Tom is the Chief Security Strategist with ePlus and supports our national customers and sales team by providing security products and services as well as subject matter expertise. Tom leads the Strategic Security Consulting program nationally. Tom is a former CISO with a Virginia State Agency with 24 business units and serving 1.1M constituents annually. He brings over 30 years of experience in technology and security solutions to ePlus. He has written more than 100 articles in information security industry and is well respected globally as a thought leader in this space. Tom has been involved in all facets of security service delivery and has spent most of his career supporting clients with compliance, regulatory and risk management programs.

Jamie Herman serves as Chief Information Security Officer at Geller & Company. He has over 15 years of experience in implementing risk management, data privacy, and information security programs that focus on overseeing private client data protection, corporate governance and risk management strategy.

Jamie works with clients to help them understand and navigate privacy and technology risks specific to their families and associated entities. As a security leader, Jamie’s team leads efforts to build and sustain a strong and integrated risk culture in which staff and clients are educated on how to manage strategic, operational, and reputational risks.

Prior to joining Geller & Company, Jamie held several senior information security roles at multinational organizations, most recently as Information Security Officer at Ropes & Gray LLP. Here, he led innovative security initiatives including vulnerability management plans, security strategy development, and corporate policy designs. Additionally, he collaborated with a wide network of public and private industry information security experts to deliver forward thinking security thought leadership.

Jamie received a BS in Computer and Digital Forensics from Champlain College, and is a frequent speaker on information security and risk management topics

Tammy is the CIO/CISO of Venafi where she not only secures and protects Venafi, she partners globally to help CIOs and CISOs fortify their strategies to defend against increasingly complex and damaging cyberattacks against the trust established by cryptographic keys and digital certificates. Tammy’s professional experience, leadership and recognized domain expertise as the CISO of Global 250 companies will help fellow CISOs defend their organizations. With over 30 years of IT experience and is noted by her peers to be a results-driven and passionate executive leader with expertise envisioning and leading IT Security, Technology and Operational Support based organizations. She is a Certified Information Security Manager (CISM) and has held her F-ITIL Certification since 2001. She is well known for her ability to step in and fix broken processes and departments and building amazing teams with exceptionally strong morale, self-confidence and teamwork! Tammy’s professional affiliations include; ISSA, ISACA, InfraGard, FS-ISAC and the Information Risk Security Board. She is also a proud member of the ISACA Cybersecurity Task Force. Due to her experience and passion, Tammy is a sought after keynote speaker and you will find her openly speaking/moderating for security roundtables, panel events and sought after to speak on reengineering information security organizations and how to make them high performing teams! One of her passions is to volunteer her knowledge regarding IT Security, Career Planning and Mentoring/Coaching expertise at non-profit companies, diverse chapters and IT events. Outside of her passion for sharing her knowledge at speaking events, she has appeared in many articles and well as authored many pieces for many newspapers and publications globally including; CIO Review, CSO, CIO Insight, Computable Magazine, Techtarget, Decrypted Tech and recently selected to be a regular contributor to the IDG Contributor Network (ICN). May 2014, Tammy was featured on the last cover of CSO Magazine. In 2014 Tammy was made a Distinguished Fellow by the Ponemon Institute. She has many notable accomplishments, some of which include Woman of the Week Australia and a finalist for Women in Technology during 2014. She is listed as one of the top 25 breakaway CISO leaders by Evanta Global CISO Summit for 2013. She was listed as one of the Top Women in Technology for 2013 by CableFax magazine. Tammy is the 2012 and 2010 North American Information Security Executive People’s Choice of the Year Winner at the ISE Awards. She was a finalist for Information Security Executive of the Decade in 2012 and Executive of the year for North America in 2012 and 2010. Tammy has been married to her husband John for 29 years. They have three (3) boys and seven (7) grandchildren. Outside of her security career, she focuses on her passion as an executive leadership mentor and coach. Tammy enjoys spending time with her family, attending sporting events, traveling, golfing and is an avid cook.

