Presenters

Temitope Akinyemi

New York State Education Department

Temitope Akinyemi is the Chief Privacy Officer of the New York State Education Department. In this role, she oversees the Department's data privacy and security programs,  and serves as a resource for educational agencies across the state. Ms. Akinyemi is responsible for the effort to fully implement the state's data security and privacy law, Education Law SS2-d, and leads the push to strengthen the data security and privacy programs of those agencies. In this role, she leads investigations of data security and privacy breaches, provides support to the state's 700 plus schools districts and other educational agencies on issues; investigates and responds to complaints of incidents that involve protected data, and is working to get regulations finalizes that establishes a uniform standard for educational agency data security and privacy policies and practices.  

 

John Bandler

John Bandler runs a law firm and a consulting practice that helps individuals, businesses, and financial institutions with information security, cybercrime investigations, traditional investigations, governance, anti-money laundering, anti-fraud, and other areas. He is an attorney, consultant, writer, speaker, and teacher. He wrote the book "Cybersecurity for the Home and Office," a comprehensive guide to understanding and implementing cybersecurity, and is co-author of the forthcoming book "Cybercrime Investigations." He holds many certifications.

Before entering private practice, he served in government, first as a state trooper in the New York State Police, and then as an assistant district attorney in the New York County District Attorney's Office, hired by the legendary Robert Morgenthau. John investigated and prosecuted a wide variety of criminal offenses including international cybercrime, virtual currency money laundering, identity theft, and street crimes. He also served in the New York Army National Guard and Army Reserves.

Mark Berman

Mark A. Berman is a partner in the Commercial Litigation Practice of Ganfer Shore Leeds & Zauderer LLP.  Mr. Berman is a seasoned litigator whose practice focuses on representing domestic and international companies and individuals in complex commercial disputes in courts and in arbitrations on both the plaintiff and defendant's side with an emphasis on real estate and securities matters, as well as on electronic discovery disputes.  Mr. Berman has written and spoken on social media, ethics, electronic discovery and cybersecurity before the American Bar Association, the New York State Bar Association, the New York State Judicial Institute, and the New York Appellate Divisions. He has been appointed by the Chief Administrative Judge as a member of New York State E-Discovery Working Group advising the New York State Unified Court System.  Since 2005, Mr. Berman has had a column in The New York Law Journal addressing electronic discovery under New York State law.  He is on the Executive Committee of the New York State Bar Association as well as the Chair of its Committee on Technology and the Legal Profession.  He is also the former Chair of the Commercial and Federal Litigation Section.  

Laurin Buchanan 

Secure Decisions

Laurin Buchanan spent two decades managing IT operations and information security in the corporate sector, most recently for a Fortune 1000 company. She uses that operational background as Principal Investigator at Secure Decisions, where she leads R&D efforts for new and novel solutions to improve the cybersecurity decision making by humans for customer such as the Air Force Research Laboratory, the Department of Homeland Security, and the Naval Research Laboratory. She has led several research efforts in cybersecurity education, including development of Comic-BEE, a web application for creating interactive, branching comics for cybersecurity education and evaluation that accommodates diverse age and expertise levels. She has received funding from the National Science Foundation for two projects to evaluate the use of Comic-BEE for cybersecurity education with middle school students. Laurin served as a subject matter expert during initial development of the National Initiative for Cybersecurity Education (NICE) Workforce Framework that describes the work of cyber security practitioners and is now a member in the NICE Working Group and co-Chair of the Competitions Sub Group. She also serves on the Advisory Board for Suffolk County Community College's cybersecurity degree program and contributed to a course-specific standards panel as part of the Competency-Based Education curriculum development project from the National CyberWatch Center's Curriculum Standards Panel. Laurin is a Certified Information Systems Security Professional and a frequent speaker at conferences and events.

Tom Buoniello

BinaryEdge

20+ year background in CyberSecurity - specialties include, Email Anti-virus and anti spam, Email Encryption and vulnerability assessment.

Ed Cabrera

Trend Micro

As the Chief Cybersecurity Officer at Trend Micro, I am responsible for analyzing emerging cyber threats to develop innovative and resilient enterprise risk management strategies for Fortune 500 clients and strategic partners. Before joining Trend Micro, I was a 20-year veteran and former CISO of the United States Secret Service with experience leading information security, cyber investigative, and protective programs in support of the Secret Service integrated mission.

Tarique Collins

Tarique Collins is an attorney with significant experience in privacy and data protection compliance and regulatory enforcement actions, including those focused-on information security and data breach response.  Tarique is associated with the law firm Robinson Brog Leinwand Greene Genovese & Gluck P.C.

Michael Corby

M Corby & Associates, Inc.

Mr. Corby is a highly effective senior executive with a career in several specialties and environments. He uses his effective interpersonal skills supported by his technical background to create highly effective teams in large organizations with revenues in excess of $10B as well as emerging businesses, public service and non-profit entities.  For over 40 years, he has been a security consulting executive and project portfolio includes strategy, application design and architecture, security operations, digital forensics and organizational governance and metrics. He was a founder of (ISC)2 Inc., the Consortium that developed the Security Common Body of Knowledge and established the CISSP (r) Credential. Mike is a frequent presenter at the NYS Cyber Security Conference and has created and implemented Security Consulting practice offerings for international service organizations including Netigy, QinetiQ, Gartner, Marsh and GCI.

Andrew Dolan

MS-ISAC

Andrew is the Director of Stakeholder Engagement for the Multi-State Information Sharing and Analysis Center, a division of the Center for Internet Security. The MS-ISAC has been designated by the U.S. Department of Homeland Security as the focal point for cyber threat prevention, protection, response and recovery for the nation's state, local, territorial and tribal (SLTT) governments. Under Andrew, the MS-ISAC has greatly expanded its membership since 2012, and now boasts over 5,000 members across the country.  Prior to arriving at the MS-ISAC in 2012, Andrew spent five years working for the Department of Homeland Security and Emergency Services in New York State. It was here that he developed a passion for working with local governments all over the country, in an effort to help them prepare for the challenges they face both in the physical world and cyberspace.

