2017 - 2018 Chapter Officers

Chapter President

Tom Scott

Thomas Scott (Tom) is the newly appointed Executive Director of SC Cyber. With over 25 years of State Government experience in both Florida and South Carolina, Tom has developed a wealth of knowledge and experience in protecting State critical infrastructure and cyber assets.  He currently holds certifications in information security, information auditing, security leadership, and project management – he is also recognized a FEMA Continuity of Operations Planning (COOP) Practitioner. Tom is a member of the FBI’s InfraGard program and serves as an advisory board member for the Dutch Fork High School Cyber program. He has actively participated in the federal information security community by serving as a member of the MS-ISAC’s Education and Business Continuity workgroups. He was recently elected to the MS-ISAC’s Executive Committee and selected to serve on the Board of the SC Midlands Chapter of ISACA.


Vice President

Leighton Johnson, CISA, CISM, CRISC, COBIT 5 (F)

Leighton is the CTO of ISFMT (Information Security Forensics Management Team), a provider of computer security & forensics consulting and certification training, and has presented computer security, cyber security and forensics lectures, conference presentations and seminars all across the United States, Asia and Europe. He is also the founder and CEO of Chimera Security, a research and development company delving into the realms of cryptography, Blockchain, mobile technology and cloud computing to create better and more secure solutions for today’s advanced users and providers. He has over 40 years’ experience in Computer Security, Cyber Security, Software Development and Communications Equipment Operations & Maintenance spanning the industries of retail, government, defense industrial base, banking, and information technology. He retains many professional security certifications, including CISA, CISM, COBIT 5 and CRISC and has taught certification, risk management, forensics and auditing courses all around the world over the past 15 years. He performs additional duties as the SCISACA Chapter Instructor and he recently was awarded the HQ ISACA Accredited Trainer status by ISACA and APMG.



Brian Kelley

Brian Kelley is an author, columnist, Certified Information Systems Auditor (CISA), and former Microsoft SQL Server MVP (2009-2016) focusing primarily on SQL Server and Windows security.  Brian currently serves as an infrastructure and security architect concentrating on Active Directory, SQL Server, and Windows Server.  He has served in a myriad of other positions including senior database administrator, data warehouse architect, web developer, incident response team lead and project manager.  Brian has spoken at 24 Hours of PASS, SQL Connections, The TechnoSecurity and Digital Forensics Conference, the IT GRC Forum, SyntaxCon, and at various SQL Saturdays, Code Camps and user groups.  



David Bowen, CPA, CIA, CISA, CMA 

David graduated from the University of South Carolina earning a B.S. in Business Administration with a major in Accounting and has 26 years of auditing experience.  He began his professional career at KPMG, and after two years in public accounting he spent four years in South Carolina state government performing compliance, operational and fraud audits.  For the past 20 years he has worked at BlueCross Blue Shield of South Carolina where is currently an Internal Audit Manager.


Membership Director

Tom Hart, CISA

Tom has over 25 years experience in the Information Technology field. He held various software developer positions while supporting Sales & Marketing, Advertising, and Sales Promotions applications at GM/EDS prior to transitioning to the audit world in 2001. In 2008, Tom moved from Michigan to South Carolina where he currently works as a Senior Quality Assurance Analyst for BlueCross BlueShield of SC. He earned a Bachelor of Science degree in Computer Information Systems from Ferris State University and is a Certified Information Systems Auditor. Tom and his wife Lisa reside in Elgin.


Newsletter Editor

Vacant Position - please contact president@scisaca.org if you are interested in serving in this capacity


Past President

Marc Punzirudu, CISA, CISM, CISSP, QSA

Marc currently is a Senior Security Consultant for ControlScan, Inc located in Alpharetta, GA. Primarily he focuses on business and technology process improvements within the payment card space, helping acquirers manage their merchant risk. The majority of his focus during the previous 5 years has been assessing and reporting on PCI-DSS, HIPAA, Hitrust, ISO 27k, and SANS critical controls. In a previous life, he was a secure coding lifecycle specialist and IT project manager for global restaurant brand. Marc currently holds a BA in Business Finance from St Leo University (FL), and BS in Computer Science and Engineering from the University of South Florida (USF) as well as many security based certifications. Marc and his wife have two children, Jason and Joshua, and just recently moved to Lexington.



Kareem Briggs, CISA, CRISC, CSIM

Kareem currently works as the Director of Information Security for the SC Department of Health and Human Services. He has over 15 years of Information Technology experience where he has had roles in audit, information assurance, data security administration, network support, desktop support and helpdesk support. Kareem possesses a Bachelor's Degree in Information Management from the University of South Carolina and a Master's Degree in Computer Resources and Information Management from Webster University where he focused on Information Security.  Kareem has been the webmaster for the SC Midlands Chapter since 2008. 


