Diana Burley

Diana Burley
Professor, Human & Organizational Learning
(202) 994-5835

2100 Pennsylvania Ave NW, Suite 310
Washington, DC 20037

Diana L. Burley, Ph.D., is executive director and chair of the Institute for Information Infrastructure Protection (I3P) and full professor of human & organizational learning at The George Washington University (GW). Named one of SC Magazine’s Eight Women in IT Security to Watch in 2017 and the 2017 SC Magazine ReBoot awardee for educational leadership in IT security, Dr. Burley is a global cybersecurity expert who regularly advises enterprises on strengthening their cybersecurity posture, managing cybersecurity risk, assessing human factors in the threat environment, and developing a robust cybersecurity workforce. She has testified before Congress and in 2018 the global task force she led on behalf of the world’s leading computing societies published the first set of global cybersecurity curricular guidelines for post-secondary academic institutions. These guidelines, endorsed by the ACM, IEEE-Computer Society, AIS, and IFIP, form the foundation for the first cybersecurity degree accreditation program offered by the Accreditation Board for Engineering and Technology (ABET). She is a member of the US National Academies Board on Human-Systems Integration. Prior to GW, Dr. Burley led the CyberCorps program and managed a multi-million-dollar computer science education and research portfolio for the US National Science Foundation. Dr. Burley has written nearly 80 publications on cybersecurity, information sharing, and IT-enabled change; including her 2014 co-authored book “Enterprise Software Security: A Confluence of Disciplines.” She has secured approximately $7 million in sponsored research support. Her honors include: 2016 Woman of Influence-Public Sector/Academia by the Executive Women’s Forum in Information Security, Risk Management and Privacy; the 2014 Cybersecurity Educator of the Year; and a 2014 Top Ten Influencer in information security careers. She is the sole recipient of both educator of the year and government leader of the year awards from the Colloquium for Information Systems Security Education, has been honored by the U.S. Federal CIO Council for her work on developing the federal cyber security workforce, and served two appointments on the Cyber Security Advisory Committee of the Commonwealth of Virginia General Assembly Joint Commission on Technology & Science. She holds a BA in Economics from the Catholic University of America; M.S. in Public Management and Policy, M.S. in Organization Science, and Ph.D. in Organization Science and Information Technology from Carnegie Mellon University where she studied as a Woodrow Wilson Foundation Fellow.

Education
Ph.D., Organization Science and Information Technology, Carnegie Mellon University
M.S., Organization Science, Carnegie Mellon University
M.S., Public Management and Policy, Carnegie Mellon University
B.A., Economics, The Catholic University of America

Publications

Burley, D and A. Lewis. (Forthcoming 2019). “CSEC2017 and Boeing: Linking Curricular Guidance to Professional Practice.” Computer. IEEE Computer Society.
2.

ACM Joint Task Force. (February 2018). Cybersecurity Curricula 2017: Curriculum Guidelines for Post-Secondary Degree Programs in Cybersecurity. v. 1.0. A Report in the Computing Curricula Series

Burley, Diana L. (2018). "Managing Cybersecurity Risks in the Age of 'Smart' Everything" in the Information Systems Security Association International (ISSA) Journal (Vol16: Issue 2).

Burley, D. et al. (2018). “Special Session: ACM Joint Task Force on Cybersecurity Education.” In Proceedings of SIGCSE ’18 The 49th ACM Technical Symposium on Computer Science Education. ACM. New York.

Bishop, M., Burley, D. and Futcher, L. (2018). “Cybersecurity Curricular Guidelines” in Cybersecurity Education for Awareness and Compliance. S. Furnell and I. Vasileiou (Eds.)

Burley, D. (September 2017). Securing the Mosaic: Strategies for Strengthening Enterprise Security on Commpro.com.

U.S. House of Representatives Committee on Science, Space and Technology, Subcommittee on Research and Technology (115th Congress) Hearing on Strengthening U.S. Cybersecurity Capabilities. February 14, 2017

Burley, D. (July 2016). Retaining the cybersecurity workforce: Focus on knowledge as well as people. The Nexus, ISACA. http://www.isaca.org/cyber/cyber-security-articles/Pages/retaining-the-c...

Burley, D., J. Eisenberg, and S. Goodman. (February 2014). “Would cyber security professionalization help address the cyber security crisis?” Communications of the ACM, 57, 2, 24-25. http://cacm.acm.org/magazines/2014/2/171681-would-cybersecurity-professi...

van Wyk, K., Graff, M., Peters, D., and Burley, D. (2014). Enterprise Software Security: A Confluence of Disciplines. Addison Wesley. http://www.informit.com/store/enterprise-software-security-a-confluence-...

Brown, S., Denis, A., Burley, D., & Arling, P. (2013). Knowledge sharing and knowledge management system avoidance: The role of knowledge type and the social network in bypassing an organizational knowledge management system. Journal of the American Society for Information Science and Technology, 64(10).

National Research Council (Co-chairs: Diana L. Burley, Seymour E. Goodman). (2013). Professionalizing the nation's cybersecurity workforce? Criteria for decision-making. Washington, DC: The National Academies Press.

