Speakers at the Enterprise Risk / Security Management Conference

Greg Bee
Greg Bee is the Director of Information Security Governance and the Chief Information Security Officer at Country Financial. In his role, Greg is responsible for the implementation and governance of Country Financial's enterprise information security program, including compliance and risk activities. Greg has over 25 years of Information Technology experience, with the last 13 years leading the Country Financial enterprise security program as CISO. Greg is responsible for Enterprise Information Security policy and governance decisions to support overall risk management activities. Greg has experience with risk management, governance, vulnerability management, network security, incident response, and IT Security operations. Greg is a C|CISO, CISM, CRISC, and CGEIT. Greg has a Bachelor's degree in Computer Science, a Bachelor's degree in Economics, and a Master's of Business Administration all from Illinois State University.
 
Paul Bivian
Paul Bivian is the Chief Information Security Officer and the HIPAA Security Officer for the City of Chicago. With nineteen years of IT experience, Paul has worked in the financial, managed security, insurance and now public sector. Over 60% of his career has been focused around security and is CISSP and CISM certified.
Paul has a strong track record of delivering IT and Information Security solutions around people, process and technology to provide business value while mitigating risk. Among other career achievements, he has optimized team resources and improved productivity through automation, sourcing, process improvements, definition of services and self service capabilities, led sourcing engagement for an Information Security department, and delivered a strategy for the Information Security department to leverage a managed security service model for their operational capabilities to expand and enhance their services.
At the City of Chicago, he is responsible for evaluating and responding to cyber risks to the City of Chicago assets. He leads the Information Security Office (ISO) in delivering and enforcing key objectives around strategy, framework, policy and procedures that align to the Cityís needs as well as legislative, regulatory and industry best practices. 
 
Brian Brush
Brian Brush is a Technical Account Manager for Qualys with over 15 years of computer security, technology risk and consulting experience. Prior to joining Qualys he was the Corporate Security Director at Sallie Mae, spent six years as a Manager for Deloitte & Touche's Security & Privacy Services practice and he has spent the last 6 years focusing on building and enhancing security programs for his employers and customers that fit with the requirements of their business operations. Brian has also been a Unix, Windows and firewall engineer and started his career by spending 18 months modifying mainframe code for Y2K. Brian holds a degree in Computer Engineering from the University of Cincinnati.
 
Chris Cronin
Chris Cronin is a Principal Consultant at Halock Security Labs in Schaumburg, IL in the Governance and Strategy Practice. Chris joined Halock after 15 years in IT leadership roles in operations, forensics and audit for private and public companies.

Chrisí involvement in regulatory compliance has a unique path, starting from forensic investigation at Enron, to bringing the first U.S. public company into compliance with Sarbanes Oxley, to now guiding companies toward compliance with Massachusetts CMR 17.00, HIPAA, ISO 27001, EU Safe Harbor, Sarbanes Oxley, PCI DSS and many other laws and regulations.

Chris is a certified GCIH and ISO 27001 Auditor, and holds a Masterís degree from Case Western Reserve University. He has served the SANS Institute on advisory boards and by developing course material for Audit and DLP.
 
Brian Dudey
Brian Dudey is a 15 year veteran of the IT solutions and security space. He has experience spanning the VAR, consultant and manufacturer sides of IT. He started with CDW Corporation where he gained experience across all technologies to give him a unique perspective on understanding different environments. It is from there that his passion for IT Security stemmed. He joined Imperva in 2013 as the Regional Sales Manager for Northeast IL and Wisconsin. Prior to Imperva, Brian spend over three years with Barracuda Networks where he was a featured speaker at customer and partner forums. Brian has a Bachelor of Science degree from Illinois State University and MBA from University of Phoenix.  
 
Victor Hsiang
Victor Hsiang is an accomplished Information Security, Risk and IT Professional with over 17 years of experience working within the Financial Services and Healthcare sectors. He has an established track record of delivering successful IT and Information Security solutions that manages risk while supporting business requirements. His experience includes implementation of technology, security audits, risk assessments, information records management, privacy concerns, compliance and legal issues related to security, forensics, security practices and policy development. He currently leads the Information Security program at GATX Corporation.
 
