2019 - 2020 Chapter Officers
Leighton Johnson, CISA, CISM, CRISC, COBIT 5 (F)
Leighton is the CTO of ISFMT (Information Security Forensics Management Team), a provider of computer security & forensics consulting and certification training, and has presented computer security, cyber security and forensics lectures, conference presentations and seminars all across the United States, Asia and Europe. He is also the founder and CEO of Chimera Security, a research and development company delving into the realms of cryptography, Blockchain, mobile technology and cloud computing to create better and more secure solutions for today’s advanced users and providers. He has over 40 years’ experience in Computer Security, Cyber Security, Software Development and Communications Equipment Operations & Maintenance spanning the industries of retail, government, defense industrial base, banking, and information technology. He retains many professional security certifications, including CISA, CISM, COBIT 5 and CRISC and has taught certification, risk management, forensics and auditing courses all around the world over the past 15 years. He performs additional duties as the SCISACA Chapter Instructor and he recently was awarded the HQ ISACA Accredited Trainer status by ISACA and APMG.
Brian Kelley is an author, columnist, Certified Information Systems Auditor (CISA), and former Microsoft SQL Server MVP (2009-2016) focusing primarily on SQL Server and Windows security. Brian currently serves as an infrastructure and security architect concentrating on Active Directory, SQL Server, and Windows Server. He has served in a myriad of other positions including senior database administrator, data warehouse architect, web developer, incident response team lead and project manager. Brian has spoken at 24 Hours of PASS, SQL Connections, The TechnoSecurity and Digital Forensics Conference, the IT GRC Forum, SyntaxCon, and at various SQL Saturdays, Code Camps and user groups.
Vanessa McCutchen, CPA, CISA, CAMS
Vanessa McCutchen is an IT Audit Supervisor for a local financial institution. She has audited in the banking industry for the past 13 years, specializing in IT Audit, Operations, and Compliance audits. Vanessa has a Bachelor of Science degree in Business Administration and a Master of Accountancy from the University of South Carolina. Vanessa is a member of the American Institute of Certified Public Accountants (AICPA), the Information Systems Audit & Control Association (ISACA), and the Association of Certified Anti-Money Laundering Specialists (ACAMS).
Tom Hart, CISA
Tom has over 25 years experience in the Information Technology field. He held various software developer positions while supporting Sales & Marketing, Advertising, and Sales Promotions applications at GM/EDS prior to transitioning to the audit world in 2001. In 2008, Tom moved from Michigan to South Carolina where he currently works as a Senior Quality Assurance Analyst for BlueCross BlueShield of SC. He earned a Bachelor of Science degree in Computer Information Systems from Ferris State University and is a Certified Information Systems Auditor. Tom and his wife Lisa reside in Elgin.
Nicol has over 20+ years in Operations and the Information Technology field. Her background includes Procurement, Crisis Management, Governance, Risk and Compliance. In 2018, Nicol moved to South Carolina from Atlanta, Georgia where she worked for the Georgia Technology Authority in the Office of the State Chief Information Security Officer. She currently works as the Chief Information Security Officer for the South Carolina Department of Probation, Parole and Pardon Services. Nicol is graduate of the University of Georgia and Valdosta State University..
Tom Scott, PMP, CISA, CRISC, CISSP
Thomas Scott (Tom) is the CEO/Founder of New Century Solutions LLC (NCS), leading its NCS Cyber Division. As the inaugural Director of the SC Cyber Consortium, he has been a key leader in the cyber education, cyber workforce development, and cyber protection efforts in both South Carolina and across the nation. He currently serves as the founding director of the South Carolina Cyber Foundation and Association. Tom is a member of the FBI's Infragard program and serves as an adviosry member fo the Dutch Fork High School Cyber program. He has actively participated as a member of the MS-ISAC's Executive Committee as well as the SC Bar Technology Committee and the USC School of Law Cybersecurity Task Force. He was recently selected to serve as President of the SC Midlands Chapter of ISACA. Tom recently was asked to join the Industry Advisory Board for the USC Integrated UT program the the ECPI University's Computer Security program and the Charleston Southern University's Computer Science program. He also serves as the Board Chair for the Odyssey Online Charter School.
Kareem Briggs, C|CISO, CISA, CRISC, CSIM
Kareem currently works as a Chief Information Security & Privacy Officer for a local State agency . He has over 15 years of Information Technology experience where he has had roles in audit, information assurance, data security administration, network support, desktop support and helpdesk support. Kareem possesses a Bachelor's Degree in Information Management from the University of South Carolina and a Master's Degree in Computer Resources and Information Management from Webster University where he focused on Information Security. Kareem has been the webmaster for the SC Midlands Chapter since 2008.
