Where Industry Leaders Meet to Shape the Future
Security Leaders' Summit - West
Tuesday, June 4, 2013
The Westin St. Francis
San Francisco, CA
Wednesday, April 24, 2013 – New York, NY
Privacy Policy | Security Policy | Purchase Policy
© 2010-2013 Executive Alliance, Inc. All rights reserved.
We have created this privacy policy to demonstrate our commitment to protecting information you submit. This privacy policy only applies to transactions made, and data gathered, on this web site and does not apply to any other transactions, information, web site or Internet, telephone or offline point of contact. Please review this privacy policy periodically as we may update it from time to time. This privacy policy was last revised April 22, 2010. Each time you visit our website or provide us with information, by doing so you are accepting the practices described in this privacy policy at that time. You agree that by using the site you are consenting to our use and disclosure of the information that you provide, and consenting to receive emails, as described below in this privacy policy. Executive Alliance's privacy policy is subject to change per the posting of updated information on this website.
In order to operate our site and provide you with information on products and services that may be of interest to you, we may collect contact information (i.e., information that could be used to contact you such as full name, postal address, phone number and email address).
Executive Alliance collects information to process registration and tickets for events and programs. No information is shared outside the company, other than to a few select sponsors of our events. Internally in our company, your information is only used in accordance with providing services to you for the events you attend (i.e., nametags) or with information on products and services that may be of interest to you.
The site has security measures in place to protect against the loss, misuse and alteration of the information under our control. We use secure socket layer (SSL) technology to protect the security of commerce transactions. We encrypt your contact information and financial information as it travels over the Internet and we store your financial information on our servers in encrypted form.
Your information may be transferred to and maintained in whole or in part on computer networks which may be located outside of the state, province, country or other governmental jurisdiction in which you reside, and the country or jurisdiction in which these computer networks are located may not have privacy laws as protective as the laws in your country or jurisdiction. Some of the facilities and equipment used to store your information may be owned, controlled or operated by third parties.
Policies set forth by many companies that we partner with such as venues and other event locations, prohibit refunds after a purchase has been made or for lost, stolen, damaged or destroyed tickets. When you receive your confirmation, please keep it in a safe place.
In the rare event that a program is cancelled or postponed by, please contact us for more information on receiving a refund. If the event is moved or rescheduled, we have the right to set refund limitations.
CEO, Executive Alliance
As CEO of Executive Alliance, Mary Lou Heastings has responsibility for guiding the continued expansion of the company's portfolio of technology related executive summits, awards, roundtables, and custom programs across the country. With significant experience in management, information technology, finance and operations, Ms. Heastings recently launched the publishing arm of Executive Alliance to promote the successes of executives across different industries.
Previous to Executive Alliance, Ms. Heastings had over 20 years of software experience in e-business and global reservations systems for the travel industry with responsibility for developing strategies and deploying enabling technologies in the business information environment. She directed a staff of 150+ technical professionals at Worldspan with responsibilities for implementing corporate business applications in the United States and 28 countries around the globe. In addition, Ms. Heastings has previous experience in strategic planning, business development, and software development with companies such as Delta Air Lines and Holiday Inn.
Ms. Heastings was co-recipient of the ATHENA Award for women business leaders having an impact on the workplace. She was recognized in "Who's Who in Technology" in the Atlanta Business Chronicle, on the cover of Georgia Trend Magazine as an executive leading change, and featured in the Atlanta Journal and Constitution for her leadership role in developing e-business strategies. An avid boater, Ms. Heastings earned her Captain's license in 2004.
Host and Announcer of Formula 1 Racing, The Speed Channel
Bob Varsha is one of the more prominent on-air personalities for SPEED Channel. He is the host of the network's live Formula 1 coverage along with David Hobbs and Steve Matchett. Bob began his television career covering sports for TBS in 1980, moved to ESPN in 1986, and moved to Speedvision in 1999, where he hosted Speedvision New,s Raceweek, and Speedvision coverage of Formula One, the 24 Hours of Le Mans and the 12 Hours of Sebring. Varsha also commentates on the Barrett-Jackson auction on Speed in Scottsdale and Palm Beach annually.
Bob Varsha attended Dartmouth College graduating with a bachelor of arts degree in foreign language in 1973. While attending Emory University Law School he competed as a two-time Olympic Trials marathon finalist. As a practicing attorney in Atlanta, Varsha accepted an invitation from Turner Broadcasting to cover a popular footrace in his home town in 1980, a performance that led to an offer of a part-time job from TBS and a new career.
Senior Vice President and Chief Security Officer, AT&T Services, Inc
Dr. Edward G. Amoroso serves as Senior Vice President and Chief Security Officer for AT&T Services, Inc. His responsibilities include real-time security protection of AT&T's network and computing infrastructure – including mobility services; security policy, planning, and architecture for AT&T's enterprise; security support for AT&T's IPTV and entertainment initiatives; and lead design, development, and operations support for AT&T's managed and network-based security services.
Ed's twenty four-year career at AT&T began at Bell Laboratories, where he worked on securing the Unix operating system, as well as numerous federal government security initiatives. More recently, he has championed AT&T's network-based security strategy, centered around emerging in-the-cloud protection services such as Network-Based Firewall and DDoS Defense. Ed has authored numerous research papers, articles, and four books on information security, and is at work on a new book entitled "e;Protecting National Infrastructure from Cyber Attack," which should be available soon. He is the 1999 winner of the AT&T Labs Technology Medal for his contributions to large-scale intrusion detection.
Ed holds M.S. and Ph.D. degrees in computer science from the Stevens Institute of Technology and is a graduate of the Senior Executive Program at the Columbia Business School. He has served as an Adjunct Professor in the Computer Science Department at Stevens for the past twenty years, and his work has been featured by the Wall Street Journal, CNBC, Network World and the New York Times.
Senior Vice President, PGi
As an innovator and progressive Security Specialist, Jeffrey continues to be at the forefront of creating and implementing new solutions and techniques to organize and protect data. Over his career, Jeffrey has delicately balanced the need for securing access to data, against usability, and the wide-scale adoption of entitlement and data loss protection solutions. Recently, Mr. DiMuro filed a patent for a newly developed e-Delivery solution which he coined S.T.E.P. - Secure Transfer Electronic Present. This bi-directional Secure Email solution creates an end-to-end encrypted pathway to transmit sensitive.
Jeffrey holds a BS in Finance from the College of NJ, and a JD/MBA from Widener University School of Law.
Chief Information Security Officer, DuPont
Larry Brock has been working for DuPont for 32 years in Information Technology, Research & Development, and Marketing. He has worked in several functional groups and businesses across DuPont; including the Corporate IT group, Imaging, Fibers, and Nylon. He served as an Information Security Officer within the U.S. Air Force and assigned to the National Security Agency (NSA). He served on active duty at the NSA for 4 years and then in a reserve capacity for 26 years. Mr. Brock has BS and MS degrees in Electrical Engineering and is a certified information security manager, CISM.
President and CEO, Freud America, Inc.
Russell Kohl has been at the helm of the organization as President/CEO since 2002. Before assuming the head leadership role, he was VP of Sales and Marketing for two years at Freud. Prior to Freud, Russell held a variety of marketing and sales roles at Black & Decker/DeWALT, in addition to his experience as VP of Sales, Marketing, and Engineering with Peachtree Doors and Windows..
Chief Information Security Officer, GE Capital - Commercial Finance
14 Years with General Electric - started as a Technical Services Manager in GE Capital, Vendor Financial Services, moved into Information Security in 2000 with responsibility for Mid-Market Finance, and is now responsible for Information Security and Data Protection globally at GE Capital (Commercial Lending and Leasing, Real Estate Financing, Energy Financial Services, and Capital Aviation Services), a group of businesses that generates more than $31 Billion per year in Revenue, providing over $2.5 Billion per year in Net Income and managing over $360 Billion in assets.
Prior to that, James worked at Trinity Industries, Inc (a Fortune 500 Dallas based manufacturing company) for 8 years in a variety of IT leadership positions.
James is actively involved in the (ISSA) Information Systems Security Association and (ISACA) Information Systems Audit and Control Association, which work to drive standards, improvements, and networking in security and risk management globally. He also participates in Infragard to improve communications between the public and private sectors related to protecting our critical infrastructure.
He was Co-Chair of the CISO Executive Summit in Dallas in 2010, participates as Keynote Speaker at several SecureWorld events across the country, as well as other conferences, and is frequently a guest speaker for radio and video broadcasts.
James also works closely with the SINET (Security Innovation Network) to promote public and private sector collaboration and increase the awareness of innovative emerging companies.
He has an MBA from Southern Methodist University with a Finance emphasis and a BBA with a major in Management and Leadership. He is Certified in Risk and Information Systems Control (CRISC), and also Six Sigma Quality certified.
James is based out of McKinney, Texas.
Vice President, Chief Information Security Officer, Blue Cross Blue Shield of Illinois, Inc.
Raymond Biondo has been CISO of Health Care Service Corporation (HCSC) since 2006. Mr. Biondo's responsibilities include information security for the HCSC enterprise and information access regulatory compliance. He is also responsible for overseeing access control, IT Risk Management, Internal Controls Governance, and regulatory compliance.
He has quickly accelerated the progress of a very large enterprise disaster recovery program as well as developed a complete enterprise business continuity program. He has established a distributed professional disaster recovery function, created dynamic enterprise weekly reporting suite for senior officers and base lined measurable risk.
He has established an innovative organization design, which incorporates the non-technology internal business partners in the IS decision and development cycle.
Mr. Biondo has developed the Information Security services within HCSC to become recognized as one of the best protection services in healthcare. Prior to joining HCSC, Mr. Biondo served as a senior vice president at Aon Corporation.
Vice President, Information Technology, AmerisourceBergen Specialty Group
Richard Burk has over thirty years in the IT Industry with 20 of those years in IT Management and 10 years in Information Security. For the last nine years, he has managed the IT Infrastructure & Operations of AmerisourceBergen Specialty Group. Richard was responsible for the design of the new Datacenter in Frisco Texas and the Disaster Recovery Center in Dallas and now runs the day to day operations of a $16 Billion division of a Fortune 26 company.
Richard started off as a night operator and then a programmer and quickly developed a strong background in networks. For 14 years, he fostered a deep operational experience with Texas Instruments. Other IT stints for Richard has included Telxon Corporation, where he was the Southwest Region's Director of Technical Services and, just prior to his current job, he served as first Director of Professional Services for Check Point Software Technologies.
Richard graduated from the University of Oklahoma in 1978 where he achieved a B.A. in Economics and the equivalent to a minor in Math. Richard's organization received the “2008 Nemertes Research Pilot House Award for Virtualization Integration”, and won lthe “2009 Executive Alliance Central Region ISE Security Project of the Year”. In March of 2010 Richard was named to the ComputerWorld Top 100 IT Leaders for the class of 2010.
Director, Head of Information Security, Stinson Morrison Hecker LLP
Mr. Davidson currently serves as the Director of Information Security at Stinson Morrison Hecker LLP, a national law firm with offices in nine locations across the country. He is responsible for managing Information Security and Business Continuity for the firm. Prior to Stinson, he was a Network Manager for the City of Lees Summit and has been in the industry for over twenty years. Past honors include holding the title of President of Kansas City VMUG. He is active in ILTA and has been a featured speaker.
Chief Information Security Officer, Textron Information Services, Textron, Inc.
As Chief Information Security Officer, Richard is responsible for developing, maintaining and assuring continuous improvement of Textron's Information Technology Security programs, policies and processes. This includes leadership of the Information Technology Risk Management (ITRM) Council which is a team of Security leaders from across Textron's Business Units and COEs. Richard is also responsible for IT Privacy governance and leads the IT portion of the electronic discovery (eDiscovery) program for Textron.
Richard was the Sr. Manager of IT Audit for Textron Audit Services prior to becoming CISO in 2007. In this role, Richard led site visits and assessments of all Textron's business unit IT functions and leadership and development of a staff of multi-national auditors in the US and Europe.
Prior to joining Textron in 2004, Richard worked at PricewaterhouseCoopers. He held various positions which performed eDiscovery Data collections, electronic Forensic investigations, IT Security Consulting and reviews.
Richard has a Bachelor of Science in Computer Science from the University of Texas at Tyler. He is a certified DFSS Green Belt and has additional certifications in IT, IT Forensics, IT Data Privacy, eDiscovery, IT Audit, and IT Security. He is recognized as an industry SME in the area of eDiscovery and Forensics and frequently speaks at security related events, functions and conferences.
Richard resides in Fort Worth Texas. He and his wife D'Anne are very active in their church and enjoy spending time with their daughter Lauren.
Vice President of Information Security, Edelman
John Iatonna is Vice President of Security at Edelman, Inc. With over 10 years of experience in IT, John joined Edelman in 2010 to lead their global information security practice. Prior to joining Edelman, John managed network security for Brunswick Corporation where he was responsible for the security elements of a 150-site global network.
He is an accredited information security professional (CISSP), a certified project manager (PMP) and an active member of ISSA - Chicago chapter. John holds a bachelor's degree in Business Administration from DePaul University.
Vice President, Chief Privacy Officer, Chief Information Security Officer, USAA
Jack is Vice President, Chief Information Security Officer and USAA's Chief Privacy Officer. Jack is responsible for ensuring the integrity, privacy and confidentiality of USAA's electronic information assets, including the planning, design, and development of information security strategies for USAA and the appropriate sharing of USAA corporate and member data.
Jack began his career with USAA in 1982. In the past 28 years, Jack's area of responsibility has included both technical and management roles, with the last 18 years in roles related to Information and Systems Security.
Jack has a BBA in Accounting and Business Management from UTSA, and an MBA in Business Management from Incarnate Word University.
Chief Information Security Officer, Blue Cross Blue Shield Minnesota
Caleb Merriman joined Blue Cross and Blue Shield of Minnesota as chief information security officer (CISO) and senior director information services (ISS) on March 10, 2010. He is responsible for the company's overall information security program including security infrastructure design and architecture, information risk management, identity and access control, program governance, business continuity planning and information systems disaster recovery. Merriman has more than 25 years of experience building and leading high-performing technology infrastructure,application development, compliance, and security organizations. Prior to joining Blue Cross, he served as Chief Information Security Officer for Guidant Corporation and Director of Information Security for Target Corporation. Merriman is also a Lieutenant Colonel and C-130 pilot in the United States Air Force Reserve. Prior to his civilian career he served on active duty for 9 years and continues to serve as a reservist with the 934th Airlift Wing in Minneapolis. During his military career he has deployed to the middle-east 7 times and has been decorated for combat operations Desert Shield, Enduring Freedom, and Iraqi Freedom. Merriman has a Bachelor of Science in Engineering from the University of Florida; a Masters of Science in Computer Information Systems from the University of Phoenix; and has a CISSP certification.
Senior Research Analyst, Nemertes Research
Notice: Undefined variable: TedLitterBio in /home/securityleaders/www/itsecurityleaders.com/v3/includes/inc_footer.php on line 109
Chief Content Officer and Host/Managing Editor, Splash Media
Whether it's journalism or marketing, it all involves storytelling. That was San Miguel's job for 30 years as a reporter and anchor for local and national broadcast outlets, and it's still what he does for a living as Splash Media's chief content officer and host/managing editor for Splash's spark360 news-style profiles of small/medium-sized businesses.
San Miguel began his career at his hometown newspaper before making the switch to broadcast news. He has worked as an anchor/reporter in San Angelo, Austin, San Francisco, Dallas and Seattle. His work at WFAA-TV in Dallas resulted in Emmy and Casey Awards for projects on welfare reform and media violence. He then moved on to CNBC as a technology reporter during the dot-com boom, and briefly worked for CBS Marketwatch, where he also contributed tech stories for "The Early Show" and web-only interviews for Marketwatch.com.
From 2001-2007. San Miguel was an anchor/reporter for CNN/CNN Headline News in Atlanta. He staffed the military desk during the invasions of Afghanistan and Iraq, reported on technology and anchored newscasts. He also hosted "The Digital Life" podcasts for CNN.com and won a Cybersecurity Journalism Award from Carnegie Mellon University for tech columns on the Headline News website. San Miguel has also reported on social media and Web 2.0 technologies for TechNewsWorld, the E-Commerce Times and MacNewsWorld.
Chief Information Security Officer, Sabre Holdings
Gene Scriven is an Information Protection veteran with more than 30 years of Information Security experience across a wide spectrum of industries. He has provided security solutions to Fortune 500 firms as a specialized security consultant, addressed the stringent security requirements of the US Government and various intelligence agencies as a military officer and government contractor, and has "owned the problem" as a leader of commercial organizations. His background includes directing the development of intrusion detection and network monitoring systems, federal computer crime investigations, electronic and physical security red-team evaluations, risk management and mitigation, and security management and compliance.
Gene joined Sabre Holdings in late 2009 as the Chief Information Security Officer, responsible for corporate and customer data protection, IT risk management, governance, and compliance. Sabre Holdings supports travelers, travel agents, corporations, and travel suppliers around the world by providing distribution and technology solutions for the travel industry through its three companies. Prior to Sabre Holdings, Gene was the Director of Information Risk Management and Compliance, then the Chief Information Security Officer for The Home Depot, headquartered in Atlanta, Georgia.
Gene is a Certified Information Systems Security Professional. He holds a Masters of Science Degree from Troy State University in Montgomery and a Bachelors of Science from Hawaii Pacific University. Gene lives with his wife and two daughters in the Dallas/Fort Worth metro area.
Vice President and Chief Information Security Officer, Alliance Data
David Stanowick is presently the VP and Chief Information Security Officer for Alliance Data where he has responsibility for the Information Security, and Governance over the outsourced IT functions. Previously David managed Information Security and Business Continuity functions at Florida Power & Light and KeyCorp National Bank.
David has over 25 years experience with technology risk management, and is well connected with peers in other industries. David is a Certified Information Systems Security Professional (CISSP) and holds a Bachelor's degree from Baldwin Wallace College in Berea, Ohio. David works primarily at the corporate headquarters in Plano, Texas.
