Director of Information Security (CISO) @ SoftBank Investment Advisers
Official Member & Contributor @ Forbes Technology Council
Advisory Board Member, Contributor @ Peerlyst
Navy Network/System Certifier Certification @
The United States Naval Postgraduate School
Gary Hayslip is Deputy Director, Chief Information Security Officer (CISO) for the City of San Diego, California. As CISO he is responsible for developing and executing citywide cyber security strategy and leading teams focused on Enterprise Risk Management, Security Engineering, Application Security, Cyber Security Operations, & Cyber Security Resiliency. His mission includes creating a “risk aware” culture
Gary Hayslip is Deputy Director, Chief Information Security Officer (CISO) for the City of San Diego, California. As CISO he is responsible for developing and executing citywide cyber security strategy and leading teams focused on Enterprise Risk Management, Security Engineering, Application Security, Cyber Security Operations, & Cyber Security Resiliency. His mission includes creating a “risk aware” culture that places high value on securing city information resources and protecting personal information entrusted to the City of San Diego.
With his in-depth industry expertise as a cyber-security architect, Mr. Hayslip has been honored numerous times for his work in mentoring new CISO’s and creating innovative unique cyber-security solutions. In August 2015, Mr. Hayslip was honored by Tech Exec Networks, Inc. awarded their Information Security Executive - ISE® West Award for his work in the design and implementation of the City of San Diego’s “Continuous Monitoring & Cyber Operations” project. This project was honored for taking an innovative approach to partnering local cyber-security start-up companies with leading cyber-security technologies.
Prior to joining the City of San Diego, Mr. Hayslip was also the Command Information Security Officer of multiple U.S. Navy commands where he has led operational teams responsible for security engineering, operations, security compliance and policy, and cyber-security threat management. Mr. Hayslip maintains an external presence on corporate advisory boards of multiple non-profits and startup cyber-security companies. Mr. Hayslip has over 25 years of experience in information security and risk management.
Specialties: Secret Clearance (active), IT Strategy & Governance, Compliance, Risk Management, Identity Management, Data Loss Prevention, Threats Assessment, Vulnerability Management, Enterprise IT Operations, Regulatory Management, CISO, Chief Information Security Officer, Chief Security Officer, Cybersecurity
Deputy Director, Chief Information Security Officer (CISO) @ As the Chief Information Security Officer (CISO) I report to the City’s Director of Information Technology (CIO), I am directly responsible for the development and implementation of all information security strategies; the creation and enforcement of the City’s information security policies, standards, procedures, and internal controls. In this position I also manage the definition and coordination of the City’s enterprise security awareness program, business continuity and disaster recovery plans; overseeing, evaluating, and supporting all information compliance issues, which may include managing and monitoring security standards or internal controls compliance. As the CISO I lead teams in the conducting of internal investigations, managing security and risk assessments, and assist employees in complying with applicable information security regulations, policies, and procedures which may include providing guidance and autonomous evaluation of the City’s information security compliance to management. In this position I oversee the work of professional Information Security staff who conduct electronic discovery (eDiscovery) investigations related to California Public Records Act (CPRA) requests, litigation or internal investigations, and who administer various security systems and oversee security compliance of IT service providers. As CISO I also oversee and manage external information security contractual services provided to the City.
As CISO I work with local, regional, state, and federal agencies on a regular basis, including the Law Enforcement Coordination Center (LECC, aka Fusion Center), Regional Terrorism Threat Assessment Center (RTTAC), Computer and Technology Crime High-Tech (CATCH) Response Team, California Office of Information Security, San Diego office of the FBI, and representatives from the federal Department of Homeland Security (DHS) on issues related to cybersecurity and protection of local government critical infrastructure. From May 2013 to Present (2 years 8 months) Greater San Diego AreaMember, IT Sector Co-Chief, Board of Directors @ The National InfraGard Program began as a pilot project in 1996, when the Cleveland FBI Office asked local computer security professionals to assist the FBI in determining how to better protect critical information systems in the public and private sectors. From this new partnership, the first InfraGard Chapter was formed to address both cyber and physical threats.
The purpose of the Infragard San Diego Members Alliance is to mitigate criminal- and terrorist-based threats, risks and losses. In support of that purpose, we:
** Provide opportunity to exchange ideas, information and security practices between the private sector, law enforcement, other first responders, government and academia.
