|Joseph Abrenio - Founder / CyberSquire, LLC
Mr. Abrenio is the founder and Chief Executive Officer of CyberSquire, LLC, a cyber security start-up providing enterprise cyber security as-a-service to its healthcare, law firm, and financial clients from its state-of-the-art security operations center, located on the Syracuse University campus in New York. CyberSquire is a unique partnership between private industry and academia, whereby our cyber professionals and cutting-edge technologies interface with world-renowned faculty members and master's and Ph.D. students to best leverage and optimize assets, equipment, and infrastructure to meet our shared mission of defending and safeguarding client networks.
Prior to founding CyberSquire, Mr. Abrenio served as Chief Revenue Officer and General Counsel for TruShield Security Solutions, Inc., where he was responsible for developing and implementing business plans, strategies, and procedures for growing new business opportunities and company revenue growth while overseeing the marketing and sales teams. In addition, Mr. Abrenio managed company legal matters and was responsible for retaining and managing outside counsel.
Prior to TruShield, Joseph served as vice president of commercial services for Delta Risk LLC, where he advised clients on cyber risk mitigation and management in multiple commercial industries, including healthcare, legal, insurance and retail. He facilitated cyber risk assessments and cyber breach exercises for his clients, focusing on incident response preparedness.
Prior to joining Delta Risk, Joseph partnered at LeClairRyan’s Intellectual Property and Technology Group, heading the Firm’s Data Privacy and Security practice where he represented healthcare organizations, retailers and financial institutions with electronic data protection.
Joseph graduated from the Syracuse University College of Law, and began his legal career as a judicial law clerk for the Circuit Court of Arlington County, Virginia.
Enitan Adesanya - VP, Risk Management and Compliance / Kaiser Permanente
Enitan Adesanya is Vice President Risk & Compliance Officer for Kaiser Permanente’s Enterprise Shared Services (ESS). In this capacity, Enitan oversees the operational risk and compliance activities for ESS business units including the company’s facilities and clinical technology acquisition and operations, procurement & supply chain, business continuity and corporate security, and end-user technology device deployment and maintenance services.
Enitan is responsible for ensuring that operational, regulatory, and safety risks for these enterprise operations are properly managed, and the company’s ethics, and integrity standards are adhered to. He is a member of the ESS Executive Leadership team, as well as the National Compliance Office Senior Leadership team.
Prior to assuming this new risk executive role in 2017, Enitan held other key leadership positions at Kaiser Permanente including Vice President Risk and Compliance Officer of National Facilities Services, Senior Director of Financial Operations and Director of Financial Governance for the California region of the organization. Prior to joining Kaiser Permanente in 1993, Enitan spent several years in public accounting and working for other private for-profit companies.
Enitan is a State of California Certified Public Accountant, a Certified Global Management Accountant, and is ISO 31000 certified. He earned a Bachelor of Science degree in Business Administration (Finance) from Ahmadu Bello University in Nigeria and a Master of Business Administration degree from Golden Gate University in San Francisco. Enitan also earned an Executive Leadership Certificate from the Harvard Business School.
Enitan serves on many non-profit boards including the Samuel Merritt University in Oakland CA, the San Francisco Theological Seminary, and the foundation board of the East Oakland Youth Development Corporation in Oakland, CA.
Julie Bowen - SVP, GC and Corporate Secretary / The MITRE Corporation
Ms. Julie Bowen is senior vice president, general counsel, and corporate secretary of The MITRE Corporation. Ms. Bowen directs an in-house legal team that advises MITRE’s leadership on all legal matters, including cybersecurity, contracting, international and global presence, intellectual property, human resources, healthcare, real estate, and national security. She oversees MITRE’s government relations, following legislation, regulations, and policies that relate to MITRE work programs, and leads efforts to expand both government and partner relationships.
Ms. Bowen, an expert in cybersecurity and intellectual property law, joined MITRE in 2006 as associate general counsel. As part of her duties, she oversaw technology transfer, guiding policies and practices in support of transferring MITRE-developed technologies to the public sector through patents and licensing. Since 2008, MITRE has executed 710 licenses and has been issued 112 patents. Prior to this, Ms. Bowen held several senior positions in the private sector, including chief legal counsel of DHL Global Mail; vice president, general counsel and secretary of QuadraMed Corporation; and vice president, general counsel and secretary of TREEV, Inc.
Bowen is an active member of industry, academic and professional groups including the Executive Circle Advisory Board of the Northern Virginia Technology Council, the Board of Visitors of The Catholic University of America’s Columbus School of Law and the Association of Corporate Counsel. She has also performed pro-bono work for legal aid organizations with a focus on defending the rights of women, children and the homeless.
A strong supporter of MITRE’s award-winning work-life programs, Ms. Bowen is an outdoors enthusiast and especially enjoys hiking in the Shenandoah Valley and running. She is also an avid indoor cyclist and spins several times a week.
A native of Annapolis, Maryland, Ms. Bowen graduated from The Catholic University of America, where she received her bachelor’s and law degrees. She is admitted to the bars of Maryland, the District of Columbia, and Virginia.
