SecureWorld Seattle 2025

Kip Boyle is the Virtual Chief Information Security Officer of Cyber Risk Opportunities, whose mission is to help executives become more proficient cyber risk managers. He has over 24 years of cybersecurity experience serving as Chief Information Security Officer (CISO) and in other IT risk management roles for organizations in the financial services, technology, telecom, military, civil engineering, and logistics industries.

Larry Wilson was formerly the Chief Information Security Officer for Sumitomo Pharma Americas, Inc., Worcester Polytechnic Institute, and the University of Massachusetts (UMass) President's Office. In the CISO role, Larry was responsible for developing, implementing, and overseeing compliance with the SMPA / WPI / UMass Information Security Policy and Written Information Security Plan (WISP). In addition to designing and deploying the respective cybersecurity programs, Larry has developed and delivered cybersecurity training at multiple industry events, workshops, training venues, etc. Courses include Designing and Building a Cybersecurity Program, Designing and Building a Ransomware Program, and Designing and Building a Third-Party Risk Program. Larry has also worked with multiple companies in multiple industries to help design, build, and maintain their Cybersecurity Programs, Ransomware Program, and Third-Party Risk Programs.

Dominic Vogel is a well-respected cybersecurity thought leader appearing on media news outlets across the world. As a veteran cybersecurity expert and thought leader, Dominic holds a proven track record across a multitude of industries, including financial services, logistics, transportation, healthcare, government, telecommunications, and critical infrastructure.

Dominic is a firm believer in delivering sustainable security that supports and protects business goals. Having worked within large and globally diverse organizations, he has extensive security experience that has been forged over the past two decades as an information security professional.

Dominic is a two-time founder who has focused on providing unbiased actionable cyber security strategic guidance and advice to startups and small businesses across North America. Dominic is the President at Vogel Cyber Leadership & Coaching, a Vancouver-based leadership advisory company specializing in cyber risk management. He is also a self-professed positive troll and professional hype man and believes in the power of uplifting others through his high-energy coaching practice.

Mr. Di Giacomo is an award-winning, veteran cybersecurity executive with over 26 years of experience leading security strategy and governance across critical infrastructure and corporate environments, both domestically and internationally. His expertise encompasses IT and OT security, security governance, cloud security, disaster recovery, risk and compliance management across multiple industry frameworks, and data privacy. In his current role as Chief Information Security Officer at Sound Transit, he built a nationally recognized, security program from the ground up based on the ISO 27001 international standard, achieving top-tier maturity ratings, confirmed by independent audits. Mr. Di Giacomo holds multiple rigorous, industry-relevant certifications including C|CISO, CISSP, CISM, CISA, CRISC, CDPSE and HISP, and is a frequent speaker, lecturer, and advisor on cybersecurity, risk, and resilience. Mr. Di Giacomo holds both a B.S. in Electronic Engineering degree, as well as a Master of Engineering and Technology Management, Summa Cum Laude.

A strategic visionary and hands-on leader, Mr. Di Giacomo is deeply committed to advancing cybersecurity maturity and resilience. He currently serves on the Washington State Technology Services Board Security Subcommittee and contributes to multiple professional associations including ISACA, ISC2 and ISSA and the IEEE, where he has achieved Senior Member status. Fluent in English, Spanish, and Italian, Mr. Di Giacomo brings a global perspective with a business and mission centric focus to today’s cybersecurity challenges and solutions.

As the Chief Information Security Officer at Nordstrom, I lead a team of cybersecurity professionals who are passionate about protecting the company's data, systems, and customers. I have over 10 years of experience in cybersecurity, spanning various domains such as incident response, forensics, malware analysis, network security, and data protection.

My mission is to bring honesty, transparency, and integrity to the cybersecurity function, and to partner with other technology and business teams to ensure a balanced and pragmatic approach to our common goals. I leverage my expertise in cybersecurity strategy, policy, governance, and risk management to enable Nordstrom's growth and innovation. I also foster a culture of security awareness, education, and empowerment across the organization.

