The Board of Advisors of the Executive Women’s Forum on Information Security, Risk Management and Privacy was formed in 2013 and is a network of highly influential female thought-leaders.
Chairman and CEO
The Santa Fe Group
For more than 30 years, Catherine A. Allen has been an outstanding thought leader in business innovation, technology strategy, and financial services.
Today, Catherine is Chairman and CEO of The Santa Fe Group, a strategic advisory services company based in Santa Fe, NM. The Santa Fe Group specializes in briefings to C-level executives and boards of directors at financial institutions and other critical infrastructure companies in the areas of cybersecurity, emerging technologies, and risk management. The Santa Fe Group provides management for strategic industry and institutional projects focused on third party risk management, including the Shared Assessments Program.
Catherine currently serves as a board member of Risk Sense, Belief Agency and Pocket PatientMD. She formerly served on the boards of Synovus Financial Corporation, El Paso Electric Company, and Analytics Pros, and was a member of the Risk, Energy, and Natural Resources, External Affairs and Nominating and Governance Committees. She chaired the Security Committee for El Paso Electric. She formerly sat on the Advisory Board of Houlihan Lokey and served as a former board member and Chair of the Technology Committee for Stewart Information Services. In 2018, Allen was recognized as one of the NACD Directors 100 most influential U.S. corporate board directors. She is currently Tri-Chair of the University of Missouri’s Capital Campaign and a member of the Chancellors Board of Visitors. She is also on the advisory board of Women Corporate Directors and the Executive Women’s Forum. Catherine is the former Chair of the Board of Trustees and member of the National Foundation for Credit Counseling and formerly chaired New Mexico Appleseed. She is a member of the Museum of New Mexico Foundation and International Folk Art Alliance boards. She is formerly a Presidential appointment trustee of the Valles Caldera.
In 2007, after a decade of service, Catherine stepped down from her role as the founding CEO of the financial services industry consortium, BITS to continue her work with The Santa Fe Group and pursue her passion as a corporate board member. During her tenure at BITS, Catherine worked closely with CEOs, CIOs, and executives at the nation’s largest financial institutions on strategic issues, from payments strategies to risk management. BITS’ accomplishments under Catherine’s leadership include creating best practices in more than 30 areas of financial services management.
Earlier in her career, Catherine served in several senior executive positions at Citicorp in the retail, bankcards, and corporate technology divisions. She represented Citibank as founding Chair and President of the multi-industry Smart Card Forum. Prior to joining Citibank, Catherine was Director of Corporate Planning for Dun & Bradstreet, where she created and chaired the Electronic Yellow Pages and Information Association. Catherine was also a consultant to CBS, Inc. on new technologies and international trade while she was a professor at American University’s Kogod College of Business Administration.
Catherine was recently honored by Cyber Defense Magazine’s 2019 Top 25 Women in Cybersecurity; as Director Honoree for 2019 NACD Directorship 100; SC Magazine: 30 Years in Cybersecurity-2019 Visionaries of the Last 30 Years; Cyber Defense Infosec 2019 Cutting Edge Women in Cybersecurity; and the US Banker Magazine Lifetime Achievement Award for her outstanding contributions to financial services and technology. In 2013, she was honored with the Lifetime Achievement Award for her contributions to technology by the Executive Women’s Forum. An Honorary Doctorate from the University of Missouri was conferred on Catherine in 2015. She holds a B.S. from the University of Missouri, M.S. from the University of Maryland and is A.B.D from George Washington University.
Catherine is married to Paul Rooker and lives between Santa Fe, NM and Cape Cod, MA.
Marene N. Allison
Vice President and Chief Information Security Officer
Johnson & Johnson
Marene N. Allison, Vice President and Chief Information Security Officer for Johnson & Johnson, is responsible for protecting the company’s Information Technology (IT) systems and data worldwide through elimination and mitigation of cybersecurity risk. This includes ensuring that the J&J information security posture supports business growth objectives, protects public trust in the J&J brand, and meets legal/regulatory requirements. With 265 companies in 60+ countries, J&J is a leader in consumer health, pharmaceutical products, and medical devices worldwide.
Prior to joining Johnson & Johnson, Marene was Chief Security Officer and Vice President for Medco, the largest pharmacy benefit manager in the United States. Marene was responsible for all aspects of the company's security, regulatory and compliance including, physical and logical security, executive protection as well as HIPPA, Payment Card Industry, Medicare and prescription fraud and IT controls.
Prior to that, Marene was with Avaya as head of Global Security where she worked on securing the World Cup network in Korea and Japan in 2002. Before joining Avaya, she was Vice President of Loss Prevention and Safety for the Great Atlantic and Pacific Tea Company. Before joining the corporate world, she served as a Special Agent in the FBI working on undercover drug operations in Newark, NJ, and also working on terrorist bombings in San Diego, CA. She developed and participated in the nuclear terrorism exercise, Compass Rose ’88, the largest mock terrorism incident exercise by the federal government.
Marene has a Bachelor of Science degree from The United States Military Academy at West Point, in the first class to include women. She has served in the US Army in the Military Police, at Ft Hood, TX, Ft Chaffee, AR and Ft McClellan, AL. She has served on the Defense Advisory Committee on Women in the Services appointed by the Secretary of Defense and the Overseas Security Advisory Committee appointed by the Secretary of State. She is a founding member of West Point Women and currently serves on their Board of Directors. Marene is married, has a son, a wonderful daughter-in-law and grandson, and lives in Bucks County, Pennsylvania.
