
Audit
With the ever-changing cyber attack vectors, how often are you evaluating your security measures? Are they as strong as they were when you first implemented them? How often are you analyzing your security needs? Hear suggestions from our experts on how to conduct an audit properly and how frequently a full assessment is necessary.
Audit & Assessment

Nitin Bhatnagar
Associate Director-India, PCI Security Standards Council
Bhatnagar, associate director, PCI Security Standards Council leads the Council’s efforts in increasing adoption and awareness of the PCI Security Standards in India. In this role, Bhatnagar works closely with the PCI Council Management Team, affiliate members, payment brands, regulators, Merchants, Service Providers and key influencers/decision makers from payment card industry. His primary responsibilities include gathering feedback from industry leaders and driving education effort by increasing participation from India through active involvement in local and regional events, industry conferences and meetings with key stakeholders.

Agnelo D'Souza
CISO, Kotak Mahindra Bank
D’souza is responsible for driving cyber security at Kotak Mahindra Bank. In his 15-year long innings at Kotak, D’souza has led the implementation of key initiatives such as deception technology and threat hunting strategies – a first in the Indian banking industry. With a career spanning 25 years, D’souza is an expert at addressing security-related issues.

Anish Ravindranathan
Cybersecurity Lead-Detection and Response, General Mills
Ravindranathan is currently associated with General Mills India as Manager – Cyber Security Incident Response. He has built and expanded the 24/7 cyber security incident response. He has also direct his team through tactical response procedures to prioritize detect, analyse and investigate cyber security incidents.

Vicky Shah
Advocate, Data Privacy Professional
Vicky D. Shah looks after Cyber Security Initiatives and National Skills Registry (NSR Initiative) at NASSCOM, the premier trade body and the 'Chamber of Commerce' for the IT and ITES-BPO industry in India. Having spent over four years in this role, he is responsible for initiatives focused at creating an enabling environment in India for information security and compliance. The ongoing programmes at NASSCOM towards this objective include creating awareness about the Information Security Issue using the public private partnership platform.

Craig Gibson
Principal Threat Defense Architect, Forward-Looking Threat Research, Trend Micro
With 18 years of project management, product development, architecture and investigations experience, Craig Gibson's is currently dedicated to researching the evolution of the threat landscape - specifically trying to understand future impacts to government, health, banking and telecom sectors. As a United Nations delegate to China, Gibson has previously spoken internationally on topics including disruptive telecommunications, 9-1-1, public safety, payment cards, the security of voice services, call center authentication (cost reduction) and criminal code issues relating to fraud and unlawful interception of communications. Additionally, he has spoken on national infrastructure security topics to diplomats visiting Canada, as well as public safety, military officials and police executives.

Kevin Flynn
Global Director of Products, Skybox Security
Kevin Flynn is currently Director of Products at Skybox. Prior to joining Skybox Security in August 2016, Flynn was Director of Product Marketing at Blue Coat Systems. With over 25 years of experience in high tech, he has been involved in cyber security technologies for over 15 of those years. His high tech experience started at Apple Computer where he was a product manager in Apple's Advanced Technology Group. Flynn then spent over a dozen years at Cisco as a product manager and marketing manager in their security technology organization. After leaving Cisco, he moved over to Fortinet for three years before joining Blue Coat in 2013. Flynn is a frequent speaker on cyber security topics at conferences worldwide and has authored numerous articles on cyber security issues.

Gregory Wilshusen
Director, Information Security Issues, U.S. Government Accountability Office
Wilshusen joined the GAO, the investigative arm of Congress, in 1997, and oversees its IT security investigations and audits of federal government agencies and programs. He is a frequent witness before Congressional panels, testifying on government IT security. A certified public accountant, certified internal auditor and certified information systems auditor, Wilshusen previous served as the controller for the North Carolina Department of Environment, Health and Natural Resources, and held senior auditing positions at Irving Burton Associates, a professional and technical services firm, and with the U.S. Army Audit Agency.

Kate Borten
President, The Marblehead Group
Borten, founder of The Marblehead Group, provides her clients with expertise in security, privacy, and health IT from over 20 years inside the healthcare industry. In the 1990s she led the enterprise-wide security program at Massachusetts General Hospital; and as Chief Information Security Officer, she established the first information security program at Beth Israel Deaconess Medical Center and CareGroup in Boston. Borten is a nationally-recognized expert on HIPAA and health information privacy and security, a frequent speaker on these topics, and author of tools and books including HIPAA Security Made Simple (HCPro 2013). The Marblehead Group, founded in 1999, provides HIPAA privacy and security risk assessments, compliance auditing, training, and solutions to the healthcare industry. Clients include the full range of providers, health plans, and business associates.