Director of Information Services and Information Security Officer, Henry Ford Health System, West Bloomfield Hospital
Amy Wang, Director of Information Services and Information Security Officer for Henry Ford West Bloomfield Hospital, has 15 years of experience in information technology.
She joined the Henry Ford West Bloomfield Hospital in March of 2008, to lead a matrixed and direct team responsible for telecommunications and information security as well as information technology (IT) strategy, operations and project management of the hospital.
Amy led the implementation of all technology for the opening of Henry Ford West Bloomfield Hospital in March of 2009. She oversaw the managing of resources for the implementation of hundreds of applications, thousands of devices and developed all IT policies and processes for the new facility.
She joined Henry Ford West Bloomfield Hospital from Health Alliance Plan (HAP), the Henry Ford Health System owned health insurance company. There she served as an IT project manager for five years. Prior to that, she was in the Detroit market, serving in the information technology service industry for numerous organizations, and for automotive agencies such as General Motors, Oldsmobile and Ford Motor Company.
Amy received her bachelor's degree from Michigan State University and is currently pursuing a Masters of Science from Walsh College in Detroit, Mich.
She has been featured in Stage Seven – Informatics Playbook, "Emerging best practices in site-level IT security: Henry Ford West Bloomfield Hospital."
Amy was named one of IDG's Computerworld 2011 Premier 100 IT Leaders this March for her exceptional technology leadership, innovative ideas to business challenges and effectively managed IT strategies.
Chief Information Security Officer, Centene Corporation
Dustin Wilcox is the Chief Information Security Officer for Centene Corporation, a national leader in the healthcare services field and member of the Fortune 500. He has over 20 years experience in a variety of Information Technology disciplines spanning a diverse array of industries including financial services, defense, energy, and healthcare. Dustin began his career as a network engineer and has held a number of technical and business leadership positions ranging from security consulting to systems integration and enterprise architecture to mergers and acquisitions.
Dustin holds a bachelor's degree in Political Science from the University of Iowa where he also served as Student Body President and Chairman of the Association of Big Ten Students. He holds or has held a number of technical and administrative certifications including CISSP, CSSLP, GSEC, CCNA, and CNE among others.
Dustin is currently on the Information Systems Advisory Board for the University of Missouri, St. Louis. He is a participant in the Center for the Application of Information Technology (CAIT) Information Security Roundtable and an active member in the Metropolitan St. Louis CISO Roundtable.
Dustin, his wife Paula, and their four daughters and reside in O'Fallon, Illinois where they are active in their community and in worthy causes across the St. Louis region.
Head of IT Security, Covanta Energy
Roota Almeida has over 12 years of experience in Information Security, Risk and Compliance with strengths in Access Control, Application Security, Risk Management, Legal, Regulatory, and Compliance. She is a Certified Information Systems Security Professional (CISSP), with expertise across a diverse range of Information Risk Management and Security areas. At Covanta Energy, Roota has the responsibility of leading all aspects of IT security and risk, including establishing and maintaining global security strategies, architectures, standards, and compliance. Prior to joining Covanta Energy, Roota was with Merck & Co., leading Information Risk and Compliance. She was responsible for guiding the development, implementation and maintenance of information security strategy representing more than 50 nations. Additionally, she guided the company in the development and deployment of Safe Harbor certification process and led IT Security Risk Assessments for all applications and vendors.
Roota has a Master's degree in Information Systems from Stevens Institute of Technology, Hoboken, NJ. She also has a Bachelor's degree in Mechanical Engineering from India.
Director, I.S. Security & Assurance, Intermountain Healthcare
A seasoned professional with over 25 years in the IT and Information Security industries, Carl's experience includes working in the oil, banking and computer industries and then at Novell. While at Novell he launched its Global Network Security Architecture industry effort, published the Novell Open Security Architecture, and advised Utah's Governor's Office in the formation of the Utah Digital Signature Act. He then formed InfoCore, an association of industry IT security consultants that advised, managed, designed, developed and implemented business information systems and IT security solutions for global corporations, government agencies, and industry associations. In August 2004, he joined Intermountain Healthcare as the Manager of Corporate Information Systems Security. At Intermountain he is now the Director of Information Systems Security & Assurance, a group responsible for designing, developing, implementing and managing enterprise wide best practice security management, processes, services, and technologies to enable integrated information systems security for the 30,000+ employee organization. Carl continues as an advisor in the Information Security industry as the Black Forest Group's North American Security Working Group Chair and a member of the Net Focus North America Advisory Board. He is a member of ISACA and ISSA, and has the CISM and CRISC professional certifications. He holds an MBA from the University of Denver and Bachelor's degrees in Mathematics and Applied Physics from Weber State University.
Chief Information Security Officer, Broadcom Corporation
Mr. Geoff Aranoff serves as Broadcom Corporation's Chief Information Security Officer (CISO). Mr. Aranoff is responsible for Broadcom's enterprise security strategy including monitoring and control systems and risk management for intellectual property (IP) protection. Broadcom has more than 10,000 employees around the world and the number one IP portfolio among fabless semiconductor companies as ranked by IEEE.
Mr. Aranoff leads an organization responsible for adopting and enforcing policies for internal and external risk management, IT security including network, application, endpoint, and storage security, and electronic discovery. Mr. Aranoff is also responsible for forensics for ongoing security investigations. Mr. Aranoff has been Broadcom's CISO for more than six years during which time has also served as Broadcom's Chief Privacy Officer (CPO). In this role he led the organization through a comprehensive Safe Harbor Certification program to ensure adherence to EU privacy directives. Mr. Aranoff joined Broadcom in 1999 from the entertainment industry where he worked for Warner Brothers and Disney in Windows based standards and support.
Mr. Aranoff launched his career after serving for six years in the United States Marine Corp reserve.
Head of Global Security, Twitter
Greg Acton is the head of Global Safety & Security at Twitter, Inc., a social media company that instantly connects us to what's most important. In this role he is responsible for protecting Twitter's people, assets and related information on a worldwide basis.
Greg received his B.S. Degree in Criminal Justice and Business from San Jose University. Wanting to give back to his local community, he joined the Mountain View Police Department and, during a ten-year career, worked in a diverse range of challenging positions, including police detective.
In 1995, Greg decided to take his expertise into the corporate world and joined the security team at Applied Materials. As the Global Investigations Manager, he developed and directed investigative resources for global risk assessments, confidential investigations and intellectual property protection. In 2000, he joined Lam Research Corporation where he managed worldwide security operations, investigations and security systems. In 2005, he joined Palm, Inc. as the Director of Global Safety and Security, he was responsible for protecting Palm's future generation products and related information. In 2010, he entered the bio-pharmaceutical industry as the head of Security for Gilead Sciences, protecting and preventing product counterfeiting and supply chain security. Greg's took up his current role in 2011.
Greg has more than 25 years of experience in a wide variety of industries, manufacturing, consumer electronics, bio-pharmaceutical and now the exciting space of social media. He's built enterprise-wide security strategies focusing on the protection of people, information and physical assets and has developed significant expertise in identifying, classifying and mitigating threats and vulnerabilities. In addition to being Board Certified in Physical Security (CPP), Greg gained the coveted CISSP certification in 2008 and has championed the cause of security convergence.
He is a long standing member of the American Society for Industrial Security (ASIS) as well as a member of the Information Asset Protection (IAP) Council, Information Systems Security Association (ISSA) and the Chief Security Officer (CSO) Roundtable. In addition he is a member of the International Security Management Association (ISMA), the High Tech Crime Investigators Association (HTCIA) and the Association for Threat Assessment Professionals (ATAP).
In his spare time, he coaches youth ice hockey and also plays in adult hockey leagues.
Corporate Security Officer, Blue Cross and Blue Shield of Nebraska
As CSO, Adams is the executive responsible for Blue Cross and Blue Shield of Nebraska's entire security posture, both physical and digital. His responsibilities also include oversight of the company's business continuity planning and records management programs.
Adams is a seasoned information services and security executive with 15+ year's experience in developing, implementing and leading security governance, risk and compliance programs for two large health care organizations. In prior roles, Adams successfully developed and drove the adoption of several large-scale collaborative solutions which eventually formed the business intelligence framework for an innovative service delivery model for medical information providers. He has served on the boards of several professional organizations and co-chaired an ANSI task group that assisted with the development of the national EDI standard for the insurance industry.
Prior to entering the health care field as an information services professional, Adams spent 11 years in academia and earned advanced degrees in education, specializing in curriculum development and implementation of technology-assisted learning methodologies.
He has published 10 articles and papers and has presented to dozens of audiences representing both the public and private sectors on delivering technology-driven business innovation within the richly regulated health care industry.
Chief Information Security Officer, Cox Communications
Phil Agcaoili has been a change agent and transformation leader in the Technology and Information Security industries for over 20 years and is the Chief Information Security Officer at Cox Communications. He co-founded several companies and sold them during the Dot.Com era and is now helping shape the direction of cyber security for US Telecoms through his appointment as the cyber security committee co-chair of the FCC CSRIC and is helping shape the direction of Cloud computing as a founding member of the Cloud Security Alliance and as a co-founder and co-author of the CSA Cloud Controls Matrix (CCM) and GRC Stack. Mr. Agcaoili has led security teams at Cox Communications, Dell, Scientific-Atlanta, and VeriSign and has represented GE, VeriSign, Alcatel, Scientific-Atlanta, Dell, and Cox in their respective Corporate Security, Privacy, Governance, Risk, and Compliance councils and committees. Mr. Agcaoili also won the 2010 Information Security Magazine Security 7 Award in Telecommunications and the 2009 Information Security Executive of the Year Award. He is a co-founder of the Southern CISO Security Council, co-chairs the Evanta CISO Leadership Network, serves on the Advisory Council for the CISO Executive Network, and serves on the boards of several companies. Many of Mr. Agcaoili's proteges are leading other successful global security teams.
Information Security Officer, Baylor University
Jon Allen is the Information Security Officer at Baylor University. Jon holds a B.A. in Political Science and a M.S. in Computer Science. Jon is also a CISSP and EnCE. He has been working in information and network security for over ten years. Jon is a member of the Educause Effective Practices committee, and the SANS EDU advisory council. He has presented at Educause, Acuta, Resnet and IANS on topics ranging from 802.1x to whole disk encryption.
Director, Security, Citi
SVP – Global Information Assurance Head, Citigroup
Tim Appleby is the Global Information Assurance Head at Citigroup where he manages the corporation's global data protection infrastructure including Anti-malware, Data Leakage Protection, Endpoint Protection and Vulnerability and Threat Management Infrastructure. Prior to joining Citigroup, Tim was the Chief Scientist in the Integrated Security and Systems Solutions Business Unit at Science Applications International Corporation (SAIC) and an Adjunct Professor at The Johns Hopkins University in Baltimore, Maryland. During that time, Mr. Appleby was a Technical Director for Managed Security Services at Global Integrity (an SAIC Company) where he participated in the development, design and technical implementation of the Financial Services Information Sharing and Analysis Center (FS-ISAC) in support of PDD63 during the Clinton Administration, and Directed the Federal Government FED_CIRC Incident Response Center prior to 9/11. Preceeding his work at Global Integrity, Mr. Appleby held numerous Intelligence and Law Enforcement jobs in the US Government. Additionally, he designed, patented, and implemented a global incident response, Intrusion Detection and Tracking System for Motorola's Iridium LLC to support its global operational network and satellites. Tim has worked in the field of information security for 20 years.
Mng. Director/CISO/CPO, Applied Materials, Inc.
Senior Vice President and Chief Security Officer, Sallie Mae
Mr. Archer's responsibilities include securing and protecting all of Sallie Mae's systems and offerings, and for security initiatives across the company. Prior to Sallie Mae, Archer was the Chief Information Security Officer at Intuit and prior to joining Intuit, Archer was managing director at Global Competitive Strategies, LLC. Previously, Mr. Archer was Senior Vice President for Global Interoperability at Visa International and before Visa, at the Fidelity Brokerage Company; he was senior vice president of information security and technical risk. For his work in the U.S. Intelligence Community earned Mr. Archer the National Performance Review Hammer Award, a Distinguished Service Award from the Central Intelligence Agency and a Meritorious Unit Citation from the National Security Agency.
First Vice President and Chief Information Security Officer, New York Life Insurance Company
Steve Attias is First Vice President and Chief Information Security Officer in the Corporate Information Department. With over 30 years of experience at New York Life, Mr. Attias is responsible for developing, maintaining and monitoring enterprise-wide information protection programs, policies, standards, and procedures. As CISO, he is also responsible for adequately designing and coordinating security administration procedures that enable access to New York Life information resources in accordance with New York Life Security Policies, Standards and Procedures.
In this position, Mr. Attias has enhanced the Enterprise Security Program to meet the requirements of a new regulatory environment that stresses the importance of maintaining the privacy of customer information. He has also led the effort to enhance New York Life's ability to conduct business safely on the Internet. This includes building a common set of components to be reused by web-based applications. Recent accomplishments include the implementation of an outbound electronic content filtering system.
The Information Security Program at New York Life has been enhanced to include frequent security awareness activities, an application risk assessment built into the software development lifecycle, and continuous testing of the computing infrastructure as part of the vulnerability management process.
Mr. Attias's previous positions at New York Life included increased levels of management responsibility covering Computer Operations, Systems Software, Telecommunications and IT Architecture. His achievements in these areas include:
Mr. Attias earned his BS from the State University of New York at Stony Brook in 1974 and his MS from the Polytechnic Institute of New York in 1980. He is Fellow of the Life Office Management Association and earned his CISSP (Certified Information Systems Security Professional) designation through the International Information Systems Security Certification Consortium (ISC2) in 2001. Mr. Attias was recognized by IDG's Computerworld as one of the "Premier 100" IT Leaders of 2003. In 2004, the Information Systems Audit and Control Association named him a Certified Information Security Manager (CISM).
Vice President of Information Security, RaceTrac Petroleum Inc.
Will Alexander is the VP of IS, Special Projects, and Logistics at RaceTrac Petroleum, Inc. Will joined RaceTrac in 2004. During his tenure at RaceTrac, Will has held various positions within the IS and Special Projects departments. Prior to joining RaceTrac, Will worked for Milliken & Company in production management and process improvement. Will holds a MBA from Georgia State University and a BS in Mechanical Engineering from the Georgia Institute of Technology.
Director of Worldwide Information Security, Johnson & Johnson
Michael Barrett is a director with Johnson & Johnson Worldwide Information Security. He has worked in the fields of information security, security architecture and network architecture for approximately 20 years in both the health care and telecommunications industries. Prior to that, Michael has spent many years engaged in both software and hardware design and development at Bell Laboratories.
Michael received an MS degree from Columbia University and a BE from the State University of New York and is a Certified Information Systems Security Professional (CISSP).
Vice President - Global Information Services, E. & J. Gallo Winery
Chief Security Officer, Honeywell
Derek serves as CSO for two of Honeywell's four business divisions: Performance Materials and Transportation Systems (+$10B) overseeing both physical and cyber security functions worldwide. Derek sits on the leadership staff of the business CEOs.
Derek previously served as CISO in the chemicals, transportation and automation industries.
Derek's Grey Griffins fiction series for kids has sold over one million copies.
Education: Executive MBA from Columbia University.
Chief Information Security Officer, The Travelers Companies, Inc.
Linda Betz has served as chief information security officer of Travelers since December 2011. She is responsible for the company's security policies and strategy, employee security education, third party security assessments and security operations.
Previously, she worked for IBM for 29 years as director of IT Policy and Information Security in the office of the CIO. She was responsible for setting the company's internal security strategy, leading security initiatives to protect IT infrastructure and driving transformational change. She also helped improve the company's disaster recovery and business continuity plans.
Betz served as president of the Industry Consortium for the Advancement of Security on the Internet, a group co-founded by IBM, Microsoft, Intel, CISCO, Juniper, and Nokia to collaborate on improved security.
She holds a bachelor's degree in computer science and mathematics from State University of New York (SUNY) at Albany and a master's degree in computer science from Marist College.
Managing Director and Chief Information Risk Officer, JPMorgan Chase & Co.,
Anish Bhimani is Managing Director and Chief Information Risk Officer of JP Morgan Chase. In this role, he has global responsibility for ensuring the security, controls and resiliency of the firm's computing environment, and supports the firm's Corporate Risk Management program. He is also a member of the JPMC technology leadership team.Â
He was selected as Information Security Executive of the Year for 2008 by the Executive Alliance, and named to Bank Technology News' "Top 25 Innovators" list for his novel approach to information risk management.
Prior to joining the firm in 2003, Mr. Bhimani served as a senior member of the Enterprise Resilience practice in Booz Allen Hamilton, helping Fortune 100 companies improve the resiliency of their infrastructure. Prior to that, Mr. Bhimani served as Senior Vice President and Chief Technology Officer of Global Integrity Corporation (an SAIC Company) and Predictive Systems. During his tenure at Global Integrity, he also led the team that developed the Financial Services ISAC. Earlier in his career, Mr. Bhimani worked in the Security & Fraud Reduction practice at Bell Communications Research.
Mr. Bhimani has written numerous articles, and has lectured around the world on topics related to information security. He is the co-author of Internet Security for Business (Wiley & Sons, 1996), and a U.S. patent holder.
Mr. Bhimani received a Sc.B. in Engineering from Brown University and an M.S. in Information Networking from Carnegie-Mellon University.
Account Manager, iDashboards
Janeen Bidigare, a graduate of Lawrence Technological University, joined the iDashboards team two years ago as an Account Manager. With over fifteen years of experience in the technology industry, Janeen is able to understand organization's needs and get them on the fast-track to monitoring key performance indicators and making valuable decisions. Janeen is responsible for cultivating and maintaining new relationships with professionals in the Information Technology, Retail and Non-Profit industries and thrives on overcoming organization's data challenges and developing creative solutions for each of her customers.
Chief Information Officer, Research in Motion
Robin Bienfait is the CIO of Research In Motion. Robin oversees BlackBerry Operations and Corporate IT.
Prior to joining RIM, Robin held senior leadership positions within AT&T Labs and Global Network Services.
A graduate of the Georgia Institute of Technology with a master's degree in Management of Technology, Robin also holds a bachelor's degree in engineering from Central Missouri State University and an associate in business degree from Maryland University - European Division.
