SecureWorld Houston 2025

Larry Wilson was formerly the Chief Information Security Officer for Sumitomo Pharma Americas, Inc., Worcester Polytechnic Institute, and the University of Massachusetts (UMass) President's Office. In the CISO role, Larry was responsible for developing, implementing, and overseeing compliance with the SMPA / WPI / UMass Information Security Policy and Written Information Security Plan (WISP). In addition to designing and deploying the respective cybersecurity programs, Larry has developed and delivered cybersecurity training at multiple industry events, workshops, training venues, etc. Courses include Designing and Building a Cybersecurity Program, Designing and Building a Ransomware Program, and Designing and Building a Third-Party Risk Program. Larry has also worked with multiple companies in multiple industries to help design, build, and maintain their Cybersecurity Programs, Ransomware Program, and Third-Party Risk Programs.

Rob Finch is a Cyber Risk Analyst with Cyber Risk Opportunities (CRO). His job is to deliver the Managed Program and other cyber risk services offered by CRO.

Rob graduated with honors from Washington State University with a Bachelors in Management Information Systems and went on to work for a local tech startup in the greater Seattle area. Before joining CRO, Rob interned at a local cyber testing facility based in Bellevue, Washington, and gained his first exposure to the fast-paced world of cybersecurity. His interest in cybersecurity has only increased as the cyber landscape continues to evolve. He looks forward to helping companies manage these constantly changing risks. Outside of work, Rob enjoys exploring the amazing state of Washington with his family.

Manoj Tripathi is a seasoned CISO and has decades of experience in security, technology and leadership, across SaaS, Products and Consulting companies. Manoj is passionate about security and technology topics and has presented on security program management strategy and secure development topics at various security conferences. He holds the C|CISO and the CISSP certifications.

An accomplished IT Security leader, John has more than 20 years’ experience spearheading the formation and optimization of several exceptional cybersecurity programs and teams across multiple industries, to include Gaming/Entertainment, Healthcare, and Manufacturing.

John serves as the CISO for JB Poindexter & Co. He leads the cybersecurity program and mission to protect the organization against cyber threats while supporting core business and operational objectives.

Octavio Herrera, a cum laude graduate from Norwich’s University MSIA program, has held a number of information security positions within Fortune 500 companies. During his 25+ years career he has led the regulatory compliance program at Alcoa’s largest business unit, managed the IT Security program for American Family Life Assurance Company of Columbus (AFLAC), served as Information Security Officer for the Houston Independent School district – the seventh largest district in the nation and the largest in Texas - an since 2013, he leads the cyber security practice for Occidental Petroleum Corporation (OXY).

Mr. Herrera has been honored as one of the “Top 40 Hispanics under 40” by Hispanic Engineer & Information Technology magazine and featured in Fortune Magazine’s March 2009 article, “How to Get a Job”.

Mr. Herrera is one of the original founding members of the Oil and Natural Energy Information Sharing and Analysis Center (ONE-ISAC) where he currently serves as a chairman of the board and has been honored as a finalist for the 2024 Houston CISO ORBIE Award, a program that recognizes excellence in technology leadership for Cyber Security leaders nationwide.

Highly effective and successful senior executive with 25 years in the energy industry. Experience and knowledge spans different markets, products, business models and disciplines.
Proven track record of:
• Driving resolution of the top challenges facing different groups, companies or individuals, whether as a member of its management team or as an outside expert
• Acting as change agent to effect turnaround situations and solve critical problems
• Balancing between an entrepreneurial culture and the discipline to achieve the high standards and controls of a large public company
• Doing more with less (PAALP ranked #5 in Forbes 500 in revenues/employee in 2009)

Monica Taylor Boggan is the Head of the Business Information Security Office (BISO) at WM, where she drives the alignment of cybersecurity with core business priorities across WM’s Digital, Corporate, Customer, Operations & Sustainability, and Healthcare Solutions divisions. Her work centers on building stronger third-party risk capabilities, leading AI security oversight, and bringing greater clarity and transparency to cyber risk.

With over 25 years in technology and deep expertise in cybersecurity, Monica has led transformative efforts in enterprise risk management, security strategy, and cyber governance. She has implemented third-party risk management systems, managed AI governance assessment programs, and designed executive-level reporting to better inform risk-based decisions.

