Robert M. Lee

Cybersecurity Policy Fellow

Robert Lee is a fellow in New America’s Cybersecurity Initiative. Lee is a recognized pioneer in the industrial security incident response and threat intelligence community. He gained his start in security as a U.S. Air Force Cyber Warfare Operations Officer tasked to the National Security Agency where he built a first-of-its-kind mission identifying and analyzing national threats to industrial infrastructure. He went on to build the industrial community's first dedicated monitoring and incident response class at the SANS Institute (ICS515) and the industry recognized cyber threat intelligence course (FOR578).

Forbes named Lee to its 30 under 30 (2016) list as one of the "brightest entrepreneurs, breakout talents, and change agents" in Enterprise Technology. He is a business leader but also technical practitioner. Lee helped lead the investigation into the 2015 cyber attack on Ukraine's power grid, he and his team at Dragos helped identify and analyze the CRASHOVERRIDE malware that attacked Ukraine's grid in 2016 and the TRISIS malware deployed against an industrial safety system in the Middle East in 2017.

Lee is routinely sought after for his advice and input into industrial threat detection and response. He has presented at major security conferences such as SANS, BlackHat, DefCon, and RSA and has testified to the Senate's Energy and National Resources Committee. As a non-resident national security fellow at New America, Lee works to inform policy related to critical infrastructure cyber security and is regularly asked by various governments to brief to national level leaders.