Incident & Breach Response

Matthew Maglieri

CISO, Ruby, parent company of Ashley Madison

Matthew Maglieri is the Chief Security Officer at Ruby, the parent company to several leading online dating brands including AshleyMadison.com. He is responsible for leading the architecture, development, and ongoing operation of Ruby's enterprise security program. Prior to joining Ruby, he served in a leading role developing Mandiant's Canadian practice and delivering a diverse range of strategic and technical consulting services including offensive red team operations, security operations center enhancement, and strategic transformation engagements.

View all sessions by Matthew Maglieri

Anna Delaney

Director, ISMG Productions

An experienced broadcast journalist, Delaney conducts interviews with senior cybersecurity leaders around the world. Previously, she was editor-in-chief of the website for The European Information Security Summit, or TEISS. Earlier, she worked at Levant TV and Resonance FM and served as a researcher at the BBC and ITV in their documentary and factual TV departments.

View all sessions by Anna Delaney

Claire Hatcher

Global Head of Fraud Prevention, Kaspersky

Claire Hatcher currently serves as Global Lead for Kaspersky's Fraud Prevention division. Prior to joining Kaspersky, she worked at RSA (part of Dell Technologies) for 6 years, where she had a number of roles within their fraud and risk intelligence business unit, including leading their business operations and sales strategy functions. Hatcher has worked in cybersecurity for over 15 years, specialising in fraud prevention for the past decade. Throughout her career in fraud prevention she has developed many relationships within the financial services sector, as well as with online retailers and other industries both within Europe and worldwide. This cross vertical and cross geographical experience provides a deep understanding of how fraud threats and trends emerge, develop and evolve.

View all sessions by Claire Hatcher

Ravikiran Avvaru

Head-IT & Security, APAC, ME & Africa, Apollo Tyres

RaviKiran Avvaru currently serves as CISO at Toyota India. Prior to being named CISO, he was Head of Information Security and Compliance at Toyota Motor. Prior to joining Toyota, Avvaru was Head of Security and Compliance at ABB, and Deputy Manager, Information Systems Department at Bombay Stock Exchange Limited.

View all sessions by Ravikiran Avvaru

Subhro Dey

Assistant Vice President, Governance & Oversight, Wells Fargo

Dey is asistant vice president, governance and oversight at Wells Fargo. He has 14 years of experience in people management, risk and control, information Security and audit. Prior to joining Welss Fargo, Dey was with Barclays Bank where he was resposible for designing various audit strategy memos for APAC. In this role he also developed a risk givernance framework.

View all sessions by Subhro Dey

Satyavathi Divadari

Director - Cyber Security, Cognizant Technology Solutions

Divadari is director of cybersecurity at Cognizant Technology Solutions. Previously, she worked at Wells Fargo, Capgemini, IBM and Tata Communications. She has more than 20 years of experience in security at banking, telecom and IT/ITES industries.

View all sessions by Satyavathi Divadari

Minatee Mishra

Director, Product Security

MInatee Mishra currently serves as Security Center of Excellence (ScoE) leader at Philips HealthTech. Having spent nearly 15 years in Philips, she is credited with the successful creation of the Security Center of Excellence.

View all sessions by Minatee Mishra

Sridhar Sidhu

SVP and Head of InfoSec Services Group, Wells Fargo

Sidhu leads the Information and Cyber Security Services Group at Wells Fargo India reporting in to the Global Chief Information Security Officer. Sidhu joined Wells Fargo in 2014. Prior to joining Wells Fargo, Sidhu served as “Risk Management Fellow (Banking and Securities)” at Deloitte. As Regional Leader of the Finance Risk Transformation Services practice of the firm, Sidhu led global M&A projects in the financial services sector.

View all sessions by Sridhar Sidhu

Naavi Vijayashankar

Cyber Law Expert

Naavi Vijayshankar is an Information Assurance consultant. Though not a lawyer, he is a pioneer and an acknowledged expert in the field of Cyber Laws. Vijayshankar is an accomplished author and has led an effort toward mass awareness of Cyber Law. He is also a visiting/guest faculty at Nalsar University in Hyderabad, the School of Excellence-National Law School in Bangalore as well as KLE Soceity's Law College in Bangalore and Hubli, JSS College in Mysore . He was also involved in the training of TN Police in Cyber Crimes and assisting the Police in Cyber Evidence Collection and Management. He is the founder secretary of Cyber Society of India, Founder Trustee of International Institute of Information Technology Law, and Founder Chairman of Digital Society Foundation.

View all sessions by Naavi Vijayashankar

Debasish Mukherjee

Vice President, Regional Sales APAC, SonicWall Inc

Mukherjee is vice president, regional sales, APAC at SonicWall. Mukherjee is a poven visionary and strategic thought leader that translates customer insights into integrated business strategies to drive profitable sales and increased wallet share. He is a passionate cyber security sales leader with expertise in development and scaling up of new business from ground zero to new highs.

