CSO of the yearfont size="2" face="Arial"With the help of a mere 29 employees, Dan Lohrmann is responsible for safeguarding 19 state agencies, which equates to some 55,000 employees and their desktops, as well as the public at large. Just like quality, security is job number one. In fact, for Lohrmann, security has become a part of him. br / br / “I almost think that security is in my blood,” says Lohrmann, chief information security officer with the state of Michigan. br / br / That might be largely due to his professional past. Some 13 and a half years in the intelligence community, working much of that time with the National Security Agency (NSA NSA abbr. National Security Agency Noun 1. NSA - the United States cryptologic organization that coordinates and directs highly specialized activities to protect United States information systems and to produce foreign ), can do that to a person. Every endeavor began with security and quality in mind, says Lohrmann, with technology coming after. “It became second nature to everything we did,” he adds. br / br / Ask anyone working for the state of Michigan or, for that matter, the federal government, and they will note the unwavering passion and dedication Lohrmann shows for his work.br / br / “I gather he wakes up every morning looking forward to taking on information security challenges,” says Greg Garcia
In September 2006 Greg Garcia was appointed assistant secretary for cyber-security and telecommunications under the United States Department of Homeland , assistant secretary for Cyber Security and Communications for the U.S. Department of Homeland Security Noun 1. Department of Homeland Security - the federal department that administers all matters relating to homeland security Homeland Security executive department - a federal department in the executive branch of the government of the United States . br / br / And, he adds, Lohrmann, who is the newest recipient of SC Magazine's CSO (Chief Security Officer) The person in charge of all staff members who are responsible for promulgating, enforcing and administering security policies for all systems within an enterprise or division. of the Year Award, is simply not fazed faze tr.v. fazed, faz·ing, faz·es To disrupt the composure of; disconcert. See Synonyms at embarrass. [Middle English fesen, to drive away, frighten by the difficulties of those challenges. He always brings to every task enthusiasm, energy and tenacity, “and he brings lots of ideas,” Garcia says. br / br / That's why Lohrmann's win of this year's CSO of the Year title is of little surprise to many. “We're very fortunate to have someone of Dan's caliber in state government,” says his boss Ken Theis, chief information officer for the state of Michigan and director of the Michigan Department of Information Technology.br / br / To Rose Wilson, chief deputy director of the Michigan Department of Management and Budget, hiring Dan all those years ago was a no-brainer because of his always positive, never-give-up attitude.br / br / “Dan is driven. As he approaches every task he looks at how he can improve security. That innovative attitude, that spirit that we're always taken care of, that we're secure, is critical,” she says. br / br / Due in great part to Lohrmann's drive and skill, there have been various IT security triumphs made this year in Michigan, but one of the biggest is compliance with Payment Card Industry standards, says Theis. And this compliance, he adds, is enterprise-wide – no small feat when trying to coordinate so many departments with different application, network and server teams, three data centers, and much, much more. br / br / “It is his leadership, tenacity and the guidance from him and his group that made this possible,” says Theis.br / br / Overall, he adds, Lohrmann readily understands what the state needs and has established a five-year roadmap of how it should get there. br / br / “Dan's really been our strategic leader. Because of his professionalism, knowledge and skill sets, plus his experience, he brings a great mix,” says Theis. br / br / To get the protection of customers' private data and the state's critical information right, it always takes a balance between operations and security, he explains further. Dan, fully comprehending this, works with everyone proactively before big business decisions are made to ensure that data and critical assets are safeguarded. br / br / According to according to prep. 1. As stated or indicated by; on the authority of: according to historians. 2. In keeping with: according to instructions. 3. Lohrmann: “You've got to partner to be successful. You've got to work with other states. You've got to work with the federal government.”br / br / And although sometimes security can be viewed as an audit function or a downright impediment to getting business done by some folks within a company or agency, this is not so in the state of Michigan. That passion that Dan brings to work everyday not only ripples through his own division, but also into other departments. He takes “a true collaborative approach” that makes the state secure and “makes my job easier,” adds Theis. br / br / “His job is to provide secure solutions to meet business requirements,” he says. “What makes Dan different is that he is a ‘yes' guy.” br / br / strongIllena Armstrong: /strongHow long have you been in information security? Can you highlight the positions and organizations that helped