Dr. Edward G. Amoroso
SVP & CSO AT&T
Dr. Edward G. Amoroso currently serves as senior vice president and chief security officer at AT&T, where his primary responsibilities lie in the real-time protection of AT&T’s vast enterprise, network and computing infrastructure, including its emerging LTE mobile network and cloud services.
Amoroso’s team is presently focused on creating innovative means for reducing the risk of APT, distributed denial of service, mobile malware, and cloud infrastructure attacks targeting AT&T and its customers. Amoroso’s team works specifically in the area of advanced threat analytics, virtualization of cloud resident security protections, enterprise security policy and architecture, and advanced detection of malware.
Amoroso is the author of dozens of technical papers and reports, as well as five published books on the topic of cybersecurity. For the past 25 years, he has also served as adjunct professor of computer science at the Stevens Institute of Technology, where he has introduced roughly 2,500 graduate students to the topic of computer security.
Amoroso holds the B.S. in physics from Dickinson College, and an M.S. and Ph.D. in computer science from the Stevens Institute of Technology.
VP, Strategy & Operations Synack
As vice president of strategy and customer operations at Synack, Gus Anagnos brings more than 18 years of invaluable experience working in information security and enterprise risk. Anagnos is known as an industry leader as a result of his hands-on development and implementation of many successful global corporate risk mitigation programs. Among his many achievements, Anagnos takes pride in having developed and executed one of the most respected crowdsourced security programs in Silicon Valley; because of Anagnos, PayPal was an early and successful adopter of Bug Bounty and the first financial institution to innovate in this area.
As vice president of strategy and customer operations at Synack, Anagnos leverages his diverse experience helping Synack customers harness enterprise-grade crowd security intelligence to bolster their security programs and protect their businesses.
Director, Evangelism Blue Coat Systems, Inc.
As director of evangelism, Grant Asplund brings more than 30 years of experience in sales, marketing and management to Blue Coat. Asplund combines his long history in web security and networking with a sense of humor and energetic style. Prior to Blue Coat, Asplund was head of market development and sales for Altor Networks, which was acquired by Juniper Networks. Before joining Altor Networks, he was vice president of enterprise sales for NeuStar. Earlier, he was president and CEO of MetaInfo and successfully sold the company to NeuStar. Asplund was the worldwide senior product evangelist for Check Point, which he joined after the company acquired MetaInfo.
CISO The Travelers Companies, Inc.
Linda Betz has been the CISO of Travelers since December 2011. In her role she is responsible for the security policies, setting the strategy, employee security education, third party security assessments and operations of Travelers security.
Previously, Betz was with IBM for 29 years. She was the director of IT policy and information security in the office of the CIO. In this capacity, Betz and her team were responsible for setting the company’s internal security strategy, leading security initiatives that protect IBM’s IT infrastructure and driving transformational change. She was also the business owner in the CIO for disaster recovery and business continuity, advocating the strategy and changes needed in this area for IBM.
Betz has a B.S. in computer science and mathematics from SUNY Albany and an M.S. in computer science from Marist College. She has a Master’s certificate from George Washington University in project management and is a certified Project Management Professional (PMP). She is also CIPP and CISM certified. Betz is currently working on her Ph.D. in information systems with a concentration in information security at Nova Southeastern University.
CISO Columbia University
Medha Bhalodkar is the CISO for Columbia University. She has more than 25 years of experience in various aspects of information technology, auditing and risk management, with her first 15 years in the financial industry and last 10 years in the education and healthcare industries. She is a recognized risk management and information security professional serving on a number of governing bodies and steering committees of professional organizations. Bhalodkar’s current responsibilities include leadership of enterprise information security, identity and access management, strategic planning, IT risk management and oversight, and accountability for the information security assurance program for the university. She has also been recently appointed as an advisory board member for Columbia University’s Master’s of Science in Enterprise Risk Management program, which is being newly created to prepare professionals across a variety of industries in rapidly evolving global and regulatory environments to develop integrated and effective risk management capabilities that deliver business value and enable growth and innovation in the enterprise.
