The Future of IT & Cybersecurity

CXO Summit

November 9, 2022 - New York City, NY

Speakers

Amit Basu International Seaways
Amit Basu

VP, CIO & CISO

International Seaways

Summit Speaker

Amit Basu is the head of IT and IT Security at International Seaways (INSW). INSW, headquartered in New York City, is one of the largest tanker companies providing energy transportation services worldwide. Amit is a proven IT leader with over 25 years of experience in maritime IT and has pioneered several technology innovations in maritime. Over the last decade, Amit has led a digital transformation in INSW with a Cloud-Only IT strategy and is instrumental in designing a multi-layered cybersecurity framework promoting a cyber resilience culture. Amit holds an MBA as well as a Master of Science degree in Information Management from the Stevens Institute of Technology, New Jersey. He is also a Certified Information Security Manager from ISACA, certified in Cybersecurity Risk Management by HarvardX, Cybersecurity Oversight by Carnegie Mellon University, Maritime Cybersecurity by Lloyds Maritime, and Artificial Intelligence by MIT Sloan School of Management. Amit is an advisory board member for the Cybersecurity program at Pace University and Ithaca College, on the advisory board of Exium, and a member of the Governing Body of New York CIO Executive Summit.

Peter Dentico Omnicom Group
Peter Dentico

Managing Director Security Operations

Omnicom Group

Summit Speaker

Passionate and innovative Information Security leader. Continuous learner and pragmatic strategist, always seeking to balance security with practicality and business process.

Susan PNC
Susan Koski

CISO

PNC

Summit Speaker

Executive leader who develops partnerships to achieve risk management with a spirit of innovation, commitment to excellence and passion for people. Proven track record of building/re-building programs and teams; inspiring and supporting knowledge workers to achieve their best and ongoing process improvement aligned to company objectives. Ability to manage the high demands of an executive security role and competing priorities to achieve deliverables. Analytical and decision-making skills driven by the ability to identify “big picture” implications while balancing risk and opportunity. Innate ability to inspire, lead and transform concepts into fully functional programs in global organizations. Passion to deliver impeccable delivery to the business as a trusted advisor. • Built Security organizations from infancy to fully functional, building programs from the ground up to achieve regulatory compliance and business risk management. • Converged cyber security and fraud functions for multiple domains in operational risk achieving key synergies to combat adversaries. • Led and delivered on various merger and divestiture scenarios from the due diligence phase to implementation of the deal type. • Led the Technology Risk Management functional integration for the merger of BNY and Mellon. Specialties: Teambuilding, Superb Relationship Management, Situational Leadership, IT Risk Assessments / Management, IT-GRC, Information Security Management, Information Security Operations Center, Merger and Integration IT due diligence and integration, Secure Application Development, Program Management, Organizational Development Process Improvement

Devon Bryan Carnival Corporation
Devon Bryan

Global CIO

Carnival Corporation

Summit Speaker

DEVON BRYAN was appointed as the Global Chief Information Officer (CIO) for Carnival Corporation effective December 14, 2022. He joined Carnival Corporation in October 2021 as the Global Chief Information Security Officer with responsibilities for conceiving, implementing and leading technology solutions that assure compliance, protect personal data and corporate assets, increase organizational capability and advance productivity within Carnival Corporation and our world-leading cruise line brands. Prior to Carnival Corporation, Devon was Managing Director, Chief Information Security Officer, MUFG Union Bank N.A where he was responsible for establishing and maintaining a comprehensive information security strategy and program to ensure that information assets and technologies were appropriately protected. He was also responsible for ensuring that information security risks were identified, evaluated, mitigated, and reported in a manner that meets compliance and regulatory requirements and aligns with the risk tolerance for MUFG in the Americas region. Most recently, he served as the CISO for KPMG LLC where he was charged with effectively designing and executing a best-in-class information and data security function with a proactive approach to enable business results. Prior to KPMG, Devon was the Executive Vice President and Chief Information Security Officer for the National IT Organization of the US Federal Reserve System. As the System-level CISO, he was responsible for ensuring the Fed’s information security policies, architecture, programs and incident response team remain effective and efficient. Prior to the Fed, Devon was the Global Chief Information Security Officer (CISO for Fortune 500 outsourced payroll and human resources provider ADP. As Global CISO for ADP, Devon led ADP’s information security strategy, collaborating across the company’s geographically dispersed business operations to ensure coordination, consensus, and effective cybersecurity protections across global operations. Prior to joining ADP in 2011, he served as the Deputy Chief Information Security Officer (CISO) for the Internal Revenue Service (IRS) where he was appointed to the Senior Executive Services (SES) and directed the IRS’s FISMA-compliant information security program and the IRS’s cybersecurity incident response team. His information security career began in the U.S. Air Force, where he served as a Captain and Lead Network Security Engineer working on systems and programs to protect the critical network and communications networks of the Air Force’s Air Combat Command. Devon is a co-founder of Cyversity, a 501c3 non-profit which he helped launch in 2014 and geared toward improving the underrepresentation of women and minorities in the field of cybersecurity through academic scholarships, certifications, mentoring and networking opportunities. Devon received a Bachelor of Science, Applied Mathematics from South Dakota Technological University and a Master of Science, Computer Science from Colorado Technological University, graduating Summa Cum Laude. He holds multiple industry recoginized certifications serves on several non-profit boards and participates in select industry forums as a sought-after speaker and writer on emerging technology trends and issues.