you prepare for your stint for the state of Michigan? What about pertinent training and certifications?br / br / strongDan Lohrmann: /strongAfter graduating from Valparaiso University Valparaiso University, known colloquially as Valpo, is a private university located in the city of Valparaiso in the U.S. state of Indiana. Founded in 1859, it consists of five undergraduate colleges, a graduate school, and a law school. with a Bachelor of Science Noun 1. Bachelor of Science - a bachelor's degree in science BS, SB bachelor's degree, baccalaureate - an academic degree conferred on someone who has successfully completed undergraduate studies in Computer Science, I started with the National Security Agency (NSA) in 1985 as a computer systems analyst. I worked in their world-wide networking group on a variety of projects – from testing protocols and vendor product capabilities to installing networks and briefing customers on products and plans. NSA was a great place to start a career since their culture was all about security and their training was outstanding on everything from encryption to project management. Every network we installed was built with security as job one. br / br / While at NSA, I finished my Masters Degree in Computer Science at Johns Hopkin, with a concentration in networking. I also was certified as computer systems analyst by NSA, which was a rigorous process and resulted only after passing an exam. br / br / I went to Harrogate, England with Loral Aerospace (which was later bought by Lockheed Martin For the former company, see . Lockheed Martin (NYSE: LMT) is a leading multinational aerospace manufacturer and advanced technology company formed in 1995 by the merger of Lockheed Corporation with Martin Marietta. ) as a senior network engineer on a U.S./U.K. military base. It was there that I worked extensively with local area networks (LANs), from Ethernet to fiber distributed data interface See FDDI. Fiber Distributed Data Interface - (FDDI) A 100 Mbit/s ANSI standard local area network architecture, defined in X3T9.5. The underlying medium is optical fibre (though it can be copper cable, in which case it may be called CDDI) and the topology is a (FDDI (Fiber Distributed Data Interface) Often pronounced "fiddy," it was a LAN and MAN access method that had its heyday in the mid-1990s. FDDI was an ANSI standard token passing network that transmitted 100 Mbps over optical fiber up to 10 kilometers. ) – mostly Sun, HP and Cisco equipment. We always had the latest training and hottest new products. I designed networks and built monitoring systems, and learned about routing protocols, the ins and outs ins and outs pl.n. 1. The intricate details of a situation, decision, or process. 2. The windings of a road or path. of internet protocol See Internet and TCP/IP. (networking) Internet Protocol - (IP) The network layer for the TCP/IP protocol suite widely used on Ethernet networks, defined in STD 5, RFC 791. IP is a connectionless, best-effort packet switching protocol. (IP) addressing, and many hands-on technical topics. I still use this training today in many ways as I interact with technical staff.br / br / I joined ManTech International (which won the base IT contract) in 1993 as a technical director in charge of a newly formed Network Management Group (NMG NmG No More Gas (Myers Motors electric vehicle) NMG Navy Metrication Group NMG Nuera Media Gateway NMG Network Media Gateway NMG Network Management Gateway NMG Network Measurement Group ). It was responsible for integrating numerous new systems into complex European networks. During this period ManTech won many IT contract bids all over the world and I learned an extensive amount about IT service contracts from the vendors' perspective. br / br / I joined Michigan state government in July 1997 as the director of information technology for the Department of Management and Budget (DMB (Digital Multimedia Broadcasting) See mobile TV. ). Our main focus was on Y2K See Y2K problem and Y2K compliant. Y2K - Year 2000 remediation and this period taught me quite a bit about business continuity and disaster recovery (DR) planning. I also served as the CIO CIO: see American Federation of Labor and Congress of Industrial Organizations. (Chief Information Officer) The executive officer in charge of information processing in an organization. for the department, and we started building new customer-focused websites and e-government.br / br / After Y2K, I accepted a new role in our governor's office as state-wide senior technology executive – functioning as CTO (Chief Technical Officer) The executive responsible for the technical direction of an organization. See CIO and salary survey. – for the e-Michigan project. We built a new, award-winning portal which consolidated dozens of websites into one portal with a common look/feel and content management. This Michigan.gov portal continues to lead the nation with new e-government services for citizens (G2C G2C Government to Citizen G2C Government to Consumer ), businesses (G2B G2B Government to Business G2B Got to Bounce ), and other governments (G2G G2G Got To Go G2G Government to Government G2G Get Together G2G Good to Go G2G Good to Great (Jim Collins' theory about successful companies) G2G Girl to Girl G2G Green to Gold (US Army commissioning program) ). Even in this role, security was always a part of my role and focus. br / br / I became Michigan's first chief information