CISO Executive Summit Speakers

ciso executive sumbit

Justin Somaini

Justin Somaini is the Chief Information Security Officer at Yahoo! where he's responsible for all aspects of Yahoo!'s Information Security strategy.  With over 15 years of Information Security experience he's seen as a leader in industry by promoting an evolution of the security and risk management models.  Through his public speaking and industry involvement he's given extensive talks and interviews on the threat landscape, public policy, security management and risk management.  Prior to joining Yahoo!, Justin was the CISO at Symantec.  Justin has also held security leadership roles at VeriSign, Charles Schwab and PricewaterhouseCoopers LLP.

Justin Somaini
CISO at Yahoo


Illyas Kooliyankal

Mr. Kooliyankal is an exuberant Information Security professional with 17 years of experience in the Information Technology and Cyber Security arena. In the role of Chief Information Security Officer (CISO), he drives the Information security and business continuity programs at Abu Dhabi Securities Exchange (ADX), one of the most prestigious organizations in the region. Before joining ADX, he was serving Emirates Telecommunication Corporation (ETISALAT) for more than 10 years in IT infrastructure, network & Information security domains.

Mr. Kooliyankal is a champion of Cyber Security with in-depth knowledge on technology and business domains. He has deep technical experience, which helped in driving and managing organization-wide information security programs aligned with business strategies. Being one of the best and foremost experts in the region with demonstrable ISO 27001/27002 (International Standard for Cyber/Information Security) experience, he successfully implemented the framework in live and complicated environments. His practical expertise includes Cyber Security, Information Security, IT Management, Business Continuity, ITIL (IT Infrastructure Library) Framework, and COBIT (IT Governance).

He is a reputed speaker who was a major contributor in various international conferences across the world, including GITEX Dubai, Secure Dubai (ISC2, US), CIO Event UK, Secure Asia Malaysia, CISO Summit USA, Internet Show ME, CIO SHOW Singapore etc. Mr. Kooliyankal has won many awards for his excellent professional career, including the prestigious Crystal Award from Emirates Airlines-ISACA, KERA (KERALA ENGINEERS ASSOCIATION) & KEE (Kannur Engineers in Emirates) Outstanding Achiever, and World Excellency Award in Information Security. He won outstanding employee award from Etisalat & ADX on multiple occasions.

Illyas Kooliyankal
Head of Information Security/CISO
ADS Securities


Richard T. Rushing

Mr. Richard Rushing is the Chief Information Security Officer (CISO) for Motorola Mobility Inc.  He has been implementing security solutions for the last twenty years at Equifax, Siemens Industrial Automations, GE Capital Information Technology Services, Secure IT, VeriSign, Network Solutions, and AirDefense.  Richard has participated in several corporate and international Security Councils, setting standards and policies for entire organizations. As Chief Information Security Officer for Motorola he has lead the security effort for Motorola Mobility, developing an international team to tackle the emerging threats of mobile devices, advance persist threats (APT), Targeted attacks, and Cyber-Crime. He has led a campaign to “Stop the Leaks” and help to organize “Trade Secrets Protection effort” at Motorola Mobility. He has also organized and developed practices to protect the intellectual property across the enterprise.

As a founder and Chief Security Officer for AirDefense, Richard has address wireless security as it affects the enterprise, dealing with the creation of security policies, and the modification of existing cultures to adapt to the use of wireless. He has written several white papers on wireless security and been published in many articles, and is viewed as a leading wireless security expert.   As a founding member and Chief Technical Officer of VeriSign SecureIT Services, Richard Rushing has played a major role in identifying and developing products and services to maintain VeriSign SecureIT Service’s focus on leading-edge security solutions. In this role he architected and developed policies for VeriSign, which included protection for Domain Name Services, Payment Gateways, and certificate authorities. He has been the company's key player in the delivery of a variety of security consulting solutions to numerous Fortune 500 organizations.  At General Electric, Richard was a member of the corporate Security Council, which defined policy for General Electric as well as discussed new technology, risks, solutions, and policy. As an in-demand speaker on information security, Richard has presented at many leading security conferences and seminars.

Richard has given seminars and classes on Wireless Attacks, Wireless Security, TCP/IP Security, Windows security, Intrusion detection, "What hackers know that you don't", Firewalls, Enterprise Security Solutions, Network Security, Operating System security, VPN’s and Security protocols, and Web Security, Auditing Firewalls, Wireless Risks, VLANS and Layer 2, and Auditing Web Servers

His security solutions and risk analysis expertise includes experience with:

  • Key issues in enterprise, wireless, mobility and internet security
  • Assessment of security risks and proactive steps to manage those risks.
  • Target attacks for stealing intellectual property
  • Malware and Botnets in the Enterprise
  • Using Methodologies for integration of security solution into enterprise environments.
  • Major security technologies and how they integrated into the Enterprise.
  • Cost and Risk Analysis for deployment of security solutions
  • Major tools and techniques of identifying security holes and remediation of the holes.
  • Commonly used security compromise techniques by hackers and how to defend against them.
  • Knowledge transfer and training for DoD, Defense Contractors, and Agencies

 

Richard T. Rushing
Chief Information Security Officer
Motorola Mobility


Amar Singh

Breaking the mold of the typical CISO, Amar Singh is making a mark in the global InfoSec community as a leading, innovative, and benchmark-setting Information Security C-Level Executive. He brings a unique fusion of pragmatism, practicality, with a healthy dose of proportionate paranoia to his work and is commanding the Information Security and assurance space with his inspiring approach to Information Security Governance, Risk & Compliance.  Instead of saying "No" Amar strives to engage and educate with all stakeholders and finds solutions to mitigate and reduce risk in order to balance both security and business needs.  Amar is also know for offering cutting-edge Solutions for all aspects of IT Security  & Information Assurance development, from design and planning to creation of overall infrastructure and processes. He has Designed, Optimized & Implemented various Information Security Solutions by leveraging knowledge of SIEM, Data Assurance, Network Security ISO and other best practices & Technologies.

He works closely with senior management and key stakeholders, business units, partners, developers, project managers and clients and has advised a wide range of organizations, from government entities to Fortune 500 giants.  At a recent closed door summit he was praised by many, with one executive commenting "Having Amar on board is like having a lion amongst pigeons. We had to face the hard truths."  Amar is a long time CISSP (33055), holds UK Security Clearance, and has several Industry certifications including ISACA's CRISC, Management of Risk Practitioner, ITIL, Certified Ethical Hacker and many others.