Research Director  & Social Media

Audra Woods

Audra C. Woods currently works as a Systems Support Administrator for Blue Cross Blue Shield of SC. She has over 20 years of experience in Information Technology in various industries including Department of Defense, medical laboratory, private and public sectors. Her main areas of expertise are: Computer Operator, training, client server installation, basic network support, desktop support, application and server deployment automation, scripting, Full Software Development Life Cycle, web application support, F5 Big IP Load Balancing/Clustering, deployment and configuration of WebSphere Portal. Her experience also includes installing and updating SSL Certificates across DataPower Appliances and application servers, correcting ATO findings, installing and applying software patches based on vulnerabilities across multiple lines of businesses and platforms reported by LS Audit Team. Audra has a BS in Computer Information Systems and Business from Excelsior College a Member of the University of the State of New York, a Master’s Degree in Information Systems with a concentration in Software Engineering Management from Strayer University, and she holds CompTia Security+ce Certification. She has completed various training in System Analysis Concepts, Cisco CCNA, Certified Ethical Hacker/Security+ (SY0-401): Advanced Exploitation Techniques and Certified Ethical Hacker/Security+ (SY0-401): Evading IDS. Audra is an active member of ISACA, and 451 Global Digital Infrastructure Alliance. Audra was blessed with three daughters from the late SGM Woods.


Certification Director

Caroline Overcash

Bio forthcoming


Marketing Director


Harriet has over thirty years of experience in public accounting, providing auditing, data processing services, IT auditing and compliance reviews primarily to financial institution clients.  She is the primary owner of Simpson & Associates, LLC public accounting firm.  She has a Bachelor of Science degree in Computer Science and a Master of Accountancy from the University of South Carolina.  Harriet is a member of the American Institute of Certified Public Accountants (AICPA), the South Carolina Association of Certified Public Accountants (SCACPA), the Information Systems Audit & Control Association ISACA), and the Association of Certified Fraud Examiners (ACFE).  She and her husband, Ted, reside in Columbia.


Professional Services Advocacy Director

Keith Sarto, PMP

Keith currently works as Enterprise Project Manager for the SC Division of Information Security (DIS) as a contractor for TM Floyd and Company.  Keith has 3 ½  years of Information Security experience at DIS where he has lead project management role in deploying a variety of InfoSec technologies and services across multiple agencies.  He helps organize Cyber Security Awareness Symposiums and Information Security training for State Agencies. Keith was DIS lead in transition to a Managed Security Services Provider model, along with SIEM consolidation and network monitoring expansion.  Prior to DIS, he was Chief of Support Services for SC Legislative Services.  Prior to State Government, Keith was with NCR Corporation for 27 years. Keith possesses a Master’s Certificate in Project Management from George Washington University and a Master's Degree in Organizational Training and Development from Wright State University.  Keith and his wife, Diana, are captains of USTA Tennis teams and reside in Columbia.  They travel regularly to Colombia, South America, Diana’s home country, where Keith holds permanent residency.  Keith has been a presenter at Dayton, Ohio and SC Midlands PMI Chapter meetings and at an International PMI Conference in Cartagena, Colombia.


Education Director


Sue has fifteen plus years of experience in information technology auditing beginning with the Office of Inspector General with the US Department of Agriculture.  Inspired to return to the beach, she took an offer from BlueCross BlueShield of SC and continued her IT Audit work. Her audit experience includes conducting audits over a variety of operating systems such as IBM’s mainframe, zLinux, VMware, UNIX and Windows.  She is experienced with Security, General and Application Control Audits. Sue has a BS in Business Administration from Emporia State University, a Masters in Accounting and Finance and a Masters in Information Systems Management from Keller Graduate School of Management of DeVry University. Over the past ten years, she has served as the South Carolina Midlands Chapter Secretary, President, and Academic and Student Advocate.  She currently is the Education Director and remains an active participant in the chapter’s events.   She also volunteers her time on the Techno Security & Digital Forensics Conference Advisory Board and the Midlands Technical College Advisory Board providing the viewpoint of the IT Auditor.

Academic Advocate  

Donna M. Swinbank, CIA, CISA, CBA

Donna began her audit career in the banking industry, and after ten years, moved to state government.  She is currently an Auditor at the SC Department of Education where she performs IT, operational, and financial audits. She holds a BA in French and Business Administration with a concentration in Finance from Converse College.  Donna is a member of ISACA, the SC State Internal Auditors Association, the Institute of Internal Auditors, the Columbia World Affairs Council, and the Alliance Francaise.  She is active in her community and has served on the Board of the SC State Internal Auditors Association.  Donna resides in Lexington with her husband and children.

You are here: Home Chapter Home Officers