Board of Directors

Jerry Archer

SVP and Chief Security Officer for Sallie Mae

Jerry Archer is an SVP and Chief Security Officer for Sallie Mae. Archer’s responsibilities include securing and protecting all of Sallie Mae’s systems and offerings, and for security initiatives across the company. Prior to Sallie Mae, Archer was the CISO at Intuit and prior to joining Intuit, Archer was managing director at Global Competitive Strategies. Previously, Archer was SVP for Global Interoperability at Visa International and before Visa, at the Fidelity Brokerage; he was SVP of information security and technical risk. For his work in the U.S. Intelligence Community Archer earned the National Performance Review Hammer Award, a Distinguished Service Award from the CIA and a Meritorious Unit Citation from the National Security Agency.

Alan Boehme

Chief of Enterprise Architecture for The Coca-Cola Company

Alan Boehme serves as Chief of Enterprise Architecture for The Coca-Cola Company. In this role he is responsible for leading the Global enterprise architecture and emerging technology function. Boehme was previously Sr. VP and Head of IT Architecture for the ING Global Insurance Business as well as serving as chairman of the global cross banking / insurance business (ING Group) enterprise architecture committee reporting into the global CTO office. Prior to his time with ING he served as VP & CIO at Juniper Networks, EVP & CIO Sage Software and the CIO for Emerging Technologies & Shared Services at GE Power Systems.

Dave Cullinane

Co-Founder and Advisor, TruSTAR Technology

Dave Cullinane is the Founder of TruSTAR Technology. Prior to TruSTAR, Dave served
for 5+ years as the Chief Information Security Officer and VP of Global Fraud, Risk and
Security for eBay and its many global businesses (StubHub, InternetAuction.co, GSI
Commerce). He has more than 30 years of professional security experience building and
managing cyber security and incident response teams.

Dave is also the past President and Chairman of the IT-Information Sharing and
Analysis Center (IT-ISAC) – an organization for sharing security related information
across companies in the IT industry, and was a founding member of the FS-ISAC for the
financial services industry under Presidential Decision Directive 63. He served as a
member of the IT Sector Coordinating Council and the National Council of ISACs. He
has been selected to serve on the Information Security and Privacy Advisory Board for
NIST, along with the Secretary of Commerce and representatives from other US
Government agencies. He is also the Founder and Chairman of the Cloud Security
Alliance.

Dave is an Information Systems Security Association (ISSA) Fellow, and has been
elected to the ISSA Hall of Fame. He was awarded SC Magazine’s Global Award as
Chief Security Officer of the Year for 2005 and CSO Magazine’s 2006 Compass Award
as a “Visionary Leader of the Security Profession.” In 2012 he was awarded
SecureWorld’s first Lifetime Achievement Award for his outstanding contributions to the
advancement of the information security community.

Adrienne Hall

General Manager for Issues & Crisis Management at Microsoft

Adrienne Hall is the General Manager for Issues & Crisis Management at Microsoft, overseeing communication regarding a wide range of topics. Hall works closely with colleagues to ensure accurate and timely information is delivered, providing the details for customers and partners to take action, if or when, needed. She represents Microsoft as a board member of the Cloud Security Alliance, is a recognized speaker on cloud computing, cybersecurity, and is a recurring author on the Microsoft Cyber Trust Blog. Hall also regularly meets with customers, law enforcement, and government agencies to share best practices for the protection of critical infrastructure and information technology systems. Hall is a recipient of awards and recognition from global organizations, including several from international law enforcement agencies for her collaboration on disrupting cybercrime. In 2013, Hall received the Women in Security Award from Professional Security Magazine UK for her contributions to the field of cybersecurity and in 2014, received a ten-year service award from the Executive Women’s Forum for Security, Privacy, and Risk Management Professionals. Hall is a graduate of the University of British Columbia and the Michael G. Foster School of Business at the University of Washington.

