CCISO Scheme Committee


Juan Gomez-Sanchez (Chair)

CSO, Lennar

Mr. Gomez-Sanchez has over 16 years of Information Security experience. He has focused his entire professional life to pursue excellence in the field of Information Security. Juan Gomez-Sanchez, has been tasked throughout his career with building and managing world-class, enterprise security organizations. His keen perspective of security as a business enabler has allowed Juan to deliver high performance solutions and organization to address large and complex security challenges. He has led such initiatives in organizations like Delta AirLines, CheckFree Corporation (now and division of Fiserv) and Cybertrust (now Verizon Business).


Betty Lambuth (Vice Chair)

President & CEO, Information Technology Solutions & Security

Ms. Lambuth has over 35 years’ experience in Information Technology (IT), networks, application development, information security, cyber security, privacy, cloud services, risk management, compliance, Certification and Accreditation (C&A), Information Assurance (IA), and other security or privacy assessments. She is a Subject Matter Expert (SME) in security authorization and regulatory compliance including NIST, FedRAMP and international regulations and her certifications include CISSP, ISSMP, CAP, CIPP/US, CIPP/G, NSA-IAM, NSA-IEM, C|CISO, CIPM. She designed and implemented the first cybercast from the White House and led an award-winning team of the Hammer Award for Excellence from Vice President Al Gore.


Dr. Curtis Levinson

Private Consultancy and United States Cyber Defense Advisor to NATO

A highly innovative and proven cyber executive and technologist with over 25 years of focused and very successful experience in Cyber Security/Defense, Continuity/Recovery of Operations and Information Governance. Extensive professional experience with public and private organizations at all levels of scale. Develops, implements and directs highly successful security, cloud and governance programs. Designs and implements both strategic and tactical information security architectures and best practices for organizations with a wide variety of risk postures in complex and distributed environments. Highly skilled at crafting global strategy development and organizational analysis for secure and recoverable enterprise and global network designs based on traditional and cloud based topologies. Served with distinction, two sitting Presidents of the United States, two Chairmen of the Joint Chiefs of Staff and the Chief Justice of the United States.


Jerry Chappee

Cybersecurity Test Branch Chief, Missile Defense Agency

Jerry Chappee is the Chief of Threat and Vulnerability for US STRATEGIC Command and is a Lieutenant Colonel in the US Army. He has been involved with information security for over 20 years and has held a number of CISO, CTO and CIO positions. He has over a dozen technology certs from Cisco and Microsoft and has the CISSP, Army penetration testing and forensics certifications and NSA IAM/IEM certifications. Jerry also has an MBA in Technology Management. He has given hundreds of seminars and classes on Ethical Hacking and Cyber Defense, Attack and Exploitation focusing on Wireless Attacks, Wireless Security, TCP/IP Security, Windows security, Intrusion detection, Firewalls, Network Security, Operating System hardening, VPN’s and Security policies and Auditing requirements for HIPPA and DOD.


Jim Gridley

Senior Director of Security (Military and Government Markets)

As Senior Director Carlson WagonLit Travel (CWT) Military and Government organization this position requires cross functional support across multiple operational domains. Responsible for managing and overseeing security compliance and the overall security program for Civilian and Military Government Travel ($2.9 Billion) in which our business supports. This program is based on ISO 17799, with particular emphasis on Payment Card industry requirements (PCI). The security program framework includes management of Technical, Management and Operational controls under the guidelines of the Office of Management and Budget (OMB), National Institute of Standards and Technology (NIST), Federal Information Security Management Act of 2002 (FISMA) and the Federal Information Processing standard (FIPS) requirements. Responsibilities includes policy enforcement, conducting Security Awareness Training, Incident response and reporting, Intrusion and Vulnerability assessments, Risk and System Security management, personnel security background Investigations processing, Continuous monitoring and Contingency and Disaster planning.


Joe Voje

CISO, City of San Francisco

Mr. Voje currently serves as the Chief Information Security Officer for The University of Texas –Pan American, where he is developing an Information Security program and Privacy practice for one of the nation’s largest Hispanic serving institutions of higher education. As former Naval Officer, Mr. Voje, served in many roles related to cyber security and information assurance for the U.S. Navy.


Lois Boliek

Strategist, IT Security and Assurance, Hewlett Packard Enterprise

Lois Boliek is the global manager for the HP Technology Consulting IT Assurance Program. The goal of IT Assurance is to integrate security across all service portfolios and advanced solutions. The focus is to “assure” security is architected into all client solutions and offer security-enabling services as a competitive differentiator for HP Technology Consulting. Boliek has a proven track record as well as field experience in security practice leadership, sales support and portfolio development.


Michael Woodson

Senior Security Advisor Risk & Security Compliance, Onyx Spectrum Technology, Inc.

A Senior Security Management professional with an extensive background in Network and Information Security, Data Privacy, Fraud Management, Technical Investigations, Regulatory Compliance and Policy Development, Litigation Preparedness, Enterprise Governance, Risk Management, Computer Forensics and Application Security Threats and Countermeasures. He has 12 years of Law Enforcement experience obtained directly from the Boston Police Department and over 20 years of combined experience in Computer Forensics and Technology which includes conducting electronic evidence discovery investigations and litigation support for matters related to Internal Fraud, Intellectual Property Theft, Embezzlement, SEC issues, and Network Intrusions.


Nitin Kumar

Senior Managing Director, FTI Consulting

Nitin Kumar is a global executive and management consultant with deep operational experience. He has leadership experience in start-ups, turnarounds and driving exponential growth with full P/L responsibility. He has held several executive roles such as Consulting Partner, Turnaround Leader, M&A Integration Leader, and Start-up CEO focused on strategy, sales, delivery, growth and operations. Nitin has vast global experience spanning the US, Europe, Asia (Middle East, India, and Far East), Australia, and Africa where he consulted with Fortune 500 clients in the areas of Growth Strategy, M&A Integration, Business Model Innovation, and Complex Transformation.


Ron Baklarz

CISO at Amtrak

Ron Baklarz has over twenty years in the Information Security field developing “first-of-a-kind” information security programs within government, military, and private sector organizations including the Naval Nuclear Program, U.S. House of Representatives, Prudential Insurance Company, MedStar Health, and Amtrak. Ron is currently the Chief Information Security Officer at Amtrak and he has held various information security consulting, technical, and operational positions throughout his career.

The specific duties and responsibilities of the SC members include:

  • Approve key policies governing the operation of EC-Council Certification Division.
  • Assuring consistency of decision making as well as the criteria used therein.
  • Serve on appeals and complaints task groups as appointed by the SC Chair.
  • Promote and provide guidance to promote EC-Council certifications.
  • Provide guidance regarding international initiatives supporting EC-Council certifications.
  • Provide guidance to support educational initiatives related to EC-Council certifications.
  • Determine areas of research required to improve EC-Council certifications.
  • Serve on task forces / subcommittees as appointed by the SC Chair.

Note: Next SC scheduled meeting: June 2024.

Disclaimer: None of the EC-Council | Scheme Committee members are part of the management team of the International Council of E-Commerce Consultants (EC-Council) and as such, they should not be construed to be part of the Board of Directors of EC-Council.