Ibrahim Jackson Ubiquitous Preferred Services
Ibrahim Jackson

Founder

Ubiquitous Preferred Services

Summit Speaker

Ibrahim works with technology, human resource, and other business leaders to develop, upskill, and retool teams of people for next practice leadership in a changing world of work. By providing workshops, coaching, and consulting, with a team of industry experienced professionals, to large-scale enterprises and government agencies, employees are prepared for future opportunities today. Our underpinning Digital Professional Framework governs our people transformation programs with a focus on four key areas: 1. Digital Depth 📱 2. Business Acumen 📊 3. Interpersonal Skills 🤝 4. Social Impact 🌎 Whether transformation, modernization, evolution, or restructuring, all of these changes have a basis for moving the organization forward. Leaders are trusted and relied upon to bring sustainable change to successful completion using competence, appropriate practices, skills, behaviors, and mental models to galvanize people and achieve sustainable change, continuous improvement, and make the most significant impact, so their organization realizes optimal value. TRAINING Our focus on digital and leadership attracts technology leaders and human resource executives working on developing people that need to be ready to lead in an era of emerging technology and where business models are expanding and evolving. We provide standard training, bespoke modules customized to the needs of the organization, modules tailored to the specific business objectives of the organization, and on-demand modules. Our learning journeys are immersive, experiential, and applicable to the particular business challenges our clients have. COACHING While many challenges and opportunities across organizations may be similar, their specific context, focus area, and goals are often unique. Having a coach or executive coach that can be an extension of your brain trust often leads to better decision making, improved results, and career elevation. We use a variety of coaching and group coaching models that help our clients excel at the aforementioned. CONSULTING By pairing our client's institutional knowledge with our broad range of expertise from across many industries, we help leaders tackle today's problems so that they achieve a competitive advantage on their journey towards making a material difference in their business. We perform simple to complex assessments, primary and secondary research, and strategy development where and when needed. When working with us, we own your problem, allowing you to capitalize on the solution's rewards.

Anthony Gonzalez QBE North America
Anthony Gonzalez

CISO NA

QBE North America

Summit Speaker

Visionary, results and solutions-driven professional with 20+ years of experience in progressively responsible Cyber Security and IT leadership roles in the financial services, insurance, pharmaceutical, biotechnology, consumer goods,and chemical manufacturing industries. Adept in building and leading global Cyber Security, IT technical and support functions. Creative, resourceful problem solver with a track record of success in delivering cost-effective and value-added services to his customers. Additional experience in industrial engineering and process improvement. Specialties: Areas of expertise include: Cyber Security, Network Security,Application Security, Infrastructure Management and Security Incident Management, Disaster Recovery, Forensic Investigations, Operations Management, Financial Management, Project/Portfolio Management, Policy/Procedure Development, Budget Preparation, Strategic Planning, Process Design/Implementation, Risk Mitigation, Enterprise Architecture, IT Governance, Manufacturing/Laboratory Automation, Organizational Design, Vendor Audits, System, Start-Up Operations, Sarbanes-Oxley (SOX), Talent Development/Mentoring, International Team Management, and Regulatory Compliance

Adam Fishman RBC Capital Markets
Adam Fishman

COO US Investment Banking

RBC Capital Markets

Summit Speaker

Adam Fishman is the COO of U.S. Global Investment Banking at RBC Capital Markets. Adam joined RBC in 2004 and has charted the growth of their platform from under 100 professionals in a select group of coverage areas to a full-service Investment Bank with 600+ bankers. His areas of focus include strategy, senior talent acquisition, finance, and operations/administration within the Investment Bank. Adam previously served as the CFO of Davis, Polk and Wardwell, Director of Financial Business Development at Home Box Office, Director of Financial Services at Pepsi-Cola International, and an Auditor at Ernst and Young. Adam holds a BBA and MBA in Finance from Pace University and is a CPA.

Nick Diieso Citi
Nick Diieso

Director, Global Head of Operational Risk

Citi

Summit Speaker

Banking and risk management executive with a global remit and a wide range of experience in investment banking. My primary interest is to continue to lead and drive change in the financial and risk space for complex and emerging banking and financial services companies. I contribute actively to thought leadership and professional education in the finance and emerging technologies space - with a recent focus on principles around the risk management and development of digital asset /DLT/ Blockchain (specifically the intersection points and evolution opportunities against traditional finance)- adjacent products and technologies to optimize ROI and mitigate fraud and cybersecurity vulnerabilities. Significant experience with the largest banks in the world related to: trading, commercial banking, credit analysis, operational risk management, leadership, development/build out of high-performing global organizations, transformation, change management, and execution experience focused on the Banking, Technology, Non-Profit, and Government sectors. Specialties: Financial Analysis, Commercial Banking, Wholesale Banking, Investment Banking, Trading, Financial and Risk Reporting, Operational Risk, Strategic Risk, Credit Risk, Business Development, Strategic Planning, Budgeting, Governance, Management and Development of high performing organizations

Leo Cunningham Flo Health Inc.
Leo Cunningham

Former CISO

Flo Health Inc.

Summit Speaker

Leo has a successful track record working within different blue-chip companies and industries ranging from Start-ups/Scale-ups, Banking, FinTech, SaaS and eCommerce, providing insight, consultancy and strategy across global remits covering Information Security, Cyber Security, GRC, Auditing, Cloud and a multitude of compliance remits including PCI DSS, SOX and GDPR. At Flo Health, the number one health and wellbeing app. His team protects the data of 250 million users, equating to 300 billion data points. He is currently an advisor to multiple start-ups from the Palta Group. He has been instrumental in leading security efforts within HealthTech and FemTech. In June 2022, Flo Security delivered the industry’s first ISO 27001 certification. Leo is a multi-award winner. A Snyk influencer. A Keynote speaker worldwide and was added to the CISO Platform Top 100

