CISO, Ellie Mae
Dr. Selim Aissi is Ellie Mae’s Chief Security Officer. He is responsible for Ellie Mae’s Security Engineering, Operations, Strategy, Governance Risk & Compliance, and Disaster Recovery & Business Continuity.
Before joining Ellie Mae, Selim was the Vice President of Global Information Security at Visa. In that role, Selim transformed Visa’s information security program into the industry leader, led critical security programs including product security innovation, and enabled global growth and data center expansion. He also led the definition of security technologies for protecting Visa’s data, networks, data centers, digital wallets, applications, endpoint devices, and other core capabilities for corporate network as well as issuer- and consumer-facing products and services. Selim was recognized for leading company-wide security initiatives including Apple Pay, Visa’s APAC Data Center, and Visa’s Data Protection Programs.
Previously, Selim spent over 11 years at Intel where he held senior management and technology roles and championed several security technologies for Intel’s server, desktop, and mobile products. Prior to Intel, Selim held senior engineering positions at General Dynamics – Land Systems Division (M1A2 Battle Tank Vehicle Electronics), General Motors (Embedded Software Center of Excellence), and Applied Dynamics International.
Selim earned his B.S., M.S., and Ph.D. in engineering from the University of Michigan, Ann Arbor. He has filed over 100 patents in various areas of computer and information security, many of which are deployed in computing systems (e.g., Intel Trusted Platform Module, Trusted eXecution Technology) and consumer products (e.g., Visa Checkout, Apple Pay).
Selim serves on a number of advisory boards including startups (Black Duck Software, Dataguise, MagicCube), leading venture capital firms (Ten Eleven Ventures, BGV), and security organizations (UC Berkeley CISO Institute, Bay Area CISO Executive Governing Body, Intel Security Executive Advisory Board). He was named by IT Security Magazine as one of the “Top 59 Most Influential Security Experts” and was co-author of the book Security for Mobile Networks and Platforms (Artech House).
VP & CISO, Johnson & Johnson
Marene N. Allison, Vice President and Chief Information Security Officer for Johnson & Johnson, has responsibility for protecting the Information Technology (IT) systems and data worldwide through elimination and mitigation of IT risk. She co-leads the IT Risk Management Council and is a member of the Enterprise Compliance Council. Marene joined Johnson & Johnson in September of 2010. Prior to joining Johnson & Johnson, Marene was Chief Security Officer and Vice President for Medco, the largest pharmacy benefit manager in the United States. Marene was responsible for all aspects of the company's security, regulatory and compliance including physical and logical security, executive protection as well as HIPAA, Payment Card Industry, Medicare and prescription fraud and IT controls. Prior to that, Marene was with Avaya as head of Global Security where she worked on securing the World Cup network in Korea and Japan in 2002. Before joining Avaya she was Vice President of Loss Prevention and Safety for the Great Atlantic and Pacific Tea Company. Before joining the corporate world, she served as a Special Agent in the FBI working on undercover drug operations in Newark, NJ and also working on terrorist bombings in San Diego, CA. She developed and participated in the nuclear terrorism exercise, Compass Rose ’88, the largest mock terrorism incident exercise by the federal government. Marene has a Bachelor of Science degree from The United States Military Academy at West Point, part of the first class to include women. She has served in the US Army in the Military Police at Fort Hood, TX, Fort Chaffee, AR and Fort McClellan, AL. She has served on the Defense Advisory Committee on Women in the Services appointed by the Secretary of Defense and the Overseas Security Advisory Committee appointed by the Secretary of State. She is a founding member of West Point Women and currently serves on their Board of Directors. Marene is married, has one son, and lives in Bucks County, Pennsylvania, USA.
Vice President and Head of Information Security, Western Digital
Geoff Aranoff joined Western Digital in February 2016 as Vice President and Head of Information Security. In this role, Mr Aranoff is responsible for developing and implementing the enterprise security strategy that protects the electronic assets and supporting infrastructure that includes the manufacturing and engineering systems, corporate systems, and intellectual property. His organization continually evaluates the ongoing internal and external risks to Western Digital and adopts long-term and short-term strategies to mitigate risks and threats within an appropriate budget. Mr. Aranoff leads the organization responsible for adopting and enforcing policies for internal and external risk management along with IT security including network, application, endpoint, and storage security.
Mr. Aranoff was previously the Chief Information Security Officer (CISO) for Broadcom Corporation where he initiated and built the company's information security program. Mr. Aranoff developed enterprise security strategies that provided the necessary monitoring and controls for Broadcom’s intellectual property (IP). He also facilitated electronic discovery for litigations and electronic forensics for internal and external inquiries and investigations. Mr. Aranoff served six years in the United States Marine Corps Reserves and was activated for Operation Desert Storm in 1990.