CEO, Alta Associates
Founder of the Executive Women's Forum
Joyce Brocaglia is the founder and CEO of Alta Associates. Founded in 1986 Alta Associates has become the most prominent boutique executive search firm specializing in Information Security, IT Risk Management and Privacy. Joyce is a strategic advisor to her clients who has gained the trust and respect of the industry’s most influential executives by accomplishing their strategic and diverse hiring goals. She is a career advisor to industry thought leaders and a trusted member of the Information Security, Risk Management and Privacy industry. Joyce is sought after for her deep knowledge of the industry, market conditions, business intelligence and ability to create industry alliances.
Joyce is known for her commitment to enabling women to achieve their professional goals and personal dreams through education, leadership development and the creation of trusted relationships.
In 2002 Joyce founded the Executive Women’s Forum on Information Security, Risk Management and Privacy. Today the EWF is the largest member organization serving emerging leaders as well as the most prominent and influential female executives in their field.
Joyce received the prestigious 2015 CSO Compass Award in recognition of outstanding achievement in security and risk management leadership.
In 2014 Joyce was honored with the SANS Difference Maker Award for her industry contributions and named one of the Top 25 Women Entrepreneurs of New Jersey.
In 2013 the EWF Leadership Journey was launched. Corporations are utilizing this comprehensive virtual leadership development program to optimize individual performance, authentic personal leadership skills and organizational impact.
In 2013 in recognition of the 10th anniversary of the Executive Women's Forum and in honor of the work Joyce has done to advance women in the fields of information security and IT risk management, a fellowship fund at Carnegie Mellon INI was been created in her honor by her colleagues.
In 2008 Ms. Brocaglia authored the chapter “Who Companies Really Want to Hire: How to Advance Your Career and Have Great Success” in the book “CISO Leadership: Essential Principals for Success” Along with (ISC2) authored the “Hiring Guide to the Information Security Profession”.
In 2006 Ms. Brocaglia and the Executive Women’s Forum partnered with Carnegie Mellon’s INI to create scholarships for outstanding women to enroll in CMU’s Master of Science in Information Security Technology and Management program. The first EWF Fellow was announced in 2007 and each year since then.
In 2005 Ms. Brocaglia authored “The Information Security Officer: A New Role for New Threats” in Larstans’s “The Black Book on Corporate Security.”
In 2003 Information Security Magazine honored Joyce with a “Women of Vision” award naming her one of the 25 most influential women in the information security industry.
Joyce has acted as the career advisor of CSO Magazine and author of the monthly "Career Corner" column for the Information Systems Security Association (ISSA) Journal. Joyce has served on the board of advisors for the ISSA and International Information Systems Security Certification Consortium (ISC2). Joyce has appeared in The Wall Street Journal, Network World, Network Computing, Information Security Magazine, Redmondmag.com and CSO Magazine. Joyce is a speaker at industry events regarding career matters and emerging roles within the information technology and security community. Joyce holds a Bachelor of Science degree in accounting from Montclair State University and is Certified Public Accountant.
Galina Datskovsky, PH.D., CRM
Chief Executive Officer
Dr. Galina Datskovsky, CRM, FAI and serial entrepreneur is an internationally recognized privacy, compliance and security expert. Galina is currently the CEO of Vaporstream®, a position where she applies her knowledge and strategic guidance in building businesses, product development, governance policies, as well as cyber security. Prior to Vaporstream, Galina served as CEO of Covertix, North America; Senior Vice President of Information Governance at Autonomy/HP; and as General Manager of the Information Governance Business Unit and Senior Vice President of Architecture while at CA. She joined CA in 2006 with the acquisition of MDY Group International, where she was the founder and CEO.
In addition, Galina currently sits on the advisory board of the Executive Woman’s Forum and is part of the Voice Privacy Alliance. She is a champion of the entrepreneurial spirit as she has served on the board of multiple startups, assisting with strategy and continues to support the startup community. Galina served as Chair, President, President Elect and Director of ARMA International (2007-2013) and has been widely published in academic journals, speaking frequently for industry organizations such as AIIM, ARMA SINET, EWF, ILTA, IQPC and MER. Throughout Galina’s career she has been the recipient of numerous awards. Most notably she was designated a Distinguished Engineer while at CA (2006-10), was the recipient of the prestigious Emmet Leahy award (2013) and was named a Fellow of ARMA International (2014)
Prior to founding MDY, Galina consulted for IBM and Bell Labs and taught at the Fordham University Graduate School of Business and the Graduate School of Arts and Sciences at Columbia University. She earned her doctoral, master’s and bachelor’s degrees in Computer Science from Columbia University.
Forney Group LLC
Renee Forney is currently the CEO of the Forney Group LLC, a strategic consulting firm focusing on Enterprise Risk Management, Cyber Threat Intelligence and Cyber Workforce, as well as the Executive Managing Director of Global Cyber Security Management at Equinoxys Inc.