Scot Miller Mr. Cooper
Scot Miller

SVP & CISO

Mr. Cooper

Summit Speaker

Scot Miller, CISSP, CISM, is the Senior Vice President and Chief Information Security Officer for Mr. Cooper Group. He serves on the Dallas CISO Board, has presented on advances in Information Security and Technology Governance at consortiums in Florida, Texas, New York, Arizona, and Connecticut, and has been quoted in national magazines and other industry symposiums. Scot built high performing Security and Operations teams from the ground up, and over the past few years, brought Mr. Cooper’s Identity Governance and Compliance teams to a new level. The supporting projects won the 2021 Cybersecurity Team of the Year and CSO50 Award from a pool of national and international candidates for innovation, agility, and meaningful impact on a business. Scot’s team is responsible for identifying, analyzing, and reducing risk for all Mr. Cooper’s Group business entities. Previous to his duty at the Mortgage Servicing institution, he was CISO for HMS (a Texas based Healthcare Information Services organization), Head of Global IT Security for Alcon Laboratories, and Chief Security Architect at MassMutual Financial Group. Scot was also the VP and CTO for the CT chapter of ISSA.

Laura Deaner Northwestern Mutual
Laura Deaner

CISO

Northwestern Mutual

Summit Speaker

As Chief Information Security Officer (CISO), Laura Deaner is accountable for establishing and steering Northwestern Mutual’s enterprise-wide information risk management and security strategy. In this role she will champion the build out of an integrated risk culture, driving effective operation of technical and administrative controls. Laura works closely with the executive leadership and the Board of Trustees, matching effective controls to an appropriate level of risk tolerance. Leading the enterprise’s second line of defense, she is responsible for prioritizing and sequencing the treatment of information security risks, aligned with industry-standard risk management frameworks. Prior to coming to Northwestern Mutual early in 2021, Laura was the Chief Information Security Officer at S&P Global, responsible for establishing and driving the enterprise information security vision and program. She leverages her twenty-two years working in security for multi-national Fortune 500 companies to build effective and robust information security programs by aligning deep technical expertise with executive business vision and support. She was previously the first named CISO at PRNewswire, where she built a comprehensive security practice from the ground up. Laura holds a Bachelor’s degree in Computer Science from Old Dominion University in the state of Virginia in the United States. She is a member of several information security and technology societies including OWASP, WiCyS, ISC2, and Society of Women Engineers (SWE). She’s featured in Women Know Cyber – 100 Fascinating Females Fighting Cybercrime. Laura is an advocate for diversity and inclusion in technology as well as her field of Cyber Security. She served as a council member of the S&P Global Diversity Equity and Inclusion Council whom are tasked with fostering a diverse and inclusive environment. Her accomplishments as a council member have included revamping the Employee Resource Groups, adding sentiment and data driven metrics to enhance the community goals. She worked to establish partnerships with various organizations to build in diverse talent pipelines in the technology organizations such as Girls Who Code. Laura is a frequently requested speaker and respected thought leader, recognized for her innovative leadership and strong business acumen. She has participated in the World Economic Forum’s Global Futures Council on Cyber Security as a co-chair leading a group of subject matter experts in solving cyber challenges. She serves on the Board of Directors for the Financial Services Information Sharing and Analysis Center (FS-ISAC), an industry consortium dedicated to reducing cyber-risk in the global financial system. FS-ISAC has 7000 plus financial institutions, 15,000 users in the 70 jurisdictions to ensure the mission is accomplished. As a board member, she continues to encourage more participation in sharing timely cyber information which is action oriented at a global scale. Laura loves spending time with her family. She and her partner Murray are proud parents of four boys. They live in Brooklyn, NY where they love getting outdoors as a family for hiking, bike rides and amateur astronomy star gazing. She is also a big fan of science fiction and tinkering with technology at home. Don’t ask her how many raspberry pi’s she has.

Martin Howard Fortium Partners
Martin Howard

EVP/IT & IS

Fortium Partners

Summit Speaker

Martin is an insightful IT executive, Martin collaborates with his team to assess their technology capabilities and establish a strategic plan and projects to strengthen IT impact. Martin has a history of implementing complex enterprise systems – enterprise risk planning, electronic medical records, and customer relationship management – on time and under budget. He demonstrates a calm, cool and collected leadership style when considering security matters and handling compliance and data breach concerns. Whether working with a start-up or at a company with international operations, Martin embraces innovation and promotes utilizing IT to drive business transformation.

Michael Gross Cleveland Clinic
Michael Gross

Manager, Cybersecurity Intelligence

Cleveland Clinic

Summit Speaker

With over 30 years of experience in the IT industry, including more than two decades specializing in cybersecurity, I am a seasoned professional known for visionary leadership and comprehensive expertise in safeguarding organizations from evolving cyber threats. Key Highlights: * Cybersecurity Visionary: Throughout my career, I have consistently developed and executed robust cybersecurity strategies that align seamlessly with organizational objectives. I excel at protecting critical assets, data, and systems while proactively identifying and mitigating risks. My specialties encompass advanced threat analysis, cyber risk management, incident response, security architecture design, and regulatory compliance. As a cybersecurity visionary, I have pioneered solutions that fortify organizations against emerging threats. * Agility and Problem-Solving: My career has been marked by my ability to tackle complex challenges with agility and innovation. I leverage my expertise in cybersecurity methodologies, industry best practices, and compliance standards to provide effective solutions. * Mentorship and Leadership: I take pride in guiding and mentoring cybersecurity teams to excel in vulnerability assessment, threat detection, incident response, and recovery. I am deeply committed to fostering a culture of continuous learning and professional growth. * Communication and Work Ethic: My strong work ethic, exceptional interpersonal skills, and adept relationship-building capabilities are complemented by my proficiency in multitasking and effective communication. I thrive on embracing challenging tasks and delivering results. I am passionate about the ever-evolving field of cybersecurity and committed to contributing my expertise to secure and protect businesses in the digital age. Let's connect and explore opportunities to collaborate or share insights in this dynamic industry.

