The Board of Advisors of the Executive Women’s Forum on Information Security, Risk Management and Privacy was formed in 2013 and is a network of highly influential female thought-leaders.
Founder, Chairman and CEO
The Santa Fe Group
For more than 30 years, Catherine A. Allen has been an outstanding leader in technology strategy and financial services and a luminary in business innovation. Catherine has won accolades from industry, government, academia, business groups and the press for her success in fostering innovation, promoting new technologies, and bringing stakeholders together to address common challenges.
Catherine stepped down from her role as the founding CEO of the financial services industry consortium BITS in 2007 after a decade of service. During her tenure, Catherine worked closely with CEOs, CIOs and executives at the nation’s largest financial institutions on strategic issues facing the financial services industry, from payments strategies to risk management. BITS’ accomplishments under Catherine’s leadership include creating best practices in more than 30 areas of financial services management, facilitating the industry’s transition from paper to electronic payments, and creating a trusted forum in which corporate leaders could speak candidly about critical challenges in a noncompetitive environment.
Today, Catherine is chairman and CEO of The Santa Fe Group, a strategic consulting company based in Santa Fe, NM. Catherine established The Santa Fe Group in 1996, and soon afterward the company became a strategic partner to BITS. The Santa Fe Group specializes in briefings to C-level executives and boards of directors at financial institutions and other critical infrastructure companies, and provides management for strategic industry and institutional projects.
Marene N. Allison
Vice President and Chief Information Security Officer
Johnson & Johnson
Marene, Vice President and Chief Information Security Officer for Johnson & Johnson, has responsibility for protecting the Information Technology (IT) systems and data worldwide through elimination and mitigation of IT risk. She co-leads the IT Risk Management Council and is a member of the Enterprise Compliance Council. Marene joined Johnson & Johnson in September of 2010.
Prior to joining Johnson & Johnson, Marene was Chief Security Officer and Vice President for Medco, the largest pharmacy benefit manager in the United States. Marene was responsible for all aspects of the company's security, regulatory and compliance including, physical and logical security, executive protection as well as HIPPA, Payment Card Industry, Medicare and prescription fraud and IT controls.
Prior to that, Marene was with Avaya as head of Global Security where she worked on securing the World Cup network in Korea and Japan in 2002. Before joining Avaya she was Vice President of Loss Prevention and Safety for the Great Atlantic and Pacific Tea Company. Before joining the corporate world, she served as a Special Agent in the FBI working on undercover drug operations in Newark, NJ and also working on terrorist bombings in San Diego, CA. She developed and participated in the nuclear terrorism exercise, Compass Rose ’88, the largest mock terrorism incident exercise by the federal government.
Marene has a Bachelor of Science degree from The United States Military Academy at West Point, in the first class to include women. She has served in the US Army in the Military Police, at Ft Hood, TX, Ft Chaffee, AR and Ft McClellan, AL. She has served on the Defense Advisory Committee on Women in the Services appointed by the Secretary of Defense and the Overseas Security Advisory Committee appointed by the Secretary of State. She is a founding member of West Point Women and currently serves as their President.
Marene is married, has one son and lives in Bucks County, Pennsylvania, USA.
CEO, Alta Associates
Founder of the Executive Women's Forum
Joyce Brocaglia is the founder and CEO of Alta Associates. Founded in 1986 Alta Associates has become the most prominent boutique executive search firm specializing in Information Security, IT Risk Management and Privacy. Joyce is a strategic advisor to her clients who has gained the trust and respect of the industry’s most influential executives by accomplishing their strategic and diverse hiring goals. She is a career advisor to industry thought leaders and a trusted member of the Information Security, Risk Management and Privacy industry. Joyce is sought after for her deep knowledge of the industry, market conditions, business intelligence and ability to create industry alliances.
Joyce is known for her commitment to enabling women to achieve their professional goals and personal dreams through education, leadership development and the creation of trusted relationships.
In 2002 Joyce founded the Executive Women’s Forum on Information Security, Risk Management and Privacy. Today the EWF is the largest member organization serving emerging leaders as well as the most prominent and influential female executives in their field.
Joyce received the prestigious 2015 CSO Compass Award in recognition of outstanding achievement in security and risk management leadership.
In 2014 Joyce was honored with the SANS Difference Maker Award for her industry contributions and named one of the Top 25 Women Entrepreneurs of New Jersey.
In 2013 the EWF Leadership Journey was launched. Corporations are utilizing this comprehensive virtual leadership development program to optimize individual performance, authentic personal leadership skills and organizational impact.
