Board of Directors
SVP and Chief Security Officer for Sallie Mae
Jerry Archer is an SVP and Chief Security Officer for Sallie Mae. Archer’s responsibilities include securing and protecting all of Sallie Mae’s systems and offerings, and for security initiatives across the company. Prior to Sallie Mae, Archer was the CISO at Intuit and prior to joining Intuit, Archer was managing director at Global Competitive Strategies. Previously, Archer was SVP for Global Interoperability at Visa International and before Visa, at the Fidelity Brokerage; he was SVP of information security and technical risk. For his work in the U.S. Intelligence Community Archer earned the National Performance Review Hammer Award, a Distinguished Service Award from the CIA and a Meritorious Unit Citation from the National Security Agency.
Chief of Enterprise Architecture for The Coca-Cola Company
Alan Boehme serves as Chief of Enterprise Architecture for The Coca-Cola Company. In this role he is responsible for leading the Global enterprise architecture and emerging technology function. Boehme was previously Sr. VP and Head of IT Architecture for the ING Global Insurance Business as well as serving as chairman of the global cross banking / insurance business (ING Group) enterprise architecture committee reporting into the global CTO office. Prior to his time with ING he served as VP & CIO at Juniper Networks, EVP & CIO Sage Software and the CIO for Emerging Technologies & Shared Services at GE Power Systems.
Chairman of the CSA Board | VP Global Security & Privacy, Catalina Marketing
Dave Cullinane is the VP of Global Security and Privacy for Catalina Marketing – a personalized digital media company in St Petersburg, Florida. Dave is also the CEO of Security Starfish LLC – an alliance of industry security professionals designed to effectively address cybercrime through collaborative intelligence research and preventive actions. Prior to Security Starfish he was the CISO and VP of Global Fraud, Risk and Security for eBay for 5+ years. Prior to joining eBay, Dave was the CISO for the sixth largest bank in the United States and the largest Thrift in the world. He has more than 30 years of security experience and is a former Certified Information Systems Security Professional (CISSP) and a former Certified Business Continuity Professional (CBCP) and Certified Protection Professional (CPP).
Dave is a founding member and Chairman of the Board of the Cloud Security Alliance. He is the past President and past Chairman of the IT-ISAC. He served as a member of the IT Sector Coordinating Council and the National Council of ISACs. He is an ISSA Fellow, and has been elected to the ISSA Hall of Fame. He is on the Editorial Advisory Board of CSO Magazine and SC Magazine. He was awarded SC Magazine’s Global Award as Chief Security Officer of the Year for 2005 and CSO Magazine’s 2006 Compass Award as a “Visionary Leader of the Security Profession.” In 2012 he was awarded SecureWorld’s first Lifetime Achievement Award for his outstanding contributions to the advancement of the information security community.
Paul B. Kurtz
Chief Strategy Officer, CyberPoint
Paul Kurtz has been involved with CyberPoint since the company’s founding in 2009. He currently leads the company’s international services division. A recognized cyber security expert, he has held senior positions in both industry and government. He was the founding Executive Director of the Cyber Security Industry Alliance (CSIA), an advocacy group dedicated to ensuring the privacy, reliability, and integrity of information systems through sound public policy, technology, education, and awareness. During his government service, Paul was Special Assistant to the President and Senior Director for Critical Infrastructure Protection on the White House’s Homeland Security Council (HSC). He joined HSC from the National Security Council (NSC), where he was both Senior Director for National Security in the Office of Cyberspace Security and a member of the President’s Critical Infrastructure Protection Board. He served as an NSC Director for Counterterrorism from 1999-2001, and helped manage the response to the 9/11 terrorist attacks. Before the NSC he had a long career in the State Department, specializing in non-proliferation policy and strategic arms control. Paul earned his bachelor’s degree from Holy Cross College and his master’s in international public policy from the Johns Hopkins University’s School of Advanced International Studies.
Co-founder of CSA | Chief Security Officer, Zynga’s Security Department
As Chief Security Officer, Nils Puhlmann leads Zynga’s converged security department, managing all security risks for the company and chairing the Security Risk Committee. Before joining Zynga, Puhlmann served as Chief Security Officer of Qualys. Puhlmann has held information security positions at Electronic Arts, Robert Half International, Mindjet Corp, and Adobe Systems. He also held senior positions at Nortel Networks and START Amadeus, and was an independent security consultant with clients such as the State of California. He maintains numerous security certifications, including CISSP-ISSMP and CISM. He has held several Board of Directors positions (ISACA Silicon Valley, OVAL), is a current Director on the International Board of Directors of ISSA, is a member of the CSO Interchange, the CISO Executive Council and a subject matter expert for ISACA and ISC2. He was also a member of the Advisory Council for the CISO Forum of ISSA.