Avishai Avivi Safebreach
Avishai Avivi

CISO

Safebreach

Summit Speaker

I’m a versatile, high-performing CISO professional with leadership acumen, IT systems, security architecture, risk management, product development, and business enterprise solutions experience. I have strength and expertise in leading effective management initiatives through leveraging key strategic planning, high performance team-building, business requirements gathering, service delivery optimization, and project management skills within banking IT systems, securities, and service environments. I possess strong interpersonal and focused management abilities that improve efficiencies, enhance productivity, and contribute to long-term sustainable organization performance. My career contributions include achieving 10%+ growth YOY as Sr. Director of Engineering/Strategic Alliances for a large global network hardware/software and security services provider from spearheading the development of a successful strategy that focused on improvements to service delivery and market partner alliances in four countries, in addition, I cut $12M+ in costs from a $30M budget by collaborating with cross-functional managers on needs, and performing a detailed analysis of operations that identified resource rebalancing, and streamlining opportunities. I have solid skills in identifying cost reductions to achieve management objectives, and a proven track record implementing strategic, change or project management focused plans to ensure the seamless complex system integrations or launches. My professional history includes the strong ability to acclimate to or engage key software systems tools for the organization and continuously improve operations through process and SOP improvement initiatives.

Anna Thomas Citibank
Anna Thomas

Director Operations & Technology Transformation

Citibank

Summit Speaker

Dynamic technology leader with over 20 years of global experience in managing large teams. Change agent and problem-solver with a passion for technology and developing people. Skilled in grasping the big picture, conceptualizing, developing and implementing solutions and partnering closely with business executives. Proven adaptability and innovation in program leadership. Execution focused. Ability to perform in a fast-paced environment and propose a realistic project schedule by identifying critical paths, risks and challenges. Strong interpersonal, communication, negotiation, and influencing skills. CORE COMPETENCIES Product Design & Development Strategic Technology Planning Global IT delivery & Program Management Vendor Management Budgeting and Cost Control Stakeholder Management Leadership & Supervision Offshore/Onshore Management

Shamla Naidoo Netskope
Shamla Naidoo

Head of Cloud Strategy & Innovation

Netskope

Summit Speaker

Shamla Naidoo, Head of Cloud Strategy & Innovation at Netskope, has led global cybersecurity programs for IBM, Starwood/Marriott, Anthem/Wellpoint, Northern Trust and others, and serves as an independent board director for multiple global companies. She regularly consults for Federal, State, defense, and intelligence organizations domestically and overseas. She helps mature the cybersecurity profession through leadership roles in organizations like Security50, the Shared Security Assessments Group, Institute for Applied Network Security (IANS), HMG Strategy Group, and the Round Table Network. As the former Committee Chair on Legal Technology for the Illinois State Bar Association, she frequently speaks at legal forums for the ABA, ISBA, and others. By creating and teaching ABA-accredited courses on law, technology, and global privacy for the UIC School of Law, she educates the next generation of lawyers and adjudicators in areas of critical importance.

Scott Dillon
Scott Dillon

CEO, Digital Evangelist, Board Advisor & Investor

Summit Speaker

A rare C-suite digitally native executive with deep operational and advisory leadership experience, passionate about helping clients envision and execute aggressive transformation agendas while ensuring operational resilience. Expert in leading consensus-rooted change to automate and streamline legacy operations, digitally transform the customer experience, and create a security-first, data-centric mindset, no matter the industry involved. Adept at working with CEO’s, Boards, and Investors to envision, launch, and successfully implement multi-billion-dollar technology transformations, merger integrations and divestitures, and new products. Demonstrated ability to view business portfolios (legacy, existing or acquisition targets) dispassionately, and to transform, reposition, integrate, or divest as needed to accomplish strategic aims while preserving essential culture.

Cecilia Li Urban Edge Properties
Cecilia Li

CIO

Urban Edge Properties

Summit Speaker

Urban Edge Properties is a NYSE listed real estate investment trust focused on managing, acquiring, developing, and redeveloping retail real estate in urban communities, primarily in the Washington, D.C. to Boston corridor. Urban Edge owns 77 properties totaling 17.4 million square feet of gross leasable area. Cecilia Li, Chief Information Officer, serves as a strategic partner to the executive management delivering vision, critical analyses, and recommendations. With over 20 years of experience with a focus on customer service and digital transformation, she leads the strategy and implementation of their technology operations and aims to deliver continuous and impactful solutions to the business. You will often find her speaking on relevant topics related to innovation, business intelligence, cybersecurity, and operations optimization. She plays an active role in bettering the built environment; She served as the Co-Chair for Realcomm, is a Board Member of Real Estate Cyber Consortium (RECC), is the recipient of several awards in the industry and mentors aspiring IT professionals.

Alex Shulman Ernst & Young
Alex Shulman

Managing Director, Cloud Security

Ernst & Young

Summit Speaker

Alex Shulman-Peleg, PhD, is a Managing Director and cybersecurity consulting leader at Ernst & Young in the Americas. She is supporting hundreds of clients with modernization and cost reduction via secure enablement of Clouds and AI, addressing the involved risk, cybersecurity and regulatory requirements. In her previous role, she was the Director and Head of Cloud Security at Citibank, where she established and led a global CISO cloud security program, as well as cloud-native security engineering enabling massive modernization and faster application development. Being a pioneer in Cloud security, she led IBM’s early products and groundbreaking R&D initiatives including multi-national European consortiums consisting of industry and research leaders. She has 14 patents and more than 30 scientific publications having thousands of citations. She has decades of technological leadership and holds PhD, MSc and BSc degrees in computer science in the areas of ML, AI and computer vision.