In 2013 in recognition of the 10th anniversary of the Executive Women's Forum and in honor of the work Joyce has done to advance women in the fields of information security and IT risk management, a fellowship fund at Carnegie Mellon INI was been created in her honor by her colleagues.
In 2008 Ms. Brocaglia authored the chapter “Who Companies Really Want to Hire: How to Advance Your Career and Have Great Success” in the book “CISO Leadership: Essential Principals for Success” Along with (ISC2) authored the “Hiring Guide to the Information Security Profession”.
In 2006 Ms. Brocaglia and the Executive Women’s Forum partnered with Carnegie Mellon’s INI to create scholarships for outstanding women to enroll in CMU’s Master of Science in Information Security Technology and Management program. The first EWF Fellow was announced in 2007 and each year since then.
In 2005 Ms. Brocaglia authored “The Information Security Officer: A New Role for New Threats” in Larstans’s “The Black Book on Corporate Security.”
In 2003 Information Security Magazine honored Joyce with a “Women of Vision” award naming her one of the 25 most influential women in the information security industry.
Joyce has acted as the career advisor of CSO Magazine and author of the monthly "Career Corner" column for the Information Systems Security Association (ISSA) Journal. Joyce has served on the board of advisors for the ISSA and International Information Systems Security Certification Consortium (ISC2). Joyce has appeared in The Wall Street Journal, Network World, Network Computing, Information Security Magazine, Redmondmag.com and CSO Magazine. Joyce is a speaker at industry events regarding career matters and emerging roles within the information technology and security community. Joyce holds a Bachelor of Science degree in accounting from Montclair State University and is Certified Public Accountant.
Galina Datskovsky, PH.D., CRM
Chief Executive Officer
Dr. Galina Datskovsky is currently the CEO of Vaporstream®. She has also served on the board of multiple startups, assisting with strategy. Formerly Senior Vice President of Information Governance at Autonomy an HP Company. She served as Chair, President, President Elect and Director of ARMA International (2007-2013) as well as fellow in 2014. She also served as Senior Vice President of Architecture at CA Technologies, responsible for corporate-wide architecture and design initiatives, General Manager of the Information Governance Business Unit and a Distinguished Engineer. She joined CA in 2006 with the acquisition of MDY Group International, where she served as founder and CEO. Galina is a Certified Records Manager (CRM) and is recognized around the world as an expert in information governance and associated technologies. She is the recipient of the prestigious Leahy award and a Fellow of ARMA International. She has been widely published in academic journals and speaks frequently for industry organizations such as AIIM, ARMA International, ILTA, IQPC and Cohasset Associates/MER. She received the NJBIZ: Best 50 Women in Business Award in April 2010. Prior to founding MDY, Galina consulted for IBM and Bell Labs and taught at the Fordham University Graduate School of Business and the Graduate School of Arts and Sciences at Columbia University. She received her CRM certification in 2004 and earned doctoral and master’s and bachelor’s degrees in Computer Science from Columbia University.
Forney Group LLC
Renee Forney is currently the CEO of the Forney Group LLC, a strategic consulting firm focusing on Enterprise Risk Management, Cyber Threat Intelligence and Cyber Workforce, as well as the Executive Managing Director of Global Cyber Security Management at Equinoxys Inc.
Mrs. Forney previously served as Deputy Chief Information Officer (DCIO) for Cybersecurity and Enterprise Operations, where she was responsible for managing the Department of Energy’s (DOE) Enterprise Cybersecurity Program and IT Infrastructure; advising Departmental senior officials on integrating cybersecurity; risk management; and implementing enterprise information resources management across the DOE. Mrs. Forney provided executive-level guidance for the interagency on cybersecurity initiatives; including the White House’s Cybersecurity National Action Plan, the Defense Industrial Base Sector (for information safeguarding and critical infrastructure protection) and the NICE Interagency Coordinating Council lead by the NIST.
Prior to DOE, Mrs. Forney was the Department of Homeland Security’s (DHS) Executive Director for the Cyber Skills Management Support Initiative, where she was responsible for managing cybersecurity-related projects for the Undersecretary of Management. She led a collaborative effort to design an organization to strategically address and manage DHS cybersecurity workforce issues affecting DHS Components execution of cyber mission to include USSS, TSA, CBP, USCG, ICE-HSI and NPPD. In this role, she developed the Cyber Management Support Initiative Push Button, which assists hiring managers and human resource professionals. in accurately defining job descriptions for cyber professionals. In conjunction with the Push Button initiative, her efforts were instrumental in developing legislation and the Federal Cyber Security Workforce Strategy Plan. She also spearheaded the Cyber Student Volunteer Initiative which placed cyber students in DHS field offices and Fusion centers across the country.