Larry Hunka
Larry Hunka is the Chief Information Security Executive at Northwestern Memorial HealthCare (NMHC). Driven by a Patients First mission, NMHC is one of the leading integrated academic health systems in the country Ė with a combined workforce of more than 26,500 physicians, nurses, staff and volunteers across eight Illinois counties. Larry is responsible and accountable for all aspects of the Information Security and Technology Risk function, including establishing and maintaining the Security Vision, Strategy and Program.

Before joining NMHC, Larry served in leadership roles at many prominent Chicago organizations, including: Northern Trust, JPMorgan Chase, Bank One, Heller Financial (later GE Capital), and Nicor Gas. His additional experience as an Information Security consultant afforded him the opportunity to engage Fortune 500 clients, developing custom security programs to meet diverse business requirements.
Larryís credentials include an undergraduate degree from Bradley University, a Masters degree from the Illinois Institute of Technology, CISSP certification, Six Sigma and ITIL foundations.
 
Robert Jamieson, EdD
Dr. Robert (Bob) Jamieson is currently the Information Security Director for UL and is responsible for leading the global effort to provide a secure information environment for ULís clients and system users. Prior to this role he was the General Manager, Life Safety, & Security Industry for UL LLC and was responsible for leading the UL Global LS&S Business Management teams.
Bob came to UL with extensive industry experience as a Director of Operations (Global) for Fire & Security in Johnson Controls, Director of Operations for a Mid-West based sprinkler contractor, and as a Regional Manager with SimplexGrinnel (Tyco). He has held positions within the Life Safety & Security industry as an engineer, project manager, operations manager, and general manager. During his time with Johnson Controls he also worked in Frankfurt, Germany for four years as Director of US Government Systems & Services for Europe, the Middle East, and Africa. While there he was responsible for JCIís entire portfolio of business with the US Defense Department, Department of State, and USAID.
Bob holds a bachelorís degree in Business Administration (with Information Systems emphasis) from National University, a Masters of Business Administration (with an International Business emphasis) from University of Redlands, and a Doctorate in Education in Organizational Leadership from Argosy University.
Bob is the former Chairman of ULís Security Council (2007-2013), an advisory body to UL on security issues and concerns.
Bob currently resides in Green Oaks, IL with his wife Barbara and their family.
 
Terry Kurzynski
Terry is the founder and Chief Innovation Officer of HALOCK Security Labs. With a background in security, networking, application development, audit, project management, and consulting, Terry has a unique skill set in providing strategic advice to clients particularly in a time of crisis. Terry is a CISSP, CISA, QSA, and ISO 27001 Auditor with over 20 years of experience in IT and Security Consulting. He Graduated from the University of Wisconsin with a B.S. in Computer Science. Terry founded what is now HALOCK Security Labs in 1996.
 

Fred Kwong

Dr. Fred Kwong has been in the information technology field for the past 15 years in working in education, financial, and telecommunication sectors. Fred currently works at a Farmers Insurance where he currently is the Global Head of Privileged Access Control. Fred is currently building a new program seeking to govern, control, and profile privileged identities throughout the enterprise.
Fredís work includes the creation of security and privacy policies, standards, and procedures. He is a subject matter expert in PCI, leading organizations to pass their report on compliance. With an extensive background in IT technologies, Fred continues to challenge the status quo by providing guidance in security and network architecture creating holistic designs that align to todaysí threat vector for organizations.
Fred has a passion of combining IT skills with organization development values. His broad range of IT skills has allowed him to view IT from many different paradigms and present them to the business partners in an easy to understand language. Fred servers as an adjunct professor at Benedictine and Roosevelt University teaching courses in international business, organization behavior, project management, and information systems. He holds a Ph.D. from Benedictine University and earned his masterís degree in business administration from Roosevelt University. Fred is a Certified Project Management Professional (PMP), a Certified Information Systems Manager (CISM), and a PCI Professional (PCIP).