Mrs. Forney previously served as Deputy Chief Information Officer (DCIO) for Cybersecurity and Enterprise Operations, where she was responsible for managing the Department of Energy’s (DOE) Enterprise Cybersecurity Program and IT Infrastructure; advising Departmental senior officials on integrating cybersecurity; risk management; and implementing enterprise information resources management across the DOE. Mrs. Forney provided executive-level guidance for the interagency on cybersecurity initiatives; including the White House’s Cybersecurity National Action Plan, the Defense Industrial Base Sector (for information safeguarding and critical infrastructure protection) and the NICE Interagency Coordinating Council lead by the NIST.
Prior to DOE, Mrs. Forney was the Department of Homeland Security’s (DHS) Executive Director for the Cyber Skills Management Support Initiative, where she was responsible for managing cybersecurity-related projects for the Undersecretary of Management. She led a collaborative effort to design an organization to strategically address and manage DHS cybersecurity workforce issues affecting DHS Components execution of cyber mission to include USSS, TSA, CBP, USCG, ICE-HSI and NPPD. In this role, she developed the Cyber Management Support Initiative Push Button, which assists hiring managers and human resource professionals. in accurately defining job descriptions for cyber professionals. In conjunction with the Push Button initiative, her efforts were instrumental in developing legislation and the Federal Cyber Security Workforce Strategy Plan. She also spearheaded the Cyber Student Volunteer Initiative which placed cyber students in DHS field offices and Fusion centers across the country.
Mrs. Forney also served as the Branch Chief for the General Services Administration’s (GSA) Business Intelligence Division, where she developed innovative enterprise solutions such as the FAStoday Portal, and led the digital information efforts for the 2008 U.S. Presidential Transition Team.
Mrs. Forney also held a variety of information assurance and technology roles in the private sector, including Division Program Manager for Unisys, and Senior Security Analyst for Telos. Notable accomplishments from this time include managing collaboration with the Unisys Director of Enterprise Security Initiatives, United Kingdom, and supporting the development of a security framework model for Unisys Federal.
Mrs. Forney holds a Bachelor of Science from DeVry University and a Master of Science in Engineering Management from George Washington University. She also holds an honorary Doctorate Degree of Science and Technology from Champlain College. She was also named a 2016 Women of Influence by SC Magazine and ACT-IAC Igniting Innovation award winner. She is a Certified Information System Security Professional (CISSP), Shared Assessments Certified Third Party Risk Professional (CTPRP) and has held the Project Management Professional (PMP) certification.
Corporate Vice President, Cybersecurity Solutions Group
As Corporate Vice President of the Cybersecurity Solutions Group at Microsoft, Ann Johnson oversees the go-to-market strategies of cybersecurity and compliance solutions for one of the largest tech companies on our planet.
As part of this charter, she leads and drives the evolution and implementation of Microsoft’s short and long-term security and compliance solutions roadmap with alignment across the marketing, engineering and product teams. She has built and shaped one of the company’s highest performing teams whose digital transformation expertise leverages built-in cloud security capabilities.
As a recognized thought leader on cybersecurity, Johnson is a sought-after global speaker and digital author specializing in cyber resilience, online fraud, cyberattacks, compliance and mobile security.
Prior to joining Microsoft, her executive leadership roles included CEO of Boundless Spatial, President and COO of vulnerability management pioneer Qualys, Inc. and Vice President of World Wide Identity and Fraud Sales at RSA Security, a subsidiary of EMC Corporation. She holds a Bachelor of Science from Weber State University with a dual major in political science and communication. She has completed the majority of the required coursework toward her MBA with a concentration in statistics.
Dedicated to giving back to her community, Johnson currently serves on the boards and as a board advisor of the Security Advisor Alliance, the Financial Services Information Sharing and Analysis Center (FS-ISAC), Executive Women’s Forum, HYPR (a biometric security firm) as well as the Executive Sponsor of the Microsoft Women in Security Group and co-executive sponsor of Microsoft GLEAM. In addition, Johnson dedicates her philanthropy - in terms of time and fundraising - to animal and youth causes.
Sally Kenyon Grant
Director of Cybersecurity for CYBRScore
Comtech Command & Control Technologies
Sally Kenyon Grant specializes in Cybersecurity/IT global business development working with Fortune 500 companies, Federal Agency and Federal defense contractors. Sally utilizes her 25 years of industry, government and Federal appropriations experience to protect critical infrastructure and strengthen cybersecurity to insure the protection of our economic and national assets.
Bringing more than two decades of Federal and Private Sector experience in the enterprise business and economic development sector, plus a background in Federal IT Appropriations and Cybersecurity budget allocations, Grant is helping position Comtech as a world-wide leader in the cybersecurity assessment and training domain. Grant brings a wealth of experience and a passion for success in the cybersecurity industry to secure our networks. Her commitment to protect critical infrastructure to preserve national security and economic interest is second to none. She has a proven history of stimulating growth with a customer-first focus approach by spearheading company initiatives with Fortune 500 and Federal Senior Official decision makers.
Grant is leading Enterprise to Comtech’s Cybersecurity Unit for scored Assessments and hands-on Training and is responsible for leading business development with Fortune 500 partners. Prior to joining Comtech, Grant served in Industry, State and Federal Administration positions plus successfully managing private sector economic and defense global clients in Washington, D.C.
Recently, Sally Kenyon Grant was honored to lead one-hundred cybersecurity Executive women on Capitol Hill for a historic day of empowerment and technical expertise to the U.S. Senate and U.S. House of Representatives Armed Services and Homeland Security Committees. It is Sally’s true honor to serve alongside America’s cyber warriors to defend our United States critical infrastructure assets.