Mrs. Forney also served as the Branch Chief for the General Services Administration’s (GSA) Business Intelligence Division, where she developed innovative enterprise solutions such as the FAStoday Portal, and led the digital information efforts for the 2008 U.S. Presidential Transition Team.
Mrs. Forney also held a variety of information assurance and technology roles in the private sector, including Division Program Manager for Unisys, and Senior Security Analyst for Telos. Notable accomplishments from this time include managing collaboration with the Unisys Director of Enterprise Security Initiatives, United Kingdom, and supporting the development of a security framework model for Unisys Federal.
Mrs. Forney holds a Bachelor of Science from DeVry University and a Master of Science in Engineering Management from George Washington University. She also holds an honorary Doctorate Degree of Science and Technology from Champlain College. She was also named a 2016 Women of Influence by SC Magazine and ACT-IAC Igniting Innovation award winner. She is a Certified Information System Security Professional (CISSP), Shared Assessments Certified Third Party Risk Professional (CTPRP) and has held the Project Management Professional (PMP) certification.
Corporate Vice President, Cybersecurity Solutions Group
As the Corporate Vice President of the Cybersecurity Solutions Group at Microsoft, Ann Johnson is focused on providing customers and partners with world-class security and compliance solutions.
Ann is a recognized thought leader on cybersecurity, a frequent speaker on topics of online fraud, privacy, compliance and mobile security, and a champion of workforce diversity and inclusion.
Before joining Microsoft, Ann held a number of executive roles including CEO at Boundless, President and COO of Qualys, Inc. and Vice President of World Wide Sales at RSA Security, a subsidiary of EMC Corporation.
Ann is a graduate of Weber State University where she completed a dual major in political science and communications. She currently serves on the boards of Security Advisor Alliance, FS-ISAC, and biometric security firm HYPR, as well as the Executive Women’s Forum.
Stay connected with Ann to learn more about the latest innovation in cybersecurity.
Microsoft Blogs: https://cloudblogs.microsoft.com/microsoftsecure/author/ann-johnson/
Sally Kenyon Grant
Director of Cybersecurity for CYBRScore
Comtech Command & Control Technologies
Sally Kenyon Grant specializes in Cybersecurity/IT global business development working with Fortune 500 companies, Federal Agency and Federal defense contractors. Sally utilizes her 25 years of industry, government and Federal appropriations experience to protect critical infrastructure and strengthen cybersecurity to insure the protection of our economic and national assets.
Bringing more than two decades of Federal and Private Sector experience in the enterprise business and economic development sector, plus a background in Federal IT Appropriations and Cybersecurity budget allocations, Grant is helping position Comtech as a world-wide leader in the cybersecurity assessment and training domain. Grant brings a wealth of experience and a passion for success in the cybersecurity industry to secure our networks. Her commitment to protect critical infrastructure to preserve national security and economic interest is second to none. She has a proven history of stimulating growth with a customer-first focus approach by spearheading company initiatives with Fortune 500 and Federal Senior Official decision makers.
Grant is leading Enterprise to Comtech’s Cybersecurity Unit for scored Assessments and hands-on Training and is responsible for leading business development with Fortune 500 partners. Prior to joining Comtech, Grant served in Industry, State and Federal Administration positions plus successfully managing private sector economic and defense global clients in Washington, D.C.
Recently, Sally Kenyon Grant was honored to lead one-hundred cybersecurity Executive women on Capitol Hill for a historic day of empowerment and technical expertise to the U.S. Senate and U.S. House of Representatives Armed Services and Homeland Security Committees. It is Sally’s true honor to serve alongside America’s cyber warriors to defend our United States critical infrastructure assets.
Suzanne is a Washington DC Cybersecurity and Privacy practice leader. She has over 20 years of experience as a security and technology leader and returned to PwC after several successful years as a CIO and CISO in industry. Suzanne is experienced at aligning technology and organizations to drive organizational performance and growth. Suzanne has a proven ability to establish and align on vision, execute in organizations and diverse industries, and deliver solutions that balance risk, business realities, and operational impacts. Recognized for excellence in innovation, strategy, and information security that produces results, she creates positive change through business collaboration and high performance teams. She has extensive experience with strategic planning, security and compliance programs, outsourcing, cloud solutions, and technology management.