Debra Farber

BigID

Debra J. Farber is the Senior Director of Privacy Strategy at BigID, where she launches and leads initiatives that evangelize and advance data privacy, industry collaboration, privacy engineering, product innovation, and strategic partnerships. After she completed law school, she launched a career with a dual-focus in privacy and information security and has spent nearly 15 years as a practitioner in those fields with roles at American Express, Visa, IBM, The Advisory Board Company, and TrustArc. As a leader in the field, Debra serves as Vice Chair of the U.S. Technology Advisory Group (TAG) to the ISO/PC 317 privacy-by-design for consumer goods and services standard-setting project; co-founded Women in Security & Privacy (WISP); launched and oversees a global network of Engineering Privacy Meetup groups; and, serves on Advisory Boards for the IAPP, The Future of Privacy Forum, Habitu8, and TrustRank. In addition to a JD, she has earned industry certifications including the CISSP-ISSMP, CIPP/US, CIPP/G, CIPP/E, CIPT, CIPM, and FIP.

Michael Fox

Prof. Michael L. Fox is an Assistant Professor of Business Law in the School of Business at Mount Saint Mary College, in Orange County, New York.  He teaches courses in the undergraduate business program and in the Masters of Business Administration program.  He also serves as the College's Pre-Law Advisor.  In addition, he is an Assistant Adjunct Professor of Law in Professional Responsibility at Columbia University School of Law in New York City.  Prof. Fox recently published a book on electronic discovery, social media and ethics, entitled Primer for an Evolving eWorld (Kendall Hunt Publishing Co. 2019).

Prof. Fox received his Bachelor of Arts degree, Phi Beta Kappa and summa cum laude, from Bucknell University; and received his Doctor of Law degree from Columbia University School of Law, where he was a Harlan Fiske Stone Scholar and an Articles Editor on the Columbia Business Law Review.  Prof. Fox has been a law clerk to a U.S. District Judge in the Northern District of New York, a litigator at a Wall Street law firm, and a partner at a Hudson Valley law firm, all prior to becoming a full-time academic.  He has authored or co-authored a number of articles and CLE materials, and spoken at approximately 100 programs and symposia, concerning Federal civil procedure, attorney-client privilege & work product, eDiscovery, evidence, professional ethics, employment law, diversity & inclusion, and pre-law advice.

Mark Francis

Holland & Knight LLP

Mark Francis is a tech & data partner at the law firm Holland & Knight LLP in New York, with a focus on cybersecurity, data privacy and intellectual property matters.  Mark advises clients on a wide array of data and technology issues both proactively and in response to security incidents.  His practice includes counseling,regulatory investigations, litigation, and a wide array of transactions. Mark has a background in computer science and telecommunications, and received his JD/MBA from Fordham University.  He is a Certified Information Systems Security Professional (CISSP) and Certified Ethical Hacker (CEH), as well as an IAPP Fellow of Information Privacy.  Mark is currently serving on the board of directors for the New York Metro InfraGard association.

Sean Frazier

Duo Security

Sean Frazier has spent 25 years in technology; spending most of those years working in cyber security in the public sector with companies like Netscape, Loudcloud/Opsware, Bluebox and Mobileiron.

Kevin T. Geil

Olympic Regional Development Authority

Kevin Geil has worked as the Information Security Officer for a medium-sized New York State Authority since 2008. In this position, he uses a SIEM to analyze threats and vulnerabilities, investigate incidents, and detect misconfigured devices and software on the network. Kevin is currently a matriculated student in the Masters in Science in Information Security Engineering program at the SANS Technology Institute. Kevin is a CISSP, and holds 4 GIAC certifications.

Michael Giordano

DynTek Services

Michael Giordano is the Principal Security Architect for DynTek Services, Inc, where he is responsible for helping clients develop risk management and cyber security strategies and solutions. Michael is a seasoned technology executive with a proven record of success in enabling security across the entire spectrum of information technology including enterprise architecture, advanced infrastructure, and audit compliance. His extensive cross functional background enables him to view challenges and opportunities from a customer's perspective.    His key positions have included IT management for a prominent NYC civil engineering firm as well as global technical leadership and architecture for one of the world's largest advertising firms. In these and other roles, Michael has directed a variety of transformative technology initiatives, led the deployment of integrated global networks, and overseen compliance efforts from both a private and public sector perspective.  Michael's approach to risk management is based on aligning technology investments to organizational priorities through a customized controls-based methodology and strategic understanding of business objectives. His overriding goal is to develop optimized workflows for the effective production and consumption of actionable threat intelligence.   He attended the University of Hartford where he studied Computer Science.

Raj Goel

Brainlink International Inc.

Raj Goel, CISSP, is an author, entrepreneur, IT expert and industry leader that specializes in the field of cyber security and privacy law. As founder of Brainlink, Raj has spent more than 20 years developing proven IT solutions for a range of high-profile clients in the financial, construction, architectural and property management industries.    His uniquely developed SOPCulture Process (winner of 2015 SmartCEO's Culture Award) has changed the way his clients think about documentation by showing them how to develop processes for documentation of each and every task, allowing them to rapidly increase productivity, eliminate redundancies and increase quality of service to their clients.    As a 25+ year veteran of the tech industry, Raj has promoted awareness of surveillance & privacy through his published books, which include:    UNPLUGGED Luddites' Guide To Cybersecurity  The Most Important Secrets To Getting Great Results From IT.


F. Paul Greene

Harter Secrest & Emery, LLP.

F. Paul Greene, partner at Harter Secrest & Emery, LLP,  brings years of experience to handling complex litigation matters in highly regulated industries. He provides clients with strategies to prevent, address, and resolve disputes in areas including privacy and data security, health care, and construction claims and design professional defense.

As chair of the Firm's Privacy and Data Security practice group, Paul counsels clients of all sizes in a wide range of industries concerning all aspects of pre-breach preparation and risk management, including security and vulnerability assessments, policy and procedure review, breach response planning and drills, as well as board and management education on cyber risk issues. After the breach, Paul, his team, and the team's professional consultants provide a full array of breach coach and response services, including breach response and remediation, crisis management and communication, internal and governmental investigations, breach notification, and potential litigation or regulatory action.

