 Saurabh Bhatnagar
Vice President of Product Management, Beyond Trust, Agoura Hills, Calif.
Saurabh Bhatnagar is the Vice President of Product Management at BeyondTrust, a developer of enterprise security software that empowers IT to eliminate the risk of intentional, accidental or indirect misuse of privileges. Saurabh oversees the creation of new products and market strategies, with the objective of driving profitable billings growth and sustainable market leadership. Saurabh has worked in enterprise security and technology for more than a decade, including product management and marketing roles with Websense and HP. He holds an MBA from the Tepper School of Business at Carnegie Mellon University and a BS in Electrical Engineering from the National Institute of Technology, Warangal.
Session: Five Steps to Replacing Trust with Process for Privileged Users
 Evan Tegethoff
Director of Risk and Compliance Management, Accuvant, Chicago
Evan Tegethoff , CISSP, ISO 27001 Certified Lead Auditor, has been in the field of information security and compliance since 1995. Evan has previously served as representative to the INCITS CS1 Group, the U.S. technical advisory group to the ISO Cyber Security Standards, reviewing and voting on standards such as ISO 17799 and ISO 27001. As Director of Compliance Services, Evan oversees service delivery for all engagements within the practice. He has published articles on security and compliance in numerous trade publications and has spoken at a number of industry events, including the RSA Security Conference, ISSA events, CIO forums and many others.
Session: Building and Managing Information Security Frameworks - ISO 27001/27002
 Pete Lindstrom
Research Director, Spire Security, Philadelphia
Pete Lindstrom is Research Director for Spire Security, an industry analyst firm providing analysis and research in the information security field. He held similar positions at industry analyst firms Burton Group and Hurwitz Group. In his previous position as a security architect, Pete operated as the deputy to the chief information security officer for Wyeth Pharmaceuticals where he oversaw all security policy and compliance activities and participated on project teams for designing security controls for significant IT projects. As both an external and internal auditor (for Coopers and Lybrand and GMAC Mortgage), Pete linked technical security requirements of organizations with business risk for companies in health care, financial services, manufacturing, and higher education. In his current role as Research Director for Spire Security, Pete conducts research in developing areas of information security. He is well-known for his work in practical enterprise security metrics, where he has advised and taught many security professionals. On the technical front, his most recent accomplishments include research findings in the areas of Web 2.0, virtualization, and cloud computing security. This research ties traditional security principles and practices to these burgeoning new IT arenas.
Session: Security Economics in a Recession
 Ben Rothke
Senior Security Consultant, BT Global Services, New York City
Ben Rothke, CISSP, PCO QSA, is a New York City-based senior security consultant with BT Global Services and has over 15 years of industry experience in information systems security and privacy. His areas of expertise are in risk management and mitigation, security and privacy regulatory issues, design & implementation of systems security, encryption, cryptography and security policy development, with a specialization in the financial services and aviation sectors. Ben is the author of Computer Security - 20 Things Every Employee Should Know (McGraw-Hill) and write a book review for Security Mangement magazine and Slashdot.
Session: Social Networks and Information Security - Oxymoron or can you have both?
 Justin Kallhoff
CEO, Infogressive
Justin Kallhoff is the CEO of Infogressive, Inc., a security-centric information consulting firm headquartered in Lincoln, Neb. Justin currently holds eight industry accepted information security certifications: Certified Information Systems Security Professional, Certified Ethical Hacker, GIAC Certified Forensics Analyst, GIAC Payment Card Industry, GIAC Certified Incident Handler, GIAC Security Essentials Certification, GIAC Information Security Professional and GIAC Certified Windows Security Administrator. Kallhoff earned his Bachelor of Science from the University of Nebraska. He worked for Alltel in a variety of technology roles including six years in data engineering. He also worked for Information Technology, Inc., a division of Fiserv, where he worked with financial institutions from around the country. Prior to founding Infogressive, Justin was a security consultant in the Chicago area.