VP & CISO, AutoNation, Inc.
Ken Athanasiou is Vice President, Chief Information Security Officer at AutoNation, Inc. and serves on the Board of Directors for the Retail Cyber Intelligence Sharing Center. Ken has extensive experience in information security and risk management. His career includes senior positions with global companies in the retail and financial service sectors as well as thirteen years of service as an officer in the United States Air Force. Just prior to joining AutoNation he was the Global Information Security Director & Chief Information Security Officer for American Eagle Outfitters. Ken holds a Bachelor's Degree in Computer Information Systems and a Master's degree in Computer Resources Management and is a Certified Information Systems Security Professional (CISSP).
Chief Information Security Officer, Voya Financial
As Senior Vice President and Chief Information Security Officer, Badhwar is responsible for advancing the Voya information security strategy as well as defining associated policies and standards for achieving the strategy. He leads a team accountable for developing, managing, and maintaining the information security and protection policies and standards for all company computing, privacy, and collection activities. Badhwar joined Voya Financial with more than 20 years of experience in cybersecurity engineering and operations. Most recently, he was global head of information security for AIG, where he led a security strategy centered on the protection and preservation of information assets.
Michael Blache is the Chief Information Security Officer of TaxSlayer, a software development company specializing in tax preparation software for professional and individual tax preparers. Promoted to this role in 2015, Michael has been instrumental in organizing and structuring the organization’s first dedicated Information Security Department operating separately from the IT Department. Michael is responsible for the vision and mission of TaxSlayer’s Information Security team in regards to security operations, regulatory compliance, disaster recovery, and business continuity.
In 2004, Michael first joined the TaxSlayer team as an IT Manager. In his first six months on the job, he was promoted to the position of Director of Information Technology. During his 11 years as IT Director, he drove the transformation of the organization’s information technology infrastructure during a time of expansive growth. Michael was responsible for standing up TaxSlayer’s first network operations center allowing round the clock monitoring of critical systems. He was selected by TaxSlayer’s executives to receive the organization’s highly coveted “Moving Your Division to the Next Level” award in 2005 and 2012.
Prior to joining TaxSlayer, Michael worked as a network administrator for a managed service provider in the private sector and as an Information Technology specialist in the Navy and Air Force. With over 20 years of experience, his diverse background is a testament to Michael’s ability to adapt technologies to meet the operational and security needs of various industries.
Michael holds a Bachelor of Science in Information Technology degree from South University and a Master of Science in Information Assurance degree from Norwich University. Michael holds several industry certifications, most notable of which is the Certified Information Systems Security Professional certification. Michael is an active member of the Greater Augusta ISSA Chapter and ISACA.
Chief Information Security Officer, Huntington Bank
In addition to his role as Chief Information Security Officer at Huntington Bank, Boian also serves as a cybersecurity consultant at the Department of Energy’s Special Technologies Laboratory. He retired from the National Security Agency in 2016 after almost 30 years of service. His roles included operational and leadership positions in both offensive and defensive cyber operations and included a Joint Duty Assignment as the Technical Director for the Chief of Operations (J3) USCYBERCOM. Boian won many awards including the Chairman Joint Chief of Staff (CJCS) Joint Civilian Service Commendation Award (CDR USCYBERCOM) in 2011.
Global CISO, Aflac
Tim joined Aflac as the Chief Information Security Officer in April 2014. In this role, Tim is responsible for the Aflac Information Security Program, which includes Threat and Vulnerability Management, Security Operations and Incident Response, Information Technology Compliance and Risk Management, Security Engineering, and Disaster Recovery. Through the execution of the security program, Tim is the executive responsible for protection and availability of the information assets of the leading provider of supplemental and voluntary insurance products in the world. Tim leads various risk committees and structures to help business partners accelerate in a safe and sound manner.
Prior to Aflac, Tim was Senior Vice President, Business Continuity and Information Assurance at SunTrust Bank. Tim was responsible for SunTrust’s Corporate Threat and Vulnerability Management, Information Security Monitoring and Investigation, Business Resumption, Disaster Recovery, Incident Response/Crisis Management, Technology Risk Project Office, Records and Information Management programs. Tim led a team of professional risk managers in ensuring the protection, preservation, and availability of critical corporate information and resources. Tim integrated these functions building a capability that provided a unified approach in determining threats, developing mitigation strategies and solutions, and managing through incidents. Tim has successfully tested this integrated concept in the management of virus, weather, technology outages, and distributed denial of service attacks.
