EXCHANGE brings together key influential security and risk experts, including keynote speakers Nicole Perlroth, an accomplished cybersecurity reporter at the New York Times; Kevin Mitnick, computer security consultant, author and hacker; and Jeffrey Wheatman, VP of Research at Gartner. CISOs, CEOs and CIOs from Fortune 500 financial services, insurance and technology organizations such as Moody's, S&P Global, and Multiplan will provide you insight into their successes, including strategies to make intelligent risk decisions.
With plenty of time to network with speakers, influencers and attendees, EXCHANGE delivers the only collaborative environment for security and risk professionals to share best practices and solve issues together.
BitSight pioneered the security ratings market in 2011, as the first company to offer a security ratings product. Over 1,600 organizations worldwide use BitSight’s proven Security Ratings technology on a daily basis to make integral risk and business decisions.
American computer security consultant, author, and hacker.
Once one of the FBI’s Most Wanted because he hacked into 40 major corporations just for the challenge, Kevin is now a trusted security consultant to the Fortune 500 and governments worldwide.
Kevin and The Global Ghost Team™ now maintain a 100 percent successful track record of being able to penetrate the security of any system they are paid to hack into using a combination of technical exploits and social engineering. As CEO and chief “white hat” hacker at one of the most advanced boutique security firms in the world, Kevin mentors leaders, executives, and staff on both the theory and practice of social engineering, topics on which he is the leading global authority. Kevin also helps consumers—from students to retirees—learn how to protect their information and themselves from harm, using understandable terms and a friendly approach.
Kevin’s insights on current events are highly sought, leading to hundreds of media appearances. He is the world’s top cybersecurity speaker, and has been a commentator, security analyst, or interview subject on CNN, CNBC, Al Jazeera, FOX News, CBC, BBC, Radio Moscow, Tech TV, National Public Radio, Playboy, Good Morning America, and 60 Minutes—to name just a few. He has been called before Congress (both the House and the Senate) to testify on security matters affecting the United States. Kevin also produces critically acclaimed security awareness training programs to counteract social engineering and to improve security effectiveness.
Cybersecurity Reporter, The New York Times
Nicole Perlroth covers cybersecurity for the New York Times. She is the recipient of several journalism awards including best technology reporting by the Society of Business Editors and Writers. Her 2014 Times profile of security blogger Brian Krebs was optioned by Sony Pictures and a 2016 story of Chinese hackers in a welding shop server was optioned for a television series by the Weinstein Company. Prior to joining the Times in 2011, Perlroth covered venture capital and startups for Forbes Magazine. She is currently at work on a cybersecurity book, This Is How They Tell Me the World Ends for Penguin/Portfolio (2017). Perlroth is a Guest Lecturer at the Stanford Graduate School of Business and a graduate of Princeton University (BA) and Stanford University (MA).
Managing Director, Menlo Ventures
Venky joined Menlo Ventures in 2013 and focuses on investments in the consumer and enterprise sectors. He currently serves on the board of Avi Networks, BitSight, Breather, Dedrone, Machine Zone, MealPal, OverOps, Rover, Unravel, UpCounsel, and Waterline Data Science. Prior to joining Menlo, he was a Managing Director at Globespan Capital Partners where he was part of the investment team since the firm’s inception. At Globespan, Venky led numerous successful investments including Palo Alto Networks (“PANW), Redfin (“REDF”) ,), Amobee (Acquired by SingTel for $321 Million), Exeros (Acquired by IBM), Jajah (Acquired by Telefonica for $207 Million), Sendia (Acquired by Salesforce.com), Virident (Acquired by Western Digital for $685 Million), and Trigo (Acquired by IBM). In addition, he also led investments or served on the boards of the following private companies: oDesk, Rev, and SMSGupshup. Venky was recognized on the 2013, ’14 and ’15 Forbes Midas List.
Prior to Globespan, Venky was one of the founders of Trigo Technologies and played a critical part in building Trigo into the market leader in the product information management space. IBM acquired the company resulting in a substantial return for all investors. Venky also previously worked at McKinsey & Co., in the firm’s Los Angeles and Johannesburg offices and at Microsoft where he started his career as a Program Manager.
Venky holds a B.A. in Economics-Math from Reed College and a B.S. in Engineering and Applied Science with honors from the California Institute of Technology. Venky believes strongly in giving back to the community and is former chair of the National Venture Capital Association (NVCA). He has also been a past Trustee of Keys School and past President of the Indian Community Center in Milpitas.