Session: Nip it in the Vuln
 Scott E. Christiansen
Chief Security Officer, Leo A Daly
Scott E Christiansen is the Chief Security Officer for Leo A Daly; one of the 10 largest architecture, engineering, planning and interior design firms in the United States. In this capacity Scott oversees the development and implementation of a corporate security model and change management system that aligns with the flexible demands of this high paced industry. Scott also serves on the Board of Directors for Nebraska InfraGard, is a faculty member for ITT Technical Institute's Information Systems Security Bachelor's program, consults on security industry advice with financial investment firms, provides expert manuscript review services for the (ISC)2 Journal and leads a team of hackers in the SANS NetWars competition. Scott earned his Master's Degree in the Management of Information Systems with a focus on Information Assurance from the University of Nebraska Omaha in 2007 and was recognized with the inaugural Outstanding MS MIS Graduate Award. Scott has been published and quoted in numerous magazines and holds several industry certifications from Cisco, Microsoft and (ISC)2.
Session: CISO Panel - Inside the Security Story
 Rick Shaw
CEO/President, Awareity, Lincoln
Awareity's founder and CEO, Rick Shaw, has over 27 years of experience with managing risks, technology, processes, clients and people at both large and small organizations. In addition to Rick’s experiences, hundreds of case studies, incidents and failures have played a key part in Rick’s vision and the development of Awareity’s unique and forward thinking management tools and services that focus on Controls and People rather than systems and technology.
Session: The Truths (and Myths) About Assessments, Planning and Implementing
 John M. Rogers
Senior Application Security Engineer, Lincoln Financial Group
John Rogers is a Senior Application Security Engineer working in the Security Assurance department at Lincoln Financial Group. Previously John worked as a Lead Security Engineer at ACI Worldwide, Inc. John is one of the unique Application Security Professionals with over 20 years of experience in all aspects of the Software Development Lifecycle (SDLC) for the Banking, Payment and Financial Services industries. John is also a Certified Information Systems Security Professional (CISSP) and serves on the Board of Directors for Nebraska InfraGard.
Session: Web Attacks and How to Stop Them
 Mick Atteberry
CEO, Mick Atteberry and Associates
As a former Director of Information Security for ConAgra Foods, Mick Atteberry held worldwide responsibility for the safety and security of the company’s data. He was responsible for Information Security Architecture; he aided in policy development, risk management, technology planning, architecture, and standards. Mr. Atteberry held this role at ConAgra Foods for over 10 years. Mr. Atteberry has more than 30 years of IT experience, with 20 years experience dealing with Information Security Management. Before joining ConAgra Foods, he was responsible for Information Security Management at Cessna Aircraft from 1995-1998 and Computer and Network Security Compliance at Boeing Wichita from 1988 to 1995. Mr. Atteberry holds a Bachelor of Science in Information Systems from Kansas State University, is a Certified Information Systems Security Professional (CISSP), is a Certified DoD Facility Security Officer, and is certified in ITIL Foundations.
 Steve Clauson
Senior Manager of Security Governance, TD Ameritrade
Steve brings a unique set of experiences to the information security world. He was the first ever CISO for Mutual of Omaha, and built the security program that achieved HIPAA compliance. He was also the first ever CISO at ACI Worldwide, and built the program that achieved PCI compliance. In these roles for these two companies, Steve built information security programs that where not only sustainable and defensible, but met an evolving set of new requirements and regulations during a relatively immature period for information security maturity levels. He is the founder of the Chief Information Security Council for the Insurance industry, and has served on the Board of Directors for Continuum Worldwide. During the early HIPAA years, Steve provided briefings to Congressional committees on information security programs. The program that he built for security sensitive Medicare patient data received national recognition from CMS. Steve also worked for Software Engineering Services where he provided security consulting to a variety of federal, state, and commercial entities. He is currently working for TD Ameritrade, and is responsible for the policy, compliance, and governance of the information security program at TD Ameritrade.
Session: CISO Panel - Inside the Security Story
 Jim O'Gorman
Consultant, Continuum Worldwide
Jim O'Gorman is a consultant with Continuum Worldwide. In his off hours he is one of the development team of social-engineer.org and the SE podcast, an author of the free Metasploit Unleashed course, and helps support the exploit-db.org (milw0rm replacement) site. Jim holds OSCP, CISSP, OSWP, CCE and GCFA certifications.
Session: DEP Evasion in Modern Windows Exploits
|