Prior to SunTrust, Tim served as First Vice President, Technology Risk Management, and Chief Information Security Officer at People's United Bank in Bridgeport, Connecticut. Tim was the executive charged with protecting People’s United Bank’s information, information systems, and technology. During his tenure, Tim built an effective technology risk management organization and led the company through a technology integration and organization program upon the acquisition of a bank of near equal size. Tim also served on the State of Connecticut Judicial Committee on Identity Theft to assist in building requirements for protecting sensitive personal information introduced into the judiciary through legal actions.
Tim was a career military professional serving in leadership positions throughout his 23-year career. In his final assignment, Tim was the program manager for a command risk management function at one of the US Air Force's Major Command Headquarters.
Peter Chronis is the Chief Information Security Officer for Turner Broadcasting, a $10B media, sports and entertainment company headquartered in Atlanta, GA. Pete is responsible for Turner’s information security operations, architecture, governance, compliance and business continuity programs designed to protect the company and its global portfolio of more than 100 brands.
Pete has more than 15 years of experience using technology to manage risk for telecommunications, retail, media, entertainment, financial and IT services companies. He is the inventor of several innovative proprietary IT security technologies that together have blocked more than 750 billion threats and prevented $100M in fraud.
Prior to Turner, Pete was the Chief Security Officer at EarthLink where he was responsible for the company’s security program and product portfolio. He also developed sophisticated proprietary fraud detection systems for Lynk Systems, an Atlanta-based financial services company that was acquired by the Royal Bank of Scotland and is now called WorldPay.
CISO in Residence
Mignona Cote is a proven problem solver with a unique ability to find, assess and fix information security vulnerabilities across a variety of industries. With more than two decades of experience in information security, risk management, compliance, and auditing, Mignona helps Fortune 50 companies ensure the security of their data. She has a proven track record of transforming technical operations and building strategic solutions for companies like Aetna, Bank of America, PepsiCo and Verizon. Her expertise spans incident response, vulnerability management, access management, vendor management, risk and compliance, as well as auditing. She has completely reshaped secured solutions throughout large enterprise networks.
Recently, Mignona served as the Global Head of Identity and Access Management at AIG and as Chief Information Security Officer for two Aetna subsidiaries, PayFlex and Phoenix Hosting Services. As a Senior Director for Aetna’s Global Security, she also led Aetna’s Enterprise Risk & Compliance program where she was responsible for security education as well as policy management and evangelizing security among Aetna’s top corporate customers. As the security compliance officer, she managed compliance risk including industry and regulatory requirements.
CISO in Residence
Nicole Darden Ford was previously Vice President and Chief Information Security Officer with global responsibility for Information Security as well as Information Technology Quality Compliance and Information Governance supporting Baxter Healthcare. Mrs. Ford joined Baxter in December 2016 from Venable LLP, an AMLAW 100 law firm located in the DC Metropolitan Area where she held the position of Director of Information Security.
Prior to this role, Mrs. Ford served as the Senior Director of Security and Compliance for Inovalon, a leading technology company that combines advanced cloud-based data analytics and data-driven intervention platforms to achieve meaningful impact in clinical and quality outcomes, utilization, and financial performance across the healthcare landscape. At Inovalon, Nicole built a premier Privacy and Security Program that balanced functionality and security with leading products, best practices, and excellence in execution. Working alongside the Chief Technology Officer, she was instrumental in building an overall technology strategy and roadmap to execute major programs to deliver technology on time and efficiently.
Prior to joining Inovalon, Mrs. Ford served as Security and Compliance Officer for the US Department of Agriculture. In this role, she was responsible for compliance and security efforts for the Office of Procurement and Property Management. Mrs. Ford has extensive knowledge and application of cybersecurity, cyber forensics and Homeland Security practices within the federal government and private sector. Prior to working for USDA, she worked for the US Department of State as an Enterprise Architect. This role encompassed setting the overall IT direction for diplomatic security. Mrs. Ford acted as an information technology liaison providing expert level advice and guidance on IT matters to the Diplomatic Security CTO.
Prior to joining the Department of State, Nicole was an IT Manager for Ahold USA where she was responsible for overall IT operations for the US corporate headquarters. Mrs. Ford began her IT career in the US Army working for the Joint Chiefs of Staff near Camp David in Maryland. Mrs. Ford has a Bachelor of Science degree in Computer Information Systems and a Master’s degree in the Management of Information Technology from the University of Virginia.
