|
Speakers at the Enterprise Risk - Security Management Conference
June 19, 2008 |
|
Joseph Agnew
Joe Agnew joined Follett Corporation in September of 2006 as
the Vice President, Chief Information Security Officer.
Prior to joining Follett, Joe Agnew was the Director of
Information Security at Baxter Healthcare. Joe has also
held various positions at Abbott Laboratories and PWC. Joe
has almost 25 years of experience in Information Technology
with almost 13 of those years focusing on Information
Security. Joe obtained his CISSP certification in September
of 2001 and has a Master Degree from Lake Forest College in
Lake Forest. In his CISO role at Follett Joe is in the
process of implementing an approved Information Risk
Management Program Strategy which leverages best practices
and new approaches to address Information Risk.
|
|
|
Scott
Allen
Scott
Allen is a client-facing enterprise consultant with Laurus Technologies
Software Business Group, and has been with the company since 2007. In
his role he focuses on solutions in business compliance, employee
access, data security and identity management. Prior to Laurus, Scott
has held positions with Symbol Technologies, Telxon Corporation and
Midwest Distribution Systems and he has also owned his own supply chain
technology consulting firm. His industry experience includes work for
fortune 1000 clients in the supply chain, financial services and
manufacturing sectors, and he is a frequent presenter at technology
conferences including the University of Wisconsin
Madison. Scott has a BS degree from Marquette University in Communications and
Economics. He resides in the Milwaukee area with his family.
|
|
|
Tim
Burke
Tim Burke has over 18 years of experience in the
field of information security, risk management and information technology.
Tim retired from the U.S. Army in 2002 where he "cut his teeth"
learning Information Security working for the Defense Threat Reduction Agency;
and, since is his retirement has held Information Security Management positions
for two large companies. Today
he manages Information Security, Disaster Recovery, Enterprise
Risk Management/Sarbanes-Oxley processes for IT and Electronic Record
Retention/Archiving for the American Division of a large global insurance
company. Tim holds the following certificates: Certified Information Systems
Security Professional (CISSP) and Certified Information Security Manager (CISM).
|
|
MIchael Gabriel
Michael Gabriel has been
employed by Career Education Corporation, a $1.8B for-profit, post-secondary
education services company, since 2004 when he was tasked with building an
information security program from the ground up. Michael came to CEC from a
background in the global investment banking industry, where he provided security
management and engineering since 1995. He has also practiced in the security
consulting field, including a stint as an interim security director for an
Internet banking startup. Michael is sought out for speaking engagements on
information security topics and is a frequent contributor to security-related
articles.
|
|
Adam Hansen
Adam Hansen currently holds the title of Director
of Information Security at Sonnenschein Nath & Rosenthal LLP. In this role, he
leads the team responsible managing risk of varying nature and scope across
Firms’ 13 locations towards the protection of its 21 practice groups and nearly
2000 employees across the globe. His responsibilities currently include
functions such as Information & System Security, Forensic & Investigative
Services, Crisis Management including Disaster Recovery and Business Continuity,
Regulatory Compliance and Physical Security.
Adam’s
expertise is deep and broad as a result of the 15+ years he has spent working as
an employee and consultant. This experience was earned through efforts in
organizations ranging in size from 5-35,000 employees with scope ranging from
regional healthcare providers to national professional service companies as well
as international fortune 50 financial entities.
In addition to his current and past work efforts,
Adam spends much time giving back to society through volunteer efforts and
not-for-profit activities and currently serves as President of the Chicago FBI/InfraGard
Program and as the Chair of the Risk Management Peer Group in the International
Legal Technology Association.
Adam speaks
frequently across the nation of a variety of risk related topics, enjoys
researching emergent trends in risk management practices resulting in his
numerous publications, has many certifications including the CISSP from ISC2 as
well as from DRI, SANS, Microsoft and Cisco only to name a few. Finally, he
holds a BS of Engineering and MBA from Purdue University.
|
|
|
Daniel M. Harris
Danny is with Aon's Information Security Services group, and is
instrumental in the development and refinement of corporate security
policies, standards, and procedures. Specializing in security
awareness training, Danny is responsible for the delivery of key
security awareness training for the organization, as well as for the
development, implementation, and maintenance of the corporate
technical information security website.
