Managing risk by examining data

The In Focus mini-series examines more closely issues and topics of importance to federal agencies and contractors. Each month, Federal News Radio speaks with key stakeholders to better understand challenges and opportunities. This month focuses on Cybersecurity Threat Intelligence.

From Shaun’s perspective, if an agency has just discovered a zero-day threat it is about a day too late.  Policies should be in place that can immediately respond to threats. Shaun also addressed budgeting and suggested that perhaps the constant refrain of increasing resources should be balanced with leveraging existing investments.  Many agencies may feel secure if they comply with all the rules and regulations from security agencies, but the truth is that compliance may not be enough to prevent attacks.



JOHN  pix  FotoFlexer_PhotoJohn Gilroy, Host of Federal Tech Talk, Federal News Radio

John Gilroy has been a member of the Washington D.C. technology community for over twenty years. In 2007 he began weekly interviews on Federal News Radio called “Federal Tech Talk with John Gilroy.”   His 428 interviews provides the basis for profitable referral business. In 2009 he created a successful breakfast club of previous radio guests called The Technology Leadership Roundtable. He has been instrumental in two of his guests forming their own radio shows:  Derrick Dortch with “Fed Access” and Aileen Black and Gigi Schumm with “Women in Washington.”

In 2011 he began teaching a course in social media marketing at Georgetown University; in March of 2014, John won the Tropaia Award for Outstanding Faculty.  John conducts monthly corporate training for large companies on how to leverage social media to generate revenue.



Khalfan BIO PICShaun Khalfan, Chief Information Security Officer, U.S. Customs and Border Protection

Shaun serves as the Chief Information Security Officer and senior cybersecurity executive for the largest law enforcement agency in the country, U.S. Customs and Border Protection. He leads the development and execution of cybersecurity strategy and is responsible for aligning security initiatives with enterprise programs and business objectives, ensuring that systems and information are adequately protected.

Prior to joining CBP, Shaun served as the Director of Cybersecurity and Infrastructure with the Department of the Navy (DON) Chief Information Office. He led a team of senior DoD civilians and military officers to deliver strategy, governance, policy, and oversight of Department of the Navy cybersecurity initiatives, to include assessment and authorization, mobility and cloud security, risk management, identity management and cybersecurity strategies. Enabling this consisted of leading efforts within the DON such as computer network defense design and architecture, continuous monitoring, insider threat, and other cyber initiatives across the department. He previously served as the Program Information Security Manager with the Defense Logistics Agency, Defense Information System for Security Acquisition. He developed and led a comprehensive information security program which drove the cyber acquisition strategy, architecture, requirements, policies, and processes for the program. Additionally, he managed the cost, scope, and schedule of specific systems and components within the family of systems and coordinated with stakeholders to develop requirements and deliver solutions. Prior to this, he was the Enterprise Security Operations Manager with the Navy’s Military Sealift Command. He led the command’s Network Security Operations Center (SOC) and managed multiple information security projects.