formerly PDX Cyber Camp), a popular summer camp which provides cybersecurity education to high school students throughout Oregon.
Secretary, Oregon Cybersecurity Advisory Council
Founder & CEO, McKenzie Worldwide
Megan McKenzie is the founder and CEO of McKenzie Worldwide, a high-tech public relations agency. She provides strategic leadership to the agency in its work with enterprise, consumer, wireless and cybersecurity technology companies as well as consulting organizations and venture capital firms. She and her team also partner with corporate executives and authors to develop strategic thought leadership programs that help build trust in corporate and personal brands.
Throughout her more than 25-year career in public relations, Ms. McKenzie has served in numerous leadership roles in both corporate and agency environments. Ms. McKenzie has provided strategic counsel to several global brands as well as growing companies including DocuSign, Hueya, Ignition Partners, Microsoft, OpenText, Pacific Star Communications, Redhawk Network Security, SAP, Siebel, Sparkplug, Sony Electronics and Tektronix among others. Prior to founding McKenzie Worldwide, she served as president of OnPR and as a vice president at Waggener Edstrom—both high-tech public relations agencies. Previously, she was the founder of McKenzie Communications, which provided strategic communications services to several high-tech companies based in the Pacific Northwest. She has also served in corporate communications management roles at Pacific Bell/Pacific Telesis, Torme & Co., Nordstrom Inc. and Egghead Software.
During her nearly 10-year tenure with Waggener Edstrom she served as a senior leader on both of the agency's largest international accounts: Microsoft and SAP. In addition, she led the agency's public relations support for Microsoft's first global CEO Summit with Bill Gates in May 1997 which attracted high-profile attendees including U.S. Vice President Al Gore, Steve Forbes and more than 100 of the world's top CEOs. She was also on the team providing public relations support for Microsoft's pivotal Internet Strategy Day in 1995 that drew more than 400 print and broadcast reporters from around the world.
Ms. McKenzie is a frequent guest speaker on the topics of strategic public relations, corporate communications, marketing and branding at conferences and university forums. She has a Bachelor’s degree in technical journalism with a minor in business administration from Oregon State University and also studied at the Universite d'Avignon in Avignon, France.
BRANDON BLOOMFIELD, IACIS CFCE
DETECTIVE, MEDFORD POLICE DEPARTMENT
Detective Brandon Bloomfield currently serves with the Medford Police Department and is assigned to the Southern Oregon High Tech Crimes Task Force (SOHTCTF) where he has served as a Certified Forensic Computer Examiner (CFCE) since 2007. The SOHTCTF is a cooperative effort between the Medford Police Department, FBI, Homeland Security Investigations (HSI), Jackson County District Attorney’s Office and the United States Attorney’s office. The SOHTCTF focuses on digital forensics and crimes involving digital technology.
Detective Bloomfield began his employment with the City of Medford as a Patrol Officer, focusing on death investigation and financial fraud. In 2006, Detective Bloomfield was assigned to the Financial Investigation Section of the Medford Police Department Criminal Investigation Division.
Prior to joining the Medford Police Department in 1998, Detective Bloomfield was in business management for 11 years.
Security Strategist, Micro Focus International
Michael Gutsche is a security strategist for Micro Focus International, which he joined as part of Micro Focus' acquisition of Hewlett Packard Enterprise. Prior to joining HPE, he was senior vice president, operations core services, for MasterCard, senior director for the global operations service center for ESI and executive director, information security and engineering for Sisters of Mercy Health System.
Mr. Gutsche holds a Masters of Business Administration degree and a Bachelor of Science degree in chemical engineering, systems engineering from Washington University in St. Louis.
Lake County Commissioner
Ken Kestner is currently in his third four-year term as Lake County commissioner. He also serves on the Lake County Fair Board, the Lake County Development Board (non-profit devoted to economic development), the Goose Lake Medical Services Board (nonprofit devoted to enhancing peripheral services of local hospital), Eastern Oregon Coordinated Care Organization Board, South-Central Oregon Early Learning Hub Board, Lake County Early Learning Governance Council, AOC Communication Policy Steering Committee Vice Chair, Rotary. In addition, Mr. Kestner is active in the local Layne Clifton Veterans of Foreign Wars Post 4070.
Mr. Kestner has also served on the Lake Health District Hospital Board of Directors and the Lakeview Suburban Water District Board of Directors. Prior to his work in public service, he was a supervisory resources specialist for the U.S. Department of Interior’s Bureau of Land Management for six years and a biologist for the U.S. Department of Agriculture’s Forest Service for more than 21 years. He also served in the United States Marine Corps with one combat tour in Vietnam. He volunteered for one tour with the Peace Corps in Nicaragua.
Mr. Kestner received a Bachelor of Science degree in biology with accompanying graduate studies at Henderson State University in Arkadelphia, Arkansas.
Travis L. Miller
Policy & Communications Strategist, Office of the State CIO (OSCIO)
Travis Miller, J.D., is the senior policy and communications strategist for the Office of the State CIO (OSCIO). In this role, he is responsible for policy analysis, legislative and stakeholder engagement, communications and strategy development for enterprise IT initiatives.