Paul's clients have included long-term and health care providers, insurers, and groups; Fortune 100 companies; a major credit card and travel-related services company; an international shipping and logistics company; an international printing and packaging company; a health care trade association; a public water authority; design professionals and construction companies; automotive dealers of all sizes; as well as closely held businesses and individuals.

He has litigated in numerous venues, including the Supreme Court of the State of New York (both on the trial and appellate level, as well as before the New York State Court of Appeals), United States District Courts around the country, the American Arbitration Association and the International Centre for Dispute Resolution. He also devotes a significant portion of his time to pro-bono representation and support of cultural organizations.

Fluent in German, Paul has also represented German-language clients in commercial disputes before American judicial and arbitral tribunals.


Chris Hallenbeck

Tanium

Chris Hallenbeck is CISO for the Americas at Tanium.  Chris provides security leadership and operational insight gained from over 20 years in both public and private sector.  Chris came to Tanium after almost 7 years of government service at the U.S. Computer Emergency Readiness Team (US-CERT). At US-CERT he designed and built their incident response capabilities and restructured the team's focus toward strategic remediation with a goal of building more resilient organizations. Over countless IR engagements both with government and private sector victims a common theme emerged: a lack of emphasis on IT security hygiene. Prior to joining US-CERT, Chris worked for RSA Security/EMC as a security engineer and with AOL/Time Warner on their global incident response team. He started his career as a Unix sys-admin at Binghamton University. When not chasing electrons, he prefers to be 20-30 meters under the sea.

Reg Harnish

Center for Internet Security

Reg Harnish is a serial entrepreneur, nationally-recognized speaker, author and the founder of  GreyCastle Security, the cybersecurity industry's leading provider of risk, compliance, certification and  privacy services.    Reg is regularly featured in Time Magazine, Forbes, The Washington Post, CBS Nightly News, CIO  Magazine, Dark Reading, Software Magazine, ComputerWorld, InfoWorld and countless other media  outlets. Reg is a nationally-recognized speaker and has presented at countless industry and security conferences.  His thoughtful and sometimes provocative perspectives on leadership and cybersecurity have made him  a highly sought-after keynote speaker.  Reg participates on numerous boards and is a fellow at the National Cybersecurity Institute.

Antony Haynes

Albany Law School

Antony Haynes joined Albany Law School in December 2015. He has extensive litigation experience in the intellectual property, securities, and criminal defense areas.     He served as an associate at the law firm Quinn Emanuel Urquhart & Sullivan, LLP, in Washington, D.C., and before that at Williams & Connolly LLP, in Washington, D.C.  Prior to practicing law, Antony was an Assistant Professor of Computer Science at the U.S. Air Force Academy, where he taught courses in programming, developed the Academy's Information Assurance curriculum, and created the intercollegiate Cyber Defense Exercise.  He has extensive experience with a host of software and hardware technologies, including Cisco routers, Motorola microprocessors, TCP/IP networking protocols, SQL databases, and web-based programming.  He developed an on-line survey-system for the Department of Epidemiology at a major university.    After the Air Force Academy he was an associate at Chatham Financial Corporation, Capital Markets, Kennett Square, Pa., where he led a company-wide software effort, wrote financial software and coordinated technical developers.    He is a distinguished graduate of the U.S. Air Force Academy, where he was recognized as the top computer science graduate.  He received his M.S. in Computer Science from the University of Illinois at Urbana/Champaign, where his thesis focused on machine learning and expert systems.   He is an entrepreneur who leverages his background in computer science, technology, business and the law to advise startup companies.  In addition to advising startups, he has spent time acquiring and growing companies.

Mike Hobbs

Microsoft

Identity and Access Management Solution Specialist - Microsoft State & Local Government

Lee Imrey

Splunk

Lee Imrey is a former CISO with experience in the financial and healthcare sectors, as well as the Federal government. While Lee was security architect for the United States Department of Justice, he was responsible for managing security practices for Secret, Top Secret, and SBU programs. He has worked in information security his entire career, addressing the full spectrum of technical, legal and business challenges, and has shared his expertise with other infosec professionals as Lead CISSP Instructor for (ISC)2.

Derrick Johnson

AT&T Cybersecurity Consulting, AT&T

Mr. Johnson is the National Practice Director for Secure Infrastructure Services within AT&T Cybersecurity Consulting, responsible for its direction and overall business performance. Derrick's practice provides strategic and tactical security consulting services around next-generation network security design, zero trust networks, logical and virtual network segmentation, security operations, orchestration and automation, IDAM and firewalling, among other initiatives He is a Certified Information Systems Security Professional with 23 years' experience in Information Technology, Information Security and network design, integration, management, auditing, Business Continuity Planning, Disaster Recovery, and Risk Assessments. Working with customers across all industry verticals faced with varying degrees of security challenges, from regulatory compliance to the people, processes and technologies related to security operations, Derrick has a successful record of developing andimplementing innovative, cost appropriate next generation solutions to complex challenges.

Derrick has extensive security program and technical expertise that he leverages as he advises customers at both technical and higher level discussions through workshop sessions, speaking engagements, industry forums and overall collaboration sessions to discuss enterprise wide solutions supporting key business drivers to a CISO, and then discussing the implementation steps with engineering and other tactical teams. 

Derrick joined AT&T Consulting through the acquisition of VeriSign's Global Security Consulting business in 2009, where he served as a Senior Manager. Prior to working for VeriSign, Derrick was the Global Information Security Officer at Stream International, contracted by Aspect Communications to develop their information security framework, a Senior Associate at KPMG's Information Risk Management practice, and a Senior Engineer at America OnLine.

Derrick holds a Bachelors in Computer Engineering from Syracuse University

Hans Johnson

Guardicore

Hans Johnson is a Solutions Architect with Guardicore. In this role Hans is responsible for introducing customers to a more dynamic way to achieve compliance and security in the modern age.