security officer (CISO See CSO. ) and director of the Office of Enterprise Security in May 2002. I helped create the position description at the time within the newly formed Department of Information Technology (MDIT MDIT Michigan Department of Information Technology MDIT Medical Digital Imaging Team (University of North Texas) ), which centralized all IT functions and authority in state government into one department. br / br / strongQ: /strongAny mentors who really helped you over the years to get to this point of understanding about information security?br / br / strongA: /strongI've been blessed with many great mentors over the years. Pete Blodgett at ManTech in England taught me so much about contracting and managing expectations of customers and staff. Rose Wilson, current chief deputy director of Michigan DMB, was my first boss in state government. She was awesome at showing me the ropes on how to get things done in a world full of new rules and a culture that was very different from the intelligence community. Teri Takai, CIO of California and former CIO of Michigan, showed me the incredible importance of building trusted relationships. br / br / strongQ:/strong What processes and solutions/vendors helped you reach your goals?br / br / strongA: /strongSymantec has partnered with us on numerous security and system backup projects, including endpoint security and policy compliance. br / br / We also work closely with ATamp;T on connectivity to our counties, Cisco on architecture, and IBM (International Business Machines Corporation, Armonk, NY, www.ibm.com) The world's largest computer company. IBM's product lines include the S/390 mainframes (zSeries), AS/400 midrange business systems (iSeries), RS/6000 workstations and servers (pSeries), Intel-based servers (xSeries) , which hosts our Michigan portal. We've installed new intrusion prevention See IPS and IDS. technology, as well as re-evaluated all inbound and outbound traffic Traffic originating in the continental United States destined for overseas or overseas traffic moving in a general direction away from the continental United States. . br / br / In partnership with the MS-ISAC MS-ISAC Multi-State Information Sharing and Analysis Center and the federal Smart Buy program Office of Management and Budget The Office of Management and Budget (OMB), formerly the Bureau of the Budget, is an agency of the federal government that evaluates, formulates, and coordinates management procedures and program objectives within and among departments and agencies of the Executive Branch. (OMB OMB abbr. Office of Management and Budget Noun 1. OMB - the executive agency that advises the President on the federal budget Office of Management and Budget ), we purchased Safeboot (now owned by McAfee) to encrypt our laptops. The discount pricing we were able to get by working with other states and the federal government was outstanding and made this program economical for our customers. br / br / strongQ:/strong Who in your organization helped with these achievements? br / br / strongA: /strongThis has been a total team effort. All parts of Michigan Department of Information Technology worked together – led by our Director and State CIO Ken Theis, the Director of Infrastructure Pat Hale, and the Director of Agency Services Lynn Draschil.br / br / We also worked closely with our Network amp; Telecommunications Group, led by Director Jack Harris, on network changes; our Office Automation (OA) Group, Director Mike Binkley, regarding desktop and laptop changes; our field technicians and systems administrators on system configurations; and our agency information officers to get the word out and communicate changes and hear their needs.br / br / Most of all, we've partnered with business customers. We have a security sub-committee, which is composed of senior executives from different agencies, who serve as our advisory board on security matters. We work with them on HR issues, what to block as far as spam and websites, and a whole host of other issues. Leon Hank, deputy director of the Department of Transportation, has been a big advocate of security on the business side and serves as the co-chair of the Security Sub-Committee of MiTec. br / br / We also brief each agency director on their risk issues, as well as the governor's cabinet and legislature on security vulnerabilities and programs. For example, we've established new training for all state employees on potential breach response. br / br / strongQ: /strongDo you get enough support from your colleagues and bosses?br / br / strongA: /strongAbsolutely. I've found that it starts by having our state CIO and the governor on board in naming security a priority, and everyone else follows their lead. I've had two great leaders in this area – Teri Takai and Ken Theis. br / br / strongQ: /strongWhat steps do you find integral in getting and maintaining such support?br / br / strongA: /strongBeing a part of the CIO's executive team, strategic planning Strategic planning is an organization's process of defining its strategy, or direction, and making decisions on allocating its resources to pursue this strategy, including its capital and people. sessions and regular staff meetings has been huge. We meet weekly and those relationships are a must. I also attend the MiTech meetings and chair the Security Sub-Committee with Customers. br / br / On a more personal level, I try to do lunch or breakfast