A native Texan, Monica holds an MBA from Lamar University and maintains certifications as a CISSP, CISA, and CRISC, reflecting her commitment to both strategic leadership and technical excellence. Monica is recognized for her ability to translate complex security issues into actionable guidance for business leaders, enabling informed decision-making at every level. Her work spans the intersection of cybersecurity, innovation, and risk, with a strong focus on empowering organizations to build secure, resilient digital environments.

Romen Brewer is an accomplished Business Information Security Officer (BISO) with a track record of driving security and technology efforts to meet business demand across various industries (Oil & Gas, Software/Gaming, Financial services, and Healthcare).

As a BISO at Humana, he serves a as trusted advisor ensuring security is a business enabler while reducing risk and delivering on evolving AI/ML governance. Passionate about translating security challenges into business-enabling solutions, Romen has leveraged his unique perspective to several large-scale enterprises impacting with multiple levels of stakeholders.

‘What excites me most about cybersecurity is the constant evolution—staying ahead means continuously learning how technology innovation, business strategy, and security risk intersect in new and unexpected ways.” - Romen

Experienced data and security professional with a demonstrated history of working in the financial services industry. Skilled in architecture design, data patterns, data services to achieve desired business outcomes, information management, data governance, and data security practices. Strong research professional with a Doctor of Philosophy - PhD focused in Information Assurance and Security.

Robert is passionate about transforming how businesses approach their cybersecurity challenges. His customer-centric approach has helped hundreds of organizations strengthen their security posture while maintaining operational efficiency. Throughout his career, he has been particularly passionate about democratizing enterprise-grade security solutions for smaller businesses.
Known for his dynamic speaking style and practical insights, Robert regularly shares his expertise on topics including sales leadership, channel strategy, and the evolving cyber security landscape. His hands-on experience working with both technical and non-technical stakeholders makes him a valuable voice in bridging the gap between security requirements and business objectives.

Melecia McLean is a Security Behavior and Culture Lead at a leading tech organization, where she applies her expertise in human risk management, social engineering, and AI to develop and enhance a proactive security culture. She leads dynamic cybersecurity awareness programs that equip individuals to protect their data, fostering a culture of vigilance, adaptability, and resilience. Melecia focuses on bridging human behavior with technology to strengthen organizational security. A passionate advocate for diversity, she served as Managing Director of Girls in Tech - Houston, championing women’s leadership in cybersecurity and STEM. Melecia is also dedicated to empowering the next generation of kids to explore cybersecurity, ensuring a future of inclusive and accessible technology.

Andrei has been in cybersecurity for 20 years; the last 13 he has been working for Bitdefender. In his day to day role, he helps enterprises to adopt Bitdefender inside their security stack while ensuring a smooth transition to our tools and services.

Dr. Anand Singh is an information security executive with a history of bridging the gap between IT and business. He has led significant enterprise transformations on behalf of Fortune 20 companies. He has also driven success of several early stage companies and has shaped Information Security industry in his illustrious career. He is currently Chief Information Security Officer (CISO) at Symmetry Systems. Prior to this role, he was the CISO at Alkami Technology and Caliber Home Loans. He has also served in leadership functions at UnitedHealth Group and Target.

Dr. Singh is an adjunct faculty at Mitchell Hamline School of Law. He has a PhD in Computer Science from University of Minnesota and M.S. in Computer Science from Purdue University. Dr. Singh also holds CISM and CISSP professional certifications. He is an accomplished speaker and author with several notable keynotes and publications under his belt.

Cedric Leighton is a CNN Military Analyst and a retired United States Air Force Colonel. On CNN, he has provided incisive commentaries on the Israel-Hamas War, the War in Ukraine, the U.S. withdrawal from Afghanistan, and numerous other conflicts around the world. His analysis has been seen by millions of viewers around the world and provided much needed context to some of the most pressing national security issues of our time. As a U.S. Air Force officer, Colonel Leighton served at U.S. Special Operations Command, the Joint Staff, and the National Security Agency, where he helped train the nation's cyber warriors. A Middle East combat veteran, he is the recipient of numerous military awards, including the Defense Superior Service Medal and the Bronze Star. After serving 26 years as a U.S. Air Force Intelligence Officer, Col. Leighton founded a strategic risk consultancy and became the co-founder of CYFORIX, where he advises multinational businesses on developing better cyber strategies designed to reduce risk and unpredictability.