Art Boyle - VP, ERM / Radian Group
Art Boyle is the Vice President of Enterprise Risk Management at Radian Group Inc. Radian Group Inc., headquartered in Philadelphia, provides private mortgage insurance, risk management products and real estate services to financial institutions. Prior to joining Radian, Art was the Director of Financial Risk Management for H&R Block in Kansas City. He is the current president of the Delaware Valley Chapter of RIMS and is a graduate of Villanova University. Art maintains several professional designations in both the insurance and business continuity disciplines.
Ed Cabrera - Chief Cybersecurity Officer / Trend Micro
Eduardo Cabrera is responsible for analyzing emerging cyber threats to develop innovative and resilient enterprise risk management strategies for Fortune 500 clients and strategic partners. Before joining Trend Micro, he was a 20-year veteran and former CISO of the United States Secret Service with experience leading information security, cyber investigative and protective programs in support of the Secret Service integrated mission.
He started his career investigating transnational cyber criminal groups targeting the financial and retail sectors and later led cyber forensic operations in support of Secret Service large-scale data breach investigations. He then served as the Secret Service strategic advisor to the DHS National Cybersecurity & Communications Integration Center (NCCIC).
Courtney Claflin - Executive Director, Captive Programs / University of California
Courtney is the Executive Director of Captive Programs for the University of California, Office of the President. Current captives under his direction include Fiat Lux Risk and Insurance Company, a single parent captive and UC Health RRG, A Reciprocal Risk Retention Group. The University of California system consists of 10 University campuses, 5 academic health systems, and 3 national laboratories, incorporating over 240,000 students, 280,000 faculty and staff, $30 billion of annual revenues and more than 1.7 million alumni living and working around the world.
As Executive Director, his role is the development, implementation and management of the captives and all captive activities. This includes strategic planning and management of current captive programs and the formulation and development of new risk financing strategies utilizing captive insurance arrangements.
Previously, he spent 30 years in the insurance brokerage community as a direct writing agent, independent broker and ultimately a captive insurance practitioner. He is the principal architect of numerous single parent, group, health, micro and association captives and was named The 2016 Captive Professional of the Year at the Captive Review 2016 US Captive Services Awards. In addition, one of the captive insurance companies he manages, Fiat Lux Risk and Insurance Company, was named the 2017 Outstanding Captive Insurance Company of the Year by the Captive Insurance Companies Association of America, (CICA). Mr. Claflin is also a member of the faculty for the International Center for Captive Insurance Education which provides the captive insurance industries pre-eminent professional designation.
Yvette Connor - Chief Risk Officer / Focal Point Data Risk
Yvette Connor is the Chief Risk Officer at Focal Point Data Risk, LLC. In that role, she leads Focal Point’s Executive Risk Consulting practice, as well as taking a strategic role overseeing the firm’s Cyber Balance Sheet initiative. Yvette joined Focal Point from consulting firm Alvarez & Marsal (A&M), where she was Managing Director of Insurance and Risk Advisory Services with a dedicated focus on enterprise-wide risk management and compliance. Prior to A&M, she served as the Director of Client Engagement for Marsh, where she was responsible for the top 1500 client relationships and a member of the analytics team supporting Global Risk Management clients. She previously was the Director of Risk Management at Vulcan Inc., a privately held company, with a diverse portfolio of more than 200 operating companies, where she led the development of a multi-disciplinary risk management department. Earlier, she served as Vice President of Risk Management at Roll International, a global food producer. In 2013, Business Insurance magazine named Connor as one of the “Women to Watch” in Risk Management and Insurance. In 2009, Treasury and Risk magazine recognized Connor as one of the top “40 under 40” professionals in her field.
Dena Cusick - National Practice Leader, Risk Practice / Wells Fargo & Company
Dena L. Cusick is the national practice leader for the technology, privacy and network risk practice, which is part of the Wells Fargo Insurance Professional Risk Practice. She serves as an in-house resource for all professional liability, technology errors and omissions, media liability, network security and privacy related lines of coverage. In her role, Dena is responsible for driving strategy, maintaining carrier relationships and delivering the most state-of-the art coverage for Wells Fargo clients. She also provides consultative services, market negotiations, policy analysis and placement, policy administration and claims advocacy services.
Dena has more than 20 years of experience in the insurance industry, with the last 15 as a broker for professional liability. Prior to joining Wells Fargo Insurance, Dena was a broker at Marsh USA and an underwriter at AISLIC (an American International Group company). Additionally, Dena has worked on the wholesale side of the business, finding homes for hard-to-place professional liability risks for retail brokers. Dena has had the opportunity to work with underwriters around the world including having brokered deals at Lloyds of London and Swiss Re in Zurich.
Dena speaks on various panels relating to the topics of network security and privacy for all industry classes. She also conducts seminars on behalf of Wells Fargo's local and regional offices.
Lou DeSorbo - SVP and Chief Security Risk Officer / Centene Corporation
Lou DeSorbo, Senior Vice President, Chief Security Risk Officer (CSRO) of Centene is Responsible for developing the Security Vision and Strategic Plan for Centene’s Global Enterprise. In this role, Lou ensures all environments are appropriately secured, comply with applicable regulatory, and contractual requirements, while managing security risks as components of business risk. Day to day, he leads the Security Strategy, Security Risk Management, Security Compliance & Governance, Security Policy and Awareness, and Security Portfolio Management teams. Lou has developed a best in class Security Risk Management capability he leverages to enable Centene to make risk-informed business decisions.