Tony is the founder and CEO of VerSprite – a global security consulting firm based in Atlanta, GA. He is also the author of Wiley’s Risk Centric Threat Modeling, a book based upon a patented methodology that applies a risk or asset centric approach to threat modeling. Tony has spoken at numerous OWASP, ISACA, ASIS, ISC2, ISSA, BSides conferences across four continents on the topics of application security, risk management, threat modeling, secure software development life cycles, and also conducted various training briefings to both development groups and company executives who need to understand the impact of security programs to business/ product objectives. Tony’s 20 years of IT/IS experience began with hands-on operations in the areas of system administration, network engineering, software development. His IT formation, combined with his work in penetration testing, dynamic/ static application testing, security architecture, vulnerability and risk management, has served Tony well to speak on realistic challenges and solutions for IT groups and businesses alike in applying realistic security measures to enterprise processes. Tony serves as interim CISO for various startups and mid-size organization and is responsible for the overall build out of these security programs.

Prior to starting VerSprite, Tony served as a professional security consultant at Dell-SecureWorks and Symantec, and also worked as a security leader across various Fortune 500 banking, financial, and information services organizations in the global Fortune 500 ranking. Tony’s leadership roles experience in security includes companies such as Equifax, SunTrust Banks, Morgan Stanley, Symantec, and SecureWorks.

Since late 2007, Tony leads the OWASP Atlanta Chapter, where he manages monthly workshops and events for the Atlanta web application security community. He also organizes BSides Atlanta – an underground grassroots un-conference that takes place annually and aims at providing new ideas and real conversations/ solutions around common challenges in InfoSec today.

Abhi brings 15+ years of combined consulting and industry experience. He has led multiple projects on Establishing Security Operating Centers (SOC), Cyber Security analytics, mitigating advanced persistent threats (APT), cyber threat management framework design and implementation, and cyber threat intelligence. Prior to Deloitte he was leading the information security function at a mid-size ($2.5B) pharmaceutical company. His experience includes product development/management at reputed security vendors like McAfee and Nokia-Checkpoint.

Charles L. (Chuck) McGann, Jr., is an information security professional at CRGT, a government contractor providing IT and Security services to DOD, Army, USPS, VA among other agencies. In his current role, McGann is working to leverage CRGT capabilities among the Federal Civilian agencies as well as review emerging vendors for possible partnerships for increasing agency support needs. His experience is helping solidify the strategic initiatives roadmap for Cyber and Intel Solutions.

Chuck is the former Corporate Information Security Officer for the United States Postal Service (USPS). In this capacity, he had the responsibility of securing an intranet that is one of the largest maintained by any organization in the world, with over 200,000 workstations; over 45,000 retail terminals; more than 16,000 servers and over 220,000 Mobil Delivery Devices. The USPS infrastructure encompasses over 600 business applications that support all aspects of business operations as well as movement of the mail.

In his 27 years with the Postal Service, Chuck held numerous positions, Including: Manager, Information Systems, Acting Postmaster, Business Systems Analyst, Business Project Leader, Distributed Systems Security Specialist, Manager, Information Security and Incident Response Team Manager.

Chuck holds an MBA from Strayer University, a Bachelor’s degree from the University of Massachusetts, and two Associate’s degrees from Springfield Technical Community College. He is a certified information systems security professional (CISSP), a certified information security manager (CISM) and holds a certification for information assurance methodology (IAM) from the National Security Agency (NSA).

He is the former Co-Chair of the (ISC)2 Government Advisory Board on Cyber Security, and served as a Government Information Security Leadership Awards Judge for the last three years and chaired the Federal CISO for CISO’s quarterly meetings. He is also a member of the Symantec Government Education Advisory Board, the RedSeal Customer Advisory Board, Over his distinguished career has received numerous awards and recognition. He belongs to various national, regional, and local organizations such as the Government Technology Research Alliances’ group, FBI InfraGard, National Security Agency (NSA), and Information System Audit and Control Association (ISACA) to name a few.

Michael Woodson is a Senior Security Management professional with an extensive background in Network and Information Security, Data Privacy, Fraud Management, Technical Investigations, Regulatory Compliance and Policy Development, Litigation Preparedness, Enterprise Governance, Risk Management, Computer Forensics and Application Security Threats and Countermeasures.

He has 12 years of Law Enforcement experience obtained directly from the Boston Police Department and over 20 years of combined experience in Computer Forensics and Technology which includes conducting electronic evidence discovery investigations and litigation support for matters related to Internal Fraud, Intellectual Property Theft, Embezzlement, SEC issues, and Network Intrusions.