Amar Singh
CISO at Large,
International Corporation


Karthik Swarnam

Karthik Swarnam is the Chief Information Security Officer at TransUnion LLC a Credit services agency that specializes in credit reporting, analytics and decision. Karthik is responsible for establishing strategy, implementing and managing Information Security globally.

Previously, Karthik was an executive in Accenture’s Technology Consulting (ATC) Security Practice. He led the firm’s Security capability for Resources industry vertical where he helped large global organizations with security and infrastructure related capabilities. Karthik also built a right-sourced delivery model for security solution as part of the model he built and operated an offshore delivery team spread across multiple geographies, He was the global lead for Accenture‘s offshore security delivery practice during his tenure at Accenture. In this capacity Karthik built a security practice in India and have integrated that to the Accenture’s solution delivery.

Karthik has over 18 years of experience in IT specializing in Infrastructure technologies. Karthik has worked extensively in designing and implementing information technology programs, infrastructure services and network implementations for various clients globally. Karthik has been in security officer roles for client engagements.

Karthik has been instrumental in helping large enterprises establish infrastructure strategy and translate the strategy into solutions. He is an advisor to several C-level executives on IT Strategy, security vision, and regulatory implications and to translate organizations into high performing business enabling business growth and securing the extended enterprise.

Karthik earned a Bachelor of Engineering from Annamalai University, India, and holds a Masters degree in Electrical and Computer Engineering from Wayne State University, Detroit. He is an active Certified Information Systems Security Professional (CISSP). Active in the profession, Karthik has been involved in CIDX Cybersecurity initiative for the Chemical industry, and in several task forces, open forums and in Communities of Practice (CoP) in Identity & Access Management, Infrastructure services, and Next generation technologies.

Karthik has extensive experience in assisting clients with regulatory needs such as Sarbanes Oxley 404, IRS 1075, PCI DSS, FERC, NERC regulations, HIPAA, GLBA and several others.

Karthik Swarnam
CISO at TransUnion


Michael R Rushinsky

Mr. Rushinsky’s responsibilities include ensuring the appropriate security posture is maintained for all Sallie Mae information systems and programs. Prior to Sallie Mae, Rushinsky was the CISO at Irwin Financial Corporation with enterprise-wide responsibility for information & physical security, privacy, and business continuity/pandemic planning & disaster recovery and prior to Irwin, Mr. Rushinsky was the Director of Enterprise Server Infrastructure & Security and Technology Research & Assessment at the Texas Medical Center’s Baylor College of Medicine.  Mr. Rushinsky coined the phrase, “A bit of data, a wealth of information” while coordinating the technology aspects of an international telemedicine event led by world-renowned Dr. Michael DeBakey, which included NASA and Russia.

Michael R Rushinsky,
CISM, CISSP Director,
Corporate Information Security at Sallie Mae


Curtis K. S. Levinson

United States Cyber Defense Liaison to NATO
 
Mr. Levinson has over 25 years of focused experience in Cyber Security, Information Governance, and Continuity of Operations.
 
Mr. Levinson has served with distinction, two sitting Presidents of the United States, two Chairman of the Joint Chiefs of Staff, and the Chief Justice of the United States.
 
He has been selected by NATO (North Atlantic Treaty Organization) to represent the United States as an advisory subject matter expert on Cyber Defense.
 
He has served as a technology advisor to Chief Justice Warren Burger, Rear Admiral Grace Hopper, the Executive Office of the President of the United States, the Joint Chiefs of Staff and the Mayor’s Conference on Homeland Security.
 
Mr. Levinson has also advised the management and leadership staffs of Boeing, Nike, DuPont, J.P. Morgan, Rolls Royce Aeronautic, TRW, Mercedes Benz and other corporations on information and telecommunications security.
 
Mr. Levinson is a frequent author and lecturer, within the United States and internationally, on a variety of topics related to secure technology, telecommunications, regulatory compliance, counter-terrorism and homeland security.

His security solutions and risk analysis expertise includes experience with:

  • Key issues in enterprise, wireless, mobility and internet security
  • Assessment of security risks and proactive steps to manage those risks.
  • Target attacks for stealing intellectual property
  • Malware and Botnets in the Enterprise
  • Using Methodologies for integration of security solution into enterprise environments.
  • Major security technologies and how they integrated into the Enterprise.
  • Cost and Risk Analysis for deployment of security solutions
  • Major tools and techniques of identifying security holes and remediation of the holes.
  • Commonly used security compromise techniques by hackers and how to defend against them.
  • Knowledge transfer and training for DoD, Defense Contractors, and Agencies

Curtis K. S. Levinson
CISSP-CAP MBCP CCSK


Dr. Mark Leary possesses over 30 years of experience in security management and technical intelligence, holding several positions of responsibility information assurance and information systems security. Mark currently performs as TASC’s Chief Information Security Officer for IT security services in cyber security operations, risk and compliance management, and business continuity planning for a $1.6B Professional Services firm.  Prior to joining TASC, Mark performed as Director & Deputy CISO for Northrop Grumman Corporation where he was responsible for internal security services to a Fortune 100 company with revenues of over $33 Billion.

 Dr. Leary has been Board Certified in both physical and information security domains as well as certified by several Government agencies on his information assurance skills. Dr. Leary’s academic credentials include three graduate degrees with a concentration in IT, security, and business management culminating in a Doctorate of Management from the University of Maryland. Dr. Leary has been recognized as an industry leader receiving the 2011 Tech Council of Maryland CISO of the Year, 2010 Information Security Executive (ISE) Southeast Executive of the Year, 2010 ISE Central Project of the Year, 2008 ISE Mid-Atlantic and North America Project of the Year, and 2009 Archer Innovation Award for his excellence in information security.

