Security TAG co-chair nominations


Sarah Allen
 

Dear Technical Oversight Committee,

On June 3, 2021, the term for two of the three current Security TAG co-chairs, Sarah Allen (@ultrasaurus) and Jeyappragash JJ (@pragashj) comes to an end. 


The TOC election process requires nomination from TOC and then ⅔ vote.  We have also followed the Security TAG governance process for proposing candidates, since we have clear successors who are already working within the group. The candidates below have unanimous support from our TOC liaisons, as well as the three current co-chairs.


We believe that Aradhna Chetal and Brandon Lum, along with current chair Emily Fox, will enable “full coverage of the leadership capabilities across the key qualities of industry experience, hands-on cloud-native and security experience, as well as administrative experience needed to run a Security TAG.”  While both currently serve as Tech Leads for the group (as did Emily before she became chair), we do not consider that a prerequisite for the chair position.


Aradhna Chetal 

Senior Director Exec, Cloud Security, TIAA

Research Fellow Cloud Security Alliance 

TAG Contributions

  • Tech Lead, Meeting Facilitator

  • Active in Policy team subgroup

  • Initiated serverless security whitepaper - Issue#546

  • Cloud Native Securty Whitepaper - refined scope, created first draft and worked on reviews and completion

External community involvement 

Active member of Cloud Security Alliance (CSA),  has been an advisor to the board - CSA Seattle Chapter,  CSA and NIST Cloud computing workgroups, has influenced best practices & standards for cloud, containers, serverless & microservices security



Brandon Lum

container security, IBM Research 

TAG Contributions

  • Tech Lead, Meeting Facilitator 

  • Repo Triage and Issue Management

  • Process Improvements & governance 

  • Leading Cloud Native Security Map/Landscape - Issue#348

  • Security Reviews - process improvements and initial assessments PR#247

  • Presented SIG-Security session China June 2019, San Diego Nov 2019

  • Organized in-person meetup DockerCon, May 2019 issue#151

External community involvement 

SPIFFE/SPIRE community & contributing to SPIFFE book



Please reply to this email to vote.  As always, the CNCF encourages non-binding votes from the community, along with the required votes of TOC members.


Thank you,

Sarah, in collaboration with other Security TAG co-chairs (Emily and JJ) and TOC Liaisons Liz Rice & Justin Cormack



Jeyappragash Jeyakeerthi
 

+1 nb
It has been fantastic working with Brandon on assessments and Aradhana on whitepapers over their involvement in Security TAG. They have both been phenomenal in cross pollination between different security initiatives/groups and Security TAG. It was an honor to serve them as a co-chair and I am incredibly excited to see them now perform the role to help others in the group create the outcomes and success. 


On Sat, May 29, 2021 at 9:30 PM Sarah Allen <sarah@...> wrote:

Dear Technical Oversight Committee,

On June 3, 2021, the term for two of the three current Security TAG co-chairs, Sarah Allen (@ultrasaurus) and Jeyappragash JJ (@pragashj) comes to an end. 


The TOC election process requires nomination from TOC and then ⅔ vote.  We have also followed the Security TAG governance process for proposing candidates, since we have clear successors who are already working within the group. The candidates below have unanimous support from our TOC liaisons, as well as the three current co-chairs.


We believe that Aradhna Chetal and Brandon Lum, along with current chair Emily Fox, will enable “full coverage of the leadership capabilities across the key qualities of industry experience, hands-on cloud-native and security experience, as well as administrative experience needed to run a Security TAG.”  While both currently serve as Tech Leads for the group (as did Emily before she became chair), we do not consider that a prerequisite for the chair position.


Aradhna Chetal 

Senior Director Exec, Cloud Security, TIAA

Research Fellow Cloud Security Alliance 

TAG Contributions

  • Tech Lead, Meeting Facilitator

  • Active in Policy team subgroup

  • Initiated serverless security whitepaper - Issue#546

  • Cloud Native Securty Whitepaper - refined scope, created first draft and worked on reviews and completion

External community involvement 

Active member of Cloud Security Alliance (CSA),  has been an advisor to the board - CSA Seattle Chapter,  CSA and NIST Cloud computing workgroups, has influenced best practices & standards for cloud, containers, serverless & microservices security



Brandon Lum

container security, IBM Research 

TAG Contributions

  • Tech Lead, Meeting Facilitator 

  • Repo Triage and Issue Management

  • Process Improvements & governance 

  • Leading Cloud Native Security Map/Landscape - Issue#348

  • Security Reviews - process improvements and initial assessments PR#247

  • Presented SIG-Security session China June 2019, San Diego Nov 2019

  • Organized in-person meetup DockerCon, May 2019 issue#151

External community involvement 

SPIFFE/SPIRE community & contributing to SPIFFE book



Please reply to this email to vote.  As always, the CNCF encourages non-binding votes from the community, along with the required votes of TOC members.


Thank you,

Sarah, in collaboration with other Security TAG co-chairs (Emily and JJ) and TOC Liaisons Liz Rice & Justin Cormack



Emily Fox
 

+1 NB

Brandon has had a significant impact over the length of his involvement within the TAG.  Between his dedication to the governance and smooth operation of TAG and his depth of core security knowledge his contributions have helped make the TAG what it is today.

Aradhna is newer to the TAG and brings with her a broad array of expertise from the larger Cybersecurity community.  Her ideas and engagement with TAG and across CNCF working groups brings the entire community closer.

