
Next-Generation Technologies & Secure Development
Up and coming evolutionary changes and paradigm shifts in security technology solutions and services; in addition to news, and resources for secure software development lifecycle and application security programs for built-in security at the development phase.
Next-Generation Technologies & Secure Development

Kim Green
Sr. Director IT Security and Compliance, Rodan and Fields
Kim has served in several executive and senior-level IT and InfoSec roles, and as an advisor and investor to several security and healthcare companies. With over 25 years' experience in both private and public healthcare sectors, Kim has consulted federal and state government healthcare agencies and private companies on security and privacy best practices.
Kim routinely speaks internationally on security and privacy topics. In 2013, she spoke to members of the European Commission in Brussels on behalf of the COCIR European Trade Association providing recommendations for GDPR.
Kim studied computer software engineering and computer science at Brandeis University and Cal Lutheran University. She also served in the United States Army and was awarded the Army Achievement Medal for her exemplary service

Kevin Murphy
Senior Manager of Enterprise Security, T-Mobile
Kevin was the VP of Cybersecurity Operations and Governance at IOActive.com, a retired US Air Force intelligence officer, and the former Director of Windows Security Architecture at Microsoft with over 25 years of experience in threat intelligence and information security. Kevin holds the CISM, CISSP, and CGEIT security certifications.

Jim Weaver
CIO, State of North Carolina
Jim Weaver was appointed Director and State CIO for Washington Technology Solutions in December 2018. Jim has over 32 years of experience in the IT industry, having served in varying management and technical positions, most notably as the Commonwealth of PA's Chief Technology Officer, as well as Chief Technology Officer and Deputy Chief Information Officer for the commonwealth's Departments of Human Services, Aging and Insurance.
During his tenure, he had responsibility for planning, directing, and evaluating Commonwealth IT operations and was a key contributor for the IT shared services transformation effort to align technology staff and services into functional matrix-based teams. In his agency roles, Jim was responsible for planning, directing and evaluating the IT operations of the three agencies, which included mainframe and distributed systems platforms, data base design and application/software development, telecommunications, IT security and business intelligence.
Jim has proven expertise with successful large scale modernization efforts with an enterprise approach to technology and information security management - many of these efforts have been nationally recognized by NASCIO (2008, 2013, and 2014) and Computerworld Honors (2010 and 2013). Jim holds numerous ITIL certifications and earned his Certified Government Chief Information Officer qualification from Harrisburg University. Jim is also an active member of the armed forces serving in the Pennsylvania Army National Guard with over 33 years' experience in personnel information management systems.

Justin Fier
Director of Cyber Intelligence and Analytics, Darktrace
Justin Fier is one of the US's leading cyber intelligence experts, and holds the position of Director for Cyber Intelligence & Analytics at Darktrace. His insights on cyber security and artificial intelligence have been widely reported in leading media outlets, including the Wall Street Journal, CNN, The Washington Post, and VICELAND. With over 10 years of experience in cyber defense, Fier has supported various elements in the US intelligence community, holding mission-critical security roles with Lockheed Martin, Northrop Grumman Mission Systems and Abraxas. He is also a highly-skilled technical specialist, and works with Darktrace's strategic global customers on threat analysis, defensive cyber operations, protecting IoT, and machine learning.

James Brotsos
Product Manager, Developer Experience, Checkmarx
James Brotsos serves as a Product Manager, Developer Experience at Checkmarx. With over 15 years of software development experience, James has previously held roles at large organizations including NASA, where he wrote source code for the real-time operating system that powers the Mars Curiosity Rover.
James has a particular passion for architecting automated solutions that are effective in driving security measures for DevOps organizations, helping them achieve their DevSecOps goals. In his spare time, he volunteers mentoring computer science high school students in San Francisco, running the Checkmarx User Group, and participating in hackathons.


Justin Fier
Director of Cyber Intelligence and Analytics, Darktrace
Justin Fier is one of the US's leading cyber intelligence experts, and holds the position of Director for Cyber Intelligence & Analytics at Darktrace. His insights on cyber security and artificial intelligence have been widely reported in leading media outlets, including the Wall Street Journal, CNN, The Washington Post, and VICELAND. With over 10 years of experience in cyber defense, Fier has supported various elements in the US intelligence community, holding mission-critical security roles with Lockheed Martin, Northrop Grumman Mission Systems and Abraxas. He is also a highly-skilled technical specialist, and works with Darktrace's strategic global customers on threat analysis, defensive cyber operations, protecting IoT, and machine learning.

