CEO and Co-Founder PhishMe
Rohyt Belani is the CEO of PhishMe, a company focused on improving employees' security behavior towards targeted phishing, malware, and drive-by attacks.
Prior to starting PhishMe, Belani was the co-founder and CEO of Intrepidus Group (acquired by NCC Group Plc), managing director at Mandiant, principal consultant at McAfee's Foundstone division, and a researcher at the Software Engineering Institute. He was also an adjunct professor at Carnegie Mellon University for five years.
He is a contributing author to several information security books and publications, has spoken at leading security conferences world-wide including Black Hat, RSA, OWASP and forums catering to the FBI, US Secret Service, and US Military. He provides regular commentary and analysis on cybersecurity issues for national print and broadcast media, including BBC, CNN, ABC News, and Forbes.
Belani holds a bachelors in computer engineering from University of Mumbai, and a masters in information networking from Carnegie Mellon University.
CISO The Travelers Companies, Inc.
Linda Betz has been the CISO of Travelers since December 2011. In her role she is responsible for the security policies, setting the strategy, employee security education, third party security assessments and operations of Travelers security.
Previously, Betz was with IBM for 29 years. She was the director of IT policy and information security in the office of the CIO. In this capacity, Betz and her team were responsible for setting the company’s internal security strategy, leading security initiatives that protect IBM’s IT infrastructure and driving transformational change. She was also the business owner in the CIO for disaster recovery and business continuity, advocating the strategy and changes needed in this area for IBM.
Betz has a B.S. in computer science and mathematics from SUNY Albany and an M.S. in computer science from Marist College. She has a Master’s certificate from George Washington University in project management and is a certified Project Management Professional (PMP). She is also CIPP and CISM certified. Betz is currently working on her Ph.D. in information systems with a concentration in information security at Nova Southeastern University.
CISO Columbia University
Medha Bhalodkar is the CISO for Columbia University. She has more than 25 years of experience in various aspects of information technology, auditing and risk management, with her first 15 years in the financial industry and last 10 years in the education and healthcare industries. She is a recognized risk management and information security professional serving on a number of governing bodies and steering committees of professional organizations. Bhalodkar’s current responsibilities include leadership of enterprise information security, identity and access management, strategic planning, IT risk management and oversight, and accountability for the information security assurance program for the university. She has also been recently appointed as an advisory board member for Columbia University’s Master’s of Science in Enterprise Risk Management program, which is being newly created to prepare professionals across a variety of industries in rapidly evolving global and regulatory environments to develop integrated and effective risk management capabilities that deliver business value and enable growth and innovation in the enterprise.
VP & CSO McGraw-Hill Financial
Dennis Brixius joined The McGraw-Hill Companies as VP and CSO in 2004. In this role, Brixius is responsible for establishing a complete information security program to limit technology-based security problems, protect the McGraw-Hill intellectual property rights, ensure business continuity and protect the privacy of its customers. His role also accommodates information risk analysis and assessment; developing security and risk management among internal technology groups; consulting with business units to address information security issues early in changing business and technical plans; and educating senior management about changes in technical, legal and regulatory arenas that affect information security and business continuity.
Prior to joining The McGraw-Hill Companies, Brixius had a proven track record of solving IT-related business and security problems. Most recently, he was director of enterprise architecture and CISO at Praxair, Inc. He occupied senior information management positions at TRW Inc., BP and two consulting firms. Brixius received the CSO of the Year award from SC Magazine in 2007 and was also nominated for the 2007 Information Security Executive of the Year for both the Tri-State and national levels. Brixius has a bachelor’s degree from Gettysburg College and an MBA from the University of Delaware.
SVP & CISO Elsevier
David Cass is the CISO for Elsevier. He leads an organization of experienced legal, risk and security professionals that provide data protection, privacy, security, and risk management guidance on a global basis for Elsevier. Cass has extensive experience in IT security, risk assessment, risk management, business continuity and disaster recovery, developing security policies and procedures. He has played a key role in leading and building corporate risk and governance and information security organizations in the financial sector. As the senior director of information security risk and governance for Freddie Mac, Cass rebuilt the risk and governance function and developed a team to provide risk assessments, methodologies, tools, services, and training to improve the maturity and capabilities of Freddie Mac’s information security, risk and governance programs. Prior to that he was VP of risk management for JPMorgan Chase, and was responsible for providing an accurate assessment of the current risk management state, contributing to the future direction of risk management, continuity and disaster recovery capabilities for the organization.