Adam Greene
former Regulator, U.S. Department of Health and Human Services; Partner, Davis Wright Tremaine LLP
Greene is a partner in the Washington, D.C. office of Davis Wright Tremaine and co-chair of its Health Information Group. He primarily counsels health care providers, technology companies, and financial institutions on compliance with the HIPAA privacy, security, and breach notification rules. Previously, Greene was a regulator at the U.S. Department of Health and Human Services, where he played a fundamental role in administering and enforcing the HIPAA rules. At HHS, he was responsible for determining how HIPAA rules apply to new and emerging health information technologies and was instrumental in the development of the current HIPAA enforcement process. Greene is the Chair of the HIMSS Cloud Security Workgroup and is a frequent speaker and author on health information privacy and security issues.

Kurt Johnson
VP - Strategy & Corporate Development, Courion
Johnson is responsible for Courion's corporate and product strategy, corporate development, and securing and managing Courion's strategic alliances and partnerships. Prior to joining Courion, Kurt was Vice President of the Service Management Strategies program at META Group, a prominent international industry research organization. At META, Kurt established himself as a leading authority in the areas of the help desk, IT service management, system management and IT outsourcing markets. Previous to working at META Group, Kurt held consulting and management positions with The Bentley Company, part of eLoyalty, an enterprise CRM service and solutions company, and International Data Corporation (IDC), a premier global provider of market intelligence, advisory services and events for the information technology, telecommunications and consumer technology markets. Widely recognized as an authority on IT security, support automation and self-service operations, Kurt is a founding member of the HDI Strategic Advisory Board. He is a frequent speaker at well-known security and compliance events including Gartner's Security and IAM Summits; ISACA; MIS Training Institute and Help Desk Institute conferences; and CONVERGE, Courion's annual customer conference, to name a few. Kurt began his career working in financial and software product management positions at Digital Equipment Corporation. Kurt holds Bachelor of Science degrees in both Marketing and Finance from Boston College.

Mac McMillan
Co-Founder and CEO, CynergisTek, Inc.
McMillan is co-founder and CEO of CynergisTek Inc., a firm specializing in information security and regulatory compliance. He has more than 30 years of federal and private sector experience in managing and delivering information security services and is chair of the HIMSS Privacy and Security Steering Committee.

Dwayne Melancon
CTO, Tripwire
Melancon joined Tripwire in 2000 and serves as Tripwire's chief technology officer. In previous positions at the company, he served as vice president of corporate and business development, as well as vice president of professional services and support, information systems and marketing. Melancon is certified on IT management and audit processes, possessing ITIL Foundations and CISA certifications

Jan Hillier
Clinical Asst Professor of Management, Kelly School of Business - Indiana University-Bloomington
Hillier is a clinical assistant professor of management at the Kelley School of Business, Indiana University-Bloomington. She brings an extensive background in management consulting, organization effectiveness, change management and leadership development to her teaching. At McKinsey & Co., where she consulted for five years, she worked on a variety of team-based projects for major industrial, service and healthcare clients. As the vice president of a medical center, Hillier developed a change management/leadership development program based on the concept of "emotional intelligence." She has an MBA and a Ph.D. in organization theory from Indiana University.

David McNeely
Chief Strategy Officer, Centrify
As Chief Strategy Officer at Centrify, McNeely works with customers to drive the roadmap for Centrify's award-winning identity and access management solutions. He has worked in the identity and access management market for over 16 years, holding various product marketing and management positions at ActivIdentity, AOL, iPlanet and Netscape. At Netscape and iPlanet, he was the director of product management for the Directory and Security product line, where he first promoted the concept of a centralized directory for all identity and access management.

Mac McMillan
Co-Founder and CEO, CynergisTek, Inc.
McMillan is co-founder and CEO of CynergisTek Inc., a firm specializing in information security and regulatory compliance. He has more than 30 years of federal and private sector experience in managing and delivering information security services and is chair of the HIMSS Privacy and Security Steering Committee.

Jason N. Buck
Technology Manager and VP for Data Encryption, Top 4 Bank
Jason N. Buck is a Technology Manager and Vice President for a top four bank. He leads the encryption team responsible for securing sensitive information in applications and on multiple platforms and media, such as: PCs/Macs, servers, tapes, NAS and SAN devices, databases and mainframe systems. Jason has over sixteen years of experience in Information Security and IT Management. He holds a Bachelor of Science in Management Information Systems from St. Joseph's University. Jason is originally from Philadelphia, Pennsylvania and is currently based in the Phoenix Metro Area, Arizona.

Todd Thiemann
Senior Director - Product Marketing, Vormetric
Todd Thiemann is the Senior Director for Product Marketing at Vormetric, where he drives all aspects of product marketing activities. With over 20 years of experience, Todd has held roles in technology marketing at companies including Trend Micro, HP, and Oracle Corporation. Todd is also co-chair of the Cloud Security Alliance Solution Provider Advisory Council. He graduated from Georgetown University with a BS degree and earned an MBA from the Anderson School at UCLA.