Denise Hucke, CISSP
Denise currently serves as Executive Director at JPMorgan Chase. Previously, Denise was the Vice President, Chief Business Security Officer for Payroll & Money Movement, where she was responsible in overseeing the Business Security Officers who were accountable to the Divisional Leadership delivering centralized security services in accordance to the need, risk level and plans associated with the business areas – National Account Services, Major Account Services, Small Business Services, TotalSource, Corporate, Added Value Services and Health Data Protection. These teams monitor and report necessary metrics to demonstrate overall security posture, including key compliance services per the needs of the division. She maintained the relationships with the CSO, CISO, CPO, ERM, ORM and Divisional leaders and leads divisional level incident management and crisis coordination required by the corporate crisis management program.
As the VP of Global Operational Risk for ADP, Denise was responsible for leading the Global Operational Risk group, which manages the Operational Risk Program, the Controls Assurance and the M&A team. Denise’s helped ensure ADP continues to drive an integrated approach with partners in Enterprise Risk Management and global risk mitigation strategies. In her first 2+ years at ADP, Denise Hucke was responsible for providing leadership for ADP’s Cyber and Information Security Teams, including ADP’s Threat Management Centers (CIRC and Fraud Monitoring), Security Engineering and Operations, Vulnerability Management and Security Testing and Analysis Teams. In 2012-13, the GSO team and programs under Denise’s leadership have been recognized by ISE as the North America Project Award Winner 2012 and by CSO40 in recognition of the success of the Trusted Platform Security Initiative.
Ms. Hucke previously held an executive security management role at Merck Pharmaceuticals and was appointed by the Executive Committee participate on the corporation's multi-billion dollar merger with Schering-Plough. She spent 20+ years in several roles overseeing the worldwide security programs for GRC, Risk Management, Compliance, Incident Response, Engineering/Operations, Vulnerability Management, Corporate Policy, the Security Education and Awareness Program for Merck before moving to ADP.
Ms. Hucke is active multiple industry consortiums and has been a speaker at RSA, the Executive Women’s Forum, ISSA, Cloud Security Alliance, ICS2, ASIS, WITI and ISE. Denise holds a Masters in Telecommunication Management from Stevens Institute of Technology, BS in Economics from Rutgers University, CISSP, GIAC for Incident Handling, ITIL Certification v.3 for Foundation Management. Her mission and dedication span globally and has been recognized by her peers with several Leadership and Achievement awards.
Dr. Dena Haritos Tsamitis
Barbara Lazarus Professor in Information Networking
Director, Information Networking Institute
Founding Director, Education, Training and Outreach, CyLab
Carnegie Mellon University
Dena Haritos Tsamitis has led Carnegie Mellon's Information Networking Institute (INI) as director since 2004. Her efforts have prepared the next generation of information networking, security and mobility professionals. She joined the university in 2000, serving first as the INI's associate director in 2002 before assuming the role of director in 2004.
A student advocate and mentor of women in technology, Dena is passionate about increasing diversity in STEM fields. In 2005, she co-founded the student organization, Women@INI (WINI), to address the unique challenges faced by women in the male-dominated field of engineering.
Under her leadership, Carnegie Mellon earned three distinct cybersecurity designations from federal agencies as a National Center of Academic Excellence for its merits in information assurance and cyber defense, research and cyber operations. Dena is the principal investigator of the National Science Foundation (NSF) CyberCorps® Scholarship for Service (SFS) program, which funnels the next generation of analysts and hackers directly to government service. She is also a founding director of Carnegie Mellon CyLab, for which she spearheaded efforts in cybersecurity education, training and outreach. In 2005, Dena established the MySecureCyberspace initiative to raise "cyberawareness" in Internet users of all ages through a portal, game and curriculum that reached over one million people in 167 countries.
Currently, Dena is a member of the American College of Greece Board of Trustees. She also serves on the board of advisors for the RSA Conference, Executive Women’s Forum, RedMarlin, Inc. and the Norfolk State University Information Assurance Research, Education and Development Institute. Carnegie Mellon honored Dena with the 2012 Barbara Lazarus Award for Graduate Student and Junior Faculty Mentoring and in 2017, she was named as the first recipient of the Barbara Lazarus Professorship in Information Networking. She also received the 2008 Women of Influence Award, presented by Alta Associates and CSO Magazine. Dena holds a doctorate in higher education management from the University of Pennsylvania.