Nicole holds the C|CISO, CISM, CEH and CISSP certifications. She has also served as an adjunct professor at various colleges throughout the DC Metro Area. She currently serves as the technology representative for Baxter’s Global Inclusion Council, committed to advancing inclusion and diversity at Baxter with a primary focus on advancing women and under-represented minorities in leadership and driving inclusive leadership capabilities and culture across the organization.
Gowen joined Synovus in 1995 after a 16-year career with IBM Corporation where he served in various engineering and management positions. He began his career with Synovus in the Information Technology area as Vice President of Network Services and Support. He served in various leadership roles in Information Technology including Director of Technology and Strategic Infrastructure. Gowen was named Senior Director of Procurement in 2008 with responsibilities for procurement, contracting, and vendor management. He was named a Group Executive in 2011 and his responsibilities were expanded to include serving as Chief Procurement Officer and overseeing Synovus’ Corporate Real Estate group. Gowen was named Chief Information Security Officer in February 2015.
As Chief Information Security Officer, Gowen is responsible for all aspects of information security and business continuity including identity and access management, security architecture, security operations, IT risk assessments, audit and regulatory interface, disaster recovery coordination, business continuity planning, and crisis management. He is also responsible for setting the tactical as well as strategic direction for Synovus’ enterprise vision, strategy, and program to ensure that information assets and technology are adequately protected.
Gowen’s education includes:
B.S., Mechanical Engineering, Georgia Institute of Technology
M.S., Mechanical Engineering, Georgia Institute of Technology
Synovus Leadership Institute
Chief Information Security Officer and Group Executive, Mastercard
Ron Green is Group Executive and Chief Information Security Officer. He leads a global team that ensures the safety and security of the Mastercard network as well as internal and external products and services. He is responsible for Information Security Operations, Architecture and Engineering, Security Event Management and Incident Response. Mr. Green also oversees cryptographic key management, business continuity, disaster recovery, and emergency management.
Mr. Green joined Mastercard in 2014 after serving as deputy chief information security officer at Fidelity Information Services (FIS). There, he led a team responsible for North American Information Security Operations, including security architecture and engineering programs, security testing, and governance. Prior to this position, Mr. Green was Director, Investigation and Protections Operations at Blackberry where he was responsible for global cyber and physical investigations, security operations centers, network security architecture, technical surveillance countermeasures, and threat intelligence programs. He also served as a senior vice president across several areas at Bank of America.
Mr. Green has extensive experience working with international and federal law enforcement agencies both as a special agent in the United States Secret Service and as an officer in the United States Army. With the Secret Service, Mr. Green worked protection and fraud investigations. He was one of the first agents to receive formal training on seizing and analyzing electronic evidence, and he worked on a number of international cyber crime investigations. Mr. Green serves on several advisory councils including the Financial Services Information Sharing and Analysis Center and the Overseas Security Advisory Council. He holds a bachelor’s degree in mechanical engineering from the United States Military Academy at West Point; is a graduate of the FBI’s Domestic Security Executive Academy; and holds a graduate certification in Information Assurance from George Washington University.
VP of Enterprise Risk and Security, Aaron's
Almir Hadzialjevic serves as the Vice President of Enterprise Risk & Security at Aaron’s, Inc., a leading omnichannel provider of lease-purchase solutions with over 1,700 stores in 47 states and Canada. Almir primarily oversees the strategy and governance of the Company’s information security program, physical security, and strategic risk management. Almir’s strong business acumen and extensive background in the areas of technology, information security, and privacy allows him to deftly administer a comprehensive security program within the Company while simultaneously utilizing his refined skill set in audit, compliance, and risk management to provide strategic recommendations to the Company in the context of sound business solutions.
Prior to serving as Vice President, Enterprise Risk & Security, Almir served as the Director of IT Compliance, Information Security & Privacy where he pioneered the design and implementation of the Company’s security and privacy program.
Prior to joining Aaron’s, Almir worked for Ernst & Young, LLP as part of its Advisory Services- Information Security Center of Excellence practice, where he advised Fortune 500 clients in developing and maturing their enterprise technology and security strategies and compliance frameworks.
Almir received his Bachelor of Business Administration in Computer Information Systems from Georgia State University and a Master of Business Administration from the Georgia Institute of Technology. In addition to his degrees, Almir holds multiple professional designations, including Certified Information Systems Auditor (CISA), Certified Information Privacy Professional (CIPP/US) and Certified Information Security Manager (CISM).Almir is fluent in the languages of English, German, Bosnian, and Spanish.
VP and CISO, United Airlines
Emily Heath is United’s Vice President and Chief Information Security Officer. In this role, Emily oversees the airline’s global information security program as well as the IT regulatory, governance, and risk management functions.