Cass has an MSE from Penn Engineering and The Wharton School of Business. In June of 2012, he received his MBA from MIT.
Chairman, Chertoff Group & Former Secretary, U.S. Department of Homeland Security
From 2005—2009, Michael Chertoff was secretary of the U.S. Department of Homeland Security and led the country in blocking would-be terrorists from crossing borders or implementing their plans if they were already in the country. He also transformed FEMA into an effective organization following Hurricane Katrina. Before heading up the Department of Homeland Security, Chertoff served as a federal judge on the U.S. Court of Appeals for the Third Circuit. Earlier, during more than a decade as a federal prosecutor, he investigated and prosecuted cases of political corruption, organized crime, corporate fraud and terrorism, including the investigation of the 9/11 terrorist attacks.
Chertoff is also the co-founder and chairman of The Chertoff Group, where he provides high-level strategic counsel to corporate and government leaders on a broad range of security issues, from risk identification and prevention to preparedness, response and recovery. In addition to this role, Chertoff is senior of counsel at Covington & Burling LLP and a member of the firm’s white collar defense and investigations practice group.
Chertoff is a magna cum laude graduate of Harvard College and Harvard Law School. From 1979—1980 he served as a clerk to Supreme Court Justice William Brennan, Jr.
CISO Thomson Reuters Corporation
Mark Connelly is the chief information security officer for Thomson Reuters. Connelly joined Thomson Reuters in 2012 to lead a robust transformation of the risk and security function. In his role, he oversees security operations, governance, risk and compliance, application security, policies and controls, infrastructure security and security awareness and training. He brings more than 30 years of risk and security, IT and business management experience to Thomson Reuters.
Previously, Connelly was the CISO with ITT. He has worked to build government industry partnerships in the information security area through the Security Innovation Network to increase the awareness of innovative emerging companies. He was named CISO of the Year for the Northeast region in 2011 and an ISE Northeast Executive of the Decade award nominee in 2012. He was recently named one of the Top 10 Breakaway Leaders in 2013, which recognizes world-class information security leaders whose leadership elevates their people, partners and business. He holds an M.S. from the Sever Institute at Washington University, a B.A. from Washington University and an M.A. from University of Missouri and is a CISM, CGEIT and CRISC.
Information Security Officer The Guardian Life Insurance Company of America
Andrew Conte is an information security officer at The Guardian Life Insurance Company, covering operational risk and information security. He is also a current member of the security and risk advisory board at Landmark Ventures, Inc. Conte uses a holistic, process-based approach to managing enterprise risk through the development of comprehensive business solutions. His responsibilities include information assurance, governance, compliance, secure infrastructure design, policy development and enforcement, disaster recovery, intrusion detection and prevention, network and system hardening, firewall design and implementation, compliance, and security assessments.
Conte has more than 12 years of hands-on and consulting experience within the information security discipline. He was previously director of IT and security officer of HBO, a New York City-based, wholly owned subsidiary of Time Warner Inc., and director of IT at CNBC and NBC. He is a CISM, CISA, CISSP and CPA and graduated with a bachelor of science in accounting with an executive MBA in information systems.
Chief Privacy & Information Security Officer UBS
Dennis Dickstein is chief privacy and information security officer for UBS wealth management Americas. He is responsible for developing and leading information security, data protection, identity theft protection and records management programs.
In prior years, Dickstein was responsible for operational risk management and control, and he installed control frameworks to comply with the Sarbanes Oxley law and related regulations. Previous to that, he held various operating and risk management positions in other UBS areas and in other financial services firms.
Dickstein is co-author of the book "No Excuses: A Business Process Approach to Managing Operational Risk." Over the past several years, he has presented at many conferences and at business schools, speaking about information security, identity theft protection, operational risk management and aligning risk management with business objectives.
