
2018 Toronto Fraud & Breach Prevention Summit
Our 2018 series of Fraud & Breach Prevention summits continues with our sixth North American event taking place in September in Toronto. This event focuses on technology-driven problems and solutions of interest to a wide range of industries. From ransomware attacks to IoT risks, GDPR compliance to insider threat mitigation, 2018 promises to have more than enough for all of us to talk about and learn from each other. We have designed our sessions to address the needs of CISOs, fraud and risk teams, security and IT professionals, and many others by providing hands-on tools and real-world solutions that attendees can take back to their offices and put to use.
Highlights from our summit held in Toronto, ON on September 11th and 12th, 2018

Rushmi Hasham
Director, Certification & Training at Rogers Cybersecure Catalyst, Ryerson University
In her endeavour to increase diversity in cybersecurity, Rushmi Hasham recently joined Rogers Cybersecure Catalyst, as Director of Training and Certification. The Catalyst, a not-for-profit owned by Ryerson University, launched September 2018, empowers Canadians and Canadian businesses to take the opportunities and tackle the challenges of cybersecurity by driving collaboration and excellence in training and certification; commercial incubation and acceleration; applied R&D; and public education and policy development in cybersecurity. A serial social-entrepreneur, she has founded 2 businesses in the technology services industry. One of Hasham's ventures has been selected as Canada's Top 50 Growth Businesses. She is also a strong advocate for identifying and implementing unique training and employment opportunities to increase the representation of women in Cybersecurity and other technology-related careers.

Anja Milenkovic
Business Systems Analysis, RBC
Anja Milenkovic currently serves as a Senior Business Systems Analyst for RBC's IAM/Cyber Security Group. She has completed University of Toronto's Cybersecurity Boot camp and has a degree in Psychology from Ryerson. Having entered this field after many years of technical recruitment (three years as RBCs Cybersecurity Talent Acquisition Lead), she has a unique perspective on how to prepare for and enter the industry.

Flo Ochoa
Cyber Security/IT Recruitment, Strategic Talent Management Consultant
Flo Ochoa has over 20 years of experience/background in IT Recruitment, as a seasoned Talent Acquisition professional, Flo has great success in matching companies with great talents. At Symantec, she led the national recruiting and hiring strategy for Symantec Canada (Toronto, Markham and Waterloo). She was responsible for developing and implementing effective strategies and recruitment campaigns to recruit top talents in cybersecurity space. Ochoa is a member of Leading Cyber Ladies Toronto chapter and Women In CyberSecurity (WICYS) as well as involved in promoting diversity and inclusions in the workplace by organizing events and partnering with organizations that are focused on diversity programs and groups.

Olivera Zatezalo
GM - Cybersecurity & Privacy, Suncor & former CSO, Huawei Canada
Olivera Zatezalo is the Chief Security Officer at Huawei Canada, and her responsibility is to ensure Huawei Canada's operations is compliant with Canadian cyber security laws and regulations. With over 20 years of experience in the telecommunication industry, Zatezalo is best known for creating value through collaborative leadership style, agile execution, and for her global cyber security expertise. Up until joining Huawei Canada, she was responsible for cyber security governance, management and operations within an international communication provider operating in Canada, US, UK and France, and was a member of Canadian Security Telecommunication Advisory Committee.

Gary Sockrider
Principal Security Technologist, NETSCOUT Arbor
Sockrider is an industry veteran with over 25 years of broad technology experience and a security focus. He seeks to understand and convey the constantly evolving threat landscape, as well as the techniques and solutions that address the challenges they present. Prior to joining Arbor in 2012, he worked at Cisco Systems and held previous positions with Avaya and Cable & Wireless.

Imran Ahmad
Partner - Blake, Cassels & Graydon LLP
Imran Ahmad is a Partner at Blake, Cassels & Graydon LLP with a specialization in technology, cybersecurity and privacy law. As part of his cybersecurity practice, he works closely with clients to develop and implement practical strategies related to cyber threats and data breaches. He advises on legal risk assessments, compliance, due diligence and risk allocation advice, security, and data breach incident preparedness and response. In addition, Ahmad acts as "breach counsel" in the event of a cybersecurity incident, such as a data or privacy breach. He also provides representation in the event of an investigation, an enforcement action or a litigation. He is the author of Canada's first legal incident preparation and response handbook titled Cybersecurity in Canada: A Guide to Best Practices, Planning, and Management (LexisNexis, August 2017). He advises on licensing, outsourcing and service-provider arrangements, as well as on other commercial matters with respect to carrying on business over the internet, the cloud and the digital environment. In his privacy law practice, he advises clients on compliance with all Canadian federal and provincial privacy and data management laws. He has a particular focus on cross-border data transfer issues and enterprise-wide governance programs related to privacy and information governance

Ryan Duquette
Partner, Security and Privacy Risk Consulting, RSM Canada
Ryan Duquette is a seasoned digital forensic investigator with many years of experience in law enforcement and the private sector. He founded Hexigent Consulting, a firm focusing on digital investigations, cyber security consulting services and litigation support. Duquette works closely with clients involved in workplace investigations and civil litigation matters including intellectual property theft, HR investigations and data breaches. During his days in Law Enforcement, he conducted digital investigations on a variety of criminal cases including homicides, child pornography, fraud, missing persons, and sexual assault cases. He is a Sessional Lecturer at the University of Toronto teaching digital forensics, a Director for the Toronto chapter of the Association of Certified Fraud Examiners and has been qualified as an "expert witness" on numerous occasions.