View all sessions by Debasish Mukherjee

Mark Rasch

Principal, Rasch Technology and Cyber Law; former Chief Security Evangelist, Verizon

Rasch is an attorney and author, working in the areas of corporate and government cybersecurity, privacy and incident response. He is currently the chief security evangelist for Verizon Communications after having been VP, deputy general counsel, and chief privacy and data security officer for SAIC. From 1983-1992, Rasch worked at the U.S. Department of Justice within the Criminal Division's Fraud Section. Rasch earned a J.D. in 1983 from State University of New York at Buffalo and is a 1976 graduate of the Bronx High School of Science.

View all sessions by Mark Rasch

Al Pascual

SVP - Enterprise Risk Solutions, Sontiq, a Transunion Company

As SVP of Research, Al Pascual leads Javelin's Advisory Services and Custom Research businesses. He provides clients actionable insights on a variety of fraud and security issues, acts as a partner in developing strategies for managing risk, and identifies and raises awareness of future threats and solutions. He researches a range of topics, including the applicability of biometrics in banking and payments, the effect of data breaches on the integrity of consumer identities, the relationship between identity fraud and loyalty, and the best methods for securing payment data and transactions. Pascual has presented findings from Javelin's rigorous, industry-leading research at conferences around the world, including BAI, CARTES, Money20/20, NACHA and RSA. He has also provided commentary on fraud and security issues to American Banker, Bloomberg, CNNMoney, Fox Business, Reuters, The New York Times, The Wall Street Journal, The Washington Post, and Wired. Previously Pascual held risk management roles at HSBC, Goldman Sachs, and FIS. He is a member of the Association of Certified Fraud Examiners, the International Association of Financial Crimes Investigators, and the Federal Reserve Secure Payments Task Force.

View all sessions by Al Pascual

Nitin Bhatnagar

Associate Director-India, PCI Security Standards Council

Bhatnagar, associate director, PCI Security Standards Council leads the Council’s efforts in increasing adoption and awareness of the PCI Security Standards in India. In this role, Bhatnagar works closely with the PCI Council Management Team, affiliate members, payment brands, regulators, Merchants, Service Providers and key influencers/decision makers from payment card industry. His primary responsibilities include gathering feedback from industry leaders and driving education effort by increasing participation from India through active involvement in local and regional events, industry conferences and meetings with key stakeholders.

View all sessions by Nitin Bhatnagar

Samir Dani

Assistant General Manager - Information Security Group, ICICI Bank

View all sessions by Samir Dani

Ashutosh Jain

CISO, Axis Bank

Ashutosh Jain currently serves as CISO with Axis Bank. He provides strategic direction and delivers cyber security, information risk and security governance at Axis Bank, including eight international branches. His earlier career has spanned across: Barclays Bank, where he headed multiple roles for technology risk, information risk for India and emerging markets, a cluster of 14 countries across Asia and Africa; Nomura India, where he headed the technology governance, global IT security operations, global IT security engineering and Asia technology risk teams for the global investment bank, based out of India; AXA Business Services, where he managed enterprise risk as CISO; Bank of America, where he established the technology audit function for South Asia, and was responsible for bank audits in the South Asia and Far East Region; PricewaterhouseCoopers, where he was responsible for operations and systems risk management services for various engagements in business process controls, application reviews and IS security.

View all sessions by Ashutosh Jain

Krishna Sastry Pendyala

Exec. Dir., Cyber Security Incident Response & Digital Forensic Service, PwC

Mr Krishna Sastry Pendyala currently serves as Executive Director, Advisory, Forensic Technology Services, PwC India. His prior experience includes Global Head, Fraud Management & Digital Forensics for Tata Consultancy Services, 23 years with Ministry of Home Affairs, Govt. of India as Forensic Scientist and handled a large number of Cyber Investigations of national and international importance. Sasty's core area of expertise includes off-line & online Digital Forensic investigations, Cyber security breach investigation, Incident response Management, Malware analysis and e-discovery. Through INTERPOL General Secretariat, Lyons & national central bureau (INTERPOL) India, Sastry as a subject matter expert trained Law Enforcement officials of more than 95 countries in Asia, Africa and Pacific regions in Electronic Fraud & cyber-crime investigations and Digital Forensics.

View all sessions by Krishna Sastry Pendyala

Brijesh Singh

Additional Director General of Police, Govt. Of Maharashtra

Singh is inspector general of police-training, Govt. of Maharashtra. Previously, he was CISO in Maharashtra. He is the former IG of the Criminal Investigation Department. He is also designated inspector general of police - Women Atrocity Prevention and Cybercrime, a special authority created by the Maharashtra government to tackle cyberthreats.