Previously, Mr. DeSorbo served in a variety of leadership roles at Deloitte, Air Force Space Command, Booz Allen Hamilton, the Joint Task Force-Global Network Operations (now U.S. Cyber Command) and Northrop Grumman focusing on creating innovative Cyber Operations and Warfare technologies, tactics, techniques, and procedures. Prior to his commercial experience, Lou served the US Air Force in several roles to include Seismic Operations Manager, Master Instructor of Geophysics, and Measurements and Signature Intelligence (MASINT) Instructor. He holds an MBA from Colorado State University and a B.S. in Electronics Management from Southern Illinois University.
Shawn DeWitt - Director, Risk Management / Kaiser Permanente
Shawn DeWitt is the Director of Risk Management for Enterprise Shared Services at Kaiser Permanente. He is responsible for establishing the operational risk & compliance framework and governance committee, risk assessment standards, and risk performance monitoring & reporting for Enterprise Shared Services; which encompasses Clinical Technology, Facilities Operations, Capital Acquisition, Buy to Pay, Healthcare Continuity & Support Services, and End User Services. Shawn is currently conducting an operational risk assessment in support of a multi-year effort in Privacy & Security.
Prior to working with Enterprise Shared Services, Shawn oversaw the Edge IT program, a $150+ Million joint IT and operational effort tasked with balancing the reduction of cyber risks and vulnerabilities of clinical care, facilities operations, and physical security devices with the operational risks to patient care.
Shawn has a Bachelor’s degree in Business Administration from the University of San Diego.
Augustine Doe - CEO / Outsource Risk Management LLC
Augustine Doe is the Chief Executive Officer (CEO) of Outsource Risk Management (OutsourceRM), LLC. In the CEO role, Augustine directs the provision and delivery of all Enterprise Risk Management services. Before joining OutsourceRM, Augustine was the Vice President, ERM for Network Health Inc. where he led Network Health’s ERM, Internal Audit, Corporate Insurance, Compliance, and Legal Departments.
At Network Health, Augustine led corporate-level discussion of risk prioritization, focusing on what risk choices will optimize Network Health’s ability to achieve goals and developed, managed, and refined qualitative and quantitative risk reporting to meet the needs of Network Health’s Board of Directors.
Augustine has published a number of risk management articles: Three Considerations for Reducing Risk in Cloud Computing (CIOOutlook Magazine, April 2017), Four Ways IT Can Support an Organization's ERM Efforts (1ITEnterprise Magazine, July 2016), When CIO Means 'Chief Isolated Officer' (CIOReview Magazine, June 2015 and republished June 2016), When CIO Means Chief Insight Officer (CI00utlook Magazine, April 2016), ORSA Top-of-Mind Enterprise Risk (Advisen Risk Network, May 2014) etc., and is a seasoned risk management executive who transforms an organization's "off-the-shelf' acquired risk management tools and disparate practices into a seamless, sustainable, and tailored control process that gives boards, senior management, and business units the insights needed to make sound decisions and achieve strategic, operational, financial, regulatory compliance, and hazard management goals in addition to instituting effective cybersecurity risk management. He received a Bachelor of Arts degree from Harvard University, earned a JD-MBA from Syracuse University, and holds a variety of risk management certifications or designations including ARM-E, ARM, and ERM (The Institutes), Strategic Decision and Risk Management, and Advanced Project Management Professional (Stanford University), Risk Management for Corporate Leaders (Harvard Business School), and RIMS at Lloyd’s Risk Management Academy (RIMS-Lloyd’s Corporation).
Will Durkee - Director, Security Solutions / TSC ADVANTAGE
Will Durkee is the Director of Security Solutions at enterprise security firm TSC Advantage, and a Certified Information Systems Security Professional (CISSP). With diverse experience at startups and world-leading investment banks, including abroad in Taiwan, Russia, and the U.K., he brings a practical, “business-first” approach to security investments. Will also advises Lloyd’s of London cyber insurance underwriters and brokers to provide clients with robust cyber insurance products. Will is a Virginia Military Institute graduate and MBA, as well as an ice hockey coach and sailor in his spare time.
Tom Easthope - Director, ERM / Microsoft
As director in Microsoft’s Enterprise Risk Management organization, Tom Easthope is currently responsible for driving the company’s ERM engagement focus on information and physical security, enterprise IT, as well as continuity and response. Tom also oversees Microsoft’s internal implementation of the NIST Cybersecurity Framework and contributes to ERM’s risk framework methodology, enterprise aggregation and business risk engagement process. Tom joined Microsoft in 2007 as a senior program manager in the company’s Enterprise Business Continuity program.
Prior to joining Microsoft, Tom founded and led two startup business endeavors which resulted in acquisitions by suppliers. In his first line management role, Tom served as general manager of a wholesale travel distribution company which tripled annual sales to $100 million over seven years.
Tom earned a bachelor’s degree in economics from the University of Michigan and an MBA from The George Washington University.
Tom Fuhrman - Cybersecurity Consulting and Advisory Practice / Marsh Risk Consulting
Tom Fuhrman is Managing Director of Cybersecurity Consulting and Advisory Services at Marsh Risk Consulting (MRC). He leads MRC’s cyber risk consulting practice in North America and in international markets and works across Marsh & McLennan’s operating companies on cyber initiatives.