Jing de Jong-Chen
Partner and General Manager
Jing de Jong-Chen is a Partner and General Manager, Global Security Strategy in the Corporate, External and Legal Affairs Division at Microsoft Corp. She has over 20 years of experience in the technology industry with domain expertise in global cybersecurity policy and strategy. She also has extensive experience in developing strategic partnerships with public sector, academic and industry groups. Jing’s leadership roles include the head of the Technology Advancement Group of Trustworthy Computing at Microsoft, Vice President and Board member of the Trusted Computing Group (TCG), Board Advisor of the Executive Women Forum (EWF), and advisor to the Woodrow Wilson Center's Digital Futures Project. Jing is passionate about promoting women in technology and gender equality. She received the “Women of Influence Award” by the Executive Women Forum in 2014 for her professional contributions to cybersecurity. She holds a Master’s Degree in Business Administration (M.B.A) and a Bachelor of Science Degree (B.S) in Computer Science.
Sandra R. Hughes
Sandra Hughes Strategies, Ltd.
Retired after 25+ years with the Procter & Gamble Company, the worlds largest consumer products company, greatest advertiser and most admired worldwide.In the last decade served as Global Privacy Executive, in addition to leading the Global Ethics & Compliance practice, Information Governance, and Competitive Intelligence. Recognized by the International Association of Privacy Professionals with the Vanguard Award as best Corporate Practitioner and by the Executive Women’s Forum for Risk Management, Information Security and Privacy with the Woman of Influence, Lifetime Achievement Award.
MacLean Risk Partners
With more than 30 years of information technology industry experience, Rhonda MacLean is founder of MacLean Risk Partners LLC, a consulting firm that provides strategic security and risk advisory services. Prior to founding MacLean Risk Partners, Ms. MacLean was the global leader of Information Security for Barclays, PLC in London, England and Bank of America headquartered in Charlotte, NC. For over 12 years she was responsible for the respective Banks’ security policies; compliance reporting for relevant legal and regulatory statutes; security and risk technology implementations; cyber forensics and e-discovery; and general information risk management awareness. Prior to joining Bank of America in 1996, she was responsible for information security at The Boeing Company, managing Boeing proprietary and government programs. Ms. MacLean previously served on the Board of Directors for the Vontu Corporation and PGP prior to their respective acquisitions by Symantec Corporation.
In 2002, the U.S. Treasury Secretary appointed Rhonda as the Financial Services Sector Coordinator for Critical Infrastructure Protection and Homeland Security. Over the years numerous awards have been presented to her for visionary industry leadership. Some highlights are: The Executive Women’s Forum (EWF) "2003 Women of Vision”; NetworkWorld’s 2003 and 2004 issues named her one of the fifty most powerful people in technology; 2005 CSO’s Compass Award; 2008 EMEA Visionary Award; 2009 Lifetime Achievement Award from the EWF; and most recently in 2013 recognized as one of the top ten women in Cloud Computing.
Senior Director of the IT Hygiene Program and Identity & Access Management
Karolyn Maloney joined Aetna in 2008. She is currently the Senior Director of the
IT Hygiene Program and Identity & Access Management. In her role, Karolyn is responsible for defining requirements for managing IT assets and how they are configured to improve the resiliency of assets and reduce vulnerabilities. Additionally, she leads the Identity & Access Management team in defining the strategy and implementation of IAM solutions, with a focus on user behavior analytics and automation. Karolyn is passionate about growing future leaders and manages the early in career talent pipeline for the Global Security organization. She also mentors several individuals within the organization.
Karolyn holds a B.S. degree Information Systems Management from Quinnipiac University and a M.S. degree in Cybersecurity Management from Bay Path University. She currently serves on the Quinnipiac CIS Advisory Board to support the curriculum and student career development. Karolyn also enjoys opportunities to give back to the community and has educated hundreds of students on how to stay safe online.
Senior Vice President, Chief Information Security Officer
Eli Lilly & Company
Mamilli leads a global, enterprise-wide information and product security organization integrating People, Process and Technology to Protect the confidentiality, integrity and availability of information, systems and products while enabling Lilly’s mission to make medicines that help people live longer, healthier, more active lives.
Mamilli started her career in Paris in consulting prior to joining Lilly France in 1995. Prior to her current position, she held several International leadership responsibilities across the Lilly value chain partnering with Drug Development, Manufacturing & Quality, Finance, HR, Corporate Affairs, Legal, Sales and Marketing to excel at supporting base operations while bringing innovative solutions to the business.
