CVE Board

The CVE Board includes numerous cybersecurity-related organizations including commercial security tool vendors, academia, research institutions, government departments and agencies, and other prominent security experts, as well as end-users of vulnerability information. Through open and collaborative discussions, the Board provides critical input regarding the data sources, product coverage, coverage goals, operating structure, and strategic direction of the CVE Program.

The Board operates per the CVE Board Charter, and Board roles and tasks vary by member. New members may be nominated per the Charter. All Board Meetings and Board Email List Discussions are archived for the community.

The Board was created in 1999. It ensures that CVE serves the community and public interest.

Board Members

Board Archives

Board Documents

Working Groups

Current Members

Ken Armstrong, EWA-Canada, An Intertek Company

Tod Beardsley, Rapid7 (CNA Coordination Working Group Liaison)

Chris Coffin, The MITRE Corporation (MITRE At-Large)

Jessica Colvin, JPMorgan Chase

Mark Cox, Red Hat, Inc.

William Cox, Synopsys, Inc.

Patrick Emsweller, Cisco Systems, Inc.

Jay Gazlay, Cybersecurity and Infrastructure Security Agency (CISA)

Tim Keanini, Cisco Systems, Inc.

Kent Landfield, McAfee Enterprise

Scott Lawler, LP3

Chris Levendis, The MITRE Corporation (MITRE CVE Program Leader/CVE Board Moderator)

Art Manion, CERT/CC (Software Engineering Institute, Carnegie Mellon University)

Pascal Meunier, CERIAS/Purdue University

Tom Millar, Cybersecurity and Infrastructure Security Agency (CISA)

Ken Munro, Pen Test Partners LLP

Chandan Nandakumaraiah, Palo Alto Networks

Kathleen Noble, Intel Corporation

Lisa Olson, Microsoft

Shannon Sabens, CrowdStrike, Inc.

Takayuki Uchiyama, Panasonic Corporation

David Waltermire, National Institute of Standards and Technology (NIST)

Ken Williams, Broadcom Inc.

Past Members

The individuals listed below are former members of the CVE Board. We thank them for contributions, especially those with “Emeritus” status who have made particularly significant contributions to the CVE effort.


Andy Balinsky

Scott Blake

Harold Booth

Steve Christey Coley

Andre Frech

Elias Levy

Peter Mell

Steve Northcutt

Kurt Seifried

Adam Shostack

Gene Spafford

Other Past Contributors

  • Jimmy Alderson

  • Beverly Alvarez

  • David Baker

  • David Balenson

  • Matt Bishop

  • Troy Bollinger

  • Natalie Brader

  • Rob Clyde

  • Tim Collins

  • Eric Cole

  • Kelly Cooper

  • Russ Cooper

  • Marc Dacier

  • Renaud Deraison

  • Casper Dik

  • Carsten Eiram

  • Bill Fithen

  • John Flowers

  • Dana Foat

  • Stu Green

  • Patrick Heim

  • Shawn Hernan

  • Bill Hill

  • Al Huger

  • Jim Jones

  • Panos Kampanakis

  • David LeBlanc

  • Jim Magdych

  • David Mann

  • Brian Martin

  • Scott Moore

  • Ron Nguyen

  • Larry Oliver

  • Craig Ozancin

  • Alan Paller

  • Paul Proctor

  • Mike Prosser

  • Damir Rajnovic

  • Marcus Ranum

  • Elizabeth Scott

  • Steve Snapp

  • Stuart Staniford

  • Tom Stracener

  • Bill Wall

  • Kevin Ziese

Page Last Updated or Reviewed: August 24, 2021