- Emily Fox

@TheMoxieFox (personal handle)


On Sat, 29 May 2021, 12:37 Jeyappragash Jeyakeerthi, <jj@...> wrote:
+1 nb
It has been fantastic working with Brandon on assessments and Aradhana on whitepapers over their involvement in Security TAG. They have both been phenomenal in cross pollination between different security initiatives/groups and Security TAG. It was an honor to serve them as a co-chair and I am incredibly excited to see them now perform the role to help others in the group create the outcomes and success. 


On Sat, May 29, 2021 at 9:30 PM Sarah Allen <sarah@...> wrote:

Dear Technical Oversight Committee,

On June 3, 2021, the term for two of the three current Security TAG co-chairs, Sarah Allen (@ultrasaurus) and Jeyappragash JJ (@pragashj) comes to an end. 


The TOC election process requires nomination from TOC and then ⅔ vote.  We have also followed the Security TAG governance process for proposing candidates, since we have clear successors who are already working within the group. The candidates below have unanimous support from our TOC liaisons, as well as the three current co-chairs.


We believe that Aradhna Chetal and Brandon Lum, along with current chair Emily Fox, will enable “full coverage of the leadership capabilities across the key qualities of industry experience, hands-on cloud-native and security experience, as well as administrative experience needed to run a Security TAG.”  While both currently serve as Tech Leads for the group (as did Emily before she became chair), we do not consider that a prerequisite for the chair position.


Aradhna Chetal 

Senior Director Exec, Cloud Security, TIAA

Research Fellow Cloud Security Alliance 

TAG Contributions

  • Tech Lead, Meeting Facilitator

  • Active in Policy team subgroup

  • Initiated serverless security whitepaper - Issue#546

  • Cloud Native Securty Whitepaper - refined scope, created first draft and worked on reviews and completion

External community involvement 

Active member of Cloud Security Alliance (CSA),  has been an advisor to the board - CSA Seattle Chapter,  CSA and NIST Cloud computing workgroups, has influenced best practices & standards for cloud, containers, serverless & microservices security



Brandon Lum

container security, IBM Research 

TAG Contributions

  • Tech Lead, Meeting Facilitator 

  • Repo Triage and Issue Management

  • Process Improvements & governance 

  • Leading Cloud Native Security Map/Landscape - Issue#348

  • Security Reviews - process improvements and initial assessments PR#247

  • Presented SIG-Security session China June 2019, San Diego Nov 2019

  • Organized in-person meetup DockerCon, May 2019 issue#151

External community involvement 

SPIFFE/SPIRE community & contributing to SPIFFE book



Please reply to this email to vote.  As always, the CNCF encourages non-binding votes from the community, along with the required votes of TOC members.


Thank you,

Sarah, in collaboration with other Security TAG co-chairs (Emily and JJ) and TOC Liaisons Liz Rice & Justin Cormack



Magno Logan
 

+1 NB

Brandon is a great meeting facilitator as well as a tech lead, it has been a pleasure working with him on the CNSMap and also on the translation of the CNSWP to pt-BR, in which he has been very supportive. He is always friendly and approachable and I really think he is a great candidate for this co-chair position.

Aradhna is a frequent member of our weekly meetings always bringing different ideas and projects for discussion. Her involvement in CSA and NIST is also very beneficial for this group. I'm looking forward to working more with her on the Serverless Security Whitepaper and really think she is a great candidate for this co-chair position.
Best Regards,

Magno Logan


On Sat, May 29, 2021 at 1:59 PM Emily Fox <themoxiefoxatwork@...> wrote:
+1 NB

Brandon has had a significant impact over the length of his involvement within the TAG.  Between his dedication to the governance and smooth operation of TAG and his depth of core security knowledge his contributions have helped make the TAG what it is today.

Aradhna is newer to the TAG and brings with her a broad array of expertise from the larger Cybersecurity community.  Her ideas and engagement with TAG and across CNCF working groups brings the entire community closer.

- Emily Fox

@TheMoxieFox (personal handle)

On Sat, 29 May 2021, 12:37 Jeyappragash Jeyakeerthi, <jj@...> wrote:
+1 nb
It has been fantastic working with Brandon on assessments and Aradhana on whitepapers over their involvement in Security TAG. They have both been phenomenal in cross pollination between different security initiatives/groups and Security TAG. It was an honor to serve them as a co-chair and I am incredibly excited to see them now perform the role to help others in the group create the outcomes and success. 


On Sat, May 29, 2021 at 9:30 PM Sarah Allen <sarah@...> wrote:

Dear Technical Oversight Committee,

On June 3, 2021, the term for two of the three current Security TAG co-chairs, Sarah Allen (@ultrasaurus) and Jeyappragash JJ (@pragashj) comes to an end. 


The TOC election process requires nomination from TOC and then ⅔ vote.  We have also followed the Security TAG governance process for proposing candidates, since we have clear successors who are already working within the group. The candidates below have unanimous support from our TOC liaisons, as well as the three current co-chairs.


We believe that Aradhna Chetal and Brandon Lum, along with current chair Emily Fox, will enable “full coverage of the leadership capabilities across the key qualities of industry experience, hands-on cloud-native and security experience, as well as administrative experience needed to run a Security TAG.”  While both currently serve as Tech Leads for the group (as did Emily before she became chair), we do not consider that a prerequisite for the chair position.