Mamilli has served on several advisory boards for Digital Health innovation and Information technology companies and is an active speaker at key industry and digital innovation events. Mamilli is a board member of several strategic cybersecurity advisory boards as well as the Center for Interfaith Cooperation.
Mamilli embraces her international experience as she was born and raised in Morocco, lived in France, UK, and the Middle East before relocating her family to Indianapolis in 2008. She is married with 2 kids. Mamilli is multi-lingual and holds a Master’s degree in Computer sciences from the INSEA (Engineering College in Rabat, Morocco) and a Master’s degree from IFSIC, Rennes University in France as well as a General Management certificate from the London Business School. In 2015, Mamilli graduated from the Harvard Business School-Advanced Management Program (AMP).
Principal, Cybersecurity, America's Life Sciences and Health Cybersecurity Leader
Ernst & Young
Elizabeth Butwin Mann (Liz) is the EY Cybersecurity leader for Life Sciences and Health in the Americas.
Liz has worked in the information security (cybersecurity) discipline for more than 20 years, with much of her time focused in the Identity and Access Management, Identity Governance and more recently Cyber Threat Management disciplines.
Liz has worked on developing and delivering new and transformative solutions in Information Security to Fortune 100 clients in numerous sectors. She established her leadership position early in the development of the cybersecurity landscape, looking at security from the perspective of identity, access, privilege management and entitlement reviews. She is focused on delivering a risk-based perspective to the questions information security and business transformation. She leverages the global Advanced Security Centers at EY to deliver world class threat intelligence and threat management services as well.
Liz serves as the Americas’ Life Sciences and Health Cybersecurity leader, tracking cyber intelligence and critical risk factors to assist clients in aligning their cybersecurity investments. She actively engages in the NH-ISAC and commissions research on the topic of cyber threat in healthcare. Liz is working with EY’s top clients, sharing insights and assisting in the prioritization of programs, in support of business priorities, risk mitigation, and regulatory compliance. She is developing approaches to information security that cross traditional boundaries – from ERP to non-ERP governance programs, to threat and vulnerability management programs, to security data analytics, contemporary cyber war gaming and scenario based testing and drills.
She leads EY’s sponsorship of the Executive Womens Forum, actively promoting cybersecurity and risk management as engaging careers for women. She also works actively at EY on a variety of diversity initiatives with a particular focus on supporting our female professionals. Liz lives in Manhattan with her husband and two daughters, enjoying the energy and diversity that the city offers.
CISO and VP, Enterprise Risk and Compliance
As CISO and VP, Enterprise Risk and Global Compliance, of Spirit AeroSystems, Stacy leads global compliance and cybersecurity strategy and teams. Her passion for protecting the company’s digital assets bridges, security architecture, vulnerability management, information governance, compliance initiatives as well as information assurance. Collaborating with her business partners, Stacy ensures enterprise risk and compliance is understood, mitigated and controlled to business acceptable levels through building trust and awareness at all levels of the organization.
Stacy has developed many teams across several industries. At KAR, an auction corporation which operates a complete auction solution throughout North America and UK, she built the business continuity, disaster recovery, security architecture, security operations, information risk and compliance strategy and teams. At Yum, Stacy built a dynamic international team to address all aspects of information security across Yum Brands, Inc. spanning 120 countries. These brands included Taco Bell, Pizza Hut, and Kentucky Fried Chicken. Under her strategic leadership, Yum Brands achieved global PCI/SOX/HIPAA/Safe Harbor compliance, built out underlying security infrastructures and kept ahead of the myriad of US and international data and privacy laws. Stacy started in security as Humana Military’s Chief Security Officer after holding numerous positions in her 17-year career in IT at Humana Inc. She worked closely with the Department of Defense as a member of the Information Assurance Work Group (IAWG) in support of the Tricare Management Agency and DITSCAP/DIACAP initiatives. Her tenured career also includes VP of Engineering for Darwin Networks, Inc.