Chief Marketing Officer, Palo Alto Networks
René Bonvanie has more than 25 years of executive management and marketing experience in enterprise technology. Most recently, he served as Senior Vice President of Marketing, SaaS, and IT at Serena Software, and was Senior Vice President of Global Marketing at SAP. Earlier, as CMO at Business Objects, René was responsible for all marketing activity, including corporate communications, field marketing, and product marketing. Prior to that, he served as Senior Vice President of Worldwide Marketing at VERITAS Software Corporation. In his 10 years as Vice President of Product Marketing at Oracle Corporation, he managed the Oracle database product line, had editorial responsibility for Oracle Magazine and Profit Magazine, and co-founded Oracle's developer program, Oracle Technology Network.
Chief Technology Officer, Office of Personnel Management
David M. Bowen is the Chief Technology Officer (CTO) at the Office of Personnel Management (OPM). In this position, Mr. Bowen is responsible for introducing new information technology to the Agency and using advanced technologies to help reduce the Agency's retirement application backlog.
Before joining OPM in November, 2011, Mr. Bowen served as Assistant Administrator for Information Services and Chief Information Officer (CIO) for the Federal Aviation Administration (FAA). In that role, Mr. Bowen was the principal advisor to the FAA Administrator on the agency's information technology and directed strategic planning for information technology across the agency. He also oversaw the implementation of the FAA's Information Systems Security, E-Government, Shared Services, and Process Improvement Programs, and was named by Information Week as one of the country's top 50 public sector CIOs for 2010 and 2011.
Mr. Bowen has over 25 years of experience in healthcare information technology management in the provider, payer, consultant and vendor areas, and has served as CIO for healthcare delivery systems as large as 46 hospitals. Before joining the FAA, he was the Senior Vice President for Information Technology and CIO at Blue Shield of California, a $6.2 Billion health plan with over 2.5 million members and the 2nd largest not-for-profit healthcare organization in California.
Mr. Bowen has an undergraduate degree in Economics from Ursinus College, Collegeville, Pennsylvania and a Masters Degree in Business with Distinction from the Johnson Graduate School of Business, Cornell University, Ithaca, New York. He is also a Certified Public Accountant, holds an FAA Commercial Pilot certificate, and has over 30 years of flying experience.
Director, IT Security & Compliance, Cost Plus, Inc.
Tom has 30+ years of physical, material, personnel and information security experience including U.S Military, Property and Casualty Insurance and Retail environments. Tom graduated from Dominican University of California with a Masters in Business Administration, emphasis on Strategic Leadership and holds the following professional certifications: CISA (Certified Information Systems Auditor), CISM (Certified Information Security Manager), CISSP (Certified Information Systems Security Professional) and CRISC (Certified in Risk and Information Systems Control).
Tom currently serves as Director, IT Security and Compliance for Cost Plus World Market (Cost Plus, Inc.), a $1 billion dollar retail chain headquartered in Oakland, CA and operating in 34 states. He is responsible for the overall information security, regulatory compliance, business continuity, IT disaster recovery, and privacy strategy for this mid-size retail chain.
Prior to Cost Plus, Tom held the position of Sr. Director for Information Security at Fireman's Fund Insurance Company, a unit of the international holding company, Allianz AG, based in Munich, Germany. His responsibilities included: developing information security strategy, policies, security administration and disaster recovery for fireman's fund and serving as Regional Information Security Officer for Canada, the United States and Mexico.
Tom served on active duty in the U.S. Coast Guard and retired with the rank of Chief Warrant Officer, Grade 3 (CWO3), Telecommunications. During his career, Tom managed U.S. Federal information security compliance and disaster recovery planning for U.S. Coast Guard units throughout the Western, Gulf and Southeastern United States.
Tom is active as a volunteer in professional organizations including ISACA (Information Systems Audit and Control Association) and IANS (Institute for Applied Network Security). He has served on conference committees as a planner as well as a speaker and is currently the Co-Chair for ISACA's Fall 2012 North American Information system Resources Management and Governance and Risk Control conference. Tom also serves on a ISACA committee focused on professional knowledge and channels of learning.
Senior Vice President, Worldwide Marketing, Lumension
C. Edward Brice serves as Senior Vice President of Worldwide Marketing at Lumension. In this role, Brice is responsible for leading the company's strategic global marketing efforts; including branding, demand generation, solution marketing, partner marketing, installed base marketing, online marketing, corporate communications and public relations.
A seasoned industry veteran, Brice has more than 18 years of global marketing experience. Prior to joining Lumension, he served as group vice president of global marketing at software maker SAP AG (NYSE: SAP), the world's largest business to business applications software provider. There, he was responsible for defining and executing demand generation marketing programs across Europe, the Americas and Asia Pacific.
During his tenure at SAP, Brice held several management positions, including as vice president of global supply chain management solution marketing and also as vice president of global strategic marketing. Prior to joining SAP, Brice served as the director of business development and business planning for Sony Electronics and Sony Corporation of America where he was responsible for the identification and development of new business related to emerging technologies and services.
Brice earned a bachelor's degree in international marketing from Arizona State UniversityChief Information Officer, Georgia Department of Agriculture
As the CIO for the Georgia Department of Agriculture, Dan oversees the total operation of computing environment for the agency. In this responsibility, he ensures IT systems meet the needs of the organization, complies with governance from other Federal and State agencies and that a solid strategic plan with achievable IT initiatives is in place, based on the business needs of the customers.
Previously Dan was the Chief Information Officer for the Georgia Department of Public Safety, where he had responsibility for the organization's information technology and systems development.
Principal Security Architect, Worldwide, IBM Security Solutions
Kent Browne serves as Worldwide Principal Security Architect for IBM Security Solutions. With almost three decades of experience in networking and security, Browne is one of those responsible for the technical vision and architecture of security solutions, and is regarded as an expert in technical subject matter for IBM Security Solutions' protection solution suite. Browne is also very well versed in physical security infrastructure and strategy, and is asked to speak on the convergence between physical and logical (network) security regularly. He is frequently called a "translator" as he is able to translate the technical issues to the business folks, and vice versa. Browne has spoken at leading industry events such as RSA, Interop, InfoSec, Bicsi, ISC, Infragard, ISACA, and The Conference Board.. He has been a featured guest on Television (BBC, RAI, ABC News, Silicon Spin, etc.), Radio and in magazines (Computer World, Business News, New York Times, Wired, etc.) to name a few. Browne was co-author on the "IBM Security Solutions Architecture for Network, Server and Endpoint" Redbook, released in February of 2011. Browne received a Bachelors Degree in Business Management/Marketing, Summa Cum Laude, from American Intercontinental University. He has been a penetration tester for the public and private sector, and uses this unique view of security to help others better understand the taxonomy of an attack, and strategies to prevent it.
VP, IT Risk Management, McKesson Corporation
Chief Information Officer, Generation Mortgage Company
With more than twenty-five years in technology leadership roles, Walt's background includes positions managing IT and delivery teams at software and services companies as well as leading consulting groups. He has grown and transformed businesses, their customers and teams. Adept at working on technology challenges at both large and small companies, Walt frequently speaks to professional groups on the topics of IT governance, risk management and compliance.
After earning a BS in Physics from Guilford College, Walt began his career as a technical officer in the US Air Force, and has served in a variety of technology leadership roles with companies such as Fidelity, Gannett Corporation, TRW, Spherion, Ajilon Consulting and RM Battle. Walt earned a Master's degree in Public and Private Administration from Central Michigan University in 1991. While at TRW, he won the President's Award for leadership on their largest commercial project.
Walt makes his home just outside of Atlanta, Georgia with his wife Eileen and their four children.
Chief Risk Officer, Office of the Director of National Intelligence
Mr. Roger L. Caslow has been working with the Intelligence Community (IC) and the Department of Defense (DOD) for approximately 15 years, serving as an intelligence officer, program manager, strategic planner, and security professional for the Defense Intelligence Agency, National Geospatial-Intelligence Agency, and the Office of the Director of National Intelligence. His areas of expertise include Security (Physical and Cyber), Policy Analysis/Formulation, Risk Management, Program Evaluation/Management, Organizational Performance Management, Team Facilitation, Customer Relationship Management, and Operations Support/Management.
Mr. Caslow holds Bachelor of Arts degrees in Political Science and Economics along with a Masters Degree in Applied Economics from the University of Central Florida. His postgraduate education includes attendance at the Defense Acquisition University and National Intelligence College - Post Graduate Intelligence Program, where he studied Information Operations and Intelligence Policy. He is a recipient of the Joint Civilian Service Commendation Award, Civilian Combat Support Medal, and Civilian Expeditionary Medal.
Senior Director, Global System Engineering, RedSeal Networks
Liran Chen has more than 22 years of experience in IT Security and was involved in many technology innovations in the space of Web Application Firewalls, Intrusion Detection Systems and Firewall technologies. Liran oversees the Global System Engineering at RedSeal Networks, evangelizing continuous monitoring solutions and proactive risk management for better risk metrics.
Liran Chen was previously a Security Specialist at Cisco in the Security Technology Business Unit(STBU), engaged with fortune 50 enterprise in the financial vertical, to enhance their overall data center security, compliance and remote access solutions. Prior to Cisco, Liran led the East Region Sales Enablement team at Internet Security Systems (Acquired by IBM) transforming the IDS market to IPS and Next Generation firewalls. Prior to Internet Security Systems, Liran was the Director of Technology at Spearhead Security with AirGAP technology. Liran was responsible for the creation of the AirGAP product line from the drawing board to the large financial customers. Liran Holds a Bsc in Electrical Engineering from the Tel-Aviv University with focus on data communications. Liran holds CISSP as well as Cisco and Checkpoint Security Certificates.
Managing Director and Chief Information Security Officer, Depository Trust & Clearing Corporation (DTCC)
Mark Clancy is managing director of Technology Risk Management at The Depository Trust & Clearing Corporation (DTCC), a position established in January 2012. The department comprises Information Security, Business Continuity and Information Technology (IT) Risk Management.
Clancy joined DTCC in 2009 as Corporate Information Security Officer. In his broadened position, he has enterprise-wide responsibility for developing and implementing global security and business continuity policies, standards, guidelines, procedures and threat assessments pertaining to DTCC. He also chairs the DTCC Security Steering Committee, which is composed of senior IT management as well as business-line and other corporate managers.
Active in the financial services and critical infrastructure communities, Clancy participates in the Financial Services Information and Analysis Center (FS-ISAC) and Financial Services Sector Coordinating Council (FSSCC). He is a frequent speaker at FS-ISAC conferences and an active member of FS-ISAC's Threat Intelligence Committee. In addition, he serves in a leadership capacity as a member of FS-ISAC's board of directors; as a member of FSSCC's executive committee; and as FSSCC's private-sector lead for financial sector-wide cyber security exercises to help improve its resiliency against cyber attacks.
Clancy has spoken on cyber security to attendees at the Air War College National Security Forum, as well as at events sponsored by U.S. Government agencies, such as the Committee on National Security Systems and the US Army Enterprise Solutions Competency Center.
Before joining DTCC, Clancy was executive vice president of Information Technology Risk at Citigroup. His responsibilities included developing IT Risk strategy and managing the company's information security polices and standards. He also directed company-wide efforts around third-party access, data protection, infrastructure protection, and vulnerability and threat assessment. He was with Citigroup from 2000 until 2009.
Earlier in his career, Clancy consulted for several Fortune 500 companies on information systems and information security projects spanning the banking, insurance, pharmaceutical and manufacturing industry sectors.
He has a B.S. degree in Electrical Engineering from Drexel University and is a member of the Institute of Electrical and Electronics Engineers.
Chief Information Officer, Van Eck Global
Mr. Comès, Chief Information Officer, oversees all technology aspects of Van Eck Global. Van Eck Global is a mid-size money manager founded in 1955 with offices in New York, Frankfurt, Zurich, Madrid and Sydney. Van Eck Global manages $35 billion in assets across mutual funds, exchange traded funds and institutional accounts invested in hard assets, commodities, emerging markets and fixed income assets. Mr. Comès is responsible for day-to-day operations of the network and telecommunication, business continuity planning and testing, company web sites and intranet, proprietary and non-proprietary sales analysis reporting system and trading and portfolio management system. Mr. Comès joined Van Eck in 1995. Prior experiences include management of technology and back office operations for a commodity trading hedge fund firm and the broker dealer subsidiary of French bank Crédit Agricole in New York. Mr. Comès received a BS in Finance from Northern Arizona University and a Master’s degree in Technology Management from Stevens Institute in Technology.
Chief Information Security Officer, First American
Bernie Cowens is Corporate VP and Chief Information Security Officer for First American, where he oversees all aspects of information security for the company and its global business units. Prior to joining First American, Bernie held senior security executive positions at AAA, Experian, and PricewaterhouseCoopers. Bernie is an advisor to several early stage and start up security technology companies. He has over 20 years of security and technology leadership experience and he holds the CISSP and CISA designations. A former military officer and Special Agent, Bernie has extensive international counterintelligence and counterterrorism experience. Bernie attended the University of Maryland and earned a Master's Degree in Management Information Systems.
Chief Information Security Officer and Privacy Officer, Cooper Health System
Phil Curran is currently the Chief Information Security and Privacy Officer for Cooper University Hospital in Camden NJ. With over 20 years' experience in information technology and compliance, he has expertise in strategic planning, information assurance, risk management and regulatory compliance. Phil's strengths lie in strategic alignment of technology with corporate strategy and risk management.
Phil spent 20 years in the U.S. Air Force.
Technical Director, Raytheon Company
Michael Daly is the Technical Director of Information Security Solutions for Raytheon Intelligence & Information Systems. He was appointed to this position in 2011. Raytheon Company (NYSE: RTN), with 2010 sales of $25 billion, is a technology and innovation leader specializing in defense, homeland security and other government markets throughout the world. With a history of innovation spanning 89 years, Raytheon provides stateof- the-art electronics, mission systems integration and other capabilities in the areas of sensing; effects; and command, control, communications and intelligence systems, as well as a broad range of mission support services. With headquarters in Waltham, Mass., Raytheon employs 72,000 people worldwide.
As the Technical Director, Michael provides leadership in Raytheon's cyber technologies, managing Research & Development investments and operating an array of Cyber Technology Innovation Centers across Raytheon. For the thirteen years prior to this, Michael served as the Corporate Director of Information Technology Enterprise Security Services. With more than twenty-four years in security and information systems, Michael has worked with both the private sector and the federal government with responsibilities including software engineering for law enforcement, university teacher of database management, and manager of enterprise applications and distributed computing.
Michael has also served as Vice President of Advanced Networking for a consulting company and launched a notfor- profit organization that was commended by the Massachusetts House of Representatives.
Michael is on the Governance Board of the Transglobal Secure Collaboration Program, and the Board of Advisors for Exostar. He was the 2006 recipient of the People's Choice Award for the ISE New England Information Security Executive of the Year and the 2007 recipient of the Security 7 Award for the Manufacturing sector. Michael holds a World Record for Highest Altitude Luge and is credited with a first ascent of a mountain in the Wrangell-St. Elias Range.
He earned his bachelor's degree in Mechanical Engineering from Boston University, is a Certified Information Systems Security Professional and a Qualified Raytheon Six Sigma Specialist.
Chief Information Officer and Chief Financial Officer, Volunteers of America Chesapeake
Founded in 1896, Volunteers of America is one of the top 10 non profits in the U.S. when measuring size and budget. As a $1.3 billion organization working in 46 states and serving some 2 million people in 400 communities, the challenge of managing, analyzing and acting upon intelligence gleaned from these programs called for some IT innovations, including building a cloud-based knowledge management system. An MBA with thirteen years of Finance, IT and project management experience, Shyam Desigan has focused on enabling healthcare providers and non-profits use outcomes-based benchmarking to build a sustainable competitive advantage. Shyam joined Volunteers of America in February 2009 to manage corporate and project finance & IT operations for the non-profit's 26 human service programs throughout the Mid-Atlantic. Since joining the Volunteers of America Chesapeake executive team, he had been recognized locally and nationally for the dramatic strides he has made for the non-profit including executing a turnaround leveraging Analytics and technology. As the next step he is focused on pushing BI to end point devices leveraging mobility in a secure environment that would allow Case workers to leverage data for decision making. He has received an MBA in Finance from Kelley School of Business, Indiana University and a BS in Electronics Engineering.
Senior Vice President, Architecture, Citi
Dan Dezen is SVP of Enterprise Architecture at Citigroup. His current areas of responsibility include Global Strategic Initiatives, Architecture Policy and Standards, and Vendor Management. During his tenure at Citi, Dan has provided leadership in emerging technologies such as Identity Management, Service Oriented Architecture, and security engineering. He is a graduate of Emory University and lives in Atlanta, Ga.
Chief Information Security Officer, UBS Financial Services
Dennis Dickstein is Chief Privacy and Information Security Officer for UBS Wealth Management Americas, developing and leading data security, records management and identity theft protection programs. In prior years, he headed operational risk and installed control frameworks to comply with Sarbanes Oxley for the same firm. Previous to that, Dennis held various operating and risk management positions in other UBS areas and in other financial services firms.
Mr. Dickstein has presented at conferences and business schools, speaking about operational risk, aligning risk management with business objectives, privacy and information security. He is co-author of the book "No Excuses: A Business Process Approach to Managing Operational Risk", published January 2009 by John Wiley & Sons. He holds a Masters degree from Harvard University and a Bachelor of Science degree from MIT.
Executive Director, JPMorgan Chase & Co.
VP Global IT Governance, Risk & Compliance, Levi Strauss & Co.
Elizabeth leads the Global IT Governance, Risk and Compliance department at Levi Strauss & Co. She is accountable for driving strategic and annual planning processes across the organization, and for leading a group of business leaders, the Global Operating Council, on technology governance and prioritization of IT investments. Her responsibilities include global governance, project and portfolio management, information security world-wide, supplier relationship management, test management, release management, compliance and technology tools. In addition, Elizabeth is Engagement Leader for the Levi's ® and Dockers ® Brands as well as the sponsor of the IT Leadership Program (ITLP), a program that identifies and nurtures future leaders through rigorous development and rotational assignments. Recently, she was a featured speaker at the IT & Cyber Security Exchange. Elizabeth holds a Bachelor of Sciences degree in Computer Science from Duke University.