Aradhna Chetal 

Senior Director Exec, Cloud Security, TIAA

Research Fellow Cloud Security Alliance 

TAG Contributions

  • Tech Lead, Meeting Facilitator

  • Active in Policy team subgroup

  • Initiated serverless security whitepaper - Issue#546

  • Cloud Native Securty Whitepaper - refined scope, created first draft and worked on reviews and completion

External community involvement 

Active member of Cloud Security Alliance (CSA),  has been an advisor to the board - CSA Seattle Chapter,  CSA and NIST Cloud computing workgroups, has influenced best practices & standards for cloud, containers, serverless & microservices security



Brandon Lum

container security, IBM Research 

TAG Contributions

  • Tech Lead, Meeting Facilitator 

  • Repo Triage and Issue Management

  • Process Improvements & governance 

  • Leading Cloud Native Security Map/Landscape - Issue#348

  • Security Reviews - process improvements and initial assessments PR#247

  • Presented SIG-Security session China June 2019, San Diego Nov 2019

  • Organized in-person meetup DockerCon, May 2019 issue#151

External community involvement 

SPIFFE/SPIRE community & contributing to SPIFFE book



Please reply to this email to vote.  As always, the CNCF encourages non-binding votes from the community, along with the required votes of TOC members.


Thank you,

Sarah, in collaboration with other Security TAG co-chairs (Emily and JJ) and TOC Liaisons Liz Rice & Justin Cormack



Andrew Martin <andy@...>
 

+1 nb

Excellent candidates with long track records of high quality contributions  🎉  

Thanks to the outgoing chairs for all their hard work helping to build the community 😊

On Sat, 29 May 2021 at 17:37, Jeyappragash Jeyakeerthi <jj@...> wrote:
+1 nb
It has been fantastic working with Brandon on assessments and Aradhana on whitepapers over their involvement in Security TAG. They have both been phenomenal in cross pollination between different security initiatives/groups and Security TAG. It was an honor to serve them as a co-chair and I am incredibly excited to see them now perform the role to help others in the group create the outcomes and success. 


On Sat, May 29, 2021 at 9:30 PM Sarah Allen <sarah@...> wrote:

Dear Technical Oversight Committee,

On June 3, 2021, the term for two of the three current Security TAG co-chairs, Sarah Allen (@ultrasaurus) and Jeyappragash JJ (@pragashj) comes to an end. 


The TOC election process requires nomination from TOC and then ⅔ vote.  We have also followed the Security TAG governance process for proposing candidates, since we have clear successors who are already working within the group. The candidates below have unanimous support from our TOC liaisons, as well as the three current co-chairs.


We believe that Aradhna Chetal and Brandon Lum, along with current chair Emily Fox, will enable “full coverage of the leadership capabilities across the key qualities of industry experience, hands-on cloud-native and security experience, as well as administrative experience needed to run a Security TAG.”  While both currently serve as Tech Leads for the group (as did Emily before she became chair), we do not consider that a prerequisite for the chair position.


Aradhna Chetal 

Senior Director Exec, Cloud Security, TIAA

Research Fellow Cloud Security Alliance 

TAG Contributions

  • Tech Lead, Meeting Facilitator

  • Active in Policy team subgroup

  • Initiated serverless security whitepaper - Issue#546

  • Cloud Native Securty Whitepaper - refined scope, created first draft and worked on reviews and completion

External community involvement 

Active member of Cloud Security Alliance (CSA),  has been an advisor to the board - CSA Seattle Chapter,  CSA and NIST Cloud computing workgroups, has influenced best practices & standards for cloud, containers, serverless & microservices security



Brandon Lum

container security, IBM Research 

TAG Contributions

  • Tech Lead, Meeting Facilitator 

  • Repo Triage and Issue Management

  • Process Improvements & governance 

  • Leading Cloud Native Security Map/Landscape - Issue#348

  • Security Reviews - process improvements and initial assessments PR#247

  • Presented SIG-Security session China June 2019, San Diego Nov 2019

  • Organized in-person meetup DockerCon, May 2019 issue#151

External community involvement 

SPIFFE/SPIRE community & contributing to SPIFFE book



Please reply to this email to vote.  As always, the CNCF encourages non-binding votes from the community, along with the required votes of TOC members.


Thank you,

Sarah, in collaboration with other Security TAG co-chairs (Emily and JJ) and TOC Liaisons Liz Rice & Justin Cormack



Justin Cormack
 

+1 (binding)

Justin


On Sat, May 29, 2021 at 5:00 PM Sarah Allen <sarah@...> wrote:

Dear Technical Oversight Committee,

On June 3, 2021, the term for two of the three current Security TAG co-chairs, Sarah Allen (@ultrasaurus) and Jeyappragash JJ (@pragashj) comes to an end. 


The TOC election process requires nomination from TOC and then ⅔ vote.  We have also followed the Security TAG governance process for proposing candidates, since we have clear successors who are already working within the group. The candidates below have unanimous support from our TOC liaisons, as well as the three current co-chairs.


We believe that Aradhna Chetal and Brandon Lum, along with current chair Emily Fox, will enable “full coverage of the leadership capabilities across the key qualities of industry experience, hands-on cloud-native and security experience, as well as administrative experience needed to run a Security TAG.”  While both currently serve as Tech Leads for the group (as did Emily before she became chair), we do not consider that a prerequisite for the chair position.


Aradhna Chetal 

Senior Director Exec, Cloud Security, TIAA

Research Fellow Cloud Security Alliance 

TAG Contributions

  • Tech Lead, Meeting Facilitator

  • Active in Policy team subgroup

  • Initiated serverless security whitepaper - Issue#546

  • Cloud Native Securty Whitepaper - refined scope, created first draft and worked on reviews and completion

External community involvement 

Active member of Cloud Security Alliance (CSA),  has been an advisor to the board - CSA Seattle Chapter,  CSA and NIST Cloud computing workgroups, has influenced best practices & standards for cloud, containers, serverless & microservices security



Brandon Lum

container security, IBM Research 

TAG Contributions

  • Tech Lead, Meeting Facilitator 

  • Repo Triage and Issue Management

  • Process Improvements & governance 

  • Leading Cloud Native Security Map/Landscape - Issue#348

  • Security Reviews - process improvements and initial assessments PR#247

  • Presented SIG-Security session China June 2019, San Diego Nov 2019

  • Organized in-person meetup DockerCon, May 2019 issue#151

External community involvement 

SPIFFE/SPIRE community & contributing to SPIFFE book



Please reply to this email to vote.  As always, the CNCF encourages non-binding votes from the community, along with the required votes of TOC members.