Mike Byrnes
Director - Customer Authentication & Fraud Detection Solutions, Entrust
Mike has more than 20 years experience in technology product management, marketing and business development. He has been with Entrust for 4 years leading the company's Authentication, Fraud Detection and Secure Messaging solution areas. His responsibilities now involve leadership for Entrust's products and strategy for consumer and business banking, including solutions for strong authentication, mobile security and fraud detection.

Jodi Florence
VP - Marketing, IDology
As Vice President of Marketing for identity verification provider, IDology, Inc., Jodi Florence's marketing experience spans 18 years. She has been actively involved in the identity industry for more than five years. Having earned a status of an expert contributor of fraud related articles to several ezines, Jodi is the main author of IDology's blog, IDentity Matters, where she focuses on top of mind identity issues including identity theft, fraud, data breaches, consumer privacy and more.
Jodi has been invited to speak about identity verification and fraud on behalf of IDology by several organizations and companies including the Federal Trade Commission (FTC), Organization for the Advancement of Structured Information Standards (OASIS), and IBM. Jodi also participated in IDology's efforts as a member of the Internet Safety Technical Task Force in 2008 and continues to lead IDology's thought leadership programs educating both businesses and consumers on ways to protect their identity and prevent fraud.

Eli Katz
VP - Enterprise Strategies/Finance, 41st Parameter
Eli Katz advises 41st Parameter's Financial Services clients on developing risk management strategies for protecting the Internet Estate.
Mr. Katz joined 41st Parameter from Unisys, where he created and was director of the Active Risk Monitoring Practice. The practice specialized in creating risk-monitoring ecosystems that detect and analyze fraud or identity theft. In this role, Mr. Katz led the design of one of the first fraud systems to continuously monitor both online and branch activities.
Mr. Katz participated in the FSTC / BITS anti-phishing initiative and is a member of the Anti-Phishing Work Group, BAI and NACHA. He has published numerous articles relating to the operational, strategic and IT implications of the automation of fraud and is quoted frequently on the subject. Mr. Katz has also been a featured speaker at several industry events, including the FSTC Forum, NACHA, and BAI.

George Tubin
Director of Marketing, Transmit Security
Tubin is Director of Marketing at Transmit Security and a recognized expert in digital banking and payments security and cyber-fraud prevention. He was previously Vice President of Marketing at Socure and Senior Research Director with the leading financial services research firm CEB TowerGroup (acquired by Gartner, Inc.) where he delivered thought leadership and insights to leading financial services institutions, technology providers, and consultancies on business strategies, technologies, and market trends in retail, Internet and mobile banking, and fraud management.

Clark Abrahams
Director - Global Marketing, SAS
An author, inventor and former Chief Risk Officer, Clark is currently on the board of Social Compact and a committee member on OCEG's Leadership Council. With a career spanning nearly four decades, he is a passionate proponent of the fusion of analytics and judgment for better business decisions. Along with co-author Mingyuan Zhang, Clark has written two books, plus a chapter in a third, that re-think credit risk management and granting access to credit.

Mona Leung
CFO, Alliant CU
Leung has more than 20 years experience in leading finance organizations to deliver superior financial results and cultivate high performing teams for Fortune 500 companies such as PepsiCo and Sears. She launched the enterprise risk management program at Alliant Credit Union 4 years ago and has gained industry wide recognition for her work. She was a speaker at World Council Credit Union Conference in 2009 in Barcelona, Spain and the SAS Premier Business Leadership Series in 2009. She is also on the Boards of Director for BrightLeaf Financial Network and a volunteer with Operations Hope.

Jeff Williams
Co-Founder and CTO, Contrast
Jeff brings more than 20 years of security leadership experience as co-founder and Chief Technology Officer of Contrast. He's very active in the DevSecOps community, recently authored the DZone DevSecOps cheat sheet, and speaks frequently on the topic at conferences like Velocity, DevSecCon, JenkinsWorld, AppSecEU, and more. Prior to Contrast, Jeff was co-founder and CEO of Aspect Security, a successful and innovative application security consulting company acquired by EY. Jeff is also a founder and major contributor to OWASP, where he served as Global Chairman for 9 years and created the OWASP Top 10, OWASP Enterprise Security API, OWASP Application Security Verification Standard, XSS Prevention Cheat Sheet, and many other widely adopted free and open projects. Jeff has a BA from Virginia, an MA from George Mason, and a JD from Georgetown.
Session Contributors
former Regulator, U.S. Department of Health and Human Services; Partner, Davis Wright Tremaine LLP
Read BioPrincipal Threat Defense Architect, Forward-Looking Threat Research, Trend Micro
Read Bioformer Dir. of Incident Response, Expedia; Principal Consultant, Public Sector Cyber Security Contracting Services
Read BioTeam Lead - IT & Operations Risk, Federal Deposit Insurance Corporation (FDIC)
Read BioDirector, Information Security Issues, U.S. Government Accountability Office
Read BioClinical Asst Professor of Management, Kelly School of Business - Indiana University-Bloomington
Read BioFormer Investigator, New York State Police; President, AML Training Academy & Advisory
Read Bio