Patrick Vowles
Team Lead - North America Marketing, IBM Security
Patrick has over 25 years of hands-on IT, product management and marketing experience, gained from developing and deploying innovative networking, security and compliance solutions. After several years in support and technical sales in the UK for key LAN/WAN vendors, he moved to the US to support network infrastructure sales in New York City. Later at a global ISP, he product managed V1.0 of an entire managed security and remote access service, much of which is still in service today. While at RSA he developed continuous monitoring and GRC for cloud offerings, while contributing to such projects as the Cloud Security Alliance Consensus Assessment Initiative. Patrick is now Team Lead for North America Marketing at IBM Security, helping to shape messaging on hybrid multi cloud and OT security.

George Nastasi
Associate Partner, Security Intelligence and Operations Consulting, IBM
George leads the IBM Security Intelligence and Operations Consulting practice in Canada. He has over 15 years of extensive experience in security operations working with partners and clients across North America and Europe. As a lead practitioner and subject matter expert, George works directly with organizations in a wide range of industry segments implementing technologies, including SIEM and SOAR, processes, organizational structure, and governance to manage cybersecurity threats and mitigate risk with quantifiable measures. Currently, George is collaborating with global teams to re-align threat management approach specifically for Cloud operations.

Samer Faour
Sales Engineer, Exabeam
Faour is an Information Security and Risk Professional at Exabeam, with over 11 years of experience in information security, risk management, and consulting. He has a breadth of experience in variety of vertical industries covering various stages of the security lifecycle from designing and architecting solutions as a vendor/consultant, to implementing and operationalizing them as a consultant/SI/MSSP, to using them on a daily basis as a customer/end-user. Mr. Faour is a professional engineer with an M.Eng. Degree in Integrated Security Technologies and Policies from the University of Toronto, and has several certifications including CISSP, CEH, CIH, A+, and many vendor certifications.

Jeffrey Brown
CISO, State of Connecticut
Brown helps companies and government agencies understand their security risk and implement practical, cost-effective security programs. He partners with C-level executives, business leaders, regulators and auditors to build and sustain best-in-class cybersecurity programs.

Patrick Ford
CISO, Americas, Schneider Electric
Patrick Ford serves as the Chief Information Security Officer, Americas Region of Schneider Electric. Patrick started at Schneider Electric in November of 2015. Patrick currently resides in the Greater New York City Area.

Rocco Grillo
Managing Director Global Cyber Risk & Incident Response Services, Alvarez & Marsal
Rocco Grillo currently serves as a Managing Director with Alvarez & Marsal's Disputes and Investigations Global Cyber Risk Services practice. He focuses on leading multi disciplinary teams who provide cyber risk and incident response services to clients globally. He has been a trusted partner of multiple government agencies, including the FBI and Secret Service, where his cyber expertise was instrumental in investigating and resolving a variety of cyber based crimes. Grillo's experience and understanding of commercial sector challenges and national security objectives have influenced the development of national policy in cybersecurity, including the NIST Cybersecurity Framework. Prior to joining A&M, he held leadership positions at professional services organizations including Stroz Friedberg/Aon Cyber Solutions, where he served as the Global Leader of the firm's Cybersecurity Services. Prior to Aon Cyber Solutions, Grillo was a founding member of Protiviti Inc's Cybersecurity Practice where he led the development of the firm's Global Incident Response and Forensics Investigations Practice. He also assisted with the development of RedSiren Technologies, one of the first managed security services firm that evolved out of Carnegie Mellon. Earlier in his career, he held positions of increasing responsibility with Lucent Technologies and Bell companies. He is an affiliate board advisor for the Retail & Hospitality ISAC and has assisted with other thought leadership initiatives for the FS-ISAC; and assists in creating its annual Compromise Against Payments Systems (CAPS), the simulated industry cyberattack exercise.. He has served on the CLM Cyber Liability Council, the Board of Directors of the NY Metro ISSA Chapter, the IT Policy Compliance Group, and the (i 4) International Information Integrity Institute Research Steering Committee.