Hans began his career in cybersecurity in 2001 after being introduced to the industry while consulting in the late '90s. Since embarking on a full time career in cybersecurity, Hans has assisted organizations of all sizes to better their security posture and balance security with competing priorities.  Whether firewalls, secure gateways, DLP, user-based analytics, and now software defined segmentation, there are always new, more flexible ways to implement and secure the evolving business IT landscape. A former director of network operations, Hans joined Guardicore in 2018. He brings 15 years of enterprise technical sales and  consulting experience, spanning project management, training, application and system integration, network and security architecture, and business continuity planning. Formally educated as a marine biologist, Hans held previous roles in cybersecurity with Red Owl Analytics, Verizon Enterprise Solutions and Blue Coat Systems.

Shawndra Jones

Shawndra Jones's practice focuses on employment law, including counseling employers on questions arising at the intersection of technology and the workplace. Ms. Jones has also written on such topics and lectured extensively on legal and ethical issues associated with emerging technologies. And she recently served as a guest speaker for a groundbreaking Technology and the Law course created through a partnership between the City University of New York School of Law and the New York State Bar Association ("NYSBA").

Ms. Jones is a past recipient of the National Bar Association's 40 Under 40 Nation's Best Advocates and Excellence in Innovation awards and NYSBA's Empire State Counsel(r) Outstanding Pro Bono Volunteer award. She was also appointed to NYSBA's new Committee on Technology and the Legal Profession. 

After graduating cum laude with Distinction in Psychology from Yale University, Ms. Jones earned her juris doctorate from Columbia Law School, where she was a Harlan Fiske Stone Scholar, co-chair of the Student Senate's Graduation Committee, and editor in chief of the Columbia Journal of Law and Social Problems. Ms. Jones then clerked for the Honorable Alvin W. Thompson in the District of Connecticut before entering private practice at Cravath, Swaine & Moore LLP.

Elizabeth Joyce

HPE

Elizabeth Joyce is Senior Vice President and Chief Information Security Officer at HPE.  Joyce is responsible for building world-class, extensible security capabilities that protect HPE's assets and workforce, as well as enable and extend business capabilities. All aspects of information security - strategy, architecture and operations; application security, information and threat management; governance, risk and compliance; third party assessment; identity and access management; security transformation and training - fall under her purview.

Joyce holds a Ph.D. in information security from University of Plymouth, UK and BSc in Computer Science Honors from University College, Dublin.

Michael Katz

Infoblox

Michael Katz has broad experience in information security as an entrepreneur, systems engineer, sales lead and cyber security specialist.   Mr. Katz is currently a product sales specialist at Infoblox focusing on cyber security solutions. Mr. Katz founded RAE Internet, the US distributor for RAV Antivirus, which was acquired by Microsoft in 2005.  Mr. Katz followed up RAE Internet with Mailspect, an email security and compliance platform, and then MatchMyEmail, a cloud email business intelligence service.  Mr. Katz has worked in cyber roles at Juniper Networks, where he focused on  automated security architectures in financial services, Anomali, A10 Networks and Cisco.

Ondrej Krehel

LIFARS

Ondrej Krehel, CEO & Founder of LIFARS is recognized world-wide for his Digital Forensic expertise. He actively participates in many high-profile engagements around the world whereby his proprietary methodology is leveraged to achieve the most rapid root-cause analysis and remediation. He's the former Chief Information Security Officer of IDT911, the nation's premier identity theft recovery and data breach management service. He previously led forensic investigations and cybersecurity consulting at StrozFriedberg encompassing US government engagements and missions, including military cyber special operations.With two decades of experience in computer security and forensics, Krehel has conducted a wide range of red team exercises, cyber resilience matters, investigations, including data breached through computer intrusions, theft of intellectual property, massive deletions, defragmentation, file carvings, anti-money laundering, financial fraud, mathematical modeling and computer hacking. He holds an M.S. degree in Mathematical Physics from Comenius University in Bratislava and an Engineering Diploma from Technical University in Zvolen, Slovakia. Krehel is a frequent speaker at industry events and author on matters related to information security and computer forensics. Among other industry groups, he is a member of the High Technology Crime Investigation Association (HTCIA), the Information Systems Security Certification Consortium (ISC) and the International Council of Electronic Commerce (EC Council). He also is a Certified Information Systems Security Professional (CISSP), EnCase Certified Examiner (EnCE), and a Certified Ethical Hacker (CEH). He is one of few to hold a Certified Ethical Hacker Instructor (CEI) accreditation, and to be authorized to lecture Ethical Hacking courses to both the government and private sector.His work has received attention from CNN, ABC, BBC, Reuters, The Wall Street Journal and The New York Times, among many others.

Owen Lamb

Varonis

Owen Lamb's career in Information Technology and Data Security Software Sales spans over 17 years. During that time, Owen has had the opportunity to work with organizations from SMB to large enterprise, to design, deploy, manage, and secure their data repositories. In his current role as Director of Sales Engineering, he leads a team of dedicated SEs in the Northeast of North America, focused on securing customer's data with the industry leading Varonis Data Security Platform. He has firsthand knowledge of the challenges organizations have with respect to identifying and securing their data from insider and cyber threats, and has aided many organizations in implementing successful data governance solutions to address this pervasive issue.

Matthew J. Lane

Janus Associates

Mr. Lane has conducted network analyses for numerous commercial and federal entities including the FDIC, the FAA, and the Centers for Medicare and Medicaid.  Specializing in the security aspects of e-commerce and development of secure application code, he has identified vulnerabilities in many e-commerce web sites and has implemented customized solutions to properly secure those systems.  As a developer he has created global supply and demand tracking tools for the chemical industry and contributed to the development of biometric authentication systems.  He has designed VPNs, anonymous Internet connectivity, and a database security wrapper.  He is a former instructor of Advanced Software Engineering at Columbia University, where he graduated Cum Laude with a degree in computer science.