Director, North American Security Consulting and Delivery, IBM
Jack Danahy is the Director for North American Security Consulting and Delivery at IBM. Previously, Jack was IBM's Director for Advanced Security, and is an international speaker and writer on topics of software, system, and data security. Jack is the original founder and CEO of two successful security software companies: Ounce Labs, sold to IBM in July of 2009, and Qiave Technologies, sold to Watchguard Technologies in 2000. He holds five patents in a variety of security technologies including secure distributed computing, software analysis, and secure system management. He is a distinguished fellow in the highly respected Ponemon Institute, a Computerworld Honors Laureate, and has contributed to the development of legislation on computer security in both the U.S. House and Senate. He is concerned and active within the public and private sectors on issues of cyber security, secure systems development and acquisition, and the strategic balance between business needs and security controls.
VP of Product Marketing, Proofpoint
Information Security Officer, Texas Capital Bank
Eric Fisch joined Texas Capital Bank in 2006 as the Information Security Officer. He started with responsible for the information security, IT Risk, and IT audit compliance programs, and has since taken ownership of the Bank's GLBa compliance and privacy programs. In his capacity as ISO, he has redefined the Bank's security program to better support the business objectives and implemented programs and
controls to better protect the Bank's customers from fraud.
Fisch was formerly with KPMG's Information Risk Management team. In his eight years with KPMG, he primarily supported clients in the retail and financial services industries; providing security and compliance consulting along with the occasional audit work. He was also an integral part of KPMG's information security methodology development team, defining the policies and procedures that KPMG consultants world-wide would use to support their clients.
Mr. Fisch currently maintains his CISSP, CISM, and CIPP certifications, and he received his PhD in computer science from Texas A&M University.
Systems Engineering, Palo Alto Networks
Elton Fontaine, Systems Engineering for Palo Alto Networks, is responsible for territory accounts in Northern California, Pacific North West, and Inter-Mountain/Rockies. Elton has over 15 years of experience in the IT and telecommunications industry with a focus on security, datacenter networking, mobility, and solutions based network design. His background includes designing and implementing network and security solutions for large enterprise, government and educational customers. Elton achieved his CCIE and 2001 and also holds current technical certifications from Palo Alto Networks, Cisco, and NetApp.
Senior Vice President and Global Information Security Officer, AIG
Paul de Graaff is the Global Information Security Officer and Senior Vice President for Global Operations and Systems at AIG. In this role, he has the corporate responsibly for the execution of AIG's Information Security Program across all AIG's business lines, as well as for strengthening AIG's Information Security posture on a continual basis.
Mr. de Graaff joined AIG in March of 2007 as the Chief Security Officer with AIG Operations & Systems.
Prior to joining AIG, Mr. de Graaff held the Corporate Information Security Officer at Depository Trust & Clearing Corporation. Mr. de Graaff held Information Security consulting and management positions at ING, ABN/AMRO, IBM and UNISYS.
Mr. de Graaff was awarded the Top 100 IT Leadership Award in 2006 by Computerworld Magazine.
Mr. de Graaff holds a Bachelor's Degree in Applied Mathematics from the Open University of The Hague, The Netherlands.
Area Senior Vice President and Managing Director, CyberRisk, Arthur J. Gallagher
Joe is the CyberRisk Services Practice leader at Arthur J. Gallagher, and is also responsible for management oversight of the Executive Risk Group in New York City. His responsibilities include management, business development, and marketing of Executive Risk coverage lines. These specifically include Cyber Liability, Privacy Liability, Network Security Liability, Media Liability, Directors & Officers Liability, Employment Practices Liability, Fiduciary Liability, Crime & Fidelity Insurance & K&R Insurance.
Previous to Gallagher, Joe held senior positions at AmWins Brokerage, AON, Marsh & Gulf Insurance Company. Mr. DePaul began his insurance career in 1994, currently has 18 years of experience and has developed expertise in all aspects of Cyber & Executive Risk.
Professional Organization Memberships:
Joe is also a frequent speaker on topics including Cyber, Management & Professional Liability.
Executive Director, JPMorgan Chase & CO.
Jeffrey DiMuro is an Executive Director and the Global Security Architect Lead at JPMorgan Chase & Co. Since joining JPMC in 2010, Mr. DiMuro has focused on security solution architecture in the areas of secure email, data loss protection, perimeter security, mobile and cloud security. Jeff's other main focus is to ensure the global adoption and integration of the security solutions by the various business lines throughout JPMC.
Jeff is also a member of JPMC's Intellectual Property and Patent team which serves to promote and protect innovative products and services developed across the Bank.
Prior to joining JPMC, Mr. DiMuro served as an SVP at Citigroup where he lead the Data Protection Engineering team. Jeff has also held senior leadership positions at ABN Amro Bank, Nortel Networks, and PGI. Mr. DiMuro has presented at various security conferences on ways and methods to protect intellectual property across the Enterprise and recently published a chapter on Data Loss Protection Techniques and Digital Rights Management in the book entitled, There's a New Sheriff on Town.
Jeff's passion for IT security has led to the filing of four patents in the areas of Identity Management (iBind), Secure Email (Secure Transfer Electronic Presentment), Encryption, and the scoring and digital profiling of packets (Packet Profiling).
Mr. DiMuro earned his Juris Doctor from the Widener University School of Law and holds an undergraduate degree in Finance from the College of New Jersey.
Senior Vice President, Compliance, Citigroup
Keith Donnelly (CISA, Itil(f), CBCP, CGEIT, CRISC) is a Senior Vice President at Citi. Keith manages a global team and is responsible for managing risk, control assessments and continuity of business relating to Database, Platform, Middleware and Messaging infrastructure services that support Consumer business. In addition, Keith is the Distributed Services coordinator for Data Privacy and Country Clearance.
Keith has 15 years of Information Technology expertise within Risk Management, Audit, Compliance, Information Security, Service Delivery within financial services. His coverage includes applications and infrastructure supporting trading floors, as well as institutional brokerage and retail banking. His passion is control automation. His educational background includes an MBA in Accounting and Information Systems from Rutgers University, as well as advance programming from Chubb Institute and advanced IT management from Columbia University.
Chief Scientist, Center for Cyber Security Innovation, Lockheed Martin
Rick Doten spent the last 10 years managing penetration testing, forensics, incident response, and risk assessment teams for commercial and government customers. Today, Rick is Chief Scientist for Lockheed Martin's Center for Cyber Security Innovation where he works with Lockheed business units to provide guidance to build and maintain trusted systems for our customers. Current trends Rick spends a lot of time working on are Advanced Persistent Threat (APT) defense, Smart Grid Security, Application Security, and Insider Threat. Rick also conducts many external and internal security presentations and media interviews on those topics.
Managing Director, PricewaterhouseCoopers
Mr. Dorough re-joined PricewaterhouseCoopers in 2012 and has over 19 years experience in IT Security, IT Forensics, IT Audit, and IT Governance. Areas of focus include digital threat assessments, Cyber incident identification and response, electronic investigations and IT Security organization assessment and development.
Prior to returning to PwC, Mr. Dorough was the Global Chief Information Security Officer for Textron. As Global Chief Information Security Officer, Mr. Dorough was responsible for developing, maintaining and assuring continuous improvement of Textron's Information Technology Security strategy, programs, policies and processes. This included leadership of the Information Technology Risk Management (ITRM) Council which is a team of Security leaders from across Textron's Business Units and COEs. Mr. Dorough was also responsible for IT Privacy governance, software asset management, disaster recovery and led the IT portion of the electronic discovery (eDiscovery) program for Textron.
Mr. Dorough has a Bachelor of Science in Computer Science from the University of Texas at Tyler. He is a certified DFSS Green Belt and has additional certifications in IT, IT Forensics, IT Data Privacy, eDiscovery, IT Audit, and IT Security. He is recognized as an industry SME in the area of IT, IT Security, eDiscovery and Forensics and frequently speaks at security related events, functions and conferences and sits on several security related boards and governing bodies. CIO Talk Radio, CXO Magazine, CSO perspectives, CISO Executive Summit to name a few.
Chief Information Security Officer, Heroku, Salesforce.com
Adam Ely is the CISO of the Heroku business unit at Salesforce. Previous to Salesforce, Adam led security operations, application security, and compliance for TiVo where he was responsible for all risk management and technical security functions. Prior to TiVo, Adam led security functions within The Walt Disney Company and was responsible for security operations and application security of Walt Disney web properties including ABC.com, ESPN.com, and Disney.com.
Adam was named one of the top 25 security influencers to follow in 2012 for his industry contributions and is the author of the forthcoming McGraw-Hill book, Information Security Business & Strategy Essentials.
2. Matthew Archibald had to cancel, so please delete him from the Host page and also the 11:20am session on the agenda....please put Adam in his place and change the text below to have Adam's name in it.
The challenges to organizations and the dynamics of change are forcing the constant rethinking of a security leader's view of what success means to the organization. In this session, "Insights and Interviews", Adam Ely, Chief Information Security Officer of the Heroku business unit of Salesforce.com and Carl Allen, Director of I.S. Security & Assurance of InterMountain Healthcare will share their thoughts on what it will take to be successful in this fast paced environment.
Senior Director, Security Operations, McKesson Corporation
Information Security Officer and Director of Digital Interests, Southern Methodist University
George Finney is the Information Security Officer (ISO) and Director of Digital Interests for Southern Methodist University. Mr. Finney works in a variety of areas at SMU including facilitating IT Security and Compliance, increasing Regulatory Awareness, streamlining the IT Contracts process, as well as advocacy for Open Source software and processes. Prior to joining SMU, Mr. Finney worked in the telecommunications industry for several years on Voice Over IP projects, Data Security Consulting, Application Development, and Network Operations.
In May of 2008, Mr. Finney completed his Juris Doctorate at Southern Methodist University's Dedman School of Law and is licensed to practice law in Texas. Mr. Finney earned a bachelor of arts degree in liberal arts in 1999 from St. John's College in Santa Fe. He spends most of his spare time cycling, writing novels, and working on short film projects. Mr. Finney also maintains a blog called HackLaw (hacklaw.com) that focuses on legal issues related to Information Security and Privacy issues.
Chief Privacy Officer, The Coca-Cola Company
Katherine Fithen has been a leader in information security for more than 20 years. She is currently the Chief Privacy Officer at The Coca-Cola Company. Prior to joining The Coca-Cola Company in 2002, Katherine was the Senior Manager of the CSIRT Program at PricewaterhouseCoopers, LLP, and the Manager of the CERT®. Katherine has earned a Bachelor of Arts in Retail Management, a Master of Arts in Personnel Management, and a Master of Science in Information Science.
Global Vice President, Client & Supplier Security, Aon Hewitt
Pamela joined Aon in August, 2005, and is currently the Global VP of Client & Supplier Security. Prior to the merger of Aon & Hewitt Associates, Pamela led the Supplier Governance function for Hewitt. Pamela has over 15 years of experience in managing business risk with fortune 500 companies.
Partnering with the leaders of Security Risk Management (SRM) and Aon's Chief Information Officers, Pamela is responsible for Aon's global client security story. SRM's vision is that Aon's security story is a key differentiator that crosses all of Aon's product offerings. Ensuring confidentiality, integrity and availability of Aon and Aon's clients' information is SRM's top priority.
Pamela's team is responsible for assisting all Aon Business Units in responding to RFP's & security assessments that contain questions related to the six practices within SRM (Information Security, Business Continuity & Disaster Recover, Risk & Assurance, Corporate Security, Information Management/Records Retention & Client/Supplier Security).
The CSS practice also leads the following activities related to Aon's clients and Aon's supply base: business unit risk consultation, client security relationship management, supplier security governance, contract security reviews/negotiation, risk assessment and mitigation, and client onsite security audits/site visits.
Sr. Director and Chief Information Security Officer, Tyco, International
Gene Fredriksen is the Senior Director and GISO for Tyco International. In this role he is responsible for the development of global information protection and technology risk programs for the company spanning 80 countries and 120,000 employees. Gene has over thirty years of Information Technology experience, with the last twenty focused specifically in the area of Information Security. In this capacity, he has been heavily involved with all areas of Audit and Security.
Immediately prior to his current role, Gene held the positions of Principal Consultant for Security and Risk Management Strategies for Burton Group, Vice President of Technology Risk Management and Chief Security Officer for Raymond James Financial, headquartered in St. Petersburg, Florida, and Information Security Manager for American Family Insurance. He served as the Chair of the Security and Risk Assessment Steering Committee for BITS, as well as serving on the R&D committee for the Financial Services Sector Steering Committee of the Department of Homeland Security.
He has published numerous papers and books, and is a frequent speaker before audit and security audiences, He served as Chair of the St. Petersburg College Information Security Advisory Board. He is a member of multiple advisory boards for universities, organizations, and security product companies. Gene maintains a close working relationship with both local and federal law enforcement agencies. In 2004, Gene was selected as one of the five finalists for Executive Alliance's Information Security Executive of the Year Award.
Chief Privacy and Security Officer, University of California, Berkeley
Ann Geyer is the Chief Privacy and Security Officer at UC Berkeley responsible for information policy and practices affecting over 100,000 students, faculty, and staff. She serves on the University of California committee charged with developing a standard framework for privacy and security administration. She is also the campus privacy officer for HIPAA and FERPA compliance, and serves as advisor to the campus committee for the protection of human subjects. Ann plays a pivotal role promoting privacy by design concepts and integrating security management into IT operations. She is a practicing attorney with professional certifications in privacy, security, and risk management. She has written extensively on the topics of identity and access management, electronic signatures, policy driven data protections, and IT governance. She is an instructor for ISACA governance and risk management certification and is a frequent speaker at local and national conferences.
Regional Head of Security Technology, UBS
Mr. Georgakopoulos has led Global Information Security Programs for large Financial Services firms such as NASDAQ OMX, Bank of China and Deutsche Bank. He is currently Regional Head of Security Technology at UBS. His experience is focused on global information security, privacy and governance frameworks, policies, procedures, guidelines and standards.
He has evaluated various industry best practices, including NIST, ISO, SANS, COBIT, and CERT, as well as legislative and regulatory compliance requirements, including SOX, GLBA, PCI, HIPPA, EU Data Directive, and FFIEC.
Information Systems Security Officer, Centers for Disease Control and Prevention
Alison Gunnels is an Information Systems Security Officer for areas of epidemiology and bioinformatics at the Centers for Disease Control and Prevention (CDC). She has 17 years of experience in information technology, specializing for 14 years in information security. Ms. Gunnels joined CDC from a Fortune 100 company, at which she provided information security services to the federal government.
Ms. Gunnels holds a BA of Security Management with honors from American Military University. Her certifications and experience include business continuity planning, computer forensics, and information system auditing. Her work has been published in print and online magazines, including SC Magazine, the ISSA Journal, and SANS Advisor. She is currently pursuing a graduate degree in Criminal Justice.
Global IT Information Security Officer, Celanese Corporation
Parrish Gunnels serves as a Global IT Information Security Officer and Compliance Manager at Celanese Corporation, a $6.4B global technology and specialty materials company that engineers and manufactures a wide variety of products essential to everyday living. He has more than 14 years of IT experience in various functions such as business analysis, project management, development, policy and process creation, business continuity management, internal / external audit, risk management and information security. His experience includes working in multiple industries including financial services, telecommunications, and chemical manufacturing. Over the past few years, he has been focused on securing existing networks through risk analysis, control definition, and user experience. Parrish holds a Master's of Business Administration from Texas Christian University and certifications as a Professional Project Manager (PMP), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), and Certified Information Systems Security Professional (CISSP).
Director, IT GRC, JetBlue Airways Corp.
Head of Information Security, Aetna
Sean Hart, Head of Information Security Aetna, is responsible for the information security program management functions, including governance and regulatory compliance, risk management, threat and vulnerability management, security administration and security awareness and training Sean brings 25 years of technical and leadership experience in Security principles and support. He has worked in business, distributed system integration, and IT security. During his time at Aetna, he has successfully led many large scale projects including Payment Card Industry certification, merger and acquisitions integration, and regulatory compliance.
Chief Information Security Officer, Genesis HealthCare
Ray Hawkins is the CISO of Genesis Healthcare, bringing more than 15 years of experience to lead Information Security for the largest post-acute Healthcare provider in the U.S. In his role Ray is responsible for security strategy and architecture, vulnerability management, e-discovery, investigations and forensics, risk management and compliance. He also serves as a GIAC advisor for the SANS Institute, providing guidance and direction to prospective advanced certification candidates. Prior to Genesis, Ray served in a variety of security leadership roles and consulted for several large enterprise clients.
In addition to his role as a CISO, Ray is completing work on PhD. in Information Security and holds several professional designations. He has also served in leadership and volunteer roles with both the ISSA and ISACA and speaks frequently on a number of current and emerging Information Security and Risk Management issues.
Chief Information Security Officer, GE Capital
Chief Security Officer, The New York Times Company
Mike Higgins is a veteran security executive with more than 20 years of experience working in the Government and in private industry. As the founder of the DOD Computer Emergency Response Team (DOD-CERT), Mike was one of the earliest advocates in the leadership role of the Federal Government through the identification of the five critical infrastructures.
Today Mike serves as the Chief Security Officer (CSO) for The New York Times Company leading the company's risk and security programs. Previously Mike held the CSO position at LexisNexis following their highly visible public breach in 2005. For more than a decade Mike was an executive security consultant to Fortune 500 companies including Time Warner, Citigroup, Sun Microsystems, Merrill Lynch, JPMorganChase, and British Petroleum.
Mike holds dual certifications as a Certified Information Security Manager (CISM) and a Certified Protection Professional (CPP) and is the recipient of the Defense Intelligence Agency's Director's Medal and Federal Computer Week's Federal 100 Award. Mike is a visiting professor at the Northeastern University where he teaches the Capstone Course for their Master of Science in Information Assurance, an NSA/DHS Designated Center of Academic Excellence in Information Assurance Education; a visiting lecturer for over 10 years at the McIntire School of Commerce at the University of Virginia and a former adjunct professor in the Information Assurance Program at The George Washington University.
