Phil Agcaoili
Phil Agcaoili is an accomplished leader, technologist, entrepreneur, and a cyber security, information security, and privacy expert. He was named as one of the 100 Top Security Influencers To Follow in 2019 by CISO Platform. He authored a chapter in the book CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers.
Phil is the Senior Vice President of Product & Security Innovation at Elavon, a Senior Vice President at U.S. Bancorp, chairman of the Ponemon Institute Fellows, a Distinguished Fellow of the Ponemon Institute, a Founding Member of the Cloud Security Alliance, co-inventor and co-author of the Cloud Security Alliance Cloud Controls Matrix, a standards developer for the Electronic Discovery Reference Model, and a contributor to the NIST Cyber Security Framework.
He is a 4-time Chief Information Security Officer at Elavon, Cox Communications, VeriSign, and SecureIT. Phil was a committee co-chair for the Federal Communications Commission Communications Security, Reliability and Interoperability Council II and CSRIC III, served as a committee co-chair for cyber security on the Communications Sector Coordinating Council, and was a member of the Communications Information Sharing and Analysis Center. He was on the Board of Advisors of the Payment Card Industry Security Standards Council and on the steering committee of the FS-ISAC Payments Processing Information Sharing Council.
Phil co-founded SecureIT and sold it to VeriSign at the height of the Dot.com era. He was on the Board of Directors for Mobile Active Defense, and was on the Advisory Boards of Cybersecurity Ventures, Qualys and Rapid7.
Education
Phil Agcaoili graduated from Columbia High School in East Greenbush, New York in 1989, studied aerospace engineering at Virginia Tech in Blacksburg, Virginia, received a Bachelor of Science in mechanical engineering from Rensselaer Polytechnic Institute in Troy, New York in 1993, and attended Georgia State University in Atlanta, Georgia for an MBA in computer information systems. He was inducted into the Mechanical Engineering Honor Society Pi Tau Sigma in 1991 at Rensselaer Polytechnic Institute and was inducted into the East Greenbush Education Foundation Hall of Fame in 2011.Career
Agcaoili started his career at General Electric.He co-founded and was the Chief Information Security Officer of SecureIT in 1996, which was one of the first pure-play Internet security services providers that was acquired by Verisign in 1998 for $70M. After the acquisition, he became VeriSign's first CISO. He was an early foundation member at Internet Devices, which was acquired by Alcatel in 1999 for $180M. He was the Chief Security Architect at Scientific-Atlanta, which was acquired by Cisco in 2005 for $6.9B.
He co-founded the Southern CISO Security Council in 2006.
While at Dell in 2008, he set security standards for Cloud computing as a Founding Member and Steering Committee member of the Cloud Security Alliance. He co-invented and co-authored the Cloud Controls Matrix in 2009, co-founded the GRC Stack in 2010, and co-founded the Security, Trust & Assurance Registry in 2011.
Agcaoili was named the Chief Information Security Officer at Cox Communications in 2009.
He has helped shape cyber security best practices for U.S. Telecoms as a committee co-chair for the Federal Communications Commission Communications Security, Reliability and Interoperability Council II Work Group 2A in 2010, served on the NCTA Cyber Security Work Group as an inaugural member, played an instrumental role in 2012 in the FCC CSRIC III Work Group 11, served as a committee co-chair for cyber security on the Communications Sector Coordinating Council, was a member of the Communications Information Sharing and Analysis Center, and was an industry representative on the National Coordinating Center for Communications.
He was inducted into the Ponemon Institute as a Distinguished Fellow in 2011 and then appointed the Chairman of the Ponemon Institute Distinguished Fellows in 2012.
He has been instrumental in shaping United States cyber security efforts. Throughout 2013 he helped the National Institute of Standards and Technology develop the first version of the U.S. Cybersecurity Framework released as the Framework for Improving Critical Infrastructure Cybersecurity on February 12, 2014. In 2013, Agcaoili was appointed as a co-chair for the FCC CSRIC
IV Working Group 4 – Cybersecurity Best Practices in order to help operationalize the Framework into practice within the Communications sector by updating and aligning his previous effort co-chairing the FCC CSRIC II Work Group 2A with the NIST CSF.
In 2013, through a partnership with the Cloud Security Alliance and the American Institute of Certified Public Accountants, a team of industry experts and the founder of the Service Organization Control released seminal guidance that reshaped how companies demonstrate and attest for their security and privacy practices by incorporating additional subject matter such as the CSA Cloud Controls Matrix in the type 2 SOC2 attestation standard and assessed using the AT 101 proven auditing principles. This replaced the SAS 70 auditing standard and augmented the successor, SSAE 16 SOC 1, to attest for internal controls over financial reporting.
Agcaoili was appointed the Vice President and Chief Information Security Officer of Elavon in 2014. He serves on the FS-ISAC and on the Payments Processing Information Sharing Council. steering committee. He was promoted to Senior Vice President at US Bank in 2015.
He was nominated to serve a two-year term on the Board of Advisors of the PCI Security Standards Council in 2015.
He has served on the Editorial Advisory Board for TechTarget Security Media Group Information Security Magazine, Advisory Board for CSO Magazine, Advisory Board for CIO Magazine, Editorial Advisory Board for CSO MAG, Governing Body Co-chair for Evanta CISO Leadership Network, Founding Advisory Council for CISO Executive Network in Atlanta, Founding Member and CISO Advisory Council for Wisegate, Advisory Board for the RSA Executive Security Action Forum, and Advisory Board for SecureWorld Expo in Atlanta, Houston, and Dallas. He has served 10 times as a judge for the Information Security Executive Awards and was on the Advisory Board for the Worldwide Executive Council Goldman Sachs CISO Council and the Citibank CISO Council.
Information Security and Cyber Security Industry Contributions
- MSO Security Council, founding member
- MSO Acceptable Use Policy Management Roundtable, founding member
- Alliance for Telecommunications Industry Solutions Network Reliability Steering Committee
-
Recognition
- http://viewer.media.bitpipe.com/1152629439_931/1286461369_610/1010_ISM_eMag.pdf]
- http://www.ten-inc.com/press/2012/press_2012.03.14.asp]
*
*