Mark Leary
CISO at TASC


Erin Owens

 Erin Owens is an expert practitioner of Information Security disciplines including performance-based program management, compliance and certification, forensics and litigation support, maturity and technology risk assessments, defense in depth systems management, innovative countermeasures, and real world testing, training and cultural awareness programs. Erin has performed over 25 successful transformational projects to improve performance of corporate Security programs and has certified companies as PCI ASVs as well those seeking ISO 27001, HITRUST, and CyberTrust certifications. Erin has directly managed security programs that have been attributed to $750 Million in corporate cost avoidance and reduction associated with strategic breech responses, investigations and defensible litigation support. One bank President reported that Erin’s resiliency programs helped identify and eliminate corporate waste while increasing profitability during the 2008 banking crisis which positioned the bank to acquire other distressed bank’s making it one of the largest institutions in the region. Erin has also actively led Red/Blue/and White teams that have successfully breached bank vaults, data centers, processing facilities, pharmaceutical storage facilities, and wire transfer systems for some of the nation’s largest financial services firms as well as regional banks and healthcare facilities. He currently serves as the Chief Information Security Officer for one of the nation’s largest Healthcare firms and actively serves on InfraGard national board committees along with leading other special interest groups focused on United States Critical Infrastructure Protection (CIP).  Erin has taken an active role in planning and coordinating United States national level exercises, including cyber events, and has been featured in FDIC roadshows to inform other banks on how to build successful security, resiliency, and partnership programs.  Erin’s unique experiences in managing these services has brought new perspectives to the industry as he contends that commoditized services such as security and resiliency should be a shared responsibility among regional corporations. This "mutual protection philosophy" is similar to the idea of maintaining a standing navy to protect trade routes so that commerce may thrive. To support such a philosophy of protection, Erin has founded and sponsors several industry partnerships to improve community security, research, and resiliency such as the US Cyber Defense Center, DFW First, RCCC, and RPC First. These programs are designed to improve industry resilience to both cyber and kinetic threats to companies, the country, the community, and our citizens. "The world is a dangerous place. Not because of the people who are evil; but because of the people who don't do anything about it". -  Albert Einstein

Erin Owens


Neil A. Katz

Neil Katz is an IBM Distinguished Engineer and Director for security and mobility innovations as part of IBM’s CIO Lab.    His group is working on innovation projects in the areas of advanced threat detection using analytics, enterprise data loss prevention, new types of network authentication, and advanced projects for deploying mobile devices within the IBM enterprise.  Neil has technical experience in multiple disciplines in his over thirty years in the industry.  This extensive experience includes the mobile computing and wireless industries where he has designed and managed everything from mobile handheld devices to architecting solutions for IBM’s largest wireless telecommunications customers.  In addition to his background in wireless communications and mobile device design he has in depth knowledge in technical areas such as online games, Web 3D, messaging, wide area networking including content delivery networks, and network delivered applications including Software as a Service.   Neil has filed over 50 U.S. patents and is an IBM Master Inventor.  Neil holds a B.S.E.E. from the University of Florida and an MBA from Nova Southeastern University.

Neil A. Katz


Robert Hotaling

Robert is the CSO of Cengage Learning a publisher of print and digital information services for the academic, professional and government agencies around the world.  With over 18 years of experience in Info Tech he has worked extensively on a global basis.  He has extensive experience with SOX, PCI, FERPA and GLBA.  Robert has developed and executed the security strategies for several multi-billion dollar businesses.

Before joining Thomson Learning as the CSO he was the Director of Business Systems and Communications for Prometric.  He was responsible for designing and implementing security and communications networks for contact centers/data centers in twelve countries.  Developed and implemented the communication and security models for United Kingdom’s Drive-Safe Agency, and then oversaw government-sponsored systems audits.  Created the strategy to make a critical function ISO 27002 compliant and has managed the security for 4000+ locations in 120 countries.  

He has an MS in Information Technology from The Johns Hopkins University and a BS in Management from The Pennsylvania
State University.

Robert Hotaling
Chief Security Officer,
Cengage Learning (Formerly Thomson Learning)


Eric McKim

Eric McKim is currently a Senior Vice President of Cybersecurity and Chief Information Security Officer (CISO) for Business Integra, a rapidly growing IT consulting firm based out of Greenbelt, Maryland.  Mr. McKim has full responsibility for infusing information security and privacy best practices into his own company as well as working with government CISOs to apply good security governance and implementation practices within their agency initiatives and enterprise architectures.

Eric's experience in the information security domain is extensive, as he has held significant positions in both a commercial setting and within high profile public sector engagements.  Most recently, Mr. McKim serves as the Medicare DECC Lead Security Architect and has served as the lead security architect for the United States Citizenship and Immigrations Services (USCIS) Transformation project, the Lead Security Architect & Security Officer for the Medicare HIGLAS program and Lead Security & Systems Management Architect for the Transformational Satellite Mission Operations System (TMOS) Air Force war fighter system.  Previous to Business Integra, Eric McKim was an Executive Consultant/Associate Partner with IBM Global Business Services (GBS) leading a line of business within the public sector Cybersecurity & Privacy practice.  Before that, Mr. McKim served in the US Navy aboard the USS Enterprise aircraft carrier. Eric holds a Master of Business Administration (MBA) from the Johns Hopkins University Carey Business School as well as a Bachelors of Science in Information
Technology.

Eric McKim


Jeffrey M. Vinson

Jeffrey Vinson, Sr. is currently the Director of Information Security and CISO for SecureNet Payment Systems. He has been involved with information security for over 16 years and has the rare distinction of having expert experience in the military, federal government and financial services industries.  He has held positions such as VP, Information Security, Technical Director, Vulnerability Assessments,  CISO and other senior level security management roles.  Jeff has led Red Team exercises while working with the Department of Defense as a Technical Director and has created Security Operations Teams for financial services organizations.

Jeff not only has a passion for network security, he also has extensive experience with web application security and using secure coding to choke out vulnerabilities in the development phase. Jeff holds CISSP, CIPP/IT and NSA IAM/IEM certifications. Jeff is a Retired Army Officer and holds a BS Industrial Technology from Elizabeth City State University.

Jeffrey M. Vinson
Sr. Director,
Information Security & CISO- SecureNet Payment Systems


Steven F. Fox

Steven F. Fox, CISSP, QSA is a Security Architecture and Engineering Advisor at the U.S. Department of the Treasury. In this role, Steven advises multiple groups within the Treasury,offering security guidance on system architecture and engineering to ensure compliance with Federal standards and requirements. He also contributes to multiple working groups including the IPv6 transition team, Developer Security Testing workgroup, and the Security and Privacy workgroup.

Mr. Fox brings a cross-disciplinary perspective to the practice of information security; combining his experience as a security consultant, a Sr. IT Auditor and a systems engineer with principles from behavioral/organizational psychology to address security challenges. He has performed security services including risk/vulnerability/penetration testing assessments, incident response planning, PCI DSS services, and social engineering.

Steven is a syndicated blogger covering IT Governance, Risk Management, and IT-Business fusion topics. He also sits on the Board of the ISSA Detroit chapter. His speaking engagement include ISSA and ISACA events, SecureWorld Dallas/Detroit, Security B-Sides Chicago/Detroit/Vegas, and GrrCon.

Mr. Fox holds an MS in Business Information Technology from Walsh College, an NSA recognized Center of Excellence. He has a BS in Psychology from Eastern Michigan University where he studied industrial applications of behavioral theory. He is also Six Sigma Specialist certified.