View all sessions by Brijesh Singh

Ronald Raether

Partner, Partner at Troutman Pepper

Ron Raether leads the Cybersecurity, Information Governance and Privacy practice and is a partner in the Consumer Financial Services practice group at Troutman Pepper. Ron is known as the interpreter between businesses and information technology, and has assisted companies in navigating federal and state privacy laws for over twenty years. Ron's understanding of technology led him to be involved in legal issues that cross normal law firm boundaries, including experience with data security, data privacy, patent, antitrust, and licensing and contracts. This experience allows Ron to bring a fresh and creative perspective to data compliance issues with the knowledge and historical perspective of an industry veteran.

Ron's involvement in seminal data compliance and data use cases has helped define current standards in several areas of the law. He assisted one of the first companies required to provide notice of a data breach and has since successfully defended companies in hundreds of class actions and regulatory investigations. Ron represents clients in a broad range of technology and data privacy matters including data aggregation and analytics, mobile applications, de-identification/anonymization, including correlating data from multiple connected devices, "connected-things (IoT)," electronic crash- and consumer-reporting systems, and payment technologies. Ron also advises on pre- and post-incident compliance concerns ranging from the development of incident response plans and workflows, guiding clients through immediate forensic investigations, coordinating initial crisis management, which includes navigating clients through the maze of state and federal notification requirements, addressing post-incident aftermath, and responding to regulatory inquiries. Balancing privacy, cyber security and business functionality, Ron's approach to data governance is uniquely designed with the industry in mind as it adapts to the ever-evolving technological and legal landscape.

View all sessions by Ronald Raether

Jay Kramer

Partner, Data Privacy and Cyber Security Practice Group, Lewis Brisbois Bisgaard & Smith; former Supervisory Special Agent, FBI - NY Cyber Division

Jay Kramer is a partner with the firm Lewis Brisbois Bisgaard & Smith, specializing in Data Privacy and Cyber Security. Prior to moving to the private sector, Kramer served as supervisory special agent, FBI, New York division. After working for several years in the FBI's racketeering and organized crime section, Kramer joined the FBI's legal bureau in New York. As an FBI attorney, Kramer helped analyze and resolve complex issues of law and policy in criminal and national security investigations. In 2010, Kramer accepted an assignment in the FBI's Office of Congressional Affairs in Washington, D.C. There he worked closely with several congressional committees on issues related to proposed changes in federal law. In 2013, to insure the FBI's readiness to address a growing portfolio of cyber investigations, Kramer was called upon to help stand up the FBI's Cyber Law Unit in Chantilly, VA. In 2014, Kramer returned to the New York office, where he remained until he left the bureau in 2016.

View all sessions by Jay Kramer

Georgea Mancuso

Special Counsel, Black Marjieh & Sanford LLP

Georgea Mancuso currently serves as Special Counsel for Black Marjieh & Sanford LLP. Her practice focuses on cyber risk, privacy and data security. She has extensive experience handling all types of cyber matters having worked as a senior analyst in the Cyber, Media and Technology Errors and Omissions Department at AIG as well as an Assistant Vice President for underwriting in the Cyber, Media and Technology Errors and Omissions Department at Swiss Re. Mancuso has worked closely with numerous business and in-house legal departments to evaluate and implement proactive cyber security controls and risk management procedures based on the NIST Cybersecurity Framework.

View all sessions by Georgea Mancuso

Connie Barrera

Director of Information Assurance and CISO, Jackson Health System

Connie Barrera is the Chief Information Security Officer at Jackson Health System. As the CISO, she is responsible for security architecture as well as developing policy and standards related to privacy, confidentiality, integrity, and availability of the IT services throughout the enterprise. To this end, Barrera develops and maintains risk management, security awareness, and compliance programs to effectively deal with the implications of legislated requirements that impact security for the institution. This includes but is not limited to HIPAA, PCI, FDA Part 11 and the Red Flag Rules. With over 24 years of experience in IT, she has spent considerable time in almost every role within IT, including endpoint support and architecture, systems engineering and architecture, as well as her current role in security.

View all sessions by Connie Barrera

Richard Conti

Information Security Specialist, The Children's Hospital of Philadelphia

Richard Conti is currently an Information Security Specialist at The Children's Hospital of Philadelphia where he is a subject matter expert in risk management, security incident investigations, security operations center (SOC) and threat and vulnerability management. In previous roles, he has served as IT support manager, system administrator, support specialist, and security analyst in the healthcare, academic, real estate, and radio broadcasting industries over the last 15 years.