with key stakeholders Stakeholders All parties that have an interest, financial or otherwise, in a firm-stockholders, creditors, bondholders, employees, customers, management, the community, and the government. . Five years back, I would wait for problems to develop before contacting key stakeholders, but I learned that's too late. You need good relationships before the going gets tough. When we get together, security is not the main topic. We talk about our families, business issues, personnel (comings and goings) – whatever's hot at the moment. br / br / Another benefit has been that I've been through a lot over the past 11 years with many of our Michigan government leaders in IT: Y2K as a peer CIO, e-Michigan and the Michigan.gov portal launch, a change of governors from different political parties, a new consolidated organization, etc.br / br / CSOs and CISOs that know the company/government culture and the people have a huge advantage – if they have a good reputation of getting things done, working on the hard projects and showing results. People want to work with those they trust and who deliver.br / br / strongQ: /strongWhen you're undertaking various projects, do you have to work with managers of various business units?br / br / strongA: /strongYes, but I also have excellent security liaisons who work at detailed levels on aspects like NIST (National Institute of Standards & Technology, Washington, DC, www.nist.gov) The standards-defining agency of the U.S. government, formerly the National Bureau of Standards. It is one of three agencies that fall under the Technology Administration (www.technology. 800-53 compliance with business areas. [Editor's note Editor's Note (foaled in 1993 in Kentucky) is an American thoroughbred Stallion racehorse. He was sired by 1992 U.S. Champion 2 YO Colt Forty Niner, who in turn was a son of Champion sire Mr. Prospector and out of the mare, Beware Of The Cat. Trained by D. : National Institute of Standards and Technology National Institute of Standards and Technology, governmental agency within the U.S. Dept. of Commerce with the mission of "working with industry to develop and apply technology, measurements, and standards" in the national interest. 800-53 is part of NIST's 800 series of ‘Special Publications.' These series of documents were established in 1990 to focus and provide guidance specifically on information security. 800-53 offers up recommendations on security controls for federal IT systems.] I typically get involved at key milestones, contract initiation or choosing the vendors, or if there is a problem or a new issue that arises. br / br / strongQ: /strongWho do you report to? Is there an ideal hierarchical structure See hierarchical. when it comes to ensuring that IT security is being addressed adequately in a corporate environment, do you think (for example, answering to the CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. as opposed to the CIO)?br / br / strongA:/strong I report to the state CIO and director of IT. I think this is best, since I am seen as an IT insider and not an external auditor The examples and perspective in this article or section may not represent a worldwide view of the subject. Please [ improve this article] or discuss the issue on the talk page. . We are here to help, get compliance, solve problems, do good things – not issue bad reports on what people should be doing. br / br / I've spoken to many colleagues on this topic and we have a big advantage in Michigan since IT is totally centralized. In a very decentralized de·cen·tral·ize v. de·cen·tral·ized, de·cen·tral·iz·ing, de·cen·tral·iz·es v.tr. 1. To distribute the administrative functions or powers of (a central authority) among several local authorities. environment, reporting to the CEO or CFO See Chief Financial Officer. might make more sense for a variety of reasons – but don't be seen as the one who people hide information from.br / strongbr / Q: /strongWhat about budgetary needs? We hear a lot about return on security investment – how do you show your superiors that security enables business/government endeavors? And how do you get the support, resources and funding you require to do your job?br / strongbr / A: /strongWe had a major ROSI ROSI Return on Security Investment ROSI Repository of Student Information ROSI Rollergirls of Southern Indiana (Evansville, IN) ROSI Raytheon Optical Systems Incorporated ROSI Romanian Open Source and Free Software Initiative [return on security investment] project in 2004 and showed the value in security investment in many ways. So while IT spending has gone down about 20 percent in the past five years through a variety of efficiency and consolidation savings, our security budget was voted on and raised from roughly one percent to two percent of IT spend by our MiTec Council due to demonstrated benefits and needs.br / br / We also have received over $6 million in Homeland Security Noun 1. Homeland Security - the federal department that administers all matters relating to homeland security Department of Homeland Security executive department - a federal department in the executive branch of the government of the United States grants for cybersecurity efforts. From new generators at data centers to filtering software, we have been successful at explaining the role of cybersecurity to the emergency management community in state government. And this is a very influential group – especially when