Steven F. Fox


Eric Svetcov

Eric is currently the CSO at MedeAnalytics, a leading Cloud Computing company delivering services for the healthcare system including hospitals, physician practices, and payers. He has extensive experience working in operations and information security for Cloud Computing companies, including taking Salesforce.com through ISO 27001 certification during his 2 year stint as Information Security Director and running operations for two other Cloud Computing companies, Netfile and Grassroots Enterprise. His experience stretches beyond US borders as he spent two years in New Zealand leading the National Information Security and Business Continuity practice for KPMG and then working for NTT/Dimension Data in New Zealand and Singapore where he led the Incident Response and Computer Forensics practice for Asia/Pac. Eric has published articles on Information Security and IT in various magazines including Computerworld, SC Magazine, Inside Homeland Security, and Windows NT Systems, has presented training programs in many countries around the world, and is a regular speaker at industry events in the United States, Asia, and Oceania.

Eric Svetcov
CSO at MedeAnalytics


Ahmed Baig

Ahmed Baig is currently a CISO for an Abu Dhabi Government Entity and was previously leading the Business Management and Advisory Services at TECOM (A Member of Dubai Holding). Ahmed brings to his current role more than 14 years of experience in Risk Management & Compliance, and Information Security Advisory Services. He has previously worked on projects for major airlines, banks, defense, and federal agencies across the Middle East. Ahmed's key assignments as principal consultant for various ISMS projects have been to help clients comply with required standards and regulations -  mainly ADSIC, ISO 27001, ISO 20000, ITIL, ISF, and CobIT. His experience also includes auditing of security solutions, architecture, and policy compliance.

He is the Chief Architect for CGMS (Corporate Governance Management System) and ITGMS (IT Governance Management System) covering Risk Management, IT Governance, Information Security, and Business Continuity in service providers and government entities.
 
Ahmed Baig has a Master’s in Strategic Business IT (U.K) and has several professional certifications to his credit, a few of which are CRISC, CBCP, CISM, CISA, CISSP, ITIL, BCCE among others.

Ahmed Baig


Randy Marchany

Randy Marchany has been involved in the computer industry since 1972. He is currently the Virginia Tech Information Technology Security Officer and the Director of the Virginia Tech IT Security Lab. He was a co-author of the FBI/SANS Institute's "Top 10/20 Internet Security Vulnerabilities" document that has become a standard for most computer security and auditing software. He was the co-author of the "Responding to Distributed Denial of Service Attacks" document that was prepared at the request of the White House in response to the DDOS attacks of 2000. He was a coauthor of the Center for Internet Security's series of Security Benchmark documents for Solaris, AIX and Windows2000. These benchmarks represented the first successful attempt to create a set of consensus documents with detailed steps for implementing system security. He was a member of the White House Partnership for Critical Infrastructure Security working group that developed a Consensus Roadmap for responding to the recent series of DDOS Internet Attacks. He was a recipient of the SANS Institute's Security Technology Leadership Award for 2000. He was a recipient of the VA Governor's Technology Silver Award in 2003. He was part of the team that won the EDUCAUSE Excellence in Information Technology Solutions in 2005. He is a co-holder of a patent for a battery based intrusion detection system and has a patent pending for an IPV6 defense tool. He is a member of IEEE, ACM, IIA, EDUCAUSE, SANS Institute, BMI.

Randy Marchany


Tobias Gondrom

Tobias Gondrom is Head of Information Security and Risk, CISO, and CTO of Research and Advisory at Thames Stanley based in the United Kingdom, Germany, and Hong Kong. He has fifteen years of experience in software development, application security, cryptography, electronic signatures, and global standardisation organisations working for independent software vendors and large global corporations in the financial, technology, and government sector, in America, EMEA, and APAC. As the Global Head of the Security Team at Open Text (2005-2007) and from 2000-2004 as the lead of the Security Task Force at IXOS Software AG, he was responsible for information security, risk, and incident management globally. Since 2003 he has been the chair of working groups of the IETF (www.ietf.org) in the security area, member of the IETF security directorate, and since 2010, chair of the web security WG at the IETF, and since 2007 a leader of OWASP (Open Web Application Security Project). Tobias is the author of the international standards RFC 4998, RFC 6283 and co-author and contributor to a number of internet standards and papers on security and electronic signatures, as well as the co-author of the book Secure Electronic Archiving, CISO trainer and frequent presenter at conferences and publication of articles (e.g. AppSec, ISSE, Moderner Staat, IETF, VOI-booklet “Electronic Signature“, iX).

Tobias Gondrom


Frederick D. Cox

Frederick Cox has over 30 years experience in Information Technology and Information Security profession. As Director of Information Security for Precyse Solutions, he designed their information security architecture and HIPAA HITECH compliance program. Prior to Precyse he was Vice President of Information Security and Privacy Officer for Seacoast National Bank, Chairman of FDC Associates, LLC , a national information security assurance firm, and Director of Leaders In Information Security Risk Assessment Association.

Fred began his career in 1978 at PPG Industries as a Systems Programmer for IBM 370 mainframes. He has over 17 years on Wall Street with major investment banking firms and international banks such as JP Morgan, Salomon Brothers, Sumitomo Bank and Bank Tokyo-Mitsubishi. Prior to coming to Wall Street, Fred held IT audit management roles for Mobil Oil, the Department of Defense and Coopers & Lybrand.
 
Fred is a Certified Information Systems Auditor (CISA), since 1987 and is a Certified Information Security Manager (CISM). He has a Certificate in Corporate Governance from the Tulane Law School, and is a CRISC and CIPP as well.  His book “Information Security: Risk Management of GLBA Privacy and Service Provider Oversight” continues to be a popular guide in the field. He is a frequent speaker and a member of the Miami Chapter of the Institute of Internal Auditors (IIA) and the South Florida Association of Fraud Examiners. He has been a member of the Information Systems Audit and Control Association (ISACA) since 1987 in New York and South Florida. Fred has bachelor's degrees in Economics and Psychology from the University of California, and attended graduate school at Carnegie-Mellon University.  He is an accomplished blue water sailor and holds a U.S. Coast Guard license as a charter boat captain for up to 100 ton auxiliary sail vessels. He and his wife live in Jupiter Florida with their nine dogs.