Thank you,

Sarah, in collaboration with other Security TAG co-chairs (Emily and JJ) and TOC Liaisons Liz Rice & Justin Cormack



Dave Zolotusky
 

+1 binding

On Tue, Jun 1, 2021 at 1:03 PM Justin Cormack via lists.cncf.io <justin.cormack=docker.com@...> wrote:
+1 (binding)

Justin


On Sat, May 29, 2021 at 5:00 PM Sarah Allen <sarah@...> wrote:

Dear Technical Oversight Committee,

On June 3, 2021, the term for two of the three current Security TAG co-chairs, Sarah Allen (@ultrasaurus) and Jeyappragash JJ (@pragashj) comes to an end. 


The TOC election process requires nomination from TOC and then ⅔ vote.  We have also followed the Security TAG governance process for proposing candidates, since we have clear successors who are already working within the group. The candidates below have unanimous support from our TOC liaisons, as well as the three current co-chairs.


We believe that Aradhna Chetal and Brandon Lum, along with current chair Emily Fox, will enable “full coverage of the leadership capabilities across the key qualities of industry experience, hands-on cloud-native and security experience, as well as administrative experience needed to run a Security TAG.”  While both currently serve as Tech Leads for the group (as did Emily before she became chair), we do not consider that a prerequisite for the chair position.


Aradhna Chetal 

Senior Director Exec, Cloud Security, TIAA

Research Fellow Cloud Security Alliance 

TAG Contributions

  • Tech Lead, Meeting Facilitator

  • Active in Policy team subgroup

  • Initiated serverless security whitepaper - Issue#546

  • Cloud Native Securty Whitepaper - refined scope, created first draft and worked on reviews and completion

External community involvement 

Active member of Cloud Security Alliance (CSA),  has been an advisor to the board - CSA Seattle Chapter,  CSA and NIST Cloud computing workgroups, has influenced best practices & standards for cloud, containers, serverless & microservices security



Brandon Lum

container security, IBM Research 

TAG Contributions

  • Tech Lead, Meeting Facilitator 

  • Repo Triage and Issue Management

  • Process Improvements & governance 

  • Leading Cloud Native Security Map/Landscape - Issue#348

  • Security Reviews - process improvements and initial assessments PR#247

  • Presented SIG-Security session China June 2019, San Diego Nov 2019

  • Organized in-person meetup DockerCon, May 2019 issue#151

External community involvement 

SPIFFE/SPIRE community & contributing to SPIFFE book



Please reply to this email to vote.  As always, the CNCF encourages non-binding votes from the community, along with the required votes of TOC members.


Thank you,

Sarah, in collaboration with other Security TAG co-chairs (Emily and JJ) and TOC Liaisons Liz Rice & Justin Cormack




--
~Dave


Liz Rice
 

+1 binding

Thanks Aradhna & Brandon for stepping up to volunteer for these roles, and a massive thank you to Sarah & JJ for everything you have done for SAFE -> SIG Security -> TAG Security over the last few years, you’ve really made an impact! 

Liz

On Tue, 1 Jun 2021 at 13:16, Dave Zolotusky via lists.cncf.io <dzolo=spotify.com@...> wrote:
+1 binding

On Tue, Jun 1, 2021 at 1:03 PM Justin Cormack via lists.cncf.io <justin.cormack=docker.com@...> wrote:
+1 (binding)

Justin


On Sat, May 29, 2021 at 5:00 PM Sarah Allen <sarah@...> wrote:

Dear Technical Oversight Committee,

On June 3, 2021, the term for two of the three current Security TAG co-chairs, Sarah Allen (@ultrasaurus) and Jeyappragash JJ (@pragashj) comes to an end. 


The TOC election process requires nomination from TOC and then ⅔ vote.  We have also followed the Security TAG governance process for proposing candidates, since we have clear successors who are already working within the group. The candidates below have unanimous support from our TOC liaisons, as well as the three current co-chairs.


We believe that Aradhna Chetal and Brandon Lum, along with current chair Emily Fox, will enable “full coverage of the leadership capabilities across the key qualities of industry experience, hands-on cloud-native and security experience, as well as administrative experience needed to run a Security TAG.”  While both currently serve as Tech Leads for the group (as did Emily before she became chair), we do not consider that a prerequisite for the chair position.


Aradhna Chetal 

Senior Director Exec, Cloud Security, TIAA

Research Fellow Cloud Security Alliance 

TAG Contributions

  • Tech Lead, Meeting Facilitator

  • Active in Policy team subgroup

  • Initiated serverless security whitepaper - Issue#546

  • Cloud Native Securty Whitepaper - refined scope, created first draft and worked on reviews and completion

External community involvement 

Active member of Cloud Security Alliance (CSA),  has been an advisor to the board - CSA Seattle Chapter,  CSA and NIST Cloud computing workgroups, has influenced best practices & standards for cloud, containers, serverless & microservices security



Brandon Lum

container security, IBM Research 

TAG Contributions

  • Tech Lead, Meeting Facilitator 

  • Repo Triage and Issue Management

  • Process Improvements & governance 

  • Leading Cloud Native Security Map/Landscape - Issue#348

  • Security Reviews - process improvements and initial assessments PR#247

  • Presented SIG-Security session China June 2019, San Diego Nov 2019

  • Organized in-person meetup DockerCon, May 2019 issue#151

External community involvement 

SPIFFE/SPIRE community & contributing to SPIFFE book



Please reply to this email to vote.  As always, the CNCF encourages non-binding votes from the community, along with the required votes of TOC members.