View all sessions by Richard Conti

Nicholas Heesters

Attorney, Senior advisor for Cybersecurity, HHS Office for Civil Rights

Nicholas Heesters is a certified information privacy professional with over 25 years of experience supporting technology and information security efforts in many diverse industries including financial services, government, defense, education and healthcare. He earned a Master of Engineering in Computer and Software Engineering from Widener University and his Juris Doctor from the Widener University School of Law. Currently, Heesters works for the U.S. Department of Health and Human Services Office for Civil Rights supporting HIPAA compliance and enforcement activities.

View all sessions by Nicholas Heesters

Anahi Santiago

CISO, Christiana Care Health System

As Christiana Care Health System's Chief Information Security Officer, Anahi Santiago is charged with providing strategic direction and oversight to a comprehensive security program, policy development, standards and controls implementation, training and awareness, regular risk assessment and mitigation, as well as partnerships with internal and external auditors. She also regularly collaborates with state and federal regulatory bodies and actively contributes to proposed state and federal regulations that govern privacy and information security. Before joining Christiana, Santiago provided similar support for the Albert Einstein Healthcare Network at a director level.

View all sessions by Anahi Santiago

Christopher Kruegel

Co-founder and Chief Product Officer, Lastline

Kruegel leads their strategic direction on computer and communications security, with an emphasis on malware analysis and detection, web security and intrusion detection. He is also a professor of computer science at UC Santa Barbara and has published more than 100 peer-reviewed papers in top computer security conferences. Kruegel regularly serves on program committees of leading computer security conferences including: Program Committee Chair of the Usenix Workshop on Large Scale Exploits and Emergent Threats (LEET, 2011); the International Symposium on Recent Advances in Intrusion Detection (RAID, 2007); the ACM Workshop on Recurring Malcode (WORM, 2007), and the ACM Conference on Computer and Communications Security (CCS 2016).In addition, Kruegel was the head of a working group that advised the European Commission (EC) on defenses to mitigate future threats against the Internet and Europe's cyber-infrastructure.

View all sessions by Christopher Kruegel

Al Pascual

SVP - Enterprise Risk Solutions, Sontiq, a Transunion Company

As SVP of Research, Al Pascual leads Javelin's Advisory Services and Custom Research businesses. He provides clients actionable insights on a variety of fraud and security issues, acts as a partner in developing strategies for managing risk, and identifies and raises awareness of future threats and solutions. He researches a range of topics, including the applicability of biometrics in banking and payments, the effect of data breaches on the integrity of consumer identities, the relationship between identity fraud and loyalty, and the best methods for securing payment data and transactions. Pascual has presented findings from Javelin's rigorous, industry-leading research at conferences around the world, including BAI, CARTES, Money20/20, NACHA and RSA. He has also provided commentary on fraud and security issues to American Banker, Bloomberg, CNNMoney, Fox Business, Reuters, The New York Times, The Wall Street Journal, The Washington Post, and Wired. Previously Pascual held risk management roles at HSBC, Goldman Sachs, and FIS. He is a member of the Association of Certified Fraud Examiners, the International Association of Financial Crimes Investigators, and the Federal Reserve Secure Payments Task Force.

View all sessions by Al Pascual

Anubhav Wahie

Business Manager- Cybersecurity, Cisco India

Anubhav Wahie currently serves as Business Manager of Cybersecurity for Cisco India. Wahie has nearly 20 years of experience in technology, aimed at cybersecurity and risk management.

View all sessions by Anubhav Wahie

Ronald Raether

Partner, Partner at Troutman Pepper

Ron Raether leads the Cybersecurity, Information Governance and Privacy practice and is a partner in the Consumer Financial Services practice group at Troutman Pepper. Ron is known as the interpreter between businesses and information technology, and has assisted companies in navigating federal and state privacy laws for over twenty years. Ron's understanding of technology led him to be involved in legal issues that cross normal law firm boundaries, including experience with data security, data privacy, patent, antitrust, and licensing and contracts. This experience allows Ron to bring a fresh and creative perspective to data compliance issues with the knowledge and historical perspective of an industry veteran.

Ron's involvement in seminal data compliance and data use cases has helped define current standards in several areas of the law. He assisted one of the first companies required to provide notice of a data breach and has since successfully defended companies in hundreds of class actions and regulatory investigations. Ron represents clients in a broad range of technology and data privacy matters including data aggregation and analytics, mobile applications, de-identification/anonymization, including correlating data from multiple connected devices, "connected-things (IoT)," electronic crash- and consumer-reporting systems, and payment technologies. Ron also advises on pre- and post-incident compliance concerns ranging from the development of incident response plans and workflows, guiding clients through immediate forensic investigations, coordinating initial crisis management, which includes navigating clients through the maze of state and federal notification requirements, addressing post-incident aftermath, and responding to regulatory inquiries. Balancing privacy, cyber security and business functionality, Ron's approach to data governance is uniquely designed with the industry in mind as it adapts to the ever-evolving technological and legal landscape.

View all sessions by Ronald Raether