Chief Information Security Officer (CISO) Board

CISO Board



Nitin Kumar - Interim CISO

Nitin Kumar is a global executive and management consultant with deep operational experience. He has leadership experience in start-ups, turnarounds and driving exponential growth with full P/L responsibility.

He has held several executive roles such as Consulting Partner, Turnaround Leader, M&A Integration Leader, and Start-up CEO focused on strategy, sales, delivery, growth and operations. Nitin has vast global experience spanning the US, Europe, Asia (Middle East, India, and Far East), Australia, and Africa where he consulted with Fortune 500 clients in the areas of Growth Strategy, M&A Integration, Business Model Innovation, and Complex Transformation.

Nitin has pioneered several concepts for the CISOs including "Wargaming for CISOs", "Managing Information Risk during M&As" and "IT Risk Strategies during M&A" and he is widely regarded as a Growth Strategist and M&A Leader. In his prior life he has built IT Risk and Security organizations focused on serving CISOs of Fortune 500 clients.

Board Member: EC Council (CISO); Institute of Management Consultants (NJ Chapter)

Nitin Kumar
Director, PricewaterhouseCoopers LLP




Ron Baklarz - Chief Information Security Analyst

Ron Baklarz has over twenty years in the Information Security field developing “first-of-a-kind” information security programs within government, military, and private sector organizations including the Naval Nuclear Program, U.S. House of Representatives, Prudential Insurance Company, MedStar Health, and Amtrak. Ron is currently the Chief Information Security Officer at Amtrak and he has held various information security consulting, technical, and operational positions throughout his career.
 

Ron Baklarz
CISO at Amtrak, Ron Baklarz CISSP,
CISA, CISM, NSA-IAM/IEM




Lois Boliek - Certified Information Security Analyst

Lois Boliek is the global manager for the HP Technology Consulting IT Assurance Program. The goal of IT Assurance is to integrate security across all service portfolios and advanced solutions. The focus is to “assure” security is architected into all client solutions and offer security enabling services as a competitive differentiator for HP Technology Consulting. IT Assurance means security is built into all solutions up front versus as an isolated business or an afterthought.
 
Boliek has a proven track record as well as field experience in security practice leadership, sales support and portfolio development. Boliek was previously the Americas Security & Risk Management Practice Principal and is a Certified Information Security Manager (CISM). During her career at HP starting in 1989, Boliek has played many roles including systems engineer, project manager, business developer, consulting manager and practice principal. Security has been one of the main themes throughout her IT career and in each of her roles at HP. She has provided consulting and project management for a variety of clients in IT consolidation, data center operations, web application development, security and identity management projects. Boliek has also conducted assessments and provided recommendations on IT organizational structure, IT operations, project management, time management and application development practices for various clients.
 
Prior to joining HP, Boliek gained her foundation experience in IT and security as an IT systems and application manager for a local government in Virginia and as an application developer for a state university. She has taught college level information technology classes and especially enjoys people development. Boliek is from Virginia and graduated with honors with a Bachelor of Science degree from James Madison University in Harrisonburg, Virginia.
 

Lois Boliek
Global Manager, IT Assurance Program,
HP Technology Consulting, Hewlett-Packard Company




Karthik Swarnam - Certified Information Systems Security Professional

Karthik Swarnam is the Chief Information Security Officer at TransUnion LLC a Credit services agency that specializes in credit reporting, analytics and decision. Karthik is responsible for establishing strategy, implementing and managing Information Security globally.

Previously, Karthik was an executive in Accenture’s Technology Consulting (ATC) Security Practice. He led the firm’s Security capability for Resources industry vertical where he helped large global organizations with security and infrastructure related capabilities. Karthik also built a right-sourced delivery model for security solution as part of the model he built and operated an offshore delivery team spread across multiple geographies, He was the global lead for Accenture‘s offshore security delivery practice during his tenure at Accenture. In this capacity Karthik built a security practice in India and have integrated that to the Accenture’s solution delivery.
 
Karthik has over 18 years of experience in IT specializing in Infrastructure technologies. Karthik has worked extensively in designing and implementing information technology programs, infrastructure services and network implementations for various clients globally. Karthik has been in security officer roles for client engagements.

Karthik has been instrumental in helping large enterprises establish infrastructure strategy and translate the strategy into solutions. He is an advisor to several C-level executives on IT Strategy, security vision, and regulatory implications and to translate organizations into high performing business enabling business growth and securing the extended enterprise.

Karthik earned a Bachelor of Engineering from Annamalai University, India, and holds a Masters degree in Electrical and Computer Engineering from Wayne State University, Detroit. He is an active Certified Information Systems Security Professional (CISSP). Active in the profession, Karthik has been involved in CIDX Cybersecurity initiative for the Chemical industry, and in several task forces, open forums and in Communities of Practice (CoP) in Identity & Access Management, Infrastructure services, and Next generation technologies.

Karthik has extensive experience in assisting clients with regulatory needs such as Sarbanes Oxley 404, IRS 1075, PCI DSS, FERC, NERC regulations, HIPAA, GLBA and several others

Karthik Swarnam
CISO at TransUnion




Jason Stradley

Jason Stradley is a visionary security executive with an entrepreneurial spirit and the ability to execute against his vision. Known for strong organizational and thought leadership he combines those qualities to communicate his vision to motivate others to excellence.