Thank you,

Sarah, in collaboration with other Security TAG co-chairs (Emily and JJ) and TOC Liaisons Liz Rice & Justin Cormack




--
~Dave


Chase Pettet <chase.mp@...>
 

Non-binding +1.  

We have all benefited from these two being engaged.  Many thanks to everyone willing and able to steer the ship.

I also heard Brandon is anxious to perform a full day one-person talent show.  He has been offering quite insistently for weeks.  Personally, I am all for it!  

Much love.  


On Sat, May 29, 2021, 11:00 AM Sarah Allen <sarah@...> wrote:

Dear Technical Oversight Committee,

On June 3, 2021, the term for two of the three current Security TAG co-chairs, Sarah Allen (@ultrasaurus) and Jeyappragash JJ (@pragashj) comes to an end. 


The TOC election process requires nomination from TOC and then ⅔ vote.  We have also followed the Security TAG governance process for proposing candidates, since we have clear successors who are already working within the group. The candidates below have unanimous support from our TOC liaisons, as well as the three current co-chairs.


We believe that Aradhna Chetal and Brandon Lum, along with current chair Emily Fox, will enable “full coverage of the leadership capabilities across the key qualities of industry experience, hands-on cloud-native and security experience, as well as administrative experience needed to run a Security TAG.”  While both currently serve as Tech Leads for the group (as did Emily before she became chair), we do not consider that a prerequisite for the chair position.


Aradhna Chetal 

Senior Director Exec, Cloud Security, TIAA

Research Fellow Cloud Security Alliance 

TAG Contributions

  • Tech Lead, Meeting Facilitator

  • Active in Policy team subgroup

  • Initiated serverless security whitepaper - Issue#546

  • Cloud Native Securty Whitepaper - refined scope, created first draft and worked on reviews and completion

External community involvement 

Active member of Cloud Security Alliance (CSA),  has been an advisor to the board - CSA Seattle Chapter,  CSA and NIST Cloud computing workgroups, has influenced best practices & standards for cloud, containers, serverless & microservices security



Brandon Lum

container security, IBM Research 

TAG Contributions

  • Tech Lead, Meeting Facilitator 

  • Repo Triage and Issue Management

  • Process Improvements & governance 

  • Leading Cloud Native Security Map/Landscape - Issue#348

  • Security Reviews - process improvements and initial assessments PR#247

  • Presented SIG-Security session China June 2019, San Diego Nov 2019

  • Organized in-person meetup DockerCon, May 2019 issue#151

External community involvement 

SPIFFE/SPIRE community & contributing to SPIFFE book



Please reply to this email to vote.  As always, the CNCF encourages non-binding votes from the community, along with the required votes of TOC members.


Thank you,

Sarah, in collaboration with other Security TAG co-chairs (Emily and JJ) and TOC Liaisons Liz Rice & Justin Cormack



Cornelia Davis
 

+1 binding

On Tue, 1 Jun 2021 at 07:10, Chase Pettet <chase.mp@...> wrote:
Non-binding +1.  

We have all benefited from these two being engaged.  Many thanks to everyone willing and able to steer the ship.

I also heard Brandon is anxious to perform a full day one-person talent show.  He has been offering quite insistently for weeks.  Personally, I am all for it!  

Much love.  

On Sat, May 29, 2021, 11:00 AM Sarah Allen <sarah@...> wrote:

Dear Technical Oversight Committee,

On June 3, 2021, the term for two of the three current Security TAG co-chairs, Sarah Allen (@ultrasaurus) and Jeyappragash JJ (@pragashj) comes to an end. 


The TOC election process requires nomination from TOC and then ⅔ vote.  We have also followed the Security TAG governance process for proposing candidates, since we have clear successors who are already working within the group. The candidates below have unanimous support from our TOC liaisons, as well as the three current co-chairs.


We believe that Aradhna Chetal and Brandon Lum, along with current chair Emily Fox, will enable “full coverage of the leadership capabilities across the key qualities of industry experience, hands-on cloud-native and security experience, as well as administrative experience needed to run a Security TAG.”  While both currently serve as Tech Leads for the group (as did Emily before she became chair), we do not consider that a prerequisite for the chair position.


Aradhna Chetal 

Senior Director Exec, Cloud Security, TIAA

Research Fellow Cloud Security Alliance 

TAG Contributions

  • Tech Lead, Meeting Facilitator

  • Active in Policy team subgroup

  • Initiated serverless security whitepaper - Issue#546

  • Cloud Native Securty Whitepaper - refined scope, created first draft and worked on reviews and completion

External community involvement 

Active member of Cloud Security Alliance (CSA),  has been an advisor to the board - CSA Seattle Chapter,  CSA and NIST Cloud computing workgroups, has influenced best practices & standards for cloud, containers, serverless & microservices security



Brandon Lum

container security, IBM Research 

TAG Contributions

  • Tech Lead, Meeting Facilitator 

  • Repo Triage and Issue Management

  • Process Improvements & governance 

  • Leading Cloud Native Security Map/Landscape - Issue#348

  • Security Reviews - process improvements and initial assessments PR#247

  • Presented SIG-Security session China June 2019, San Diego Nov 2019

  • Organized in-person meetup DockerCon, May 2019 issue#151

External community involvement 

SPIFFE/SPIRE community & contributing to SPIFFE book



Please reply to this email to vote.  As always, the CNCF encourages non-binding votes from the community, along with the required votes of TOC members.