As PACCAR's CISO, I am responsible for strategy, investigations, forensics work, policy and procedure creation and review, security risk assessments and project management. This is a global position, with information security responsibility for all PACCAR locations.

Evan McHenry is the Chief Information Security Officer at Robinhood Markets, where he leads Security and Corporate Engineering, ensuring secure and scalable operations. Formerly Deputy CISO, he drove key security initiatives and aligned Robinhood’s IT infrastructure with rapid growth. With over 20 years in security and IT, Evan has a proven track record in regulated industries. His healthcare work at Aetna and Beebe Healthcare focused on identity management, infrastructure, and HITRUST. At Google, he held leadership roles in Corporate Engineering, where he was instrumental in securing its COVID-19 response and Future of Work initiatives.

Stephanie Warren has more than 28 years of experience in technology, with the past 15 years dedicated to the field of Information Security. As the Assistant Director of Information Security, she brings a seasoned perspective to federal and regulatory compliance, incident response, and data protection. She excels at bridging communication between frontline employees and executive leadership, fostering alignment that strengthens organizational resilience. Her expertise in risk management helps organizations anticipate threats, adapt to challenges, and sustain long-term operational continuity. She holds a Bachelor of Science in Cybersecurity and Information Assurance and is a Certified Information Systems Security Professional (CISSP).

Chief Technology Officer at Washington State Department of Labor and Industries. Expert level grasp on IT Security governance and management of security in application, infrastructure and cloud domains. Spearheaded teams to do FedRAMP assessments of major cloud service provider giants in the industry. Certifications include CISSP, CCSP, CISA, PCIP, PMP, and AWS-SAA. Formerly PCI-QSA certified with a PCI assessor.

Tristan works for the Washington Military Department’s Emergency Management Division. Leading the Infrastructure and Industry Section, his work is focused on critical infrastructure resilience, cybersecurity preparedness and response, and enhancing public-private cooperation before, during and after disasters. Prior to joining state service in 2016, Tristan worked for the federal government focusing on technology research and development to improve the nation’s defense and international humanitarian response operations.

Chief Jeffrey (Jeff) Flohr has over 30 years of law enforcement experience. Jeff began his career in the Bay Area of California, where he worked for Moraga and San Pablo Police Departments. During his time in California, Jeff served as Field Training Officer, K9 Handler, Drug Recognition Expert, Gang Detective, and member of several state and federal task forces.

Drawn to the size and diversity of the King County Sheriff’s Office and the variety of assignments and opportunities it provides, Jeff began his career with KCSO in early 2005. He started as a Deputy in the contract city of Kenmore, served as a School Resource Officer in Kirkland, and quickly became a Master Police Officer (MPO) before being promoted to Sergeant in 2012. During his tenure as Sergeant, Jeff had numerous assignments, including North Precinct patrol, KCSO patrol K9 Unit, Sound Transit, Special Emphasis Team, and Explosive Detection K9 Unit. In 2016, Jeff was selected to be the Field Operations Administrative Sergeant for the Patrol Operations Chief. In this role, Jeff supported KCSO patrol operations and assignments county-wide, including Background Investigations, staffing, and recruiting. Jeff also coordinated the Critical Incident Review Boards for KCSO.

