Incident & Breach Response

Timothy Hunt

Seattle Field Office Electronic Crimes Task Force, United States Secret Service

Timothy Hunt has been a member of the United States Secret Service since 2004. He currently serves as supervisor of the USSS Seattle Field Office Electronic Crimes Task Force (ECTF). This task force is a strategic partnership of local, state, and federal law enforcement entities, as well and partners from private industry and academia. The goal of the ECTF is to identify, prosecute, and suppress technology-based criminal activity. Before his current assignment, Hunt served as part of the USSS Covert Telecommunications Intercept Group. This group conducted Title III wiretaps and court-ordered pen registers, pursuant to relevant legal process, on telephone and computer networks in order to further USSS and partner investigations. Previously, Hunt served as a member of the USSS Seattle Field Office ECTF where he conducted forensic examinations of electronic media for evidence of criminal activity, and worked cases with a nexus to computers and electronic crime.

View all sessions by Timothy Hunt

Kristin Judge

CEO, Cybercrime Support Network

Kristin Judge currently serves as CEO of the Cybercrime Support Network (cybercrimesupport.org). To address the needs of cybercrime victims, she founded this nonprofit to work with federal, state and local law enforcement and consumer protection agencies to help consumers and small businesses affected by cybercrime. With their United Way partners, CSN has been awarded over $3M in DOJ federal grants to serve victims and is building the US "Cyber 911" to serve millions of cybercrime and online fraud victims. In 2008. she was elected to serve as a Washtenaw County Commissioner and supported the U.S. Department of Homeland Security in growing cybersecurity outreach to state and local government officials. After elected office, she worked at the Center for Internet Security, focusing on connecting state and local governments to federal services and technology needed to improve cyber security. As Director of Government Affairs at the National Cyber Security Alliance (NCSA), Judge worked with Google, FTC, FBI, SBA, DHS, NIST, congressional leaders and other key stakeholders across the country to educate consumers and businesses how to protect sensitive data.

View all sessions by Kristin Judge

Ronald Raether

Partner, Troutman Sanders

Ron Raether leads the Cybersecurity, Information Governance and Privacy practice and is a partner in the Financial Services Litigation practice group at Troutman Sanders. Ron is known as the interpreter between businesses and information technology, and has assisted companies in navigating federal and state privacy laws for over twenty years. Raether's understanding of technology led him to be involved in legal issues that cross normal law firm boundaries, including experience with data security, data privacy, patent, antitrust, and licensing and contracts. This experience allows Raether to bring a fresh and creative perspective to data compliance issues with the knowledge and historical perspective of an industry veteran.

View all sessions by Ronald Raether

Tommy McDowell

VP of Intelligence, RH-ISAC

Tommy McDowell currently serves as the vice president of intelligence for the Retail and Hospitality Information Sharing and Analysis Center (RH-ISAC). The RH-ISAC facilitates security intelligence sharing, analysis, and understanding through both human and machine-to-machine data exchange. McDowell has almost two decades of cyber security and risk management experience. Previously, he was the senior director of cyber threat intelligence at FireEye, where he delivered executive consultation services with Mandiant, designed and directed intelligence service delivery capabilities with iSIGHT, and aligned internal global operations for the combined organizations.

View all sessions by Tommy McDowell

Ronald Raether

Partner, Troutman Sanders

Ron Raether leads the Cybersecurity, Information Governance and Privacy practice and is a partner in the Financial Services Litigation practice group at Troutman Sanders. Ron is known as the interpreter between businesses and information technology, and has assisted companies in navigating federal and state privacy laws for over twenty years. Raether's understanding of technology led him to be involved in legal issues that cross normal law firm boundaries, including experience with data security, data privacy, patent, antitrust, and licensing and contracts. This experience allows Raether to bring a fresh and creative perspective to data compliance issues with the knowledge and historical perspective of an industry veteran.

View all sessions by Ronald Raether

Dan Larson

Vice President of Product Marketing, CrowdStrike

Dan Larson is Vice President of Product Marketing at CrowdStrike. He's a ten year veteran of the information security industry with expertise in endpoint protection, encryption, hardware-enhanced security, endpoint detection and response, as well as security management and advanced threat protection. Prior to joining CrowdStrike, Dan worked in technical roles at Intel Security (McAfee) and at GE Healthcare. Dan holds a Bachelor of Science degree from the University of Wisconsin - Madison and is now based in Minneapolis, Minnesota.

View all sessions by Dan Larson

Matthew Maglieri

CISO, Ruby, parent company of Ashley Madison

Matthew Maglieri is the Chief Information Security Officer at Ruby, the parent company to several leading online dating brands including AshleyMadison.com. He is responsible for leading the architecture, development, and ongoing operation of Ruby's enterprise security program. Prior to joining Ruby, he served in a leading role developing Mandiant's Canadian practice and delivering a diverse range of strategic and technical consulting services including offensive red team operations, security operations center enhancement, and strategic transformation engagements.