Mr. Woodson has consulted with various municipalities, corporations, and financial institutions in the United States and internationally on issues related to Computer Crime Capacity Building Initiatives related to legislation development, critical infrastructure protection, judicial reform corruption related matters, crime scene management, fraud and financial crime investigations in developing economies such as Indonesia, Vietnam and Guyana South America. He has served as a consultant to the U.S, Department of Justice, United States Agency for International Development (USAID), U.S Department of State, Indonesian National Police, Australian Federal Police, Microsoft Corporation and The ASEAN Secretariat on Transnational Crime related matters.

He is a frequent lecture on Computer – Related Crimes, Privacy, Network and Information Security related topics and serves as an Adjunct Professor at Northeastern University, Curry College, Cambridge College, Endicott College and has been a visiting Adjunct Professor at Stimik Perbanas in Jakarta, Indonesia where he taught courses on subjects related to Computer Crime Investigative Techniques, Network and Internet Security, Information Security Management and Cyber Crime Legal Issues and the Terrorist Threat.

Specialties: AML Compliance Programs and Investigations, Intrusion Investigations, IT assurance, IT Governance, Incident Response, Enterprise Risk Management, Cyber Forensics, Litigation Risk Management, Penetration Testing, Data Privacy , Application Security and Regulatory Compliance, and Third Party Risk Management.

Brian is currently the CISO & Managing Director for Cybersecurity Services for Duff & Phelps globally where he is responsible for all global cybersecurity initiatives and technology risk management. Prior, Brian was the Chief Information Security Officer for Abacus Group, the largest cloud provider within the financial services sector. He was responsible for the development and maintenance of Abacus’s information security program. Prior to joining Abacus, Brian was Chief Information Security Officer at Condé Nast, where he was responsible for overseeing the security and risk management for all digital and technology operations. He led the company’s integration of information security efforts in the development of next-generation digital products and services. Brian has held several senior information security management positions at Sony Music Entertainment, and Vonage. He is CISSP certified and has a B.S. in Information Security and an M.S. in Homeland Security from Monmouth University.

Peter “Pete” Clay is the Chief Information Security Officer for Qlik based out of Radnor PA. He has more than 20 years of experience in managing the growth of technology and security services to public and private sector entities globally. Extensive domain experience include security operations center innovation, enterprise risk management, identity & access management, information security consulting, organization and process improvement, application design and implementation, application security, business continuity, privacy, and information systems auditing. He has also organized and led multidisciplinary business and technical teams for assessing, designing, implementing, and testing the security and control environment for a broad range of enterprise security, enterprise resource planning, information systems, and eBusiness transformation projects.

Mr. Clay’s clients served include many large, global entities as well as The Department of Defense, The US Navy, The Department of Homeland Security, The Transportation Security Administration, The United States Mint, National Oceanographic and Atmospheric Administration, and the Department of Health and Human Services.

Mr. Clay attended Oxford University as an undergraduate and has a degree from Hendrix College. He has been a Certified Information Systems Security Professional for the last 15 years.

Igor Volovich presently serves as Vice President and head of Information Security and Cyber Risk Management of Schneider Electric for the Americas region.

Schneider Electric is a global leader in energy, efficiency, process, and operations management, industrial automation software and systems, and energy and safety controls. Following a recent merger with Invensys plc, the combined enterprise represents more than 185,000 personnel working in over 120 countries, with annual revenues in excess of €23 billion.

Schneider Electric businesses represent unique cyber security challenges posed by extensive participation in critical infrastructure segments such as energy, oil and gas, utilities, chemical, food & beverage, and nuclear industries.

Before joining Schneider Electric, Mr. Volovich spent seven years in private practice as the Managing Director of iFF Consulting Group, advising senior leaders of Fortune 500 enterprises and public sector clients on regulatory compliance, governance, security strategy, risk management, incident response, internal investigations, and cyber crisis management.

Prior to entering private practice, Mr. Volovich served as a senior and founding member of the Corporate Incident Response and Intrusion Detection Team of Microsoft’s Trustworthy Computing (TwC) organization, where he was responsible for the architecture and management of security controls deployed in protection of Microsoft’s global information assets, as well as internal investigations and incident response functions.

Mr. Volovich has worked with numerous public, private, and governmental organizations, including Microsoft, MSN, IBM, AT&T Wireless, Freddie Mac, FINRA, Estée Lauder, Invensys, US Department of Defense, British Telecom, Pep Boys, Toyota Financial, Aviva, as well as a number of pioneering technology startups such as TeraBeam Networks, eCharge, and LivingSocial.