Dickstein holds a master’s degree from Harvard University and a B.S. from MIT.
Managing Director, North America Modulo
As managing director of North America, Stephen Gant plays a key role on the Modulo executive leadership team and is responsible for expanding the company operations in North America, as well as building strategic corporate and business development partnerships and initiatives. Gant brings extensive leadership and experience in information security, virtualization, software and communications to Modulo. Among other industry successes, Gant played an instrumental role in the rapid growth of Internet Security Systems (ISS), now a part of IBM, where he served as vice president of business development and product management. Gant also founded his own highly successful M&A and startup advisory consulting company. Internationally he has served as the VP of worldwide consulting and education as well as VP of Latin American operations for ISS and worked with Galaxy DirecTV Latin America and DirecTV Japan as an international account executive for General Instrument-MCS, now part of Motorola.
Principal Security Strategist Vanguard Integrity Professionals
Patrick Gray joined Vanguard Integrity Professionals as its principal security strategist after serving as a security expert for Cisco Systems. Gray came to Cisco after 20 years of service with the FBI. Upon his retirement from the FBI in 2001, he joined ISS and created the X-Force Internet Threat Intelligence Center. He thereafter was director of the penetration testing and emergency response teams until his promotion to the X-Force R&D team. As a result of his service with the FBI and the Internet Threat Intelligence Center, he has firsthand knowledge of the hacking community, its aims and its methodologies as hackers attack government, e-commerce, energy and financial entities relentlessly. He continues to work closely with the FBI, the Department of Homeland Security and the White House.
Gray was assigned supervisor of the special operations group in 1994, which ultimately morphed into one of the FBI’s first regional cybercrime squads, and was a member of the FBI’s elite computer assistance response team as a forensic examiner. Gray is also a board-certified Homeland Security Professional by the American College of Forensic Examiners International, and he is a member of the Association of Certified Fraud Examiners and the International Information Systems Forensic Association.
VP & CISO L'Oréal USA
Zouhair Guelzim is an accomplished information security executive with more than 20 years of experience. He currently serves as VP and CISO for L’Oréal USA, the Americas subsidiary of the L’Oréal Group, the world's largest cosmetics company and the leader in the beauty industry. He is responsible for the overall information security program, which includes the company’s information risk and security strategies, planning, governance, architecture, and operations. He is a member of the IT leadership team and he is instrumental in enabling L’Oréal’s innovation and digital transformation to drive business growth.
Prior to joining L’Oréal in 2005, Zouhair spent seven years at Time Warner Inc., a media and entertainment conglomerate, where he managed multiple global infrastructure and security initiatives, and ensured compliance with corporate, industry and regulatory standards. He was attributed the AOL Outstanding Employee Award for his leadership and technical role in the modernization of the AOLTW global network and integration with the AOL backbone network.
Zouhair is active in the CISO community and industry development. He received a post-master’s certificate in international business, an MBA in management and an M.S. in telecommunications from Iona College and he holds several professional certifications, including C|CISO, CISSP, CISA, CGEIT and CRISC.
VP & Global Strategist RSA, The Security Division of EMC
Mike Huckaby is vice president and security strategist for RSA. His expertise provides an opportunity to consults with Fortune 500 clients to help design and implement solutions for security-related business problems including governance, strategy, architecture, operational elements and advanced persistent threats. Huckaby’s technology vision has presented him with opportunities to work with CIOs, CISOs and CTOs to design innovative security programs in order to address the changing security landscape. His unique approach to information security drives focus for the development of enterprise security management strategies that include virtualization and cloud security, incident response, APTs and user awareness.
VP & CISO Realogy Corporation
Laura Jagodzinski is vice president and chief information security officer for Realogy Corporation. She has 30 years of hands-on management in IT with extensive international experience helping businesses manage information risk through strengthened security, controls and project management at a cost commensurate with risk. Her diverse IT background with specialty in IT governance, combined with strong business acumen gives her the ability to lead disparate groups to deliver tangible results while building strategic relationships. She has also held positions with AT&T, Reader’s Digest and Cendant. She graduated from Pratt Institute with a B.S. and M.S. with honors in mathematics and holds CISA, CISM, C|CISO and PMP certifications.