View all sessions by Matthew Maglieri

Ravikiran Avvaru

CISO, Toyota Kirloskar

RaviKiran Avvaru currently serves as CISO at Toyota India. Prior to being named CISO, he was Head of Information Security and Compliance at Toyota Motor. Prior to joining Toyota, Avvaru was Head of Security and Compliance at ABB, and Deputy Manager, Information Systems Department at Bombay Stock Exchange Limited. .

View all sessions by Ravikiran Avvaru

Subhro Dey

Assistant Vice President, Governance & Oversight, Wells Fargo

View all sessions by Subhro Dey

Satyavathi Divadari

Director - Cyber Security, Cognizant Technology Solutions

View all sessions by Satyavathi Divadari

Minatee Mishra

Director, Product Security

MInatee Mishra currently serves as Security Center of Excellence (ScoE) leader at Philips HealthTech. Having spent nearly 15 years in Philips, she is credited with the successful creation of the Security Center of Excellence.

View all sessions by Minatee Mishra

Sridhar Sidhu

Senior Vice President - Enterprise Information Security, Wells Fargo

Sridhara Sidhu currently serves as Head - Infosec Services and Regulatory Compliance and Risk Management for Wells Fargo where he has dual reporting to Global CISO and Global Chief Compliance Officer. Prior to Wells Fargo, he worked at Deloitte in various risk consulting groups (Financial Reporting Risk advisory, Corporate Governance, Finance Transformation advisory etc.) and as a regional lead of Finance Transformation Practice.

View all sessions by Sridhar Sidhu

Naavi Vijayashankar

Cyber Law Expert

Naavi Vijayshankar is an Information Assurance consultant. Though not a lawyer, he is a pioneer and an acknowledged expert in the field of Cyber Laws. Vijayshankar is an accomplished author and has led an effort toward mass awareness of Cyber Law. He is also a visiting/guest faculty at Nalsar University in Hyderabad, the School of Excellence-National Law School in Bangalore as well as KLE Soceity's Law College in Bangalore and Hubli, JSS College in Mysore . He was also involved in the training of TN Police in Cyber Crimes and assisting the Police in Cyber Evidence Collection and Management. He is the founder secretary of Cyber Society of India, Founder Trustee of International Institute of Information Technology Law, and Founder Chairman of Digital Society Foundation.

View all sessions by Naavi Vijayashankar

Debasish Mukherjee

Country Director India & SAARC, SonicWall

View all sessions by Debasish Mukherjee

Mark Rasch

Principal, Rasch Technology and Cyber Law; former Chief Security Evangelist, Verizon

Rasch is an attorney and author, working in the areas of corporate and government cybersecurity, privacy and incident response. He is currently the chief security evangelist for Verizon Communications after having been VP, deputy general counsel, and chief privacy and data security officer for SAIC. From 1983-1992, Rasch worked at the U.S. Department of Justice within the Criminal Division's Fraud Section. Rasch earned a J.D. in 1983 from State University of New York at Buffalo and is a 1976 graduate of the Bronx High School of Science.

View all sessions by Mark Rasch

Al Pascual

SVP, Research Director Head of Fraud & Security, Javelin Strategy and Research

As SVP of Research, Al Pascual leads Javelin's Advisory Services and Custom Research businesses. He provides clients actionable insights on a variety of fraud and security issues, acts as a partner in developing strategies for managing risk, and identifies and raises awareness of future threats and solutions. He researches a range of topics, including the applicability of biometrics in banking and payments, the effect of data breaches on the integrity of consumer identities, the relationship between identity fraud and loyalty, and the best methods for securing payment data and transactions. Pascual has presented findings from Javelin's rigorous, industry-leading research at conferences around the world, including BAI, CARTES, Money20/20, NACHA and RSA. He has also provided commentary on fraud and security issues to American Banker, Bloomberg, CNNMoney, Fox Business, Reuters, The New York Times, The Wall Street Journal, The Washington Post, and Wired. Previously Pascual held risk management roles at HSBC, Goldman Sachs, and FIS. He is a member of the Association of Certified Fraud Examiners, the International Association of Financial Crimes Investigators, and the Federal Reserve Secure Payments Task Force.