Prior to joining United Airlines, she was the Global Chief Information Security Officer at AECOM, a Fortune 500 architecture, engineering, and construction company where she led the information security, regulatory, and risk programs. Before joining AECOM, Emily served in various IT leadership positions including Beachbody, LLC, a fitness and nutritional company best known for p90X, Insanity, and Shakeology. The company also worked with major movie studios in Los Angeles including MGM Studios and Sony Pictures Home Entertainment.
Originally from Manchester, England, Emily is a former police detective from the UK Financial Crimes Unit where she led investigations into international investment fraud, money laundering, and large scale identity theft cases. She also ran joint investigations with the FBI, SEC, and London’s Serious Fraud Office.
VP & CISO, Hewlett Packard Enterprise Services
Elizabeth Joyce is Vice President and CISO at Hewlett Packard Enterprise Services. Joyce is responsible for building world-class, extensible security capabilities that protect HPE’s assets and workforce, as well as enable and extend business capabilities. All aspects of information security – strategy, architecture and operations; product security, information and threat management; governance, risk and compliance; third party assessment; identity and access management; security transformation and training – fall under her purview.
Previously, Joyce was the Chief Information Security Officer for HP’s Software Division, where she was responsible for end-to-end security and infrastructure services. She joined HP through its Autonomy acquisition where she was the Chief Security Officer and Group Operations Infrastructure leader.
Earlier on, Joyce held leadership roles at Iron Mountain as the Senior Vice President forWorldwide Service Delivery in charge of all aspects of post-sale delivery, and, at Symantec as Vice President & General Manager for Enterprise Services – Americas with P&L and operational responsibilities. She started her career as technical consultant for executive information systems,middleware solutions and security in the US and Europe.
Joyce has led large operational and small technical teams, and has successfully executed several turnarounds – improving solutions through innovation and focus on delivery excellence, ensuring customer satisfaction as a priority while meeting profitability targets.
Joyce holds a Ph.D. in information security from University of Plymouth, UK and BSc in Computer Science Honors from University College, Dublin.
CISO, Freddie Mac
Shaun leads Freddie Mac's information security program and strategy, including security architecture, operations, and engineering in alignment with the Three Lines of Defense. In this role, he leads a multiyear roadmap to mature the program and reduce security risk to Freddie Mac. Shaun previously served as the Head of Information and Technology Risk for Freddie Mac, where he established and operationalized a second line of defense information and technology risk function for the company. Prior to joining Freddie Mac, Shaun served as the Chief Information Security Officer for the nation’s largest law enforcement agency, the U.S. Customs and Border Protection. He led the development and execution of the cybersecurity strategy and was responsible for aligning security initiatives with enterprise programs and business objectives, ensuring that systems and information are adequately protected.
Prior to joining CBP, Shaun served as director of cybersecurity with the Department of the Navy Chief Information Officer, where he led a team of senior Navy civilians and military officers to deliver strategy, governance, policy, and oversight of Department of the Navy cybersecurity initiatives. Shaun’s previous roles include serving as security operations center (SOC) manager, security architect, technology program manager, and Army combat veteran.
Shaun serves as an advisor on various technology boards, is a fellow with the American Council for Technology, and an adjunct professor at Carnegie Mellon University. He received his MBA from George Washington University and is a graduate of the University of Maryland. He is also a Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), and a graduate of the Department of Defense Executive Leadership Development Program.
Chief Information Security Officer, Dataminr
Lozada has more than 15 years of experience developing and maintaining information security programs for some of the world’s top brands. Before Dataminr and Zocdoc, Lozada was the Chief Information Security Officer for Abacus Group, the largest cloud provider within the financial services sector. Prior to joining Abacus, he was CISO at Condé Nast where he oversaw security and risk management for all digital and technology operations. He has also held several senior information security management positions at Sony Music Entertainment and Vonage.
VP & CISO, Dollar Tree Inc.
Dr. Kevin McKenzie is Vice President of Information Technology and Chief Information Security Officer (CISO) for Dollar Tree Stores Inc. Dollar Tree is a publicly traded Fortune 150 company with revenues in excess of $20 billion that encompasses both Dollar Tree and Family Dollar retail stores. Headquartered in Chesapeake, Virginia, Dollar Tree operates thousands of stores across all 48 states of the contiguous United States along with five Canadian provinces.
