SecureWorld Detroit 2024

Glen Sorensen is a Virtual Chief Information Security Officer (vCISO) with Cyber Risk Opportunities. He has worn numerous hats in his career, in areas such as security engineering and architecture, security operations, GRC, and leadership. He has held a variety of roles as an analyst, engineer, consultant, auditor, regulator, and information security officer for a financial institution.

Glen approaches problems with practical solutions that bring good business value and has worked across many sectors, including financial services, healthcare, manufacturing, and others. He has served as a consulting expert in a large legal case involving healthcare and cyber attack detection technology. He has been in IT and security for 15+ years, longer if you count years of misspent youth bending technology and countless hours of roleplaying games. He is a sucker for a good tabletop exercise and serves as an Incident Master for HackBack Gaming, the fun kind of TTX.

Bob Bacigal is the Assistant Vice President of Information Security at Amerisure Insurance. He has over 30 years of experience in information security management, risk management, incident response, disaster recovery, and business continuity planning. Prior to joining Amerisure, he held security management positions with Great Lakes BanCorp, the Federal Reserve Bank of Chicago, and Delphi Corporation. Bob is an active member of the InfoSec community and has served as President and Chairman of the InfraGard Michigan Members Alliance (IMMA) and is currently serving on its Board of Directors. He is an active member of the State of Michigan CSO Kitchen Cabinet, Detroit CISO Executive Council Governing Body, and the SecureWorld Detroit Advisory Council. Bacigal earned his bachelor’s degree in Criminology form Eastern Michigan University and is both a Certified Information Systems Security Professional (CISSP) and a Certified Information Security Manager (CISM).

Lisa Plaggemier is Executive Director at the National Cybersecurity Alliance. She is a recognized thought leader in security awareness and education with a track record of engaging and empowering people to protect themselves, their families, and their organizations. Lisa is a University of Michigan graduate (Go Blue!) and while she wasn’t born in Austin, Texas, she got there as fast as she could.

After holding leadership positions in IT and cybersecurity for well over 20 years, Karla Thomas now focuses on consulting and board involvement. In addition to being on the InfraGard board, she is an active member of the CXO Xchange board and the CyberRisk Alliance Michigan chapter, as well as other advisory boards.

• 28 Years in Chicago and Detroit Divisions
• Criminal & Counterterrorism Investigations
• SWAT Team member & Sniper Team Leader
• Firearms Instructor
• Tactical Instructor
• Active Shooter Coordinator
• Civilian Response Training - ASAPP/CRASE
• Law Enforcement Response Training - ALERRT

Tamara’s primary mission is to address the shortage of specifically educated and trained cybersecurity professionals across Michigan. She focuses on K-12 Education with the CyberPatriot Program and Recruiting, Retaining, and the Advancement of Women leading the Michigan WiCyS Affiliate’s programs.

She has facilitated the MCISSE Center’s unique engagement in cybersecurity teaching at the middle and high school level, and through innovative cybersecurity summer camps. In conjunction with this program, she created a digital badging system to further motivate and distinguish Michigan CyberPatriot participation, which is the first of its kind in the nation. She and her husband, Dan Shoemaker, published a groundbreaking book for Secondary school teachers entitled “Teaching Cybersecurity” with CRC Press.

In June, women from across Michigan stood up the Michigan WiCyS Affiliate and Tamara is leading that charge as President. WiCyS is a global Association that promotes Recruiting, Retaining, and Advancing Women in Cybersecurity, which fits seamlessly into Tamara’s life’s work. She encourages you all to get in the GAME, volunteer, and help ensure we can all properly retire someday!

Ahmeed is the Director of Cyber and Information Security at Inteva Products, a global Tier-I automotive supplier. In his role, he oversees three key areas: Cyber Defense, Information Security, and Data Privacy (with a particular focus on privacy requirements for the company’s EU entities). His strategic oversight and leadership ensures the organization’s cybersecurity program alignment with the business.