VP, Global Chief Information Security Officer and Infrastructure
Suzanne is Global CISO and head of infrastructure for the Alimentation Couche-Tard (ACT) companies, commonly called Circle K. Circle K operates approximately 15,500 stores globally with primary operations in North American and Europe. Suzanne is responsible for building a cyber security program across all the ACT brands as well as leading infrastructure operations across networks and platforms.
Prior to joining ACT, Suzanne was Managing Director at PwC where she led the Washington DC Cybersecurity and Privacy practice. She has over 20 years of experience as a security and technology executive and returned to PwC after several successful years as a CIO and CISO in industry. Suzanne is experienced at aligning technology and organizations to drive organizational performance and growth. She has a proven ability to establish and align on vision, execute in organizations and diverse industries, and deliver solutions that balance risk, business realities, and operational impacts. Recognized for excellence in innovation, strategy, and information security that produces results, she creates positive change through business collaboration and high-performance teams. She has extensive experience with strategic planning, security and compliance programs, outsourcing, cloud solutions, and technology management.
Suzanne holds a Bachelors of Science degree in Accounting and is a Certified Public Accountant, Certified Information Systems Auditor and Certified Information Security Manager. She also serves on the Board of Advisors for the Executive Women’s Forum. Suzanne spends time in both Washington DC and Tempe, AZ.
Global Technology - Cybersecurity & Technology Controls
Denise Hucke has been working in Technology for 25+ years and working in cybersecurity and controls for over 17 years. She currently works as an Information Security Manager overseeing the Risk & Controls aligned to Commercial Bank. Prior to this role, she was the Business Information Security Officer (BISO) and Head of the Technology Controls for Corporate Technology.
Prior to working at JP Morgan Chase, Denise was the global CISO at ADP. As ADP’s Chief Information Security Officer (CISO), she was responsible for building the team in the three global Critical Incident Response Centers and Fraud Monitoring in NJ, India and the Philippines. This group included Security Engineering and Operations, Vulnerability Management and Security Testing and Analysis Teams.
The Global Security Organization were recognized by ISE as the North America Project Award Winner and by Netwitness for the Best SOC. The Trusted Platform Security Initiative (TPSI) was also recognized by CSO40. Denise held several roles at ADP, including the Chief Business Security Officer (CBSO) for US & Canada, where she was accountable to provide security services for US & Canada Division Presidents. Denise also led the Operational Risk Program, which included Controls Assurance, Mergers and Acquisitions and Policies.
Denise worked at Merck for 16 years, where she held several roles overseeing the worldwide security programs for GRC, Risk Management, Compliance, Incident Response, Engineering/Operations, Vulnerability Management, Corporate Policy, the Security Education and Awareness Program. In 2009, she was appointed by the Executive Committee to represent cybersecurity during the $41 billion merger of Merck and Schering-Plough pharmaceuticals.
Denise is active in multiple industry consortiums and is on the Board of Advisors for the Executive Women’s Forum. She has been a speaker at RSA, the EWF’s national conference, ISSA, Cloud Security Alliance, ICS2, ASIS, WITI and ISE. Denise holds several industry certifications, include CISSP, GIAC and ITIL. Her mission and dedication span globally and has been recognized with several leadership and achievement awards.
Denise holds a Masters in Telecommunication Management from Stevens Institute of Technology, Bachelor of Science in Economics from Rutgers University. Denise lives in Hunterdon County, NJ. She and her boyfriend, Bryan raise five children and enjoy skiing, camping and vacations at the Jersey Shore.
Dr. Dena Haritos Tsamitis
Barbara Lazarus Professor in Information Networking
Director, Information Networking Institute
Founding Director, Education, Training and Outreach, CyLab
Carnegie Mellon University
Dena Haritos Tsamitis has led Carnegie Mellon's Information Networking Institute (INI) as director since 2004. Her efforts have prepared the next generation of information networking, security and mobility professionals. She joined the university in 2000, serving first as the INI's associate director in 2002 before assuming the role of director in 2004.
A student advocate and mentor of women in technology, Dena is passionate about increasing diversity in STEM fields. In 2005, she co-founded the student organization, Women@INI (WINI), to address the unique challenges faced by women in the male-dominated field of engineering.
Under her leadership, Carnegie Mellon earned three distinct cybersecurity designations from federal agencies as a National Center of Academic Excellence for its merits in information assurance and cyber defense, research and cyber operations. Dena is the principal investigator of the National Science Foundation (NSF) CyberCorps® Scholarship for Service (SFS) program, which funnels the next generation of analysts and hackers directly to government service. She is also a founding director of Carnegie Mellon CyLab, for which she spearheaded efforts in cybersecurity education, training and outreach. In 2005, Dena established the MySecureCyberspace initiative to raise "cyberawareness" in Internet users of all ages through a portal, game and curriculum that reached over one million people in 167 countries.
Currently, Dena is a member of the American College of Greece Board of Trustees. She also serves on the board of advisors for the RSA Conference, Executive Women’s Forum, Minorities in Cybersecurity, RedMarlin, Inc., St. Clair Hospital Foundation, and the Norfolk State University Information Assurance Research, Education and Development Institute.