Mr. Volovich currently holds the Certified Information Systems Security Professional (CISSP) designation from the International Information Systems Security Certification Consortium (ISC²), Certified in Risk Controls (CRISC), Certified Information Security Manager (CISM) and Certified Information Systems Auditor (CISA) designations from the Information systems Audit and Control Association (ISACA), as well as the Certified Information Privacy Professional (CIPP) certification from the International Association of Privacy Professionals (IAPP).

Mr. Volovich holds active memberships in ISC², North Texas chapter of ISACA, InfraGard North Texas, US DHS ICS‐CERT, Alliance for Gray Market and Counterfeit Abatement (AGMA Global), and the Airborne Law Enforcement Association (ALEA).

In addition to his professional pursuits, Igor enjoys the field of aviation, holding licenses as a fixed wing and helicopter pilot from the FAA. Seeking to leverage his skills, Mr. Volovich has volunteered for three years as a Flight Officer with Virginia Airborne Search and Rescue Squad serving the Northern Virginia and DC area communities, attaining the rank of Lieutenant and serving as Chair of the Membership Committee and Fundraising Committee member.

VJ Viswanathan is an accomplished Cyber Security, Privacy, Compliance and Risk Management executive with over 15 years of seasoned experience in creating and leading highly effective and successful Risk management programs at multiple global brands. He serves as VP & CISO for HD Supply (NASDAQ:HDS).

VJ serves on Startups, Industry & Professional advisory boards; as a progressive thought leader he is a featured author and keynote speaker at Industry events and publications. As a strategic advisor for early and growth stage technology ventures, VJ specializes in developing competitive product road map and guides in opportunity mapping. VJ has developed a unique intelligence sharing network with his key industry peers to effectively combat cyber threats in real time.

National Practice Lead for IAM at OpenSky Corporation

Rakesh Radhakrishnan is an experienced executive architect well versed in enterprise security architecture and identity driven integrated ESA. He is also a subject matter expert in integrated identity infrastructure that includes IDM, IAM, GRC, entitlement management, risk management, RBAC, audit, compliance, and the integration of this infrastructure for mobile security, cloud security, data center security, network security, application security and data security. He has extensive experience of IT and cloud regulatory compliance and audit frameworks including ISO 27002, ISA99, SSAE16, HIPAA, PCI, and more. He has an MBA and executive M.S. from MIT and is certified as EC Council CISO, CISSP, CRISC, CGEIT and CCSK. He is a prolific author (three books and 50+ papers), an inventor extraordinaire (40+ inventions), keynote speaker (100+ speaking engagements; 20+ keynotes), thought leader in this space (integrated sec in stack), and an architect “guru” who enjoys extensive collaboration.

Erin Patrick Owens is the CISO and VP for the Office of the CISO for Damballa, a leading cyber defense and global threat intelligence platform provider serving Internet Service Providers and both commercial and government enterprises. He has nearly 20 years of IT experience and has served as a CISO at 8 highly regulated companies and has completed over 100 IT security related projects. His work has been featured on FDIC roadshows, Gartner case studies, and success stories for the Unified Compliance Framework. Mr. Owens is an expert practitioner in the disciplines of privacy, information security, risk management, and resiliency and he has extensive experience within the healthcare and commercial banking sectors. Mr. Owens is an EC-Council fellow certified and a Forensic Hacking Investigator and has participated in past events including debates, presentations, and panel discussions.

Jason Pufahl is the Chief Information Security Officer for the University of Connecticut. He has 20 years of infrastructure and information security experience and has spent the last 10 years dedicated to information security and privacy. He has responsibility for information security for the institution, encompassing security awareness and training, disaster recovery, risk management, identity management, security policy and regulatory compliance, security analytics, and controls implementation.

Jason works closely with both the administrative and academic areas of the University. He is a member of the University’s Data Governance Committee, Joint Audit and Compliance Committee, and Public Safety Advisory Committee. He is also member of the University IRB with a primary focus of improving data privacy and security practices related to institutional research.

Jason has a Master’s in Education Technology and has a passion for professional development, security training and awareness. He designed and ran an information security and awareness game called HuskyHunt,founded the Connecticut Higher Education Roundtable on Information Security (CHERIS) to provide a quarterly forum for sharing of best practices in the field of information security targeted at higher education institutions in Connecticut and is active in the security community nationally. He is a frequent conference speaker and is a member of the NERCOMP Board of Directors.