Mike received his Bachelor's degree from Northeastern University and his Masters' from the Viterbi School of Engineering at the University of Southern California.
Director of Information Protection, Cigna
Jim Lemieux is a Director of Information Protection in the Cigna Information Protection organization and leads the Access Management and Governance function. Jim's current focus is protecting customer information by ensuring Information Protection access controls are appropriate given the level of risk. Jim has worked in Information Technology for the past 27 years in a variety of roles including Operations, Programming, Network Administration and Information Security, focused on Information Security for the past 15 years. Jim has worked for a number of insurance companies including Aetna, Travelers, and Chubb Executive Risk and has brought his previous enterprise experiences to Cigna. Jim has been working at Cigna for 13 years and has been focused on Identity and Access Management for the past 6 years.
Jim currently holds the Certified Information Systems Security Professional certification.
Information Security Officer, NASA Ames Research Center
Vice President Sales, Americas, Lumension
Corporate Security Officer, Fidessa Corporation
Howard is currently the Corporate Security Officer of Fidessa corp. He has been in the IT Security field since 1982 having worked at the US DoD National Security Agency, AT&T Bell Labs, AT&T UNIX System Labs (USL), AT&T Taiwan, AT&T WorldNet, Lucent, Avaya and as an independent contractor to Johnson & Johnson. He has published various technical papers and several government reports and standards on security. His current responsibilities include IT Security, Physical Security, and Business Continuity Planning for Fidessa Corporation
Senior Director, IT Risk Management, J. C. Penney Company, Inc.
Scott Howitt currently serves as the senior director of IT risk management for J.C. Penney, Inc. after having joined the organization in 2009. In this role, Howitt manages the teams responsible for security engineering, compliance and risk management, access management and business continuity.
Howitt joined J.C. Penney after four years at Alliance Data where he served as the director of information security. There he was responsible for all aspects of corporate information security, training and compliance and incident response. Prior to Alliance Data, Howitt served as the CIO at Benefitmall and the CTO of jobs.com.
Vice President of Technology, Epsilon
Mr. Johnson has more than 20 years in the technology industry, with over 10 years in senior management roles, draws on a wide range of industry knowledge, and demonstrates a passion for innovation in the field. He has created and designed highly profitable and secure solutions for high-volume e-commerce websites, kiosks, mobility, and retail clients, including a patent-pending mobile security solution.
Mr. Johnson joined Epsilon in the fall of 2010 and is responsible for multiple development teams leading application development enhancements and technical architecture. Mr. Johnson joined Epsilon from Rapp Collins where he oversaw the creation and launch of a global marketing platform. Prior to Rapp Collins, he worked as a Director of Product Development & Technology at Study Island, an online education company. Mr. Johnson also held senior technical positions at Verizon Business/Totality where he worked on projects with major brands including American Airlines, Virgin Atlantic, Best Buy, The Sharper Image, Stanford Medical Hospital, Sony Music, and FedEx
Product Marketing Manager, Palo Alto Networks
Matt Keil joined Palo Alto Networks in January of 2007 as a member of the products team. Mr. Keil played a key role in defining and implementing the market positioning for Palo Alto Networks and he is the author of the Palo Alto Networks Application Usage and Risk Report, a bi-annual analysis of the application usage and related risks on enterprise networks. Cumulatively, Mr. Keil has 11 years of experience in the enterprise network firewall market, working for Check Point Software, then Juniper Networks via the NetScreen acquisition immediately prior to joining Palo Alto Networks;
Director of Product Marketing, Palo Alto Networks
Chris King is director of product marketing for Palo Alto Networks. Previously, Mr. King held strategic and product marketing roles at Blue Coat Systems, including responsibility for marketing and strategy for MACH5, Blue Coat's application acceleration solution - which he launched and helped grow to a $160 million/year business. Prior to joining Blue Coat in June of 2004, Mr. King spent over 8 years as an information technology analyst for META Group. An internationally recognized expert on information security, Mr. King has consulted with hundreds of large IT organizations, spoken before a variety of audiences, and is often quoted in trade and business press. Before META Group, Mr. King managed an international network for Securities Registration Depository, and was employed by Ernst & Young. Mr. King holds a B.A. from George Mason University.
Executive Vice President of Product Management and Product Marketing, Proofpoint
David Knight leads Proofpoint's global product management and marketing initiatives. He brings a wealth of large enterprise SaaS experience to Proofpoint, having previously served as CTO of Cisco's Collaboration Software Group, where he was responsible for product and technical vision and strategy, product management and user experience. Mr. Knight was previously vice president of product management for leading cloud-based conferencing and collaboration vendor WebEx Communications, where he played a central role in the company's rapid growth and eventual $3.2 billion acquisition by Cisco. Earlier he was vice president of marketing and product management for SaaS pioneer Portera Systems and an entrepreneur in residence at Institutional Venture Partners. Mr. Knight has also held executive positions at Sybase and Oracle. He holds an M.S. in industrial administration and a B.S. in information systems and industrial management from Carnegie Mellon University.
Senior Vice President, Global Consumer Information Security, Citigroup
Mark Kramer, CISM, CISSP, CRISC is a Senior Vice President at Citi responsible for translating information security strategy into successful program delivery for Global Consumer Information Security. Prior to joining Citi, Mark built and led global information security programs and functions at Merck, Schering-Plough and Organon BioSciences. He has over 25 years of leadership experience in Information Security and IT.
Mark holds a Master's degree in Operations Research from Case Western Reserve University and a Ph.D. in Biometrics from The Ohio State University.
Chief Information Security Officer, Johns Hopkins University
Darren Lacey has been serving as Chief Information Security Officer and Director of IT Compliance for Johns Hopkins University and Johns Hopkins Medicine for the past eight years. He has been working in the technology sector, as a developer, attorney, consultant and executive for twenty years. He serves on several committees related to homeland security, privacy and cyber-security. He was the first Executive Director of the Johns Hopkins University Information Security Institute, a National Security Agency Center of Academic Excellence in Information Assurance.
Director and Audit Committee Chair, Document Capture Technologies, Inc
Senior Vice President, IT Audit, Brown Brothers Harriman & Co.
Ken is a Senior Vice President in Brown Brothers Harriman & Co.'s Internal Audit Department. He is the Senior Systems Audit Manager and has approximately 20 years experience in IT Audit. Ken came to BBH after 13 years at Bear Stearns in various IT Audit roles. Ken has experience in auditing both application systems and the supporting infrastructure. In other experience, Ken provided programming support to the audit department using reporting tools for the purposes of selecting random samples and creating exception reports.
Ken has a BS in Accounting from Rutgers University and is a Certified Information Systems Auditor.
Chief Marketing Officer, Fixmo
Tyler is the Chief Marketing Officer at Fixmo, the mobile risk management company. As CMO, Tyler leads the marketing and product strategy efforts for Fixmo's suite of Mobile Risk Management solutions that target government agencies, private enterprise, wireless operators and professional consumers. Tyler is currently focused on expanding Fixmo's product offerings to encompass device and data integrity assurance, context-aware data protection and policy enforcement, device and data loss prevention, compliance assurance and enterprise auditability. Prior to joining Fixmo, Tyler was Vice President of BlackBerry Global Alliances and Developer Relations at Research In Motion (RIM).
Chief Technology Officer, RedSeal Networks
Dr. Mike Lloyd has more than 25 years of experience in the modeling and control of fast-moving, complex systems. He has been granted 18 patents on security, network assessment, and dynamic network control. Before joining RedSeal Networks, Dr. Lloyd was Chief Technology Officer at RouteScience Technologies (acquired by Avaya), where he pioneered self-optimizing networks.
Dr. Lloyd was previously principal architect at Cisco on the technology used to overlay MPLS VPN services across service provider backbones. He joined Cisco through the acquisition of Netsys Technologies, where he was the senior network modeling engineer. He holds a degree in mathematics from Trinity College, Dublin, Ireland, and a PhD in stochastic epidemic modeling from Heriot-Watt University, Edinburgh, Scotland.
Chief Security Officer, ITWorks Operations, A Business Unit of Cerner Corporation
Gary Long, Chief Security Officer, Cerner ITWorks Operations, oversees information security, risk assessment, compliance, policy, reporting and auditing for managed information technology offerings (ITWorks) at Cerner.
Mr. Long joined Cerner in February 2006. His prior roles include technology architect and practice manager.
He designed and implemented a security framework within the Cerner managed data centers; assembled an operational security team; and created a comprehensive information security program for CernerWorks℠.
He currently assists clients with managing risks, ensuring best practice security infrastructures, and maintaining HIPAA and PCI compliance in a fast-moving and ever-changing environment.
Mr. Long has more than 15 years of experience in the information security field. He has deep knowledge and understanding of network security, compliance, vulnerability management, risk management and auditing.
Prior to joining Cerner, Long was a strategic sales consultant with both Cisco Systems and Check Point Software Technologies. He also owned and operated a security consulting and reselling practice for eight years in the Kansas City area.
Mr. Long held engineering roles with the Federal Aviation Administration, Martin Marietta Aerospace and General Dynamics, where he designed software for navigational systems; designed, prototyped and deployed an automated weather observatory system interface; developed software simulation modeling programs; authored a compiler for spacecraft ground testing; and assisted with ground testing of the Manned Maneuvering Unit.
Mr. Long is a member of the Information Systems Security Association and the Information Systems Audit and Control Association.
He serves on several customer advisory boards for major information security solution vendors across the nation, and speaks frequently at information security conferences.
Mr. Long received a bachelor's degree in electrical engineering from the University of Oklahoma. He is a Certified Information Systems Security Professional and Certified Information Systems Auditor.
Chief Information Security Officer, Consolidated Graphics, Inc.
As the Chief Information Security Officer of Consolidated Graphics, Tom has more than 18 years of experience in information technology. An (ISC)2 Certified Information Systems Security (CISSP), Certified Information System Auditor (CISA) and Certified Information Security Manager (CISM) Professional, Tom's expertise includes all aspects of research, design, implementation and operational support for enterprise services.
Tom's job duties include overseeing Consolidated Graphics' information security, privacy, compliance and eDiscovery responsibilities. With more than seventy companies under CGX ownership, Tom actively consults with executive and local management on that same range of issues.
Prior to joining Consolidated Graphics, Tom was Chief Information Security Officer for the University of Texas Health Science Center at Houston (UTHealth - Houston) based at the Texas Medical Center in Houston, Texas. As the UT Health's CISO, Tom was responsible for guiding the development of information security strategy and implementation for an organization consisting of six healthcare related schools with more than ten-thousand faculty, staff, students and residents.
In addition to re-constructing UTHealth's information risk and security policy foundations, Tom spearheaded the revamping of critical security infrastructure, including campus-wide data identity and access management system. Tom oversaw UTHealth's HIPAA compliance and a three year Payment Card Industry (PCI) compliance project. Earlier information technology positions that Tom has held include senior system analyst for IBM Global Services, as well as for several divisions of the A.P. Moller group including Maersk Inc. and Maersk Data USA. His work with world-class, industry-leading organizations ranges from governance, risk and compliance (GRC) to network and server infrastructure design and support.
Tom is a member of the Greater Houston-area Information Systems Security Association (ISSA), National Information Security Group (NAISG), and Information Systems Audit and Control Association security groups (ISACA), ISACA CISM Test Enhancement Subcommittee (TES), and governing body for SecureWorld Houston. Tom has a B.S. in Management Information Systems from Barry University.
Chief Information Officer, Americare Services, Inc.
Randall Mills, Chief Information Officer of Americare Services, Inc., has over 25 years of IT experience. He is formerly an MIS director at Citigroup with responsibility for data warehousing and business analytics. Randall received an MBA from the University of Texas at Dallas and a Bachelor of Science degree in Information Systems Management. Randall's passion is implementing infrastructure security around data warehousing and business analytics. Randall is also membership chair of the North Texas SAS Users' group. He has served on the board of non-profit organizations and is currently providing volunteer consulting services in the development of security and business intelligence in non-profit organizations.
Senior Vice President, Internal Audit and Chief Compliance Officer, Calpine Corporation
Kevin G. McMahon serves as Senior Vice President, Internal Audit and Chief Compliance Officer. He joined Calpine in May 2006 to lead the Internal Audit function and took on the added role of Chief Compliance Officer in August 2009. Mr. McMahon is responsible for managing and conducting all internal audit activities, supporting operations and the functional departments as requested, managing the Sarbanes Oxley (SOX) compliance oversight program, leading records management activities and reporting audit findings with the appropriate recommendations to senior management and the Audit Committee. In addition, he oversees the company's regulatory compliance efforts with particular emphasis on ensuring that proper procedures are in place to help the company meet all FERC and NERC regulatory requirements.
Prior to joining Calpine, he was Vice President and General Auditor for Exide Technologies, a global manufacturer of stored electrical energy products and services for industrial and transportation applications. He previously served as Vice President-Internal Audit Services and in other senior auditing positions for HCA, Inc., the largest hospital provider in the United States, and served in senior management and auditing positions for Ernst & Young LLP, Southern Company Services, FPL Group and HSBC/Marine Midland Bank N.A. Mr. McMahon has a Master of Business Administration degree from Palm Beach Atlantic University and a Bachelor of Science degree in accounting from the State University of New York. He is both a Certified Internal Auditor (CIA) and Certified in Risk Management Assurance (CRMA).
Vice President, Chief Information Officer, Global Information Services, Henry Schein, Inc.
Grace is responsible for I.S. application development, sales and marketing systems, eCommerce, IS infrastructure, and IS Security for the Henry Schein's internal systems globally. She is responsible for the worldwide systems integration of acquisitions, having completed over 30 integrations in her time at Henry Schein Inc. Schein Creative Services also reports into Grace.
Grace's team consists of 341 technical professionals and 42 creative professionals for a total of 383 team members, which includes contract programmers in the United States and India.
Director of Mobile Product Marketing, Accellion
Mr. Nabavi brings more than 15 years of experience in marketing mobile application and messaging platform products. In his current role as Director of Product Marketing for Accellion, Inc., he focuses on the Accellion Mobile Apps and the secure, mobile file sharing solution in the enterprise content mobility market segment.
Prior to Accellion, he led UI and OS platform marketing for Symbian and NOKIA in North America. Mr. Nabavi's foundation as a successful marketer in the mobile industry began at Sun Microsystems where, during his 10 year tenure, he led senior industry marketing, market development and product marketing roles. Key products and markets Mr. Nabavi was responsible for include mobile messaging value-added services, wireless data services segment, and J2ME platform for mobile devices.
Mr. Nabavi has an MBA from USC Marshall School of Business and is a regular speaker at mobile industry trade events.
Chief Information Security Officer, Treasury and Global Operations, The World Bank
As the CISO for the World Bank Treasury, Jim is responsible for the information security and risk management infrastructure for the Treasury as well as all related financial services worldwide, including all systems and networks, business systems, Web technologies, e-Commerce and banking, financial and trading systems. Jim manages a team of information security specialists that provide information security services and enterprise risk specialists that provide information security services such as Identity and Access Management, data assurance and accreditation, enterprise security management and event detection and response. Jim's twenty-five years of expertise comes from his consulting experience to over 250 companies, conducting over 500 classes/seminars, and publishing over 150 technical journals on areas of information systems and security.
Vice President and Chief Information Officer, IT Services Division, NCR Corporation
Bill VanCuren is vice president and CIO for NCR Corporation. Bill is a leadership team member of NCR's Industry Solutions Group and Chief Financial Office organizations, and sits on both the Leadership Council and Leadership Team of the corporation.
His current assignment as the CIO has oversight over the full application realization process, portfolio management, global networks and processing services for both internal and external customer services, security and compliancy, and all workgroup computing. Bill has 27 years of experience in the information technology (IT) field and has held progressively responsible positions in systems realization and IT general management.
Bill established the first NCR captive IT development center in India, championed the engineering processes to achieve the Capability Maturity Model (CMM) Level 3, and has driven world-class levels of both efficiency and improved effectiveness via a combined IT and business governance. As a result of implementing self-service strategies, his organization was named to the Information Week500.
He earned his Bachelor of Science degree, Cum Laude, from The Ohio State University and his Master of Business Administration degree from the University of Dayton. He has also received executive training at Stanford University in Palo Alto, California, along with a variety of extended leadership training from NCR University.
Bill is an active speaker on IT governance topics, and was a featured speaker at the Hackett Best Practices Conference in 2010, the USA India Business Summit (UIBS) and the CIO Value Forum. He is a board member of the Technology Association of Georgia (TAG) and a member of HCL's Customer Advisory Council and Oracle's Leadership Council.
Bill lives in Cumming, Georgia with his wife, Jeannie, and his sons, Brian, Brad and Justin. His hobbies include skiing and landscaping. Bill is a member of both The Ohio State University Buckeye Club and the President's Club.
Chief Information Security Officer, Memorial Sloan-Kettering Cancer Center
Richard Jankowski is the CISO at Memorial Sloan-Kettering Cancer Center in New York City, where he has worked for the last nine years. Prior to Sloan-Kettering, Richard was an engineer at Lucent Technologies. Richard served in the U.S. Marine Corps. as an infantry rifleman with responsibilities as a scout and rescue swimmer and has served in combat during Operation Restore Hope in Somalia. He holds a Master of Science in Computer Science from the Stevens Institute of Technology in Hoboken, NJ.
CIO and Senior Vice President, Univita Health, Inc.
Paul Kay is the Chief Information Officer for Univita Health. Univita Health provides home-based care management programs that are fundamentally changing the way care is delivered in the home. Univita Health's comprehensive approach to delivering, integrating and managing home care services supports the entire care continuum. Through specialized support for people with complex needs, Univita promotes patient independence, improves accountability and lowers health care costs
Paul brings over 25 years of information systems and operations management experience. Paul has served in senior IT management positions at several companies including, International Harvester, General Mills, CVN Companies, Carlson Travel Group, Med Power, and MoneyGram.