Jing de Jong-Chen
Senior Associate, Technology Policy Program
Center for Strategic and International Studies
Founder and CEO
CrossAvenue International, LLC
Jing de Jong-Chen is an industry veteran with over 15 years of cyber security and multinational executive experience. Jing de Jong-Chen is a Senior Associate of CSIS (Center for Strategic and International Studies) Technology Policy Program and Founder and CEO of CrossAvenue International, LLC, focusing on cyber policy and strategy. As a former partner and General Manager of Global Security Strategy at Microsoft, Jing’s domain expertise includes cybersecurity policy, technology standard management, and partnership ecosystem development. Jing is an active participant and organizer of cyber norms-related dialogues. She led the successful international collaboration to promote trusted computing and principle-based C-SCRM (cyber supply chain risk management) standards and best practices. She served as Vice President and Board Director of the Trusted Computing Group from 2009-2018. She was the Founder of Microsoft Women in Security and is currently a Board Adviser for the Executive Women’s Forum. Jing holds an M.B.A. and a B.S. in Computer Science.
Cybercrime Support Network
Kristin was elected to serve as a Washtenaw County Commissioner in 2008 and supported the U.S. Department of Homeland Security in growing cybersecurity outreach to state and local government officials. After elected office, she worked at the Center for Internet Security, focusing on connecting state and local governments to federal services and technology needed to improve cyber security.
As Director of Government Affairs at the National Cyber Security Alliance (NCSA), Kristin worked with Google, FTC, FBI, SBA, DHS, NIST, congressional leaders and other key stakeholders across the country to educate consumers and businesses how to protect sensitive data.
As a thought leader, Kristin has been seen on the C-SPAN Network, local news outlets and called on by technology publications like SC Magazine and Government Technology to share best practices for online safety; being named an SC Media “Women in IT Security Influencer” in 2017. She is a national speaker, sharing cybersecurity best practices with elected officials, businesses and consumers. Her first LinkedIn Learning Course, Cybersecurity for Small and Medium Businesses: Essential Training , teaches cybersecurity to SMBs based on NIST Cybersecurity Framework.
In 2017, Kristin was chosen for the 3rd cohort in the Presidential Leadership Scholars program which is a partnership between the presidential centers of George W. Bush, William J. Clinton, George H.W. Bush, and Lyndon B. Johnson to bring together a select group of leaders who share a desire to create positive change across our Nation. Kristin was awarded the “2018 Women of Influence Award” by the Executive Women’s Forum on Information Security, Risk Management, and Privacy (EWF).
To address the needs of cybercrime victims, Kristin founded the nonprofit Cybercrime Support Network (cybercrimesupport.org) and works with federal, state and local law enforcement and consumer protection agencies to help consumers and small businesses affected by cybercrime.
Sandra R. Hughes
Sandra Hughes Strategies, Ltd.
Sandra R. Hughes is CEO/President of Sandra Hughes Strategies, Ltd. partnering with clients on custom solutions to increase business, leadership and/or personal development.
Sandy has more than 35 years experience in business transformation and leadership within Procter & Gamble and across other organizations and industry sectors. In her last decade with P&G, Sandy served as Global Privacy Executive, in addition to leading global programs in Ethics & Compliance, Information Governance, Social Media Policy and Competitive Intelligence. In 2012 the International Association of Privacy Professionals (IAPP) recognized her with the Vanguard Award for best Corporate Practitioner and the Executive Women’s Forum (EWF) with a Lifetime Achievement Award as a Woman of Influence.
Since her 'reWirement' in 2012, a portfolio career adds leadership roles in philanthropy as well as private and non-profit boards as a means to empower and enable others in professions and causes that fuel her passion. Sandy serves as Board Secretary Future of Privacy Forum, Board Treasurer for Cross-Border Data Forum, Board Secretary for Social Venture Partners International, Past-President International Coach Federation Ohio Valley, and the advisory board for Executive Women’s Forum for Risk Management, Information Security and Privacy. She is also the Past-Chairperson of Social Venture Partners Cincinnati, an engaged philanthropy organization elevating the success of innovative nonprofits within the community. She is also a mentor/coach for social enterprises with Flywheel Cincinnati, and the executive coach for the Cincinnati Women’s Fund Appointed Program. Venue Magazine recognized Sandy as a 2014 Cincinnati Woman of Influence.
Added to these qualifications is continuing education as a professional business and executive coach, certified with the International Coach Federation as well as a certification as an assessments facilitator with the Center for Creative Leadership. Connect with Sandy on LinkedIn linkedin.com/in/sandrahughesltd
MacLean Risk Partners
With more than 30 years of information technology industry experience, Rhonda MacLean is founder of MacLean Risk Partners LLC, a consulting firm that provides strategic security and risk advisory services. Prior to founding MacLean Risk Partners, Ms. MacLean was the global leader of Information Security for Barclays, PLC in London, England and Bank of America headquartered in Charlotte, NC. For over 12 years she was responsible for the respective Banks’ security policies; compliance reporting for relevant legal and regulatory statutes; security and risk technology implementations; cyber forensics and e-discovery; and general information risk management awareness. Prior to joining Bank of America in 1996, she was responsible for information security at The Boeing Company, managing Boeing proprietary and government programs. Ms. MacLean previously served on the Board of Directors for the Vontu Corporation and PGP prior to their respective acquisitions by Symantec Corporation.