** Provide members with timely threat/risk advisories, alerts and warnings.
** Provide a conduit to act as a “force multiplier” for the FBI and DHS
** Host regular meetings on timely topics of concern and importance to our critical infrastructure sectors.
InfraGard Chapters are local and can adapt to the needs of their community/region. InfraGard Chapters have representation from all 19 DHS Critical Infrastructure Sectors. The trust inherent in individuals with FBI clearance is unmatched in any other public-private partnership in the U.S. The FBI-InfraGard Team is a unique and highly-successful solution to involving the private sector in the protection of our nation’s critical infrastructure. From May 2015 to Present (8 months) Greater San Diego AreaAdvisory Sub - Committee Member @ Collaborative group of public and private industry professionals working together to improve cyber-security for the the state of California. From December 2014 to Present (1 year 1 month) EvoNexus Committee Member @ I am a committee member at EvoNexus, the premier non-profit San Diego startup accelerator. From August 2015 to Present (5 months) Greater San Diego AreaCritical Infrastructure Workgroup, Co-Chair (Public Sector) @ The overall vision of the Securing Our eCity non profit organization is to create a safe digital neighborhood that is both resistant to cyber-threats and resilient to man-made or natural disasters, where our citizens, businesses, organizations and government can effectively and securely navigate, collaborate and conduct business to remain economically competitive in today’s fast-changing technological environment.
I'm one of two co-chair's for the Critical Infrastructure workgroup with Brian Proctor (Information Security Principal Engineer - SDG&E) focused on working with the 19 sectors that makeup San Diego's vast critical infrastructure community. If you have any interest in getting involved with the SOeC CIP workgroup, please feel free to contact myself or Brian Proctor. From June 2013 to Present (2 years 7 months) Greater San Diego AreaCEO @ Previously known as @Solutions, LLC - provide network security, risk assessments and training for start-ups and non-profits. From August 2007 to Present (8 years 5 months) Advisory Board Member - Cyberhive @ CyberHive is a unique, innovative business shared workspace and incubator program that delivers business and technical support to early stage companies providing cybersecurity and high tech related products and services.
•CyberHive is a sustainable non-profit co-work space and incubator/accelerator community focused in the area of high technology and cybersecurity.
•The CyberHive model is based on treating co-work space and incubator/accelerator Members as real operating businesses everyday.
•Members are mentored as they fine tune their business model, use cases and go to market strategies.
•Members contribute to the support of the CyberHive community by paying modest fees and/or equity to the CyberHive which ensures the program remains sustainable well into the future.
•Every company that graduates from the CyberHive community will be a new employer.
http://cyberhivesandiego.org/ From January 2013 to Present (3 years) Greater San Diego AreaMember Board of Advisors @ Brier & Thorn is a Managed Security Service Provider (MSSP) that delivers penetration testing through a subscription service in a scalable, multi-tenant cloud platform.
The company’s flagship product, RedInk, is vulnerability management in the cloud; allowing companies to eliminate the painful headache of managing, reacting to, and remediating vulnerabilities in their systems and network.
RedInk provides companies visibility, accountability, collaboration, and efficiency when managing vulnerabilities discovered during vulnerability assessments. From October 2013 to Present (2 years 3 months) Greater Los Angeles AreaKey Contributor & Advisory Board Member @ An IT security content and information company by CISOs for CISOs, securitycurrent.com is the premier international security news, information and collaboration site. It delivers thought provoking articles, critical business and technical information, as well as tactical and practical advice. Our CISOs and industry experts provide insight into today's complicated security landscape.
Securitycurrent.com today announced that Gary Hayslip has joined its key team of leading CISO professionals lending their expertise to advance security across the private and public sectors. From February 2015 to Present (11 months) Advisory Board Member @ This is a volunteer position with the Centre for Strategic Cyberspace & Security Science (CSCSS), a multilateral, international not-for-profit organization that conducts independent cyber-centric research, development, analysis, and training in the areas of cyberspace, defence intelligence, cyber security, and science while addressing the threats, trends, and opportunities shaping international security policies and national cyberspace cyber security initiatives.
The Centre for Strategic Cyberspace + Security Science has prioritized providing cyberspace support and programs for members of the UK Parliament and the United States Congress and their staff. This includes cyber security support, education, and leadership from the world’s top experts in cyber security, cyber warfare, cyber defence and security policy, global challenges, and regional studies.
As a “think tank”, CSCSS endeavours to provide opportunities for government leadership to interact with the cyberspace and cyber security policy community on issues affecting national-international security. From July 2012 to Present (3 years 6 months)
MBA @ San Diego State University-California State University From 2011 to 2013 Navy Network/System Certifier Certification @ The United States Naval Postgraduate School From 2008 to 2008 Stanford University From 2004 to 2004 Bachelor of Science @ University of Maryland University College From 2000 to 2003 Gary CISSP is skilled in: Security, Information Security, Computer Security, Network Security, Information Assurance, Vulnerability Assessment, Disaster Recovery, Penetration Testing, Information Security Management, Vulnerability Management, Security Audits, Risk Assessment, Information Technology, Security Clearance, NIST