Director & Member, Cyber Future Council
Head of Information Risk Program, Freddie Mac
Shaun Khalfan is one of the most prominent leaders in the cybersecurity and cyber risk management domain. Currently Shaun serves as the Information Risk Leader for Freddie Mac.
Shaun until recently, served as the Chief Systems Security Officer and senior cybersecurity executive for the largest law enforcement agency in the country, U.S. Customs and Border Protection (CBP). At CBP, Shaun led the development and execution of cybersecurity strategy and is responsible for aligning security initiatives with enterprise programs and business objectives, ensuring that systems and information are adequately protected.
Prior to joining CBP, Shaun served as the Director of Cybersecurity and Infrastructure with the Department of the Navy (DON) Chief Information Office. He led a team of senior DoD civilians and military officers to deliver strategy, governance, policy, and oversight of Department of the Navy cybersecurity initiatives, to include assessment and authorization, mobility and cloud security, risk management, identity management and cybersecurity strategies. Enabling this consisted of leading efforts within the DON such as computer network defense design and architecture, continuous monitoring, insider threat, and other cyber initiatives across the department. He previously served as the Program Information Security Manager with the Defense Logistics Agency, Defense Information System for Security Acquisition. He developed and led a comprehensive information security program which drove the cyber acquisition strategy, architecture, requirements, policies, and processes for the program. Additionally, he managed the cost, scope, and schedule of specific systems and components within the family of systems and coordinated with stakeholders to develop requirements and deliver solutions. Prior to this, he was the Enterprise Security Operations Manager with the Navy's Military Sealift Command. He led the command’s Network Security Operations Center and managed multiple information security projects.
Shaun has successfully led multiple cyber initiatives within the Defense Department and private sector, serves as an advisor on federal technology committees, is a fellow with the American Council for Technology, and an adjunct professor at George Washington University. Shaun received his MBA from George Washington University and is a graduate of the University of Maryland.
He is also a Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), DAWIA Acquisition Level III in Information Technology, and a graduate of the DoD Executive Leadership Development Program.