Thank you,

Sarah, in collaboration with other Security TAG co-chairs (Emily and JJ) and TOC Liaisons Liz Rice & Justin Cormack




--
Cornelia Davis
CTO, Weaveworks
@cdavisafc
+1 805 452 8941


Alena Prokharchyk
 

+1 binding

-alena

On May 29, 2021, at 8:59 AM, Sarah Allen <sarah@...> wrote:

Dear Technical Oversight Committee,
On June 3, 2021, the term for two of the three current Security TAG co-chairs, Sarah Allen (@ultrasaurus) and Jeyappragash JJ (@pragashj) comes to an end. 

The TOC election process requires nomination from TOC and then ⅔ vote.  We have also followed the Security TAG governance process for proposing candidates, since we have clear successors who are already working within the group. The candidates below have unanimous support from our TOC liaisons, as well as the three current co-chairs.

We believe that Aradhna Chetal and Brandon Lum, along with current chair Emily Fox, will enable “full coverage of the leadership capabilities across the key qualities of industry experience, hands-on cloud-native and security experience, as well as administrative experience needed to run a Security TAG.”  While both currently serve as Tech Leads for the group (as did Emily before she became chair), we do not consider that a prerequisite for the chair position.

Senior Director Exec, Cloud Security, TIAA
Research Fellow Cloud Security Alliance 
TAG Contributions
  • Tech Lead, Meeting Facilitator
  • Active in Policy team subgroup
  • Initiated serverless security whitepaper - Issue#546
  • Cloud Native Securty Whitepaper - refined scope, created first draft and worked on reviews and completion

External community involvement 

Active member of Cloud Security Alliance (CSA),  has been an advisor to the board - CSA Seattle Chapter,  CSA and NIST Cloud computing workgroups, has influenced best practices & standards for cloud, containers, serverless & microservices security


container security, IBM Research 
TAG Contributions
  • Tech Lead, Meeting Facilitator 
  • Repo Triage and Issue Management
  • Process Improvements & governance 
  • Leading Cloud Native Security Map/Landscape - Issue#348
  • Security Reviews - process improvements and initial assessments PR#247
  • Presented SIG-Security session China June 2019, San Diego Nov 2019
  • Organized in-person meetup DockerCon, May 2019 issue#151

External community involvement 

SPIFFE/SPIRE community & contributing to SPIFFE book


Please reply to this email to vote.  As always, the CNCF encourages non-binding votes from the community, along with the required votes of TOC members.

Thank you,
Sarah, in collaboration with other Security TAG co-chairs (Emily and JJ) and TOC Liaisons Liz Rice & Justin Cormack



Sheng Liang <sheng.liang@...>
 

+1 binding

 

From: cncf-toc@... <cncf-toc@...> On Behalf Of Alena Prokharchyk via lists.cncf.io
Sent: Tuesday, June 1, 2021 9:36 AM
To: Sarah Allen <sarah@...>
Cc: CNCF TOC <cncf-toc@...>
Subject: Re: [cncf-toc] Security TAG co-chair nominations

 

+1 binding

 

-alena



On May 29, 2021, at 8:59 AM, Sarah Allen <sarah@...> wrote:

 

Dear Technical Oversight Committee,

On June 3, 2021, the term for two of the three current Security TAG co-chairs, Sarah Allen (@ultrasaurus) and Jeyappragash JJ (@pragashj) comes to an end. 

 

The TOC election process requires nomination from TOC and then vote.  We have also followed the Security TAG governance process for proposing candidates, since we have clear successors who are already working within the group. The candidates below have unanimous support from our TOC liaisons, as well as the three current co-chairs.

 

We believe that Aradhna Chetal and Brandon Lum, along with current chair Emily Fox, will enable “full coverage of the leadership capabilities across the key qualities of industry experience, hands-on cloud-native and security experience, as well as administrative experience needed to run a Security TAG.”  While both currently serve as Tech Leads for the group (as did Emily before she became chair), we do not consider that a prerequisite for the chair position.

 

Senior Director Exec, Cloud Security, TIAA

Research Fellow Cloud Security Alliance 

TAG Contributions

  • Tech Lead, Meeting Facilitator
  • Active in Policy team subgroup
  • Initiated serverless security whitepaper - Issue#546

External community involvement 

Active member of Cloud Security Alliance (CSA),  has been an advisor to the board - CSA Seattle Chapter,  CSA and NIST Cloud computing workgroups, has influenced best practices & standards for cloud, containers, serverless & microservices security

 

container security, IBM Research 

TAG Contributions

  • Tech Lead, Meeting Facilitator 
  • Repo Triage and Issue Management
  • Process Improvements & governance 
  • Leading Cloud Native Security Map/Landscape - Issue#348
  • Security Reviews - process improvements and initial assessments PR#247
  • Organized in-person meetup DockerCon, May 2019 issue#151

External community involvement 

SPIFFE/SPIRE community & contributing to SPIFFE book

 

Please reply to this email to vote.  As always, the CNCF encourages non-binding votes from the community, along with the required votes of TOC members.