Education Director & Social Media
Audra is an Information Systems Auditor, Certified Ethical Hacker (CEH), and CompTIA Security+ certified. Audra has over 25 years of experience in Information Technology. Her background includes Systems Support Administration, application and server deployment, automation, scripting, Desktop Support, Computer Operation, Software Development, Configuration Management, and Cybersecurity Risk Management. Audra earned her Bachelor of Science degree in Computer Information Systems and Business from Excelsior College of New York State University and a Master’s Degree in Information System with a concentration in Software Engineer Management from Strayer University of Newington, Virginia. Audra has served SC Midlands Chapter of ISACA as the Research Director and now the Social Media and Education Director.
Sue has 17+ years of experience in IT auditing with the OIG USDA & her current position with BlueCross BlueShield of South Carolina. Her experience includes conducting audits over mainframe, UNIX/Linux & Windows operating systems configuration and security; EDI Gateway, VMware Hypervisor; Application and Cybersecurity Security; General and Application Control Audits and Disaster Recovery Audits. Sue has a Masters in Accounting & Finance and a Masters in Information Systems Management from Keller Graduate School of Management of DeVry University. She holds the CISA, CISSP, CRISC, CIA and CFE certifications and recently obtained the COBIT 5 Foundations course certificate and is an accredited CISA Instructor for ISACA. Sue has served as president and education director for the SC Midlands Chapter of ISACA and is a member of the Techno Security & Digital Forensics Conference Advisory Board to assist in the planning of the audit and security education tracks.
Harriet Simpson, CPA/CITP, CISA, CRISC, CTGA, CFE
Harriet has over thirty years of experience in public accounting, providing auditing, data processing services, IT auditing and compliance reviews primarily to financial institution clients. She is the primary owner of Simpson & Associates, LLC public accounting firm. She has a Bachelor of Science degree in Computer Science and a Master of Accountancy from the University of South Carolina. Harriet is a member of the American Institute of Certified Public Accountants (AICPA), the South Carolina Association of Certified Public Accountants (SCACPA), the Information Systems Audit & Control Association ISACA), and the Association of Certified Fraud Examiners (ACFE). She and her husband, Ted, reside in Columbia.
Keith Sarto, PMP
Keith is serving as the CSX (Cybersecurity Nexus) Liaison. In that role, Keith acts as ISACA International’s primary point of contact in our chapter for cybersecurity-related communications topics and deliverables. Keith currently works as Enterprise Project Manager for the SC Division of Information Security (DIS) as a contractor for TM Floyd and Company. Keith has five years of Information Security experience at DIS where he has lead project management role in deploying a variety of InfoSec technologies and services across multiple agencies. He helps organize Cyber Security Awareness Symposiums and Information Security training for State Agencies. Keith was DIS lead in transition to a Managed Security Services Provider model, along with SIEM consolidation and network monitoring expansion. Prior to DIS, he was Chief of Support Services for SC Legislative Services. Prior to State Government, Keith was with NCR Corporation for 27 years. Keith possesses a Master’s Certificate in Project Management from George Washington University and a Master's Degree in Organizational Training and Development from Wright State University. Keith and his wife, Diana, are captains of USTA Tennis teams and reside in Columbia. They also own a condominium in Santa Marta, Colombia, South America, Diana’s home country, where Keith holds permanent residency. In his past chapter role as Professional Services Advocate, Keith presented Lessons Learned in InfoSec and introducing ISACA to other professional associations. PMI Keith is a frequent speaker at PMI Chapter meetings and has presented at an International PMI Conference in Cartagena, Colombia. Keith welcomes the opportunity to speak to your professional association or educational organization about ISACA CSX.
Caroline Overcash, Esq.
Caroline is the Director of Internal Audit and Compliance at Winthrop University. Caroline has over two decades of experience in information security and privacy protection from her private law practice. She moved that experience to performance auditing at the SC Legislative Audit Council and reviewing cases of fraud, waste, and abuse at the State Inspector General’s Office before moving into a hybrid role of audit and general counsel at Winthrop. Caroline received her BA, MPA, and JD from the University of South Carolina and holds certifications in information auditing, and public management. Caroline is a member of the FBI’s Infragard program and serves on the board of the SC Society for Certified Public Managers. Caroline has served Midlands ISACA as the Certification Director and now as the Academic Advocate.
Melissa is a security analyst at SCANA.
Young Professionals Ambassador
Ross is an IT professional at the South Carolina Department of Consumer Affairs.