With over 20 years of experience across various sectors such as telecommunications, education, and manufacturing, Ahmeed brings a wealth of knowledge to his position. He holds a bachelor’s degree in Computer and Control Engineering and an MBA from Central Michigan University, along with several professional certifications.

As a cybersecurity leader, Janette drives global cybersecurity and information security programs, ensuring enterprise-wide protection and compliance with evolving regulations. Her curiosity fuels her passion for learning and staying ahead in the field.

Collaboration is key to success, whether working with C-suite executives, peers, or cross-functional teams to drive major security initiatives.

As the VP of Information Security & PMO within the IT department at Penske Automotive Group, Mo oversees the implementation and governance of cybersecurity and IT service management best practices across the organization. He has over 18 years of experience in leading and managing complex IT projects, portfolios, and programs, as well as ensuring compliance, data security, and risk management for multiple business units and stakeholders.

He is also an active board member and speaker at various professional associations and forums, such as ISACA, Cloud Security Alliance, and Cybersecurity Collaboration Forum, where he shares his insights and expertise on emerging trends and challenges in the cybersecurity and IT services. His specialties include Risk Management, Information Security Management, Compliance, Data Security, Project Management, Portfolio Management, Program Management, Mergers, Acquisitions and Divestitures, Organization Management, Change Management, and IT Management.

Daniel Ayala (@buddhake) is the Chief Security & Trust Officer at Dotmatics, providers of technology solutions for scientific R&D. Throughout his nearly 30 year career, he has led security, privacy and compliance groups in banking and financial services, pharmaceutical, information, higher education, research and library organisations around the world, and both writes and speaks regularly on the topics of security, privacy, data ethics, and compliance. Daniel is also the co-host of The Great Security Debate Podcast (@securtydebate).

Kristie Pfosi stands at the forefront of one of automotive’s greatest challenges: cybersecurity. A well-respected policy maker and program manager with deep technology expertise, Kristie has been a champion for best practices in cybersecurity for over a decade as a technical intelligence officer at the CIA and as an OEM employee, most notably helping FCA shore up their cybersecurity practice after one of their vehicles was infamously hacked. Her wide-ranging background in automotive also includes designing minivan seats, developing advanced service diagnostic tools, and working on internal combustion engine technology at companies like Magna and MAHLE Powertrain.

Today she is responsible for creating and implementing processes and methodologies for global incident responses, vulnerability management, and risk assessments at Mitsubishi Electric Automotive America. Her work also involves developing and integrating cybersecurity protection into advanced vehicle electronics with a focus on defense-in-depth and next-generation security.

Kristie holds two bachelor degrees in Mechanical Engineering and Electrical Engineering from the General Motors Institute (Kettering University), and has experience in all phases of the product development lifecycle—from advanced R&D, through product development and launch, to post-production operations and aftermarket service.

Maria is a highly experienced cybersecurity account executive with over a decade of experience in the industry. Her approach to leadership is centered around human relationships and leveraging human capital as a part of her sales process. She is an enthusiastic champion of her clients and focuses on solving their problems, rather than just hitting sales targets. She is also the Co-Founder of Mind Over Cyber, a 501c3 nonprofit focused on bringing mindfulness and mental well being to cybersecurity defenders.
Maria is always striving to think outside the box, approach situations with integrity, and maintain a constant curiosity to learn. She enjoys networking and building her tribe. She also knows that while work is important, being a wife and mother to her two daughters and instilling these values in them is the most important thing to her.

Nate Hammes is a Field Solutions Architect for Pure Storage, responsible for driving Cyber Resiliency through Pure and Alliance vendor solutions. Nate has over 25 years of experience, from end user to IT Architect (with 15 of those years in technical pre-sales roles) in areas including Cyber Resilience, data protection, storage, virtualization and data center infrastructures. Nate joined Pure Storage in August 2023.

Matthew Warner is the Chief Technology Officer and co-founder of Blumira, bringing nearly two decades of cybersecurity experience to the company. Prior to founding Blumira, Matthew served as Director of Security Services at NetWorks Group, an MSSP focused on compliance and ethical hacking.