View all sessions by Al Pascual

Nitin Bhatnagar

Associate Director-India, PCI Security Standards Council

View all sessions by Nitin Bhatnagar

Samir Dani

Assistant General Manager - Information Security Group, ICICI Bank

View all sessions by Samir Dani

Ashutosh Jain

CISO, Axis Bank

Ashutosh Jain currently serves as CISO with Axis Bank. He provides strategic direction and delivers cyber security, information risk and security governance at Axis Bank, including eight international branches. His earlier career has spanned across: Barclays Bank, where he headed multiple roles for technology risk, information risk for India and emerging markets, a cluster of 14 countries across Asia and Africa; Nomura India, where he headed the technology governance, global IT security operations, global IT security engineering and Asia technology risk teams for the global investment bank, based out of India; AXA Business Services, where he managed enterprise risk as CISO; Bank of America, where he established the technology audit function for South Asia, and was responsible for bank audits in the South Asia and Far East Region; PricewaterhouseCoopers, where he was responsible for operations and systems risk management services for various engagements in business process controls, application reviews and IS security.

View all sessions by Ashutosh Jain

Krishna Sastry Pendyala

Exec. Dir., Cyber Security Incident Response & Digital Forensic Service, PwC

Mr Krishna Sastry Pendyala currently serves as Executive Director, Advisory, Forensic Technology Services, PwC India. His prior experience includes Global Head, Fraud Management & Digital Forensics for Tata Consultancy Services, 23 years with Ministry of Home Affairs, Govt. of India as Forensic Scientist and handled a large number of Cyber Investigations of national and international importance. Sasty's core area of expertise includes off-line & online Digital Forensic investigations, Cyber security breach investigation, Incident response Management, Malware analysis and e-discovery. Through INTERPOL General Secretariat, Lyons & national central bureau (INTERPOL) India, Sastry as a subject matter expert trained Law Enforcement officials of more than 95 countries in Asia, Africa and Pacific regions in Electronic Fraud & cyber-crime investigations and Digital Forensics.

View all sessions by Krishna Sastry Pendyala

Brijesh Singh

Inspector General of Police (Cyber) and CISO, Maharashtra

Singh heads the cybersecurity department of Maharashtra State. He is an elite Indian Police Service officer with prior stint as special inspector general of police with the CID. He successfully implemented Crime Criminal Tracking and Networking Systems (CCTNS) project in Maharashtra State. Due to his efforts, Maharashtra implemented path-breaking IT schemes like online first information reports (FIRs), advanced forensics, and digitization of the state's crime records. Singh is also the designated Special Inspector General of Police - Women Atrocity Prevention, a special authority created by the Maharashtra government.

Further, the chief minister of Maharashtra Devendra Fadnavis has appointed Singh as the head of the state's information and publicity department, as well. He is the first IPS officer to hold this post. Singh subsequently took charge as the Chief information Security Officer (CISO) on June 18, 2016. Singh has also been designing apps for mobile platforms and holds several patents. He constantly contributes to the evolving software innovation space, and is the author of "Quantum Siege," which is among the top ten books on online ecommerce portal, Amazon.

View all sessions by Brijesh Singh

Ronald Raether

Partner, Troutman Sanders

Ron Raether leads the Cybersecurity, Information Governance and Privacy practice and is a partner in the Financial Services Litigation practice group at Troutman Sanders. Ron is known as the interpreter between businesses and information technology, and has assisted companies in navigating federal and state privacy laws for over twenty years. Raether's understanding of technology led him to be involved in legal issues that cross normal law firm boundaries, including experience with data security, data privacy, patent, antitrust, and licensing and contracts. This experience allows Raether to bring a fresh and creative perspective to data compliance issues with the knowledge and historical perspective of an industry veteran.

View all sessions by Ronald Raether

Jay Kramer

Partner, Data Privacy and Cyber Security Practice Group, Lewis Brisbois Bisgaard & Smith; former Supervisory Special Agent, FBI - NY Cyber Division

Jay Kramer is a partner with the firm Lewis Brisbois Bisgaard & Smith, specializing in Data Privacy and Cyber Security. Prior to moving to the private sector, Kramer served as supervisory special agent, FBI, New York division. After working for several years in the FBI's racketeering and organized crime section, Kramer joined the FBI's legal bureau in New York. As an FBI attorney, Kramer helped analyze and resolve complex issues of law and policy in criminal and national security investigations. In 2010, Kramer accepted an assignment in the FBI's Office of Congressional Affairs in Washington, D.C. There he worked closely with several congressional committees on issues related to proposed changes in federal law. In 2013, to insure the FBI's readiness to address a growing portfolio of cyber investigations, Kramer was called upon to help stand up the FBI's Cyber Law Unit in Chantilly, VA. In 2014, Kramer returned to the New York office, where he remained until he left the bureau in 2016.

