
Security Operations
Planning, implementing and administrating any security program takes a great deal of planning, careful execution and flexibility. With new threats coming from new directions all the time, how can an organization plan for the future and keep up with the ever-changing threat landscape? Hear suggestions from our experts on what to consider and how to juggle the competing priorities.
Security Operations

Thomas Malta
Head of Identity and Access Management, Navy Federal Credit Union
Tom Malta's extensive career in Financial Services Technology and Cyber Security started 25+ years ago as a hands-on developer building and supporting front office trading systems for many of the top Wall St. Brokerages and Investment Banks. Shortly after moving to Goldman Sachs in 2000, he landed in Cyber Security and has been there ever since focused on building and executing Global Cyber Security Solutions. Over the past 20+ years he's led many successful IAM Programs utilizing custom build as well as off the shelf technology supporting internal, external, customer, and 3rd party/cloud identities alike.
Tom is currently the Head of IAM at Navy Federal Credit Union where he is responsible for design, development, and execution of cyber technology solutions to support the overall IAM Strategy. The team is currently focused on the firm's transformation of both workforce and member (aka customer IAM) to drive more automation, agile development, and improve the effectiveness of existing IAM and Cyber Security Controls.
As a recognized Subject Matter Expert in IAM, Tom spends a lot of his time giving back to the industry through board representations, speaking engagements, and contributing to research papers. His passion for the space is unparalleled, and enjoys staying current with emerging technologies such as biometrics, AI, ML, and next generation customer authentication solutions such as blockchain.
Prior to Navy Federal, Tom held similar Managing Director / Executive IT roles at Goldman Sachs, Morgan Stanley, BNYMellon, Wells Fargo, Ally Financial, Synchrony Financial, and Brown Brothers Harriman. Mr. Malta is also a Board Member of the Identity Defined Security Alliance, an active participant of various IAM Customer Advisory Board's, and a distinguished Ponemon Fellow

Myrna Soto
Chief Security Strategist and Trust Officer, Forcepoint
Myrna Soto is a Partner at ForgePoint Capital, serving as a member the group's Capital Investment Team. Her responsibilities include organizing and continuing to develop the ForgePoint Advisory arm of advisors that includes, the CISO, CIO, CTO communities. Prior to joining ForgePoint Capital, Soto served as Corporate SVP & GCISO (Global Chief Information Security Officer) for Comcast Corp. In this capacity, she was responsible for all security & technology risk management for the Enterprise. Her focus was to develop and maintain the highest standards of Cyber Security, network/infrastructure security, product security, data security strategies, operational efficacy of security programs, policies, and technology risk management that protect the interests of Comcast's customers, employees, critical technology assets, company brands and other critical stakeholders. Prior to joining Comcast, Soto served as CISO & Vice President of Information Technology Governance for MGM Resorts International where she was responsible for Information Security, IT Audit & Compliance, Business Analysis, PMO and the development of a Six Sigma practice. She previously held senior leadership positions with American Express, Royal Caribbean Cruise Line, Norwegian Cruise Lines and Kemper Insurance.

Brad Beutlich
Vice President of Western and LATAM Sales, Entrust
Brad Beutlich, Vice President of Western and LATAM Sales at Entrust, is an information security professional who has worked with numerous US based companies over the past 20 years, providing security solutions ranging from end-point, to data security. The last 13 years he has worked for nCipher Security providing security solutions that protect customer data, financial transactions and IoT device manufacturing. Brad holds a BS in Electrical Engineering Technology from Bradley University, and is an award-winning writer and speaker on numerous security topics. His passion as a historian is on brass-era (pre 1913) automobiles, of which he owns a 120-year-old car that runs on steam. As an avid skier, he hits the slopes on the weekends when possible. Brad resides with his wife and three children in Southern California.

Dave Martin
Senior Director, Product Management - Threat Response, Open Systems
Dave Martin brings to Open Systems more than 20 years of experience with IT security and networking technologies in a variety of engineering, product marketing, product management and business development roles. He currently serves as the Senior Director, Product Management - Threat Response responsible for market positioning, product strategy and feature definition for Open Systems' global extended detection and response services.