Head of IS, Risk & Compliance AIG Asset Management
SVP & CISO Elsevier
David Cass is the CISO for Elsevier. He leads an organization of experienced legal, risk and security professionals that provide data protection, privacy, security and risk management guidance on a global basis for Elsevier. Cass has extensive experience in IT security, risk assessment, risk management, business continuity and disaster recovery, and developing security policies and procedures. He has played a key role in leading and building corporate risk and governance and information security organizations in the financial sector. As the senior director of information security risk and governance for Freddie Mac, Cass rebuilt the risk and governance function and developed a team to provide risk assessments, methodologies, tools, services and training to improve the maturity and capabilities of Freddie Mac’s information security, risk and governance programs. Prior to that he was VP of risk management for JPMorgan Chase, and was responsible for providing an accurate assessment of the current risk management state and contributing to the future direction of risk management, continuity and disaster recovery capabilities for the organization.
Cass has an MSE from Penn Engineering and The Wharton School of Business. In 2012, he received his MBA from MIT.
Chief Security & Strategy Officer Accuvant + FishNet Security
Jason Clark is a high-performing executive with more than 20 years of experience in building and executing successful strategic security programs. As chief security and strategy officer for Accuvant, Clark is responsible for developing and delivering a comprehensive suite of strategic services and solutions that help CXO executives change their security strategies through innovation to ensure success while aligning to business goals. He is also responsible for creating the office of the CSO to bring value to the security executive community.
Prior to joining Accuvant, Clark was the chief security and strategy officer for Websense, where he was a driving force behind the company’s transformation into a strategic player and provider of critical technology for CSOs. In his previous role as CISO and VP of infrastructure for Emerson Electric, Clark significantly decreased the company’s risk by developing and executing a successful security program for 140,000 employees across 1,500 locations. He has served as CISO for The New York Times, senior manager of security and infrastructure architecture for EverBank, and has held technical leadership positions for BB&T and the U.S. Army.
Clark is a well-known thought leader and highly requested speaker. He has presented at more than 40 conferences worldwide.
CISO Thomson Reuters
Mark Connelly is the chief information security officer for Thomson Reuters. Connelly joined Thomson Reuters in 2012 to lead a robust transformation of the risk and security function. In his role, he oversees security operations, governance, risk and compliance, application security, policies and controls, infrastructure security, and security awareness and training. He brings more than 30 years of risk and security, IT, and business management experience to Thomson Reuters.
Previously, Connelly was the CISO with ITT. He has worked to build government industry partnerships in the information security area through the Security Innovation Network to increase the awareness of innovative emerging companies. He was named CISO of the Year for the Northeast region in 2011 and an ISE Northeast Executive of the Decade award nominee in 2012. He was recently named one of the Top 10 Breakaway Leaders in 2013, which recognizes world-class information security leaders whose leadership elevates their people, partners and business. He holds an M.S. from the Sever Institute at Washington University, a B.A. from Washington University, an M.A. from University of Missouri, and is a CISM, CGEIT and CRISC.
SVP, CIO Worldwide Omnicom Media Group
Kenneth Corriveau is the CIO for Omnicom Media Group Worldwide. Corriveau was appointed to the position in 2006 and is responsible for all computer technology and communication aspects of global operations in more than 80 countries worldwide.
Corriveau has spent his entire career in the advertising industry. He focused his career in information technology at DDB Needham Worldwide and became the director of information technology for the Tribal DDB network, where he established a centralized computing infrastructure and evaluated all technology aspects of new acquisitions.
In 2002, Corriveau was asked to head up all information technologies and strategies for Omnicom’s newest venture, OMD, where he successfully orchestrated the creation of a centralized North American IT operations environment and grew that concept globally. Corriveau assisted in creating a new OMD division that delivered custom media centric applications and BI dashboards for Omnicom Media Group and its clients worldwide. Additionally, Corriveau leads a number of strategic technology committees at parent company Omnicom.
Corriveau is often quoted and recognized within the industry as a top expert in his field, was selected as one of the Top 25 Most Social Fortune 250 CIOs and received the CIO Impact Award from Frost & Sullivan.