After receiving her B.S. in Computer Science and Mathematics, her 30+ year experience in IT includes engineering, operations, implementation as well as business strategy. She has held positions on numerous CISO and non-profit board of directors in addition to her speaking engagements across the country. Stacy has been nominated and received the following awards in her successful career: 2011 NG20 Top 20 Global CISO award, 2013 ISE Southeast Executive of the Year finalist, 2013 Ranked #5 CISO in the US by ExecRank (#1 Female), 2013 Cisco Security Innovator of the year – Retail, 2013 Evanta Global CISO Top 25 Breakaway Leaders (Top 10 finalist), and 2014 Women in High-Tech Leading Light award Nominee for Leadership. Lastly, Stacy gives back to the Information Risk community through her work with the Executive Women’s Forum and the Chicago Booth School of Business – CISO Institute as member of the Board of Advisors and Instructor.
Shira Rubinoff is a recognized cyber security executive and influencer, who has built two cyber security product companies, and led multiple women-in-technology efforts. She currently serves as President of social-media-security firm, SecureMySocial, as well as the President and Co- Founder of Tech Incubator, Prime Tech Partners in New York City.
Shira also serves on the Boards of both the Executive Women’s Forum for Information Security and Leading Women in Technology.
An expert in the human factors of information technology and security, Ms. Rubinoff was named one of New Jersey’s Best 50 Women in Business, was named by CSO Magazine as a Woman of Influence, and was honored by CSO and the EWF with their “One to Watch” award. She has also been calculated by analysts to be one of the top 5 female Cybersecurity and IoT influencers globally on social media.
Before SecureMySocial, Ms. Rubinoff founded and served for a decade as President of online authentication vendor, Green Armor Solutions. Within a year of releasing products, she grew the company to be a profitable concern. She more than doubled average deal size annually for three years consecutively, successfully executed OEM deals with major technology companies, and led Green Armor’s diversification across multiple industries.
Ms. Rubinoff has also provided guidance to various firms in areas related to organizational dynamics, and has practiced as a psychologist. She has published and lectured on topics related to psychology and information security, and holds several patents/patents-pending in areas related to the application of psychology to improve information technology and cyber security.
Ariel Saldin Weintraub
Director of Data & Access Security, Cybersecurity Operations
Ariel Saldin is the Director of Data & Access Security within Cybersecurity Operations at TIAA where she is responsible for the Data Protection and Identity & Access Management programs. In this role, Ariel leads a three year business transformation program to position Identity & Access Lifecycle Management as a Digital Business Enabler. Through this effort, Ariel oversees multiple Security Operations teams and partners with Security Engineering to increase automation and minimize risk. Ariel first joined TIAA in 2015 as a Senior Manager within IT Risk & Information Security. In that role, she managed the Treatment & Vulnerability Remediation teams under Cyber Risk.
Prior to TIAA, Ariel held the position of Global Head of Vulnerability Management at BNY Mellon where she developed and led the Vulnerability Management function and designed a cross-department Information Security Metrics program. Ariel joined BNY Mellon during the inception of the Chief Information Security Officer (CISO) organization and played a critical role in laying the foundation for many of the security compliance functions including Mobile Device Security, Endpoint & Host Compliance, and Secure Configuration Management. Prior to her role at BNY Mellon, Ariel was part of the Threat & Vulnerability Management practice at PricewaterhouseCoopers (PwC) where she was responsible for performing Penetration Tests, Security Risk Assessments, and Payment Card Industry (PCI) compliance assessments for a variety of Financial Services clients.
Executive Women's Forum
Lynn has more than 23 years’ experience in information systems, over half of which has been in information security. She has worked both as a practitioner and a vendor – She was the director of information security risk for Oracle’s Health Sciences Global Business Unit and formerly was 10 years at Microsoft corporate headquarters in security response, then critical infrastructure protection as a security strategist, and a director of software compliance. She was also was Head of Security Architecture, Standards and Infrastructure Engineering for Barclays Bank. Her previous experience includes working as a solution integrator and consultant to large corporations. She is a founding member of the Cloud Security Alliance. She holds a CISSP and MA from the University of Missouri-Columbia.
Chief Information Security Officer
Patricia Titus is the Chief Information Security Officer of the Global Security Services division at Markel Corporation located in Richmond, VA. She will continue serving on the Board of Advisors for Guardant Global a worldwide services company. She is a Distinguished Fellow at the Ponemon Institute and serves on the Visual Privacy Advisory Council focusing on Visual Hacking issues. Ms. Titus was formerly the Vice President and Chief Information Security Officer at Freddie Mac, Symantec, Unisys Corporation and the Transportation Security Administration within the Department of Homeland Security. She has been and continues to be focused on transforming, implementing and maintaining robust IT security programs. Ms. Titus also worked overseas for several years in various positions within the U.S. Department of Defense, the U.S. State Department and various private sector firms. She has more than 20 years of security management experience.