Dr Shane Shook
Fmr. Managing Director, PwC; Venture Consultant, ForgePoint Capital
Dr. Shane Shook
Fmr. Managing/Director at PwC, LEGC, & KPMG; Venture Consultant, ForgePoint Capital
Dr. Shane Shook is a recognized author, trainer and expert witness in cybercrime investigations, working with ForgePoint Capital and consulting to Fortune 500 clients across the US, UK and Japan.
Dr. Shook brings more than 30 years of experience in IT/risk management and cybersecurity investigations, including serving in Cryptology with the USAF, and in leadership roles at companies like PricewaterhouseCoopers and KPMG. He sits on the boards of several companies and is often called to testify on US state and federal administrative matters, and in criminal, class action, and IRS, SEC, EPA, and ITC cases.
Throughout his career, he has contributed to over a dozen patents and in conferences for technical standards definitions on security, communications, and operations continuity. He is a frequent presence in financial industry summits and periodicals concerning computer disaster recovery and application security practices. Dr. Shook holds an MBA from the University of Phoenix and a Phd. in Organization and Management, Communications Technology from Capella University. https://forgepointcap.com/team/shane-shook/

Scott McAvoy
Cloud Security Competency Lead, IBM
An information security professional with over 20 years of experience leading teams in technical environments, across highly regulated industries and delivering complex solutions. Historically I have designed, built and supported integrated security solutions on-premise or in data centres and have transformed this experience and my skills to apply to the Cloud. I have a broad understanding across all security domains and specialise in applying this agnostically to Public Cloud and DevOps environments. Having supported production workloads for UK Government on AWS from 2010 onwards I have seen the public cloud emerge and mature. Initially I supported clients to understand the cloud landscape technically and influence decision makers and accreditors to gain approval to transform and modernise workloads, whilst maintaining necessarily high levels of security. Now my team and I design and delivery solutions across all Cloud Service Providers and industries with a recent focus on enterprise level Financial Services.

Lee Harris
MSSP & Cloud Pak for Security Sales Leader, IBM EMEA
Lee Harris served eight years in the British Army before embarking on a career in IT Sales. With 26 years sales experience across IT, he has spent the last 15 years in Cyber Security. Joining IBM 6 years ago specialising in Threat Detection and Remediation, he has worked in most sectors of the market, concentrating on MSSP's for the last three. He now leads the Sales Strategy in EMEA for MSSP's and Cloud Pak for Security.

Sana Yousuf
Manager, Platform Solution Marketing, Cisco Systems, Inc.

Mitch Rosen
Principal Solutions Engineer, Keeper Security
Rosen, a Principal Solutions Engineer at Keeper Security, Inc., has over 30 years of information technology experience that spans startups to Fortune 500 companies, to federal government agencies. A veteran of the United States Navy, Mitch has worked in IT support, devOps, technical training, and solutions engineering. He has focused the last six years helping thousands of organisations better understand and reduce the risks associated with privileged accounts and password.


Sol Cates
Principal Technologist, Thales Cloud Protection & Licensing
Cates is the Principal Technologist in the CTO Office at Thales Cloud Protection & Licensing. Cates is focused on bringing new innovations to market focused on the "underlying problems" of the industry and providing security solutions to the security professional to help them be successful in today's challenging environment which they often have very little control over. As a former CISO and CIO, Cates has a unique perspective on how technology, people, process and governance impact how successful security teams can solve real-world problems. With more than 20 years of experience rooted in the intelligence community and enterprise organizations, he is sought after to speak publicly on a wide range of technology, regulatory and strategy topics.


Alex Corstorphine
Lead Security Solutions Engineer, Rapid7
Alex is a Lead Security Solutions Engineer in the cloud security practice at Rapid7, where he partners with customers to help them ensure continuous security and compliance of cloud services during their digital transformation journeys. He has close to a decade of experience in the security space. Before joining DivvyCloud, Alex worked for several firms in the security and IT operations space, including Dome9 Security, SumoLogic, and Juniper Networks. Alex holds seven certifications including (ISC)² CCSP, AWS Solutions Architect, AWS DevOps Professional and AWS Security Specialty. He received his bachelor's degree from San Jose State University.