Jim Routh Transmit Security
Jim Routh

CSO, Board Member, Advisor & Investor

Transmit Security

Summit Speaker

Jim Routh is currently on the Boards of Supply Wisdom, GrammaTech, Savvy Security, Accountable Digital Identity Association and the Global Resiliency Federation. He is the former Board Chair for the Health Information Sharing & Analysis Center (H-ISAC) where he served for five years and former Board member for the Financial Services Information Sharing & Analysis Center (FS-ISAC). He has presented to Boards and Board Committees (Technology & Governance, Audit Committees) for many public and private companies as the CISO or CSO, providing cyber security updates and education designed for board members over the past twenty years. Jim brings to the boards a vast business and technology background and is considered a digital and cyber security industry expert and thought leader. He has prepared and delivered several customized education sessions to Board members for the National Association of Corporate Directors (NACD) based on leading cyber security practices. Jim is currently an advisor for Transmit Security, Wiz, Devo, Netskope, Armis, Virsec, Securiti, Gurucul, Data Theorem, Saviynt, Legit Security, Picnic, Reveal Security, Calypso, and Graphite Health. He serves in an advisory capacity and investor for cyber specific venture funds including: Syn Ventures, CyberStarts, Security Leadership Capital, Ballistic Ventures and Rain Capital. Jim is an ICIT Fellow and an Adjunct Faculty member for NYU Tandon School of Engineering. Jim has a long history in technology and cyber security as a leader and management consultant. He was formerly a cyber security leader for many large companies including: MassMutual- CISO, May, 2019-Dec. 2020 CVS Health- CSO, Nov., 2018- April, 2019 Aetna- CSO, May, 2015-Nov., 2018- CISO, May 2013-May, 2015 JP Morgan Chase- Global Leader for Software & Mobile Security, Feb., 2010- May 2013 KPMG- CISO, July 2009-Dec. 2009 Depository Trust & Clearing Corporation (DTCC)- CISO, March 2005- May 2010 American Express- CISO Jul., 2003- Sept. 2004; VP Information Risk Management Aug. 2001-Sept. 2003; VP IT July 1998- Aug. 2001 While at Aetna, Jim developed one of the most mature converged security programs in the private sector. Prior to that he served as an IT leader at American Express and a management consultant for over a decade for financial service firms. Jim is a known icon in the cyber security industry. The awards he has received include the Santa Fe Group/Shared Assessments Lifetime Achievement Award, CSO Hall of Fame, ISE Luminary Award, SINET Impact Award, Evanta Break Away Leadership Award, Information Security Executive of the Year Award (twice), BITS Leadership Award. Jim is recognized as an industry leader in digital transformations and innovation in cyber security practices using data science as a foundation for unconventional cyber security controls and enterprise resilience. He offers a board of directors keen insights on the alignment of business strategy with digital transformation in the consumer marketplace.

Charles Blauner Cyber Aegis
Charles Blauner

CISO

Cyber Aegis

Summit Speaker

Charles is an internationally recognized expert independent advisor on Cyber Resiliency, Information Security Risk Management, and Data Privacy. Charles has had a distinguished career in Information / Cyber Security for over 30 years, including 25 years in Financial Services, as the Chief Information Security Officer (CISO) at JP Morgan and Deutsche Bank, and most recently the Global Head of Information Security at Citi. During this time, Charles held numerous industry leadership roles, including Chair of the Financial Services Sector Coordinating Council (FSSCC), founding Director of the Financial Services Information Sharing and Analysis Center (FS-ISAC), and Chair of the OpenGroup’sSecurity Program. Charles has worked closely with banking regulators around the world (OCC, FRB, BoE, MAS, and HKMA) to help reduce the risk posed by cyber threats to the financial sector at large. Charles is a regular conference speaker and has had the honor of appearing in front of US House and Senate committees.

Viktoria Levay Nourish With Viktoria
Viktoria Levay

Corporate Health Coach & Resilience Trainer

Nourish With Viktoria

Summit Speaker

A passionate, inspiring and engaging wellness leader/corporate coach/optimal performance expert to support organizations and their employees with stress management, mental health initiatives, communication, teamwork, leadership development, and implementation of sustainable lifestyle changes for high functional performance and productivity through ongoing training and 1:1 support. These proven methods increase team effectiveness, employee well-being, reduce absenteeism, workplace disruptions, improve employee retention and talent attraction, and save on health care costs.

Amy Aiello
Amy Aiello

Amy Aiello Photography

Summit Speaker

Amy is an Emmy Award®-winning photographer based in the Chicagoland area. She has used her photography skills to create for fortune 500 companies, television and radio personalities, musicians, and athletes in her more than 15 year career. One of her main one goals when capturing anyone's portrait is to do so in a positive, energetic and fun way, encouraging each person she creates with to feel and look like the best version of themselves possible.   
 
Amy blends her experiences in theater, music and gymnastics with the camera when possible, and loves artistically collaborating on both basic and extravagant concepts. She has dedicated much time educating herself in lighting and editing techniques in order to be able to offer a variety of styles and end results. She values continued education, and continues to study from photographers and other artists to add their influence to her own style.
 
While Amy's primary focus is on portraiture, she also captures events, product and interiors.
 
In her free time, Amy has re-discovered her childhood love for gymnastics, and has been pursuing the sport for recreation as an adult. She also loves cooking, wine tasting, and low key gatherings with friends and family. To Amy, relationships with people are everything.

