Department of Energy
Chief Information Security Officer
Mr. Paul Cunningham is the Department of Energy's (DOE) Chief Information Security Officer (CISO). Mr. Cunningham manages the Department's Enterprise Cybersecurity Program and strengthens its cybersecurity posture. As a trusted advisor to the CIO, Mr. Cunningham provides executive leadership and guidance for joint agency and Administration cybersecurity initiatives including the efforts under the Cybersecurity National Action Plan (CNAP), Cybersecurity Strategy and Implementation Plan (CSIP), Cybersecurity Information Sharing Act (CISA), and Committee on National Security Systems. He architected the DOE's Joint Cybersecurity Coordination Center, which coordinates cybersecurity incident responses across the enterprise, and leverages the expertise within the nation's National Laboratories. Mr. Cunningham also served with the Department of Homeland Security (DHS) as the Information Assurance Governance Branch Director for Immigration and Customs Enforcement (ICE). In that role, he served as the primary Information Assurance policy advisor; responsible for clarifying policy and developing implementation strategies to meet governing directives and mission requirements. Some of his accomplishments included restructuring the Regional Information Assurance Manager program to improve support to Area Operations Managers, integrating system security activities within the established System Lifecycle Management (SLM) process, and improving field accessibility by establishing acceptable wireless policies and encryption standards. Prior to beginning his federal service, Mr. Cunningham was the Threat Mitigation Division Manager/Director of IT Security for Camber Corporation. In this role, Mr. Cunningham oversaw corporate contracts related to cybersecurity and national intelligence. He developed Camber's cyber business strategy and led two research and development projects two research and development projects; a testing tool based on NIST standards and a tool to examine file content for potentially sensitive data. Mr. Cunningham also worked as a contractor at the Office of Naval Intelligence in Information Assurance division. Before Camber, Mr. Cunningham served over 20 years in the U.S. Navy. Originally enlisting as an Aviation Structural Mechanic, he finished his career as Naval Officer and Aviator. He held numerous leadership positions during his tenure to include IT Director for Navy Operational Support Center Jacksonville; Safety Officer and Mishap Investigator; and Chief Standardization Flight Instructor for the Navy's Primary Flight Training Program. Mr. Cunningham holds a Bachelor's Degree in Management from Southern Illinois University and a Masters Degree in Information Technology from Capella University. He has several certifications including Certified Chief Information Security Officer (CCISO), Certified Information Systems Security Professional (CISSP), and Certified Ethical Hacker.