 

Thank you,

Sarah, in collaboration with other Security TAG co-chairs (Emily and JJ) and TOC Liaisons Liz Rice & Justin Cormack



 


Santiago Torres Arias <santiago@...>
 

+1 nb

On Tue, Jun 01, 2021 at 01:56:23PM +0100, Liz Rice wrote:
+1 binding

Thanks Aradhna & Brandon for stepping up to volunteer for these roles, and
a massive thank you to Sarah & JJ for everything you have done for SAFE ->
SIG Security -> TAG Security over the last few years, you’ve really made an
impact!

Liz

On Tue, 1 Jun 2021 at 13:16, Dave Zolotusky via lists.cncf.io <dzolo=
spotify.com@lists.cncf.io> wrote:

+1 binding

On Tue, Jun 1, 2021 at 1:03 PM Justin Cormack via lists.cncf.io
<justin.cormack=docker.com@lists.cncf.io> wrote:

+1 (binding)

Justin


On Sat, May 29, 2021 at 5:00 PM Sarah Allen <sarah@ultrasaurus.com>
wrote:

Dear Technical Oversight Committee,

On June 3, 2021, the term
<https://github.com/cncf/tag-security#stag-chairs> for two of the three
current Security TAG co-chairs, Sarah Allen (@ultrasaurus
<https://github.com/ultrasaurus>) and Jeyappragash JJ (@pragashj
<https://github.com/pragashj>) comes to an end.

The TOC election process
<https://github.com/cncf/toc/blob/main/tags/cncf-tags.md#elections>
requires nomination from TOC and then ⅔ vote. We have also followed the
Security TAG governance process for proposing candidates, since
<https://github.com/cncf/tag-security/blob/main/governance/chair-proposal-process.md>we
have clear successors who are already working within the group.
<https://github.com/cncf/tag-security/blob/main/governance/chair-proposal-process.md>The
candidates below have unanimous support from our TOC liaisons, as well as
the three current co-chairs.

We believe that Aradhna Chetal and Brandon Lum, along with current chair
Emily Fox, will enable “full coverage of the leadership capabilities across
the key qualities of industry experience, hands-on cloud-native and
security experience, as well as administrative experience needed to run a
Security TAG.” While both currently serve as Tech Leads for the group (as
did Emily before she became chair), we do not consider that a prerequisite
for the chair position.

Aradhna Chetal <https://www.linkedin.com/in/achetal/>

Senior Director Exec, Cloud Security, TIAA
<https://www.tiaa.org/public/>

Research Fellow Cloud Security Alliance
<https://cloudsecurityalliance.org/>

TAG Contributions

-

Tech Lead, Meeting Facilitator
-

Active in Policy team subgroup
-

Initiated serverless security whitepaper - Issue#546
<https://github.com/cncf/tag-security/issues/546>
-

Cloud Native Securty Whitepaper
<https://github.com/cncf/sig-security/tree/master/security-whitepaper>
- refined scope, created first draft and worked on reviews and completion

External community involvement

Active member of Cloud Security Alliance (CSA), has been an advisor to
the board - CSA Seattle Chapter, CSA and NIST Cloud computing workgroups,
has influenced best practices & standards for cloud, containers, serverless
& microservices security


Brandon Lum <https://www.linkedin.com/in/brandon-lum-a7b79418/>

container security, IBM Research <https://www.research.ibm.com/>

TAG Contributions

-

Tech Lead, Meeting Facilitator
-

Repo Triage and Issue Management
-

Process Improvements & governance
-

Leading Cloud Native Security Map/Landscape - Issue#348
<https://github.com/cncf/tag-security/issues/348>
-

Security Reviews - process improvements and initial assessments
PR#247 <https://github.com/cncf/sig-security/pull/247>
-

Presented SIG-Security session China June 2019
<https://docs.google.com/presentation/d/10HAh_gSrtrRyYCihwPXQVBWl2gY0mfSLARJcH-bRG40/edit>,
San Diego Nov 2019
<https://docs.google.com/presentation/d/1nRu1sDpiJSmezm2e0jrqFren390g5ZrJ8xOccpV1v_E/edit#slide=id.g78de085551_2_2>
-

Organized in-person meetup DockerCon, May 2019 issue#151
<https://github.com/cncf/sig-security/issues/151>

External community involvement

SPIFFE/SPIRE community <https://spiffe-spire-june21.splashthat.com/> &
contributing to SPIFFE book <https://spiffe.io/book/>


Please reply to this email to vote. As always, the CNCF encourages
non-binding votes from the community, along with the required votes of TOC
members.

Thank you,

Sarah, in collaboration with other Security TAG co-chairs (Emily and
JJ) and TOC Liaisons Liz Rice & Justin Cormack

--
~Dave






Davanum Srinivas
 

+1 Binding

On Sat, May 29, 2021 at 12:00 PM Sarah Allen <sarah@...> wrote:

Dear Technical Oversight Committee,

On June 3, 2021, the term for two of the three current Security TAG co-chairs, Sarah Allen (@ultrasaurus) and Jeyappragash JJ (@pragashj) comes to an end. 


The TOC election process requires nomination from TOC and then ⅔ vote.  We have also followed the Security TAG governance process for proposing candidates, since we have clear successors who are already working within the group. The candidates below have unanimous support from our TOC liaisons, as well as the three current co-chairs.


We believe that Aradhna Chetal and Brandon Lum, along with current chair Emily Fox, will enable “full coverage of the leadership capabilities across the key qualities of industry experience, hands-on cloud-native and security experience, as well as administrative experience needed to run a Security TAG.”  While both currently serve as Tech Leads for the group (as did Emily before she became chair), we do not consider that a prerequisite for the chair position.