ESP Security Strategist HP Enterprise Security
Cindy Cullen is a security strategist within the Enterprise Security Product business unit at HP. In this role, Cullen is responsible for driving strategic initiatives for the ESP Security Strategy group and providing thought leadership and insight regarding the ever-changing global threat landscape.
Cullen has more than 20 years of experience leading cybersecurity and information risk programs. She was CISO at Telcordia/Bellcore, VP of IS at Citi, CTO at SAFE BioPharma and designed a S-SDLC process for Bristol Myers Squibb. Cindy is an in-demand speaker with experience at national and international venues.
She received the Digi Award for industry leadership for the pioneering use of interoperable digital identities by National Cancer Institute, BMS and Sanofi, reducing the cost and time required to get critical medicines to market more quickly. Cullen’s leadership and innovation were recognized by the White House initiative on National Strategy for Trusted Identities in Cyber Space, winning her Computerworld’s Computer Laureate Award 2012.
Partner DeVore & DeMarco LLP
Joseph V. DeMarco is a partner at DeVore & DeMarco LLP where he specializes in counseling clients on complex issues involving information privacy and security, theft of intellectual property, computer intrusions, online fraud, and the lawful use of new technology. His years of experience in handling the most difficult cybercrime investigations handled by the U.S. attorney's office have made him one of the nation's leading experts on Internet crime and the law relating to emerging technologies.
From 1997—2007, DeMarco served an assistant U.S. attorney for the Southern District of New York, where he founded the Computer Hacking and Intellectual Property Program, a group of five prosecutors dedicated to investigating and prosecuting violations of federal cybercrime laws and intellectual property offenses.
Since 2002, DeMarco has served as an adjunct professor at Columbia Law School, where he teaches the Internet and Computer Crimes seminar. He has spoken throughout the world on cybercrime, e-commerce and IP enforcement. He has lectured on the subject of cybercrime at Harvard Law School, the Practicing Law Institute, the National Advocacy Center, and at the FBI Academy in Quantico, Virginia, and has served as an instructor to judges attending the New York State Judicial Institute.
President & CEO InteliSecure Inc.
With more than 20 years’ experience heading up major initiatives for leading organizations around the globe, Rob Eggebrecht’s knowledge and understanding of business development, information security, and global product and service launches is extensive. Leveraging this vast experience, Eggebrecht was able to identify what was missing from competitive service offerings and use this insight to build a company and a culture that promised something more. His vision for a service-driven company provided the platform for the development of InteliSecure that successfully bridges the gap between core business drivers and the ever-changing and expanding world of information security. By combining highly skilled and talented people, proven processes based on quality management principals, and the most advanced technology available, InteliSecure offers a comprehensive portfolio of products and services that better serves market needs.
As the company’s co-founder, visionary and head cheerleader, Eggebrecht continues to push the envelope in every way by refining his approach to service-driven solutions. Eggebrecht’s passion and leadership has allowed InteliSecure to continually raise the bar, significantly advancing the concept of seamless information security integration with core business activities.
He holds a degree in international business from the University of Denver and management certificates from Georgetown and Stanford University.
Head of IT Governance, Risk and Compliance Sikorsky Aircraft Corporation
Stephen Gilmer, head of IT governance and risk and compliance, oversees all aspects of GRC responsibilities at Sikorsky Aircraft Corp. His responsibilities include cybersecurity, GRC, IT security, investigations, threat intelligence, vulnerability management, IDM, security architecture, as well as incident and crisis management. He is an accomplished information technology management professional with more than 20 years of comprehensive experience in a multisite, multihost network environment with involvement in all regions of the globe.
Gilmer received his bachelor’s degree in computer science from Kalamazoo College, is certified for Six Sigma Black Belt, and currently holds a C|CISO certification.
VP & CISO L'Oréal Americas
Zouhair Guelzim is an accomplished information security executive with more than 20 years of experience. He currently serves as VP and CISO for L’Oréal USA, the Americas subsidiary of the L’Oréal Group, the world's largest cosmetics company and the leader in the beauty industry. He is responsible for the overall information security program, which includes the company’s information risk and security strategies, planning, governance, architecture, and operations. He is a member of the IT leadership team and he is instrumental in enabling L’Oréal’s innovation and digital transformation to drive business growth.