Mr. Lane is a sought after spokesperson and has been interviewed by WCBS radio, NPR and regional television news stations for stories relating to various computer virus attacks. He holds multiple levels of high security clearance as issued by various government.

David Leinberry

Fortinet

David has over 35 years' sales and sales management experience with in the North East.  The last 20 years have been spent in Information Technology and security software, including: McAfee, Dell, Mandiant/FireEye and over the last 4 years with Fortinet.  David was brought on to help evangelize the Fortinet Sandbox.  This has evolved to presenting Fortinet's, end to end, proactive Security Fabric solution, including the integration with Fortinet's:  firewalls (FortiGate's), mail, endpoint, web application firewall, NAC and now third generation SIEM.  Fortinet provides automated detection and assisted mitigation for all advanced malware threats including: APT's, Targeted attacks, Ransomware and Zero Days.

Edward Luna

Red Hat Inc

My qualifications begin with 0ver 25 years experience in enterprise infrastructure that encompasses providing architectural solutions and technical direction for the overall enterprise. I have a proven track record of success on various projects ranging from enterprise system re-designs, cross platform migration to new system implementation as well as introducing new infrastructure technologies to organizations. I also bring with me 15 years of managerial and supervisory experience which leverages my strong leadership skills with experience in industry and military. I consider myself an efficient manager with keen organizational skills, solid technical background with extensive formal training and an accomplished communicator with excellent written and oral skills. In addition, I am an efficient project manager with 9 years experience working with aggressive project timelines and conservative budgets.

Neal Maguire

Verizon

Neal Maguire is the Investigations Manager for the Verizon Threat Research Advisory Center (VTRAC). In this role, Neal is chiefly responsible for managing the conduct of computer forensic investigations, analysis, data recovery, case-load intelligence and IT investigative work related to delivery of the team's book of business, including all matters related to PCI / PFI investigations, liaising with the card brands and providing advisory consulting services to client senior management and the C-suite.     Neal is an expert in the field of Payment Card Industry Risk Management with over 21 years of direct experience. Prior to joining Verizon, he was the Business Leader of Payment Systems Integrity for MasterCard International and was responsible for the global development, leadership and management of the MasterCard Account Data Compromise (ADC) Program for the nine years preceding his move to Verizon.     Neal is an active public speaker, discussing various topics ranging from high-level best practices to C-suite executive briefings. He has been a contributing author to the Verizon Data Breach Investigations Report and routinely presents the report and its findings to audiences and at conferences on a global basis.     Neal holds a MBA from the Hagan School of Business at Iona College and a Bachelor's degree in Economics from Fordham University.

Yogesh Malhotra

Global Risk Management Network, LLC

Dr. Yogesh Malhotra ('Yogi') is the Executive Director and Chief Scientist of New York based Global Risk Management Network, LLC, leading global Artificial Intelligence & Machine Learning, Cybersecurity & Cryptography, and, Quantitative Finance & Trading practices. As Managing Director for worldwide AI & Machine Learning practices with GIBC Digital, he recently developed the blueprint for Digital Transformation of global national economies and enterprises to expedite adoption and execution of AI & Machine Learning and Cybersecurity practices. As Artificial Intelligence and Machine Learning Industry Expert for MIT Sloan School of Management and MIT Computer Science & AI Lab, he recently led 200 Management and Leadership industry executives pioneering AI and Machine Learning strategic road maps for worldwide firms and industries. Over recent four years, his AI & Machine Learning presentations in Cyber Finance at Princeton University conferences sponsored by firms such as Goldman Sachs and Citadel are pioneering applied innovations spanning Cybersecurity & Cryptography, and, Quantitative Finance & Trading. His prior industry practices leaderships have included Wall Street investment banks and hedge funds such as JP Morgan, Big-3 Finance and Big-3 IT firms such as Bank of America, State of New York Civil Services, and, global digital ventures with global clients and patrons such as Goldman Sachs, Google, IBM, Intel, Microsoft, Harvard, and, MIT. Globally sought as an industry expert and keynote speaker, his hi-tech thought leadership engagements have spanned Silicon Valley to Seoul including Silicon Valley venture capitalists and CEOs, Wall Street investment banks and hedge funds, AFCEA, AFRL, CFA Society, NAIC, State of New York, Conference Board, Institute of Supply Management, National Science Foundation, United Nations, and, US and world governments and national economies such as Mexico, Netherlands, South Korea, and, Switzerland. Real impact of his published research is ranked and recognized among Finance-IT Nobel laureates such as Black-Scholes by AACSB, premier scientific studies, and industry surveys. He has taught as invited Executive Education faculty for Carnegie Mellon University and Kellogg School of Management, and, served as tenure-track professor of Computer Science, Operations Research, Quantitative Methods, and, Information Technology at SUNY and Syracuse University. His Artificial Intelligence & Machine Learning post-doctoral industrial R&D in Quant Finance, Cybersecurity, and, Computer Science with 63 Top-10 SSRN Research Rankings and Top-2% SSRN Author rankings is advancing global strategies, practices, and, policies. A Chartered Engineer (C.Eng.) and Life Member of the Institution of Engineers, he also holds DoDD 8140 Top-3 IT Cyber Security Certifications: CISSP, CISA, CEH, in addition to CCP-CDP, and, has fulfilled the AICPA educational requirements of  the New York State CPA. His biography is profiled among world's foremost leaders and achievers in Marquis Who's Who in America(r), Marquis Who's Who in the World(r), Marquis Who's Who in Finance & Industry(r), and, Marquis Who's Who in Science & Engineering(r).

Robert Mayer

USTelecom

Robert Mayer is Senior Vice President of Cybersecurity with the USTelecom Association (USTelecom) with responsibility for leading cyber and national security policy, state relations and coordinating various regulatory initiatives for the wireline broadband industry.  He is the current chairman of the Communications Sector Coordinating Council (CSCC) which represents the broadcast, cable, satellite, wireless and wireline industries in connection with the DHS public-private partnership.  Mayer was recently appointed as co-chair of the Department of Homeland Security's ICT Supply Chain Task Force, which will develop near- and long-term strategic solutions to supply chain risk.  In June 2015, He also serves as co-Chair of the recently announced Counsel to Secure the Digital Economy, (CSDE) which consists of 13 global ICT infrastructure providers who have joined forces to drive solutions that enhance the cyber resiliency of the digital ecosystem.  Mayer was appointed to the FCC Communications Security Reliability and Interoperability Council (CSRIC V) after having led a 100 person team of cybersecurity professionals that produced a landmark report to adapt the NIST Cybersecurity Framework to the broadcast, cable, satellite, wireless and wireline industries.