Prior to joining Univita Health, Paul ran an international consulting practice which provided IT and professional services globally to the entertainment, distribution, and financial services industries. Paul has extensive international business experience in Asia, Europe, North America, Oceania, and the Middle East.
He earned a BA in mathematics from Lawrence University and a MS in computer science from Northern Illinois University.
VP, IT Risk Management, The Travelers Companies, Inc.
Paul Konopaske is a Vice President responsible for the Travelers IT Risk Management team. Paul joined the Travelers Insurance Company in 1985 and has 30 years of IT experience including 17 years within IT Audit organizations. During his IT Audit tenure, Paul has had the responsibility of shaping IT Audit organizations in Travelers and Citigroup, and his teams have audited all aspects of technology. He has audited many global high profile projects including IT control environments for mergers, acquisitions and spinoffs, multiple data center consolidations, and offshore outsourcing operations. In addition, Paul has served as the Chief Information Security Officer for the company, and is currently responsible for developing and executing the IT Risk Management program.
Chief Information Security Officer, Synovus
Susan Koski is the Chief Information Security Officer of Synovus headquartered in Columbus, GA. In this role, she has responsibility for the Framework and Governance, Audit and Regulatory Interface, Identity and Access Management, Security Architecture and Operations, and Business Continuity.
Prior to joining Synovus, Susan was the Managing Director of Global Technology Risk Assessments at the Bank of New York and Mellon. In this role, she oversaw the IT risk assessments for the firm's applications, infrastructure and vendors as well as due diligence and integration requirements for management of IT risk. Here, she has a proven track record of transforming processes and focusing on the right risk at the right time, transforming from compliance assessments to real risk management. Prior to the merger with the Bank of New York, Susan was responsible for Mellon's global distributed security functions including responsibility for knowing and tracking the latest security alerts and vulnerabilities, testing the firm's global controls in addressing threats, engineering and implementing solutions to monitor for exploit of threats and partnering with internal groups to oversee and necessary incident response.
Susan has over fourteen years of experience in information risk management as well as over seven years of experience in technical support for 3-tier architectures across multiple platforms and technology sets, software development for nuclear control systems, and quality assurance testing. She also holds an MBA from Duquesne University, summa cum laude, and a Bachelors of Science Degree in Electrical Engineering from the University of Pittsburgh, cum laude.
Susan is a Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), a member of the Information Systems Audit and Control Association (ISACA) and a member of the CISO Executive Network.
Chief Information Security Officer, Blackstone
Jay Leek, CISM, CISSP, CISA is currently the Chief Information Security Officer for Blackstone. Prior to joining Blackstone, Jay established, built and headed up global information risk and security programs for Equifax and Nokia. Over the past 19 years, Jay has also worked as a product manager for information security vendors as well as a consultant to numerous telecommunications companies, government agencies and financial institutions assisting them with business development, strategic planning and architectural design required to meet their information risk and security objectives. He is also a frequent speaker on information security related topics at domestic and international conferences.
Vice President, Risk Management, Univita Health, Inc.
Mr. McGuire currently serves at the VP, Risk Management for Univita Health where he is responsible for the Information Security, Risk Management, and Internal Audit functions. Mr. McGuire brings more than 25 years of experience within IT and Corporate Security within numerous industries, and served as the Information Security Officer from 2002 – 2007 for TSYS iSolutions, a commercial credit card financial services firm, prior to joining Univita. In addition to a degree in Computer Information Systems, Mr. McGuire holds the Certified Information Systems Security Professional (CISSP) designation with the Information Systems Security Management Professional (ISSMP) concentration issued by ISC2, the Certified Information Security Manager (CISM) and Certified in Risk and Information Systems Control (CRISC) designations issued by ISACA, and the GIAC Certified Incident Handler (GCIH) certification from the Global Information Assurance Certification program. Mr. McGuire was a contributing author to the SANS Incident Response Step-by-Step guide in 2001, participated as a conference speaker at the BIAS conference in Milan Italy in 2004 and at the IT Security World conference in San Francisco in 2005, and is a past President (2009/10) of the Denver chapter of InfraGard where he served on the Board of Directors for five years. Mr. McGuire currently sits on the Board of Directors of Ensuren Corporation, and on the Advisory Board of GuideStar Technologies.
Chief Information Security Officer, NCR Corporation
Bob Varnadoe is Chief Information Security Officer for NCR Corporation. His duties include overall information security and compliancy, including PCI coordination company-wide, training and awareness for information security, and oversight of the deployment of security technologies. Bob works with NCR's lines of business, Professional Services, Legal, Internal Audit, Customer Services and HW/SW Engineering to develop and build out our company-wide strategy for information security, and represents the IT organization in NCR's Enterprise Risk Management committee.
Prior to NCR, Bob was with Fiserv Corporation where he was responsible for information security within Fiserv's corporate risk organization. His team was responsible for information security oversight, governance, and strategy across Fiserv's business units. The team also provided consulting to Fiserv's divisions and operating units for information security matters. Over his tenure at Fiserv, Bob has led teams focused on information security engineering and operations for network infrastructure, distributed systems, and mainframe systems. He has also led teams focused on application security testing and consulting, information security strategy, and built Fiserv's security operations center.
Bob joined Fiserv through the acquisition of CheckFree Corporation where he was responsible for information security strategy within CheckFree's corporate function. Prior to joining CheckFree, Bob was IT Director for an architecture and engineering firm in Atlanta. He has over 18 years of experience in data networking and information systems. 13 years of which were spent exclusively in the security field. Bob holds a Bachelor's Degree in Electrical Engineering from the Georgia Institute of Technology
Chief Information Officer, McKesson Provider Technologies
Lisa McVey is chief information officer for McKesson Provider Technologies, Resource Management Solutions, and Physician Practice Solutions. She has overall responsibility for information technology leadership for MPT, the largest division of McKesson Technology Solutions (MTS), and the Ambulatory Businesses. McVey directs and manages computing and information technology strategic plans, policies, programs and schedules for business and finance data processing, computer services, network communications, and management information services in partnership with the business to accomplish corporate goals and objectives. She serves as the MTS-IT liaison for with McKesson Corporate IT and McKesson Business Technology Solutions (BTS).
McVey joined McKesson in 1994, and has served in a number of succeeding leadership roles in Research and Development, Services, Sales, Process Office and IT. She has led the operational development of a single, SFA-driven sales process that integrated 22 sales leaders and 15 diverse processes; streamlined sales and service operations by initiating the sales services center facilitator role tasked with supporting and coordinating all quoting and contracting activities; improved business processes by developing IT governance and funnel management methodologies; introduced a service product philosophy, implementation strategies, and a client education approach still in use by the company today. Within one of the MPT business units, McVey aligned products with sales objectives, resulting in $18.6 million in new revenue generated. She also serves on the IT Buyers Council, which comprises McKesson technology, financial and operational leaders who prioritize IT investments based on business needs.
Improving the customer experience, directing core and strategic business initiatives, implementing business process changes, establishing collaborative alliances and developing high-performing customer focused teams in order to implement infrastructure and applications to support the business in achieving its growth and revenue goals are among her core strengths.
McVey is the recent recipient of the Association of Telecom Professionals' 2010 Enterprise Leadership Award and was recognized by Women in Technology (WIT) 2010 Women of the Year in Technology. The latter award recognizes female technology executives for accomplishments as leaders in business, visionaries in technology and women who have positively impacted Georgia's technology community.
Committed to investing in the local community, promoting better health and assisting in the advancement of women in technology; she is one of the champions for McKesson's community efforts, the Georgia chapter of Women in Technology (WIT), and is active in Technology Association of Georgia, Women in Technology (WIT), CIO Executive Council sponsored by CIO Magazine, among others.
McKesson Corporation, currently ranked 14th on the FORTUNE 500, is a healthcare services and information technology company dedicated to helping its customers deliver high-quality healthcare by reducing costs, streamlining processes, and improving the quality and safety of patient care. McKesson has been in continuous operation for more than 175 years, making it the longest-operating company in healthcare today. Over the course of its history, McKesson has grown by providing pharmaceutical and medical-surgical supply management across the spectrum of care; healthcare information technology for hospitals, physicians, homecare and payors; hospital and retail pharmacy automation; and services for manufacturers and payors designed to improve outcomes for patients. For more information, visit http://www.mckesson.com.
Certified Network Security Engineer, Palo Alto Networks
James Messer is a Certified Network Security Engineer at Palo Alto Networks, specializing in the integration and customization of next-generation firewalls. James has over twenty years of experience in the networking and security industry, and his professional certifications include a focus in networking, anti-malware technologies, and intrusion prevention.
Vice President, Security, ITRSM Security & Vulnerability Management Operations, JPMorgan Chase & Co.
Victoria Meyer manages Security & Vulnerability Management Operations for JPMorgan Chase. She has worked in several areas of information security for the firm; including security product management, information risk management and infrastructure security. She maintains the CISA and CISSP professional certifications, and is a graduate of Steven Institute of Technology and New York University.
Head of Information Security, AGL Resources
Rob Mims is the head of information security for AGL Resources, a fortune 500 natural gas services company, where he is responsible for global security policy, processes, risk mitigation and compliance and has implemented large scale changes in technology and processes to mitigate information security risks, including data leakage prevention, hard drive encryption, database encryption, email archive, e-discovery and incident response. Rob is currently developing security and compliance programs for critical infrastructure/key resource regulations in control system environments.
Rob is an active contributor to DHS efforts to define and implement cybersecurity guidelines and regulations in the natural gas energy sector. He is active with the American Gas Association's security committee where he serves as chair of the cybersecurity task force. He is also a member of the transportation systems sector cyber working group as well as the oil and natural gas sector coordinating council.
Rob has over 11 years of experience in information security. He holds a bachelor's degree in Electrical Engineering from the Georgia Institute of Technology. He is a certified information systems security professional (CISSP), a certified information privacy professional (CIPP), and holds many technical certifications.
Senior Threat and Intelligence Researcher, Managed Security Services Intelligence Center, IBM Corporation
Michael Montecillo is the Threat Research and Intelligence Principal within the IBM Managed Security Services. He has more than eight years of experience in information security, during which he has served as an X-Force Threat Researcher, an Information Security Officer dedicated to a state police organization, as the Vulnerability Management Coordinator for the State of Michigan, and as an industry analyst at EMA. Michael has functioned as a speaker at industry events including the Department of Homeland Security Government Forum for Incident Response and Security Teams, IBM Innovate, and VA Scan. As the Threat Research and Intelligence Principal within IBM Security Services he conducts research on emerging threat trends and works to secure clients against those threats.
Regional Information Security Officer, Sutter Health - East Bay Region
Earl is an accomplished Information Technology, Audit and Security leader with 23+ years experience in industry and government. Earl has an extensive background in large scale project management, "IT Operations, IT Audit and Security/Compliance" Program Implementation, LAN/WAN Configuration and Enterprise Administration complemented by extensive experience in supervising and directing geographically dispersed international programs. In addition to his security background Earl has a broad background in IT risk management, controls and SOX regulatory compliance. His multi-lingual skills have earned him a place as a member of the International Quality Assurance Review team for the Institute of Internal Audit in Latin America. Earl holds Master's Degree in Media & Technology from Boston University with additional post graduate level course work in Business Administration.
Governance, Risk Mgt, and Compliance, Royal Caribbean Cruises, Ltd.
Will Perez is a sixteen-year IT veteran who has spent the last six years specializing in information security management. Breaking the mold of the typical information security professional, he brings a unique fusion of pragmatism and practicality balancing it with a healthy dose of proportionate paranoia. Will is influential in the Information Security space with his inspiring approach to Information Security Governance, Risk & Compliance. Instead of saying "No" Will strives to engage with all stakeholders, educate them, and find solutions to mitigate and reduce risk to strike a balance between security and business needs. Will is also known for offering cutting-edge solutions for all aspects of IT Risk, Information Security and Compliance development, from design and planning to the creation of overall infrastructure, policies, standards and procedures.
He works closely with senior management, key stakeholders, business units, partners, developers, project managers and clients. Will is a long time CISSP, holds a M.S. in Information Systems, and has several Industry certifications including ISACA's CISM, Certified Information Security Manager, and a CIPP, a Certified Information Privacy Professional.
Head of Global Information Security, Williamson-Dickie Manufacturing
Robert began working for the Williamson-Dickie Mfg. Co., in 2010. He is responsible for the IT Security & Support Services for Wiliamson-Dickie's IT Global Operations. Responsibilities include design and implementation of IT security & IT risk management strategies, addressing control issues for the manufacturing and retail consumer operations, developing user access & identity management strategies, developing scalable solutions to address PCI compliance, designing secure architectures, business continuity planning, delivering tier 1 and tier 2 IT support for all network users and the development of policies and procedures. Execution requires leading/working with cross-functional teams consisting representatives from Legal, Marketing, Compliance, HR, Finance and others as required.
Prior to joining Williamson-Dickie, Robert worked for 6 years for Textron in their corporate offices and at their Bell Helicopter business unit, leading the information risk management operations. Global responsibilities included strategic direction in access & identity Management, network architecture design enhancements, development of policies/standards and overall IT compliance.
Additionally, Robert spent 8 years at PricewaterhouseCoopers, Chicago, IL, in their Global Risk Management Solutions practice, focusing on information security and privacy. As a Senior Manager, responsibilities centered upon consulting for Fortune 500 clients in various industries, which included international travel. Led large and diverse teams in providing client executive management with key strategies to address information security issues in their respective industries. Robert's career also includes 10 years at Ameritech (now SBC), during which he held various management positions and led large teams in network administration/provisioning, network operations and information security.
Robert has a Bachelors of Science Degree in Engineering from Michigan State University and a Master of Science Degree in Management from Walsh College of Business and Accountancy. Robert has completed the Executive Leadership Program at Thunderbird - Gavin School of International Management. He is a Certified Information Systems Security Professional (CISSP), a Certified Information Security Manager (CISM), and a Certified Six-Sigma Green Belt.
Vice President & Chief Security Officer, Parsons Corporation
Lee Parrish is the Vice President & Chief Security Officer for Parsons Corporation, responsible for cyber security, physical security, and business continuity for the corporation across 25 countries. Prior to Parsons, Mr. Parrish effectively led large information security organizations for an Aerospace & Defense corporation as well as a data management firm. Lee is certified in information security and currently holds the CISSP, CISM, GISP and ITIL certifications. He has published multiple articles in international cyber security journals and is a frequent speaker at numerous industry events across the globe.
Mr. Parrish's academic credentials include a Master's of Business Administration from the University of Arkansas, as well as a Master's of Science in Information Assurance from Norwich University. In his spare time, he has served as an Adjunct Professor in Computer Science for two large universities. Lee is a combat Marine veteran and resides in Dallas, TX.
Project Manager, Office of the CIO, New York City Housing Authority
Anthony Passaniti joined the New York City Housing Authority (NYCHA) as a Project Manager reporting to the Office of the CIO specializing in overseeing and managing enterprise-wide Web applications, Intranet and Internet security initiatives. With over 29 years of experience in security, risk management, audit and compliance, Anthony once again is reaching out to expand his sphere of influence in the Information Security arena.
Prior to joining NYCHA, Anthony held senior management positions as the Head of Information Security for Swiss Reinsurance (Swiss Re) Americas where he successfully implemented security training programs spanning over 87 offices in 6 countries raising awareness to 98% in each company. He designed, implemented and operated a vulnerability monitoring program and Information Security Assurance Program bringing Swiss Re in compliance with the myriad requirements confronting a financial services / trading and investing / insurance company. This program was responsible for increasing Swiss Re internal and external audit grades in the B range and better. It was adopted by the Swiss Reinsurance Company Corporate Offices in Zurich and implemented as a world-wide initiative.
Anthony holds a Master of Business Administration degree in Management Information Systems, with a Bachelor of Science degree in Marketing and Finance. He is also a certified Communicator with Toastmasters International.
Chief Information Security Officer, Harvard Pilgrim Health Care
Ken joined Harvard Pilgrim Health Care in June 2000 as their Information Security Officer. He has 40 years of Information Technology experience in the areas of information security, internal audit, contingency planning, and data center management. Previous work experience includes two years with KPMG LLP as Manager, Information Risk Management, and twenty-six years at Digital Equipment Corporation. Ken is a Certified Information Systems Security Professional, a member of the Information Systems Security Association, the Boston chapter of InfraGard, and volunteers his information technology services to the Hudson Area Arts Alliance, a charitable nonprofit organization.
Vice President and General Counsel, Beneficial Financial Group
Chief Security Officer, Department of Technology, City and County of San Francisco
Jeana Pieralde, CISSP, CRISC is the Chief Security Officer (CSO) for the City and County of San Francisco's Central IT organization, the Department of Technology. Jeana is a proud San Francisco native with 15+ years of IT Experience focusing on the Government Sector. Prior to moving into IT Security, Jeana, worked as a network and systems engineer.
In her CSO role Jeana has been working with the City's Committee on Information Technology and the Chief Information Officer since 2008 to formulate and move IT Security Policy and initiatives forward in the City of San Francisco. In establishing a modern Information Security Program in San Francisco Jeana and her team have focused on raising awareness around IT Security issues such as Data Security, Business Continuity, Incident Response, and Security Governance in San Francisco's City Government. She is a proponent of Security as a business enabler, consultant, and educator at all organizational levels.
Jeana and the San Francisco Security team also work closely with law enforcement including the San Francisco Police, San Francisco Sheriff's Department and federal agencies to monitor and manage cyber threats against San Francisco's critical IT assets. Jeana holds the ISC2's CISSP Certification and ISACA's CRISC Certification, and is certified by the Superior Court of the State of California as an expert witness in Network Security.
Chief Information Security Officer, AXA Financial
Roy Post has been Chief Information Security Officer for AXA Equitable since 2003. AXA Equitable is one of the U.S. based operating companies of AXA Group, a global insurance and financial services company headquartered in Paris, France.
Prior to joining AXA, Roy was an IT director for Bristol Myers Squibb leading a team of software developers specializing in decision support. Roy holds CISM and CISSP certifications.
Roy graduated from SUNY New Paltz in 1977 with a BA in Mathematics and Computer Science.