As an experienced cybersecurity consultant with more than 20 years experience, Tom helps clients secure their networks, systems, and data. He advises clients on the strategic management of cybersecurity risk, and on enhancing the collaboration between the information security and risk management functions.
He has served in consulting leadership roles as the president of Delta Risk, founder and president of 3tau LLC, and senior vice president and partner at Booz Allen Hamilton. A recognized thought leader in cybersecurity, he has presented leading ideas in cybersecurity to many audiences and through diverse publication channels. Tom is an electrical and computer engineer and a Certified Information Systems Security Professional (CISSP).
Kostas Georgakopoulos - CISO / Procter & Gamble
Kostas Georgakopoulos is the Chief Information Security Officer at Procter & Gamble based out of Cincinnati, Ohio and leads the company’s Global Information Security Program. Mr. Georgakopoulos is responsible for the firms Information Security Governance Framework, as well as developing, mentoring and managing a team of Information Security professionals to proactively address advanced persistent threats, blended targeted attacks, and application security threats.
Prior to Procter & Gamble Mr. Georgakopoulos served as the Americas Head of Security Technology at UBS where he provided subject matter expertise to senior management in the development, implementation and maintenance of the firms Enterprise Information Security Framework.
Earlier in his career, he served as CISO at NASDAQ OMX where he led the organization through a targeted APT breach and worked closely with the NSA, DHS, the FBI and US-CERT.
Mr. Georgakopoulos has also built and led security programs at Bank of China, Deutsche Bank, Citigroup and People’s Bank.
He has spoken at various security forums including at RSA 2014 and has taught Cybersecurity courses at Fairfield University and Sacred Heart University.
He has earned a master’s degree in International Law & Diplomacy at the Fletcher School of Law and Diplomacy, Tufts University. He received his undergraduate degree in Liberal Arts from UCONN.
Michal Gnatek - Enterprise Risk Manager / The MITRE Corporation
Michal Gnatek serves as The MITRE Corporation’s Enterprise Risk Manager and is based just outside Washington, DC in their McLean, VA headquarters. MITRE operates FFRDCs—federally funded research and development centers—which are unique organizations that assist the United States government with, scientific research and analysis, development and acquisition and systems engineering and integration.
Prior to joining MITRE in October 2016, Michal spent his 25+ year career in traditional risk management and employee benefits with some of the largest global commercial insurance brokers including Johnson & Higgins, Marsh & McLennan and The Lockton Companies. While Michal’s industry expertise was focused primarily in the Technology and Government Contracting sectors, he served a wide array of large commercial organizations in identifying and mitigating complex risks such as Cyber and Data Privacy, Professional Liability/Errors & Omissions, Business Travel Risk Management (including Kidnap & Ransom), Defense Base Act, Directors & Officers Liability, Employment Practices and Property & Casualty.
Rocco Grillo - Executive Managing Director, Cyber Resilience Leader / Stroz Friedberg
Rocco Grillo is an Executive Managing Director serving on Stroz Friedberg’s executive management team. He is in charge of the Cyber Resilience business, which includes incident responders and security scientists who deliver proactive and reactive cybersecurity capabilities. In this role, Mr. Grillo is responsible for the oversight and supervision of cyber response efforts, including data breaches, malware outbreaks, intellectual property theft, and cyber extortion. Additionally he oversees services for assessing security risk and developing strategic solutions.
Mr. Grillo has more than 25 years of experience providing organizations with security and risk management services. He is an internationally recognized expert in the field of Incident Response (IR) and information security. He has assisted corporations, law enforcement agencies, major law firms, and industry threat intelligence organizations with IR, computer forensics, and security threat advisory services. Mr. Grillo has advised clients and coordinated IR efforts for some of the largest security breaches over the last decade.
He is an affiliate Board Advisor for FS-ISAC and NH-ISAC Advisory Board, and a member of the Shared Assessments Program Steering Committee Board and the CLM Cyber Liability Council. He has spoken on information security at the RSA Conference, the IT Policy Compliance Group, the ISSA, IIA, (i-4), and for other industry organizations.
Gary Hayslip - VP, CISO / Webroot Software, Inc.
Gary R. Hayslip, CISSP, CISA, Chief Information Security Officer, Webroot Inc. As Chief Information Security Officer (CISO) for Webroot, Gary advises executive leadership on protecting critical information resources and oversees enterprise cyber security strategy. As CISO, his mission includes creating a “risk aware” culture that places high value on securing and protecting customer information entrusted to Webroot. Gary is a proven cyber security professional, his previous information security roles include multiple CISO, Deputy Director of IT and Senior Network Architect roles for the City of San Diego, the U.S. Navy (Active Duty) and as a U.S. Federal Government employee.
Gary is involved in the cyber security and technology start-up communities in San Diego, he is an advisory board member for Cybertech, the parent organization for the Cyber incubator Cyberhive and the Internet of Things incubator iHive. He also serves as a member of the EvoNexus Selection Committee where he reviews and mentors Cyber Security and Internet of Things startups and he is an advisory board member for the Cyber Center of Excellence. Gary holds numerous professional certifications including: CISSP, CISA, and CRISC, and holds a Bachelor of Science in Information Systems Management from University of Maryland University College & Masters in Business Administration from San Diego State University.
Ernest Koschineg, Esq - Partner / Cipriani & Werner, P.C.