Ms. Titus is on the Board of Advisors for the Executive Women's forum and was recognized as a 'Woman of Influence' by the Executive Women’s Forum in 2009 and the Silicon Valley Business Journal in 2013. She serves on the Executive Women’s Advisory Board for the Girl Scouts Council of the Nation’s Capital.
Board of Advisors Alumnae
Ernst & Young
Julie is an Ernst & Young LLP Principal where she leads the security practice for Banking and Capital Markets. She is currently the Market Leader for the Information Privacy and Protection and Threat and Vulnerability Management capability domains.
Julie brings 18 years’ experience helping banks, insurers, asset managers and capital market firms improve their IT operations, interface with their customers, and meet their strategic objectives. Julie has experience in IT security, IT strategy and governance, and customer relationship management. She has built a career of progressive responsibility delivering complex work programs and business-driven IT strategies.
Julie is an active member of the Executive Women’s Forum, a community of the nation’s most influential female executives in Information Security, Data Privacy and Risk Management. She is also eng aged with other companies to bring security solutions to the financial services industry through FS-ISAC.
Co-Founder and Managing Director
Maria has been building and founding technology businesses for 20+ years. Her operational, entrepreneurial, and senior management experience in venture-backed technology companies includes two Massachusetts IPOs of the Year and the founding of two successful companies and a venture capital firm. Prior to co-founding .406 Ventures, Maria served as an SVP of VeriSign following its 2005 acquisition of Guardent, the market leading Managed Security Services provider for $142 million. Guardent was a Sequoia, Charles River Ventures and NEA-backed IT security company that Maria co-founded and led as CEO. In this role, Maria received industry recognition as "Massachusetts CEO of the Year" and "Ernst & Young Entrepreneur of the Year," among others. Prior to Guardent, Maria was Senior Vice President responsible for sales and marketing at Razorfish, an IT services company that acquired her previous company, i-Cube, for $1.8 billion in 1999 where Maria led sales and marketing. Prior to i-Cube, from 1993 – 1997 Maria was responsible for North American sales at Shiva, the category-creating remote access leader. Prior to Shiva, Maria held sales and marketing roles at Lotus Development Corporation and Software City Inc. Maria holds an AB in English literature from Mount Holyoke College where she has served as a Trustee and as a member of the college's investment committee. At .406 Ventures, in addition to her investment activities, Maria manages brand building and deal flow strategy and currently serves on the boards of .406 portfolio companies Attendware, Bit9, Digitalsmiths, Kaltura, Mineral Tree, Pwnie Express, Vaultive, Veracode and formerly served on the boards of Adtuitive and Memento until their respective acquisitions by Etsy and FIS.
Chief Privacy Officer
Michelle is currently the Chief Privacy Officer at Cisco. Previously, Michelle served as Chief Privacy Officer to McAfee, an Intel Company. She was responsible creating a privacy practice that is focused on quality and excellence in McAfee’s policies, products, procedures and governance efforts. Her and her team supported McAfee’s outreach efforts to educate and protect children, families and communities in the Digital Age.
Before coming to McAfee, Michelle founded The iDennedy Project, a consulting and advisory company specializing in privacy and security sensitive organizations. Michelle is also a founder and editor in chief of a new media site—TheIdentityProject.com—that was started as an advocacy and education site, currently focused on the growing crime of Child ID theft.
Michelle was the Vice President for Security & Privacy Solutions for the Oracle Corporation. Her team worked closely with customers to enable them to proceed with the confidence that information is protected and accelerated as an asset.
Before the Oracle acquisition of Sun, Michelle was Chief Data Governance Officer within the Cloud Computing division at Sun Microsystems, Inc. Michelle worked closely with Sun's business, technical and legal teams to create to the best data governance policies and processes possible for cloud computing to build trust for cloud environments through vendor transparency.
Michelle also served as Sun’s Chief Privacy Officer where she was responsible for the development and implementation of Sun's data privacy policies and practices, working across Sun's business groups to drive the company's continued data privacy excellence.
Michelle has a JD from Fordham University School of Law and a BS degree with university honors from The Ohio State University. In 2009, she was awarded the Goodwin Procter-IAPP Vanguard award for lifetime achievement and the EWF – CSO Magazine Woman of Influence award for work in the privacy and security fields. In 2012, she was honored by the National Diversity Council as one of California’s Most Powerful and Influential Women.