Eric serves as Managing Vice President and Head of Cyber Risk at Capital One, where he leads an organization focused on measurement, management, and prioritization of cyber risk across the company, including third party/supply chain risk management, Board and regulatory engagement, standards and controls, AI risk, and data protection.
Eric joined Capital One from the Cybersecurity and Infrastructure Security Agency (CISA), where he served as Executive Assistant Director for Cybersecurity and led the agency’s work to safeguard federal civilian agencies and critical infrastructure against cyber risks. In this role, Eric developed the agency’s first Cybersecurity Strategy, led the agency’s response to major incidents, and drove strategic initiatives such as the Known Exploited Vulnerabilities (KEV) catalog and the Secure by Design program. He served on the Cyber Safety Review Board and testified before Congress on multiple occasions.
Previously, he was the Head of Cybersecurity Policy, Strategy, and Regulation at Goldman Sachs, where he led a global team to improve and mature the firm’s cybersecurity risk management program. Earlier in his career, he served at CISA’s precursor agency leading federal cybersecurity efforts, practiced cybersecurity law at an international law firm, led cybersecurity research and analysis projects at a federally-funded research and development center, and served as a volunteer firefighter for over fifteen years.
He is a graduate of the University of Illinois at Urbana-Champaign, the Georgetown University McCourt School of Public Policy, and Georgetown University Law Center.