the lights go out. br / br / strongQ: /strongIn regard to compliance demands, what are your priorities and how do you adhere to adhere to verb 1. follow, keep, maintain, respect, observe, be true, fulfil, obey, heed, keep to, abide by, be loyal, mind, be constant, be faithful 2. such regulations? br / br / strongA: /strongWe must comply with Payment Card Industry (PCI (1) (Payment Card Industry) See PCI DSS. (2) (Peripheral Component Interconnect) The most widely used I/O bus (peripheral bus). ) standards, and we are now being required to go through what the private sector has known as emSOX/em [emSarbanes-Oxley Act of 2002/em]. We have had dozens of laws and rules to comply with since I started this job, from emHIPAA/em [emHealth Insurance Portability and Accountability Act There are a number of piece of legislation known as the Accountability Act:
1. a widespread epidemic of a disease. 2. widely epidemic. pan·dem·ic adj. Epidemic over a wide geographic area. n. influenza. br / br / This has been a major focus, but it has fit into an overall vulnerability and risk management framework. br / br / We also have been required to deal with many new laws New Laws: see Las Casas, Bartolomé de. that pop up, such as breach notification laws.br / br / strongQ:/strong If you have a number of mandates to which you must answer, how do you avoid duplicating efforts to address these?br / strongbr / A:/strong This has been a big benefit of MDIT [the Michigan Department of Information Technology]. Being centralized, we see those patterns much earlier, and we addresses trends that come up cross-agency. We even see things coming down from the feds or Homeland Security mandates, patterns with local partners, etc. We have several cross-agency centers of excellence to deal with issues in smarter ways.br / br / strongQ:/strong What is on your agenda for the coming year?br / br / strongA:/strong This will be a year finishing about three or four major security upgrades for us. There's more work implementing encryption in various situations, and we're rolling out a new identity management project. We're re-bidding our portal (a href="http://michigan.gov/"Michigan.gov/a) hosting contract, as well as our content management system, and we want to improve our endpoint security policy enforcement. br / br / We're also doing much more outreach to local and federal government partners. We share many networks, and their security affects us in many ways and we affect them.br / br / strongQ:/strong What are some of the major challenges you believe you and your counterparts at other companies/government entities face in the next year?br / br / strongA: /strongI've been seeing some underlying problems in employee behaviors for the past few years that really trouble me. Some of our best and brightest, graduate-degree trained staff – those who know better – are often the worst offenders when it come to violating acceptable use policies and using the internet and technology. This is a deeper look at the insider threat, including employees and contractors, who are running businesses, wasting resources, taking risks that put the enterprise at risk. br / br / This topic has seldom been discussed by security professionals over the years since it gets at moral aspects of our jobs and making judgments about right and wrong. I examine cyber ethics and good behaviors not from a top-down, policy-compliance approach, but from a bottom-up, personal conviction, employee-driven, Christian-look at how cyberspace impacts our personal and work lives. br / br / strongQ:/strong What other specific projects are on tap for this year and maybe starting in the next? Any forward-thinking plans that you'd like to highlight in the way of security implementations/other projects? br / br / strongA:/strong I am very excited about my first book which is coming out this fall from Brazos Press. The book is entitled: Virtual Integrity: Faithfully Navigating the Brave New Web. br / br / The book addresses an underlying importance of cyber ethics for grown-ups, both at the office and at home. This topic is written in non-technical language for end-users. I cover many e-Temptations, how websites “tempt the click,” and new ways that end-users can start to “surf your values” – connect their offline values with their online world.br / br / I believe it is especially relevant for security professionals because it addresses questions prompted by recent surveys, showing that many people know what to do, but they still engage in the risky or dangerous things with information anyway. br / br / I coin new terms See suggestions for new terms. like “integrity theft,” which I suggest is worse than identity theft. People are losing their families, careers and their reputations by engaging in activities that can be much more harmful than they realize – until it is too late. While identity theft is tragic, it is much easier to repair your credit history than your reputation. br / br / The focus is on aspects of people, processes and technology online and why filters are no longer enough to protect us at home or work. I think trust, reputation and cyber ethics are key to security and privacy in the future. We need to think about the majority of people in our companies and not just the minority of bad guys trying to break in. br / br / I address security, privacy, moral and ethical aspects of topics like Web 2.0: YouTube, FaceBook, avatars and Second Life. The book