Leo Scanlon

Acting Chief Information Security Officer

Department of Health and Human Services

Leo Scanlon is the Acting Chief Information Security Officer (CISO) of the U.S. Department of Health and Human Services (HHS). HHS is the designated Sector Specific Agency for cyber threat information sharing in the health care sector, and in that capacity is working to develop the public-private partnerships that will enhance cyber defense across the sector.

Prior to joining HHS, Mr. Scanlon served for ten years as the Chief Information Security Officer for the National Archives and Records Administration. In that position he put in place and matured the agency IT Security Program. In addition, he served as the agency representative to the Committee on National Security Systems (CNSS), and was the agency reporting official Senior Information Sharing and Safeguarding Steering Committee (Insider Threat).

Prior to government service, Mr. Scanlon worked as a security specialist in the telecommunications industry and as a consultant on major federal modernization projects. He has extensive practical experience implementing NIST guidance developed under FISMA.

Mr. Scanlon holds a Bachelor of Science, in Information Technology, State University of New York, and has done post graduate work in web database design and security at George Washington University.

Mr. Scanlon is a member of the Government Advisory Council of ISC2.