Seeing a gap in the market, Matthew developed a threat detection and response platform designed specifically for SMBs that was easy to use and cost-effective. The success of this technology led him to found Blumira and focus on scaling the platform.

Passionate about cybersecurity education, Matthew frequently shares practical advice to help resource-constrained SMBs improve their security through webinars, articles, podcasts and more. His genuine desire to help SMBs, often the most vulnerable to cyberattacks, strengthen their security posture shines through.

Matthew’s leadership and innovative problem-solving were recognized in 2022 when he received the CTO of the Year award from the Globee Cybersecurity Global Excellence Awards. He was specifically honored for his notable research uncovering additional Log4j vulnerabilities and contributions to Blumira’s 2022 State of Threat Detection and Response Report.

Reanna Schultz is from Kansas City, MO, and attended the University of Central Missouri (UCM). She graduated in 2018 with her Bachelor of Science in Cybersecurity: Secure Software Development and in 2020 for Master of Science in Cybersecurity: Information Assurance. While being in the industry, Reanna has been exposed to numerous SANS hosted classes. Reanna volunteers as a National Cyber League coach and provides her industry expertise by doing guest speaker talks for numerous colleges and high schools across the Midwest to STEM students. Reanna currently works as a Team Lead at Garmin and directly reports out of their SOC.

Shane Harsch is a Principal Solution Engineer at SentinelOne, a SANS Instructor, and an Adjunct Instructor at the University of Michigan with more than 25 years of experience in military, manufacturing, consulting, and professional services. He is a commissioned officer in the U.S. Army (MI), holds degrees in business (MBA) and computational linguistics (BA), and maintains the following certifications: GCIA, GCIH, GCED, CISSP, CTIA.

Amanda Berlin is the Director of Incident Detection Engineering at Blumira, bringing nearly two decades of experience to her position. At Blumira she leads a team of incident detection engineers who are responsible for creating new detections based on threat intelligence and research for the Blumira platform.An accomplished author, speaker, and podcaster, Amanda is known for her ability to communicate complex technical concepts in a way that is accessible and engaging for audiences of all backgrounds. She co-authored an O’Reilly Media book "Defensive Security Handbook: Best Practices for Securing Infrastructure," a comprehensive guide for starting an InfoSec program from the ground up. Amanda is also the CEO and co-founder of Mental Health Hackers, a non-profit organization that aims to raise awareness about mental health issues in the cybersecurity community. Through Mental Health Hackers, Amanda is working to break down the stigma surrounding mental health and create a supportive community for cybersecurity professionals.

Rees is the lead threat researcher for the annual Waterfall / ICSStrive OT Threat Report and writes frequently on the topic of OT / ICS cybersecurity. Being solutions-focused, he champions INL’s Cyber-Informed Engineering program and regularly provides advice and commentary to government agencies and standards bodies issuing OT security guidance.
Rees is a professional engineer with 15 years of industry experience in power generation and transmission substation automation, food and beverage plant automation, public and government telecom, data centres and IT support. He holds a B.Sc. in Electrical Engineering from the University of Alberta.

Jared Peck is a Senior Threat Researcher for the Field Facing Threat Research Team at Proofpoint where he focuses on Latin American malware and phishing research as well as communicating threats and the threat landscape to customers. Prior to joining Proofpoint, Jared spent eight years at a Fortune 500 financial services company in several roles including Senior Cyber Threat Intelligence Analyst. Before changing careers to information security, Jared worked in the emergency services field for over 15 years as a firefighter and paramedic.

Mike Reterstorf is the Chief Information Security Officer at Plante Moran, a 100-year-old global Tax, Audit, and Wealth Management firm based in Southfield, Michigan. Mike has over 25 years of professional technical experience covering time in application development, system architecture, and most recently over a decade in Cybersecurity. Through his career, Mike has developed extensive experience in a number of areas including hospitality, automotive, critical infrastructure, and finance. Mike has a Bachelor of Science in History and Computer Science and a Master of Science in Computer Information Systems from the University of Michigan as well as a CISSP from ISC2.