Jeremy Snyder
Senior Director of Business Development and Solutions Engineering, DivvyCloud by Rapid7
Jeremy Snyder is the Senior Director of Business Development and Solutions Engineering for the cloud security practice at Rapid7. He leads the company's solutions architect, partner and international teams. With prior experience at AWS (first field representative in Southeast Asia's ASEAN region) and REAN Cloud (later Hitachi Vantara), Jeremy's been working in the cloud since 2010. He has a BA (Ling) from UNC and an MBA GMU. Jeremy has lived in 5 countries and speaks several languages. He once went 3 days without seeing another human (lots of reindeer, though) and was kicked off a train in Sweden.

Rolf Lindemann
Vice President, Products, Nok Nok Labs
Dr. Rolf Lindemann is responsible for the development and strategy of the company's products and solutions. Bringing more than 20 years of experience in product management, R&D and operations from the IT security industry, he has deep knowledge of security markets and technologies. Dr. Lindemann is one of the leading experts in FIDO and has been a frequent speaker at industry events. Prior to Nok Nok Labs, Rolf Lindemann worked as Senior Director Product Management at Symantec where he was responsible for research and product strategy on device authentication in smart grids and mobile networks. Before Symantec's acquisition of TC TrustCenter, he was Executive Director Product Strategy at TC TrustCenter GmbH. Named to that position in 2009 he was responsible for analyzing market trends and aligning the overall product portfolio to new market opportunities. Dr. Lindemann received his PhD from the Technical University in Hamburg-Harburg and holds a master's degree in electrical engineering.