Ernest Koschineg is a partner and trial lawyer in the Philadelphia office of Cipriani & Werner. He serves as chair of the firm's life sciences practice group. In this capacity, he focuses his practice primarily on the defense of medical, pharmaceutical and biotech companies as well as healthcare institutions and contract research organizations involved in personal injury and financial loss claims. He has been designated national coordinating and trial counsel in matters involving defibrillators, pain pumps, bone screws, clinical trials, OTCs, generic drugs, cold therapy products, dietary supplements, medical publishers, joint implants, cardiac devices, latex gloves, skin lasers, morcellators and blood-related products.
He has been designated lead counsel in a number of class actions and multi-district litigations. His focus on the healthcare field has also allowed him to represent physicians and nurses alike in medical and psychiatric malpractice cases. The scope of his representation has involved both domestic and international corporations leading him to practice in over 50 jurisdictions in the United States and in Europe.
Ernest is a member of the Information Privacy and Data Security Team. In this role, he advises clients on data protection practices and regulatory compliance. Specifically, he works with clients in the healthcare and life sciences sectors to identify and develop data protection plans, conduct vulnerability evaluations and counsel on mitigation strategy and remedies. He also is well versed in international e-discovery concerning privacy and data protection laws.
Additionally, Ernest has an active commercial practice focusing on litigation involving cyber breaches, construction injury and defect, commercial disparagement, food contamination, toxic exposures, insurance coverage, banking and employment disputes.
Laura Langone - Senior Director, Risk and Insurance / PayPal
Laura joined PayPal, Inc., the leading global secure payments company, in August 2015 and is responsible for Global Risk Management and Insurance.
Prior to PayPal, Laura was the Senior Director of Juniper Networks from 2009 to 2015, responsible for Global Risk Management including credit, compliance and enterprise risk management.
Laura has over 20 years of risk management experience. She started her career as a Casualty Underwriter with AIG where she worked in Boston, New York and Paris, France. Later she obtained her California Insurance Brokers License while at Johnson & Higgins and serviced large global high technology and biotechnology companies.
From 2001 to 2007, Laura was the Director of Risk Management and Assistant Treasurer at Genentech, Inc., a leading biotechnology firm acquired by Roche. Laura also held positions at Marsh as the West Coast Life Science Leader, Oracle Corporation as the Director of Risk Management and Gordon & Rees, LLP, as an attorney in their insurance defense practice.
Laura holds a Doctorate of Jurisprudence from Golden Gate University School of Law and MBA from Thunderbird School of Global Management. She is an active member of RIMS and most recently as the president of Silicon Valley Risk & Insurance Society (SVRIMS) Chapter supporting education and networking for high technology risk management professionals in the Bay Area and the Chairperson of the Enterprise Risk Management Sub-Committee.
Harrison Lewis - CIO / Northgate Markets
Harrison Lewis is the Chief Information Officer at Northgate Gonzalez, LLC, a California based specialty food retailer with an emphasis on prepared foods, real estate, and financial services. Mr. Lewis' specializes in Business Intelligence, Data Warehousing. Retail Price Optimization, Data Quality, Integration, and Information Security. Mr. Lewis has a deep understanding of the retail business and its challenges. He continually assesses and implements technology solutions that allow businesses to overcome challenges, realize opportunities, and comply with increased regulations. He has over 24 years of experience in the retail industry, with over 15 years of experience in providing technology solutions to organizations.
Prior to joining Northgate Gonzalez, LLC, Mr. Lewis served in senior leadership roles at Haggen, Inc., The Great Atlantic and Pacific Tea Company, H. E. Butt Grocery Company, and the Kroger Company. Additionally, he has served on the Board at many corporate, education, and community organizations.
Shawn Malone - Founder & CEO / Security Diligence, LLC
Shawn Malone is Founder and CEO of Security Diligence, LLC, a consulting and advisory services company focused on Information Security, Privacy and Risk Management with key practices areas in Cybersecurity and Third Party Risk. Shawn has 30 years of industry experience in secure systems strategy, architecture, development, project engineering, implementation, governance and compliance, risk management and information security program operations.
Previously, Shawn was vice president of business compliance for Radian Group Inc., a leading provider of private mortgage insurance and mortgage real estate services headquartered in Philadelphia, PA. Shawn was responsible for data security relative to regulatory and client requirements and provided a key leadership role in security and data privacy governance and compliance. He led both the customer due diligence response process and the third party Vendor Security Assessment program. He was the lead for Radian's participation in the Shared Assessments Program for Third Party Risk Assurance. He provided leadership to the organization in security and data protection strategy, policy, operations, third-party risk and records management. Shawn joined Radian as the company’s first information security director to develop an enterprise-wide security program prior to developing the Business Compliance organization.
Prior to Radian, Shawn was regional manager and consultant with Forsythe Solutions providing a full range of security services and product support. Before joining Forsythe, Shawn led professional services in the Northeast U.S. for Telenisus, a managed security services provider, with responsibility for development and execution of strategic security consulting activities. Prior to Telenisus, he held various technical and project management leadership positions with Lockheed Martin for satellite communications programs and network security initiatives.