Before joining the OSCIO, Mr. Miller served as a strategic initiatives project manager within the Office of the Chief Operating Officer (COO), where he provided project management, statewide coordination and performance management support for large-scale multi-agency organizational improvement projects. His portfolio included: enterprise IT governance; coordination of a third-party organizational assessment of the state data center; conducting a review of enterprise IT finance billing and assessment methodologies in response to a Budget Note from the Committee on Ways and Means; and providing project management support for the implementation of HB 3099 (2015)—the law that realigned statewide IT policy and service delivery under the State CIO.
Mr. Miller previously served as an assistant policy and budget analyst in the Chief Financial Office (CFO), managing a portfolio of 11 state agencies and sharing responsibility for enterprise-wide fiscal planning and policy leadership. He also served as a legislative aide in the Oregon Legislature, drafting legislative concepts, policy statements, legislative testimony, press releases and floor speeches.
Before joining the State of Oregon, Mr. Miller completed several research assignments and worked as a law clerk. As an Oregon Fellow for the Oregon Watershed Enhancement Board (OWEB), he conducted a review of the watershed council’s support program. He also conducted research on behalf of the Oregon Community Foundation.
Mr. Miller graduated from the University of Oregon with a Bachelor of Arts in Planning, Public Policy & Management, completed a J.D. at Lewis & Clark Law School and completed just over two years of doctoral coursework in Portland State University’s Public Affairs and Policy Ph.D. program.
President & CEO, Anitian
Andrew Plato, a 20-year veteran of the information security industry, is president and CEO of Anitian, the oldest security intelligence firm in the U.S. In 1995 while working at Microsoft supporting one of the first Internet e-commerce sites, Mr. Plato inadvertently hacked the site using an SQL injection style attack. This incident inspired him to start Anitian with a mission to help people understand the complexities of protecting data and systems. Since then, Mr. Plato has participated in thousands of security projects, authored numerous articles and given hundreds of presentations on all matters of IT security.
Mr. Plato is also a principal at TrueBit CyberPartners, a global advisor serving the cybersecurity industry. He is a sought-after speaker, author and advisor on security, risk, and compliance topics. He holds a Bachelor’s degree in English from University of Arizona.
CTO Security Economics, McAfee
Tom Quillin, CTO Security Economics at McAfee LLC, consults with security and IT leaders about how to predict and measure security outcomes and how to advance their security strategies with a focus on efficiency and effectiveness.
Prior to joining McAfee, Mr.Quillin led Intel Corp.’s strategic planning efforts for security technologies integrated into Intel’s hardware and software. He worked for 19 years at Intel, helping users develop solutions on Intel technology. Previously, he helped establish and grow a West Coast strategy consulting firm.
Mr. Quillin served for seven years on the board of directors for Oregon’s third largest school district and currently serves on the Beaverton School District’s Bond Accountability Committee and on Oregon’s Cybersecurity Advisory Council.
Mr. Quillin earned his undergraduate degree at University of Iowa and a Masters of Business Administration from the University of Pennsylvania’s Wharton School of Business. He enjoys spending time with his family, hiking and camping in the Pacific Northwest, and volunteering on education-related efforts.
Associate Professor, Oregon Tech (formerly OIT)
Kristopher Rosenberg is an assistant professor and serves as the program director for the Information Technology and Cybersecurity Programs at Oregon Tech. He teaches courses in information security, networking, system administration and computer forensics. Mr. Rosenberg also oversees the university’s Enterprise Technology Lab which provides a private cloud infrastructure used to give students hands-on access to a wide range of enterprise class hardware and software and experience working in a real data center environment.
Mr. Rosenberg joined Oregon Tech in 2014 after working for more than 15 years as a senior IT executive (CIO, CTO, CISO) in a variety of industries. His main areas of expertise include information security, network engineering and IT service management. He holds a Bachelor of Science in information technology and a Masters of Science in information technology management along with a wide variety of industry certifications in networking, security and systems administration.
Dennis Tomlin, CISSP, HCISPP, ITIL CISO, Multnomah County
Dennis Tomlin is the chief information security officer for Multnomah County, where he is responsible for leading the county’s cybersecurity efforts. He manages a team that ensures endpoint and perimeter protection, incident response, forensics, identity management, HIPAA compliance and SAP security.
In his role as county HIPAA security officer, he establishes policy, provides leadership and consulting for in-house county security initiatives. He protects county and constituent data and privacy by employing a 3x3x3 security model which consists of cyber intelligence, defense in depth and incident response. This approach is shielded within the CIA Triad of Confidentiality, Integrity and Availability while considering people, process and technology.
Previously, Mr. Tomlin was the information security and governance program manager for Papa Murphy’s International, leading efforts to align the company with Sarbanes-Oxley and PCI-DSS security and compliance requirements. He was also responsible for authoring and maintaining IT policies and procedures, partnering with management on budget forecasts, and ensuring quality data is processed.
He also worked for 13 years for Lake Oswego medical device firm Biotronik in various roles, most recently as senior information security and GRC manager, where he was responsible for the global company’s IT security, governance, risk and compliance. He focused on HIPAA, FDA and ISO IT compliance within an ITIL and COBIT framework.
Mr. Tomlin has degrees in elementary education from Portland State University and forestry from Mt. Hood Community College. He also served in the Peace Corps in Paraguay from 1978 to 1981.