Co-founder and Chief Executive Officer of CSA
For many years, Jim Reavis has worked in the information security industry as an entrepreneur, writer, speaker, technologist and business strategist. Jim’s innovative thinking about emerging security trends have been published and presented widely throughout the industry and have influenced many. Jim is helping shape the future of information security and related technology industries as co-founder, CEO and driving force of the Cloud Security Alliance. Jim has been named as one of the Top 10 cloud computing leaders by SearchCloudComputing.com.
Jim is the President of Reavis Consulting Group, LLC, where he advises security companies, governments, large enterprises and other organizations on the implications of new trends such as Cloud, Mobility, Internet of Things and how to take advantage of them. Jim founded SecurityPortal, the Internet’s largest website devoted to information security in 1998, and guided it until a successful exit in 2000. Jim has been an advisor on the launch of many industry ventures that have achieved a successful M&A exit or IPO. Jim is widely quoted in the press and has worked with hundreds of corporations on their information security strategy and technology roadmap. Jim has a background in networking technologies, marketing, product management and systems integration. Jim received a B.A. in Business Administration / Computer Science from Western Washington University in 1987 and serves on WWU’s alumni board.
Co-founder and Chief Executive Officer of CSA
Chief Operating Officer
John Howie is Chief Operating Officer at the Cloud Security Alliance. John has over twenty years of experience working in information and communications technology in a variety of industry sectors including financial, telecommunications, entertainment, education and software manufacturing. Prior to joining the Cloud Security Alliance, John managed the groups responsible for security in the datacenters of a leading cloud provider. John is a Visiting Professor at Edinburgh Napier University’s School of Computing, a Visiting Research Professor at the University of Arizona’s Eller School of Management, is a member of the editorial advisory board for the Journal of Information Management and Computer Security, is a member of the certification advisory board for certifications of the International Association of Privacy Professionals, and is an advisor to the United Nations Interregional Crime and Justice Research Institute’s Security Governance/Counter-Terrorism Laboratory. John graduated from Edinburgh Napier University with a BSc (Hons) in Computing, in 1991.
Luciano (J.R.) Santos
Global Research Director
J.R. Santos is the Global Research Director, for the Cloud Security Alliance. As Global Research Director, he oversees the Cloud Security Alliance’s research portfolio that covers a diverse range of cloud security topics such as Mobile, Big Data, Forensics and Security as a Service. He is responsible for the execution of the research strategy worldwide. In addition he advises over 30+ working groups that develop industry leading security practices, education and tools. J.R. has over fifteen years of experience working in information security in a variety of industry sectors including finance, healthcare, aerospace, retail and technology. J.R. is an active professional in the security industry and has served on various boards and committees throughout his career. J.R. holds various professional certifications and a bachelor’s degree from the University of Washington respectively.
Managing Director EMEA
Daniele Catteddu, is the Managing Director, EMEA, in Cloud Security Alliance, where he is responsible for the definition and execution of the company strategy in EU, Middle East and Africa. He also leads CSA participation in FP7 projects, coordinates European CSA Chapters research projects and manage the relations with European public institutions. In past worked at ENISA (European Network and Information Security Agency), as Expert, where he was responsible of projects in the areas of Resilience and Critical Information Infrastructure Protection (CIIP) and in particular he was supporting EU Member States in implementing the security obligations in the new European Framework Directive on Telecommunication. He has also worked within ENISA as a risk management expert, on various activities in the area of the Emerging and Future Risks, and in particular, having a leading role in developing EU cloud security research. Before joining ENISA, Daniele worked as an Information Security consultant in the banking and financial sector.
Daniele is the author of the study: “Security and Resilience in Governmental Clouds” as well as co-author of the reports: “Cloud Computing: Benefits, risks and recommendations for information security” and “Cloud Computing: Information Assurance Framework”. He is member of various national and international security expert groups on cloud computing security and privacy, invited speaker at conferences and workshops (e.g. Digital Agenda Assembly, Word Economic Forum cloud workshop, OASIS Cloud Symposium, etc). Daniele graduated from the University of Parma (Italy) in Business Administration and Economics, and he is an ISACA Certified Information Security Manager and Certified Information Systems Auditor.
Managing Director APAC
Aloysius Cheang is Managing Director APAC of Cloud Security Alliance. He also heads up the Standards Secretariat. Aloysius brings to the Alliance extensive experience gained from running business units and multi-million enterprise security and technology programs for Global 500 organizations worldwide in his previous roles as a CSO for a Telco and APAC practice leader with leading management consulting firms. He is an active community leader, having founded and mentored various information security projects, forums, groups and associations in Singapore and many parts in APAC. He is also active in standardization and was most recently a co-editor for ISO/IEC 27032 “Guidelines for Cybersecurity”, having contributed towards many other security standards such as ISO/IEC 24762 et al in the past. Aloysius holds a B. Sc (Hons) and Master’s degrees in Computer Science from the National University of Singapore and is currently a doctorate candidate. His professional certifications include CISA, CISSP and GCIH. His views are valued by global media such as Times, Wall Street Journal and CIO Magazine as a trusted independent source of specialist opinion over the last decade.