b'S torSyt oBreyh Binedh itnhdetShteo rSyt:o Irnyt:e Irnvtieerwv iwewit hw Mithic hSuelslaen V Kalodsekzi Interview with Michelle Its no small feat getting private companies to share sensitive data with the United Statesgovernment. Michelle Valdez has the gift. The U.S. Air Force veteran spent her earlier career at DOD, DNI and DHS, ultimately building information sharing relationships Valdez between critical infrastructure companies and the government. These programs helped to grow information sharing and analysis center (ISAC) capabilities for all the sectors. Having transitioned from government to the private sector, the ISAC model has paid offChief Informationin a big way.Security Officer OneMain Financial D MICHELLE:F: How did you initially get involved in Cybersecurity?I was a Special Agent in the Air Force Office of Special Investigations, like the FBI or NCIS but for the Air Force.After 9/11, I switched from crime to terrorism. Then one of my former commanders reached out and asked me to help build a single cyber crime organization for the Department of Defense. I laughed saying, I dont know anything about computers. He told me he needed my help building and branding this new cyber crime center. It took us about a year to break down all the various stovepipes and rebrand the organization as the Defense Cyber Crime Center (known as DC3), one of six National Cybersecurity Centers. It was during this time, we saw a shift from computer crime to cybersecurity, as our foreign counterparts sought to exploit information from us.D One of the greatest lessons of 9/11 was the importance of sharing F: information between agencies. Cyber had similar growing pains.MICHELLE:The cyber community had to go through exactly what the terrorism community had been through a few years earlier. At DC3, we were meeting with the Defense Industrial BaseWe created the National (contractors who work with DoD) and critical infrastructureCounter Terrorism Center as companies, figuring out how these companies could worka way to share intelligence, together against a common cyber adversary. Being highlyunderstand the terror threat, competitive, these companies initially had a hard time sharing critical information about their vulnerabilitiesand see the big picture.The with each other and with the government. I had just livedsame now had to happen in through this: U.S. Intelligence agencies not speaking to onecyber.another. 9/11 changed that.We created the National Counter Now the Chief Information Security Officer at OneMain Financial, Valdez talks aboutTerrorism Center as a way to share intelligence, understand the terror threat, and see the big picture.The same now had the future of risk management, lessons learned from the Capital One breach, Electionto happen in cyber.Security, and how the worst advice she ever got helped catapult her to success. P PPagage e3 28Paaggee731'