Ford, V., Swayze, S., & Burley, D. (2013). An exploratory investigation of the relationship between disengagement, exhaustion, and turnover intention among IT professions employed at a university. Information Resources Management Journal, 26(3).

Hoffman, L., Burley, D., & Toregas, C. (2012). Holistically building the cybersecurity workforce. IEEE Security and Privacy, 10(2).

Burley, D., Gnam, C., Newman, R., Straker, H., & Babies, T. (2012). Leveraging higher education consortia for institutional advancement. International Journal of Education Management.

Burley, D., & Bishop. M. (2011). Final Report: Summit of Education in Secure Software. Sponsored by the National Science Foundation.

Burley, D. (2011). Recruiting, educating, and retaining cyber security professionals in the federal workforce: Lessons learned but not yet applied. The George Washington University Cyber Security Policy and Research Institute.

Burley, D. (2010). Information visualization as a knowledge integration tool. Journal of Knowledge Management Practice, 11(4).

Burley, D. (2010). Penguin life: An ethnographic study of emergent social behavior inside Club Penguin. Journal of Virtual Worlds Research, 3(2).

Burley, D. (2009). Negotiation and consensus building in synthetic worlds, in working through synthetic worlds. C. Smith, W. Kisiel, Jeffrey G. Morrison (Eds.). London: Ashgate.

Presentations

The National Academies of Sciences, Engineering, and Medicine Board on Human-System Integration. “Building Resistance in Cyber-Enabled Systems for Critical Infrastructure.” November 2018. Washington, DC.

SINET Toronto. “How Can We Stay Ahead of the Threat and Attack Curve?” October 2018.

National Conference on the First Amendment. “New Technology and Social Media: Good or Bad for Free Speech.” October 2018. Pittsburgh, PA

Journal of Law and Cyber Warfare (JLCW) 5th Annual Cyber Warfare Symposium. “Addressing Cybersecurity with the Board.” October 2018. New York, NY

EC Council Global CISO Forum. “Addressing the Global Cybersecurity Workforce Shortage,” September 2018. Atlanta, GA.

Norwegian Cyber Symposium. “Cybersecurity curricular guidelines: Closing the cybersecurity workforce gap.” June 2018. Oslo, Norway.

Podcast: Trailblazers - Discover the Golden Triad of Cybersecurity. Episode #95. November 2017.

CyberMaryland [October 2016, Baltimore, MD] – https://www.fbcinc.com/e/cybermdconference/

CyCon US: International Conference on Cyber Conflict [October 2016, Washington, DC] – http://aci.cvent.com/events/cycon-u-s-2016-conference-on-cyber-conflict/...

CYBERSEC EU [September 2016, Krakow, Poland] – http://cybersecforum.eu/en/

Blouin Creative Leadership Summit [September 2016, New York, NY] – http://www.creativeleadershipsummit.org

National Cyber Summit [June 2016, Huntsville, AL] – http://www.nationalcybersummit.com

MITRE Corporation Cyber Solutions and Cyber Operations Distinguished Speaker Series. “Human Zero Days.” March 2018. McLean, VA.

Burley, D., I. Guzman, G. Pandit. [2010]. Will they stay? Turnover intentions of future federal cyber corps members. Proceedings of the 2010 ACM SIGMIS Computing Personnel Research Conference.

In the News

Dr. Diana Burley led two sessions at the US Department of Treasury for the joint Financial and Banking Information Infrastructure Committee (FBIIC) and Financial Services Sector Coordinating Council for Critical Infrastructure Protection and Homeland Security (FSSCC) meeting. She moderated a discussion about Operational Resilience and led a session on cybersecurity workforce development. In addition, Dr. Burley spoke at the International Test and Evaluation Association (ITEA) Cybersecurity Workshop on cybersecurity workforce development.

Dr. Diana Burley was quoted in the Associated Press' "6 things small businesses can do to improve cybersecurity," which ran in the San Francisco Chronicle, the Minneapolis Star Tribune, the Washington Post, and the Borneo Bulletin. She was also quoted in the Associated Press' article "Vulnerable to attack: Businesses should boost cyber defenses," which was picked up by the Miami Herald and the Claims Journal as well.

Dr. Diana Burley, is a featured curriculum author as part of the National Security Agency's National Cybersecurity Curriculum Program. In the 2017 fiscal year, NSA awarded 54 grants to universities to build courses and modules in high need cybersecurity areas. All curriculum has undergone a strenuous multi-faceted review before being released on www.clark.center. Curriculum developed by Dr. Burley is one of the first to be released nationally in this unique and transformative effort as the NSA works to secure our nation by strengthening the cyber workforce.

Dr. Diana Burley, along with two other GW faculty members (Dr. Shelly Heller-SEAS and Dr. Saniya LeBlanc-SEAS), has been selected as a finalist for the 20th Annual Women in Technology Leadership Awards. The Annual Leadership Awards program identifies, recognizes, and celebrates women working in the greater Washington, DC region who have exemplified unique vision, leadership and profound success in the technology industry. Women in Technology will announce the winners at the Leadership Awards Banquet on May 9, 2019.