Shawn is a Certified Information Systems Security Professional (CISSP) and holds the Information Systems Security Management Professional (ISSMP) and Architecture Professional (ISSAP) designations from ISC2. He is also a Certified Information Privacy Professional (CIPP/US) as designated by the IAPP and a Certified Third Party Risk Professional (CTPRP) as designated by Shared Assessments. He is a member of the Institute of Electrical and Electronics Engineers (IEEE).
Shawn received a Bachelor of Science in engineering from State University College at Buffalo, a Master of Science in network security from Capitol Technology University and participated in the Executive Education Program in Finance from Pennsylvania State University.
Tracy D. Martin - President / PivotPoint Risk Analytics
Tracy Martin serves as President of PivotPoint Risk Analytics. Tracy is responsible for guiding the company’s growth in the burgeoning enterprise security market with predictive threat modeling to enable corporations and government entities the ability to quantify their cyber value-at-risk allowing them to make informed decisions regarding their cybersecurity investments and cyber insurance coverage. His responsibilities also include translating opportunity into needs and working with engineering to transform those needs into next generation cyber risk decision support technologies enabling organizations to make prognostic decisions regarding their security investments and cyber insurance needs. Tracy brings over twenty-five years’ systems engineering experience fielding state-of-the-art ground- and space-based cyber systems for national agencies and the DoD. Tracy has held technical and leadership positions at AT&T, Booz Allen Hamilton, and RABA Technologies. Most recently, Tracy led product management for an education startup. Tracy is an alumnus of the University of Hawaii and Colorado Technical University.
Christine Merkle - SVP - Corporate Risk Management / Moody's Corporation
Christine Merkle has almost 30 years of experience in Corporate Risk Management. She is currently a Senior Vice President at Moody’s Corporation. In her current role, Ms. Merkle supervises a team responsible for managing Moody’s global insurance program, captive insurance company and oversight of the Enterprise Risk Management function. She has extensive experience in insurance program design and implementation, international programs, claim and litigation management, mergers and acquisitions, enterprise risk management, crisis management and business continuity planning.
Christine began her risk management career at Dun & Bradstreet where she held positions of increasing responsibility over a span of 15 years. Following D&B’s corporate restructure, Christine was part of a unique team that provided outsourced risk management services to D&B and six of its former subsidiaries. From 2000 to 2003, she was the Risk Manager for MONY Life Insurance Company.
Ms. Merkle earned a B.A. from Queens College, CUNY and the Associate in Risk Management (ARM) designation from the Insurance Institute of America. She is a member of the Risk and Insurance Manager’s Society (RIMS), a past President of the New York Chapter of RIMS, and a member of the Insurance and Risk Management Roundtable.
Jake Olcott - VP of Strategic Partnerships
Jacob Olcott is Vice President of Strategic Partnerships for BitSight Technologies, where he oversees the company’s cyber insurance and government initiatives. He previously served as legal and policy advisor on cybersecurity issues to the U.S. Senate Commerce Committee and U.S. House of Representatives Homeland Security Committee. Prior to BitSight, he advised Fortune 1000 executives on cybersecurity governance and technology issues. He currently teaches a masters-level class on cybersecurity at Georgetown University's School of Foreign Service.
David Olive, Esq - Principal / Catalyst Partners
As a principal at Catalyst Partners, David Olive supports domestic and international clients in their work in the homeland security enterprise. Catalyst Partners assists companies seeking SAFETY Act protections that range from a variety of industries including global supply chain aviation, transportation, critical infrastructure, professional sports leagues and venues, technology and even explosive detection canine services. Catalyst Partners successfully represented the first two professional sports venues to ever receive SAFETY Act protections, which include the New York Yankees and New York Mets.
David has more than 30 years of experience in business, politics, law and public affairs. As former chief of staff to U.S. Rep. Asa Hutchinson (the first undersecretary for Border & Transportation Security at the U.S. Department of Homeland Security), and a former staffer for U.S. Senator Jim Allen (D-AL), David understands that very few things get done in the security world of Washington without approaching them in a bi-partisan manner.
In 2005, The Hill named David one of the top Homeland Security lobbyists in Washington, D.C. He established and currently serves as the moderator of The Washington Homeland Security Roundtable and is a frequent contributor to Security Debrief, a homeland security blog. David’s experience in the private sector led him to emphasize liability protection under the SAFETY Act as an integral part of doing business in the homeland security space.
David W. Opderbeck, PhD - Professor / Seton Hall University School of Law
David Opderbeck, a professor of law at Seton Hall University School of Law and director of the Gibbons Institute of Law, Science & Technology, and counsel in the Business & Commercial Litigation Department of Gibbons PC, focuses his practice on cybersecurity and computer law, privacy and civil rights, intellectual property, legal malpractice and professional ethics.
David’s passion for cybersecurity law and policy resulted in a multi-year grant-funded project, at Seton Hall University School of Law, sponsored by the Bergen County, New Jersey Prosecutor’s Office, which included new courses, continuing legal education programs, and the creation of a governmental working group on cybersecurity and cybercrime. He frequently appears in national and international media outlets and lectures to law enforcement agencies and other groups on cybercrime, cyberterrorism and civil liberties.
David earned his PhD from the University of Nottingham; LLM from New York University School of Law; JD, cum laude, from Seton Hall University School of Law and BA from Gordon College. He is admitted to practice in the state of New Jersey, the Commonwealth of Pennsylvania, the U.S. District Court for the District of New Jersey, and the United States Court of International Trade.