Prior to USTelecom, Mayer served as the top telecommunications official for New York State as Telecom Director of the New York Public Service Commission.  In that capacity, he led several major initiatives including regulatory reform efforts and he created a new agency department that focused exclusively on network reliability and public safety matters.  Prior to this appointment, Mayer was the lead regulatory practitioner in the Telecommunications and Cable Group at KPMG Consulting and was a consultant with Deloitte Consulting.  Before that Mayer worked as an analyst in the international telecommunications divisions of Chase Manhattan Bank and JP Morgan.  Mayer served in the US Air Force supervising intelligence and communications operations at NATO Headquarters, Southern Europe in Italy.  He received his B.A from Albany State University, his MA in Information Management from Central Michigan University, his MBA from Boston University, and his J.D from New York Law School.

Jake Mihevc

Mohawk Valley Community College

Jake Mihevc is currently Associate Dean for Business, Cybersecurity, and Computer Sciences at Mohawk Valley Community College (MVCC). MVCC was designated by the NSA and the Department of Homeland Security as the Regional Resource Center for the Centers of Academic Excellence Cyber Defense (CAE-CD) Program for the Northeast region of the United States; Jake served as Director of the Northeast Regional Resource Center. He also served as the Director of the CyberJobs cybersecurity training program at MVCC, a $2.8M grant program that provided free training to over 2,200 participants and is involved in the Central New York Hackathon, a regional, intercollegiate offensive/defensive cybersecurity competition. Jake started his career in Information Technology in Silicon Valley during the cot-com boom in roles with HotJobs.com and Avinon.com. He returned to the Mohawk Valley in 2008 as a principal with The Computer Clinic, an IT Consultancy. Jake holds a Bachelors Degree from SUNY Geneseo and a Masters Degree in Cybersecurity from Utica College, and is a member of the NICE Working Group's Competitions Sub Group.

Brian Nussbaum

University at Albany, State University of New York

Brian Nussbaum is an assistant professor in the Department of Emergency Preparedness, Homeland Security and Cybersecurity. His focus is on cybersecurity and cyber threats, terrorism and terrorism analysis, homeland security, risk and intelligence analysis, and critical infrastructure protection. He also serves as an Affiliate Scholar with the Center for Internet and Society (CIS) at Stanford Law School.       

Nussbaum previously served as senior intelligence analyst with the New York State Office of Counter Terrorism (OCT), a part of the New York State Division of Homeland Security and Emergency Services (DHSES). He oversaw both terrorism and cyber threat analysis efforts at New York's designated state fusion center, the New York State Intelligence Center (NYSIC). He served as a subject matter expert on international terrorism, and helped to create NYSIC's Cyber Analysis Unit (CAU). Nussbaum worked for almost a decade in New York State's homeland security agencies and was the author and project lead on the New York State risk-based funding formula, a formula that was used to distribute over $300 million dollars in Homeland Security Grant Program (HSGP) funds between 2006 and 2014.

Additionally, Nussbaum served as the first-ever Visiting Professor of Homeland Defense in the Strategic Wargaming Division at the Center for Strategic Leadership and Development, part of the United States Army War College in Carlisle, Penn., from 2012 to 2013. As such, he has experience in war gaming, simulation, and professional education incorporating interactive and active-learning techniques.

Nussbaum received his Ph.D. and master's degree in political science from the University at Albany and bachelor's degree in political science from Binghamton University. His work has appeared in numerous books and journals including Studies in Conflict and Terrorism, Global Crime, the International Journal of Intelligence and Counterintelligence, and the Journal of Cyber Policy.

Gopal Padinjaruveetil

Auto Club Group

Gopal has over 30 years of experience in the Information Technology (IT) and Operational Technology (OT) as CISO, Cybersecurity Strategist and Thought Leader, Chief Enterprise Security Architect, Enterprise Architect, OT Process Control Engineer. Gopal is a CISA, CISM, CGEIT CSRIC, TOGAF9 certified professional. Beyond a very deep and broad technical background in Governance Risk, Compliance, Security and Privacy, Gopal has been a featured speaker on Cybersecurity at Oracle Open World 2013/2014 and HP Discover 2014 Barcelona Spain, HP Discover 2016, RSA Conference 2016 2019, New York State Cybersecurity Conference 2018, Accenture Automation Summit 2018. Gopal also teaches Cybersecurity at College of Emergency Preparedness, Homeland Security, and Cybersecurity (CEHC)SUNY UAlbany and John Jay College of Criminal Justice in New York. Gopal Padinjaruveetil finds philosophy fascinating and in his free time, he reads about western philosophies such as utilitarianism, individualism, objectivism, social contract theories and Eastern philosophies such as Vedanta. It is this curiosity about philosophy and human nature that led Gopal to pursue a career in cybersecurity. Gopal lives in Bloomfield Hills MI with his wife and two boys.

Aelon Porat

Cision

Aelon Porat is an information security manager at Cision and a trainer at Vali.training. He has extensive experience attacking and defending corporate environments. Aelon likes to jump inside networks and out of planes, and in his spare time, he enjoys demoing, speaking, and providing training at different events and conferences. Follow him .

Paul Romeo

NYSTEC

Paul Romeo has over 19 years of combined IT and IT Security experience working for large fortune 500 companies such as Siemens, General Electric and Hoffman La Roche in the areas of Data Loss Protection, End Point Security,  Vulnerability Management,  Intrusion Detection and Incident Response.   Paul is currently a Senior Security Consultant working for NYSTEC assisting clients improve their Vulnerability Management, Security Awareness and Incident Response capabilities.  