Frederick D. Cox
Director
Precyse Solution – Alpharetta, Georgia


Adam Gordon

With over 20 years of experience as both an educator and IT professional, Adam holds over 100 Professional IT Certifications including CISA, CISSP, CRISC, CHFI, CEH, and SCNA. He is the author of five books and has achieved many awards, including EC-Council Instructor of Excellence for 2006-07 and Top Technical Instructor Worldwide, 2002-2003. Adam holds his Bachelors Degree in International Relations and his Masters Degree in International Political Affairs from Florida International University.

Adam has worked on many large implementations involving multiple customer program teams for delivery. On any given day, Adam is interfacing with Fortune 500 companies around the world to help architect, configure, and implement a customized solution developed to fit the needs and requirements of that company.

Adam has been invited to lead projects for companies such as Microsoft, Citrix, Lloyds Bank TSB, Campus Management, US Southern Command (SOUTHCOM), Amadeus, World Fuel Services, and Seaboard Marine.

Adam Gordon


Sameer Shelke

Sameer is the co-founder, COO & CTO of Aujas with over 19 years of experience in the information technology & security industry. He is responsible for creation, engineering and delivery of Information Risk Management services to clients. Sameer as been a speaker at various industry events such as the RSA conference, CSO forums, ISACA events, CTO forums, CIO forums etc. Prior to Aujas he worked in leadership positions as Fidelity, Cisco, HP & Microland. He has held various industry certifications like CISA, CISSP, CISM, PMP etc. and is based in Cupertino, California.

Sameer Shelke


Todd Bell

Todd Bell is a revered subject matter expert in the field of IT Security that has made significant and transparent impacts that protect businesses and consumers alike.  His impact is evident in the daily lives of people across the world by protecting their most secure information behind the scenes.  Consumers who have traveled by land, sea, or air, used a credit card to purchase goods and services, used kiosks or global payment systems, utilized smart phone technology, purchased gift cards, received pharmaceutical information, provided patient data, gambled on-line, banked with major institutions, or provided financial information for lending, there is a significant chance that Bell may have had an impact with the protection of their data.
 
Bell’s track record keeps him in high demand.  Since he took his first CISO position seven years ago he currently works as a Strategic Security Advisor for global institutions and as an Outsourced CISO. His Fortune 500 clients have never had a security breach as a result of his attention to detail, knowing the tough questions to ask, using investigative methods to get proper infrastructure facts, identifying enterprise weaknesses, and utilizing a natural instinct to understand the entire enterprise from top to bottom understanding that securing sensitive data impacts every department.Bell credits his success to the premise that trust & credibility must be established with other executives through accountability and being culturally sensitive to business members across the globe.  Bell has managed to overcome time constraints and language barriers while staying focused on business objectives that have earned him “trusted advisor” status with clients as evidenced by his LinkedIn referrals profile.

Building on 15+ years of high-tech/operations experience ranging from Hewlett-Packard to Oracle, Bell has P&L experience with over $48M revenue and leadership responsibility including leading large international IT teams with responsibility in technology development, delivering global business solutions, business process design, outsourcing, setting strategy, and rearchitecting enterprise infrastructure. In addition, Bell started ConnectTech, LLC (www.Connect-Tech.biz) and also works as an Executive IT Security Advisor for the credit card/healthcare industries leading projects ranging from $1M to $30M for a variety of industries.  One of Bell’s top projects included finishing a projected $8M project for a Texas Public Utility that came in at $2M, due to Bell’s innovative cost cutting by co-designing a SAP tokenization solution that became a new SAP offering.  Bell worked for a private equity firm for the divestiture of an international software and medical company and was accountable for successfully separating both companies and serving as the interimVP of IT leading the project.  Bell was previously responsible for the North Americas IT operations functioning as Director of IT for a TBC Corporation subsidiary consisting of 570 locations with shared parallel executive responsibilities and as the CISO for 8 companies consisting of over 2,800 store locations for risk management, securing company-wide infrastructure, corporate governance, developing enterprise policies, security strategy, and accountable for mission-critical 24x7 business operations.
 
Todd Bell has served as a paid executive officer for two Colorado utility Board of Directors in which he was responsible for the operations of an $8M operation which serviced 5,100+ clients.  Bell successfully turned around a utility that was losing money and restored fiscal stability and the utility operated in the black within a year, without rate hikes to clients as the result of business outsourcing and reorganization.

Bell holds an M.B.A. from Regis University in Denver, CO and Bachelor’s degree in Business Information Systems. He received the highest national honor from Regis University for academic achievement and his significant contributions to public service and as a result, was inducted and presented the Medallion of Honor for his accomplishments.  In addition, Bell holds a variety of professional certifications consisting of corporate compliance/governance (SOX) from Tulane University Law School, PMP credential from Project Management Institute, IT Security & Compliance (CISSP),PCI Council Certification, and a certified Master Project Manager. Bell is also received the C|CISO Executive Certification as a Chief Information Security Officer from EC Council.

Among his numerous credentials, Bell has received the prestigious HP Customer First Award, WJ Presidents Technology Award, public service awards, and customer awards for providing world-class customer services.  Bell is a member of the Worldwide CIO/CISO Executive Council, EC Council, Denver InfraGard, PMI, Payment Card Industry (PCI), and Alpha Sigma Nu.

Todd Bell
Global IT Security,
Setting Strategy &Building Programs, Rearchitecture Design


Chris Armstrong

Chris Armstrong has 18+ years of experience in information assurance and information technology and is the Chief Information Security Officer at Allgress. He has a proven track record of influencing product development and strategy in response to the demands of customers who manage information assurance, security and risk programs within large-scale, complex, global environments. Over the course of his career, he has specialized in information security strategy, architecture and operations; global threat management and assurance; risk management; governance and regulatory/statutory compliance; and global policy management and compliance. Prior to his role with Allgress, Armstrong served in similar leadership roles with Fortune 500 companies in the hospitality, high-tech, health care, and financial sectors. He is a Certified Information Systems Security Professional (CISSP).

Chris Armstrong


Richard Ryan

Richard Ryan Hernandez II is currently working as the Chief Information Security Officer for Aeon Credit Technology Systems, a subsidiary of Aeon Group and one of Japan’s biggest retailer groups. He is a recognized subject matter expert in the field of Information Security, Risk Management, Penetration Testing, and Audit. During his free time he conducts several EC-Council classroom trainings, Information Security seminars, and workshops in the Philippines and APAC region. His students are from different private financial companies, government agencies, US Army and US Air Force service members that are based in South Korea. He has conducted several Penetration Testing projects for Fortune 500 companies and has appeared on Information Security related TV interviews in the Philippines.