Laura Clark serves as the chief information officer (CIO) for the State of Michigan, directing the state’s technology and security efforts. As deputy director for the Michigan Department of Technology, Management & Budget (DTMB), she also oversees operations for the department, which provides information technology, business, and administrative services to state employees and stakeholders, as well as Michigan residents, visitors, and businesses.

During her 20-year career in public service, Clark has embraced a hands-on, adaptable approach to leadership. Since being appointed as CIO by Gov. Gretchen Whitmer, she has helped the State of Michigan achieve success through many initiatives, such as the launch of the award-winning Michigan Secure mobile app and successfully securing $20 million in critical cybersecurity funding from the Michigan Legislature for statewide security enhancements.

In her day-to-day work, Clark values the contributions of every person on DTMB’s 5,000 member team and has the unique ability to connect her sense of purpose and service with the overall work and mission of directing the State of Michigan’s technology and security efforts. She leads by example, seeking out opportunities that will allow those around her to succeed. Throughout these efforts, Clark’s compassion, patience, experience, and skills as are helping DTMB and the entire state forge a successful path into the digital future.

Ryan Mostiller is a security leader in the Metro Detroit community, currently serving as the Security Operations Manager for BorgWarner. After more than a decade in both technical and management roles in security, Ryan enjoys any opportunity to engage with fellow practitioners and share learnings. Ryan has worked across various industries and within several Fortune 500 companies, most recently in the automotive industry.

Ryan has a Masters in IT Management from Oakland University and bachelors in Information Technology, along with security certifications from GIAC. You may have seen other presentations that Ryan has created and presented at, including SecureWorld, GrrCON, ISC2, and Evanta. Ryan has also developed and teaches an OU Executive MBA course at Oakland University titled "Cybersecurity for Executives."

Hemanth Tadepalli is a Cybersecurity Compliance Engineer at May Mobility, excelling in the realm of autonomous transportation services. With a rich professional background spanning roles at AlixPartners, Mandiant, Google, and SensCy, he specializes in ensuring compliance with stringent standards like ISO 27001, SOC 2, ISO/SAE 21434, and others. Hemanth co-founded MYCAP (Michigan Young Cybersecurity Analysts and Professionals), fostering budding talents in the cybersecurity domain. Appointed by the Michigan Department of State in 2022, he served on the Collegiate Advisory Task Force, determined and implemented recommendations to improve voter education and engagement among universities across the state of Michigan. The task force played an important role in election security, integrity, and combatting the result of misinformation being spread.

Hemanth has presented at the Detroit Automotive Cybersecurity Conference and various other prominent industry events, showcasing his expertise and thought leadership. He holds a Computer Science degree with a cybersecurity concentration and minors in Pre-Law, Innovation, and Entrepreneurship from Kettering University. Currently pursuing a Master's in Cybersecurity at the University of California, Berkeley, he continues to drive innovation and excellence in the cybersecurity landscape.

Jessie Gibbons is a dynamic IT professional specializing in cybersecurity, with a strong focus on partner and account management. With over twenty years of experience, he has excelled in nurturing strategic partnerships and managing key client accounts within the cybersecurity sector. Leveraging his expertise, Jessie has successfully cultivated collaborative relationships with industry-leading organizations, driving mutual growth and success.

Creating value-add business outcomes through security and privacy design is the core of my professional mission. I prioritize understanding my clients’ organizational goals and culture to ensure their infrastructure and processes reflect their ethos. As an IT-to-business translator with extensive technical and business advisory experience, I have successfully led audits testing controls from standards such as NIST CSF, ISO 27001, GDPR, and PCI-DSS. My contributions to the security community include publications in ISSA Journal and CSOonline, and presentations at RSA Conference, Blackhat Executive Summit, and DefCon. As a member of the SecureWorld Expo Advisory Committee, I remain actively engaged in advancing the field of cybersecurity.