President & CEO Vormetric, Inc.
Alan Kessler is president and CEO of Vormetric. As CEO, Kessler is further accelerating Vormetric’s business momentum by expanding the company’s global footprint, targeting untapped market opportunities, achieving operational excellence, and extending Vormetric’s leadership position in helping enterprises mitigate business risk across physical, virtual and cloud environments. Kessler has a proven track record of directing global corporate strategy and operations for security, enterprise software and storage systems leaders such as HP, TippingPoint (a division of 3Com), Attune Systems and Palm, Inc.
Director, Information Security Condé Nast
Brian Lozada is the director of information security at Condé Nast, where he is responsible for overseeing the security and risk management for all digital and technology operations. He leads the company’s integration of information security efforts in the development of next-generation digital products and services.
With more than 14 years experience in information security, Lozada has held several leadership roles. Prior to joining Condé Nast, he was the worldwide manager of information security for Sony Music Entertainment. Lozada has also held roles at Vonage and Accenture.
Lozada is CISSP certified and has a B.S. in information security. He is currently completing his M.S. in homeland security.
John J. Masserini
CSO Miami International Holdings
As chief security officer, John Masserini is responsible for information security, physical security, business continuity and privacy for the MIAX Options Exchange. An 18-year veteran of the security industry, Masserini is responsible for all information security and risk management strategies, including security architecture, regulatory compliance and business continuity. Prior to joining MIAX, Masserini was the CISO for Dow Jones, overseeing security and risk management for all of the Dow Jones and Wall Street Journal brands. He has held key leadership positions at several information security market leaders, such as VeriSign and Guardent, as well as leading integrators such as EDS and SAIC.
Masserini was named the I.S.E. North East Security Executive of the year in 2010 and one of the Evanta Top 10 Global Security Leaders of 2013.
Leading IT Futurist Evanta Leadership Network
Not totally dissimilar to Alexis de Tocqueville, Thornton May is a traveler with a keen eye, good manners, great ears and a sense of the bigger picture.
May’s Management Lab research program at Cambridge Technology Partners was one of the first corporate sponsors of the Black Hat Conference — a program designed to bring security enthusiasts with names like Dark Tangent and Death Veggie into close juxtaposition with corporate and law enforcement professionals. May was the chief awareness officer at Guardent, a managed security services startup backed by Sequoia Capital, New Enterprise Associates and Charles River Ventures. The firm was later sold to Verisign.
May has keynoted conferences on security, delivered lectures to federal agencies and frequently appears as an expert commentator in the security trade press. He combines a scholar's passion for empirical research, an entrepreneur's capacity for opportunity identification and a gift for storytelling.
A graduate of Dartmouth College and the Graduate School of Industrial Administration at Carnegie-Mellon University, May studied at the Center for Japanese studies at the University of Michigan.
Joel Molinoff is currently the CISO for CBS Corporation where he is responsible for information security for CBS’s diverse portfolio of global media and entertainment businesses.
Previously Molinoff was assistant director of the President’s Intelligence Advisory Board at the White House where he supported the president and other senior government officials in the evaluation of intelligence related matters. Prior to his time at the White House, he was an executive of the NSA and an adjunct professor of cybersecurity at Georgetown’s Graduate School of Business. Molinoff was also the founder of Signal Hill Technology Solutions, LLC, an IT security and digital forensics firm and, earlier in his career, held various positions at J.P. Morgan, GE Capital, Wit Capital and Greenwich Associates. He has received numerous government awards and honors to include The Meritorious Civilian Service Award, The National Meritorious Unit Citation and The NSA Computer Network Operations Award.
Molinoff has an MBA from Columbia Business School and a B.A. from Colgate University. He is a Certified Information Systems Security Professional and holds several information security certifications from GIAC/SANS.
Mariano Nunez is the CEO at Onapsis, leading the company's product and business development strategy. As a leading researcher in the ERP and SAP security fields, he was the first to present on cybersecurity risks affecting SAP platforms and how to mitigate them. Since then, he has been invited to hold presentations and trainings in more than 15 countries at some of the most important security conferences in the world, such as BlackHat, RSA and SAP GRC, as well as in Fortune 100 companies and military organizations.