offers recommendations to Google and Microsoft and a whole host of related stories. The appendix offers the outline for a new national strategy on cyber ethics, which addresses more than kids. br / br / strongQ: /strongAny advice on how to tackle these? br / br / strongA: /strongI have Seven Habits for Online Integrity that center on better integrating your faith and beliefs into pragmatic surfing habits. br / br / We need to make a more compelling argument – a moral argument (no matter what religion you believe in) to protect yourself, your business and the internet from emerging threats. br / br / strongQ:/strong What's your best advice to others when it comes to building a strong security program?br / br / strongA:/strong Information security is a team effort. Build a good team – we have a great one – that works well together and supports each other. Surround yourself with smart people who can help. This includes those who are under your immediate organizational control, as well as partners throughout your business, the IT organization, vendors and those in other states, governments or companies that can fill an important void. Think outside your individual box as you build new partnerships. br / br / I think of myself as a football coach – which I was – who needs to get the right players on the field at the right moments. Besides the skill sets, the players need to be properly equipped to do their job – which includes tools, training, trust and respect, and a good game plan.br / br / br / br / [sidebars]br / br / strongDan Lohrmann:/strongbr / br / Major achievementsbr / br / “Michigan has made tremendous progress over the past year in regards to our security program,” says Dan Lohrmann. “We've completed over 15 major security upgrades, received PCI compliance, obtained significant Department of Homeland Security (DHS DHS Department of Homeland Security (USA) DHS Department of Human Services DHS Department of Health Services DHS Demographic and Health Surveys DHS Dirhams (Morocco national currency) ) cybersecurity grants, participated in Cyberstorm I in 2006 and CyberStorm II in 2008, and centralized numerous data centers and completed [various other] business projects.”br / br / Additional milestones include:br / br / Within Michigan government, Lohrmann holds various positions, including: co-chair of the Security Sub-Committee of Michigan Technology Council (MiTech), chair of the Cyber Sub-Committee on Critical Infrastructure Protection Department of Defense (DOD) program to identify and protect assets critical to the Defense Transportation System. Loss of a critical asset would result in failure to support the mission of a combatant commander. , member of the Homeland Protection Coordinating Committee, and member of the Pandemic Influenza Coordinating Committee (and legal sub-committee);br / br / Lohrmann is a member of the Information Technology Government Coordinating Council (IT-GCC) led by the Department of Homeland Security (DHS). For this, he represents NASCIO NASCIO National Association of State Chief Information Officers , the National Association of State Chief Information Officers, which speaks for 50 state CIOs. In this capacity, he helped to write the National Infrastructure Protection Plan (NIPP NIPP National Infrastructure Protection Plan NIPP Nobody in Particular Presents (Denver music promoter) NIPP National Institute for Plant Protection (Vietnam) NIPP National Institute of Public Policy ), IT Sector Plan. Also, he participated in several work groups to implement portions of the NIPP IT Sector Plan. br / br / Related to this, he's been a leader on NASCIO's Security and Privacy Committee since 2002. In this role, he's created numerous white papers, best practices, videos, and other deliverables. br / br / He has also been a member of the Multi-State Information Sharing See data conferencing. and Analysis Center's (MS-ISAC) Executive Board since 2005. He co-lead a work group on outreach to local governments and produced a “how-to” guide for states to establish state-internal ISACs. Michigan launched its state/local ISAC ISAC Illinois Student Assistance Commission ISAC Istituto di Scienze dell'Atmosfera e del Clima (Italy) ISAC International Society for Analytical Cytology ISAC Iowa State Association of Counties ISAC Information Sharing Analysis Center in November 2006. br / br / From 2006 up to now, Lohrmann has been a Distinguished Guest Lecturer for Norwich University's Master's Degree master's degree n. An academic degree conferred by a college or university upon those who complete at least one year of prescribed study beyond the bachelor's degree. Noun 1. Program in Information Assurance (IA);br / br / He served as president of Michigan InfraGard, from January 2006 through December 2007, and currently serves as the Chairman of the Executive Board;br / br / As far as writing for the industry, Lohrmann has had many articles published in SC Magazine, a blog for CSO Magazine, and contributes a regular column to Public CIO Magazine;br / br / Speaking engagements have included conferences nationwide and throughout Michigan;br / br / In addition to receiving the CSO of the Year Award from SC Magazine in April, Lohrmann has also received several NASCIO Awards, Symantec Visionary Award, Security Magazine Top 25 Most Influential in Security Industry, and the CSO Magazine Compass award. br / br / /font 
|
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion