Speakers from Oct. 9th, 2014
Moderator and Founder: Priscilla Tate, Executive Director, Technology Managers Forum
Priscilla Tate founded Technology Managers Forum (TechForum), a professional association for IT managers, in 1994. TechForum has a membership base of over 850 IT managers in the New York area who work for some of the largest enterprise organizations in the world. Each year Ms. Tate produces multiple enterprise IT focused events for end-user IT managers. Ms. Tate is a sought-after industry analyst and has been quoted in numerous publications, including the New York Times and Computerworld. In addition to creating content for and moderating panels at TechForum events, Ms. Tate has moderated panels at other industry events, including the Computerworld Premier 100 and RSA Conference in San Francisco. Prior to TechForum, Ms. Tate was a technology manager at Citibank, EF Hutton and Manufacturers Hanover Trust. Ms. Tate graduated from Duke University with a BA in History and an MA in Art History. She also studied at the Freie Universitat in Berlin with a scholarship administered by the Fulbright commission. She was a Columbia Fellow and did graduate work at Columbia University.
Roota Almeida, CISO, Covanta
Roota Almeida is the Chief Information Security Officer at Covanta Holdings Corporation, a leader in waste-to-energy and renewable energy projects. Roota has the responsibility of leading all aspects of IT security and risk, including establishing and maintaining global security strategies, architectures, standards, and compliance. She has over 14 years of experience in Information Security, Risk and Compliance. Prior to joining Covanta, Roota was with Merck & Co., leading Information Risk and Compliance. She was responsible for guiding the development, implementation and maintenance of information security strategy representing more than 50 nations. Additionally, she guided the company in the development and deployment of Safe Harbor certification process and led IT Security Risk Assessments for all applications and vendors. Roota is a governing body member of Evanta’s CISO Executive Summit, an exclusive leadership community of CISOs, as well as a member of other industry groups. Roota is a frequent presenter at conferences. She has a Master’s degree in Information Systems from Stevens Institute of Technology, Hoboken, NJ. She also has a Bachelor’s degree in Mechanical Engineering from India.
Todd Bearman, CISO, Towers Watson
Mr. Bearman works at Towers Watson as the CISO with responsibility for both Information and Physical Security. Mr. Bearman is responsible for ensuring appropriate security is in place to protect corporate and client assets in over 140 offices across more than 25 countries. Mr. Bearman works hand in hand with all lines of business, data privacy, audit, compliance, and legal to coordinate, execute, and govern the corporate Information Security program. Current responsibilities in this position include: managing the corporate information security program; defining strategy; coordinating security initiatives efforts across lines of business, audit oversight, incident management, and IT risk management; and reporting information security program status to the board of directors and various leadership committees. Mr. Bearman has over 25 years of information systems experience and has been involved with various aspects of Information Security for over 18 years. Prior to working at Towers Watson/Towers Perrin, Todd was the Director of Information Security at Commerce Bank (now TD Bank). Previously, Todd has spent much of his career as a consultant, where he last was responsible for managing the Information Security practice at Schlumberger Ltd, a global oilfield services organization. He has also had various consulting engagements as well as several years of banking experience at CoreStates Bank (now Wachovia). Mr. Bearman has successfully leveraged his broad base of security expertise and experience with his strong business sense to empower companies to protect their information assets while managing information risk and business costs and impacts. Todd has been invited to participate on several panels and presented security lectures for various organizations including Gartner, Symantec, NJ CIO Forum, NJ Technology Forum, and the Information Security World Conference, CISO Summit, and PwC State of Security Panel. Todd has also been featured in multiple articles including in Information Technology and Security magazine and CIO-Leader.com. He earned his BS in Marketing from Monmouth University.
Eduardo Cabrera, Deputy CISO, United States Secret Service
Eduardo E. Cabrera is a 19-year veteran of the United States Secret Service, having served in protective and investigative assignments in Miami, Florida and Washington, D.C. Currently, Mr. Cabrera is the Deputy Chief Information Security Officer responsible for identifying, developing, and implementing information security policies and processes across the Secret Service to reduce information, communication and technology risks.