View all sessions by Jay Kramer

Georgea Mancuso

Special Counsel, Black Marjieh & Sanford LLP

Georgea Mancuso currently serves as Special Counsel for Black Marjieh & Sanford LLP. Her practice focuses on cyber risk, privacy and data security. She has extensive experience handling all types of cyber matters having worked as a senior analyst in the Cyber, Media and Technology Errors and Omissions Department at AIG as well as an Assistant Vice President for underwriting in the Cyber, Media and Technology Errors and Omissions Department at Swiss Re. Mancuso has worked closely with numerous business and in-house legal departments to evaluate and implement proactive cyber security controls and risk management procedures based on the NIST Cybersecurity Framework.

View all sessions by Georgea Mancuso

Connie Barrera

Director of Information Assurance and CISO, Jackson Health System

Connie Barrera is the Chief Information Security Officer at Jackson Health System. As the CISO, she is responsible for security architecture as well as developing policy and standards related to privacy, confidentiality, integrity, and availability of the IT services throughout the enterprise. To this end, Barrera develops and maintains risk management, security awareness, and compliance programs to effectively deal with the implications of legislated requirements that impact security for the institution. This includes but is not limited to HIPAA, PCI, FDA Part 11 and the Red Flag Rules. With over 24 years of experience in IT, she has spent considerable time in almost every role within IT, including endpoint support and architecture, systems engineering and architecture, as well as her current role in security.

View all sessions by Connie Barrera

Richard Conti

Information Security Specialist, The Children's Hospital of Philadelphia

Richard Conti is currently an Information Security Specialist at The Children's Hospital of Philadelphia where he is a subject matter expert in risk management, security incident investigations, security operations center (SOC) and threat and vulnerability management. In previous roles, he has served as IT support manager, system administrator, support specialist, and security analyst in the healthcare, academic, real estate, and radio broadcasting industries over the last 15 years.

View all sessions by Richard Conti

Nicholas Heesters

OCR Health Information Privacy & Security Specialist, HHS

Nicholas Heesters is a certified information privacy professional with over 25 years of experience supporting technology and information security efforts in many diverse industries including financial services, government, defense, education and healthcare. He earned a Master of Engineering in Computer and Software Engineering from Widener University and his Juris Doctor from the Widener University School of Law. Currently, Heesters works for the U.S. Department of Health and Human Services Office for Civil Rights supporting HIPAA compliance and enforcement activities.

View all sessions by Nicholas Heesters

Anahi Santiago

CISO, Christiana Care Health System

As Christiana Care Health System's Chief Information Security Officer, Anahi Santiago is charged with providing strategic direction and oversight to a comprehensive security program, policy development, standards and controls implementation, training and awareness, regular risk assessment and mitigation, as well as partnerships with internal and external auditors. She also regularly collaborates with state and federal regulatory bodies and actively contributes to proposed state and federal regulations that govern privacy and information security. Before joining Christiana, Santiago provided similar support for the Albert Einstein Healthcare Network at a director level.

View all sessions by Anahi Santiago

Christopher Kruegel

Co-founder and CEO, Lastline

Chistopher Kruegel currently serves as CEO of Lastline. As Co-Founder of the company, he leads their strategic direction on computer and communications security, with an emphasis on malware analysis and detection, web security and intrusion detection. He is also a professor of computer science at UC Santa Barbara and has published more than 100 peer-reviewed papers in top computer security conferences. Kruegel regularly serves on program committees of leading computer security conferences including: Program Committee Chair of the Usenix Workshop on Large Scale Exploits and Emergent Threats (LEET, 2011); the International Symposium on Recent Advances in Intrusion Detection (RAID, 2007); the ACM Workshop on Recurring Malcode (WORM, 2007), and the ACM Conference on Computer and Communications Security (CCS 2016).In addition, Kruegel was the head of a working group that advised the European Commission (EC) on defenses to mitigate future threats against the Internet and Europe's cyber-infrastructure.

View all sessions by Christopher Kruegel

Al Pascual

SVP, Research Director Head of Fraud & Security, Javelin Strategy and Research

As SVP of Research, Al Pascual leads Javelin's Advisory Services and Custom Research businesses. He provides clients actionable insights on a variety of fraud and security issues, acts as a partner in developing strategies for managing risk, and identifies and raises awareness of future threats and solutions. He researches a range of topics, including the applicability of biometrics in banking and payments, the effect of data breaches on the integrity of consumer identities, the relationship between identity fraud and loyalty, and the best methods for securing payment data and transactions. Pascual has presented findings from Javelin's rigorous, industry-leading research at conferences around the world, including BAI, CARTES, Money20/20, NACHA and RSA. He has also provided commentary on fraud and security issues to American Banker, Bloomberg, CNNMoney, Fox Business, Reuters, The New York Times, The Wall Street Journal, The Washington Post, and Wired. Previously Pascual held risk management roles at HSBC, Goldman Sachs, and FIS. He is a member of the Association of Certified Fraud Examiners, the International Association of Financial Crimes Investigators, and the Federal Reserve Secure Payments Task Force.

View all sessions by Al Pascual