Having helped SAP solve several critical vulnerabilities, Nunez also developed the first open source SAP and ERP penetration testing frameworks and the SAP-certified security assessment solution, Onapsis X1. He leads the "SAP Security In-Depth" publication, is a SANS instructor and is a founding member of BIZEC.org, the Business Security Community. Because of his research work, Nunez has been interviewed and featured in mainstream media such as CNN, Reuters, IDG, The New York Times, eWeek and PCWorld and has been distinguished by the MIT TR35 publication.
CTO Dell SecureWorks
Jon Ramsey is the Dell SecureWorks CTO and executive director of the Dell SecureWorks Counter Threat Unit. The CTU research group is comprised of the nation’s top security experts who identify and analyze emerging cyber threats, while developing rapid countermeasures in support of clients worldwide. An information security expert with policy-making responsibility, Ramsey has more than 20 years of hands-on experience at every level, including system administrator, software engineer, analyst, security penetration specialist and senior engineer. Prior to joining Dell SecureWorks, Ramsey worked for the Computer Emergency Response Team at Carnegie Mellon University, Siemens Corporate Research and the University of Pittsburgh. Ramsey earned a master’s degree in software engineering from Carnegie Mellon University and a B.S. in computer science from the University of Pittsburgh.
Dell Software Executive Dell Software
Eric Robinson has been involved in multiple IT disciplines for more than 25 years. He started in the early days of distributed computing and has worked in sales/sales management in networking, professional services, service/systems management and security. Robinson moved to a security focus in 2005, and in 2007, he earned his CISSP certification. For the last five years, Robinson has been focused on identity and access management. He now runs a team of IAM sales specialists across the central and eastern U.S. and Canada. Previous to Dell, Robinson worked at CA Technologies at IBM/Tivoli. Robinson holds a B.A. from Purdue University.
Former VP & CISO Freddie Mac
As VP and CISO, Michael Rossman directed the information security program for Freddie Mac. Prior to his tenure at Freddie Mac, he established and led the information security programs at a Fortune 125 energy and power generation firm responsible for key portions of U.S. critical infrastructure as well as an international manufacturing firm operating in more than 130 countries. In addition, Rossman has led information security and IT services consulting practices for international professional services and risk management firms. He has consulted in commercial and public sectors with multinational clients as well as U.S. intelligence agencies.
Rossman has participated in government and industry initiatives such as the U.S. partnership for critical infrastructure security (financial services sector), the development of critical infrastructure protection cybersecurity standards for the electric power industry, the U.S. HIPAA security summit, the insider threat study for the Department of Homeland Security’s National Infrastructure Advisory Council and the State of Maryland Governor’s workforce investment board — cybersecurity committee. He has served on advisory boards for several information security and IT technology firms as well as information security organizations.
Rossman holds a B.S. in electrical engineering from the University of Maryland and an EMBA from Loyola College.
CISO Jefferies & Company, Inc.
Ramin Safai is the first CISO at Jefferies. As CISO, Safai is responsible for Jefferies' global cybersecurity and IT risk management programs. Prior to joining Jefferies, Safai was Americas CISO at Barclays and had global responsibilities for rollout of application security and identity management programs. For the past 15 years, Safai has worked as an information security officer at large banks, including Credit Suisse, Lehman Brothers, JP Morgan and Barclays. Safai holds degrees in electronics engineering and computer science and has an MBA from New York University.
CISO New York State
Deborah A. Snyder serves as New York State’s CISO with the State Office of Information Technology Services. In her role as deputy CISO, she directs the state’s enterprise information security office’s comprehensive governance, risk management and compliance program. She provides business-aligned strategic leadership and vision, promoting industry standards and risk-based investments to maximize business opportunity and minimize risk.
From 2001—2012, she served as the CISO for the New York State Office of Temporary and Disability Assistance, where she established and led the agency’s information security office and comprehensive information security assurance program. She informed and advised executive management on security governance, risk and compliance and managed a portfolio of initiatives designed to increase awareness, mitigate risk, optimize protection of information assets and prevent, detect and recover from incidents.