Richard Ryan graduated last October 25, 2011 with his Master of Security Science degree, which was awarded at Hacker Halted 2011. He is the first graduate of ECCouncil University. He also holds two bachelor degrees in Commerce Management and Computer Science from San Sebastian College – Manila, Philippines. He holds and maintains several certifications from ECCouncil, ISACA, ISC2, Microsoft, Cisco, HP, IBM, Checkpoint, Fortinet, CompTIA, CWNP, CIW, GIAC. He has 12+ years of Information Security experience and started his career as an Instructor before working in information security domains.  He continuously does research for Insider Threat Mitigation. During his free time he also does vulnerability research, handles security classes, forensic investigations. His wish is to pursue his Ph.D. in Information Security and Assurance in the future.

Richard Ryan

 

Erick Rudiak VP, Chief Information Security Officer at Express Scripts

Erick Rudiak has built information security programs for two multi-billion dollar enterprises, each of which more than doubled in size through M&A. After fourteen years in Information Systems and three in Security Risk Management as Chief Information Security Officer at Hewitt, Erick joined Express Scripts as Chief Information Security Officer in 2011.

Erick Rudiak
VP, Chief Information Security
Officer at Express Scripts

 

 

 

 

Justin Dolly is the Vice President & Chief Information Security Officer at ServiceNow Inc

Justin Dolly is the Vice President & Chief Information Security Officer at ServiceNow Inc. In this role he provides strategy and vision for all Information Security-related initiatives at ServiceNow ensuring the integrity, availability and security of information, intellectual property, infrastructure, platform and users for the global organization. He also leads compliance and risk management initiatives. Most recently Justin was the Chief Information Security Officer at VMware Inc., where he was responsible for developing and leading for all Information Security-related programs and initiatives. Previously Justin held various security and technology leadership roles at Kaiser Permanente (2010-2011), CNET/CBS Interactive (2006-2010) and at Macromedia (2000-2006). In the late 1990s, Justin held a variety of technical and engineering positions at Wells Fargo Bank.
He has more than 15 years of experience in information, infrastructure, web and application security, and network engineering and design and is respected as a visionary leader within the Information Security industry. Justin holds a Bachelor of Arts degree from the National University of Ireland.

Justin Dolly
Vice President & Chief Information
Security Officer at ServiceNow Inc

 

 

 

 

Ms. Dobson, Davidson Technologies' Vice President, Ballistic Missile Defense Operations and Information Assurance

Ms. Dobson, Davidson Technologies' Vice President, Ballistic Missile Defense Operations and Information Assurance. She leads her team in the disciplines of Cyber Security Engineering, Information Assurance, Information Technology, Modeling & Simulation; System Analysis; Systems Engineering & Integration; Test & Evaluation; Obsolescence; Survivability, Reliability, Availability, Maintainability (RAM); Operations and Sustainment. In addition, her team performs network security architecture and physical security assessments, 24x7 Network Operations, Intrusion Monitoring, Incident response, and penetration tests for enterprise and government entities.

Ms. Dobson holds a B.S. in Computer Engineering from Auburn University, M.S. in Management of Technology (M.B.A) from University of Alabama in Huntsville, and a GIAC Security Leadership Certification (GSLC) from SANS. She joined the firm in 2003 as an Engineer where her Cyber Security focus began. As a software developer, she built a security configuration that reduced build time from 32 hours to 4 hours and passed all assessments. She serves as a member of the SANS Advisory Board and a member of Women in Defense. Ms. Dobson supports Hacker Halted CISO Forum, Cyber Huntsville, National Space Symposium, Space and Missile Defense Conference, Information Systems Security Association (ISSA) Cyber Security Summit and other Industry forums.

DTI is a Woman Owned Small Business performing Cyber and IA for multiple contracts in many locations across the U.S. DTI has been the recipient of the Best Places to Work Award, Principals Top 10, Performance Excellence Awards and Supplier of the Year awards.

Lisa L. Dobson, Vice President
Davidson Technologies, Inc. WOSB
DoD 8570 GSLC Certified/Cyber Focused

 

 

 

 

Shawn Murray is a principal scientist with the United States Army Cyber Command currently assigned as a Cyber Analyst to the Regional CERT in Europe

Shawn Murray is a principal scientist with the United States Army Cyber Command currently assigned as a Cyber Analyst to the Regional CERT in Europe. His previous assignments include work with the United States Missile Defense Agency, US Air Force and Commercial Industry in various roles in Information Assurance and Cyber Security. He has traveled the globe performing physical and cyber security assessments on critical national defense and coalition systems. Dr. Murray has worked with NSA, FBI, CIA and the US Defense and State Departments on various Cyber initiatives and has over 20 years of IT, communications and Cyber Security experience. He teaches Cyber security, business and computer science courses for two universities. He has several industry recognized certifications to include the C|CISO, CISSP and CRISC. He holds several degrees to include an Applied Doctorate in Computer Science with a concentration in Enterprise Information Systems. He is a professional member of IEE, ACM, ISSA, IC2 and is a FBI Infragard program partner. He enjoys spending time traveling with his family, collaborating with other professionals and volunteering in his community as a Shriner.

Dr. Shawn P. Murray
C|CISO, CISSP, CRISC, FITSP-A
Principal Scientist, Cyber Analyst
US Army Cyber Command, RCERT Europe

 

 

 

 

Mark Carney Vice President of Strategic Services at Fishnet Security

As the Vice President of Strategic Services at Fishnet Security, Mark Carney leads a group of 22 seasoned security advisors that interface with CSOs, CROs, and CIOs at FORTUNE 500 and global institutions that assist these organizations with information assurance, managed services, identity and access management, and training professional service’s needs. Mark has experience in building information assurance professional services organizations, including all aspects of sales/marketing/business development, staff management, project management, and service delivery execution. In his over 10 years at FishNet Security, he has also managed the information assurance division and spent several years as a Sr. Security Consultant.

Mark Carney
CISSP, CRISC, C|CISO, PCI-QSA, NSA-IAM,MBA
Vice President of Strategic Services
at FishNet Security


 

 

 

Scott Stein is a Managing Director

Scott Stein is a Managing Director at Stroz Friedberg where he oversees the firm’s Seattle operations and key practice areas, including cybercrime and data breach response, digital forensics and ediscovery. As head of the office, he manages the on-site digital forensics laboratory, as well as the end-to-end processing for all ediscovery engagements. Senior executives, in-house lawyers and outside counsel rely on his wealth of technology, government and legal experience to better manage their technical and strategic approach to digital risk and investigations.