Paul has a passion for security, education, and bad puns, bringing them together whenever possible. He has spent the last 2 decades protecting people from the usual suspects of hackers, criminals, and bored teenagers and is focused on teaching how to connect with people through storytelling and energizing presentations to change behaviors. He enables organizations to train their users and reduce the element of human risk.

Prior to working in security and education, Paul had 6 years of swashbuckling adventures with the US Navy. He’s a big fan of colleges, having attended 7 different ones. He most recently earned a doctorate in education and teaches technology content to high schoolers, college students, and adults. He's figured out that strong security starts with teaching how to behave online. It isn’t rocket science, but just in case he has a degree in that, too.

Eric Botts is Director, Global Cybersecurity Program and Assistant Professor of International Studies at the University of St. Thomas teaching courses on Cyber Warfare, Cyber Ethics, Geopolitical Risk, Digital Governance, and Introduction to Enterprise Cybersecurity. Mr. Botts is a lecturer at the Women’s Institute of Houston teaching a course entitled The World According to Eric dealing with current events in geopolitics. Mr. Botts received his Bachelor of Arts degree in Political Science from St. Mary’s University and Master of Security Management from the University of Houston Downtown. After serving for 31 years in the U.S. Department of State as a Foreign Service Officer (Santo Domingo, Seoul, Dublin, and Nassau), Assistant Director of the Houston Passport Agency and an Information Systems Security Officer. During his federal career he served as Program Chairman of the Gulf Coast Federal Safety Council, and as a member of the Federal Executive Board. Mr. Botts teaching experience includes the University of Houston Downtown for courses in cybersecurity and organizational resilience in the Masters of Security Management Program.

Mr. Botts retired and went to work in the private sector. In the private sector Mr. Botts worked as a security project manager and consultant for Swailes & Co. Inc. specializing in cyber security, risk management, business continuity, due diligence, travel security, and investigations until 2020. Mr. Botts is a founding board member of the Foreign Policy Alliance and has spoken on foreign policy issues to civic groups, colleges, and the media. In the cyber security community, he sits on the Secure World Advisory Council, is a member of the Internet Governance Forum USA. He authored and published two novels Conversations with An Alien (2004) and The Circle - Portrait of an American Family (2015).

Paul Kinder is a distinguished member of CDW’s Global Security Strategy Office (GSSO), where he provides advanced security consulting and enhances the solutions portfolio for CDW’s cybersecurity, data privacy, and Artificial Intelligence (AI) services. As a recognized speaker on topics ranging from AI to cybersecurity maturity, Paul has delivered impactful presentations within CDW, to customers, and to government organizations. He collaborates closely with customers and internal stakeholders to develop and deliver effective solutions and exceptional value.
With experience in building and supporting data privacy and cybersecurity teams and developing and expanding cybersecurity and risk management programs for diverse clients, Paul has successfully led and executed multi-year cybersecurity projects across various industries.

Paul's expertise spans across cybersecurity program development, cloud computing, artificial intelligence governance, risk assessment and gap analysis, risk management, PMO management, process development and improvement, and the security development lifecycle (SDLC). He has developed and implemented comprehensive cybersecurity programs in the medical, legal services, and financial services industries, spearheaded complex risk assessments and cybersecurity programs, and supported a cybersecurity services delivery framework for a premier consulting organization.
He holds a B.S. in Business Administration from Kansas State University, an M.B.A. from Texas Christian University, and is currently earning an M.A. in International Security Studies from the University of Arizona. With over thirty years of industry experience, Paul possesses twenty active credentials in cybersecurity, data privacy, service management, and project management.