In 2002, the U.S. Treasury Secretary appointed Rhonda as the Financial Services Sector Coordinator for Critical Infrastructure Protection and Homeland Security. Over the years numerous awards have been presented to her for visionary industry leadership. Some highlights are: The Executive Women’s Forum (EWF) "2003 Women of Vision”; NetworkWorld’s 2003 and 2004 issues named her one of the fifty most powerful people in technology; 2005 CSO’s Compass Award; 2008 EMEA Visionary Award; 2009 Lifetime Achievement Award from the EWF; and most recently in 2013 recognized as one of the top ten women in Cloud Computing.
Senior Director of the IT Hygiene Program and Identity & Access Management
Karolyn Maloney has more than a decade of experience in information technology and information security. Currently, she is the Senior Director of the IT Hygiene Program and Identity & Access Management for CVS Health. In her role, Karolyn is responsible for defining requirements for managing endpoint assets and how they are configured to improve the resiliency of assets and reduce vulnerabilities. Additionally, she leads the Identity & Access Management team in defining the strategy and implementation of innovative enterprise IAM solutions, with a focus on user behavior analytics, privileged user management, and increasing automation. Karolyn is passionate about growing future leaders and manages the early in career talent pipeline for the Global Security organization. She also mentors several individuals within the organization.
Karolyn holds a B.S. in Information Systems Management from Quinnipiac University and a M.S. degree in Cybersecurity Management from Bay Path University. She currently serves on the Quinnipiac CIS Advisory Board to support the curriculum and student career development. Additionally, she is a member of the Executive Women’s Forum Board of Advisors and co-lead of the Rising Leaders Forum, which is a community within EWF focused on engaging, developing, and advancing millennial women. Karolyn also enjoys opportunities to give back to the community and has educated hundreds of students on how to stay safe online.
Senior Vice President, Chief Information Security Officer
Eli Lilly & Company
Mamilli leads a global, enterprise-wide information and product security organization integrating People, Process and Technology to Protect the confidentiality, integrity and availability of information, systems and products while enabling Lilly’s mission to make medicines that help people live longer, healthier, more active lives.
Mamilli started her career in Paris in consulting prior to joining Lilly France in 1995. Prior to her current position, she held several International leadership responsibilities across the Lilly value chain partnering with Drug Development, Manufacturing & Quality, Finance, HR, Corporate Affairs, Legal, Sales and Marketing to excel at supporting base operations while bringing innovative solutions to the business.
Mamilli has served on several advisory boards for Digital Health innovation and Information technology companies and is an active speaker at key industry and digital innovation events. Mamilli is a board member of several strategic cybersecurity advisory boards as well as the Center for Interfaith Cooperation.
Mamilli embraces her international experience as she was born and raised in Morocco, lived in France, UK, and the Middle East before relocating her family to Indianapolis in 2008. She is married with 2 kids. Mamilli is multi-lingual and holds a Master’s degree in Computer sciences from the INSEA (Engineering College in Rabat, Morocco) and a Master’s degree from IFSIC, Rennes University in France as well as a General Management certificate from the London Business School. In 2015, Mamilli graduated from the Harvard Business School-Advanced Management Program (AMP).
Principal, Cybersecurity, America's Life Sciences and Health Cybersecurity Leader
Ernst & Young
Elizabeth Butwin Mann (Liz) is the EY Cybersecurity leader for Life Sciences and Health in the Americas.
Liz has worked in the information security (cybersecurity) discipline for more than 20 years, with much of her time focused in the Identity and Access Management, Identity Governance and more recently Cyber Threat Management disciplines.
Liz has worked on developing and delivering new and transformative solutions in Information Security to Fortune 100 clients in numerous sectors. She established her leadership position early in the development of the cybersecurity landscape, looking at security from the perspective of identity, access, privilege management and entitlement reviews. She is focused on delivering a risk-based perspective to the questions information security and business transformation. She leverages the global Advanced Security Centers at EY to deliver world class threat intelligence and threat management services as well.
Liz serves as the Americas’ Life Sciences and Health Cybersecurity leader, tracking cyber intelligence and critical risk factors to assist clients in aligning their cybersecurity investments. She actively engages in the NH-ISAC and commissions research on the topic of cyber threat in healthcare. Liz is working with EY’s top clients, sharing insights and assisting in the prioritization of programs, in support of business priorities, risk mitigation, and regulatory compliance. She is developing approaches to information security that cross traditional boundaries – from ERP to non-ERP governance programs, to threat and vulnerability management programs, to security data analytics, contemporary cyber war gaming and scenario based testing and drills.
She leads EY’s sponsorship of the Executive Womens Forum, actively promoting cybersecurity and risk management as engaging careers for women. She also works actively at EY on a variety of diversity initiatives with a particular focus on supporting our female professionals. Liz lives in Manhattan with her husband and two daughters, enjoying the energy and diversity that the city offers.
CISO and VP, Enterprise Risk and Compliance
As CISO and VP, Enterprise Risk and Global Compliance, of Spirit AeroSystems, Stacy leads global compliance and cybersecurity strategy and teams. Her passion for protecting the company’s digital assets bridges, security architecture, vulnerability management, information governance, compliance initiatives as well as information assurance. Collaborating with her business partners, Stacy ensures enterprise risk and compliance is understood, mitigated and controlled to business acceptable levels through building trust and awareness at all levels of the organization.