Peter Romness

Cisco Systems

Peter Romness is the Cybersecurity Solutions Lead in the US Public Sector CTO Office at Cisco Systems. For over 30 years, he has devoted his deep knowledge and diverse experience to help government agencies securely accomplish their missions.  He is laser-focused on mitigating cybersecurity threats, maintaining individuals' privacy, protecting sensitive information, and securing government intellectual property.   Peter brings Cisco's advanced cybersecurity solutions to departments and agencies at Federal, State, and Local Governments, and Educational Institutions.  He works with NIST and the National Cybersecurity Center of Excellence (NCCoE) and has contributed their 1800-Series Special Publications.  Peter helps the broader IT community understand the very latest cyber capabilities and risk mitigation methods to effectively address cyber threats. His unique combination of a technical background and a passion for clearly conveying high-tech topics to audiences of all levels of understanding makes him invaluable to Cisco and our customers.    Prior to Cisco Systems, Peter held leadership positions at Hewlett-Packard, AT&T and Panasonic.  He holds a degree in Mechanical Engineering from Duke University.


Robert Roy


Micro Focus Government Solutions

Rob Roy is the chief technology officer of the U.S. Public Sector Cybersecurity  team at Micro Focus. For the last ten years, he has been responsible for driving  strategic cyber initiatives, promoting thought leadership, presenting  cybersecurity vision, and managing media and government relations. He joined  Micro Focus through the successful merger of Hewlett Packard Enterprise  Software with Micro Focus International.  Prior to this role, he managed similar activities at a number of startups that  were subsequently acquired by Fortune 50 companies.  Mr. Roy studied mathematics and computer science at the U.S. Naval Academy  and maintains his Certified Information Systems Security Professional and  Certified Ethical Hacker qualifications. He is a Fellow with the Institute of Critical  Infrastructure Technology.

Mike Semel

Semel Consulting LLC

Mike Semel is a noted thought leader, speaker, blogger, and best-selling author. He is the President and Chief Security Officer of Semel Consulting, focused on HIPAA and other regulations; cyber security; and Business Continuity planning. Mike is a Certified Business Continuity Professional through the Disaster Recovery Institute, a Certified HIPAA Professional, Certified Security Compliance Specialist, and Certified Health IT Specialist. He has owned or managed technology companies for over 35 years; served as Chief Information Officer (CIO) for a hospital and a K-12 school district; and managed operations at an online backup company. Mike has spoken to many audiences including the medical team at the Kennedy Space Center and the New York State Cyber Security conference. He is the best-selling author of How to Avoid HIPAA Headaches.    Mike has created Business Continuity plans for small businesses, healthcare organizations, and financial institutions, including a $ 4 billion federal credit union with 180,000 members. His business continuity plans meet regulatory requirements and have helped businesses survive the Joplin tornado, Hurricane Irene, SuperStorm Sandy, and many smaller disruptions.      He has managed hundreds of HIPAA and regulatory compliance assessments, and Meaningful Use Security Risk Analyses, for doctors, hospitals, labs, nursing homes, home health care, health plans, government agencies, and Business Associates.

Shamlan Siddiqi

NTT DATA

Shamlan Siddiqi is Vice President and Chief Technology Officer for Public Sector at NTT DATA, a leading global IT and business services firm.  He drives the firm's technology vision, strategy and innovation. Previously, Mr. Siddiqi held executive roles including VP of Applications and VP of Digital where he led the development of award winning commercial solutions.  Mr. Siddiqi has served on numerous industry working groups/ task forces on topics including blockchain, digital/ cloud and cyber security in addition to being a published writer/ contributor and speaker.  Mr. Siddiqi is also actively supporting an internal organization called Women Inspiring NTT DATA (WIN) DC Chapter to support the identification, retention and development of women across NTT DATA.  Mr. Siddiqi has served on the Board of Directors and is currently a Charter Member of an Entrepreneurship non-profit organization focusing on mentoring and guiding aspiring students and professionals on teamwork, career development and leadership.  Mr. Siddiqi was recently awarded the Prominent Patriot award from George Mason University.

Bob Siegel

Privacy Ref, Inc.

Bob Siegel is the president and founder of Privacy Ref. Starting Privacy Ref in 2012, Bob took his experience as the Senior Manager of Worldwide Privacy and Compliance at Staples, Inc. and applied that to assisting companies implement and maintain strong privacy programs. Bob has worked with many different organizations, dealing with programs of all sizes and regulatory needs.    Seeking to always improve his own understanding of all things privacy, Bob has earned certifications from the International Association of Privacy Professionals. These include certifications in US private and public sector, European, and Canadian privacy laws. Bob has also earned certifications in Information Technology Privacy and Privacy Program Management. Bob Siegel has also been recognized as a Fellow of Information Privacy by the IAPP for his outstanding dedication to the privacy community. He has also served on the IAPP's Certification Advisory Board for the CIPM program and the IAPP's Publication Advisory Board.

Deborah A. Snyder

New York State Office of Information Technology Services

Deborah A. Snyder serves as New York State's Chief Information Security Officer (CISO) in the NYS Office of Information Technology Services (ITS). In her role, she directs the State's Information Security Office and comprehensive governance, risk management and compliance program. She is responsible for providing strategic leadership and vision, and assuring business-aligned, risk-based investments that maximize business opportunity and minimize cyber security risk.

Ms. Snyder has extensive experience in government program administration, information technology and cyber security policy. She actively supports the State's efforts to engage citizens and enhance the delivery of government services. She is an acknowledged industry thought-leader, and has been recognized for excellence and outstanding contributions in public programs and the field of cyber security.

She serves on the NYS Forum Board of Directors, NY CISO Executive Summit Governing Board, is a State Academy for Public Administration Fellow, and member of the Project Management Institute, InfraGard, Information Systems Security Association (ISSA), Information Systems Audit and Control Association (ISACA), and the Institute of Internal Auditors (IIA).

