Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Multi-Cloud Security Public Working Group MCSPWG



Credits: Ned Goren


IT Specialist



Ned Goren is a security researcher and a member of the Secure System and Applications Group at NIST. Prior to joining NIST, he served as a control assessor and an Information Systems Security Officer (ISSO) at the U.S. Census Bureau. Ned also served as a control assessor and an ISSO at NIST. 

Photo Brian Ruf

Credits: Brian Ruf


Director of Cybersecurity

Easy Dynamics

Mr. Brian Ruf contributed substantially to NIST’s planning and creation of OSCAL, ensuring its ability to expedite FedRAMP and FISMA workflows. Brian began his 30-year IT career as a programmer and network engineer for the FAA. In the late 90’s he was part of a core team applying cyber security to a (then) next-generation air traffic control system. Since 2000, he has led efforts for government agencies, pharmaceutical companies, telecommunication providers, and financial institutions on topics involving risk management, cyber security, system development lifecycle methodologies, and business process re-engineering.

Brian joined the FedRAMP PMO in July 2015, where he was instrumental in the success of FedRAMP Accelerated and related improvements. Brian now leads Easy Dynamic’s OSCAL-enabled compliance automation efforts.



Credits: Joyce Hunter


Executive Director 

Institute for Critical

Infrastructure Technology 

Joyce Hunter is a strategic-doer and a philanthropreneur. She was appointed by President Barack Obama to the position of Deputy Chief Information Officer for Policy and Planning at the Department of Agriculture (2013-2017) and was the Acting Chief Information Officer from March 2016 to July 2016. In addition to policy and technology planning, Ms. Hunter is the creator of the Data Science Agriculture, Athletic and Energy summer camps for underserved, underrepresented and underestimated youth, which has completed its 8thth year of operation. Ms. Hunter is currently the Executive Director of the Institute for Critical Infrastructure Technology (ICIT), a non-profit Think Tank, providing objective, nonpartisan research, advisory, and education to legislative, commercial, and public-sector cybersecurity, national security and critical infrastructure stakeholders. Ms. Hunter earned a BA from Villanova University and an MBA in Marketing from the University of Pennsylvania, Wharton School of Business. Ms. Hunter is on the Dean’s Advisory Council for Villanova University, Bowie State University, and many industry advisory boards. She is also published in The Handbook of Federal Government Leadership and Administration: Transforming, Performing and Innovating in a Complex World (Routledge 2017) and the recent ICIT publication “Securing the Nation’s Critical Infrastructures: A Guide for the 2021 – 2025 Administration” (CRC Press 2022).


Credits: Chris Carpenter


Infrastructure Engineer

VCF Compliance Engineering





Chris Carpenter is a FedRAMP compliance specialist at Broadcom where he brings over 10 years of experience in US Federal compliance. Formerly with VMware, he has managed the FedRAMP High P-ATO for VMware Cloud on AWS GovCloud and the VMware Government Services common services for the last four years.

Originally from West Virginia, Chris graduated with a bachelor's degree in Computer Science from West Virginia University in 2011 and began his career with ManTech as a contractor at the FBI's Criminal Justice information Services division in Bridgeport, WV. Following a move to Fairfax, VA, he led a team with Oasis Systems conducting internal FISMA audits of the DHS Office of Inspector General.




Created October 12, 2021, Updated March 15, 2024