Brett Johnson
Former Most Wanted and "The Original Internet Godfather"
Former United States Most Wanted, Brett Johnson, referred to by the United States Secret Service as "The Original Internet Godfather" has been a central figure in the cybercrime world for over 20 years. He built and was leader of ShadowCrew, the precursor to today's darknet markets. He was instrumental in developing many areas of online fraud while helping design, implement, and refine modern Identity Theft, Account Take Over Fraud, Card Not Present Fraud, IRS Tax Fraud, and countless other social engineering attacks, breaches, and hacking operations. Upon his capture, the United States Secret Service hired Johnson to work as a consultant and informant. Johnson worked with the Secret Service for several months before going on a cross country crime spree, being placed on the US Most Wanted List, being captured again, sent to prison, escaping prison, being captured yet again, and finally accepting responsibility for his actions. Today, Johnson works as a security consultant and public speaker. He is one of the world's foremost authorities on cybercrime and identity theft. During 2017, He has been featured in the book, "Kingpin" by Kevin Poulsen and on numerous media outlets, including the New York Times, NBC, CNN Money, Wired Magazine, Vice, RT TV, ArsTechnica, The Independent, and more.

Chris Eng
Vice President of Research, Veracode
Eng is vice president of research at Veracode, where he leads the team responsible for integrating security expertise into the company's core product offerings. Previously, he was technical director at Symantec and an engineer at the National Security Agency. He is a frequent speaker at industry conferences and has been featured in media outlets such as Bloomberg, Fox Business and CBS.

Ted Trush
Enterprise Fraud Prevention Specialist, RSA
Ted Trush is a business technology enabler with twenty years of successful IT experience supporting top of the line fraud prevention solutions for enterprise customers in Canada.

Dan Larson
Vice President of Product Marketing, CrowdStrike
Dan Larson is Vice President of Product Marketing at CrowdStrike. He's a ten year veteran of the information security industry with expertise in endpoint protection, encryption, hardware-enhanced security, endpoint detection and response, as well as security management and advanced threat protection. Prior to joining CrowdStrike, Dan worked in technical roles at Intel Security (McAfee) and at GE Healthcare. Dan holds a Bachelor of Science degree from the University of Wisconsin - Madison and is now based in Minneapolis, Minnesota.

Jade Catalano
Sr. Product Manager, Splunk
Jade Catalano currently serves as Sr. Product Manager at Splunk. With more than 10 years of cybersecurity experience, she has most recently been focusing on anti-fraud. Working closely with both the security product teams at Splunk and the customers, she strives to understand their biggest challenges around security and fraud, connect all the data points to help solve and strengthen organizations security ecosystems.

Robert Falzon
Head of Engineering, Office of the CTO, Check Point Software
Robert Falzon currently serves as the Head of Engineering within the office of the CTO for Check Point Software Technologies Inc., the worldwide leader in securing the Internet. His background includes over 20 years of experience in large-scale network security architecture, design, and deployment projects for government and business organizations spanning the globe. Falzon and his team are responsible for educating the market on the latest cyber security trends. Other past responsibilities have included operational, management, and developmental duties for major accounts within EDS Canada's network security team, and lead engineer for many major European Telco accounts with Alcatel in Paris France. While with Alcatel, Falzon worked to assist those accounts in moving to emerging voice technologies while maintaining a focus on security. After obtaining his CISSP certification, he went on to provide security process and audit/penetration testing training to major financial and energy customers within Europe and the Middle East, in addition to providing audit and penetration testing and consulting services to customers worldwide.

Michael Lynch
Chief Strategy Officer, InAuth
Michael Lynch serves as Chief Strategy Officer, where he leads InAuth's new products strategy and develops key domestic and international partnerships. Lynch brings two decades of experience in key roles within financial services, consulting, and Fortune 500 companies, specializing in security and technology leadership. Prior to joining InAuth, Lynch served as a Senior Vice President for Bank of America, responsible for Authentication Strategy. He served at Bank of America for 14 years in various leadership positions within technology, customer protection, and online and mobile security strategy roles.

