Mischel Kwon

Mischel Kwon
Mischel Kwon, MKACyber
Nationality	American
Education	B.S. in Computer science – University of Maryland Global Campus M.S. in Computer Science – Marymount University
Occupation(s)	Cybersecurity executive, public official, computer scientist
Years active	1980s–present
Employer(s)	MKACyber (Founder & CEO); formerly U.S. Department of Justice, DHS
Known for	Founding MKACyber; directing US-CERT; building the Joint Security Operations Center (JSOC)
Awards	Federal 100 Award Full list

Mischel Kwon is an American computer security expert and former director of the United States Computer Emergency Readiness Team (US-CERT) at the Department of Homeland Security. She is the founder and CEO of MKACyber, a cybersecurity operations company, and previously served as Deputy Chief Information Security Officer (CISO) for the Department of Justice. ^[1] Kwon is known for her expertise in building and maturing Security Operations Centers (SOCs), threat detection, and incident response.

Career

Kwon began her federal cybersecurity career in the early 2000s at the U.S. Department of Justice (DOJ), where she became Deputy CISO and built the department's first centralized incident response and monitoring facility, the Justice Security Operations Center (JSOC). ^[2]

In 2008, she was appointed Director of US-CERT, ^[3] the federal agency tasked with monitoring and responding to cyber threats. During her tenure, she led efforts to modernize the federal incident response infrastructure and respond to a growing wave of advanced persistent threats (APTs). ^[4]

In 2010, she founded MKACyber, a cybersecurity consulting firm specializing in managed security operations centers and cyber threat intelligence. The company is recognized for developing the "W@tchtower SOC Methodology" and providing services to Fortune 500 companies and government clients. ^{[5] [4]}

Policy and legislative impact

During her tenure as Director of US-CERT, Kwon was involved in shaping national discussions on the federal government's cybersecurity posture. She was often cited in coverage concerning the effectiveness and structure of federal cybersecurity leadership. In a 2009 article, she commented on the challenges the federal government faced amid leadership vacancies in key cybersecurity roles, highlighting the need for cohesive direction and incident response coordination. ^[6]

Kwon has also addressed the implications of executive orders and federal cybersecurity legislation. She has spoken about the importance of improved threat intelligence sharing between the government and private sector, as outlined in various policy proposals. In an interview with BankInfoSecurity, she advocated for using cyber incidents as a catalyst to educate senior leadership and influence federal investment strategies in Cybersecurity infrastructure. ^[7]

Her insights have informed both public and private sector approaches to strategic risk management and have been influential in forums such as the RSA Conference and other policy-focused cybersecurity events.

Awards and honors

In 2017, Kwon was named one of the Top Women in Cybersecurity by CyberScoop for her work in government cybersecurity initiatives. ^[2]

That same year, she received the Cybersecurity Professional of the Year award from the Cybersecurity Excellence Awards. ^[4]

In 2018, she was inducted into the CyberCorps Scholarship for Service Hall of Fame, which recognizes contributions to the development of the federal cybersecurity workforce. ^[8]

She is also a recipient of the Federal 100 Award, which highlights individuals for their impact on federal information technology. ^[9]

Board memberships and advocacy

Kwon serves on the Western Governors University (WGU) Information Technology Program Council, which advises the university on curriculum development to align academic programs with current industry standards in cybersecurity and information technology. ^[10]

Kwon is the founder of the Cybersecurity Diversity Foundation, a nonprofit focused on increasing the representation of women and minorities in the cybersecurity workforce through mentoring, scholarships, and awareness campaigns. ^[11]

Influence in cybersecurity

Kwon has contributed to the development of Security Operations Centers (SOCs) in both government and private sector settings. Her work at MKACyber, including the "W@tchtower SOC Methodology," has been referenced in approaches to incident response, threat management, and SOC organization. ^[12]

She has also spoken on aligning cybersecurity practices with organizational risk management, encouraging communication strategies that prioritize business risk analysis over fear-based messaging. Her perspectives have been cited in cybersecurity publications, professional panels, and national security events.

Public speaking and media coverage

Kwon has been a frequent speaker at national cybersecurity conferences, including the RSA Conference, where she has discussed workforce development and SOC operations. ^[13]

She has also been featured in major media outlets discussing cyber threats and policy:

• In a 2012 appearance on CNN’s The Situation Room , she analyzed the Flame malware cyber espionage tool. ^[14]
• In June 2014, she joined a BankInfoSecurity panel titled "How Can Women Advance? Let Them Fail," emphasizing the need for women in cybersecurity to be allowed to take risks and grow through experience. ^[15]
• She was interviewed on Politico Live about third-party cybersecurity risks. ^[16]
• In September 2017, Kwon was quoted in Healthcare IT News advocating for diversity in cybersecurity, arguing that varied perspectives improve understanding of threats and user behavior. ^[17]
• She participated in a 2017 Washington Post Live panel on the future of digital identity and the role of the Social Security number. ^[18]
• In December 2020, Kwon appeared on the OODAcast podcast, where she discussed her progression from software developer to federal cybersecurity leader and shared insights into SOC architecture and leadership. ^[19]
• In February 2021, she was interviewed on the CISO Stories podcast, advising CISOs to avoid using fear to influence boards and instead use strategic, business-aligned messaging. ^[20]

Congressional testimony

On March 16, 2011, Mischel Kwon testified before the United States House Subcommittee on Cybersecurity, Infrastructure Protection, and Security Technologies during a hearing titled Examining the Cyber Threat to Critical Infrastructure and the American Economy. Representing Mischel Kwon and Associates, she advocated for a more autonomous and well-resourced US-CERT, highlighting the critical role it plays in national defense against cyber threats.