Prior to joining L’Oréal in 2005, Zouhair spent seven years at Time Warner Inc., a media and entertainment conglomerate, where he managed multiple global infrastructure and security initiatives, and ensured compliance with corporate, industry and regulatory standards. He was attributed the AOL Outstanding Employee Award for his leadership and technical role in the modernization of the AOLTW global network and integration with the AOL backbone network.
Zouhair is active in the CISO community and industry development. He received a post-master’s certificate in international business, an MBA in management and an M.S. in telecommunications from Iona College and he holds several professional certifications, including C|CISO, CISSP, CISA, CGEIT and CRISC.
VP & CISO NBCUniversal, Inc.
Michael Higgins is a veteran security executive with more than 20 years of experience working in the government and in private industry. As the founder of the Department of Defense Computer Emergency Response Team, Higgins was one of the earliest advocates in the leadership role of the federal government through the identification of the five critical infrastructures.
Today, Higgins serves as the CISO for NBCUniversal, leading the company’s information security programs. Previously he held the chief security officer positions at The New York Times Company, leading the company’s defense from the Chinese attacks of their infrastructure; and at LexisNexis, where Higgins was recruited to build their security program following their publicized breaches. For more than a decade he was an executive security consultant to Fortune 500 companies including Time Warner, Citigroup, Sun Microsystems, Merrill Lynch, JPMorganChase and British Petroleum.
Higgins holds dual certifications as a certified information security manager and a certified protection professional, and is the recipient of the Defense Intelligence Agency’s Director’s Medal and Federal Computer Week’s Federal 100 Award. He received his bachelor’s degree from Northeastern University and his master’s degree from the Viterbi School of Engineering at the University of Southern California.
VP & CISO Realogy Corporation
Laura Jagodzinski is vice president and chief information security officer for Realogy Corporation. She has 30 years of hands-on management in IT with extensive international experience helping businesses manage information risk through strengthened security, controls and project management at a cost commensurate with risk. Her diverse IT background with specialty in IT governance, combined with strong business acumen gives her the ability to lead disparate groups to deliver tangible results while building strategic relationships. She has also held positions with AT&T, Reader’s Digest and Cendant. She graduated from Pratt Institute with a B.S. and M.S. with honors in mathematics and holds CISA, CISM, C|CISO and PMP certifications.
Special Agent, New York Electronic Crimes Task Force U.S. Secret Service
Agents of the Secret Service’s New York Electronic Crimes Task Force investigate cyber-crimes including, but not limited to network intrusions, ATM cash-out schemes, intellectual property theft, and money laundering investigations. This unit investigates complex, world-wide, significant impact cyber-crimes that affect not only the New York financial community but the United States financial system as a whole. Examples of recent high profile cases investigated by these Agents are the Liberty Reserve investigation as well as the world-wide “Unlimited” ATM Cash-out investigation.
Managing Director Security Compass
Sahba Kazerooni is an accomplished software security professional who oversees Security Compass's advisory division. In addition to his leadership role at Security Compass, Kazerooni is an active contributor to the security community, most recently as the lead of OWASP's flagship ASVS project. He is CSSLP certified, and as a former software developer, Kazerooni has experienced first-hand the biggest challenge with secure development today.
Peter LaMontagne brings to Novetta more than 20 years of national security and technology solutions experience in the federal and commercial marketplace. LaMontagne has focused his business career on the nexus of U.S. national security interests and technology challenges. Before joining Novetta in 2012, LaMontagne served as a senior vice president and an executive lead in the cybersecurity practice area at CACI, a multibillion dollar national security technology service provider. Prior to CACI, LaMontagne was president and CEO at Paradigm Holdings Inc., a private equity-backed cybersecurity and digital forensics firm acquired and sold to CACI in 2011. At Paradigm, LaMontagne built an advanced cyberdefense capability with a sharp focus on countering advanced persistent threats via malware reverse engineering. From 1999—2006, LaMontagne was an executive at ManTech International where he played a leading role in the development and execution of the company’s growth strategy, including support for the IPO and follow-on offering in 2002.
