Daniel J. Ryan is a lawyer and businessman with over thirty years' experience in the public and private sectors and in academia.
Mr. Ryan served as Executive Assistant to the Director of Central Intelligence with primary responsibility as Executive Secretary and Staff Director for the Joint DoD-DCI Security Commission. Earlier, he was Director of Information Systems Security for the Office of the Secretary of Defense serving as the principal technical advisor to the Secretary of Defense, the ASD(C3I) and the DASD(CI & SCM) for all aspects of information security. He developed information security policy for the Department of Defense and managed the allocation of over US$1.8 billion to create, operate and maintain secure computers, systems and networks. His specific areas of responsibility spanned information systems security (INFOSEC), including classification management, communications security (COMSEC) and cryptology, computer security (COMPUSEC) and transmission security (TRANSEC), as well as TEMPEST, technical security countermeasures (TSCM), operational security (OPSEC), port security, overflight security and counterimagery. He began his career at the National Security Agency.
Mr. Ryan served as Corporate Vice President of Science Applications International Corporation (SAIC) with responsibility for strategic planning, development of the Company's business in high-quality (SEI-levels 3 and 4) software, systems engineering and integration, on-line services, information technology outsourcing, and for horizontally integrating the Company's information security programs for Government customers and commercial clients who operate worldwide and must create, store, process and communicate sensitive information and engage in electronic commerce.
He opened and served as SAIC's first Director of the Center for Information Protection , managing the Corporation's contracts on behalf of commercial clients, assessing the security capabilities and limitations of their local and wide area systems and networks, providing recommendations for improvements to system and network architectures to increase security, enhancing protection through the application of a balanced mix of security disciplines and countermeasures, detecting intrusions from outside or abuses by those with authorized access to the systems and networks, and reacting effectively to attacks to prevent or limit damage. His clients included banks, insurance companies, entertainment companies and organizations in the health care community.
On behalf of the United States Postal Service, he chaired the Security Policy Expert Team developing information security policies for the Service's planned participation in electronic commerce.
While at SAIC, he helped win and served as the Program Manager for the Government-Wide Information Systems Security Program with contracts valued up to US$ 1.1 billion. In this role he directed, managed and coordinated the efforts of three Sectors of SAIC and twenty subcontractors helping Government customers establish, standardize and implement common information security programs; improve security management to minimize costs, eliminate redundancies, and allocate resources efficiently; foster interoperability; develop security architectures and standards for certification and accreditation of systems and networks; create a viable multilevel secure infrastructure; ensure timely dissemination of threat and vulnerability information; engineer secure information systems and networks; perform risk management assessments and analyze consequent security requirements; support the creation and operation of teams to respond to security incidents; and define and implement training, awareness and professionalization programs for Government managers and security officers.
Mr. Ryan was a Principal at Booz, Allen & Hamilton where he served as a consultant in the areas of strategic and program planning, system operations and coordination, data processing and telecommunications. At Bolt Beranek & Newman, he managed implementation, operation and maintenance of secure wide-area networks. He represented the Systems Development Division of TRW in Washington, D.C., and he was Director of Electronic Warfare Advanced Programs at Litton's AMECOM Division. He headed a systems engineering section at Hughes Aircraft Company where he was responsible for the design, development and implementation of data processing systems.
Mr. Ryan has served as a curriculum advisor on information security to George Washington University, James Madison University, the University of Maryland's Baltimore Campus (UMBC), and Northern Virginia Community College. He is an Adjunct Professor for George Washington University, Eastern Michigan University and James Madison University, where he teaches cyberlaw and information security management. For Utica College of Syracuse University he teaches in the Economic Crime Management Graduate Program. Working with three universities, he created and served as the Director of the Center for Information Security Education while at SAIC. The Center, in partnership with the universities, sponsors Master's Degree programs in information security, and offers a variety of non-degree seminars and courses for executives and professionals in topics concerning the protection of information assets and systems. Through the Center, graduate students are able to serve internships at SAIC and visiting professors are able to work with SAIC professionals on real-world information security projects. The Center also supports research and development of products and new technologies for delivering information security education, including distance learning, just-in-time teaching, and interactive computer-based courses and programs.
Mr. Ryan is a Member of the Board of Directors of A Classic Sailing Adventure, a Maryland corporation which specializes in maritime leases and products. He also serves as a Trustee of the James E. Morgan Cancer research trust which sponsors medical research into the causes and potential cures for cancer. He is a Member of the Lawyer's Roundtable on Information Security investigating the legal and ethical issues associated with the protection of on-line privacy, data integrity and system and network availability. And he serves as a member of the Executive Committee of the National Colloquium for Information Systems Security Education.
Mr. Ryan received his Bachelor of Science degree in Mathematics from Tulane University in New Orleans, Louisiana, a Master of Arts degree in Mathematics from the University of Maryland, a Master of Business Administration degree from California State University and the degree of Juris Doctor from the University of Maryland. He is a member of the Bar in the State of Maryland, the Bar in the District of Columbia, and has been admitted to practice in the United States District Court, the United States Tax Court, and the Supreme Court of the United States. He is Certified as a Professional in the fields of Mathematics, Data Systems Analysis and Cryptologic Mathematics by the United States Government.
Defending Your Digital Assets: Against Hackers, Crackers, Spies and Thieves