Speakers at the Enterprise Risk / Security Management Conference

Bill Amedeo
He has been in the field of technology for over 25 years. For the last two years, Bill has led the sales and partnership efforts of Access Governance and Identity Management solutions. Prior to this role, Bill spent over five years focusing on IT Service Management and Infrastructure Management.

Bill holds ITIL Foundations Certification. He is a graduate of Eastern Illinois University and resides with his wife and children in St. Charles, IL.
Greg Bee
Greg Bee is the Director of Information Security Governance and the Chief Information Security Officer at Country Financial. In his role, Greg is responsible for the implementation and governance of Country Financial's enterprise information security program, including compliance and risk activities. Greg has over 25 years of Information Technology experience, with the last 13 years leading the Country Financial enterprise security program as CISO. Greg is responsible for Enterprise Information Security policy and governance decisions to support overall risk management activities. Greg has experience with risk management, governance, vulnerability management, network security, incident response, and IT Security operations. Greg is a C|CISO, CISM, CRISC, and CGEIT. Greg has a Bachelor's degree in Computer Science, a Bachelor's degree in Economics, and a Master's of Business Administration all from Illinois State University.
Mark Chapman
Mark Chapman holds a Master’s Degree in Computer Science from the University of Wisconsin Milwaukee in the area of Cryptography and Data Security. Mark started his career in the mid-90’s publishing papers and presenting research at conferences in the United States, Asia and Europe. Since that time, he left the relative comfort of the theoretical and has been addressing real-world security, risk and compliance problems for organizations worldwide.
Mark is a CFE, CISSP, CISM, CRISC and is certified in the National Security Agency's Information Assurance Methodology. He is a member of the executive planning committee for the Eastern Wisconsin Chapter of the FBI Infragard.
Mark is a high-energy speaker who contributes to information security and risk related venues including the ISSA, ISACA, and the Wisconsin Bankers Association. He has been a guest lecturer at universities, technical colleges and nationally-recognized organizations including the FFIEC and the NASA Glenn Research Center.
Mark is the President and founder of Chapman Technology Group, Inc. – an innovative Security-as-a-Service provider with industry leading solutions including PhishLine.com® and RiskOptix® .
Michael Corn
Michael Corn is the senior Security and Privacy Officer for the Urbana campus as well as the Chief Information Security Officer for the University of Illinois. In addition to overseeing the campus Security and Privacy Office, recent and ongoing responsibilities include CALEA, PCI, security and privacy provisions in contracts for electronic services, strategic procurement, and information policy for the campus. Mr. Corn is a member of the Educause CALEA Technical Team and the State of Illinois PKI Policy Board. He is a graduate of the University of Colorado at Boulder and the University of Illinois at Urbana-Champaign.
Chris Cronin
Chris Cronin is a Principal Consultant at Halock Security Labs in Schaumburg, IL in the Governance and Strategy Practice. Chris joined Halock after 15 years in IT leadership roles in operations, forensics and audit for private and public companies.

Chris’ involvement in regulatory compliance has a unique path, starting from forensic investigation at Enron, to bringing the first U.S. public company into compliance with Sarbanes Oxley, to now guiding companies toward compliance with Massachusetts CMR 17.00, HIPAA, ISO 27001, EU Safe Harbor, Sarbanes Oxley, PCI DSS and many other laws and regulations.

Chris is a certified GCIH and ISO 27001 Auditor, and holds a Master’s degree from Case Western Reserve University. He has served the SANS Institute on advisory boards and by developing course material for Audit and DLP.
John Germain
As CISO, John Germain provides strategic vision and leadership for Xylem Inc, a newly formed company resulting from a spinoff from ITT Corporation. Focusing on information risk management, regulatory compliance and infrastructure security operations, John is a proven leader responsible for designing the overall information security program and architecture as well as building and maintaining Information Security capabilities for Xylem’s global multi-industry footprint. Prior to his current position, John was the Director of IT Security at ITT with previous IT infrastructure leadership roles in the areas of networking and access control. 
Mark Guth

Mark Guth, Manager of IS Security at Nicor Gas, has over 20 years of Management experience in the IT arena. Strong background in telecommunications, network, and operational management for companies such as LaSalle Partners, Ameritech, and Comdisco. For the past 5 years, my Nicor Gas focus has been on operational management, internal controls process development, Security, and Disaster Recovery.