Mr. Cabrera began his career as a special agent with the Secret Service in 1995 in the Miami Field Office before transferring to Washington, D.C. where he served on the Presidential Protective Division for President George W. Bush. Upon completing his protective assignment, he was transferred to the Criminal Investigative Division where he led cyber operational programs to develop and implement innovative forensic, investigative, and information sharing programs to combat financially driven data breaches targeting critical infrastructure. Specifically, as the Electronic Crimes Special Agent Program (ECSAP) program manager, Mr. Cabrera was responsible for training, equipping and setting policy for over 300 Computer Forensic and Network Intrusion Responder agents within the Secret Service.
Most recently, he was detailed to the DHS, National Cybersecurity and Communications Integration Center (NCCIC). There he served as an Advisor to the NCCIC where he was responsible for leveraging Secret Service programs to coordinate and collaborate on national level cyber incident response, threat analysis, malware analysis coordination, and cyber threat information sharing across public and private critical infrastructure sectors.
Mr. Cabrera is a native of Miami, Florida. He received a Bachelor of Science Degree from Florida State University, School of Criminology. He is a Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA) and just completed his graduate studies at the Naval Postgraduate School Center for Information Systems Security Studies and Research earning a Master of Science in Cyber Systems Operations.
Glenn Cobb, Sr. Director Solution Engineering, CipherCloud (KEYNOTE)
Glenn Cobb, Sr. Director at CipherCloud, has over 25 years of IT, security and consulting experience in companies such as IBM Global Services and Tompkins Financial Corporation. At Tompkins, Glenn served as Vice President of Information Technology, managing IT and Security for three banks and investment companies. At IBM, he was a project manager and architect, providing enterprise architecture consulting. For the last five years, he has held senior-level professional services and sales engineering positions in cloud security companies, including Marble Cloud and now CipherCloud.
Don Codling, Global Cyber Threat Trainer and Advisor, Former FBI Unit Chief Cyber Division
Don Codling advises domestic and international companies on cyber and data security best practices, Industrial Control Systems (ICS/SCADA) Cyber Security, electronic commerce issues (particularly digital currencies) and wide-ranging data security and privacy issues for commercial and U.S. government agencies. He also instructs foreign and domestic law enforcement cyber crime investigators and international and domestic commercial C-level staff in cyber and data security best practices.
Don Codling was with the FBI for over 23 years working in a variety of investigative programs focusing on International Cyber Crime and Cyber National Security Operations with particular emphasis on cyber security challenges that have significant impacts on the global financial services industry, energy sector and health care industries. His experience also includes cyber aspects of Violent Crime, Foreign Counter-Intelligence, Technical Operations, and Undercover Operations. He also provides training to senior cyber security law enforcement and private sector executives globally. He maintains in depth subject matter awareness as part of the instructor staff for the U.S. Department of State Assistance group for cyber security issues, global electronic commerce fraud/theft trends and best data protection practices training for ICS/SCADA owners and operators. He was most recently Supervisory Special Agent (SSA), Unit Chief and DHS NCSD Liaison from Cyber Division, FBI in Washington, D.C.. SSA Codling acted as the lead investigator or supervisor on numerous major domestic and international cyber criminal cases, corporate cyber espionage cases, counter- terrorism cases, cyber counter-intelligence cases, and long-term undercover operations. As part of his official duties, he traveled globally to advise, train and mentor foreign Law Enforcement and security services personnel in Cyber Crime matters, particularly those nations focused on Eastern European criminal gangs and non-state sponsored hacker groups. He served as chairman of an international cyber crime working group consisting of the heads of Cyber Investigative Departments of Australia, Canada, New Zealand, the United Kingdom and the United States. He still actively participates in several Internet security, stability and governance policy working groups with ICANN, G-20 and G-8 groups and is often called for subject matter expertise in Cyber criminal cases by law enforcement and government agencies in Africa, the Pacific Rim and Europe. He has also served as assistant FBI Legal attaché in Paris, France as well as Bridgetown, Barbados and was selected to attend the Harvard Kennedy School of Government for leadership development. The FBI, DHS and members of the international intelligence community have recognized him for outstanding inter-agency liaison work. His postings in the FBI were in San Diego, Los Angeles, Bridgetown, Barbados, Paris, France, Dallas and Washington DC. Following service in the United States Marine Corps Infantry, Don Codling received his BS in Civil Engineering from Norwich University. Before joining the FBI, he was an engineer for a telecommunications firm in Dallas.