Erinmichelle Perri - CISO / MultiPlan
Erinmichelle Perri is MultiPlan’s Chief Information Security Officer. She has over 20 years of management and execution experience in the healthcare and financial industries focusing on information security and IT risk management. Prior to joining MultiPlan, she was Senior Vice President - O&T Risk Management for Citi. Erinmichelle also spent more than five years in global consulting roles for JPMorgan Chase, Reuters and Alstom. She holds a BS in Computer Engineering from Columbia University and will receive her Executive MBA from Columbia University in 2018. She is CISSP certified.
Thomas Reagan - Managing Director / Marsh
Tom Reagan is the Cyber Practice leader within Marsh’s Financial and Professional Products (FINPRO) Specialty Practice. Located in Marsh’s New York office, Tom oversees client advisory and placement services for cyber risk throughout the country. In addition to his management responsibilities, Tom also serves as the senior cyber advisor for some of Marsh’s largest clients.
Tom joined Marsh in 2014. Tom began his career in the technology industry as an expert on security and service delivery. In 2003, Tom joined American International Group (AIG), where he managed professional liability underwriting for AIG’s largest clients in the US and Canada. Tom also led the development of new professional liability products and services for AIG. Later, Tom joined Beazley, a global specialty insurance carrier, where he led marketing and strategy for Beazley’s cyber insurance division.
Brent Rieth - Senior Vice President and Team Leader, Professional Risk / Aon
Brent Rieth serves as the Western Region Team Leader for Aon’s Professional Risk Solutions practice, part of Aon’s Financial Services Group. Brent is responsible for the resources which support clients across the western region as they assess, quantify, and transfer risks related to Network Security and Privacy, Technology and Professional Services, and Intellectual Property.
Brent has worked with companies to address exposure related to Network Security and Privacy, Technology and Professional Services, and Intellectual Property since 2007. Brent works with clients from a wide range of industry sectors as a risk advisor, placing coverage, and supporting clients throughout claims and data breaches. In addition to supporting more traditional E&O and Cyber related risk discussions, Brent has a focus on alternative risk transfer solutions for large complex risks. Brent also is involved with public speaking engagements across the country related to E&O and Cyber related risks.
Carol Santos - Manager, Business Risk & Insurance / Google
Carol is a risk manager at Google, serving as the primary point of contact for insurance & risk related issues for Google’s functional and product areas such as Cloud, Street View, and payments. She also works with security & privacy teams to enable better risk behavior and protect Google, its users, and customers. She started and managed Google’s Hawaii based captive, Imi Assurance Inc., launched Motorola and Google’s first product warranty programs, and is currently setting up Google's Dublin based captive company. She joined Google in September 2010.
Carol has over 13 years of experience in the risk and insurance industry. Prior to Google, Carol was a risk manager at Goldman Sachs’ New York headquarters from 2006 to 2010. Her global risk management responsibilities ranged from advising on insurance for distressed investments in the special situations group (SSG), arranging management liability programs for the investment management division (IMD), and managing various programs in the firm's captive insurance company, Pearl Street Insurance Company. Carol started her career as an actuary at AIG and held various roles at Chubb Financial Solutions and MetLife. She holds a BS in Finance, Actuarial Science and Mathematics from New York University - Stern School of Business, and while at Goldman Sachs, completed her MS in Management of Risk from St. John's University - Tobin School of Business.
Judy Selby - Senior Advisor / Hanover Stone Partners
Ms. Judy Selby provides strategic advice to companies and corporate boards concerning insurance, cybersecurity, and compliance, with a particular focus on cyber insurance. She recently was called "one of the premier voices in legal technology" by LegalTech News. She also has 25 years of experience handling large scale, complex first and third party insurance coverage litigation and arbitrations as well as coverage gap analysis and insurance policy drafting.
She has been quoted in the Wall Street Journal, Fortune, Forbes, Reuters, Directors & Boards, InformationWeek, Business Insurance, Law360, Bloomberg BNA, CIO, CSO, Insurance Business America, The National Law Journal, Corporate Executive Board, and LegalTech News about information-related and insurance issues, and authored the eBook "Big Data for Business Leaders. What Today's Decision Makers Need to Know."
She has completed courses in Finance with Harvard Business School HBX, and Big Data, Crisis Management/Business Continuity, Cyber Security and the Internet of Things (IoT) with the Massachusetts Institute of Technology (MIT), Professional Education. Member of NY Metro InfraGard. Past co-chair of the CLM Cyber Committee and past member of Law 360 Insurance Editorial Board and the LegalTech Editorial Board. Currently serve on the LegalTech Education Board and ARMA Conference Education Management Group. Service on various philanthropic boards.
Dana Sheridan - GC and Chief Compliance Officer / Active Captive Management
Dana Hentges Sheridan is Active Captive Management’s (“ACM”) General Counsel and Chief Compliance Officer. ACM specializes in the formation and management of captive insurance companies. Prior to joining ACM, Dana was a trial attorney and coverage counsel for commercial insurance company clients. She has jury and bench trial experience in insurance coverage and bad faith cases, including cases involving underlying claims for environmental liabilities, toxic torts and other long tail risks, construction defect, and product liability. Dana has extensive experience with complex claims involving GL, excess/umbrella, E&O and D&O and cyber coverage. Dana has also provided contract drafting services and risk management counsel to corporate clients, including counsel relative to design generally of insurance programs, information risk management, and regulatory and cyber law compliance.