Mr. Stradley has developed solutions for enterprise environments in the financial services, manufacturing, Healthcare, Hospitality industries as well as several not-for-profit. Mr. Stradley is a frequent speaker at such venues as SANS, MISTI, Gartner, DRJ and others and has been published in several industry publications including CSO Magazine and the Cutter IT Journal.
 

Mr. Stradley currently
C|CISO, CISSP, CGEIT, CBCP, CISM, SANS GSLC, CBCP, CRISC, and CCSK certifications,



Juan Gomez Sanchez

Mr. Gomez-Sanchez has over 16 years of Information Security experience. He has focused his entire professional life to pursue excellence in the field of Information Security.

Juan Gomez-Sanchez, has been tasked throughout his career with building and managing world-class, enterprise security organizations. His keen perspective of security as a business enabler has allowed Juan to deliver high performance solutions and organization to address large and complex security challenges. He has led such initiatives in organizations like Delta AirLines, CheckFree Corporation (now and division of Fiserv) and Cybertrust (now Verizon Business).

Currently, Juan Gomez-Sanchez is the Managing Principal and President of Optima Consulting Services Inc. Optima Consulting Inc. is a professional services organization exclusively focused on Security Program Management and Security Risk/Compliance Management. Under Optima Consulting Mr. Gomez-Sanchez has helped clients achieve their security goals by creating comprehensive tactical and strategic security plans, implement such plans and help manage their security programs. Clients include the Florida’s Turnpike Enterprise (PCI level 1 merchant), Transcom Inc. (PCI certified global service provider – Spain), Kapsch AG (Global provider of technology Services- Austria), Electronic Toll Collection (PCI level 1 merchant – South Africa) and various smaller clients.

Mr. Gomez-Sanchez holds a CISSP certification since February 2001, obtained his CISM certification in January 2004 and achieved ISSAP certification in January 2005. In 2009 Mr. Gomez-Sanchez achieved PCI – Qualified Security Assessor (QSA) status. He has contributed with expert advice to a number of security advisory boards, including Computer Associates, Symantec, IBM Tivoli, Entrust Technologies and Crossbeam Systems.

Juan Gomez-Sanchez regularly contributes his time to ISC2, the leading certifying organization of security professionals. He is an accomplished and recognized exam writer for the CISSP and ISSAP certifications.
 

Juan Gomez-Sanchez




Joe Voje

Mr. Voje currently serves as the Chief Information Security Officer for The University of Texas –Pan American, where he is developing an Information Security program and Privacy practice for one of the nation’s largest Hispanic serving institutions of higher education.

As former Naval Officer, Mr. Voje, served in many roles related to cyber security and information assurance for the U.S. Navy. He has previously served as the Information Systems Director for the U.S. Navy’s only forward deployed air wing in Atsugi, Japan; the Information Assurance Officer for the Commander of the U.S. Pacific Fleet in Pearl Harbor, Hawaii; the Information Assurance Manager for Carrier Strike Group Nine home ported out of Everett, Washington; and the Executive Officer of the U.S. Naval Computer and Telecommunication Station Bahrain.

Outside of the military, he has led the Information Security programs for a large west coast financial institution, Washington State’s second largest public utility district, and consulted for the Federal Government in addition to intellectual property and law firms through his consulting company American Cyber Corps.

Mr. Voje holds a Masters degree in Network Security and is a Certified Information Systems Security Professional (CISSP), an Information Systems Security Engineering Professional (ISSEP), a Certified Ethical Hacker (C|EH), and Cisco Certified Network Associate (CCNA) with Security endorsement.
 

Chief Information Security Officer
The University of Texas – Pan American




Jerry Chappee

Jerry Chappee is the Chief of Threat and Vulnerability for US STRATEGIC Command and is a Lieutenant Colonel in the US Army. He has been involved with information security for over 20 years and has held a number of CISO, CTO and CIO positions.  He has over a dozen technology certs from Cisco and Microsoft and has the CISSP, Army penetration testing and forensics certifications and NSA IAM/IEM certifications. Jerry also has an MBA in Technology Management.  He has given hundreds of seminars and classes on Ethical Hacking and Cyber Defense, Attack and Exploitation focusing on Wireless Attacks, Wireless Security, TCP/IP Security, Windows security, Intrusion detection, Firewalls,  Network Security, Operating System hardening, VPN’s and Security policies and Auditing requirements for HIPPA and DOD.

Jerry is also the Disaster Recovery Manager for one of the largest health care companies in the country. He is responsible for designing and implementing the total recovery solution for multiple large data centers. His extensive hardware and networking background from designing and installing networks overseas for the last ten years directly supports these tasks and makes him an expert in the realm of disaster recovery and business continuance. He has responsibility for all information systems, storage architecture, data backup and recovery management, data center facility development and design, incident response processes and procedures, team development, exercises, plan documentation, governance, and audit responsibilities. In addition, he is the leader of the information security penetration testing team and the leader of the IT forensics team.

Jerry has the rare distinction of having expert level experience in IT Security for the military and health care industries.
 

Jerry Chappee
CISSP