Jay Leek, CISM, CISA, CISSP, is the CISO for Blackstone. Prior to joining Blackstone, Leek established, built and headed up global information risk and security programs for Equifax and Nokia. Throughout the past 19 years, Leek has also worked as a product manager for information security vendors as well as a consultant to numerous telecom companies, government agencies and financial institutions, assisting them with business development, strategic planning and architectural design required to meet their information risk and security objectives. He also acts as an industry advisor for information security organizations and government agencies, and he currently serves as a board director for Accuvant, RedOwl Analytics and the NY Metro ISSA Chapter, is a board observer for Cylance and is on the advisory board for iSIGHT Partners and Risk IO.
CISO Abacus Group LLC
Brian Lozada is CISO for Abacus Group. He is responsible for the development and maintenance of Abacus' information security program. Prior to joining Abacus, he was director of information security at Condé Nast, where he was responsible for overseeing the security and risk management for all digital and technology operations. He led the company's integration of information security efforts in the development of next-generation digital products and services. He has held several senior information security management positions at Sony Music Entertainment and Vonage.
Lozada is a CISSP, and he has a B.S. in information security and an M.S. in homeland security from Monmouth University.
John J. Masserini
CSO Miami International Holdings
As chief security officer, John Masserini is responsible for information security, physical security, business continuity and privacy for the MIAX Options Exchange. An 18-year veteran of the security industry, Masserini is responsible for all information security and risk management strategies, including security architecture, regulatory compliance and business continuity. Prior to joining MIAX, Masserini was the CISO for Dow Jones, overseeing security and risk management for all of the Dow Jones and Wall Street Journal brands. He has held key leadership positions at several information security market leaders, such as VeriSign and Guardent, as well as leading integrators such as EDS and SAIC.
Masserini was named the I.S.E. North East Security Executive of the year in 2010 and one of the Evanta Top 10 Global Security Leaders of 2013.
CTO Tripwire, Inc.
Dwayne Melançon is Tripwire's CTO, where he owns a critical role in driving and evangelizing the company's global overall product strategy. He brings more than 25 years of security software experience and is responsible for leading the company's long-term product strategy to meet the evolving data security needs of global enterprises.
Melançon joined Tripwire in 2000 and most recently served as VP of products for Tripwire. He has spearheaded numerous initiatives during his tenure, including executive responsibility for business development, professional services and support, information systems and marketing. Prior to joining Tripwire, Melançon held leadership roles at DirectWeb Inc., Symantec Corporation and Fifth Generation Systems Inc. He is certified on both IT management and audit processes, holding both ITIL and CISA certifications, and is a frequent speaker at national and regional industry events.
Joel Molinoff is currently the CISO for CBS Corporation where he is responsible for information security for CBS’s diverse portfolio of global media and entertainment businesses.
Previously Molinoff was assistant director of the President’s Intelligence Advisory Board at the White House where he supported the president and other senior government officials in the evaluation of intelligence related matters. Prior to his time at the White House, he was an executive of the NSA and an adjunct professor of cybersecurity at Georgetown’s Graduate School of Business. Molinoff was also the founder of Signal Hill Technology Solutions, LLC, an IT security and digital forensics firm and, earlier in his career, held various positions at J.P. Morgan, GE Capital, Wit Capital and Greenwich Associates. He has received numerous government awards and honors to include The Meritorious Civilian Service Award, The National Meritorious Unit Citation and The NSA Computer Network Operations Award.
Molinoff has an MBA from Columbia Business School and a B.A. from Colgate University. He is a Certified Information Systems Security Professional and holds several information security certifications from GIAC/SANS.
Assistant Secretary for Cybersecurity & Communications U.S. Department of Homeland Security
Dr. Andy Ozment is assistant secretary for cybersecurity and communications at the U.S. Department of Homeland Security where one of his responsibilities is to help the private sector mitigate cyber risks. Ozment’s organization helps companies adopt best practices, offers free risk assessments, shares threat information and responds to incidents. Prior to DHS, Ozment served at the White House as deputy to the cybersecurity coordinator. While there, he led the team that developed and implemented the president’s executive order on improving critical infrastructure cybersecurity, which initiated the development of the cybersecurity framework.
