The Rising Leaders Forum's
The RLF Speaker Series was created to identify and create speaking opportunities for our millennials within the EWF and at various conferences.
Managing Insider Risk
Stacey Champagne, Insider Threat Program Leader, Director
With the current state of business, there is increasing talk and concern of insider threats. Physical oversight of employees and personal/professional boundaries are no longer as explicit as they once were in the office. Many companies are rushing to implement Data Loss Prevention (DLP) and User Activity Monitoring (UAM) solutions in an attempt to gain visibility, but their efforts are likely going to fall short. Stacey Champagne, insider threat subject matter expert and program lead for one of the world's leading investment firms will be talking through the importance of a holistic approach to managing insider risk in an organization, especially in times of crisis and change.
About the Speaker:
Stacey Champagne is a multi-disciplined subject matter expert in deterring, detecting, investigating, and mitigating insider threats as the insider
Risk Program Lead for one o the world's leading investment firms. She is also the Founder & CEO of Hacker in Heels, an unapologetically fem
inine online platform committed to attracting, advancing, and advocating fo women in cybersecurity. Stacey holds multiple certifications, including Certified Forensic Computer Examiner (CFCE) from the International Association of Computer
Investigative Specialists (IACIS) and Insider Threat Program Manager (ITPM) from Carnegie Mellon CERT. She earned her Master of Science in Security and Resilience Studies with a focus on Cybersecurity Policy from Northeastern University,
and a graduate certificate in Cybercrime Investigation and Cybersecurity from Boston University. Like the women she seeks to inspire, Stacey is a career-pivoter. She previously served in the US Intelligence Community as a Visual Information
Specialist, supporting multiple stakeholders from military leaders and policymakers all the way up to the President of the United States.
Presentation Slides: Managing Insider Risk Throught Times fo Crisis & Change
Audit and Compliance
Kristen Wilbur, Senior Manager, Schellman & Company LLC
Audit and Compliance don’t have to be “four-letter words”! For many, the terms audit or compliance have a negative connotation and are considered necessary “evils” for security professionals. During this discussion, I will shed some light (and truths) on the myths surrounding this complex space. My hope is that this talk will have you humming a different tune about your audit/compliance program.
About the Speaker:
Kristen majored in Criminal Justice and Spanish in her undergrad and completed her MBA with an IT Management Concentration. She began her career at a Big 4 CPA firm in the advisory group where she spent three years supporting integrated SOX 404 audits as well as performing SOC 1 reporting before moving to Schellman. Kristen Wilbur is a Senior Manager with Schellman & Company LLC, with over 10 years of experience in providing IT attestation and compliance services. Kristen has evaluated risk and controls for Global 1000, Fortune 500, and regional companies during the course of her career with a strong focus in the technology sector. Kristen currently leads the New York City practice at Schellman where she specializes in SOC 1, SOC 2, ISO 27001, and HIPAA reporting. In her portfolio, she also manages large scale engagements that include FedRAMP, HITRUST, and Privacy.
She has a strong passion for giving back and recently helped to establish the corporate social responsibility program at Schellman called SchellmanCARES. She has the following technical certifications: CPA, CISSP, CCSK, CISA, Advanced SOC and ISO 27001 Lead Auditor. When she isn’t working or studying, her hobbies include spending time with family and exercise.
Webinar Recording: To be Uploaded Soon
Medical Device Security: Vulnerabilities, Threats and Realities
Cate Reich, Accenture, Manager, Health & Public Service Security
Accenture Security’s Cyber Defense practice,
Security Innovation Principal
Medical device security is one of the most important areas of focus for cybersecurity as we continue to become an interdependent internet-of-things society. Most of the devices that are in service in hospitals and medical offices were not developed with security by design mindset. Manufacturers didn’t consider the threats to the medical environment or the inter-connectedness of these devices on a network. As a result, once deployed into the healthcare provider environment, very little attention may be given to protecting these devices from their inherent vulnerabilities or those presented when connected to a network.
This discussion will explore medical device security, reveal unknowns, dispel myths, acknowledge threat profiles, and provide participants realistic data points to inform their understanding of cyber defense in the Healthcare Industry.
About the speakers:
Cate Reich, Accenture, Manager, Health & Public Service Security
Previously, as a project manager for DoD’s Test Resource Management Center, Cate managed classified joint service software development projects and supported the National Cyber Range in weapon system cyber simulation exercises. She has a passion for inclusion and diversity and worked to establish an organization-sponsored Science Technology Engineering & Mathematics (STEM) outreach program. She developed an internship program across DoD test ranges for minority students, as well as a Girls for Engineering, Math, and Science (GEMS) program at local elementary schools. Cate’s technical project management career has been shaped by experiences across the public, private, government, and non-profit sectors. Her diverse background includes work with the Library of Congress, international associations, and non-profit organizations. Cate received her Master of Science in Cybersecurity from the University of Maryland University College and her Bachelor of Arts from York College of Pennsylvania. Cate lives with her family in the Metro D.C. area where she leads Girl Scouts, actively speaks to community groups on cybersecurity careers and online safety, and coach’s youth sports.
Accenture Security’s Cyber Defense practice, Security Innovation Principal
Rikki George is a Security Innovation Principal within Accenture Security’s Cyber Defense practice. In her role at Accenture, Rikki serves as a thought leader on cyber threats to multiple critical infrastructure sectors. She educates Accenture Leadership, C-level executives, information security managers, policymakers, and regulators on the cyber threats that will shape the information security, national security, and data privacy landscape for years to come. Prior to joining Accenture, Rikki worked for TD Bank Group, where she oversaw the development of a suite of counter-cyber threat capabilities including the anti-phishing program and social media investigations. Rikki started her career in cyber threat intelligence at JPMorgan Chase, joining their team while finishing her undergraduate studies. She holds B.A. from Drexel University, where she graduated summa cum laude and has attended the selective Cybersecurity program at the Washington Center in D.C.
Security Training & Awareness
Senior Cyber Training & Awareness Engineer at Humana
In this session, you'll learn how to plan and execute a cybersecurity conference for your fellow employees. From deciding on a theme, booking speakers, and expanding your awareness footprint, this session will cover it all (including how to avoid panic attacks)! You'll walk away with a checklist to help you plan your own event, as well as a playbook to help you keep your sanity.
About the speaker:
Sherry Boesch is a Senior Cyber Training & Awareness Engineer at Humana. She creates communications, training and awareness surrounding cyber security initiatives that impact her fellow Humana associates. This includes serving as the project manager of Humana’s Annual Cyber Security Awareness Week (now in its tenth year), a weeklong learning opportunity for associates. In this role, she’s worked with leading cyber security experts, including Jenny Radcliffe, Theresa Payton, Eric O’Neill, Hector Monsegur, David Kennedy, and Pablos Holman. She has several years of experience in marketing, advertising and editing content – all of which has been beneficial in her current role as she spreads the good word about cyber security.