 
Mike Skurko
Mike has over a decade of experience working with leading IT Security firms internationally. His experience ranges from security consulting to both software and hardware security solutions. Mike is currently a Director at the U.S. offices of Utimaco, Inc, a German manufacturer of Hardware Security Modules. Prior to working with Utimaco Mike was a Manager of Security Solutions for Coverity, a software company based in San Francisco that finds and fixes errors in code through static analysis. Mike has a B.A. in English Literature from Pitzer College, is fluent in Japanese and after twenty years as a resident of San Francisco now lives deep in the heart of the Santa Cruz Mountains.
 
Nathan Smolenski
Nathan is currently the Chief Information Security Officer for Zurich in North America; which includes information security management and accountability for Zurichís North American Commercial and North American Global Life Insurance Business units. Nathan and his team are based in Zurichís North American headquarters in Schaumburg, IL and support multiple locations across the US and Canada.
Before assuming his current post at Zurich North America in 2013, Nathan served as the Chief Information Security Officer for 21st Century Insurance based in Wilmington, DE. In that role, Nathan was responsible for the management of all information security activities relating to 21st Century Insuranceís direct market business, call center operations and the Farmers Hawaii subsidiary business unit.
Prior to joining the Zurich Insurance Group family of companies, Nathan held multiple roles in Information Security, Risk Management and Information Technology with various IT and financial services institutions; such as Talisys, Bank Julius Baer & State Street Corporation.
 
Barbara Vibbert
Barbara Vibbert is a networking security professional with nearly 20 years of experience, including security training, program development, and consulting. She has been information security architect and information security manager for a large, academic medical center in the San Francisco Bay area, information security manager for a 10+ hospital group in the DC Metro area, and a security consultant for a variety of HCLS, commercial, and government organizations. Barbara is currently a senior network security engineer for the Dell Software group with an emphasis on firewalls and network security.
 
Justin Webb
Justin P. Webb is the Information Security Officer at Marquette University. He holds GIAC certifications in Computer Forensics (GCFA), Incident Response (GCIH), Web Defense (GWEB), and Penetration Testing (GPEN). In addition to his information security background, Justin holds a J.D. from Marquette University Law School and has secured a federal clerkship with a district court judge, commencing September, 2014. He also holds a B.S. from the University of California, Los Angeles (UCLA).

Outside of work and school, Justin spends a lot of time writing on the interplay between technology and law. He is the co-owner of (and a contributing author to) Cybercrime Review (http://www.cybercrimereview.com), a blog that discusses not only cybercrime law, but also myriad emerging issues at the intersection of technology and the law. His posts have been cited by numerous sources, including: the Huffington Post, Business Insider, the Milwaukee Journal-Sentinel, CSO Online, and InfoWorld.
 

Clayton Williams, Jr.
Clayton is the Global Director of Information Technology Security and Compliance for Heidrick, Inc., the 60-year global leader in executive search; specializing in recruiting senior CXO and Board Members. Heidrick & Struggles holds approximately 25 percent of the Global Search Market.
Clayton has a well-rewarded and distinguished International career in several Fortune 500 Companies; such as OfficeMax and Tenneco Inc. He has both Big 4 and Independent Consulting experience and has worked for niche industry leaders such Carlson Wagonlit Travel. His career covers private and governmental entities such as the Illinois State Toll-Highway Authority, and Alabama State Department of Examiners of Public Accounts.
Claytonís education and development include a Ph.D., in Computer Information Systems; Master of Information Systems Management; Bachelor of Science in Technology and Accounting Information Systems. Clayton holds many certification including: C|CISO, CISSP, CISA, CISM, CISRCP and PMP

 
Mike Winkler
Michael Winkler is the Director of Information Security & Risk Management for Schawk, Inc. In this role, he has responsibility for building and continuously improving a global information security program. Winkler has more than 18 years of experience in the technical, operational and program management aspects of information security, privacy and architecture. Prior to his current position Winkler led several security and compliance functions for McDonaldís Corporation including the Global PCI Compliance practice. Winkler also holds a Masters in Information Systems Management, as well as a CISSP certification.