Dana was a contributing author to Chapter 38, “Understanding Errors and Omissions Insurance,” New Appleman Insurance Law Practice Guide, Volume 3 (2007). Dana was selected for inclusion in the 2007, 2009, 2010 and 2012 Southern California Super Lawyers Rising Stars®. She was also named as a 2011 Top Attorney by Pasadena Magazine. Dana is a member of the California and Minnesota State Bars, PLUS, CICA, and RIMS. She is also a member of the ABA’s Tort and Insurance Practice Group and the Business Law Section and is the Chair of the Regulatory sub-Committee of the ABA's Captive Committee. In 2014, Dana was named to the Power 50 list by Captive Review and in 2015 and 2016 was named as an “ERC Pioneer,” a short list of influential persons in the small captive industry.
Darren Shou - Senior Director of Research and Development, Symantec
Darren Shou is a senior director of the global research labs at Symantec. He is responsible for transforming research ideas into product, developing the technology vision and growing technical leadership. Symantec Research Labs (SRL) has developed numerous innovations that have collectively impacted hundreds of millions of Symantec customers.
Jana Utter - Vice President, ERM / Centene Corporation
Jana Utter serves as the Vice President of Enterprise Risk Management for Centene Corporation, a Fortune 200 multinational healthcare enterprise headquartered in St. Louis. She is responsible for ERM and the Own Risk and Solvency Assessment reporting process.
Prior to Centene, Jana held various compliance, risk, and insurance roles in the energy and financial technology services sectors. At both MISO Energy and Great Plains Energy, Jana launched the development of ERM programs. While at MISO, she oversaw a corporate-wide initiative to establish a common framework to identify, document, and demonstrate compliance with over 3000 FERC / NERC requirements and standards.
Presently she serves on the Enterprise Risk Management Committee of the Risk & Insurance Management Society (RIMS). Jana is actively involved as an ERM and compliance thought leader through participation in white paper initiatives and speaking opportunities.
Derek Vadala - Managing Director and CISO / Moody's Corporation
Derek Vadala is the Chief Information Security Officer for Moody's in New York with over 15 years of IT and security management experience. He oversees Moody's global security program with responsibilities including security strategy, architecture, and operations, IT risk due diligence in the M&A process and threat management and incident response. He has spoken on topics including malicious insiders and security analytics.
Mark Weatherford - Senior Vice President & Chief Cybersecurity Analyst / vARMOUR
Mark Weatherford is senior vice president and chief cybersecurity strategist at vArmour. He has more than 20 years of security operations leadership and executive-level policy experience in some of the largest and most critical public and private sector organizations in the world. At vArmour, Mark focuses on helping customers understand the rapidly evolving cybersecurity needs of the cloud and 21st century data center technologies.
Prior to joining vArmour, he was a principal at The Chertoff Group where he worked with businesses and organizations around the world to create strategic security programs. In 2011, Mark was appointed by President Obama as the Department of Homeland Security’s first deputy under secretary for cybersecurity and before DHS, he was the vice president and chief security officer at the North American Electric Reliability Corporation (NERC) where he directed the cybersecurity and critical infrastructure protection program and worked with electric utility companies across North America.
Prior to NERC, Mark was appointed by Governor Arnold Schwarzenegger to serve as California’s first chief information security officer and was also the first chief information security officer for the State of Colorado, where he was appointed by two successive governors. As a former U.S. Navy Cryptologic Officer, Mark led the United States Navy’s Computer Network Defense operations and the Naval Computer Incident Response Team (NAVCIRT).
He earned a bachelor’s degree from the University of Arizona, a master’s degree from the Naval Postgraduate School and holds the Certified Information Systems Security Professional (CISSP) certification. He was awarded SC Magazine’s CSO of the Year award in 2010, named one of the 10 Most Influential People in Government Information Security by GovInfoSecurity in both 2012 and 2013 and was selected for the 2013 CSO Compass Award for leadership achievements in the security community.
John T. Wolak, Esq - Director, Business and Commercial Litigation / Gibbons P.C.
John T. Wolak, a director in the Business & Commercial Litigation Department of Gibbons P.C., was recently named Insurance Lawyer of the Year (Newark, NJ) by Best Lawyers® and has been selected to the New Jersey Super Lawyers list and Best Lawyers® list for insurance law. For more than 25 years, he has litigated matters involving hundreds of millions of dollars in insurance coverage for a broad range of clients, and regularly provides strategic counseling and analysis of potential risks and exposures, policy terms and conditions, and claims resolution.
John also counsels clients on data privacy and security issues, including identifying and evaluating risks and implementing appropriate risk mitigation strategies. He is a frequent speaker on data security topics and insurance coverage for first-party and third-party losses that may arise in the event of a data breach.
He earned his JD from Fordham University School of Law, and his BA, cum laude, from Boston College. He served as a law clerk to the Honorable Nicholas H. Politan, United States District Court for the District of New Jersey. He is admitted to practice in the states of New Jersey and New York, the U.S. District Court for the District of New Jersey, the U.S. District Court for the Southern District of New York, the U.S. Court of Appeals for the Third Circuit, and the Supreme Court of the United States.