Jeremy Grant
former Sr. Executive Advisor NIST; Managing Director, Technology Business Strategy, Venable
Grant is a managing director at Venable, where he works with the firm's clientele to develop growth strategies, identify market solutions and advise on policy impacts across the information technology and cybersecurity and government services. In this role, Grant utilizes his diverse background and deep understanding of business, technical and policy issues around identity, privacy and cybersecurity, having served in a range of leadership positions spanning government and industry. Prior to joining Venable, Grant established and led the National Program Office for the National Strategy for Trusted Identities in Cyberspace (NSTIC), the first new cybersecurity program launched by the Obama administration. Housed in the National Institute of Standards and Technology (NIST), Grant led the administration's activities across private and public sectors to drive a marketplace of more secure, privacy-enhancing identity solutions for online services.
Session Contributors
former Regulator, U.S. Department of Health and Human Services; Partner, Davis Wright Tremaine LLP
Read BioDetective Chief Inspector, National Fraud Intelligence Bureau, City of London Police
Read BioAssistant United States Attorney - co-National Security Cyber Specialist, Dept. of Justice
Read BioSenior Director, Systems Engineering, APJ & Country Sales Manager - India, FireEye
Read BioNational Director for the Privileged Account Security Solution Portfolio, CyberArk
Read BioVice President & General Manager, Security Line of Business, Nuance Communications, Inc.
Read BioAssistant Director for Infrastructure Security, U.S. Cybersecurity and Infrastructure Security Agency
Read BioChief, Justice Security Operations Center (JSOC), US Dept. of Justice - Criminal Division
Read BioInspector General of Police-Training, Govt. of Maharashtra
Read Biofmr Sr Group Manager and Retail Technology Program Lead at Target during the 2013 breach
Read BioExecutive Director - Head of Identity and Access Management, Nomura Wholesale
Read BioSenior Director, Product Management, CA Technologies Advanced Authentication Product Line
Read BioDirector, QRadar Security Intelligence Product Management and Strategy, IBM Security
Read BioManaging Director, Head of Group Investigations and Insider Threat Program, Barclays
Read BioVice President, Head of Fraud Prevention & Investigations, Charles Schwab Corporation
Read BioSupervisory Special Agent - Criminal & National Security Cyber Investigations, FBI Chicago Division
Read Bioformer Dir. of Incident Response, Expedia; Principal Consultant, Public Sector Cyber Security Contracting Services
Read BioPartner, Co-Chair - Data Protection, Privacy & Access to Information (US), Norton Rose Fulbright
Read BioDetective Chief Inspector - FALCON Cyber Crime Unit and National Mobile Phone Crime Unit, Metropolitan Police Service London
Read BioFormer Deputy Director of Health Information Privacy, Department of Health and Human Services' Office of Civil Rights
Read BioFormer Head of Airborne Platform Systems Cyber Security, Lockheed Martin Aeronautics
Read BioPresident, CEO and Founder of SpearTip - Cyber Counterintelligence (CISSP, GCFA)
Read BioPartner, Data Privacy and Cyber Security Practice Group, Lewis Brisbois Bisgaard & Smith; former Supervisory Special Agent, FBI - NY Cyber Division
Read Bioformer Sr. Executive Advisor NIST; Managing Director, Technology Business Strategy, Venable
Read BioSenior Director of Business Development and Solutions Engineering, DivvyCloud by Rapid7
Read BioTechnology and Privacy Group, co-chairs the firm's Privacy & Security Task Force, Alston & Bird
Read BioCloud Portfolio Strategist, Financial Services, CenturyLink Technology Solutions
Read BioDetective Constable - Computer Cyber Crime (C3) Intelligence Services, Toronto Police Service
Read BioCo-Lead, Cybersecurity Preparedness and Response practice, Alston and Bird, and Former DOJ Cybercrime Prosecutor
Read BioSupervisory Special Agent, U.S. Secret Service Electronic Crimes Task Force and Asset Forfeiture Section, SF
Read BioExec. Dir., Cyber Security Incident Response & Digital Forensic Service, PwC
Read BioManaging Partner, Chair of Global Privacy and Cybersecurity Practice, Hunton & Williams
Read BioNational Coordinator, Integrated Market Enforcement Teams, Royal Canadian Mounted Police
Read BioHead Deputy, Cyber Crime Division, Los Angeles County District Attorney's Office
Read BioPrincipal, Rasch Technology and Cyber Law; former Chief Security Evangelist, Verizon
Read BioInfoSec, Governance, Compliance & Risk Consultant, Managing Dir., Security Privateers
Read BioChief Counterintelligence Expert, Carnegie Mellon University CERT Insider Threat Center
Read BioCISO, Proactive Cyber Security; formerly Senior Vice President of Cybersecurity, HSBC
Read BioDirector of Product Marketing for Web Application Security Products, Imperva
Read BioBarrister and Solicitor, UK Data Protection Strategy, Legal and Compliance Services, PwC
Read BioCyber Liability and Insurance Attorney, Traub Lieberman Straus & Shrewsberry, LLP
Read BioExecutive Vice President, Q6 Cyber and Founder of the Cyber Threat Intelligence Division of the US Secret Service
Read BioManaging Director, Global Cyber Risk & Incident Response Services Alvarez & Marsal
Read BioPartner, Commercial Litigation, Fraud and Cybersecurity Practice, Bennett Jones LLP, Toronto
Read BioTechnical Sales Consultant & Pre-Sales Solution Architect - South Asia, Entrust Datacard
Read BioVice President, Customer & Technical Solutions HID Global, Identity and Access Management Solutions
Read BioDirector of Innovation Programs within the Office of the Chief Technologist, Red Hat
Read BioChief Fraud Prevention Officer, Security & Biometrics Division, Nuance Communications
Read BioSenior Vice President and Head of Information Security Services Group, Wells Fargo
Read BioSeattle Field Office Electronic Crimes Task Force, United States Secret Service
Read BioAssistant Commissioner, Federal Policing Special Services, Royal Canadian Mounted Police (RCMP)
Read BioAssistant US Attorney, Deputy Chief - National Security and Cybercrimes, Department of Justice
Read Bio