She teaches graduate-level courses, has published numerous articles, and co-authored "SECURE - Insights From The People Who Keep Information Safe," which offers industry leadership insights and perspective. She is a highly regarded expert speaker on topics critical to executive-level business and IT professionals.

Alexander Stein

Dolus Advisors

Dr. Alexander Stein is Founder and Managing Principal of Dolus Advisors, a New York-based risk and psychodynamic intelligence analysis consultancy, and also a Principal in the Boswell Group. He advises executives, boards, and entrepreneurs in areas of corporate and organizational life with complex psychological underpinnings, and has extensive experience in leadership development and senior-team dynamics. Dr. Stein specializes in helping organizations mitigate and resolve challenging human factor issues and is a widely regarded expert in the psychology of fraud, insider threat, social engineering and white-collar misconduct. He also serves as a specialist advisor to investigations, intelligence, litigation, and cybersecurity firms to develop sophisticated 3D profiles and precision forecasts of fraudsters or other malicious actors and their networks of affiliates and collaborators. He is a widely published and cited thought leader, including as a regular contributor to Forbes.com writing on the psychology of leadership and misbehavior in business, and is a frequent keynote speaker and panelist at conferences and corporate events around the world.

Leo Taddeo

Cyxtera Technologies

Leo Taddeo is the Chief Information Security Officer (CISO) for Cyxtera.  Mr. Taddeo, former Special Agent in Charge of the Special Operations/Cyber Division of the FBI's New York Office, is responsible for analyzing the cybersecurity market to help shape Cyxtera's vision for security solutions. Mr.  Taddeo provides deep domain insight into the techniques, tactics and procedures used by cybercriminals, to help Cyxtera continue to develop disruptive solutions that enable customers to defend against advanced threats and breaches.  Mr. Taddeo received his degree in applied physics in 1987 from Rensselaer Polytechnic Institute.  After completing his studies at Rensselaer, Mr. Taddeo served as a tank officer in the US Marine Corps.  In 1991, he was awarded a Purple Heart and Bronze Star Medal for valor for his service in the Gulf War.  Following his service in the Marines, Mr. Taddeo earned a Juris Doctor from St. John's University.  Upon graduation, he joined the law firm of Mound, Cotton & Wollan in New York, where he practiced in the field of civil litigation until entering on duty with the FBI.   Mr. Taddeo is a graduate of the CISO Executive Program at Carnegie Mellon University. He also maintains the Certified Information Systems Security Professional (CISSP) and GIAC Certified Incident Handler certifications.

Jeffrey Wheatman

Gartner Research

Jeffrey Wheatman is a Research VP in Gartner Research, where he regularly advises clients on a wide range of security and IT risk management issues, with a focus on strategy, team building, metrics and reporting, communicating techniques and risk management. As an experienced analyst within Gartner's Security and Risk Management team, he works with senior security and risk management leaders to help them identify, assess and remediate IT-related risks within their environments.

Prior to his current role, Mr. Wheatman served as a Leadership Partner in Gartner's Enterprise IT Leaders program, where he partnered with security and risk management executives to build, run, grow and transform security management programs. Mr. Wheatman is a seasoned IT-related risk management practitioner with significant expertise as a hands-on technologist, as well as an extensive background in strategy and program development. He has more than nine years of experience in consulting for Fortune 500 and Global 200 organizations in numerous vertical markets, where he has managed teams responsible for constructing, deploying and managing security and risk management programs and solutions. During his nine years in consulting, Mr. Wheatman was responsible for successfully developing and managing information security consulting practices for several regional professional services providers in the northeast United States. Mr. Wheatman has significant hands-on experience in multiple areas within technology and security, including network operations, end-user support, network architecture, telecommunications and systems analysis.

Tyler Wrightson

Leet Cyber Security

Tyler Wrightson, CISSP, is the author of Advanced Persistent Threat Hacking and Wireless Network Security: A Beginner's Guide. Tyler is the founder of Leet Cyber Security, which helps organizations solve the hacker problem, by hacking into the organization to identify weaknesses.   Leet focuses on offensive security services such as Penetration Testing and Red Teaming to secure organizations against real world attackers. Tyler has over seventeen years experience in the IT security field across many industries including healthcare and financial services with extensive experience in many areas of technical security including networking, systems architecture, offensive security and penetration testing. Tyler holds industry certifications such CISSP, CCSP, CCNA, CCDA, and MCSE. Tyler has also taught classes for CCNA certification, wireless security, network security, and penetration testing. He has been a frequent speaker at industry conferences including NYS CyberSecurity Conference, Derbycon, BSides, Rochester Security Summit, ISACA, ISSA, and others. Tyler is the organizer of ANYCon - Albany, New York's Hacker conference. Follow his security blog at http://blog.leetsys.com.

Michael Wyatt

Deloitte

Michael Wyatt is a Deloitte Risk and Financial Advisory Principal in Deloitte & Touche LLP. Michael has over 28 years of professional experience and serves as Deloitte's Risk Advisory leader for enterprise security assessments for State Government. He also serves as the Risk Advisory leader for State of Texas and the State of South Carolina. Michael has led cybersecurity program development and assessment activities including statewide programs for the states of Utah and South Carolina. He is often called upon to provide testimony on state public sector cybersecurity legislation as well as provide insight to both executive and legislative branch representatives on leading practices and lessons learned for cybersecurity program improvements. In addition to his state public sector leadership roles, Michael serves as the leader Deloitte's identity management practice.

Robert Zeglen

NYSTEC

Rob Zeglen, Security Practice Leader, NYSTEC  Rob is the Security Practice Leader at NYSTEC and has more than 22 years of experience in IT and security. He has a broad range of expertise in cybersecurity and associated technologies and business processes, including identity and access management, systems programming and administration, healthcare systems security, risk assessments, and compliance and training.  He has extensive consulting experience in the NYS government healthcare space and private sector experience, having worked at Netscape, Sun Microsystems, GE Global Research, and Knolls Atomic Power Lab. Rob holds an undergraduate and M.S. degree in Computer Science and is a Certified Information Security Systems Professional (CISSP).