Sam Dekay, Vice President, Information Security, BNY Mellon
Sam DeKay is responsible for BNY Mellon’s information security policies, standards, and guidelines. He’s also co-editor of BloginfoSec, an online Information Security magazine and co-editor of Business Communication Quarterly, a publication of the Association of Business Communication. He received his PhD from Columbia University and Fordham University andhas earned his CISM and CGEIT.
Martin Gomberg, SVP & Global Director Governance, Security & Business Protection, A&E Networks
Martin Gomberg, was SVP and Chief Information Officer for nineteen years with the A+E Networks where he now serves as Senior Vice President and Global Director of IT Governance, Security and Business Protection. He is a member of ISACs for Media and Entertainment for technical and cyber security and for business continuity, and has recently been appointed as vice chair for a U.S. State Department OSAC (Overseas Security Advisory Council) on security and threat mitigation for media and entertainment as an industry. Martin chairs the Enterprise Security and Privacy Committee for his company and is a member of the Executive Crisis Communication Team. Martin is the founder of Heroes Partnership, a founding member of the CIO Executive Council, and is a frequent speaker, writer and contributor on issues and practices in security, continuity and governance. Martin has had a unique background both as forensic specialist consulting to law enforcement and medical examiners in three states and in support of public safety and preparedness. He brings a unique perspective to security and the mitigation of risk.
Joseph Gothelf, Manager Incident Response, Wyndham Worldwide
Specializing in information technology related investigations, Joseph Gothelf’s experience includes work related to digital forensics, incident response, electronic discovery, data loss prevention, and litigation support. He has performed numerous financial and security investigations both domestically and abroad in the public, private, and government sectors. Previously, as a consultant with Deloitte and McGladrey, Joseph worked with corporate general counsels, information security groups, internal audit groups, and human resources departments to assist with possible security incidents and breaches, electronic discovery productions, intellectual property theft investigations, employment disputes, and regulatory inquiries. Currently, Joseph is the in-house Corporate Incident Response Manager for Wyndham Worldwide Corporation, overseeing all information security related incidents, procedures, response, and digital investigations. Joseph is an EnCase Certified Examiner (EnCE) and GAIC Certified Forensic Analyst (GCFA). He received his BS from Ithaca College.
Christopher Leigh, CISO, ConEdison
Christopher Leigh is responsible for managing Information Security at ConEdison. In this role, he is responsible for managing IT secuirty policy, threat and risk management, incident response and IT risks such as privacy and other regulatory risks. Prior to joining ConEdison in April of 2013, he spent 16 years at United Technologies Corporation in Hartford Ct. where he held positions including Global IT Security, Infrastructure and Application Services and Internal Audit. Christopher has also spoken on security and privacy at the Advocacy Today conference in June 2014 and the Palasaides Institute in December 2013, the Cyber Risk & Data Breach Management Summit in New York in 2011. He has also presented at the University of Connecticut and Eastern Connecticut State University on the changing IT security environment and regulations. Christopher has a Bachelors of Science in Accounting and Management from Saint Joseph’s College, a Masters in Business Economics from Southern Connecticut State Univiersity and a Masters of Science in Information Assurance from Norwich University. Chris is also a Certified Information Privacy Professional (CIPP), Certified in Risk and Information Systems and Controls (CRISC).
Patty Nghiem, VP Marketing & Alliances, Dataguise (KEYNOTE)
Patty Nghiem has helped thousands of enterprises move from legacy to SQL, to data warehousing, to cloud, and now to Big Data. She is a veteran of high-growth industry-leading solution providers of RDBMS, business intelligence, data warehousing, CRM, collaboration, and cloud, and now Big Data, with a focus on data privacy and security. Prior to Dataguise, Patty was head of global partner operations at Salesforce.com. Earlier in her career, Patty held technical, alliances and executive leadership positions at Business Objects and Oracle.