John Loya is the Vice President of Field Engineering at Cyberhaven. He has previously held roles at Microsoft, McAfee, and Digital Guardian. In his current role he assists customers and prospects globally with their data protection needs in terms of compliance, governance, privacy, classification, and security. He has worked previously as a developer, quality assurance engineer, and an automation engineer. He has been in the security space for the past 19 years with a strong focus on Data Loss Prevention and Insider Risk Management.

Jason Lam is a Senior Manager with Schellman based in Austin, TX. Prior to joining Schellman in 2015, Jason worked as an Enterprise Risk Management Associate at a regional audit firm, specializing in Sarbanes-Oxley (SOX) audits and System and Organization Controls (SOC) examinations. Jason is now primarily focused on ISO certifications for organizations across various industries as well as oversight and development of Schellman's ISO practice. Jason has achieved the following certifications relevant to the fields of accounting, auditing, and information systems security: Certified Public Accountant (CPA), Certified Information Systems Security Professional (CISSP), and Certified Information Systems Auditor (CISA).

Danny Manimbo is a Principal with Schellman based in Denver, Colorado. As a member of Schellman’s West Coast / Mountain region management team, Danny is primarily responsible for leading Schellman's AI and ISO practices as well as the development and oversight of Schellman's attestation services. Danny has been with Schellman for 10 years and has over 13 years of experience in providing information security and data privacy audit and compliance services. Danny has achieved the following certifications relevant to the fields of accounting, auditing, and information systems security and privacy: • Certified Public Accountant (CPA) • Certified Information Systems Security Professional (CISSP) • Certified Information Systems Auditor (CISA) • Certified Internal Auditor (CIA) • Certificate of Cloud Security Knowledge (CCSK) • Certified Information Privacy Professional – United States (CIPP/US)

Octavio Herrera, a cum laude graduate from Norwich’s University MSIA program, has held a number of information security positions within Fortune 500 companies. During his 25+ years career he has led the regulatory compliance program at Alcoa’s largest business unit, managed the IT Security program for American Family Life Assurance Company of Columbus (AFLAC), served as Information Security Officer for the Houston Independent School district – the seventh largest district in the nation and the largest in Texas - an since 2013, he leads the cyber security practice for Occidental Petroleum Corporation (OXY).

Mr. Herrera has been honored as one of the “Top 40 Hispanics under 40” by Hispanic Engineer & Information Technology magazine and featured in Fortune Magazine’s March 2009 article, “How to Get a Job”.

Mr. Herrera is one of the original founding members of the Oil and Natural Energy Information Sharing and Analysis Center (ONE-ISAC) where he currently serves as a chairman of the board and has been honored as a finalist for the 2024 Houston CISO ORBIE Award, a program that recognizes excellence in technology leadership for Cyber Security leaders nationwide.

Roya Gordon is the Deputy Chief Information Security Officer (CISO) of ENGIE North America, where she is responsible for the cybersecurity of renewable assets, including solar, wind, battery storage, and power plants. With a 20-year career spanning military intelligence, control systems cybersecurity at Idaho National Laboratory, cyber threat intelligence (CTI) in the energy sector, and Operational Technology (OT) expert in the tech startup space, Roya brings a wealth of expertise to her role. She oversees three dedicated teams focused on IT security, OT security, and IT/OT GRC, ensuring comprehensive protection and compliance. She holds a Master's degree in Global Affairs with a focus on Cyber Warfare from Florida International University (FIU) and served six years in the US Navy as an intelligence specialist.

Gordon Groschl serves as the Chief Information Security Officer and Director of Healthcare Technology Management at Texas Children's Hospital. He is responsible for protecting the largest and number #1 ranked pediatric health system in the US. With over 25 years of comprehensive experience in telecommunication, healthcare cybersecurity, and technology management, Gordon brings dedication and passion for providing transformational cybersecurity change and organizational change management. He oversees 4 teams covering all aspects of cybersecurity and maintains CISSP, CCSP, HCISPP, and CHCIO certifications. Gordon is focused on transforming cybersecurity programs utilizing innovation in a business-centric approach.

Manoj Tripathi is a seasoned CISO and has decades of experience in security, technology and leadership, across SaaS, Products and Consulting companies. Manoj is passionate about security and technology topics and has presented on security program management strategy and secure development topics at various security conferences. He holds the C|CISO and the CISSP certifications.