Global Product Lead Cyber Security, Verizon
Senior IT executive who combines in-depth ICT (Information- and Communications Technologies) and business operations experience to successfully acquire, develop and manage multinational and global outsourcing clients; transforms regional and global strategies into operational efficient and cost effective organizations. Identifies and develops technology- and business driven initiatives on customer C-level and by doing so acts as catalyst for new business development.
Professor at Harvard Business School
BIO details to come.
CIO at Kohlberg Kravis Roberts & CO.
Ed Brandman (New York) joined KKR in 2007 and is the firm’s Chief Information Officer. He leads the firm’s global technology and operations team. He also assists KKR's investment teams with IT diligence. He previously served on the board of directors at Ipreo. He is a member of the firm's Risk Committee and Operations Management Committee. He is a current board observer at Artivest and on the client advisory board of Bitsight. Prior to KKR, Mr. Brandman worked at PricewaterhouseCoopers, where he was a managing director in the financial services advisory practice. He founded and served as the CEO of Renaissance Trading Technologies (RTT), a technology firm focused on trading solutions. RTT was an outgrowth of his role as CIO and head of electronic trading at Robertson Stephens. He began his career at J.P. Morgan where he headed equity trading technology. He received a B.A. from Rutgers University.
Technology Entrepreneur, Former General Manager of IBM Security
Brendan Hannigan is an accomplished CEO, general manager and entrepreneur. As an entrepreneur partner at Polaris Partners Brendan helps fund and found security, cloud and SaaS companies. Brendan is Chairman of Twistlock and serves on the board of BitSight Technologies and Flashpoint. Hannigan was previously General Manager of IBM Security. IBM Security grew to be the #1 enterprise security provider under his leadership (~$2B revenue). Previously Brendan was President and CEO of Q1 Labs. QRadar, the Q1 Labs flagship platform, grew to be the #1 worldwide market share leader under his leadership.
Partner and Chief Operational Risk Officer, Goldman Sachs
Phil is the firm’s Chief Operational Risk Officer. He co-chairs the Firmwide Conduct and Operational Risk Committee, and is a member of the Firmwide Risk Committee, Firmwide Technology Risk Committee and Global Business Resilience Committee. Previously, Phil served as Chief Information Risk/Security Officer and Head of Technology Risk. He joined Goldman Sachs as a vice president in London in 2000 and transferred to New York in 2001. Phil was named managing director in 2003 and partner in 2010.Prior to joining the firm, he was Chief Information Security Officer at Deutsche Bank and also functioned as the Global Head of Technology Risk Management for Standard Chartered Bank. Before that, Phil served in various technology, network management and software engineering roles at a number of finance, energy, and defense organizations.
Phil serves on the Executive Committee of the US Financial Services Sector Coordinating Council for Critical Infrastructure Protection, is co-chair of the Board of Sheltered Harbor, and is a member of the boards of the Center for Internet Security and the NYU School of Engineering. He is also an advisor to the cyber-security efforts of the US National Research Council, the Institute for Defense Analyses and serves on the Advisory Board to the Director of a US intelligence agency. Phil is a member of the Council on Foreign Relations. Phil earned a BSc (Hons) in Computer Science from the University of York and an MSc in Computation and Cryptography from the Queen’s College at Oxford University. He was awarded the designation of Chartered Engineer in 1995 and Chartered Scientist in 2002 and was elected a Fellow of the British Computer Society in 2005.
Chief Executive Officer, KY3P, IHS Markit
Ms. Ellen Schubert leads strategic business initiatives for KY3P, the first centralized third party risk management data hub. Ms. Schubert is responsible for managing product and business development teams on KY3P, which was designed in partnership with leading global financial institutions to increase efficiency and standardize third-party due diligence processes. Prior to joining the firm in 2015, Ms. Schubert spent a year consulting to women-owned hedge funds, both start-ups and established funds on their marketing, human resources and compliance policies. She currently serves as a director and treasurer on Miami University's Foundation Board and was a member of the Finance Advisory Board of Miami University's Farmer School of Business. Ms. Schubert spent 2009-2014 as chief advisor to Deloitte's Asset Management Services group, advising hedge fund clients on operations, product structuring, and regulation. Previously, she was a managing director and global head of the fixed income hedge fund business for UBS where she served on the Investment Bank board of directors since 2005. She began her career at the Chicago Board of Trade.
Additionally, Ms. Schubert has served as a member of Foreign Exchange Committee and co-chair of the operations managers working group of The Federal Reserve Bank of New York. She was a national board member of Power My Learning, 2008-2015, a NY- based nonprofit that helps low-income students harness the power of digital learning to improve educational outcomes. She has served on the Investment Committee of the Junior Achievement Board of SW Connecticut since 1999. She was honored with the Merit Award from the Women's Bond Club of New York in 2004 and she received the Leadership Award from 100 Women in Hedge Funds in 2005.