Karl Mattson Noname Security
Karl Mattson

CISO

Noname Security

Summit Speaker

As a future-oriented information security executive my key strength is coaching and educating cybersecurity companies on listening to and interpreting the pain-points and priorities of enterprise customers. These insights help drive effective product strategies, go-to-market strategies and ongoing customer success. Over the years, I’ve had the privilege of advising several cyber entrepreneurs who are now thriving. On the heels of their success, I was looking for a new challenge. In 2020, I had the opportunity to meet with the Noname Security team early in its platform design. Recognizing that they were on the verge of solving several challenges in securing APIs, I wanted to be a part of their exciting adventure. I joined Noname as Chief Information Security Officer, where I’m currently establishing a rigorous standard for operational and security excellence, in addition to advocating for ongoing platform changes based on our customers’ needs. ABOUT NONAME SECURITY: Noname Security ensures secure APIs at the speed of business with the most powerful, complete and easy-to-use API security platform. How do I know it works? I was their first customer! I believe in the platform and want to share it with the world. According to Gartner, APIs will be the #1 attack vector by 2022. Gateways and WAFs don’t protect against API breaches or find misconfigurations. API testing and bug bounty programs have significant gaps, leaving businesses exposed. Noname resolves API vulnerabilities across 4 key pillars, or as we call it, DART: ➤ Discover ➤ Analyze ➤ Remediate ➤ Test We’ll find and take inventory of all existing APIs, use AI-based detection to illuminate risks, block attacks in real time and run tests to ensure API integrity before production. WHAT YOU CAN EXPECT: ➤ Solid engineering underpinning a product that’s ahead of the competition ➤ Flexible deployment model with many integrations that adapt to your business ➤ Coverage of the 3 main areas needed to protect APIs: posture management, detection and response and code security What are you doing to protect your company’s digital content? Keep your company’s APIs out of the news with Noname Security. LEARN MORE: See what our customers are saying about us and find more information on our website: www.nonamesecurity.com

Anand Raghavan Armorblox
Anand Raghavan

Co-Founder & CPO

Armorblox

Summit Speaker

As Co-founder & CPO at Armorblox, Anand loves the excitement of working with world-class teams to build and market game-changing products. Prior to Armorblox, Anand launched ThoughtSpot out of stealth mode, and built and ran product marketing and product management teams there. Anand was a founding team member and product manager at Blue Jeans Network, helping to grow it from four employees to 200+ employees and 2,000+ customers. Before that, he held several engineering roles, including six years at NVIDIA. Anand has a B.Tech. in electrical engineering from the Indian Institute of Technology Madras, an M.S. in electrical and computer engineering from the University of Illinois at Urbana-Champaign and an MBA from the Wharton School at the University of Pennsylvania, where he graduated with honors and was named a Palmer Scholar.

Ben Halpert (1) CISO Horizon
Ben Halpert

Founder & CEO

CISO Horizon

Summit Speaker

By day, he is a Fractional CISO and Cybersecurity Advisor for multiple companies building, running, and optimizing cybersecurity programs. By night, he champions cyber safety and ethics education throughout society via the 501(c)3 nonprofit Savvy Cyber Kids he founded. Ben has presented at the World Economic Forum, NACD directorship training, RSA Conference, TEDxSaintThomas, TEDxKids@Vilnius, GISEC Global, InfoSec World, SecureWorld, IEEE, ACM, CSO50, CIO/CISO Summits, and many other events. In addition to his numerous publications, Ben has been featured in the New York Times, Wired, Bloomberg, BBC, Kiplinger, Good Morning America, Good Day Atlanta, CNN HLN, Fox News, RogersTV, among others.

Aruna Ravichandran Cisco
Aruna Ravichandran

SVP, CMO, Webex by

Cisco

Summit Speaker

Aruna Ravichandran is the CMO for Webex by Cisco. She brings a unique parallel expertise in technology and marketing, blending her computer engineering background with a maniacal customer focus and a business- outcome philosophy that is based on equal parts purposeful storytelling and data science. She is a change agent and recognized authority on Hybrid Work, with a track record of guiding customers, partners, and global teams through workforce and technology transformations. Bridging the roles of the CMO, CIO, and CXO, Aruna believes in the power of marketing as a revenue creator, a brand value accelerator, and enabler of human connections. She is an outspoken proponent of leading with a people-first approach, shepherding business leaders towards a more innovative, culture-conscious, and inclusive way of doing business. As an industry expert on SaaS marketing and enterprise technology, her experience spans more than two decades – building SaaS and digital routes-to-market and expanding addressable markets – for companies including HP, Juniper, CA Technologies, and Cisco, where she currently oversees marketing for this $6B organization. Aruna has authored two pioneering books on DevOps, is a contributor for Forbes.com, and is a multi- award honoree, including Top 100 Most Influential Women in Silicon Valley 2016, and the National Diversity Council’s 2016 Most Powerful and Influential Woman. Aruna holds an MBA and MS Computer Engineering from Santa Clara University and a BS Computer Science from Bangalore Institute of Technology (BIT). She was also a graduate of the esteemed CMO Leadership program at Kellogg Business School in 2019.

Doron Hendler RevealSecurity
Doron Hendler

CEO & Co-Founder

RevealSecurity

Summit Speaker

Doron Hendler is the Co-Founder and CEO of RevealSecurity. Doron is an experienced management and sales executive with a proven track record of growing early-stage technology startups. He has mapped complex business environments in a wide range of global markets, both directly and through partners. Throughout his career, Doron has lead teams selling products, solutions and projects in storage, cyber security, DR/BC, green Energy/EV, Cloud and SaaS at companies such as NICE Systems (NASDAQ:NICE) and Trivnet (acquired by Gemalto, NASDAQ: GTO), Surf Communication (acquired by Lytx) and mPrest.

