Speakers

Mona Harrington is a cybersecurity and risk management executive with over two decades of federal government experience. As Assistant Director of CISA's National Risk Management Center (NRMC) since September 2022, she spearheads efforts to safeguard critical infrastructure against cyber and physical threats. Harrington's leadership has enhanced the NRMC's analytic capabilities, fostering improved information sharing and risk management between government and industry.

She spearheads several of CISA’s pivotal strategic initiatives including election security, emerging technologies, and supply chain resilience. Additionally, she serves in several key positions on behalf of CISA, including as the co-chair for both the Information and Communications Technology Supply Chain Risk Management Task Force and the Space Weather Operations, Research, and Mitigation (SWORM) Subcommittee. She also serves as a member of the Election Infrastructure Subsector Government Coordinating Council Executive Committee.

Prior to CISA, Harrington held key positions at the U.S. Election Assistance Commission (EAC), including Executive Director and Chief Information and Security Officer. Her tenure at the EAC was marked by significant contributions to election security, COVID-19 response, and the advancement of the Voluntary Voting System Guidelines 2.0.

Harrington's career also includes 17 years in executive IT and cybersecurity roles within the Judiciary. She holds a Master of Science in Applied Sciences from the Rochester Institute of Technology, in Cyber Security and chemical, biological, radiological, and nuclear warfare.

Ms. Rosa Underwood is an IT Specialist in the IT Security Subcategory within Information Technology Category (ITC), Federal Acquisition Service (FAS), supporting the transition to a more modernized and resilient infrastructure. She also contributes to GSA initiatives for the adoption and integration of cybersecurity into the acquisitions process to help strengthen the resiliency of the Supply Chain,  Government-wide. Rosa has an extensive background in IT and telecommunications with many years of profound experience from various roles in the private sector. Before joining GSA, she was a contractor supporting the implementation of the Continuous Diagnostics and Mitigation (CDM) program at the Dept. of Commerce. In her role as a Senior Systems Engineer at Juniper Networks, Rosa focused on idealistic solutions for compliance with Federal and international standards for hardware and software, including cryptographic module validation programs, across routing, security, and switching platforms. Much of Rosa’s expertise comes from her tenure at Verizon Communications where she spent over 10 years of her career in Verizon Labs as a Subject Matter Expert (SME). Using her technical knowledge, Rosa crafted innovative solutions that led to 22 patents granted by the US Patent and Trademark Office. The depth of her experience includes roles in governance, risk, and compliance (GRC); project management; network operations; customer service; hardware and software testing; and systems integration. 

Rosa’s professional experience is complemented by degrees in Internetworking Technology, Telecommunications Engineering, and Optoelectronics Engineering. She holds several professional certifications in cybersecurity, project management and cloud technology. 

Paul Asadoorian is currently the Principal Security Evangelist for Eclypsium and the founder of Security Weekly, a security podcast network (acquired by CyberRisk Alliance in 2020). Paul's previous roles have been spent “in the trenches” coding in Python, testing security products, and evaluating and implementing open-source software. Paul's career began by implementing security programs for a lottery company and then a large university. Paul is offensive, having spent several years as a penetration tester. As Product Evangelist for Tenable Network Security, Paul built a library of materials on the topic of vulnerability management.