Strategically, Kevin is responsible for establishing the vision, mission, and security posture for the combined Dollar Tree enterprise and tactically accomplishes this through his oversight of Governance and Risk Compliance, Security Operations, and Network Security. Kevin holds an undergraduate degree in Management, a master’s degree in Industrial Management, and a Doctorate in Career and Technology Education from Clemson University. He also holds the Certified Information Systems Security Professional (CISSP) and ITIL professional certifications.
In addition to his corporate officer role, Kevin remains an actively engaged member of the faculty at Clemson University. He serves on the strategic advisory board for the International Consortium of Minority Cybersecurity Professionals (ICMCP) and the technology advisory board for Tidewater Community College. Additionally, he’s also an advisory board member for tech companies in the security industry. He has helped author multiple Congressional testimonies and personally participated in a Congressional town hall event about information security topics.
In 2013, Kevin was named the ISE Southeast Executive of the Year Award Winner and, later that year, the North America Information Security Executive of the Year for the Public & Academic Sector by Tech Exec Networks (T.E.N.). That same year, Kevin also received the America’s Information Security Leadership Award (ISLA) by ISC2—representing all of North America, South America, and Central America. In 2017, Kevin was honored and recognized as a ‘Roaring 10’ award recipient of Clemson University where ten alumni are named annually who have made an impact in business, leadership, community, educational, and/or philanthropic endeavors while upholding the university’s core values of honesty, integrity, and respect.
Previously, Dr. McKenzie was CISO and Executive Director for the Office of Information Security and Privacy at Clemson University where he established the university’s strategic direction in information security, mentored and taught students as a Research Professor in Electrical and Computer Engineering, created a student-led Security Operations Center (SOC) designed as an immersive experience for the students, served as Chief Security Officer to multiple statewide healthcare organizations comprising more than $7 billion in healthcare transactions, and protected one of the nation’s premier higher education environments classified as a top-tier Highest Research Activity (R1) research institution under the Carnegie Classification of Institutions of Higher Education.
CISO in Residence
Jesus Montano is an innovative security leader with more than 25 years of information technology and security experience in leading and transforming organizations to deliver effective risk management solutions globally across complex environments. He has a proven track record aligning people, processes, and technology components into a cohesive security strategy that aligns to business goals. In previous roles, he served as the Chief Information Security Officer for MassMutual, the Chief Technology Risk and Security Officer for Voya Financial (where he was responsible for providing leadership, management, and strategy for all aspects of technology risk and information security), and the Chief Information Security Officer at MetLife, a Fortune 50 financial services company spanning 46 countries with 70,000 employees, serving 90 million customers. At MetLife, he was accountable for the creation and maintenance of security infrastructure, information security policy, risk assessments, incident response, security awareness, and training programs.
Jesus completed his undergraduate studies at Charter Oak College and the University of Connecticut, and he received a Master of Business Administration (MBA) degree from Rensselaer Polytechnic Institute. He is a Certified Information Security Manager (CISM) and holds Certified in the Governance of Enterprise IT (CGEIT) accreditation.
Corporate Chief Information Security Officer, Unisys
Mathew Newfield joined the Unisys leadership team as the Corporate Chief Information Security Officer in March 2018. He leads the Unisys Corporate Information Security team with responsibility for design, development, and implementation of the company's corporate information security and risk programs across all regions and functions. Newfield has over 19 years of experience in information technology with a focus on security, software as a service operations, risk auditing and management, and international mergers and acquisitions.
Prior to joining Unisys, he was the Director of Global Managed Security Services for IBM where he had responsibility for delivery services in 133 countries and managed a staff of 1,500 security professionals. Newfield led the Managed Security Practice that performed Device Management, Threat Intelligence, Managed Security Information and Event Management, Account Governance, Project Management, Deployment Services, New Service Integration Business Operations, Compliance/Governance and Architecture Services. Newfield was also the Business Unit Information Security Officer and Global Process Officer for IBM's Security Services Organization. During his time at IBM, Newfield streamlined operational processes and developed cost reduction methodologies that improved cost control, profitability, and client delivery. Prior to IBM, Newfield held senior security leadership roles at Cybertrust, RSA, and DDC Advocacy.
Newfield is a published author on topics related to security, a speaker on cybersecurity, and has been an instructor at the SANS Institute. In addition, he holds a Bachelor of Science degree in Industrial and Organizational Psychology from George Mason University.
SVP and Global CISO, TransUnion
Jasper Ossentjuk joined TransUnion in 2014 as the SVP and Global Chief Information Security Officer, bringing years of experience as an IT and information security leader. Jasper is a passionate and vigilant leader of information security. His information security responsibility for TransUnion spans across 30+ countries protecting over a billion consumer files and 50+ petabytes of data.