Ozment earned a B.S. in computer science from Georgia Tech, an M.S. in international relations from the London School of Economics, and a Ph.D. in computer science from the University of Cambridge.
Security Evangelist MobileIron
Michael T. Raggo is the security evangelist at MobileIron Inc. and applies more than 20 years of security technology experience and evangelism to the technical delivery of mobile security solutions. Raggo’s technology experience includes mobile device security, penetration testing, wireless security assessments, compliance assessments, incident response and forensics, security research, and he is a former security trainer. His publications include books for Syngress titled “Data Hiding,” and McGraw Hill as a contributing author for “Information Security: The Complete Reference, Second Edition,” as well as multiple magazine and online articles. He is also a participating member of the PCI Mobile Task Force. Raggo has presented on various security topics at numerous conferences around the world (BlackHat, DefCon, SANS, Gartner, DoD Cyber Crime, OWASP, InfoSec, etc.) and has even briefed the Pentagon and FBI.
He is a CISSP, NSA-IAM, CCSI, ACE and CSI.
Avinash Rajeev is a director in PwC's advisory practice focused on helping clients with their security programs. During his 14-year career, he’s lead complex security initiatives in security and identity management on a global scale across multiple clients.
VP, Chief of Sec. & Info. Arch. Omnicom Group Inc.
Daniel Reynolds has more than 15 years of commercial IT Industry experience and eight years of military computing experience. He has worked for Omnicom Media Group since 2002 in multiple capacities of IT management, security and architecture disciplines. Reynolds' background involves work in government, financial, insurance, manufacturing and advertising business sectors.
Reynolds holds the CISSP, CISM and CISA certifications as well as a host of several other technical certifications. While a senior manager, he still believes in getting in the trenches with his teams, providing leadership from the front and direct mentoring. Being hands-on and a lead-from-the-front individual contributes to his continued success.
Sr. Mgr., Chief Sec. Architect United Technologies Corporation
Timothy Rogers is senior global manager and security architect for United Technologies Corporate Headquarters. He is currently responsible for counter intelligence, forensic services, internal red teaming and e-discovery. Prior to joining UTC headquarters in 2006, Rogers spent 10 years working at Pratt & Whitney Aircraft, most recently as the IT security manager, where he was responsible for all aspects of internal information security to include policy, investigation, incident response, security operations and services.
Rogers is an accomplished senior manager with a 19-year professional track record of successfully assessing information security risks and designing information security programs. He is a master at identifying and clarifying information and technology risks while coordinating remediation efforts in a timely manner. He specializes in creative thinking and building startup groups from conception to emergence of world-class departments. In 2013, Rogers was presented by Information Security Magazine the Security 7 award.
Rogers received a master’s degree in computer science from Rensselaer Polytechnic Institute and graduated cum laude from Norwich University with a master’s in information assurance. He currently holds CISM and C|CISO certifications.
Former VP & CISO Freddie Mac
As VP and CISO, Michael Rossman directed the information security program for Freddie Mac. Prior to his tenure at Freddie Mac, he established and led the information security programs at a Fortune 125 energy and power generation firm responsible for key portions of U.S. critical infrastructure, as well as an international manufacturing firm operating in more than 130 countries. In addition, Rossman has led information security and IT services consulting practices for international professional services and risk management firms. He has consulted in commercial and public sectors with multinational clients as well as U.S. intelligence agencies.
Rossman has participated in government and industry initiatives such as the U.S. partnership for critical infrastructure security (financial services sector); the development of critical infrastructure protection cybersecurity standards for the electric power industry; the U.S. HIPAA security summit; the insider threat study for the Department of Homeland Security’s National Infrastructure Advisory Council; and the state of Maryland governor’s workforce investment board — cybersecurity committee. He has served on advisory boards for several information security and IT technology firms as well as information security organizations.
Rossman holds a B.S. in electrical engineering from the University of Maryland and an EMBA from Loyola College.