Snyder is an active participant and contributor to the IT and information security community. She co-authored the book entitled “SECURE — Insights From the People Who Keep Information Safe.” She is a highly regarded speaker and instructor on topics critical to executive-level business and IT professionals.
Snyder graduated from the State University of New York at Albany and holds several industry certifications, including CISSP, CRISC, SANS GIAC GSLC and PMP.
SVP, Cybersecurity Booz Allen Hamilton
Bringing more than 25 years of professional experience building consulting and systems integration businesses, Booz Allen Hamilton SVP William Stewart leads the firm’s commercial cyberbusiness. In this role he leads teams that develop strategy and provide consulting and implementation solutions for today’s most complex cybersecurity problems. Previously Stewart led the company’s cyber technology center of excellence.
An experienced business developer and leader, Stewart has grown several large consulting and systems integration businesses for both public and private sector clients. His clients include the DoD, civil agencies, the intelligence community and commercial financial services. He consults with senior government and enterprise executives in the C-suite. As a leader in the firm’s cyberbusiness, Stewart worked to build the capability to lead many top-tier federal agencies and commercial firms toward enhanced security best practice.
Prior to Booz Allen, Stewart worked for a major electronics firm where he developed communications security and key management devices. He also served as a signal officer, battalion commander, brigade/battalion S-3 and company commander in the U.S. Army.
He has a B.S. in engineering from Widener University and an M.S. in electrical engineering from Drexel University.
Laurence A. Tosi is the chief financial officer of Blackstone, the leading alternative asset manager with over $266B of assets under management. Tosi is responsible for Blackstone’s global finance, treasury, technology and corporate development functions and serves on the firm’s management and executive committees. Tosi joined Blackstone in 2008.
Before joining Blackstone, Tosi held a number of senior positions at Merrill Lynch & Co. where he was a managing partner including chief operating officer for global markets and investment banking, finance director as well as head of strategy and business development. Tosi began his career at General Electric where he was a director of business development for its global media unit NBC.
Tosi received a B.A., a J.D. and an MBA from Georgetown University where he is currently a member of the board of directors.
Laraine Weglarz is the CISO of Kering, a €9.7 billion family-controlled, listed company and world leader in apparel and accessories, which includes an ensemble of 22 powerful luxury and sport and lifestyle brands in over 60 countries with 35,000 employees. Weglarz joined Kering in 1999 as technical services director of Gucci America, advancing in 2003 to become the Gucci group WW information security manager and eventually assuming the role of Kering global CISO.
Weglarz has been a CISSP since 2006. She holds a B.S in computer science from Hofstra University.
VP, Security & Risk Management, CISO Kellogg Company
Steven Young is VP of security and risk management and CISO at Kellogg Company. Young joined Kellogg in 2007 as director of IT solutions and was promoted to senior director of infrastructure solutions in 2009. Throughout his tenure, he has been instrumental in creating the Kellogg infrastructure solutions team, which is accountable for delivering foundational infrastructure technologies. He also played a key role in establishing a robust IT infrastructure, including the global data center and a disaster recovery solutions center. Prior to joining Kellogg, Young held leadership positions at corporations spanning from Lucent Technologies, Lockheed Martin, Anderson Consulting and Anheuser-Busch. In these roles, he led corporate IT engineering organizations and oversaw worldwide IT departments in the design and operations of large-scale IT solutions. Young earned his B.S. in management of information systems from the University of Nebraska.
Dr. Robert Zandoli
SVP, Global CISO American International Group, Inc.
In the role of global CISO, Robert Zandoli has responsibility for AIG enterprise-wide information security, including information security technology, architecture and engineering; threat and vulnerability management; IT security governance; information security policies and standards; vendor risk assessment; software security assurance; security intelligence and research; information security operations; identity management; and incident management. In addition to his responsibilities as global CISO for AIG, he holds the position of interim global head of IT security, risk and compliance for AIG global services.
Prior to joining AIG, he was the global CISO at a Fortune 50 insurance company. Zandoli holds an MBA from Bernard Baruch College and a doctorate from Pace University.