Head of External Cyber Assurance & Monitoring at Barclays UK
Experienced Global Head with a demonstrated history of delivery across multiple disciplines within the banking industry, Security, IT Security and Third Parties. Skilled in Third Party Audit, Policy and Process Development, Intelligence, Physical Security, Cyber Forensics, Investigations, Fraud, Quality Assurance, Risk, Incident Response and Attack Monitoring. Extensive experience in the management and development of global teams, delivering diverse solutions across challenging environments.
Managing Director and CISO at Moody's Corporation
Bio to come.
Chair, Risk Oversight Committee, E*TRADE
James Lam is the president of James Lam & Associates and a director of E*TRADE Financial, where he chairs the risk oversight committee. Lam is also an independent director of RiskLens, Inc., a cyber risk quantification company. Previously he served as president of ERisk, partner of Oliver Wyman, chief risk officer of Fidelity Investments, and chief risk officer of GE Capital Markets Services. Mr. Lam was named to the NACD Directorship 100 in 2017 and 2018, Directors & Boards “Directors to Watch,” Treasury & Risk “100 Most Influential People in Finance” three times, and GARP inaugural “Risk Manager of the Year.” He is a best-selling author of three ERM books published by Wiley. Mr. Lam is certified by the Software Engineering Institute of Carnegie Mellon in Cybersecurity Oversight.
Niloofar Razi Howe
Former Chief Strategy Officer of RSA and Endgame, Inc.
Niloofar Razi Howe has been an investor, executive and entrepreneur in the technology industry for the past 25 years, with a focus on Cybersecurity for the past ten. Most recently Ms. Howe served as Chief Strategy Officer and Senior Vice President of Strategy and Operations at RSA, a global cybersecurity company where she led corporate strategy, corporate development and planning, business development, global program management, business operations, security operations and Federal business development. Prior to RSA, Ms. Howe served as the Chief Strategy Officer of Endgame, Inc., a leading enterprise software security company, where she was responsible for driving market and product strategy, as well as leading marketing, product management, corporate development and planning. Prior to her operating roles, Ms. Howe spent twelve years leading deal teams in private equity and venture capital; first as a Principal at Zone Ventures, an early-stage venture capital firm in Los Angeles, and then as Managing Director at Paladin Capital Group, a Washington DC based private equity fund focused on investing in next generation security companies. Ms. Howe started her professional career as a lawyer with O’Melveny & Myers and as a consultant with McKinsey & Co.
Ms. Howe speaks regularly on national security, cybersecurity, technology, innovation, corporate governance and corporate culture. She also created a TED talk entitled “The Gift of Exile” about the long-term opportunities that can arise from the most difficult challenges encountered in childhood for both the individuals who suffer the adversity and the communities that can accept and integrate such individuals.
Ms. Howe graduated with honors from Columbia College and holds a JD from Harvard Law School, is a life member at the Council on Foreign Relations and an advisor to U.S. government agencies. Her non-profit work includes serving on the boards of IREX, an international non-profit organization focused on promoting lasting change, as Vice Chair, and Sibley Memorial Hospital (a member of Johns Hopkins Medicine), as co-chair of its Investment Committee. Previously she served on the Board of Global Rights, an international human rights organization, as Chair, and on the Sibley Memorial Hospital Foundation, as Vice Chair.
Stephen Boyer is co-founder and CTO of BitSight Technologies. Since 2011, BitSight has provided evidence-based ratings of security effectiveness to help organizations manage their security risk. Previously, he was president and co-founder of Saperix. He also led R&D programs at MIT Lincoln Laboratory, and he designed, developed, and tested products at Caldera Systems. Boyer holds a bachelor’s in computer science from BYU and master of science in engineering and management from MIT.
Chief Marketing Officer, BitSight Technologies
Dave has an extensive background as both a senior executive and venture capitalist. Dave has led Sales, Marketing, Finance and Business Development functions and has Board of Director level experience at over 20 companies including BitSight, Q1 Labs, Turbonomic, and OpenPages. In addition to his role at BitSight, Dave is a Managing Director at Globespan Capital Partners.
Ronald "Ron" Moultrie
President & Founder, Oceanus Security Strategies, LLC
Ron Moultrie is a former National Security Agency Director of Operations. He has over 36 years of government leadership within the U.S. Intelligence Community and National Security sectors. Throughout his career, Ron served in several of the most critical and complex national security assignments in the U.S., holding important posts as a member of the CIA’s Senior Intelligence Service, the Office of the Director of the National Intelligence, as well as with the United States military. Ron led what is arguably the world’s most capable, technically adept, and globally dispersed cyber organization.
