Thomas F. Duffy

Executive Director

Multi-State ISAC

Mr. Duffy is the Executive Director of the Multi-State Information Sharing and Analysis Center (MS-ISAC) division of the Center for Internet Security. As Executive Director, he is responsible for managing all aspects of the MS-ISAC, which is the focal point for cyber threat prevention, protection, response and recovery for the nation's state, local, territorial and tribal (SLTT) governments. He provides leadership in developing program, organizational and financial strategies for the MS-ISAC; overseeing the expansion of MS-ISAC membership and services; and managing the operation of the MS-ISAC's 24-hour cyber security watch and warning operations center, which provides real-time network monitoring, early cyber threat warnings and advisories, vulnerability identification and mitigation and incident response. Mr. Duffy interacts frequently with the U.S. Department of Homeland Security's National Cyber Security Division, which has designated the MS-ISAC as the ISAC for all SLTT governments and has identified the MS-ISAC as a key stakeholder in the National Cyber Incident Response Plan. Mr. Duffy reports to the CIS President and CEO.

Prior to joining CIS, Mr. Duffy served as the Deputy Director of the NYS Office of Cyber Security and Critical Infrastructure Coordination. In this role, he oversaw the day-to-day operations of the Office, which included coordinating the State's cyber security strategies, policy development, monitoring the State's networks, researching threats, vulnerabilities and exploits and issuing cyber alert advisories to the government and private sector entities in New York.