Boris Segalis, Partner, InfoLawGroup LLP
Mr. Segalis is a Partner at InfoLawGroup LLP. He counsels clients on data confidentiality, privacy, security and management issues. Mr. Segalis serves clients from a variety of industries, including utilities, multinational organizations, online retailers, data companies, and nonprofit organizations. His clients range from Fortune 10 companies to start-ups. Previously Mr. Segalis worked at Hunton & Williams LLP; Dewey Ballantine LLP; and United Technologies Corp. Mr. Segalis is an active contributor to the InfoLawGroup privacy blog and has regularly discussed privacy and data security issues on Fox Live. He is a co-author of the Privacy and Data Security Law Deskbook, Aspen Publishers, Wolters Kluwer Law & Business, July 2010, among other publications. He received his J.D from NYU School of Law, and his BS in Mechanical Engineering from Georgia Tech.
Richard Timbol, Director of Information Security, The NPD Group
Richard Timbol is the Director and Head of Information Security and Compliance, Global for The NPD Group, a recognized leader in providing data driven information, analytics and advisory services to the world’s largest enterprises across a myriad of sectors including automotive, beauty, consumer electronics, entertainment, fashion, food /foodservice, home, luxury, mobile, office supplies, sports, technology, toys, and video games. In his 23+ years of experience in the industry, he has also worked in the financial, pharmaceutical and health care industries. He holds a multitude of industry certifications in networking, infrastructure, enterprise messaging, project management and security. He was a voting member of the New York eHealth Information Privacy and Security Collaborative, which was tasked with overseeing the Statewide Collaboration Process (SCP) as part of the HEAL grant program, through which common policies, standards, and technical approaches for New York's health information infrastructure were developed as mandated to reflect the recent changes to HIPAA from the HITECH Act. He has been featured in trade magazines on the subjects of security strategy, operations and regulatory GRC.
Julian Waits, Prsident & CEO, ThreatTrack Security
Julian Waits is president and chief executive officer for ThreatTrack Security. He is responsible for establishing and executing the company’s go-to-market strategy, and leading all aspects of its operations. Julian is an accomplished chief executive, business development professional, risk-management strategist and sales leader with a tenured background in information security. He also has extensive experience in the venture capital arena, leading tech companies through periods of rapid growth, innovation and transition. Julian most recently served as the general manager of GFI Software's Security Business Unit, where he was responsible for honing the company's security product strategy and used his background in strategic development to help build a robust set of end-to-end security solutions. He has more than 20 years of experience at all levels of IT, from network engineer to sales and previous roles as CEO, when he led Brabeion Software Corporation, maker of IT governance, risk and compliance software, and Way2Market360 LLC., a startup accelerator. He also held senior leadership positions at Archer Technologies, e-Security and BNX Systems. He is an alumnus of both Loyola University of New Orleans and Xavier University.
Aleksandr Yampolskiy, CEO & Co-founder,
Dr. Aleksandr Yampolskiy is a cofounder and CEO of SecurityScorecard. SecurityScorecard™ grading service gives you continuous insight into the security posture and key risks of your company and of your business partners, as understood by cybercriminals who are performing reconnaissance on your company’s infrastructure. Previously he was a CTO of Cinchcast and BlogTalkRadio. Cinchcast is a secure large-scale SaaS for calls over 1000 people. Prior to Cinchcast, Alex was Head of Security and Compliance at Gilt Groupe companies, responsible for all aspects of IT infrastructure security, secure application development, and PCI compliance. Before that he worked at Goldman Sachs, Oracle, and Microsoft, where he was a lead technologist building large-scale, performant enterprise software focused on IDM, SSO, authentication and authorization. He’s been cited in New York Times, ComputerWorld, Observer, and other media. He’s a published author and speaks regularly on security and software development processes.