Paul B. Kurtz

Co-Founder and CEO, TruSTAR Technology

Paul Kurtz is the Chief Executive Officer of TruSTAR Technology. Prior to TruSTAR Paul Kurtz was the Chief Information Security Officer and Chief Strategy Officer for CyberPoint International LLC. While at CyberPoint, he helped grow the company from 10 to 200 employees in 5 years by building the US government and international business verticals. Prior to CyberPoint, Paul was the managing partner of Good Harbor Consulting where he oversaw the Middle East and North Africa security consultancy business for government and commercial clients.

Paul was the Founder and Executive Director of the Cyber Security Industry Alliance, which later was absorbed by Tech America and worked closely to bridge the gap between commercial companies and the US government to share information and raise cyber security awareness. He served as the Executive Director of Software Assurance Forum for Excellence in Code (SAFECode) and is a founding board member of the Cloud Security Alliance.

Prior to his work in non-profit and commercial sector, Paul held senior positions with the US Government. During his service, Paul was Special Assistant to the President and Senior Director for Critical Infrastructure Protection on the White House’s Homeland Security Council (HSC). He joined the HSC from the National Security Council (NSC) where he was both Senior Director for National Security in the Office of Cyberspace Security and a member of the President’s Critical Infrastructure Protection Board. He served on the NSC as a Director of Counterterrorism from 1999-2001, and helped manage the response to the September 11 terrorist attacks.

Dr Radu Popescu-Zeletin

Professor emeritus (Technical University Berlin) and founder of the Fraunhofer Institute for Open Communication Systems (FOKUS) in Berlin

Radu Popescu-Zeletin is professor at the Technical University Berlin and Director of the Fraunhofer Institute for Open Communication Systems (FOKUS), Berlin. For many years he led the research and development department of the BERKOM project of the German Telekom, – pilot project for the development of new applications in broadband ISDN environment. He is founder of several telecommunication companies, a member of the Microsoft Interoperability Executive Customer Council in Seattle as well as founder of the ISPRAT e.V. (Interdisciplinary Studies on Policy, Law, Administration and Technology e.V.) and of the Wireless World Research Forum. As member of the Motorola Visionary Board (2004-2006) he contributed to the creation of new developments in mobile communications. Prof. Popescu-Zeletin graduated at the Polytechnical Institute Bucharest, Romania, got his PH.D. from the University of Bremen, and his habilitation from the Technical University Berlin. He is Senior Member of IEEE, Doctor honoris causa of the Polytechnical Institute Bucharest, Romania and Professor honoris causa of the Catholic University of Campinas, Brasil. He is member of the Romanian Academy as well as bearer of the Public Service Medal of the Republic of Romania.

Jim Reavis

Co-founder and Chief Executive Officer of CSA

For many years, Jim Reavis has worked in the information security industry as an entrepreneur, writer, speaker, technologist and business strategist. Jim’s innovative thinking about emerging security trends have been published and presented widely throughout the industry and have influenced many. Jim is helping shape the future of information security and related technology industries as co-founder, CEO and driving force of the Cloud Security Alliance. Jim has been named as one of the Top 10 cloud computing leaders by SearchCloudComputing.com.

Jim is the President of Reavis Consulting Group, LLC, where he advises security companies, governments, large enterprises and other organizations on the implications of new trends such as Cloud, Mobility, Internet of Things and how to take advantage of them. Jim founded SecurityPortal, the Internet’s largest website devoted to information security in 1998, and guided it until a successful exit in 2000. Jim has been an advisor on the launch of many industry ventures that have achieved a successful M&A exit or IPO. Jim is widely quoted in the press and has worked with hundreds of corporations on their information security strategy and technology roadmap. Jim has a background in networking technologies, marketing, product management and systems integration. Jim received a B.A. in Business Administration / Computer Science from Western Washington University in 1987 and serves on WWU’s alumni board.

Executive Management

Jim Reavis

Co-founder and Chief Executive Officer of CSA

For many years, Jim Reavis has worked in the information security industry as an entrepreneur, writer, speaker, technologist and business strategist. Jim’s innovative thinking about emerging security trends have been published and presented widely throughout the industry and have influenced many. Jim is helping shape the future of information security and related technology industries as co-founder, CEO and driving force of the Cloud Security Alliance. Jim has been named as one of the Top 10 cloud computing leaders by SearchCloudComputing.com.

