Conference: August 5 - 7, 2003
The Peter Kiewit Institute
Scott Conference Center
Omaha, NE USA
Jim Christy, Deputy Director/Director of Operations, Defense Cyber Crime Center
Supervisory Special Agent James V. Christy, II is the Deputy Director/Director of Operations, Defense Computer Forensics Lab, Defense Cyber Crime Center. Jim is an Air Force Office of Special Investigations, Computer Crime Investigator. As the Dir of Ops for the DCFL he has four sections with over 40 computer forensic examiners that support Major Crimes & Safety, Counterintelligence and Counterterrorism, as well as Intrusions and Information Assurance cases for the Department of Defense.
From May 98 – Sep 01 Jim was assigned to the Defense-wide Information Assurance Program, Assistant Secretary of Defense for Command, Control Communications and Intelligence (ASDC3I) as the Law Enforcement & Counterintelligence Coordinator and Infrastructure Protection Liaison.
SA Christy served as the DoD Representative to the President’s Infrastructure Protection Task Force (IPTF) from Sep 96 – May 98. The President signed Executive Order, 13010 on 15 Jul 96, creating IPTF to protect the Nation’s critical infrastructure from both physical and cyber attacks.
Prior to the IPTF, Jim was detailed to Senator Sam Nunn’s staff on the Senate, Permanent Subcommittee on Investigations as a Congressional Fellow, Jan - Aug 96. Senator Nunn specifically requested Jim’s assistance for the Subcommittee to prepare for hearings in May - Jul 1996, on the vulnerability and the threat to National Information Infrastructure from cyberspace.
Jim started his career over 30 years ago in the Air Force as a computer operator at Dover Air Force Base, Delaware, and then with the Air Force Data Services at the Pentagon. In 1975, Jim joined the civilian work force with the AFDSC as a computer operator and later cross-trained into programming. Jim was a programmer and analyst supporting the Office of the Secretary of Defense from 1979 to 1986.
Jim was selected by AFOSI in 1986 as the Assistant Director of Computer Crime Investigations. He was selected as the Director of Computer Crime Investigations, and Information Warfare, in 1989. Jim had the responsibility for management of a special cadre of 69 special agents and computer specialists. Under Jim’s leadership, AFOSI established the first computer forensic lab in DOD which is being benchmarked by many federal, state, and allied law enforcement agencies and is now the Executive Agency responsible for the DoD Computer Forensic Lab.
In 1986, Jim obtained some notoriety as the original case agent in the “Hanover Hacker” case. This case involved a group of German hackers who electronically penetrated DOD computer systems all over the world and sold the information to the Soviet KGB. The case was detailed in the best seller, “The Cuckoo’s Egg”, by Dr. Cliff Stoll. The Public Broadcast system has also produced a docu-drama on this case.
In a murder investigation in 1991, the suspect cut two floppy diskettes into 23 pieces with pinking shears. No agency was able to recover any of the data until Jim and his deputy developed a technique for less then $150. Jim was able to recover 85%-95% of the data from each piece of diskette. The suspect when confronted with the evidence, confessed, pled guilty and was sentenced to life in prison. This case was profiled on the “New Detectives” series on the Discovery Channel, 2 Jan 99.
Some notable firsts in Computer Crime Investigations:
Jim also teaches two graduate courses at George Washington University, Elliott School of International Affairs`, “The Cyber Threat to American National Security” and “National Cyber Policy”.
Jim manages Little League Baseball teams for13-15 year olds for the last 4 years. Jim is retired as a college hockey referee. He has worked as a professional referee at the minor league level and was the USA Hockey Supervisor of Officials for the Mid-Atlantic States. Additionally he worked for the National Hockey League as an Off-ice Official for the Washington Capitals for eight years and officiated on-ice their pre-season, exhibition and training camp games.
Georgia Killcrece, Technical Staff Software Engineering Institute, Carnegie Mellon University
Georgia Killcrece is a Member of the Technical Staff and joined the CERT Coordination Center in 1989. The CERT/CC, established in 1988, is part of the Networked Systems Survivability Program based at the Software Engineering Institute (SEI) at Carnegie Mellon University in Pittsburgh, Pennsylvania.
Killcrece manages the CERT CSIRT Development Team and takes an active role in promoting the development of computer security incident response teams worldwide. She has worked directly with a number of government, industry, and academic enterprises to facilitate the development of their incident response capabilities.
Killcrece participates in the development and delivery of public and onsite training courses focused on CSIRT development. As part of broader outreach effort in the CSIRT community, she and her team also completed a program to license the CSIRT training material to transition partners. In July 2003, the CERT/CC launched a new certification program for incident handlers.
From 1994 to 1999 Killcrece was a technical coordinator and incident response coordinator in the CERT/CC. In those roles, she gained first-hand knowledge of the processes involved in forming, operating, and managing incident response teams, including the dynamics of working in a fast-paced team environment.
Killcrece is co-author or contributor to a number of CSIRT documents and reports including the recently released Second Edition of the Handbook for Computer Security Incident Response Teams. Other publications to be released in the second half of 2003 include: Organizational Models for CSIRTs and a State of the Practice of Computer Security Incident Response Teams. CSIRT documents are available on the CERT web site at http://www.cert.org/csirts.
Killcrese can be reached directly by email at email@example.com or via the CSIRT training alias at CSIRT training alias at firstname.lastname@example.org.
Ray Semko, Diceman of the Interagency OPSEC Support Staff
Known to many in the OPSEC and defense communities as the "DICE Man", joined the IOSS on January 18, 2000.
Ray brings more than 30 years of military and government security and counterespionage experience, but he is most closely associated with his Defensive Information to Counter Espionage (DICE) briefings. He has been presenting these around the world since he initially created them for Defense Intelligence Agency (DIA) employees in 1988.
Ray will be traveling for the IOSS to raise awareness of the threats to U.S. security and the value of OPSEC in neutralizing these threats.
Ray, a native of Pittsburgh, PA, joined the U.S. Army at 18 and served in Vietnam. He retired from the Army after 21 years-17 spent as a counterintelligence agent.
He joined the DIA in 1988 and was the first DIA representative to the IOSS in 1989. He was also a regular speaker at the national OPSEC conferences.
In addition to his counterintelligence duties, Ray has performed OPSEC assessments for the Army, Pentagon and Joint Chiefs of Staff, among others.
Prior to joining the IOSS team, Ray worked as a Counterintelligence Officer for the Department of Energy (DOE) since 1992.
At DOE, his DICE briefings were so highly requested that had his schedule permitted, he could have given one every day of the year. Ray revamps the immensely popular DICE briefing yearly to keep it fresh-and the threat information viable.
When not briefing, Ray spends time with his family in rural PA. Ray has officiated almost every sport and was once the coach of the Italian National Football team. Ray also works as a deejay in his few moments of spare time.