Selected Work

A selection of published research, policy analysis, and opinion writing

Publications and Research

Eight Recommendations for Congress to Improve Federal Cybersecurity
MITRE - October 2021

This paper identifies eight ways that Congress can act to improve federal cybersecurity practices and meet advanced threats posed by China, Russia, ransomware gangs, and other nation-state and criminal actors.

Read the paper →

Gray Zone Cyber Conflict: Issues and Implications for Homeland Security
MITRE - 2017

An early examination of political conflict in cyberspace that exceeds espionage but falls short of open warfare — analyzing the threat landscape and mitigation options available to the Department of Homeland Security.

Opinion & Commentary

Closing the Gap on Cyber Policy by Focusing on FISMA
Nextgov — June 2022

An argument for aligning proposed FISMA reform legislation with White House cybersecurity priorities, including codifying zero-trust principles and simplifying agency oversight.

Read on Nextgov →

Electronic Voting Infrastructure Must Become More Resilient Against Attacks
The Hill — November 2017

A call to move beyond perimeter security for election systems and build resilience capable of delivering accurate results even after a successful intrusion.

Read on The Hill →

Selected Projects

U.S. National Cyber Incident Response Plan (NCIRP)
Cybersecurity and Infrastructure Security Agency (CISA) — 2024–2025

As technical lead and primary author, led development of the updated U.S. government framework for responding to nationally significant cyber incidents, coordinating a 170-member multi-sector working group spanning 60+ federal, state, and private sector organizations. Engaged directly with the White House and international partners throughout the process.

Presidential Policy Directive 41 and National Cyber Incident Response Plan
MITRE / Department of Homeland Security — 2014–2016

Contributed to the development of Presidential Policy Directive 41 on U.S. Cyber Incident Coordination — the foundational policy framework for national response to significant cyber incidents — and played a key role in the development of the accompanying National Cyber Incident Response Plan.