Jim is the President of Reavis Consulting Group, LLC, where he advises security companies, governments, large enterprises and other organizations on the implications of new trends such as Cloud, Mobility, Internet of Things and how to take advantage of them. Jim founded SecurityPortal, the Internet’s largest website devoted to information security in 1998, and guided it until a successful exit in 2000. Jim has been an advisor on the launch of many industry ventures that have achieved a successful M&A exit or IPO. Jim is widely quoted in the press and has worked with hundreds of corporations on their information security strategy and technology roadmap. Jim has a background in networking technologies, marketing, product management and systems integration. Jim received a B.A. in Business Administration / Computer Science from Western Washington University in 1987 and serves on WWU’s alumni board.

Luciano (J.R.) Santos

VP Research and Member Services

J.R. Santos is the Global Research Director, for the Cloud Security Alliance. As VP Research and Member Services, he oversees the Cloud Security Alliance’s research portfolio that covers a diverse range of cloud security topics such as Mobile, Big Data, Forensics and Security as a Service. He is responsible for the execution of the research strategy worldwide. In addition he advises over 30+ working groups that develop industry leading security practices, education and tools. J.R. has over fifteen years of experience working in information security in a variety of industry sectors including finance, healthcare, aerospace, retail and technology. J.R. is an active professional in the security industry and has served on various boards and committees throughout his career. J.R. holds various professional certifications and a bachelor’s degree from the University of Washington respectively.

Daniele Catteddu

Managing Director EMEA

Daniele Catteddu, is the Managing Director, EMEA, in Cloud Security Alliance, where he is responsible for the definition and execution of the company strategy in EU, Middle East and Africa. He also leads CSA participation in FP7 projects, coordinates European CSA Chapters research projects and manage the relations with European public institutions. In past worked at ENISA (European Network and Information Security Agency), as Expert, where he was responsible of projects in the areas of Resilience and Critical Information Infrastructure Protection (CIIP) and in particular he was supporting EU Member States in implementing the security obligations in the new European Framework Directive on Telecommunication. He has also worked within ENISA as a risk management expert, on various activities in the area of the Emerging and Future Risks, and in particular, having a leading role in developing EU cloud security research. Before joining ENISA, Daniele worked as an Information Security consultant in the banking and financial sector. Daniele is the author of the study: “Security and Resilience in Governmental Clouds” as well as co-author of the reports: “Cloud Computing: Benefits, risks and recommendations for information security” and “Cloud Computing: Information Assurance Framework”. He is member of various national and international security expert groups on cloud computing security and privacy, invited speaker at conferences and workshops (e.g. Digital Agenda Assembly, Word Economic Forum cloud workshop, OASIS Cloud Symposium, etc). Daniele graduated from the University of Parma (Italy) in Business Administration and Economics, and he is an ISACA Certified Information Security Manager and Certified Information Systems Auditor.

Aloysius Cheang

Managing Director APAC

Aloysius Cheang is Managing Director APAC of Cloud Security Alliance. He also heads up the Standards Secretariat. Aloysius brings to the Alliance extensive experience gained from running business units and multi-million enterprise security and technology programs for Global 500 organizations worldwide in his previous roles as a CSO for a Telco and APAC practice leader with leading management consulting firms. He is an active community leader, having founded and mentored various information security projects, forums, groups and associations in Singapore and many parts in APAC. He is also active in standardization and was most recently a co-editor for ISO/IEC 27032 “Guidelines for Cybersecurity”, having contributed towards many other security standards such as ISO/IEC 24762 et al in the past. Aloysius holds a B. Sc (Hons) and Master’s degrees in Computer Science from the National University of Singapore and is currently a doctorate candidate. His professional certifications include CISA, CISSP and GCIH. His views are valued by global media such as Times, Wall Street Journal and CIO Magazine as a trusted independent source of specialist opinion over the last decade.