2025 OASIS Board Candidate

Charles Frick

Charles Frick, Chief Scientist, Cyber Capabilities Development Group,
Johns Hopkins University Applied Physics Laboratory

Biography:
Charlie Frick is a principal cybersecurity researcher at the Johns Hopkins University Applied Physics Laboratory, where he leads multiple research and pilot efforts focused on cybersecurity automation, machine-speed threat information sharing, and operational resilience. He serves as Chair of the Indicators of Behavior (IoB) sub-project within the Open Cybersecurity Alliance, guiding development and adoption of new standards for behavior-based threat intelligence. Charlie holds a B.S. in Mathematics and a B.A. in Dramatic Arts from Centre College, and an M.S. in Mathematics from Virginia Tech.

Additional Information:
I have spent my career advancing cybersecurity automation and threat intelligence sharing, with a strong focus on interoperability, standards, and operational resilience. As Chair of the Indicators of Behavior (IoB) sub-project within the Open Cybersecurity Alliance, I’ve worked closely with OASIS standards such as STIX and TAXII, while also helping extend these standards into new areas focused on behavior-based threat detection.

I believe OASIS plays a uniquely important role in bridging open standards and open source implementation, and that both are critical to addressing today’s cybersecurity challenges. Open standards enable transparent, interoperable ecosystems, while open source accelerates innovation, adoption, and trust. I would like to see OASIS continue to invest in efforts that reduce the friction between the two — for example, by supporting reference implementations, developer tooling, and testbeds that make it easier to adopt and operationalize standards.

One of the key issues I see facing OASIS is how to stay agile and relevant in a landscape where innovation often outpaces traditional standards development timelines. This is particularly true in cybersecurity, where adversaries evolve rapidly and industry solutions need to respond in near real time. To address this, I would advocate for continued support of lightweight, community-driven extension mechanisms, as well as closer partnerships with operational sharing communities, such as Information Sharing and Analysis Centers (ISACs), non-profits, and regional alliances.

I also believe OASIS has an opportunity to lead in new areas of work — including behavior-based threat detection, automated risk mitigation, and cyber-physical system security — by convening experts across sectors. I’ve led research and pilot deployments in these areas at JHU/APL and would bring this perspective to the Board. Additionally, I serve on the National Security Advisory Board for the Bio-ISAC and understand the importance of cross-sector collaboration, particularly as cybersecurity challenges become more interdisciplinary.

Finally, through founding the High School Cybersecurity Workshop, a non-profit that provides free, hands-on training and curriculum to students and educators, I’ve seen firsthand how open access to knowledge empowers the next generation of cyber defenders. I believe OASIS can play a broader role in fostering education, inclusion, and access to open standards in both public and private sectors.

I would be honored to help guide OASIS’s strategic direction as a member of the Board of Directors.