Ameya Talwalkar
Co-Founder and Chief Product Officer, Cequence Security
Ameya heads the product and engineering teams at Cequence and works closely with customers to identify new use cases and new attack vectors that can be addressed with AI and machine learning technologies. He has built strong engineering teams specializing in enterprise and consumer security in Silicon Valley, Los Angeles, Madrid, Pune, and Chengdu. Before co-founding Cequence Security, he was Director of Engineering at Symantec, where he was responsible for its anti-malware software stack that leverages network Intrusion prevention and behavior and reputation technologies, and anti-virus engines. Under Ameya's leadership, Symantec developed an advanced version of network intrusion prevention technology that blocks more than two billion threats a year. Ameya holds a Bachelor of Engineering in Electrical Engineering from the University of Mumbai's Sardar Patel College of Engineering (SPCE).

Paul Dant
Vice President of Product Management, Digital.ai
Paul is Vice President of Product Management for Digital.ai's security solutions. As a security researcher who has performed offensive security testing of facilities ranging from nuclear energy plants to hospitals, Paul has spent his career helping organizations better understand and address the inherent challenges around making software secure.

Diana Kelley
CTO and Founding Partner, SecurityCurve & former Cybersecurity Field CTO, Microsoft
Diana Kelley is the Cybersecurity Field CTO for Microsoft and a cybersecurity architect, practitioner, executive advisor and author. At Microsoft, she leverages her 25+ years of cyber risk and security experience to provide advice and guidance to CSOs, CIOs and CISOs at some of the world's largest companies and is a contributor the Microsoft Security Intelligence Report (SIR). She was the Global Executive Security Advisor at IBM Security where she built and managed the IBM Security Research Community Newsroom process and was a regular contributor to IBM X-Force research. Kelley is a faculty member with IANS Research, an Industry Mentor at the CyberSecurity Factory and a guest lecturer at Boston College's Master of Science in Cybersecurity program. She serves on the Board of Directors at the non-profit Sightline Security, was an IEEE "Rock Star of Risk" in 2016, speaks frequently at major conferences and co-authored the book Cryptographic Libraries for Developers.

Eric Bucher
Field Solutions Engineer, Cequence Security
Eric Bucher has over 15 years of experience in the security industry with a technical concentration in financial fraud, advanced persistent threats, forensics, exfiltration, DLP, and overall attack surfaces. His current career has taken him into the realm of bot construction and different attack modalities currently conducted through machine automation. Bucher now specializes in the use of Machine Learning algorithms and Artificial Intelligence as leverage and valuable countermeasures against this ever-evolving threat to online presences.

Chris Calvert
Co-Founder, VP of Product Strategy, Respond Software
Chris has over 30 years of experience in defensive information security: 14 years in the defense and intelligence community and 17 years in the commercial industry. He has worked on the Defense Department Joint Staff and held leadership positions in both large and small companies, including IBM and HPE. He has designed, built and managed global security operations centers and incident response teams for six of the global Fortune-50. As he often says, if you have complaints about today's security operations model, you can partially blame him. It's from his first-hand experience in learning the limitations of the man vs. data SecOps model that Chris leads product design and strategy for Respond Software.