Stacy has developed many teams across several industries. At KAR, an auction corporation which operates a complete auction solution throughout North America and UK, she built the business continuity, disaster recovery, security architecture, security operations, information risk and compliance strategy and teams. At Yum, Stacy built a dynamic international team to address all aspects of information security across Yum Brands, Inc. spanning 120 countries. These brands included Taco Bell, Pizza Hut, and Kentucky Fried Chicken. Under her strategic leadership, Yum Brands achieved global PCI/SOX/HIPAA/Safe Harbor compliance, built out underlying security infrastructures and kept ahead of the myriad of US and international data and privacy laws. Stacy started in security as Humana Military’s Chief Security Officer after holding numerous positions in her 17-year career in IT at Humana Inc. She worked closely with the Department of Defense as a member of the Information Assurance Work Group (IAWG) in support of the Tricare Management Agency and DITSCAP/DIACAP initiatives. Her tenured career also includes VP of Engineering for Darwin Networks, Inc.
After receiving her B.S. in Computer Science and Mathematics, her 30+ year experience in IT includes engineering, operations, implementation as well as business strategy. She has held positions on numerous CISO and non-profit board of directors in addition to her speaking engagements across the country. Stacy has been nominated and received the following awards in her successful career: 2011 NG20 Top 20 Global CISO award, 2013 ISE Southeast Executive of the Year finalist, 2013 Ranked #5 CISO in the US by ExecRank (#1 Female), 2013 Cisco Security Innovator of the year – Retail, 2013 Evanta Global CISO Top 25 Breakaway Leaders (Top 10 finalist), and 2014 Women in High-Tech Leading Light award Nominee for Leadership. Lastly, Stacy gives back to the Information Risk community through her work with the Executive Women’s Forum and the Chicago Booth School of Business – CISO Institute as member of the Board of Advisors and Instructor.
Shira Rubinoff is a recognized cybersecurity executive, cybersecurity & blockchain advisor, global keynote speaker and influencer, who has built two cybersecurity product companies, and led multiple women-in-technology efforts. She currently serves as President of the NYC-based technology incubator, Prime Tech Partners & the social-media-security firm, SecureMySocial. She also serves on the Boards of the Executive Women’s Forum for Information Security, Leading Women in Technology, the blockchain company, Mainframe, and the artificial intelligence (AI) companies, TrueConnect & Pypestream.
An expert in the human factors of information technology and security, Ms. Rubinoff was named one of New Jersey’s Best 50 Women in Business, was named by CSO Magazine as a Woman of Influence, was honored by CSO and the EWF with their “One to Watch” award, and was honored as the 2017 "Outstanding Woman in Infosec" by the CyberHub Summit. She has also been calculated by analysts to be the top female cybersecurity influencer globally on social media. Ms. Rubinoff also created numerous video series including a series of interviews with the top executives of the most prominent cybersecurity and technology companies.
Ms. Rubinoff provides guidance to numerous Fortune 100 companies in areas related to cybersecurity and company thought leadership, and consults to various organizations in areas of business development and organizational dynamics. She has published many articles, and lectures, on topics related to the human factors of cybersecurity, blockchain, and related topics, and holds several patents/patents-pending in areas related to the application of psychology to improve information technology and Cybersecurity.
*Author of the Cybersecurity book "Cyber Minds" - published by Packt Publishing. Due out December 2019
Ariel Saldin Weintraub
Head of Security Operations & Engineering
Ariel Weintraub recently joined MassMutual as the Head of Security Operations & Engineering. Prior to joining MassMutual, Ariel served as the Senior Director of Data & Access Security within Cybersecurity Operations. In this role, she was responsible for the Data Protection and Identity & Access Management (IAM) programs, and led a three year business transformation program to position IAM as a digital business enabler. Ariel first joined TIAA in 2015 as a Senior Manager within IT Risk & Information Security. In that role, she managed the Treatment & Vulnerability Remediation teams under Cyber Risk.
Prior to TIAA, Ariel held the position of Global Head of Vulnerability Management at BNY Mellon where she developed and led the Vulnerability Management function and designed a cross-department Information Security Metrics program. Ariel joined BNY Mellon during the inception of the Chief Information Security Officer (CISO) organization and played a critical role in laying the foundation for many of the security compliance functions including Mobile Device Security, Endpoint & Host Compliance, and Secure Configuration Management. Prior to her role at BNY Mellon, Ariel was part of the Threat & Vulnerability Management practice at PricewaterhouseCoopers (PwC) where she was responsible for performing Penetration Tests, Security Risk Assessments, and Payment Card Industry (PCI) compliance assessments for a variety of Financial Services clients.
Ariel holds a Masters of Science in Cybersecurity from New York University (NYU) Tandon School of Engineering and a Bachelors of Science in Business Administration from the University of Southern California (USC) Marshall School of Business. Ariel has a passion for empowering women, especially the next generation of female cybersecurity leaders.
Executive Women's Forum
Lynn has more than 23 years’ experience in information systems, over half of which has been in information security. She has worked both as a practitioner and a vendor – She was the director of information security risk for Oracle’s Health Sciences Global Business Unit and formerly was 10 years at Microsoft corporate headquarters in security response, then critical infrastructure protection as a security strategist, and a director of software compliance. She was also was Head of Security Architecture, Standards and Infrastructure Engineering for Barclays Bank. Her previous experience includes working as a solution integrator and consultant to large corporations. She is a founding member of the Cloud Security Alliance. She holds a CISSP and MA from the University of Missouri-Columbia.