Chief Information Security Officer, State of Georgia
Mark Reardon is the Chief Information Security Officer for the state of Georgia. His experience includes being Director of Information Security for S1, which implemented the first bank on the Internet, and he was Director of Security Engineering for TruSecure. As the state's CISO, Mark represents the state to the Multi-State Information Sharing and Analysis Center, the National Association of State CIOs, directs the activities of the state's central information security office and supports the state's fusion center with cyber security and cyber terrorism issues.
Senior Director, Information Security & Risk Management, McKesson Corporation
Marian is the Senior Director of ISRM for McKesson Corporation. Marian is responsible for the oversight, coordination and facilitation of IT Risk Leaders for MPT, RMS and PPS. She also oversees the product security efforts with respect to compliance with applicable laws. Her team also oversees the daily operations of our incident management team. Marian assisted with product security and privacy guidance in bringing several products within McKesson Corporation to certification under HiTech Meaningful Use Stage 1. Marian has 25 plus years experience in the healthcare software development industry. This experience includes overseeing the HIPAA initiatives for McKesson Provider Technology, the security strategy for the HIPAA efforts within the McKesson Provider Technology business unit, development manager for and HIS product, designing an Enterprise Security product, and multiple years with an HIS system focused to billing, and patient management.
Marian has served on the WEDI Board representing McKesson Corporation since 2005 and has held various chair elect positions. She is currently serving on the Executive Board for WEDI. Marian participates in several industry groups to assist in the adoption of healthcare IT including HIMSS, HL7, S&I Framework, and she has served on the CCHIT workgroup where she participated on the Security and Reliability Workgroup, and served as Co-Chair to the Test Plan Workgroup.
Vice President, IT Risk & Security Management, JPMorgan Chase & Co.
Sampath or Sam, as he is commonly know to his colleagues, has been working with JPMorgan Chase for more than seven years. Two years prior, he was at AT&T, conducting off-site work at JPMorgan Chase.
An electrical engineer by education, Sampath has always been in IT, moving from NetWare to Microsoft products to networking products such as Cisco, and Checkpoint, as his career progressed over the years. He currently focuses on reviewing new technologies and products for JPMorgan Chase, from a security perspective. In an earlier role he was part of Global Network Services, matching Line-of-business requirements to appropriate networking solutions.
VP, Chief of Security & Information Architecture, Omnicom Media Group
Daniel has over 15 years commercial IT Industry experience and 8 years of Military Computing Experience. Daniel has worked for Omnicom Media Group since 2002 in multiple capacities of IT management, Security and Architecture disciplines. Daniel's background involves work in government, financial, insur ance, manufacturing and advertising business sectors.
Daniel holds the CISSP, CISM, and CISA certifications as well as a host of several other technical certifications. While a senior manager Daniel still believes in getting in the trenches with his teams providing leadership from the front and direct mentoring. Being hands on and a lead from the front individual contributes to his continued successes.
Chief Information Security Officer, Petco
Kevin Rigney is the Chief Information Security Officer for Petco Animal Supplies, Inc. headquartered in San Diego, CA. His Information Security role involves the development, implementation and monitoring of the Information Security Program. The goal of the program is to protect customer information, employee information and company proprietary information. Additionally, he is responsible for overall IT Security & Compliance for the business.
Kevin is a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) and a Certified Information Systems Auditor (CISA). He also serves as the Naval Reserves Commander Third Fleet Executive Officer, Joint Forces Maritime Component Command, supporting the Active Component of the Pacific Fleet. He resides in Encinitas, CA.
Chief Security Officer and Senior Vice President, Enterprise Risk & Resilience, Fiserv
Edward Sarama is the Chief Security Officer and Senior Vice President of Enterprise Risk & Resilience at Fiserv, the leading provider of financial electronic commerce services and products for U.S. banks, credit unions and thrifts.
In this role, Sarama is responsible for developing, implementing and maintaining Fiserv's information security, risk and compliance programs. This includes regulatory compliance, business and product risk assessments, security architecture planning and assurance, as well as strategy of the information security, risk and compliance of the largest banks, merchants and financial institutions in the United States.
Sarama has more than 34 years of experience in information technology since joining CheckFree in 1998, with 18 years in information security, and risk management.
Sarama has an associate's degree in Architecture from Mercer County College, a bachelor's degree in Information Systems from the University of North Florida, and has completed the Executive Management Program at the College of Business at Florida State University.
Vice President, Advanced Software, Franklin Templeton Investments
Vir Sarin is a Technology Executive and Innovator with a varied career covering a range of sectors; Software, ecommerce, Financial Services and Banking. Vir possesses extensive experience with Scaling Global organizations with multi-billion dollar revenue streams, FORTUNE 100 regulations and security concerns from a mission critical systems perspective. He has led technology solutions that have been recognized by MFEA, Kasina, Ignites and Nova as some of the leading technology innovations for financial services, and chaired the world-wide launch of Agile Processes in several organizations.
Senior Vice President, Comerica Bank
Kenneth P. Schaeffler is the Director of the Corporate Information Security Services Department of Comerica Incorporated, one of the 30 largest banking companies in the United States. As the director of Information Security for the Dallas-based bank, his information security responsibilities include:
Schaeffler joined Comerica in 1971. His information technology experience spans forty years and multiple information technology disciplines including systems engineering, systems management/technical support, data center operations, application software development, performance management/capacity planning, and corporate business continuity and disaster recovery.
His prior experience includes systems programming, planning multiple data center consolidations, performance modeling of data networks and large computer systems, transitioning legacy technology infrastructures to be eBusiness capable, and enabling the secured delivery of Comerica's business products and services.
Schaeffler is actively involved in several financial services, security and privacy organizations and related information security initiatives.
Chief Security Officer, University of Indiana School of Medicine
Eric is currently the Chief Security Officer for the Indiana University School of Medicine on the Indiana University campus in Indianapolis, Indiana. Additionally, he is the interim HIPAA security officer for the university. His responsibilities include leading various information security initiatives within the School of Medicine and IU Health Sciences to ensure the school remains is in compliance with University and affiliated entity security policies and procedures, as well as state and federal regulations regarding the security of electronic information. Prior to coming to the IU School of Medicine, Eric was a senior manager with Ernst & Young LLP assigned to their Security & Technology Solutions practice. Eric is also a retired United States Air Force field-grade officer serving for 21 years. At his retirement from active duty he was serving as the Director of Computer Crime Investigations and Operations within the Air Force Office of Special Investigations. In that capacity he provided operational oversight and leadership for all high technology criminal and counterintelligence investigations and operations for the Air Force.
Eric is currently a Certified Information Systems Security Professional with the Information Systems Security Association and a Certified Information Security Manager with the Information Systems Audit and Control Association. He is also a past President of the Central Indiana chapter of the Information Systems Security Association.
Information Security Officer, Continuum Health Partners, Inc.
Raymond Shelton is the Information Security Officer at Continuum Health Partners, Inc. His responsibilities include the HIPAA security program for Beth Israel Medical Center's Petrie and Kings Highway Divisions, St. Luke's and Roosevelt Hospitals, and the New York Eye and Ear Infirmary. He previously held the position of Manager of IT Security at Continuum. Prior to that position, he was with University of Missouri Health Care, starting out in the Department of Family and Community Medicine, then ultimately concluding his tenure as a Network Engineer with a focus on security.
Chief Security Officer, Silicon Valley Bank, SVB Financial Group
Nick Shevelyov is the Chief Security Officer for Silicon Valley Bank, a member of SVB Financial Group. SVB Financial Group (SVBFG) provides diversified financial services to emerging, growth and established technology companies and the life science, venture capital/private equity and premium wine markets. Nick joined SVBFG in 2007 and is responsible for Information Security Governance, Cyber Security, Data Privacy, Computer Security Incident Response, Business Continuity and Physical Security programs and strategy.
Previously, Nick managed security, data privacy and strategy projects for Deloitte's Enterprise Risk Management group providing consulting services to a variety of Fortune 500 organizations. Before joining Deloitte, Nick managed security consulting teams and information technology departments.
Prior to his management roles, Nick served in various systems administration, network engineering and program management roles. He has worked across multiple functional groups aligning technological solutions with business drivers.
Nick earned a bachelor's degree in Economics from the San Francisco State University and an MBA from the University of San Francisco Graduate School of Business.
He has been a speaker/panelist at various events and venues including ISACA, SANS LMP, Berkeley Haas School of Business and various other security and privacy events.
Group Chief Information Security Officer, Zurich Insurance Group
James joined the Zurich Insurance Group in early 2009 in the role of Head of Group IT Risk Americas. In the fall of 2010 he was promoted to assume the newly created role of Group Chief Information Security Officer. During the past two years, James has been transforming Zurich's information security posture, developing new and innovative solutions and capabilities, leading the Data Security Improvement initiative on behalf of Group Operations, and working to enable Zurich employees to work in new and innovate ways while remaining secure. In 2012, James was asked to join the Zurich Leadership team which represents the top executives of Zurich who support and guide Zurich's strategy and its execution at the direction of the CEO. Prior to joining Zurich, James has held various CISO roles at large financial institutions. James lives in Los Angeles.
Vice President, Information Security, Lowe's Companies
Mr. Schroeder Joined Lowe's in 2008, a Fortune 42 company with worldwide revenues nearing $50 billion and 240,000 employees. Chris brings over 17 years of IT experience to this role, and is responsible for all facets of information security including governance, auditing, compliance, vulnerability management and security awareness. During his tenure with Lowe's, Chris developed an enterprise-wide security strategy, established security governance and compliance monitoring processes and investigates security incidents, consulting with legal, human resources and law enforcement, as necessary. Chris has built a team of security professionals responsible for a wide array of services such as, intrusion detection, authentication and authorization, encryption key management, penetration testing, risk assessments and vendor risk assessments.
VP of Products and Marketing, Accellion
Ms. Skokowski joined Accellion in February 2007. She has more than 20 years experience in new product introduction for pre and post-IPO companies in Silicon Valley. Prior to Accellion she was VP Marketing, at General Magic, where she spearheaded the market introduction of a VoiceXML voice development platform. As Director Marketing, Echelon Corporation, Ms. Skokowski created an industry recognized standard for interoperable control networking. Earlier in her career she worked as a product manager and application programmer of high speed vision-guided robots for Adept Technology.
Ms. Skokowski has served as a Board Member of Teradata's Ecommerce Board of Advisors, Director for the ComputerWorld Smithsonian Awards Program and Executive Director to the LonMark Interoperability Association.
Ms. Skokowski received a BA and MA Honors in Engineering Science from Oxford University and an MS in Robotics from UC Berkeley.
Sr. Director Security & Governance, National Home Office, American Cancer Society, Inc.
Michelle Stewart, CISSP, CGEIT, is Senior Director of IT Security & Governance at the American Cancer Society. She is responsible for managing IT Risk and Compliance as well as IT Governance functions, such as policy and service management. Michelle strives to balance security and compliance requirements with increased demand for agile and mobile technology to meet business needs.
Prior to ACS, Michelle was the IT Risk and Compliance leader at AirTran Airways. She has been active in Atlanta IT security functions and professional societies for over 6 years. Michelle started her IT career over 20 years ago in Miami, FL.
Vice President Security, Investigations and Incident Response, Reed Elsevier Inc.
Aurobindo 'Robin' Sundaram is the Vice President Security, Investigations and Incident Response at Reed Elsevier Inc., the parent company of LexisNexis. He has responsibility for creating and developing security and risk management policies, procedures, and standards; collaborating with operations to implement these policies; creating and enhancing fraud detection technologies; investigating and responding to security incidents involving inappropriate access to information; and measuring and ensuring compliance with the company's information security framework.
Prior to joining LexisNexis, Robin spent nearly seven years at Schlumberger, a leading oilfield services corporation, where he implemented their Information Security program, resulting in the team growing by a factor of 4 under his leadership. In addition, during his tenure, objectives reported to the Board of Directors were set for information security across the 50,000+ strong organization for the first time in Schlumberger's history. He was also closely involved in the design of the technical security architecture for the 2004 Summer Olympic Games in Athens, Greece.
Robin's vision and thought leadership have led to several published papers in the security field, and LexisNexis' (formerly ChoicePoint) Information Security program has been recognized by many, including Gartner, to be a "role model" for other companies. Robin was recognized as a finalist for Information Security Executive of the Year in 2007 for the Southeast region of the United States.
Robin earned his M.S. degree from Purdue University and an MBA from the Goizueta School of Business at Emory University. While he was at Purdue, he participated in research that led to a patent award (U.S. patent 6725378) on the prevention of network based denial of service attacks. He has also earned several information security certifications, including the Certified Information Privacy Professional (CIPP/US), Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), and Certified Information Security Manager (CISM).
Vice President of Technology Infrastructure and Broadcast Transmissions, Turner Broadcasting System, Inc
James Robertson is Vice President of Technology Infrastructure and Broadcast Transmissions for Turner Broadcasting System, Inc. In this capacity, Robertson leads the team responsible for providing agile technology solutions for the company across both back office operations and broadcast arenas.
Named to this position in 2003, Robertson holds global responsibility for data networks and voice systems, IT security posturing and enforcement, as well as technology and content risk and compliance services. He also oversees project management and broadcast transmissions which include all satellite and fiber-based video services used by Turner Broadcasting's entertainment and CNN news properties.
Robertson serves as chair of the Time Warner Security Committee, chartered with setting and enforcing the security stance across Time Warner's family of companies that includes HBO, Warner Brothers, Time Inc. and Time Warner corporate along with Turner Broadcasting. He also chairs the Network Architecture Committee across Time Warner, which provides network design validation and architecture planning for the company at large. In addition, Robertson sits on a number of industry advisory boards and has spoken and keynoted at numerous technology and media industry events including the 2010 Network World conference and 2010 Computer World conference.
Robertson joined Turner Broadcasting in 1998 to form the first IT security team and was promoted to Manager of Network and Security Groups in 1999. In 2001, he was named Director of Technology Operations. Prior to joining Turner Broadcasting, Robertson was Vice President of Technology and Chief Information Officer for Georgia Military College.
Robertson holds a bachelors degree with honors in Computer Science from DeMontfort University and a masters degree in Computer Science from American Institute for Computer Sciences.
Chief Information Security Officer, The State University of New York
Ted Phelps is the Chief Information Security Officer for the State University of New York (SUNY) where he has done Security planning and oversight since 2004. Prior to 2004, he worked 22 years in computer networks. Mr. Phelps wrote the official SUNY guidelines for information security program management, uniquely based in organizational dynamics. He advocates cross-discipline collaboration to build a more "Organizationally Savvy Security," based in the organization disciplines.
A longtime advocate and teacher of meditation, Mr. Phelps designed the self-paced teaching method, Natural Meditation, and wrote "A Course in Meditation."
Mr. Phelps is a Certified Information Security Manager (CISM) and holds a BA in psychology from Yale.
Vice President, Information Risk and Security, Blackstone
Jessvin Thomas is a Vice President in Information Risk & Security at Blackstone focused on building an environment of excellence and innovation that can both safeguard the firm while maximizing business agility. Jessvin is recognized for his passion in leading organizations to adapt to and succeed from the constant change inherent in the technology industry. Prior to joining Blackstone, Jessvin served as the Director of Cloud, Automation and Tooling in the mobile industry responsible for developing a fully automated private cloud solution supporting applications used by millions of consumers around the world.
Senior Product Marketing Manager, Palo Alto Networks
Brian Tokuyoshi is a Senior Product Marketing Manager for Palo Alto Networks, where he is responsible for working with customers on distributed enterprise network security solutions. Brian has a 17 year background in computer security, with domain expertise in issues around data protection, identity, and authentication. Previously, Brian worked for PGP Corporation, ActivIdentity and Sun Microsystems, and served as senior market analyst for identity & cryptography at The Radicati Group.
Vice President, Technology Risk Management & Chief Security Architect, Blackrock, Inc.
Chief Information Security Officer, Blue Shield of California
Blue Shield of California's Chief Information Security Officer (CISO), Sherry Ryan, is responsible for proactively overseeing all ongoing activities related to the confidentiality, integrity and availability of sensitive BSC electronic data; as well as compliance with federal, state and local laws and BSC's electronic security policies regarding the handling of legal, financial, personal, health and other sensitive information in compliance with federal and state laws and BSC's electronic security practices.
Previously, Sherry was Hewlett-Packard's CISO and held similar positions at Safeway and Levi Strauss where she established and led their information security programs. She served as a member of former Vice President Gore's National Performance Review Small Business Advisor Task Force. Sherry holds the Certified Information Security Manager (CISM) certification from ISACA and the Certified Information Systems Security Professional (CISSP) certification from ISC2. She is a member of the High Tech Crime Investigation Association (HTCIA) and the Information Systems Security Association (ISSA).
Sherry holds a bachelor's degree in Business Administration from the University of Redlands, and earned her MBA from the College of Notre Dame. She is based in San Francisco, California.
Information Security Officer for Lucile Packard Children's Hospital, Stanford Medical Center
Connie Sadler is the Information Security Officer for Lucile Packard Children's Hospital at the Stanford Medical Center, where she plays a significant role in policy development, compliance, user awareness and training, and the overall protection of sensitive and confidential information. Connie also does a seminar on Identity Theft, and is active in Information Security Professional Organizations working to develop standards and best practices. Connie has extensive experience with security architecture and infrastructure. She has been in the Information Security community for over 20 years, and has experience in higher education, academic medical centers, research institutions, nuclear facilities, government, health care, and global aerospace and defense. She believes that education of users of technology at all levels is the single most effective work of a security professional.
Connie is a Certified Information Systems Security Professional (CISSP), a Certified Information Security Manager (CISM), is Certified in the Governance of Enterprise IT (CGEIT), and a Graduate of the SANS Security Leadership Certification Program. She also serves as an advisor to several security organizations and has spoken and provided training at various security-related seminars and conferences.
Senior Director, Information Security Product Management & Innovation, McKesson Corporation, Office of the CISO
A visionary, strategic and certified Information Technology professional with more than 25 years of in-depth and cross-industry experience that includes healthcare, telecommunications, financial services, retail and manufacturing. His career spans a progression of roles from Systems Operations and Network Administration, Software Engineering, Business Analysis, IT Project Management, Information Security, IT Risk Management, Disaster Recovery and Business Continuity Planning.