Before joining TransUnion, Jasper was an information technology and security leader at HSBC from 2002 – 2014. While at HSBC, Jasper served as the CISO for North America and later as the CISO for HSBC’s Global Retail Banking business overseeing the security for 50 million customers, 6000 branches, and 28,000 ATMs. Prior to that, Jasper held technology and leadership positions at Accenture as part of the Financial Services Practice.
Jasper holds a master’s degree in Project Management from the George Washington University School of Business and a bachelor's degree with a dual major in Management Information Systems and Operations Management from the University of Arizona. He is also CISSP-certified.
CISO, Ohio State University
With more than 20 years of experience in the Security, Risk and Resiliency profession, Helen Patton (CRISC, CISA) brings a wealth of experience in managing information, technology and operational risk for global organizations, and advocates using Information Risk and Security Management to enable the mission of the Institution.
Since July 2013 Helen has assumed the role of Chief Information Security Officer at The Ohio State University, where she works to enable a risk-aware culture. She manages the Enterprise Security team, and oversees Information Risk and Control Governance across University units. The Security team is responsible for Information Security policies and Standards, as well as providing Security products and services. Helen chairs the University Information Security Advisory Board, which governs the execution of the University’s award-winning Information Security Framework.
Prior to working at OSU, Helen spent nine years in a Fortune 50 Financial Services firm, where she was responsible for creating Risk and Resiliency programs and operations which delivered pragmatic risk delivery capabilities to internal and external clients.
Helen works to encourage collaboration across and between industries, to enable better information security practices. She believes in improving diversity in the Information Security profession, and mentors people interested in pursuing a career in Security, Privacy and Risk Management.
Helen has a Master’s degree in Public Policy, and holds certifications as a Certified Information Systems Auditor and Certified In Risk and Systems Control, from ISACA. She is also a member of the State of Ohio Attorney General Cybersecurity Advisory Board, the Information Systems Security Association, Women for Economic and Leadership Development, and the CISO Executive Roundtable.
CISO, Motorola Mobility
Mr. Richard Rushing is the Chief Information Security Officer for Motorola Mobility LLC. Richard participates in corporate, community, private, and government security councils and working groups, setting standards, policies, and solutions for current and emerging security issues. As Chief Information Security Officer for Motorola Mobility, he has led the organization's security effort by developing an international team to tackle targeted attacks, cyber-crime, and emerging threats to mobile devices. He has organized, developed, and deployed practices, tools, and techniques to protect the enterprise's intellectual property worldwide. A much-in-demand international speaker on information security, Richard has spoken at many of the leading security conferences and seminars around the world.
Chief Information Security Officer, Oceaneering
Eric Seagren currently serves as the Chief Information Security Officer at Oceaneering International. Eric’s career in IT started in 1996 and has progressed through various positions including desktop support, server administration, network engineering, risk management, disaster recovery, and cybersecurity across diverse fields such as banking, real estate, oil and gas, aerospace, and defense. This breadth and depth of experience helps Eric understand information technology with a “big picture” perspective. Leveraging this broader perspective, Eric’s focus is to design security policies and solutions that respect the business needs and operational requirements of the organization, maximizing effectiveness while minimizing impact. Eric has experience working in organizations of all levels of IT security maturity, including building a security program from the ground up.
Eric holds a Bachelor of Science in Business: Information Systems. He is also a published author with multiple publishing credits and technical certifications including CRISC, CISA, CISSP-ISSAP. Some of Eric’s publications include “Secure Your Network for Free" and “How to Cheat at Configuring Open Source Security Tools” (co-authored).
Oceaneering International is a global organization with offices in 25 countries and does business in the aerospace, entertainment, material handling, military and defense, and oil and gas industries.
CISO, Globe Life
Duaine Styles is a visionary security strategist who joined Globe Life in March 2015. Duaine holds a Master’s degree in Information Systems, a Bachelor’s degree in Accounting, and is licensed as a Certified Public Accountant in the state of Texas. His experience has spanned multiple finance, IT, and risk disciplines within the retail, finance, and healthcare industries.
Reporting administratively to the General Counsel / Chief Risk Officer and routinely updating Board Members on information security, he is implementing an enterprise risk management approach to information risk and information security governance. Current responsibilities include information security, privacy, business continuity planning, emergency preparedness, and breach management.
Prior to joining Globe Life, Duaine ran a consolidated security function and had the responsibilities of a Chief Security Officer as the VP Security at AmeriCredit / GM Financial for over 11 years.