Prior to joining Stroz Friedberg, Mr. Stein was a Senior Attorney at Microsoft Corporation. Over the course of six years, he provided legal advice to help the company address vital issues related to the Communications Assistance for Law Enforcement Act (CALEA), the Electronic Communications Privacy Act, National Security, and Federal Regulatory Compliance. Mr. Stein also directed a team of Microsoft cyber investigators who focused on preventing, detecting and resolving intricate computer crimes ranging from viruses and worms to botnets and spyware. Notably, the Federal Bureau of Investigation (“FBI”) recognized the group for “Exceptional Service in the Public Interest” as a reward for their help in identifying the unlawful distributors of the 2005 “Mytob/Zotob” computer worm. Later Mr. Stein also led the team’s investigative support of the FBI’s “Operation Bot Roast” which tracked down bot herders and virus coders causing the rampant infection of over a million computers.

Scott Stein
Managing Director of STROZ FRIEDBERG

 

 

 

Rakesh Radhakrishnan Principal Architect Specialist

Rakesh Radhakrishnan is a Principal (Information Security) Architect Specialist at AMGEN. He has a total of 25 years of experience in IT and 15+ years in Information Security covering all 5 domains of the CISO program.  Rakesh is extremely passionate about “Aligning Aspired (Target ESA) with Applied Architecture” and he believes in the critical nature of the partnership and teamwork between the Chief Security Architect office of an Organization and the CSO office. All the Architecture Assessments, Target ESA definitions/designs, innovation, solution design, integration models, problem solving (predicting future issues/problems as well), design patterns and reusable code/artifacts produced by Security Architects can ONLY be put to good use if it is aligned with the CSO programs associated with governance, empowerment, program management, policy & standards, compliant SW acquisition, organizational structuring and so on.  Hence he truly enjoys the ISACA COBIT 5 model for Information security that addresses the governance challenges of IS along with SEI’s Architecture Led Program Management for Architecture led governance and acquisition management.

His blog is at:
http://identity-centric-architecture.blogspot.com/

 

Rakesh Radhakrishnan
Principal (Information Security)
Architect Specialist at AMGEN

 

 

 

 

Dwayne Melancon is Tripwire's Chief Technology Officer

Dwayne Melancon is Tripwire's Chief Technology Officer, where he owns a critical role in driving and evangelizing the company's global overall product strategy. Dwayne works with global enterprise CISO's on security & operations challenges, and is currently focused on developing effective security metrics, communicating the business value of information security, and establishing objective, data driven-security.

Prior to joining Tripwire, Melançon held leadership roles at DirectWeb, Inc., Symantec Corporation and Fifth Generation Systems, Inc. He is certified on both IT management and audit processes, holding both ITIL and CISA certifications, and is a frequent speaker at national and regional industry events.

Dwayne Melançon
CTO of Tripwire

 

 

 

Jason Stradley is a visionary security executive

Jason Stradley is a visionary security executive with an entrepreneurial spirit and the ability to execute against his vision. Known for strong organizational and thought leadership he combines those qualities to communicate his vision to motivate others to excellence.

Mr. Stradley has developed solutions for enterprise environments in the financial services, manufacturing, Healthcare, Hospitality industries as well as several not-for-profit. Mr. Stradley is a frequent speaker at such venues as SANS, MISTI, Gartner, DRJ and others and has been published in several industry publications including CSO Magazine and the Cutter IT Journal.

Mr. Stradley currently holds the C|CISO, CISSP, CGEIT, CBCP, CISM, SANS GSLC, CBCP, CRISC, and CCSK certifications.

Jason Stradley

 

 

 

Mr. Voje currently Chief Information Security Officer

Mr. Voje currently serves as the Chief Information Security Officer for The University of Texas –Pan American, where he is developing an Information Security program and Privacy practice for one of the nation’s largest Hispanic serving institutions of higher education.

As former Naval Officer, Mr. Voje, served in many roles related to cyber security and information assurance for the U.S. Navy. Outside of the military, he has led the Information Security programs for a large west coast financial institution, Washington State’s second largest public utility district, and consulted for the Federal Government in addition to intellectual property and law firms through his consulting company American Cyber Corps.  Mr. Voje holds a Masters degree in Network Security and is a Certified Information Systems Security Professional (CISSP), an Information Systems Security Engineering Professional (ISSEP), a Certified Ethical Hacker (C|EH), and Cisco Certified Network Associate (CCNA) with Security endorsement.

Joe Voje
CISO of University of Texas Pan American

 

 

 

Ron Baklarz

Ron Baklarz has over twenty years in the Information Security field developing “first-of-a-kind” information security programs within government, military, and private sector organizations including the Naval Nuclear Program, U.S. House of Representatives, Prudential Insurance Company, MedStar Health, and Amtrak. Ron is currently the Chief Information Security Officer at Amtrak and he has held various information security consulting, technical, and operational positions throughout his career.

Ron Baklarz
CISO at Amtrak, Ron Baklarz CISSP,
CISA, CISM, NSA-IAM/IEM

 

 

 

Michael is a Senior Management professional

Michael is a Senior Management professional with an extensive background in Network and Information Security, Data Privacy, Fraud Management, Technical Investigations, Regulatory Compliance and Policy Development, Litigation Preparedness, Enterprise Governance, Risk Management, Computer Forensics and Application Security Threats and Countermeasures.

Currently Michael is based out of the United States and serves as the Lead for Fraud Management and in North America with a focus on Insider Threat Management, Cyber Forensics, Secure Software Development Lifecycle methods and Governance Risk and Compliance solutions.

Michael Woodson
Lead, Fraud Management and Forensics N.A.
at Tata Consultancy Services

 

 

 

Kevin Beaver

Kevin Beaver is an information security consultant, author, expert witness, and professional speaker with Atlanta-based Principle Logic, LLC. With over 24 years of experience in IT, Kevin specializes in performing independent application and network security assessments to help organizations minimize their business risks. He has authored/co-authored 11 books on information security including the best-selling Hacking For Dummies (Wiley). In addition, he’s the creator of the Security On Wheels information security audio books and blog providing security learning for IT professionals on the go.

You can reach Kevin through his website www.principlelogic.com, follow him on Twitter at @kevinbeaver and connect to him
on LinkedIn.

Kevin Beaver



Randy Marchany

Randy Marchany has been involved in the computer industry since 1972. He is currently the Virginia Tech Information Technology Security Officer and the Director of the Virginia Tech IT Security Lab. He was a co-author of the FBI/SANS Institute's "Top 10/20 Internet Security Vulnerabilities" document that has become a standard for most computer security and auditing software. He was the co-author of the "Responding to Distributed Denial of Service Attacks" document that was prepared at the request of the White House in response to the DDOS attacks of 2000. He was a coauthor of the Center for Internet Security's series of Security Benchmark documents for Solaris, AIX and Windows2000.