Chris Hallenbeck
CISO, Americas, Tanium
Chris Hallenbeck is CISO for the Americas at Tanium. He provides security leadership and operational insight gained from over 20 years in both public and private sector. Hallenbeck came to Tanium after almost 7 years of government service at the U.S. Computer Emergency Readiness Team (US-CERT). At US-CERT he designed and built their incident response capabilities, and restructured the team's focus toward strategic remediation with a goal of building more resilient organizations. Over countless IR engagements both with government and private sector victims a common theme emerged: a lack of emphasis on IT security hygiene. Prior to joining US-CERT, Chris worked for RSA Security/EMC as a security engineer and with AOL/Time Warner on their global incident response team. He started his career as a Unix sys-admin at Binghamton University.
Session Contributors
former Regulator, U.S. Department of Health and Human Services; Partner, Davis Wright Tremaine LLP
Read BioDirector of Technical Consultancy and Market Solutions, VASCO Data Security
Read BioResearch Vice President, Gartner GTP Security and Risk Management Strategies
Read BioSenior Director, Product Management, CA Technologies Advanced Authentication Product Line
Read BioBusiness Development Manager, Financial & Banking, ADT Security Services, Inc.
Read Bioformer Programs & Operations Manager, Health Information Trust Alliance; Senior UI Engineer, Pindrop
Read BioSenior Product Evangelist, Phone Authentication, RSA, The Security Division of EMC
Read BioPrincipal Threat Defense Architect, Forward-Looking Threat Research, Trend Micro
Read BioPayments Risk Expert, Retail Payments Risk Forum, Federal Reserve Bank of Atlanta
Read Bioformer Dir. of Incident Response, Expedia; Principal Consultant, Public Sector Cyber Security Contracting Services
Read BioFormer Deputy Director of Health Information Privacy, Department of Health and Human Services' Office of Civil Rights
Read BioSenior Director - IT and Head of Service Delivery - Banking and Payments, Fidelity National Information Services
Read BioCTO and Founding Partner, SecurityCurve & former Cybersecurity Field CTO, Microsoft
Read BioSVP & Chief Advisor, Payments & Cybersecurity Policy, American Bankers Association
Read BioDeputy Chief, Criminal Division, U.S. Attorney's Office, District of New Jersey
Read BioManager Cryptographic Controls and Architecture Team (CCAT), Fifth Third Bank
Read BioFormer Head of Airborne Platform Systems Cyber Security, Lockheed Martin Aeronautics
Read BioClinical Asst Professor of Management, Kelly School of Business - Indiana University-Bloomington
Read BioInsider Threat Researcher, Carnegie Mellon University CERT Insider Threat Center
Read BioChief Information Security Officer, Head of Cyber Security, ABB Enterprise Software
Read BioVisiting Prof., Nottingham Trent University; Advisory Board, Research Centre in Cyber Security (KirCCS), University of Kent and Fmr Royal Air Force Security and Counter Intelligence
Read BioFormer CISO, Interac Corp and Head of Mobile Platform Engineering and Security, Barclays Africa
Read BioSenior Product Marketing Manager, Identity and Access Assurance Group - RSA, The Security Division of EMC
Read BioGeneral Manager-Cyber Defense Center and Head-SoC & Data Security, Reliance Industries
Read BioCloud Portfolio Strategist, Financial Services, CenturyLink Technology Solutions
Read BioActing Manager - Security & Integration Group, National Institute of Standards and Technology (NIST)
Read BioCo-Lead, Cybersecurity Preparedness and Response practice, Alston and Bird, and Former DOJ Cybercrime Prosecutor
Read BioPracticing Chief Healthcare CISO, and Cybersecurity and Transformation Strategist & Evangelist
Read BioFormer Director of Intelligence for AFCYBER (Air Force Cyber Command) and 24th Air Force (Retired)
Read BioChief of the Policy and Accreditation Branch for the Space and Missile Defense Command (SMDC)
Read BioChief Counterintelligence Expert, Carnegie Mellon University CERT Insider Threat Center
Read BioCISO, Proactive Cyber Security; formerly Senior Vice President of Cybersecurity, HSBC
Read BioDirector of Product Marketing for Web Application Security Products, Imperva
Read BioManaging Director - Visa & Check Loss Prevention Group, Charles Schwab
Read BioPresident & CEO, Global Cyber Alliance; former Deputy Undersecretary for Cybersecurity, Department of Homeland Security; former CISO, Sony
Read BioDirector of Product Marketing, Fraud and Authentication Management, NICE Actimize
Read BioExecutive Vice President, Q6 Cyber and Founder of the Cyber Threat Intelligence Division of the US Secret Service
Read BioManaging Director Global Cyber Risk & Incident Response Services, Alvarez & Marsal
Read BioChief Blockchain Architect, HyFi Blockchain
Read BioDirector of Innovation Programs within the Office of the Chief Technologist, Red Hat
Read BioSVP and Head of InfoSec Services Group, Wells Fargo
Read BioSpecial Agent, United States Secret Service, Criminal Investigative Division Sector Specialist - Banking and Finance
Read BioBusiness Development Manager - ATM Security, Financial Services, ADT Security
Read BioFormer Chief IP Networks Partner, R&D and Head of Service Platform, Vodafone
Read Bio