Chief Privacy and Information Security Officer
Patricia Titus is the Chief Privacy and Information Security Officer at Markel Corporation. Ms. Titus joined Markel Corporation in January 2016 as the Chief Information Security Officer and added Chief Privacy Officer in January 2017 with responsibility for ensuring the security and privacy of Markel’s information assets and the protection of customer information. Previously, Ms. Titus was the Vice President and Chief Information Security Officer at Freddie Mac, Symantec, Unisys Corporation and the Transportation Security Administration within the Department of Homeland Security. She was focused on transforming, implementing and maintaining robust IT security programs.
Ms. Titus serves on the Board of Directors for Normshield a trusted Security Rating Services Company and Girl Scouts for the Commonwealth of Virginia which builds girls of courage, confidence, and character. She also serves on the Executive Advisory Boards for Forcepoint and Expel.IO cyber security companies. Ms. Titus is also an Advisory for YL Ventures. She is a Distinguished Fellow at the Ponemon Institute and serves on the Board of Advisors for the Executive Women's Forum. Ms. Titus also worked and lived overseas for several years in various positions within the U.S. Department of Defense, the U.S. State Department and various private sector firms. She has more than 25 years of security management experience.
Board of Advisors Alumnae
Ernst & Young
Julie is an Ernst & Young LLP Principal where she leads the security practice for Banking and Capital Markets. She is currently the Market Leader for the Information Privacy and Protection and Threat and Vulnerability Management capability domains.
Julie brings 18 years’ experience helping banks, insurers, asset managers and capital market firms improve their IT operations, interface with their customers, and meet their strategic objectives. Julie has experience in IT security, IT strategy and governance, and customer relationship management. She has built a career of progressive responsibility delivering complex work programs and business-driven IT strategies.
Julie is an active member of the Executive Women’s Forum, a community of the nation’s most influential female executives in Information Security, Data Privacy and Risk Management. She is also eng aged with other companies to bring security solutions to the financial services industry through FS-ISAC.
Co-Founder and Managing Director
Maria has been building and founding technology businesses for 20+ years. Her operational, entrepreneurial, and senior management experience in venture-backed technology companies includes two Massachusetts IPOs of the Year and the founding of two successful companies and a venture capital firm. Prior to co-founding .406 Ventures, Maria served as an SVP of VeriSign following its 2005 acquisition of Guardent, the market leading Managed Security Services provider for $142 million. Guardent was a Sequoia, Charles River Ventures and NEA-backed IT security company that Maria co-founded and led as CEO. In this role, Maria received industry recognition as "Massachusetts CEO of the Year" and "Ernst & Young Entrepreneur of the Year," among others. Prior to Guardent, Maria was Senior Vice President responsible for sales and marketing at Razorfish, an IT services company that acquired her previous company, i-Cube, for $1.8 billion in 1999 where Maria led sales and marketing. Prior to i-Cube, from 1993 – 1997 Maria was responsible for North American sales at Shiva, the category-creating remote access leader. Prior to Shiva, Maria held sales and marketing roles at Lotus Development Corporation and Software City Inc. Maria holds an AB in English literature from Mount Holyoke College where she has served as a Trustee and as a member of the college's investment committee. At .406 Ventures, in addition to her investment activities, Maria manages brand building and deal flow strategy and currently serves on the boards of .406 portfolio companies Attendware, Bit9, Digitalsmiths, Kaltura, Mineral Tree, Pwnie Express, Vaultive, Veracode and formerly served on the boards of Adtuitive and Memento until their respective acquisitions by Etsy and FIS.
Chief Privacy Officer
Michelle is currently the Chief Privacy Officer at Cisco. Previously, Michelle served as Chief Privacy Officer to McAfee, an Intel Company. She was responsible creating a privacy practice that is focused on quality and excellence in McAfee’s policies, products, procedures and governance efforts. Her and her team supported McAfee’s outreach efforts to educate and protect children, families and communities in the Digital Age.
Before coming to McAfee, Michelle founded The iDennedy Project, a consulting and advisory company specializing in privacy and security sensitive organizations. Michelle is also a founder and editor in chief of a new media site—TheIdentityProject.com—that was started as an advocacy and education site, currently focused on the growing crime of Child ID theft.
Michelle was the Vice President for Security & Privacy Solutions for the Oracle Corporation. Her team worked closely with customers to enable them to proceed with the confidence that information is protected and accelerated as an asset.
Before the Oracle acquisition of Sun, Michelle was Chief Data Governance Officer within the Cloud Computing division at Sun Microsystems, Inc. Michelle worked closely with Sun's business, technical and legal teams to create to the best data governance policies and processes possible for cloud computing to build trust for cloud environments through vendor transparency.
Michelle also served as Sun’s Chief Privacy Officer where she was responsible for the development and implementation of Sun's data privacy policies and practices, working across Sun's business groups to drive the company's continued data privacy excellence.
Michelle has a JD from Fordham University School of Law and a BS degree with university honors from The Ohio State University. In 2009, she was awarded the Goodwin Procter-IAPP Vanguard award for lifetime achievement and the EWF – CSO Magazine Woman of Influence award for work in the privacy and security fields. In 2012, she was honored by the National Diversity Council as one of California’s Most Powerful and Influential Women.