These benchmarks represented the first successful attempt to create a set of consensus documents with detailed steps for implementing system security. He was a member of the White House Partnership for Critical Infrastructure Security working group that developed a Consensus Roadmap for responding to the recent series of DDOS Internet Attacks. He was a recipient of the SANS Institute's Security Technology Leadership Award for 2000. He was a recipient of the VA Governor's Technology Silver Award in 2003. He was part of the team that won the EDUCAUSE Excellence in Information Technology Solutions in 2005. He is a co-holder of a patent for battery based intrusion detection system and has a patent pending for an IPV6 defense tool. He is a member of IEEE, ACM, IIA, EDUCAUSE, SANS Institute, BMI.

Randy Marchany
CISO at Virginia Tech



 

Mr. Gomez-Sanchez

Mr. Gomez-Sanchez has over 16 years of Information Security experience.  He has focused his entire professional life to pursue excellence in the field of Information Security. 
  
Currently, Juan Gomez-Sanchez is the Managing Principal and President of Optima Consulting Services Inc.  Optima Consulting Inc. is a professional services organization exclusively focused on Security Program Management and Security Risk/Compliance Management.  Under Optima Consulting Mr. Gomez-Sanchez has helped clients achieve their security goals by creating comprehensive tactical and strategic security plans, implement such plans and help manage their security programs.  Clients include the Florida’s Turnpike Enterprise (PCI level 1 merchant), Transcom Inc. (PCI certified global service provider - Spain), Kapsch AG (Global provider of technology Services- Austria), Electronic Toll Collection (PCI level 1 merchant – South Africa) and various
smaller clients.

Juan Gomez Sanchez
CEO at Optima Consulting





Mr. Saleem has more than 14 years of experience in the fields of Enterprise and Security Architecture, Forensics and Fraud Management, Cyber Intelligence & Incident Response Management, Enterprise Security and Risk Management, Business Continuity & Disaster Recovery, Governance Risk and Compliance, Policy & Procedures, Cloud Computing, BIG Data & Security Analytics, Networks Infrastructure & Data Centre as well as integrating Systems and Applications. At present I am Chief Information Security Officer (CISO) at Ministry of Health. I am also Program Manager of National e-Health Program responsible for 31 Enterprise Security & Risk Management projects
for the MoH.

Muhammad Saleem
Chief Information Security Officer (CISO)
at Ministry of Health - K.S.A

 

 

 

Michael is a Senior Management professional

Dennis King is the Chief Security Officer and President of Working Security Inc., a Saint Louis provider of information security risk management, compliance, and governance services. Dennis brings over 20 years’ experience working with more than one hundred large and small companies across the globe including Finance, Energy, and Healthcare clients.
He has led development and management of compliance and secure infrastructure solutions at IBM and other IT outsourcing, cloud, and internet service providers, brought
IaaS security services to market, led HIPAA, SSAE-16/SAS70, ISO/IEC 27000, PCIDSS assessments, and managed a variety of forensic investigations.
Dennis holds CISSP, GCFA, C|CISO, PMP and CSM certifications. He earned an MBA from Washington University in St. Louis and a BS in Engineering from Purdue University.

Dennis King
CSO & President of Working Security, Inc.

 

 

 

Michael is a Senior Management professional

Dr. Joe Popinski is an Information Technology & Network Security consultant specializing in enterprise level IT, networking, cyber, and corporate security.  He currently serves as the AVP- IT & CISO for the University of Alabama at Birmingham’s Office of the Vice President for Information Technology.  In this role, he is responsible for Information Security at UAB including security architecture, strategic planning, DR, compliance, cyber security investigations, risk management, security technical monitoring, and other security related functions.

His experiences over the past 45 years range from IT security management, to government defense system technical analyses, to telephone company business/records keeping systems development, to data network management, to information/network/physical security investigations & management, to HIPAA security consulting, to enterprise security consulting, to professional services, to hacker tracking & evidence analysis, and as a network security consulting practice manager.  He recently served as NASA’s Marshall Space Flight Center’s IT Security Manager (contractor) for the Office of the CIO while employed by Dynetics Technical Services for 2 years, and as Director – Network Security Consulting for IE-Dynetics for 11 years.  He retired from BellSouth Telecommunications (30 year career); has served as a Manager in KPMG’s Information Risk Management practice; and as Director of Professional Services Division (Southeast) for Internet Security Systems (ISS) in Atlanta.

Joseph W. Popinski III,
Ph.D. AVP IT & CISO at University of Alabama

 

 

 

Michael is a Senior Management professional

Greg Bee is the Director of Information Security Governance and the Chief Information Security Officer at Country Financial. In his role, Greg is responsible for the implementation and governance of Country Financial's enterprise information security program, including IT compliance and risk activities. Greg has over 25 years of Information Technology experience, with the last 13 years leading the Country Financial enterprise security program as CISO. Greg is responsible for Enterprise Information Security policy and governance decisions to support overall risk management activities. Greg has experience with risk management, governance, vulnerability management, network security, incident response, and IT Security operations. Greg is a C|CISO, CISM, CRISC, and CGEIT. Greg has a Bachelor's degree in Computer Science, a Bachelor's degree in Economics, and a Master's of Business Administration all from Illinois State University.

Greg Bee
C|CISO, MBA, CISM, CRISC, CGEIT,
CLU, CHFC, FLMI, ACS

 

 

 

Robert Hotaling

Robert is the CSO of Cengage Learning a publisher of print and digital information services for the academic, professional and government agencies around the world.  With over 19 years of experience in Info Tech he has worked extensively on a global basis.  He has extensive experience with SOX, PCI, FERPA and GLBA.  Robert has developed and executed the security strategies for several multi-billion dollar businesses.

Before joining Thomson Learning as the CSO he was the Director of Business Systems and Communications for Prometric.  He was responsible for designing and implementing security and communications networks for contact centers/data centers in twelve countries.  Developed and implemented the communication and security models for United Kingdom’s Drive-Safe Agency, and then oversaw government-sponsored systems audits.  Created the strategy to make a critical function ISO 27002 compliant and has managed the security for 4000+ locations in 120 countries. 

He has an MS in Information Technology from The Johns Hopkins University and a BS in Management from The Pennsylvania State University. 

Robert Hotaling
Chief Security Officer,
Cengage Learning
(Formerly Thomson Learning)