Logo Image
AFCEA Bethesda Chapter Breakfast Series:
Cyber Security—A New Era of Collaboration
Dan Galik
Chief Information Security Officer
Department of Health and Human Services

Dan Galik came to the Department of Health and Human Services (HHS) in April 2008, and is the Department’s Chief Information Security Officer (CISO). While at HHS, he has led the efforts to apply Recovery Act funds to significantly improve the Department’s security capabilities, to include the recent establishment of a Computer Security Incident Response Center (CSIRC) in Atlanta. Prior to HHS, he served as the Chief Security Officer (CSO) and the CISO at the Internal Revenue Service (IRS) for over four years. At IRS, was a member of the top layer executive team reporting to the IRS Commissioner. He was responsible for all security programs including information technology (IT) security, physical security, and personnel security, and also was responsible for emergency management. Before he came to the IRS, Dan worked at the U. S. Nuclear Regulatory Commission (NRC) where he was hired in May 2002 to head up the information technology (IT) security program. He was responsible for managing the efforts that resulted in the NRC having successfully completed security compliance requirements for all of its major operational IT systems, which contributed to the NRC receiving a grade of “A” on the annual Congressional computer security scorecard in 2003.

Prior to NRC, Dan served on active duty in the U.S. Navy, retiring at the rank of Captain in 2002. He completed a number of different assignments in the Department of Defense and in the Navy, including an assignment as the Navy’s Program Manager for Information Assurance and Information Systems Security from 1997 to 2000.

Dan is a graduate of the U. S. Naval Academy, and has a Masters Degree in Computer Science from the Naval Postgraduate School. He is a Certified Information Systems Security Professional (CISSP), and is originally from Clifton, New Jersey. In his free time, he is involved with various charities including Feds Feed Families, SmileTrain, and the House of Mercy.
Holly Ridgeway
Holly Ridgeway
Deputy Chief Information Security Officer and Program Manager, Justice Security Operations Center
Department of Justice

Mrs. Ridgeway currently serves as the Department of Justice, Deputy Chief Information Security Officer and Program Manager of the Justice Security Operations Center. In these roles, she provides visionary leadership to combat the Advanced Persistent Security Threat to DOJ networks while balancing mandated compliance requirements and components' business line needs. Mrs. Ridgeway promotes collaboration and creativity to achieve DOJ's goals and objectives. In 2010, Mrs. Ridgeway received the prestigious Federal 100 award that recognizes individuals in government and industry who have made significant contributions to the federal information technology community. Also in 2010, she received the Justice Management Division Performance Award for successfully defending the Department during several large incidents and the implementation advance capabilities in the Justice Security Operations Center.

She has served in different IT Security roles for the Department of Justice for the past seven plus years. She completed two years as the Director of IT Security for the Office of Justice Programs. In less than 18 months, she brought OJP from DOJ's worst security component to one of the best security programs, as assessed by the DOJ's Office of the Inspector General. She eliminated all previous audit findings with no new findings identified, consequently ending a material weakness that had persisted for several years. In December 2008, she received OJP's Assistant Attorney Generals Award in recognition for outstanding contribution to the mission and goals of OJP by creating and implementing a Security Program.

In February 2004, Mrs. Ridgeway joined the Federal Bureau of Investigation as an Information Assurance Program Analyst and served as the FBI's Federal Information Security Management Act (FISMA) Project Manager, Security Awareness Training Manager, Watch Commander for the FBI's Enterprise Security Operations Center and Security Division Audit Manager. As Watch Commander for the FBI Enterprise Security Operations Center, she was responsible for creating and implementing the entire enterprise Vulnerability Management Program and had oversight responsibility for enclave monitoring, intrusion detection, incident response, appliance placement and integration. Under Ms. Ridgeway's leadership, the FBI achieved improved FISMA reporting capabilities and workflows, which resulted in a higher FISMA grade.

Prior to joining the FBI, Mrs. Ridgeway served as the IT Specialist to the Chief Information Officer and Director of Information Resources Management of the Federal Deposit Insurance Corporation.

Mrs. Ridgeway currently serves as an Adjunct Professor at the University Of Maryland, University College in the fields of Cybersecurity, Information Systems Management and Information Assurance. Mrs. Ridgeway earned a Bachelor of Science degree in Information Systems Management and a Master of Science in Computer Systems Management with a specialty in Information Assurance. She holds two certifications, Project Management Professional (PMP) and Certified Information System Security Professional (CISSP).
Gil Vega
Associate CIO for Cybersecurity and Chief Information Security Officer
Department of Energy

As the Associate Chief Information Officer for Cybersecurity, Mr. Vega serves as the Department of Energy’s Chief Information Security Officer (CISO) charged with leading the agency’s enterprise cybersecurity program. Mr. Vega advises the Department’s CIO and senior agency officials in the implementation of cybersecurity and the Department’s Risk Management Approach. Mr. Vega provides executive leadership and guidance for joint agency and Administration cybersecurity initiatives including for the Comprehensive National Cybersecurity Initiative, safeguarding of the Defense Industrial Base, supporting the Department’s cybersecurity R&D programs and critical infrastructure protection. Mr. Vega is a career member of the Senior Executive Service.

Prior to joining the Department, Mr. Vega served as the CISO & IT Risk Executive for U.S. Immigration & Customs Enforcement (ICE), the largest investigative agency within the U.S Department of Homeland Security (DHS). While at ICE, Mr. Vega built a transformative, award-winning cybersecurity program to better enable the law enforcement mission of ICE and its partners. By embracing a true risk-based approach, ICE’s cybersecurity program enhanced the tactical and data sharing capabilities for DHS and its stakeholder community. These efforts culminated in unprecedented success in counter-terrorism information sharing with foreign governments and leading-edge security infrastructure modernization.

Mr. Vega is a Certified Information Systems Security Professional and has a Bachelor of Science in Computer Information Systems and graduated with a Master of Science degree in Information Assurance from Norwich University. Mr. Vega is also a graduate of the Federal Executive Institute in Charlottesville, Virginia and a veteran of the United States Army, where he participated in combat operations in Saudi Arabia/Kuwait/Iraq (Operations Desert Shield/Storm).