In 2018, Jeff was promoted to Captain and assigned to lead the King County Communications Center. He was promoted to Major in 2020 and assigned to lead the Southwest Precinct, which includes Skyway, White Center, and Vashon communities. In this role, Jeff joined the Urban King County Reimagining Policing Group, where he worked with numerous King County departments to explore what policing in unincorporated King County will look like in the future. In 2021, Jeff was promoted to Chief and assigned to the Technical Services Division. While there he oversaw the successful ratification of multiple groundbreaking labor contracts, inclusion of body worn cameras in the bi-annual budget and an increased effort surrounding recruiting and reducing vacancies. In 2023, with the addition of two new divisions at KCSO, Jeff was assigned to the Special Operations Division. The Special Operations Division includes two transit contacts, Metro Transit Police and Sound Transit Police, the Aircraft Rescue and Fire Fighting at the King County International Airport as well as the traditional Special Operations units such as TAC-30, Crisis Negotiation, Bomb Disposal, K9s, Air Support, Search and Rescue, Marine Rescue Dive Unit.
Jeff believes in community policing that is fair and accountable. Throughout his career, Jeff has led by example and built strong working relationships at all levels of government through open and honest communication. Jeff has served as Incident Commander for high-profile events including dignitary visits, anti-terrorism efforts, concerts, sporting events, and civil disturbances. He has also led the development and implementation of several initiatives, including the creation of Sound Transit’s Special Emphasis Team (SET) to enhance rider and employee safety; modernizing the statistical tracking of K9 deployments, contacts, and training documentation; working with the King County Council to implement ordinances impacting solicitations and noise complaints; and working with U.S. Senators and Congress members to update King County’s 911 system to address next-generation issues. Jeff has received numerous accolades and awards throughout his career, including Officer of the Year, Deputy of the Year, Sergeant of the Year, Lifesaver Award, and the Sheriff’s Medal.

Jeff and his wife, Stevee, have been together for over 20 years. They enjoy traveling, watching their daughter play softball at Central Washington University, and playing with their dog.

Jenifer Clark is a Senior Security Engineer at Costco Wholesale. As part of the enterprise Data Security team, her focus is on Data Loss Prevention (DLP) and liaison work with internal business teams. Jenifer is a long-time member of the SecureWorld Advisory Council and actively supports public/private partnership efforts. She is a member of Washington State Cybersecurity Advisory Committee, Domestic Security Alliance Council (DSAC), InfraGard, FBI Seattle Citizens Academy Alumni Association, and a multi-year participant in DHS Analyst Exchange Program (AEP). Jenifer also volunteers in the local community as a member and director in King County 4x4 Search and Rescue Association.

Stephanie Warren has over 28 years of experience in technology, with the past 15 years dedicated to the field of Information Security. As the Assistant Director of Information Security, she brings a seasoned perspective to federal and regulatory compliance, incident response, and data protection. She excels at bridging communication between frontline employees and executive leadership, fostering alignment that strengthens organizational resilience. Her expertise in risk management helps organizations anticipate threats, adapt to challenges, and sustain long-term operational continuity. She holds a Bachelor of Science in Cybersecurity and Information Assurance and is a Certified Information Systems Security Professional (CISSP).

Rick is the Director of System Engineering for the Rockies Enterprise team at Fortinet. His career has included roles in system engineering, management, and product development for security, networking, storage, virtualization, and cloud disciplines. He is an avid outdoorsman and father who loves to enjoy all the activities Colorado has to offer. With Rick, look forward to helpful suggestions on addressing the future of cyber threats mixed in with some interesting stories.

Terry has been working alongside security practitioners to advise on challenges around SaaS security, threat exposure, security policy, and managing attack surfaces for the past 10 years. His insights come from 15+ years supporting global enterprises like MCI Worldcom, Gap Inc., IBM, and Neiman Marcus Group with architecting, engineering, securing, and auditing hybrid infrastructure environments. He enjoys building bridges between technology and the business teams to reduce the friction typically inherent in securing the enterprise.

Transforming vision into reality through strategic leadership, technology innovation, and governance excellence. For more than 30 years, Jonathan Barrios has led technology programs that fuel growth, build resilience, and strengthen trust for global organizations in financial services, SaaS, and fintech.

An inspirational leader and master storyteller, Jonathan motivates teams to act while grounding his vision in the financial acumen that drives business results. Trusted as a credible voice in decision-making, forging strategic financing partnerships, and defining governance boundaries, he consistently earns a seat at the table wherever he serves.

Jonathan began his technology career at just 16, nurturing a lifelong passion for innovation. Today, as Chief Information Security Officer at Vindicia (an Amdocs company), he leads global cybersecurity strategy, risk management, and compliance for a portfolio of SaaS commerce platforms. His programs protect millions of consumer transactions and embed governance and privacy-by-design into every stage of development. Under his leadership, Vindicia has achieved multi-framework compliance—including SOC 2, ISO 27001, PCI-DSS, and GDPR—while accelerating secure, rapid innovation for clients worldwide.

