Kenneth C. Citarella, Guidepost Solu-tions: Every year we learn about new intrusions and new breaches until we have almost become numb from the re-lentless reports. It will not change in 2016 unless there is serious cooperation among all levels of government, the computer industry and network owners, coupled with serious diplomatic pressure from the U.S. government on the international front.
Richard De Vere,The AntiSocial Engineer:
The industry hasn’t taken the large steps it needs yet to focus on security first and profit second. Finance still leads most bu-sinesses security implementations in 2015 and for our selfish greed in this matter, we will see security breaches and online crime rise like it has done every other year previous. This is good for business in the short term yes, but the industry course of business and defense, if botnet time and crypto ransomware services can be bought for as little as $50 for an acco-unt, I believe you will see similar services being more readily available for purchase such as hackers for hire.
David Clarke, VCiso:
Cyber Security Vendors who can spend the most on R & D and who have market positions now will dominate the Informa-tion Security Marketplace. • The CISO role will need to change from being part of IT and report to either directly to the CEO or at least to Legal or Finance board members. • Legislation or pressure from Cyber Insurance, will enforce that certain cyber security components are mandated, eg strong authentication. Other industries such as the car industry, aero, nuclear and building have many mandated safeguards already, seat belts, vehicle checks, crash standards. An unsafe vehicle cannot be put on the roads, unsafe aircraft in the air, thus unsafe IT would not be permitted on the electronic highways.• Governments may need to provide assistance on protec-ting information superhighways similar to the way the road systems and airspace is protected. • Cyber Security will need to invest their time and resources to develop and create the effective work-process to solve hacking cases.
M ISCELLANEOUS
Kris Rides, Tiro Security: I think we will see more attacks coming through small vendors to larger companies. Many high tech vendors who are providing niche se-rvices have little or no security posture making them an easy way to get at the real target. We are already seeing SMB’s increasing their spend on security as they realize it can be a differentiator when it comes to winning new business against competitors.
M ISCELLANEOUS
W HO IS
WHO
James Carder LogRhythm
CISO & VP
He has over 18 years of experience working in cor-porate IT security and con-sulting for the Fortune 500 and U.S. Government. At LogRhythm, he develops and maintains the company’s security governance mo-del and risk strategies, protects the confiden`tiality, in-tegrity and availability of information assets, oversees threat and vulnerability management and the Security Operations Center. He also directs the mission and stra-tegic vision for the LogRhythm Labs machine data intel-ligence, threat research, compliance research, incident response, and threat intelligence teams. He holds a Ba-chelor of Science degree in Computer Information Sys-tems from Walden University and is a Certified Informa-tion Systems Security Professional.
Greg Foss LogRhythm Security Operations
Team Lead
He is LogRhythm’s Security Operations Team Lead and a senior researcher with Labs, where he is tasked with leading both offensive and defensive aspects of corporate security. He has just under a decade of expe-rience in the Information Security industry with an extensive background in Security Operations, focusing on Penetration Testing and Web Application Security.
Greg holds multiple industry certifications including the OSCP, GAWN, GPEN, GWAPT, GCIH, and C|EH, among others. He has presented at national security conferen-ces such as DerbyCon, AppSecUSA, BSidesLV, and is a very active member of the Denver security community.
Dennis Chow
Millar Inc, Security Manager, Incident Response
He is a security practitioner that has over 10 years of combined IT and Information Security experien-ce. Dennis currently leads Information Security efforts at Millar, Inc. as their Network Security Mana-ger. In addition management and practitioner experience, Dennis has consulted for various clients within Oil and Gas, Healthcare, Defense, and other critical infrastructure industries. Dennis also holds several industry known certifications including the GCFA, GCIH, GCIA, GPPA, CISSP, E|CSA, C|EH, and L|PT and is currently the Program Manager for a collaborative Cyber Threat Information Sharing Grant by the Department of U.S. Health and Human Services.
W HO IS
WHO
Bob Stasio
Senior Product Manager of Cyber Analysis at IBM i2 Safer Planet Bob Stasio is the He brings nearly Surge,” Bob’s intelligence unit supported the detainment of over 450 high-value targets.
Andrew Borene Federal manager, i2 Safer Planet
Andrew Borene provides executive leadership for IBM’s i2 Safer Planet Federal business team. He served as Associate Deputy General Coun-sel at the U.S. Department of De-fense and is a former U.S. Marine Corps military intelligence offi-cer. Prior to joining IBM, Mr. Bore-ne was a Counselor to the interna-tional law firm of Steptoe & John-son LLP. His career includes leading corporate development at a micro-robotics startup and U.S. intelligen-ce community program manage-ment for a publicly-held big data company. He is active within le-ading public-private initiatives for improved U.S. national security, global leadership and technology growth.
Todd M. Rosenblum Senior executive for worldwide big
data, i2 Safer Planet
Todd M. Rosenblum joins IBM as a Senior Executive for Global Busi-ness Development. He is responsi-ble for identifying market engage-ment opportunities for IBM’s Safer Planet, Enterprise Insight Analysis suite of capabilities. Todd focuses especially closely on deepening collaborative partnerships with senior executives in the United Sta-tes Government, U.S. State, local and private sector companies, as well as worldwide defense, intelli-gence and law enforcement institu-tions.
Shahid Shah
CEO, Netspective Communications He is an award-winning Govern-ment 2.0, Health IT, Bio IT & digital Medical Device Inventor & CTO with over 25 years of technology strategy, architecture, engineering, entrepreneurship, speaking, and writing experience. He is the chair of the #HealthIMPACT Forum.