Ron planned, directed, and coordinated the internal NSA response to one of the most critical events in
the Agency’s history - the Edward Snowden breach in 2013. After retiring from the government in
November 2015, Ron established Oceanus Security Strategies to provide unique counsel to clients on
current and emerging cyber security threats.
CEO & Founder, Sand Hill East, LLC
Andy Brown currently serves as CEO of Sand Hill East, LLC, which provides strategic management, investment and marketing services to emerging companies. Mr. Brown is a member of the board of directors of Guidewire (GWRE), Zscaler(ZS), Moogsoft, LMRKTS and Sitehands
Andy invests and advises a number of companies including Digital Asset Holdings, Eversafe, Roomi, MSG.ai, Lastline, untapt, Revolution Credit, T-RexGroup, MotusGlobal, The-Wing, Beacon.io, Noble Markets, MSG.ai, Callsign, Cyberhaven, Soofa.co and consults on strategic advisory issues with Warburg Pincus & FT Ventures.
From September 2010 to October 2013, Mr. Brown served as Group Chief Technology Officer of UBS, an investment bank. From 2008 to 2010, Mr. Brown served as Head of Strategy, Architecture and Optimization at Bank of America Merrill Lynch, the corporate and investment banking division of Bank of America. From 2006 to 2008, Mr. Brown served as Chief Technology Officer of Infrastructure at Credit Suisse. Prior to that, for 10 years, Mr. Brown served in various leadership roles at Merrill Lynch, including Chief Technology Architect, Chief Information Officer of Direct Markets, Head of Networks, Market Data and Email.
Mr. Brown holds a BSc Honors Degree in Chemical Physics from University College London.
Executive Director, Financial Services Organization, EY
Mark is an Executive Director in EY’s Financial Services Organization (FSO), and Deputy Leader for EY’s Americas FSO Center for Board Matters. His main area of focus is and corporate governance and risk governance, as well as resiliency and cyber risk management. He has almost 25 years experience in financial services, working globally on banking and insurance, and has published extensively.
Since joining EY, Mark has focused on:
Corporate governance: driving FSO’s focus on board matters, including supporting board-mandated projects (e.g., on cyber), providing training to boards, and authoring board-relevant thought leadership.
Risk governance: developed integrated approach to risk governance, realigning three-line-of-defense model, improving board oversight and governance, and internal audit. Has led numerous major projects focused on risk management / appetite, and internal governance/operating models.
Regulatory engagement: engaging regulators on emerging trends, notably in board governance, risk, compliance / consumer regulation, and cybersecurity.
Cybersecurity, privacy and resiliency: helping clients embed cybersecurity, privacy and operational resiliency firmwide, in risk, technology, compliance, and audit, and at the board level
Prior to EY, Mark led Tapestry Networks’ bank and insurance networks, comprising non-executive directors and executives from global banks and insurers, as well as leading regulators, supervisors, and policymakers globally. He facilitated over 100 senior levels sessions while at Tapestry.
Before Tapestry, Mark led a corporate governance team within Moody’s within their financial institutions group, an Expert Consultant at McKinsey & Company, held a number of political-research and lobbying roles for UK Members of Parliament, a free-market think tank, and two major UK groups representing pension funds and non-executive directors.
Mark lives in Concord, MA, with his Anglo-American family. He is a board member and co-chair of the grants committee of the Concord Education Fund.
President, SL Advisory
Shelley Leibowitz is a leader among technology professionals, with an outstanding track record of strategy formulation and effective execution in the private and public sectors. In early 2016, Ms. Leibowitz launched SL Advisory, providing tailored advice and insights to senior executives and boards of directors in the areas of technology strategy, digital transformation, IT portfolio and risk management, performance metrics, and governance. Ms. Leibowitz serves on the Board of Directors of E*Trade Financial, where she sits on the Risk Oversight and Governance Committees, Alliance Bernstein Holding, where she sits on the Audit Committee, and Endgame, foremost provider of cybersecurity capabilities to government and corporate entities. She is a member of the Council on Foreign Relations, on the CNAS Council at the Center for a New American Security, on the Visiting Committee for the Center for Development Economics at Williams College, and a member of the National Association of Corporate Directors, where she is frequent presenter and has earned the CERT Certificate in Cybersecurity Oversight for Board Directors. Ms. Leibowitz is former Chief Information Officer for the World Bank Group.