Field Chief Technology Officer with more than 15 years' experience designing, deploying, and selling enterprise technology solutions. Currently helping enterprises secure their email, brand, and reduce risk.

Mary’s several years of leadership experience encompasses many areas of cybersecurity with a focus on IT risk management, IT audit, security awareness training, vulnerability management and incident response. Her extensive information security background includes working at Henry Ford Health System, Comerica Bank, WorkForce Software, Learning Care Group and most recently, Raytheon Technologies, where she continues to build and mature the company’s Cyber 3rd party risk program. Mary is a graduate from Walsh College with a Master’s degree in Business Information Technology, Information Assurance and holds several certifications including CISSP, CISA and CRISC.

Myriah Jaworski is a Member, Data Privacy and Cybersecurity, at Clark Hill Law. She represents clients in data breach actions, technology disputes, and in the defense of consumer class actions and related regulatory investigations stemming from alleged privacy torts and violations of the TCPA, BIPA, IRPA, and other state and federal privacy laws. Myriah also works with clients to devise and implement privacy and security compliance programs and to evaluate and implement new technologies, including enterprise-wide AI and machine learning tools. She is also been recognized as a Super Lawyer® for her Civil Litigation practice in 2018, 2019, 2020, and 2021.

Juman Doleh-Alomary is BorgWarner's Chief Information Security Officer and an active volunteer board member of the ISACA Detroit Chapter.  With over 15 years of experience in security, audit, investigation, compliance, and privacy policy/standards,

Juman most recently held the position of Director of Cybersecurity GRC at Little Caesar's Enterprises serving the Ilitch holdings portfolio of companies. Her prior positions include Director of IT Audit at Wayne State University and a significant tenure in IT and Risk Management at Ford Motor Company.

A leader within the ISACA community, Juman has held various roles, including past president and, notably, chair of the IIA/ISACA Spring Conference, which achieved a record attendance. She is active volunteer with Michigan Council of Women in Technology (MCWT), Women Security Alliance (WomSA), and on the advisory board of Women in Cyber (WiCyS) Michigan. 

An alumnus of the University of Michigan, she holds both a bachelor’s and a master’s degree, complemented by an impressive suite of certifications: CISA, CISM, CRISC, CDPSE, and ISO 27001.

Ryan Mostiller is a security leader in the Metro Detroit community, currently serving as the Security Operations Manager for BorgWarner. After more than a decade in both technical and management roles in security, Ryan enjoys any opportunity to engage with fellow practitioners and share learnings. Ryan has worked across various industries and within several Fortune 500 companies, most recently in the automotive industry.

Ryan has a Masters in IT Management from Oakland University and bachelors in Information Technology, along with security certifications from GIAC. You may have seen other presentations that Ryan has created and presented at, including SecureWorld, GrrCON, ISC2, and Evanta. Ryan has also developed and teaches an OU Executive MBA course at Oakland University titled "Cybersecurity for Executives."

Krista Arndt is the Associate CISO at SLUHN. As the Associate CISO, Krista is responsible for managing the security program's day to day operational effectiveness. Krista has been working in information security in various capacities for more than 15 years. In her previous roles, Krista assisted with developing and leading security programs in national healthcare, crypto, finance, and the Department of Defense. She currently holds her CISM and CRISC certifications and NHRA competition driver's license.

Krista is an active member of ISACA, serves as InfraGard Philadelphia Chapter’s Healthcare Sector Chief, serves on Neumann University's Business Advisory Council, and is Marketing Committee Chair for Women in CyberSecurity (WiCyS) Delaware Valley Affiliate. Through this service, Krista's mission is to give back to her community by providing mentorship and support for aspiring cybersecurity professionals, especially for women who wish to enter the field.

When off the clock, Krista takes her affinity for overcoming challenges to the garage and the race track, where she enjoys building and improving her own race car, competing as a driver in national drag racing events with her family, and using her racing as a forum to advocate for neurodiversity awareness and inclusion.