Jason Stutt ArmorCode
Jason Stutt

CRO

ArmorCode

Summit Speaker

As Chief Revenue Officer of ArmorCode, Jason brings with him more than 25 years of go-to-market leadership, while working intimately with Fortune 1000 customers. Previous to ArmorCode, Jason served as Duo Security's SVP Sales, where he helped customers secure access to their assets while building Duo into a unicorn in the marketplace. Jason grew annual sales from just a few million dollars to more than $150 million ARR over a period of four years before their $2.35B acquisition by Cisco Systems. Jason has also held senior executive positions at Abnormal Security and Luminate Security along with investing and participating on several boards for silicon valley start-ups.

Gabi Reish Cybersixgill Ltd.
Gabi Reish

Chief Product Officer

Cybersixgill Ltd.

Summit Speaker

Gabi Reish is the Chief Product Officer at Cybersixgill where he is responsible for leading the company's strategic product direction to meet the dynamic needs of security leaders. Gabi has 20+ years’ of experience in the technology industry directing product disciplines including product management, strategic market positioning, product and solution marketing, pricing and packaging. He is inspired by the challenges faced by cybersecurity leaders as they tackle the strategic implications of protecting their organization from cyber threats. This drives Gabi and his team to continuously anticipate the future needs of security leaders in order to align Cybersixgill's innovation priorities.

Todd Dekkinga Zluri
Todd Dekkinga

CISO

Zluri

Summit Speaker

Todd is the CISO at Zluri and has more than 25 years of experience in information technology with hands-on roles designing, developing, and deploying enterprise architectures from the ground up. Most recently, he has worked at Armis and Airgap and in the past also worked in the Biotech and Pharma industries for Genomic Health, Crescendo Bioscience, and Versartis, fully modernizing their IT departments in aggressive and high growth environments.

Martin Howard (1) Avesis
Martin Howard

EVP/CIO

Avesis

Summit Speaker

Martin is the EVP & CIO of Avesis. In 1978, Avēsis began as a regional ancillary benefits administrator. Today, Avesis is a national enterprise with 14 regional offices. Today, Avesis is a benefits provider for more than one million commercial members and more than eight million government members across the country. An insightful IT executive, Martin collaborates with his team to assess their technology capabilities and establish a strategic plan and projects to strengthen IT impact. Martin has a history of implementing complex enterprise systems – enterprise risk planning, electronic medical records, and customer relationship management – on time and under budget. He demonstrates a calm, cool and collected leadership style when considering security matters and handling compliance and data breach concerns. Whether working with a start-up or at a company with international operations, Martin embraces innovation and promotes utilizing IT to drive business transformation.

Anthony Gonzalez (1)
Anthony Gonzalez

Principal, Strategic Advisor

Innervision Services LLC

Summit Speaker

Visionary, results and solutions-driven professional with 20+ years of experience in progressively responsible Cyber Security and IT leadership roles in the financial services, insurance, pharmaceutical, biotechnology, consumer goods,and chemical manufacturing industries. Adept in building and leading global Cyber Security, IT technical and support functions. Creative, resourceful problem solver with a track record of success in delivering cost-effective and value-added services to his customers. Additional experience in industrial engineering and process improvement. Specialties: Areas of expertise include: Cyber Security, Network Security,Application Security, Infrastructure Management and Security Incident Management, Disaster Recovery, Forensic Investigations, Operations Management, Financial Management, Project/Portfolio Management, Policy/Procedure Development, Budget Preparation, Strategic Planning, Process Design/Implementation, Risk Mitigation, Enterprise Architecture, IT Governance, Manufacturing/Laboratory Automation, Organizational Design, Vendor Audits, System, Start-Up Operations, Sarbanes-Oxley (SOX), Talent Development/Mentoring, International Team Management, and Regulatory Compliance

Leo Cunningham (1) Owkin Inc
Leo Cunningham

CISO

Owkin Inc

Summit Speaker

Leo has a successful track record working within different blue-chip companies and industries ranging from Start-ups/Scale-ups, Banking, FinTech, SaaS and eCommerce, providing insight, consultancy and strategy across global remits covering Information Security, Cyber Security, GRC, Auditing, Cloud and a multitude of compliance remits including PCI DSS, SOX and GDPR. At Flo Health, the number one health and wellbeing app. His team protects the data of 250 million users, equating to 300 billion data points. He is currently an advisor to multiple start-ups from the Palta Group. He has been instrumental in leading security efforts within HealthTech and FemTech. In June 2022, Flo Security delivered the industry’s first ISO 27001 certification. Leo is a multi-award winner. A Snyk influencer. A Keynote speaker worldwide and was added to the CISO Platform Top 100

Karl Mattson (1) Endor Labs
Karl Mattson

CISO

Endor Labs

Summit Speaker

Karl is known globally as a cybersecurity innovator with over 25 years of diverse experiences as an enterprise CISO, technology strategist, and startup advisor across technology, retail and financial industry verticals. He serves today as the CISO for Endor Labs, a startup focused on software supply chain security. Prior to joining Endor Labs, Karl served as the CISO for Noname Security, specializing in API and Application Security. Previously, Karl held several leadership positions in the Financial Service community, including CISO for City National Bank, and later PennyMac Financial Services. Additionally, he was an active member of the FS-ISAC Mortgage Risk Council, President of the LA Cyber Lab, Financial Services Sector Chief for InfraGard, graduate of the FBI CISO Academy, and Adjunct Faculty at the University of Minnesota for over 10 years.