US-CERT needs to be funded, supported, and empowered to act quickly and effectively... I would like to see US-CERT become a more autonomous agency with the authority and capability to work with both the public and private sectors in real time to detect, respond to, and prevent cyber attacks.

— Mischel Kwon, Congressional testimony, March 16, 2011 ^[21]

She also stressed the urgency of establishing strong public–private partnerships in cybersecurity:

We cannot defend this country’s critical infrastructure without a collaborative approach. Cybersecurity is not just a government issue—it is a national issue, and the private sector must be fully engaged as an equal partner.

— Mischel Kwon, Congressional testimony, March 16, 2011 ^[21]

Her testimony contributed to the broader dialogue on strengthening U.S. cyber defenses and highlighted the role of private sector expertise in shaping public policy.

Education

She holds a B.S. in Computer Science from the University of Maryland Global Campus and an M.S. in Computer Science from Marymount University. She served as an adjunct professor at George Washington University, where she also directed the Cyber Defense Lab. ^[22]

Legacy and impact

Kwon has played a pivotal role in advancing cybersecurity infrastructure across both the public sector and private sector in the United States. As a former director of the United States Computer Emergency Readiness Team (US-CERT), she helped shape the federal government's approach to cyber incident response, focusing on operational coordination, information sharing, and threat mitigation strategies. Her work contributed to the institutionalization of Security Operations Center (SOC) practices across multiple agencies, elevating baseline standards for real-time monitoring and response. ^[3]

Through her leadership roles, Kwon has influenced national conversations on threat detection, cyber risk management, and organizational cyber resilience. She has been a vocal advocate for integrating technical expertise with executive decision-making, emphasizing the importance of translating complex cybersecurity issues into actionable business strategies. ^[20]

In addition to her operational achievements, Kwon has mentored a generation of cybersecurity professionals through public speaking, board service, and advisory roles. Her contributions have been recognized in both government and industry forums as instrumental to improving cyber defense maturity and building a culture of proactive cybersecurity leadership.

See also

• US-CERT
• Women in computing
• Ron Ross

References

1. "Mischel Kwon". Federal Business Council (FBC). Retrieved June 1, 2025.
2. "Top Women in Cybersecurity: Mischel Kwon". CyberScoop. March 16, 2017. Retrieved May 17, 2025.
3. "DHS Names New Head of U.S.-CERT". SC Media. July 2025. Retrieved July 6, 2025.
4. "Mischel Kwon - Cybersecurity Professional of the Year". Cybersecurity Excellence Awards. November 6, 2017. Retrieved May 17, 2025.
5. Keller, Tom (July 21, 2010). "Kwon Resigns as US-CERT Director". GovInfoSecurity. Retrieved May 19, 2025.
6. "Impact on Cybersecurity Without a Czar". GovInfoSecurity. August 18, 2009. Retrieved May 30, 2025.
7. "Using Cyberattacks for C-Suite Buy-In". BankInfoSecurity. August 2, 2013. Retrieved May 30, 2025.
8. "MKACyber CEO Mischel Kwon Named to NSF Hall of Fame". PRWeb. July 25, 2018. Retrieved May 19, 2025.
9. "Federal 100 Award Winners". FCW. Retrieved May 19, 2025.
10. "Cybersecurity Experts Help Design WGU's Programs". GovInfoSecurity. Retrieved June 1, 2025.
11. "Cybersecurity Diversity Foundation" . Retrieved June 6, 2025.
12. "MKACyber CEO Mischel Kwon Named to the National Science Foundation's CyberCorps Scholarship for Service Hall of Fame". PRWeb. July 25, 2018. Retrieved June 1, 2025.
13. "Mischel Kwon - Speaker Bio". RSA Conference. November 7, 2020. Retrieved May 17, 2025.
14. "Transcript: CNN Situation Room on Flame malware". CNN. June 1, 2012. Retrieved May 17, 2025.
15. "How Can Women Advance? Let Them Fail". BankInfoSecurity. June 12, 2014. Retrieved June 1, 2025.
16. "POLITICO Pro Financial Services Report: Preventing Third Party Cyberattacks". POLITICO. June 2014. Retrieved May 17, 2025.
17. "Cybersecurity needs diversity of thought". Healthcare IT News. September 26, 2017. Retrieved June 1, 2025.
18. "Cybersecurity experts on the future of the Social Security number". The Washington Post. November 8, 2017. Retrieved May 17, 2025.
19. "OODAcast: Mischel Kwon – Building Resilient SOCs". OODA Loop. December 11, 2020. Retrieved June 1, 2025.
20. "Leadership Advice for CISOs: Mischel Kwon". Security Weekly. February 24, 2021. Retrieved June 1, 2025.
21. "Examining the Cyber Threat to Critical Infrastructure and the American Economy". U.S. House of Representatives. March 16, 2011. Retrieved June 1, 2025.
22. "Thought Leader: Mischel Kwon". SC Media. July 2009. Retrieved May 30, 2025.