Danny's involvement also includes security audits, security
vulnerability and risk assessments on Aon's Internet connections,
E-commerce sites, and internal systems. Additionally, he functions
as a consulting engineer and architect for secure network systems,
with extensive involvement in the deployment of E-Mail content
filtering and virus scanning at Aon. Danny is a key member of Aon's
Information Security Incident Response Team, where he assists with
incident handling. He also evaluates and recommends security
products for Aon.
Danny also teaches in the Computer Security and Forensics
Investigation program at Wilbur Wright College in Chicago and has
been an instructor with the SANS Institute for five years.
|
|
|
Min Ju
Min
Ju is a Security Strategist for Symantec Corporation. His responsibilities
range from security strategy, holistic solutions, architecture, education and
trusted advisor to security executives, senior management and engineers of large
enterprises. Min has over 16 years of diverse experience in information
security, web architecture, infrastructure, networking and development
environments. Min has created several utilities and scripts that have shown
enough value to get included with the Symantec Endpoint Protection build. For
his efforts and contribution Min was bestowed an Innovation Award at the 2008 SE
Summit. Min is a very active member of the global security community in
Symantec and in his local geography. He established the first Midwest Endpoint
Security User Group. Prior to Symantec, Min worked as the Head of Information
Security and Security Architect for CDW Corporation, as an ethical hacking team
lead, vulnerability researcher and web architect at Allstate Insurance and a
senior consultant at Arthur Andersen in the application integration and Internet
teams. Min has spoken previously at CAMP IT and many other industry events. Min
holds a M.B.A. from the Keller Graduate School of Management, B.S. from DeVry
Institute of Technology, and numerous certifications including GREM, GPEN, CEH,
CISSP, CISA, Security+, Linux+, MCSE and MCSA. In his spare time he enjoys
his family, barbeques and getting an adrenaline rush from amateur auto racing.
|
|
|
Andrew
Reeder
Andy Reeder serves as the
Director, HIPAA Privacy and Security at Rush University Medical Center, a major academic healthcare center in
Chicago. In
this role, Andy provides leadership and planning to achieve regulatory
compliance around information protection requirements. He is also very involved
in the implementation of privacy and security controls including the development
and implementation of policies and procedures, and the design of technical
controls for major enterprise applications. Andy has served as a leader in
Chicago-based information security services for several years and has previously
worked as the Director, Information Security for Central DuPage Hospital and as a Senior Manager with the
Security Services practice at Deloitte and Touche. Andy holds the CISSP, CISA,
and CISM certifications.
|
|
|
Evan
Tegethoff
Evan Tegethoff is CISSP,
ISO 27001 Certified Lead Auditor Director of Compliance Services for
Accuvant. Evan has been in the field of information security
and compliance since 1995. He has previously served as
representative to the INCITS CS1 Group, the US technical advisory group to
the ISO Cyber Security Standards, reviewing and voting on standards such as
ISO 17799 and ISO 27001. As Director of Compliance Services, Evan
oversees service delivery for all engagements within the practice. He has
published articles on security and compliance in numerous trade publications
and has spoken at a number of industry events, including the RSA Security
Conference, ISSA events, CIO forums and many others.
|
|
Ken Watson
As a Director, Ken is currently leading
USG’s enterprise-wide business continuity and records retention
efforts. Working with vendor partners, he ensures USG leverages its
emergency notification system, hot site and mobile trailers at its
alternate recovery locations, as well as other tools to help meet
USG’s fiduciary responsibility to its stakeholders. This
former Deloitte consultant, with an MBA from Northwestern
University’s Kellogg School, previously led the implementation of
SUN Identity Manager and policy reengineering efforts at USG to meet
Sarbanes-Oxley (SOX) regulatory requirements. Ken is a
frequent guest speaker on information security and risk management.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|