November 9, 2022

Agenda

All times Eastern Time

8:45 AM-9:30 AM

Registration & Breakfast



10:00 AM-11:00 AM
Panel

The “New” Workspace

In the post pandemic era, remote employment is the new status quo. Employers are forced to implement and improve the digital workplace by providing productivity tools and accessibility to company resources. In this session, we will share case studies of successful digital workplace implementations, including how to deal with the inherent security risks of expanded accessibility to company resources.

In partnership with:
Cisco

11:00 AM-11:35 AM
Keynote

Application Security in a DevOps, Cloud and API World

Security teams are challenged to modernize application security practices in light of accelerating shifts to DevOps delivery models and rapid adoption of cloud-native application designs. Applications built on microservices (e.g. serverless, containers, APIs) and delivered continuously are outpacing application security teams ability to secure them. CISOs need to consider new skills, new touch points and new platforms to maintain a strong security posture in light of these trends and the speed at which they are re-shaping IT.

In partnership with:
Noname Security

11:35 AM-11:50 AM

Networking Break


11:50 AM-12:45 PM
Panel

Operationalization: Bridging the Divide between Knowledge and Action

Knowledge is power, and yet, knowing is not enough. Security teams are well aware of the vital role played by threat intelligence within the modern security stack. Too often, TI is underutilized, funneled through manual processes to the desks of security analysts and researchers, and not operationalized to drive automated cybersecurity processes and actions. 

Why is this knowledge lost in translation on the way to action? Is it due to the overwhelming quantities of data? Is it because of conflicting information? Is it related to concerns about false positives? If we succeeded in operationalizing sensor-driven telemetry data in vehicles to autonomously drive cars, why aren’t we as successful in operationalizing threat intelligence data to drive autonomous cybersecurity actions?

In partnership with:
Cybersixgill Ltd.

12:45 PM-1:50 PM
Fireside Chat

Lunch & Fireside Chat

BEC - FBI calls it the $43B* heist. How to tame this beast?

According to the FBI’s recent IC3 report in 2022, exposed business loss due to BEC accounts for > $43B. Why? At the heart of it, the biggest fear is not the technology, it is the potential of human error that could expose your organization to a cyberattack. The majority of CISOs agree that an employee carelessly falling victim to a BEC/phishing scam is the most likely cause of a security breach. Most also agree that they will not be able to reduce the level of employee disregard for information security. How do we guard against human error without limiting employee efficiency and productivity?

In partnership with:
Armorblox

1:55 PM-2:50 PM
Panel

Building Security into DevSecOps

Many organizations struggle with how and where to introduce automation and integrations efficiently. Conventional approaches to application security can’t keep pace with cloud-native environments that use agile methodologies and API-driven architectures, microservices, containers, and serverless functions. Application security testing is evolving to meet the speed at which DevOps teams operate. DevSecOps teams are challenged with how to make sense of the noise their AppSec tools generate once they’ve been automated into DevOps pipelines.

Processes and tools are more fast-paced and rely on integration and automation to maintain efficiency throughout the software development life cycle. A new approach to DevSecOps is required addressing a change in the security mindset. How do CISOs achieve this without the buy-in from stakeholders?

In partnership with:
ArmorCode

2:55 PM-3:45 PM
Panel

The Greatest Fears?

The biggest fear is not the technology, it is the potential of human error that could expose your organization to a cyberattack. The majority of CISOs agree that an employee carelessly falling victim to a phishing scam is the most likely cause of a security breach. Most also agree that they will not be able to reduce the level of employee disregard for information security. Identity security is business essential for modern enterprises, but the ability to do it effectively has moved well beyond human capacity. How do we guard against human error without limiting employee efficiency and productivity?

In partnership with:
SailPoint Technologies Inc

3:50 PM-4:05 PM

Networking Break


4:15 PM-5:10 PM
Panel

Security Controls: Measuring Efficacy for the Business Growth

The industry is spending record amounts on cybersecurity tooling, but somehow CISOs still are at times left scrambling to respond to the vulnerabilities like Log4j. Assuming that these types of critical and far-reaching events are inevitable, how can CISOs further improve their organization’s preparedness for future cyberattacks?

This panel will discuss potential strategies for determining the critical security controls - both technology and behavioral - that can minimize cyber-risks and give the organization the competitive advantage to grow and innovate. We will explore frameworks for measuring the efficacy of cybersecurity investments, and KPIs that show the board the investment is safeguarding the company's digital infrastructure for the long term.

In partnership with:
Uptycs

5:15 PM-6:10 PM
Panel

Detect Imposters and Rogue Insiders in Business Applications

The risks posed by rogue insiders and external attackers make application detection a massive pain point for enterprises, especially in regards to core business applications. Examples are a fraudster’s takeover of a checking account via social engineering, or a customer service agent modifying an insurance policy to add themselves as a beneficiary, or a salesperson downloading a report of all customers before switching to work at a competitor. This panel will explore the growing need for application detection and the challenges posed by current rule-based techniques.

In partnership with:
RevealSecurity

6:15 PM-6:30 PM
Disruptor

The Road to SaaS Governance: Centralize & secure application management

The acceleration of cloud adoption has reached a point where today, 39% of all applications are SaaS. Because of decentralization and a low-friction model of payment and usage, SaaS applications will continue to replace on-prem software rapidly. But with decentralization comes chaos. Governance & management around SaaS is still largely lagging behind. CIOs and CISOs currently don’t have visibility or control, leading to Shadow IT & disjointed IT (SaaS) Ops.


To help IT leaders get a hold of their SaaS stack, we’ll present a full-fledged discovery and management framework that seamlessly integrates control systems for SaaS within the modern IT technology landscape.

In partnership with:
Zluri

6:30 PM-7:30 PM

Reception