CISO Aetna, Inc.
Jim Routh is the chief information security officer and leads the global information security function for Aetna. He is the chairman of the FS-ISAC Products and Services Committee and a board member. He is a board member of the National Health-ISAC. He was formerly the global head of application and mobile security for JP Morgan Chase. Prior to that he was the CISO for KPMG, DTCC and American Express, and has more than 30 years of experience in information technology and information security as a practitioner. He is the Information Security Executive of the Year winner for the Northeast in 2009 and the Information Security Executive of the Year in 2014 in North America for Healthcare. He has published several white papers, including the FS-ISAC Third Party Software Security Controls paper, and leads several cross-functional information security working groups.
CISO Jefferies & Company, Inc.
Ramin Safai is the first CISO at Jefferies. As CISO, Safai is responsible for Jefferies' global cybersecurity and IT risk management programs. Prior to joining Jefferies, Safai was America’s CISO at Barclays and had global responsibilities for rollout of application security and identity management programs. For the past 15 years, Safai has worked as an information security officer at large banks, including Credit Suisse, Lehman Brothers, JP Morgan and Barclays. Safai holds degrees in electronics engineering and computer science and has an MBA from New York University.
CISO New York State
Deborah A. Snyder serves as New York state’s CISO with the state office of information technology services. In her role as deputy CISO, she directs the state’s enterprise information security office’s comprehensive governance, risk management and compliance program. She provides business-aligned strategic leadership and vision, promoting industry standards and risk-based investments to maximize business opportunity and minimize risk.
From 2001—2012, she served as the CISO for the New York state office of temporary and disability assistance, where she established and led the agency’s information security office and comprehensive information security assurance program. She informed and advised executive management on security governance, risk and compliance, and managed a portfolio of initiatives designed to increase awareness, mitigate risk, optimize protection of information assets, and prevent, detect and recover from incidents.
Snyder is an active participant and contributor to the IT and information security community. She co-authored the book entitled “SECURE — Insights From the People Who Keep Information Safe.” She is a highly regarded speaker and instructor on topics critical to executive-level business and IT professionals.
Snyder graduated from the State University of New York at Albany and holds several industry certifications, including CISSP, CRISC, SANS GIAC GSLC and PMP.
CISO Safra National Bank of NY
Andrew Stravitz is currently CISO at Safra National Bank of New York. Prior, he was principal of information security at NASDAQ OMX from 2011—2014. Before that, he was director of information security at Barnes & Noble for eight years.
Stravitz is a CISSP and CISM with more than 20 years of management and technical experience as an innovative information technology leader. He is a leader in implementing web application security testing based on OWASP and WASC criteria in the SDLC. Stravitz developed new information security and computer risk management programs from inception based on the ISO27001 standard and has authored numerous security articles, white papers, information security policies and performed information risk assessments.
Stravitz has lectured on a variety of security topics including web application security, security awareness and information risk management. He previously spoke as a subject matter expert at IANS conferences, CISO Executive Summit, Security 500, Tech Managers Forum and Polytechnic University. He has been responsible for implementing a number of complex security rollouts including MSSP integrated services, APT prevention and detection strategies and was responsible for protecting millions of customer credit cards. He has expert-level knowledge of the PCI standard.
Managing Director, CISO Moody's Corporation
Derek Vadala is CISO for Moody’s Corp. in New York, with more than 15 years of IT and security management experience. He oversees Moody’s global security program with responsibilities including security strategy, architecture and operations, IT risk due diligence in the merger and acquisition process, as well as threat management and incident response.
Vadala is a graduate from the University of San Francisco and has written for O’Reilly Media.
VP, Global CISO Henry Schein, Inc.
As Henry Schein’s first CISO, Mark Viola is responsible for the global cybersecurity program. The mission of his organization is to ensure the confidentiality, integrity, and availability of business critical systems and information assets, and facilitate compliance with applicable laws and regulations. He leverages a holistic and comprehensive risk-based approach to lead strategic, tactical and operational execution.