Gord Jamieson
Senior Director of Canada Risk Services, Visa
Gord Jamieson is a Senior Business Leader at Visa and serves as the head of Canada Risk. His goal is to differentiate Visa from competition, reduce risks of regulatory impact and support core growth by engaging Canadian clients to minimize payment system risks. Having been with Visa for 17 years, he has always been in the Risk function. Prior to joining Visa, Jamieson served as a member of the Royal Canadian Mounted Police for 20 years. In that capacity, he has investigated organized crime involvement in forged credit card manufacturing and distribution. Jamieson has held positions as both the President and Vice-President of the Central Canada Chapter of the International Association of Financial Crimes Investigators (IAFCI) and presently is a member of the IAFCI Board of Advisors.

Richard Henderson
Head of Global Threat Intelligence, Lastline
Richard Henderson is Head of Global Threat Intelligence, where he is responsible for trend-spotting, industry-watching, and evangelizing the unique capabilities of Lastline's technologies. He has nearly two decades of experience and involvement in the global hacker community and discovers new trends and activities in the cyber-underground. He is a researcher and regular presenter at conferences and events and was lauded by a former US DHS undersecretary for cybersecurity as having an "insightful view" on the current state of cybersecurity. Henderson was one of the first researchers in the world to defeat Apple's TouchID fingerprint sensor on the iPhone 5S. He has taught courses on radio interception techniques multiple times at the DEFCON hacker conference. Henderson is a regular writer and contributor to many publications including BankInfoSecurity, Forbes, Dark Reading, and CSO.

Denis Ryan
Senior Director, Field Sales-Email Fraud, Proofpoint
Denis Ryan currently serves as Senior Director, Email Fraud for Proofpoint, Inc. Previously, he held management positions at several well-known high-tech companies including Nominum (now part of Akamai), Tellabs (now Coriant), Verizon and IBM. As a sales leader of the fastest growing business unit in Proofpoint, Ryan oversaw the go to market sales and sales engineering strategy post the Return Path business unit acquisition. The diverse background of IT and security solutions allows him to overlay the Proofpoint sales efforts in multiple verticals, most notably Healthcare as Proofpoint has ramped this specialized team to improve email authentication practices.

Imran Ahmad
Partner - Blake, Cassels & Graydon LLP
Imran Ahmad is a Partner at Blake, Cassels & Graydon LLP with a specialization in technology, cybersecurity and privacy law. As part of his cybersecurity practice, he works closely with clients to develop and implement practical strategies related to cyber threats and data breaches. He advises on legal risk assessments, compliance, due diligence and risk allocation advice, security, and data breach incident preparedness and response. In addition, Ahmad acts as "breach counsel" in the event of a cybersecurity incident, such as a data or privacy breach. He also provides representation in the event of an investigation, an enforcement action or a litigation. He is the author of Canada's first legal incident preparation and response handbook titled Cybersecurity in Canada: A Guide to Best Practices, Planning, and Management (LexisNexis, August 2017). He advises on licensing, outsourcing and service-provider arrangements, as well as on other commercial matters with respect to carrying on business over the internet, the cloud and the digital environment. In his privacy law practice, he advises clients on compliance with all Canadian federal and provincial privacy and data management laws. He has a particular focus on cross-border data transfer issues and enterprise-wide governance programs related to privacy and information governance
Ruth Promislow
Partner, Commercial Litigation, Fraud and Cybersecurity Practice, Bennett Jones LLP, Toronto
Promislow practices commercial litigation with a strong focus on commercial crime, including cybersecurity, Ponzi schemes, investment fraud, employee fraud and anti-money laundering. She has extensive experience with recovery issues relating to commercial crime, including receiverships, tracing, freezing and recovering proceeds of crime. Promislow oversees and conducts internal investigations for clients, working with internal and external auditors, and works with clients to develop and implement comprehensive and effective action plans following a cybersecurity or other fraudulent attack. She also advises on steps to prevent against such attacks.

Matthew Maglieri
CISO, Ruby, parent company of Ashley Madison
Matthew Maglieri is the Chief Security Officer at Ruby, the parent company to several leading online dating brands including AshleyMadison.com. He is responsible for leading the architecture, development, and ongoing operation of Ruby's enterprise security program. Prior to joining Ruby, he served in a leading role developing Mandiant's Canadian practice and delivering a diverse range of strategic and technical consulting services including offensive red team operations, security operations center enhancement, and strategic transformation engagements.

Randy Trzeciak
Director, CERT Insider Threat Center, CMU
Trzeciak heads a team focusing on insider threat research, threat analysis and modeling, assessments and training. He has more than 20 years of experience in software engineering, focusing on database design, development and maintenance. In addition to his role with CERT, he is an adjunct professor at Carnegie Mellon's Heinz College, Graduate School of Information Systems and Management.
Session Contributors
Detective Constable - Computer Cyber Crime (C3) Intelligence Services, Toronto Police Service
Read BioDirector, Certification & Training at Rogers Cybersecure Catalyst, Ryerson University
Read BioPartner, Commercial Litigation, Fraud and Cybersecurity Practice, Bennett Jones LLP, Toronto
Read Bio