Aradhna Chetal 

Senior Director Exec, Cloud Security, TIAA

Research Fellow Cloud Security Alliance 

TAG Contributions

  • Tech Lead, Meeting Facilitator

  • Active in Policy team subgroup

  • Initiated serverless security whitepaper - Issue#546

  • Cloud Native Securty Whitepaper - refined scope, created first draft and worked on reviews and completion

External community involvement 

Active member of Cloud Security Alliance (CSA),  has been an advisor to the board - CSA Seattle Chapter,  CSA and NIST Cloud computing workgroups, has influenced best practices & standards for cloud, containers, serverless & microservices security



Brandon Lum

container security, IBM Research 

TAG Contributions

  • Tech Lead, Meeting Facilitator 

  • Repo Triage and Issue Management

  • Process Improvements & governance 

  • Leading Cloud Native Security Map/Landscape - Issue#348

  • Security Reviews - process improvements and initial assessments PR#247

  • Presented SIG-Security session China June 2019, San Diego Nov 2019

  • Organized in-person meetup DockerCon, May 2019 issue#151

External community involvement 

SPIFFE/SPIRE community & contributing to SPIFFE book



Please reply to this email to vote.  As always, the CNCF encourages non-binding votes from the community, along with the required votes of TOC members.


Thank you,

Sarah, in collaboration with other Security TAG co-chairs (Emily and JJ) and TOC Liaisons Liz Rice & Justin Cormack




--
Davanum Srinivas :: https://twitter.com/dims


Ricardo Rocha
 

+1 binding

On Tue, Jun 01, 2021 at 04:51:45PM +0000, Sheng Liang via lists.cncf.io wrote:
+1 binding

From: cncf-toc@lists.cncf.io <cncf-toc@lists.cncf.io> On Behalf Of Alena Prokharchyk via lists.cncf.io
Sent: Tuesday, June 1, 2021 9:36 AM
To: Sarah Allen <sarah@ultrasaurus.com>
Cc: CNCF TOC <cncf-toc@lists.cncf.io>
Subject: Re: [cncf-toc] Security TAG co-chair nominations

+1 binding

-alena


On May 29, 2021, at 8:59 AM, Sarah Allen <sarah@ultrasaurus.com<mailto:sarah@ultrasaurus.com>> wrote:

Dear Technical Oversight Committee,
On June 3, 2021, the term<https://github.com/cncf/tag-security#stag-chairs> for two of the three current Security TAG co-chairs, Sarah Allen (@ultrasaurus<https://github.com/ultrasaurus>) and Jeyappragash JJ (@pragashj<https://github.com/pragashj>) comes to an end.

The TOC election process<https://github.com/cncf/toc/blob/main/tags/cncf-tags.md#elections> requires nomination from TOC and then ⅔ vote. We have also followed the Security TAG governance process for proposing candidates, since <https://github.com/cncf/tag-security/blob/main/governance/chair-proposal-process.md> we have clear successors who are already working within the group. <https://github.com/cncf/tag-security/blob/main/governance/chair-proposal-process.md> The candidates below have unanimous support from our TOC liaisons, as well as the three current co-chairs.

We believe that Aradhna Chetal and Brandon Lum, along with current chair Emily Fox, will enable “full coverage of the leadership capabilities across the key qualities of industry experience, hands-on cloud-native and security experience, as well as administrative experience needed to run a Security TAG.” While both currently serve as Tech Leads for the group (as did Emily before she became chair), we do not consider that a prerequisite for the chair position.

Aradhna Chetal<https://www.linkedin.com/in/achetal/>
Senior Director Exec, Cloud Security, TIAA<https://www.tiaa.org/public/>
Research Fellow Cloud Security Alliance<https://cloudsecurityalliance.org/>
TAG Contributions

* Tech Lead, Meeting Facilitator

* Active in Policy team subgroup

* Initiated serverless security whitepaper - Issue#546<https://github.com/cncf/tag-security/issues/546>

* Cloud Native Securty Whitepaper<https://github.com/cncf/sig-security/tree/master/security-whitepaper> - refined scope, created first draft and worked on reviews and completion
External community involvement
Active member of Cloud Security Alliance (CSA), has been an advisor to the board - CSA Seattle Chapter, CSA and NIST Cloud computing workgroups, has influenced best practices & standards for cloud, containers, serverless & microservices security

Brandon Lum<https://www.linkedin.com/in/brandon-lum-a7b79418/>
container security, IBM Research<https://www.research.ibm.com/>
TAG Contributions

* Tech Lead, Meeting Facilitator

* Repo Triage and Issue Management

* Process Improvements & governance

* Leading Cloud Native Security Map/Landscape - Issue#348<https://github.com/cncf/tag-security/issues/348>

* Security Reviews - process improvements and initial assessments PR#247<https://github.com/cncf/sig-security/pull/247>

* Presented SIG-Security session China June 2019<https://docs.google.com/presentation/d/10HAh_gSrtrRyYCihwPXQVBWl2gY0mfSLARJcH-bRG40/edit>, San Diego Nov 2019<https://docs.google.com/presentation/d/1nRu1sDpiJSmezm2e0jrqFren390g5ZrJ8xOccpV1v_E/edit#slide=id.g78de085551_2_2>

* Organized in-person meetup DockerCon, May 2019 issue#151<https://github.com/cncf/sig-security/issues/151>
External community involvement
SPIFFE/SPIRE community<https://spiffe-spire-june21.splashthat.com/> & contributing to SPIFFE book<https://spiffe.io/book/>

Please reply to this email to vote. As always, the CNCF encourages non-binding votes from the community, along with the required votes of TOC members.

Thank you,
Sarah, in collaboration with other Security TAG co-chairs (Emily and JJ) and TOC Liaisons Liz Rice & Justin Cormack