Viola is a career cybersecurity professional. He began his career with the Department of Defense National Security Agency where he led several classified programs, including a focus on the DoD public key infrastructure program. He subsequently spent a number of years in the pharmaceutical industry establishing, leading, developing and transforming cybersecurity programs. These companies include Johnson & Johnson, Celgene, Shire, and Valeant Pharmaceuticals. Viola also has financial services and insurance experience as the first CISO at Philadelphia Insurance Companies and subsequently at Tokio Marine North America where he established and led the cybersecurity program for PHLY and the TMNA Group Companies.
Viola has a master of science in business from Johns Hopkins University and a bachelor of science in electrical engineering from Lafayette College. He also completed all of the requirements for the computer science program at Lafayette College.
GM & Business Head - Americas, Enterprise Security Solutions Wipro Technologies
Siva VRS is the head of Wipro's enterprise security business in Americas. He has more than 19 years of experience in the IT and information security industry, building and executing strategic information security and infrastructure programs. In his current role, he is responsible for heading and providing strategic direction and leadership towards growing Wipro’s enterprise security solutions business in the region across security solutions, business development, delivery excellence, and long-term partnerships with customers and alliances. VRS has been instrumental in building Wipro's security business through his previous roles heading businesses in the U.S. East Coast; emerging markets such as Japan, Australia and Asia-Pacific; and presales and alliances for Wipro.
Laraine Weglarz is CISO of Kering, a family-controlled, listed company and world leader in apparel and accessories, with group revenues of €10B, operating income of €1.7B in 2014, and more than 37,000 employees at the end of 2014. Kering brands are distributed in more than 120 countries and they consist of two fast-growing segments: luxury brands including Gucci, Bottega Veneta, Saint Laurent, Alexander McQueen, Balenciaga, Brioni, Christopher Kane, McQ, Stella McCartney, Tomas Maier, Sergio Rossi, Boucheron, Dodo, Girard-Perregaux, JEANRICHARD, Pomellato, Qeelin and Ulysse Nardin; and sport and lifestyle brands including Puma, Volcom, Cobra, Electric, and Tretorn.
Weglarz joined Kering in 1999 as technical services director of Gucci America, advancing in 2003 to become the Gucci Group worldwide information security manager, and eventually assuming the role of Kering global CISO in 2012.
Weglarz has been a CISSP since 2006. She holds a B.S. in computer science from Hofstra University.
Chief Trust Officer CipherCloud
Bob West joins CipherCloud after more than a decade in security leadership roles with financial and professional services organizations where he oversaw security strategy, audit and compliance across global teams. He has held CISO roles at Fifth Third Bank and Bank One, led Ernst & Young’s security practice, and was senior systems officer with Citicorp. West is a frequent speaker on information security, cloud computing and global policy issues such as payment fraud and critical infrastructure. He serves on the Jericho Forum management board and on advisory boards for Agiliance, AirPatrol, the Hispanic Information Technology Executive Council and Trusteer.
Sr. Security Analyst Tripwire, Inc.
Ken Westin is a security analyst with 15 years’ experience building and breaking things through the use and misuse of technology. His technology exploits have been featured in Forbes, Good Morning America, Dateline, The New York Times, and The Economist and has won awards from MIT, CTIA, Oregon Technology Awards, SXSW, Entrepreneur, and was named in Portland Business Journal’s 2013 40 Under 40. He has worked with law enforcement and journalists utilizing various technologies to unveil organized crime rings, recover stolen cars, and even a car-jacking, amongst other crimes.
President RSA, The Security Division of EMC
As president, Amit Yoran is responsible for developing RSA’s strategic vision and operational execution across the business.
Prior to his appointment as president, Yoran served as senior vice president of products at RSA, where he provided leadership for RSA’s product development and product management organizations.
Yoran founded and served as the CEO of NetWitness, the market-leading network forensic product provider, which was acquired by RSA in 2011. In 2003 and 2004, Yoran served as founding director of the US-CERT program. Prior to that role, Yoran was co-founder and CEO of market-leading managed security services provider Riptech, which was acquired by Symantec in 2002, where he subsequently served as vice president of Worldwide Managed Security Services.
Yoran is a graduate of the U.S. Military Academy at West Point and George Washington University.