Throughout his career Duaine has consistently focused on giving back to the profession through coaching his staff and mentoring fellow professionals to their potential, speaking at security conferences and participating in the governing body of various security focused events. He was also a founding officer of the ISSA’s Fort Worth Chapter (2007) and the Chairman of the Information Security Leadership Forum’s initial pilot chapter in Dallas (2013).
Duaine also holds the following active professional licenses and certifications: Certified Public Accountant, Certified Chief Information Security Officer, Certified Information Systems Security Professional, Certified in Risk and Information Systems Control, Certified Information Systems Auditor, Certified Internal Auditor, ITIL Foundations Certificate in IT Service Management, ISO27001 Lead Implementer, and SABSA Foundations.
CISO, NCR Corporation
Bob Varnadoe is the Chief Information Security Officer for NCR Corporation. His duties include overall information security and operational / IT aspects of NCR’s privacy program, IT risk management, compliance company-wide, training and awareness for information security, and oversight of the deployment of security technologies. Bob works with NCR’s lines of business (Professional Services, Legal, Internal Audit, Customer Services and Hardware/Software Engineering) to develop and build out the company-wide strategy for information security. He also represents the IT organization as a part of NCR’s Enterprise Risk Management committee.
Prior to NCR, Bob was with Fiserv Corporation where he was responsible for information security within Fiserv’s corporate risk organization. His team was responsible for information security oversight, governance, and strategy across Fiserv’s business units. The team also provided consulting to Fiserv’s divisions and operating units for information security matters. During his tenure at Fiserv, Bob led teams focused on information security engineering and operations for network infrastructure, distributed systems, and mainframe systems. He also led teams focused on application security testing, consulting, and information security strategy, and he built Fiserv’s security operations center.
Bob joined Fiserv through the acquisition of CheckFree Corporation where he was responsible for information security strategy within CheckFree’s corporate function. Prior to joining CheckFree, Bob was IT Director for an architecture and engineering firm in Atlanta. He has over 20 years of experience in data networking and information systems, 15 years of which were spent exclusively in the security field. Bob holds a bachelor’s degree in electrical engineering from the Georgia Institute of Technology.
CISO, JP Morgan Chase
Jason Witty is the Head of Cybersecurity & Technology Controls and Global Chief Information Security Officer for JPMorgan Chase with responsibility for the firm’s cybersecurity, technology controls and resiliency programs. An award-winning CISO, Jason was recognized as a 2015 “CISO Superhero” at I.S.E. North America; the 2014 I.S.E. North America People’s Choice Award winner; 2013 “CISO of the Year” by the Information Systems Security Association of Chicago and the Association of Information Technology Professionals; and one of Information Security Magazine’s 2013 “Security 7” representing the Financial Sector. He is a highly rated public speaker, frequently keynoting on cyber security topics at large events including CSA Cloud Summit, Finsec, Infosec Europe, RSA Conference, SecureWorld, and others.
Before joining JPMorgan Chase, Jason was Executive Vice-President and Chief Information Security Officer at U.S. Bancorp, providing singular accountability for all information security controls in the company. And before U.S. Bancorp, Jason was the Senior Vice President and Cyberthreat Prevention Services Executive at Bank of America. He was responsible for a team of information security professionals spanning 8 countries who provided information security risk prevention and deterrence services, globally. He was simultaneously accountable for all information security controls outside of the United States for Bank of America Merrill Lynch, covering 48 countries.
Jason is a certified Information Systems Security Management Professional (ISSMP) who has played major leadership roles in information security throughout his career. He has 23 years of information technology experience, 21 focusing on information security risk management. Before his role at Bank of America, Jason was the First Vice-President of Security Services for LaSalle Bank N.A. He also led the internal Information Security team at The Options Clearing Corporation and served as Director of Global Security Architecture for Aon Corporation at its world-wide headquarters in Chicago. He combines strong organizational management and leadership skills with a high degree of technical knowledge, the result of hands-on information security experience early in his career at Allstate Insurance, N.A.S.A. Langley, Siemens, and Jefferson Laboratories.
Over his career, Jason has been involved in 54 acquisition related network integrations, set up secure eCommerce environments, and led multiple cross-industry forums.
Providing industry leadership, Jason is Vice-Chairman of the Board of Directors of the Financial Services Information Sharing and Analysis Center (FS/ISAC), a Board Advisor for ChicagoFIRST, Arbor Networks, and Qualys, and is a member of the Executive Committee of the Cloud Security Alliance (CSA). He was also on the Program Committee of the RSA Conference (2013-2016) and serves as FBI’s Chicago Infragard Sector Chief for Finance. Previously, he was the Chicago OWASP Chapter President (2006-2010).