Paul Kunas
Mr. Kunas is currently the Director of IT Security at Sidley Austin, a global law firm. Prior to Sidley, Mr. Kunas was the IT Security Governance and Strategy Manager for Exelon Corporation, one of the nation’s leading power utility companies, and a Senior Manager with Accenture, Information Security Consulting.

Mr. Kunas is a CISSP with over 15 years of information security experience consulting and implementing leading edge solutions. Mr. Kunas is responsible for corporate IT security policy and governance decisions to support overall IT risk management within his organization. Mr. Kunas has experience with risk management, vulnerability management, network security, identity and access management, incident response, and other security domains. Mr. Kunas holds a MS in Information and Communication Science from Ball State University.
Mic McCully
Mic McCully is a Senior Mobile Architect working as part of the WatchDox Team. Mic has spent 17 years working in both small startups and Fortune 100 software companies, including security companies such as Lancope, IBM and Watchfire. In addition to security, Mic has an extensive background in technologies and strategies focused around web quality, compliance and privacy, behavioral based recommendations and search, behavioral network security, collaborative web content management and CAD/CAM/CAE.
Chris Merkel
Chris is responsible for leading Brunswick’s global information security program. His goal is to ensure thatBrunswick has a clear understanding of our IT risk objectives and a defined, measurable strategy for reducing those risks.
Specialties: Strategic Planning and Information Security Program Management - Development of Comprehensive Policies, Technical Standards and Processes - Risk Assessment and Gap Analysis (ISO 17799/27002, CoBIT, SOX, PCI-DSS, NIST) - Data Breach & Privacy Law - Integrating Secure Development Practices Into Application Development Organizations - Incident Management - Forensic Analysis - Event Correlation - Investigations - E-Discovery - Vulnerability Assessment and Penetration Testing

Derek has been implementing security in corporate environments, as both an internal employee and a consultant, for five years. Although he has implemented firewalls, IDSs, and VPNs for various employers and clients he focuses heavily on securing Microsoft hosts and Domain structures. He has hardened hundreds of hosts in environments ranging from less than a dozen servers to enterprise environments with over 1000 servers and thousands of users. In conjunction with hardening he has also crafted and implemented standards, policies, and procedures to maintain the security of his employer's / client's environments.

Joe Skehan
Joe Skehan has specialized in information security for over 24 years. He is currently the Sr. Director of Corporate Systems Engineering for Venafi, Inc., the leader in Enterprise Key and Certificate Management. In this position, Joe works directly with customers to meet their business and technical needs for security solutions. Skehan consults with Global 2000 organization about their encryption challenges and supports customers in resolving those challenges. He is a frequent presenter and a trusted advisor. Skehan actively participates in many cross-functional industry initiatives and frequently shares best practices to address the needs of customers, press and analyst groups. He has advised major corporations on industry trends and the best ways to solve their key and certificate challenges.

Prior to Venafi, Skehan worked at Novell and several other leading technology companies. Skehan holds a Bachelor of Science degree in Electronics Engineering.

Neil Witek

Neil Witek is the VP of Information Security Governance and HIPAA Security Officer at AIM Specialty Heath. In his role, Neil is responsible for the implementation and governance of AIM’s security program, including Business Continuity and Vendor Risk Management. In 2011, AIM’s security program, safeguarding the provision of service to the health care industry, achieved formal certification against the ISO 27001 Standard. He has 20 years of IT/security experience working with organizations demanding a greater degree of sophistication regarding information security, control and governance. Neil is a CISSP, CISA, CIPP, PMP, GLEG and is a certified ISO 27001 ISMS Auditor.