Mr. Sapp is currently focused on leading the development of strategic and innovative implementations of Information Security and IT Risk Management initiatives that leverage enabling technologies within the healthcare industry by applying practical, business-driven vision to develop sensitive data protection strategies as part of product development standards within the Office of the CISO at McKesson Corporation.
He is a member of several industry groups that include Cloud Security Alliance (CSA), HITRUST (Health Information Trust Alliance), DHS Critical Infrastructure Protection Advisory Council (CIPAC) and the National Health Information Sharing & Analysis Center (NH-ISAC) among others as well as a frequent speaker at industry conferences, summits and other related events that include RSA Security Conference USA 2011, RSA Security Conference Europe 2010, HIMSS 2011, and OWASP USA 2010.
Information Security Officer , Protective Life Corporation
Tim Searcy joined Protective Life Corporation in 2002 as its first Information Security Officer with the challenge to create a formal security program from the ground up. Today, the mature program is charged with overall corporate responsibility for IT risk management and includes defense systems management and strategy, policy development, security architecture, identity and access management, incident management and investigations, security awareness, regulatory compliance, and disaster recovery. Tim is responsible for providing leadership, strategy and direction for all information security and risk initiatives for the company.
Tim has over 20 years of experience in the information technology and financial services arena with 18 years dedicated to information security and auditing. Prior to joining Protective, he served as a senior security architect and senior audit officer in the banking community. He also served as a senior technical manager for an Internet startup company where he created their formal software quality assurance and technical support division.
Tim is a native of Birmingham, AL and holds an MBA degree from the University of Alabama at Birmingham and a BS degree in Mathematics from Birmingham-Southern College. He also holds the CISSP and CISM designations. He has been a frequent guest lecturer in the MIS program at UAB and an invited guest speaker at conferences on information security, software engineering and Sarbanes-Oxley compliance.
CISO, Protective Life Corporation
Vice President IT Risk Management & Compliance, McKesson Corporation
Maria Shaw, Vice President, IT Risk Management & Compliance – Maria has worked for McKesson for the last six years – initially building out the company's SOX program, and over the last 3 years working for the CISO building out the IT Risk Management function which is tasked with embedding security and IT risk management across the organization. Prior to McKesson, she worked for many years for Deloitte & Touche both in the US and the UK in both auditing IT and business/financial processes and providing consulting services in these areas. Maria holds a Masters Degree, Computer Science, from Cambridge, UK.
Deputy Director and CIO, State of California, Department of Motor Vehicles
Bernard C. Soriano is the Deputy Director for the California Department of Motor Vehicles. He has over 25 years of engineering and management experience in the private sector and public sector. He previously held engineering and management positions at Hughes Space and Communications, Inc. in Los Angeles, where he designed satellite attitude control systems and was involved in their launch missions. He was also the Assistant Technical Director at the USGA Research and Test Center in New Jersey. In the public sector, Bernard was the CIO for the California Department of Forestry and Fire Protection and the Office of the Secretary of State. In addition, he was the information technology task force leader on Governor Schwarzenegger's California Performance Review.
Bernard was also a member of the part-time faculty at the California State University, Sacramento, where he taught courses in the College of Engineering and the College of Business Administration.Bernard holds a Ph.D. in Engineering from U.C. Irvine, an M.B.A. from California State University, Sacramento, an M.S. in Mechanical Engineering from the University of Southern California, and a B.S. in Mechanical and Aeronautical Engineering from U.C. Davis. He was a Lieutenant in the U.S. Navy Reserve and has numerous publications and patents. His honors and achievements include selection as a finalist in the NASA astronaut program.
Regional Information Security Officer, Sutter Health, Central Valley Region
Tim is the Regional Information Security Officer for Sutter Health, and is based in Sacramento, CA. Tim oversees strategic planning, risk management, data loss prevention, and security operations for a regional health system. Tim works closely with executive leadership, governance, legal and compliance, key stakeholders, and business partners. Tim is an expert in Health IT Security, and has a rich background working with Electronic Health Record (EHR) systems. Tim's leadership has been critical in helping his organization understand and meet the challenges of HITECH Meaningful Use requirements.
Tim has almost a decade of experience in information security and risk management. In addition, Tim was a child prodigy in technology. During his early years in high-school, Tim was already writing software, and began a career in technology before he graduated as salutatorian of his class. Tim's IT background includes: software development, desktop and server administration, system engineering, network architecture, IT security administration, and project management. Tim has worked in banking, manufacturing, and education; however, he has spent over 12 years of his IT career working in health care.
Tim has been a frequent guest on radio & podcast shows, and has given keynotes at a number of technology and security events. Tim holds a Bachelors of Science in Organizational Leadership from Azusa Pacific University, and holds numerous certifications and awards in security and technology
Chief Information Security Officer,
Ariel Silverstone is addressing business information security and risk challenges for over 20 years. Designing information security processes and policies to address the most demanding challenges in the field, he is a thought pioneer in information security strategy and engineering, business risk, and management solutions. His specialties include mobility, information risk, user authentication, PCI compliance and cloud computing security.
Professionally, he has led efforts for such companies as Expedia, Travelport, Symantec, and others companies. A frequent speaker at industry events on the topics of security management, business risk and compliance issues, Silverstone also writes a regular column for CIO Magazine, and has been quoted in The Wall Street Journal, BusinessWeek, CSO Magazine, ComputerWorld and other leading publications. He consults and trains security professionals, and has authored and contributed to more than 20 books, dozens of magazines, electronic publications, and high-profile research papers, which have been published around the world. He is a frequent contributor to standards bodies and co-authored the National Institute of Standards and Technology (NIST) guide to security for the Smart Grid.
Group Information Security Officer, Willis
Drew Simonis has been in the information security field for over a decade with a background as an analyst, engineer and consultant. Drew has worked extensively in the ISP space, both for IBM Global Services and AT&T and spent several years working on one of the largest DoD networks. At Willis, Drew is focused on transforming the information security program to support a data-centric model focused on business enablement through informed risk decisions. Just prior to joining Willis, Drew was an Information Security Manager with Symantec, the world's largest security software company. Drew is an industry expert, having spoken at several conferences, including the industry's largest, RSA. He has also co-authored several books, including "Building Enterprise DMZ's" and "Check Point Next Generation Security Administration" and is the President of the Nashville CISO Roundtable. Drew has his Masters of Science in Computer Science, focusing in Information Security, from James Madison University in Virginia.
Vice President Sales, Americas, Lumension
Chief Information Security Officer, InterMountain Healthcare
Karl J. West is the Assistant Vice President of Information Systems and Chief Information Security Officer for Intermountain Healthcare, an integrated delivery network (IDN) based in Salt Lake City, Utah. Karl is responsible for Strategic Planning, Finance, HIM, Enterprise Data Warehouse, Homecare, IS Governance and Project Planning.
As the AVP of Information Systems, Karl is responsible for Business Intelligence, Data Governance, IS finances and governance. As Intermountain's Chief Information Security Officer, he is responsible for access, authorization, privacy, business continuity and data governance. With more than a decade of service within Intermountain Healthcare, Karl has led efforts to create cost efficiency and an integrated IS plan.
Karl has been involved with Information Technology for the past 25 years. Prior to Intermountain Healthcare, Karl was a VP and Managing Partner in AT&T Consulting Services. Karl also has a keen interest in development of new technologies to improve patient care and lower patient costs.
Karl is a member of the Utah Health Information Network (UHIN) Privacy and Security Board, as well as a Board Member of the Weber State Computer Science Department.
Karl is a resident of Utah. Prior to living in Utah, he and his family lived in Houston, Texas. Karl is married with six children. Karl received a BSCS from Brigham Young University and has also received an MBA.
Chief Information Security Officer, Sumitomo Mitsui Banking Corporation
Kylie Watson is Sumitomo Mitsui Banking Corporation's Chief Information Security Officer for the Americas, EMEA and Capital Markets globally. Ms. Watson is charged with establishing security strategy and direction and is the corporate advocate for information security best practices. She is responsible for outlining the company's security vision in support of the business including technological planning, strategic initiatives, development and future growth, and promoting a culture of security across the enterprise. Ms. Watson's role also includes System Risk Management and Security Operations across the enterprise.
Ms. Watson has more than 20 years of experience in Information Technology in roles as diverse as Global Crisis Management, Program Management, Application Development, Corporate User Liaison and as a Systems Engineer. Prior to joining SMBC, Ms. Watson worked for IBM in Australia and as a teacher in Japan. She is a Certified Information Systems Security Professional (CISSP), a Certified Information Security Manager (CISM) and is Certified in Risk & Information Systems Control (CRISC).
Security Services Strategy Executive, IBM Corporation
John Wheeler is a 13-year veteran of the information security industry with specialization in consulting, managed, and cloud security services based on a broad range of security domains and products. Mr. Wheeler is currently the Worldwide Security Services Strategy Executive for IBM Corporation working with IBM's clients to design, develop and implement new generations of solutions to solve complex and evolving security threats. Mr. Wheeler has a broad base of experience having held multiple executive, leadership and technical positions with prior roles and responsibilities covering business development, marketing, product management, engineering, R&D, consulting, operations, delivery and business unit management. As the Worldwide Delivery Executive responsible for IBM's Managed Security Services organization, Mr. Wheeler was responsible for the executive oversight of IBM's global security operations centers, deployment and integration centers, client services and intelligence resources responsible for providing security monitoring and management across thousands of devices and billion of events to protect customers spanning the globe.
Information Technology Risk Officer, The Allstate Corporation
Cynthia Whitley is the information technology risk officer and former chief information security officer at Allstate Insurance Company. Whitley has previously held various leadership positions in Claims, Operations, Accounting and Human Resources before her current assignment in Information Technology. As the Risk leader, Whitley is responsible for implementing a risk and compliance program that delivers value-added risk management processes to meet Allstate's business objectives. In this role, she establishes policy, standards and governance over the information technology controls and process environment. Her goal is to enhance the general risk management and compliance culture within Information Technology. Whitley holds a Bachelor of Arts degree from the University of North Carolina and a Master of Business Administration from University of Illinois-Chicago. She also holds CISSP and CISM certifications.
Senior Security Analyst, Palo Alto Networks
Wade has extensive industry experience in intrusion prevention, secure mobility, and both wired and wireless networking. Prior to joining Palo Alto Networks, he led the product management team at AirMagnet, Inc., including the company's flagship wireless IPS solution. He has been a steady and active researcher of new threats and techniques used to compromise enterprise networks and mobile end-users. He also brings well-rounded experience from silicon-vally visionaries Netscape and Sun Microsystems. As an expert in the field he leads Palo Alto Networks' Threat Review Series, which provides analysis and best-practices in response to the latest industry threats. Additionally, he has been an ongoing contributor to Security Week covering the topic of modern malware.
Vice President and Chief Information Security Officer, McKesson Corporation
Mike Wilson, Vice President, CISO – Michael has worked for McKesson for the last three years where he leads the security and IT risk management functions for the Corporation. Michael has worked predominantly in IT and risk management fields across several geographies and industries including financial services, healthcare and consumer products & distribution. These roles have been focused on maturing risk management and security functions to provide more value to their sponsoring organizations. Prior to McKesson, he worked for many years for a global professional services organization and has held various IT positions in the AsiaPac region working in the Financial Services industry for a bank and insurance organizations'.
Michael continues to support several industry organizations; this includes, as an executive advisory board member for the Health Information Trust Alliance (HITRUST), provides support for the Health Security Alliance, Cloud Security Alliance and is an active member of the CSO Bay Area Council. Michael speaks regularly on various panels and conferences, notably as a governing body co-chair of the CISO Executive Summit (San Francisco). Michael holds a Bachelors Degree, Business Administration and Commerce, from Victoria University, New Zealand.
Vice President, Corporate Securty, J.B. Hunt Transport, Inc.
Johnie Wood is the Vice President, Corporate Security & Audits at J. B. Hunt Transport Services, Inc., Lowell, Arkansas where he is responsible for Corporate Security, Executive Protection, Information Systems Security Services, Business Continuity, Data Center Operations, IS Customer Service Operations. He received his Bachelors and Masters degrees in Criminal Justice Administration from Chapman College and Central Missouri State University, respectively.
He retired from the U. S. Air Force as a Major in 1990 after 24 years of service, initially serving in the Telecommunications and Computer Operations fields and 13 years as a Security Police Officer. He served tours as a nuclear missile security officer, police inspector, Chief of Police and Director of Security, Special Activities Branch for the Secretary of the Air Force.
After his Air Force career, he worked in the defense industry in Los Angeles, CA and Colorado Springs, CO managing security and technical teams including providing security advisors to the satellite launch programs at both the eastern and western launch test ranges and shuttle launch security operations. His immediate position prior to joining J. B. Hunt in 1998 was as a Senior Regional Operations Director, Trident Data Systems, managing five security and technical teams including a penetration test team.
He has written numerous security articles and presented security training classes both in the private and public sectors.
He is one of the founding members of the Arkansas InfraGard Members Alliance and is the past President of the Arkansas State Chapter and Programs Committee Chair. Additionally, Mr. Wood serves as a guest lecturer at the University of Arkansas.
Head of Information Security, Director, Texas Instruments
Since 2001, Brian Wrozek has been the IT Security Director for Texas Instruments. He is responsible for all areas of electronic data and system security worldwide. In 2011 he was given the added responsibility of chairing TI's new global Privacy Committee. He continues to facilitate the company's Confidential Information Protection Council and represent IT Services on the corporate Acquisitions and Divestitures Team.
Brian Wrozek earned his BS in Computer Science from Michigan Technological University and his MBA from the University of Dallas. He holds an Information Assurance Certification from the University of Dallas. His is gold certified in Security Essentials from the SANS organization.
He is on the Governance Board of the University of Dallas' Cyber Security Graduate program. He is an active member of the ISSA where he served 4 years as the President of the North Texas Chapter.
He received the 2008 central region Information Security Executive of the Year award from Executive Alliance and the 2010 Information Security Executive of the Year award from the Texas Regional Infrastructure Security Conference group. He is married and has three daughters.
Chief Risk Officer, Strategic Planning Department, Tokio Marine Management, Inc.
Arya Yarpezeshkan is the Chief Risk Officer and Strategic Planning Leader for Tokio Marine Management, the U.S. management company for Tokio Marine and Nichido Fire Insurance.
In this role, Arya is responsible for all enterprise risk management initiatives and strategic planning for the company. This includes assisting the Company Board and senior management with establishing and communicating the organization's enterprise risk management ("ERM") objectives and direction. Arya is also responsible for establishing Tokio Marine's risk appetite and allocating capital accordingly.
In his strategic planning role, Arya leads the process of identifying and evaluating new market opportunities, which includes partnering with the business units and leading the business plan proposal process within the company. Arya also advises Tokio Marine management on supporting initiatives such as financial and economic analysis that may have an impact on the Company's current or future objectives. He ultimately assists with decisions on operational executions of business plans.
Prior to Tokio Marine, Arya worked in the enterprise risk management ("ERM") group at MasterCard as well as in financial roles at Citigroup and The Bank of New York Mortgage Company. Arya has also spent time in strategic planning and operations roles within the manufacturing sector at Astec America and Maxwell Technologies.
He completed his M.S. in Banking at Mercy College, his M.B.A. at San Diego State University and his B.S. at Kansas State University and is certified in Six Sigma, Project Management, Business Process Management and Business Continuity.
Vice President, Global Information Security, Bank of America
Daniel Yomine is the Vice President of Global Information Security Oversight for Bank of America. An information technology and cybersecurity security professional committed to continuous risk management, Dan holds two patents for the design and deployment of business controls. Dan has extensive experience and knowledge in metrics development and reporting, regulatory compliance and risk management, and information security best practices in benchmarking and control mapping.
Dan also holds three patents for risk and predictative analytics and is Six Sigma certified.
Chief Information Officer of the Americas, Transitions Optical
Maria has had an extensive career in IT, Operations and HR spanning over 35 years. As the Director of IT/CIO of the Americas at Transitions Optical, Maria is a part of the organization's Leadership Team which governs both the Operations and the Commercial business functions for North and South America. In her four years at Transitions, Maria has led the efforts to enhance security at Transitions, a company with focus on protecting their data and guarding their intellectual property in support of the company's innovation in photochromics within the optical industry. In addition, the company during Maria's tenure has consolidated data centers, introduced virtualization, cloud computing, VOIP and business intelligence.
Maria's career began at Westinghouse Electric in Pittsburgh, PA as a programmer in mainframe technologies. As her career unfolded, she advanced to Senior Business Analyst for Mellon Bank, Project Manager for the Nuclear Division of Westinghouse, and Senior IT Auditor for Rockwell International. Maria then decided to start her own IT consulting firm which she grew from two to twenty five consultants. The company was absorbed by Dollar Bank in Pittsburgh where Maria took the position of Vice President of Software Development. After 9 years in that role, the Board of Directors asked Maria to start a new division offering IT and start up services to small businesses in the western Pennsylvania area. She was then asked to lead a joint venture with Knight-Ridder to market banking services as part of the first PC to mainframe link paving the way for banking over the Internet. During that time, Maria also provided technical and operational leadership to local organizations and non-profits.
Prior to her current role at Transitions, Maria held the position of Vice President responsible for IT functions for Citibank's Latin America division. During her eight years, Maria made significant contributions to the region's corporate banking business. In the early 2000's, Maria became an interim HR Manager for two years serving a group of over 400 IT professionals which led to her current adjunct role of coaching and mentoring IT leaders on how to build strong IT teams.
Other responsibilities Maria has had include the head of Operations for the MAC ATM switch for the state of PA, two corporate Board of Directors positions, IT advisor for the United Way, member of the Advisory Board of a local school for underprivileged children, and professor at Robert Morris college.
Maria is a graduate of the University of Pittsburgh and has completed the coursework for both an MBA and a Masters in Education from Duquesne University. She is currently a mentor at the University of Tampa for MBA students and is a coach for younger professionals who want to either find a job or further their careers within IT.