​At the same time, as Director of Information Security & Compliance for the Amdocs SaaS Business Unit, Jonathan oversaw security for six global SaaS products, aligning security roadmaps with product strategy and the rigorous demands of Tier-1 telecom clients.

Earlier in his career, he founded JOBA Technologies, delivering bespoke technology and security solutions across diverse industries. Today, Jonathan is spearheading strategic shifts that transform IT from a functional cost center into a catalyst for business innovation, uniting the organization to operate as a truly global enterprise.

Dominic Vogel is a well-respected cybersecurity thought leader appearing on media news outlets across the world. As a veteran cybersecurity expert and thought leader, Dominic holds a proven track record across a multitude of industries, including financial services, logistics, transportation, healthcare, government, telecommunications, and critical infrastructure.

Dominic is a firm believer in delivering sustainable security that supports and protects business goals. Having worked within large and globally diverse organizations, he has extensive security experience that has been forged over the past two decades as an information security professional.

Dominic is a two-time founder who has focused on providing unbiased actionable cyber security strategic guidance and advice to startups and small businesses across North America. Dominic is the President at Vogel Cyber Leadership & Coaching, a Vancouver-based leadership advisory company specializing in cyber risk management. He is also a self-professed positive troll and professional hype man and believes in the power of uplifting others through his high-energy coaching practice.

Brian is an IT Executive with 29 years of experience from Security Operations and Support, Compliance, Risk Management, Technology Innovation, IT Operations, and Support. Currently, Brian is a Business Information Security Officer (BISO) supporting multiple business units at Salesforce, delivering security and compliance across our people, process, technology, and data. In addition to this, he has worked in Security and GRC at Starbucks, Microsoft, and Bank of America, as well as served as a Cybersecurity Advisor for CREATE.ORG, sat on the Board of Technical Advisors for NODUS technologies, served as an alternate to the PCI-DSS Customer Advisory Council, held CISSP and CISM certifications, and published two books and three industry papers on security.

Brian Denman is the Director of Global Cyber Risk Solution Delivery for SecurityScorecard. In this role, he leads service delivery for our MAX third-party cyber risk management program.

Brian has over thirty years of executive and frontline experience in enterprise IT, cybersecurity, and cyberwarfare operations, twenty-five of which were in the national security sector or the Intelligence Community. As a global network operator, he was responsible for the daily operation and security of the United States Air Force’s classified and unclassified worldwide networks, including proactive management of cyber risk and all-hazards incident response. As a third-party incident responder, he organized and trained Cyber Protection Teams for U.S. Cyber Command’s to provide threat hunting, advisory, and incident response services. He led these teams to defend military systems, domestic and international critical infrastructure, and the Defense Industrial Base, including the Command’s first landmark “Defend Forward” missions in support of U.S. election security and partner defense in Eastern Europe. Since retiring from government service, Brian has advised and trained both U.S. government and private sector organizations, ranging from small and medium businesses to Fortune 50 firms, on enterprise cybersecurity, risk, and incident response management.

Christopher Beier has been on the front lines of cybersecurity since 1993, from defending submarine networks to defining the next generation of AI-driven SIEM and threat analytics. His work spans EDR, NDR, identity, and anti-fraud technologies, giving him a unique perspective on how today’s defenders stay ahead of attackers. He’s a U.S. Navy veteran based in Forest Grove, Oregon, and an avid fan of kites, Ducks football, and his kids’ swim meets.

Yasser is a Principal Solutions Architect (Cloud Security SME) for Bitdefender and Security Practitioner with over 20 years of experience in Information Security. Along his career he has worked for Healthcare Providers, ISPs, MSPs and SOCs, among many other verticals and throughout multiple Information Security Domains. On his previous role as a Product Manager for Cloud Security, he enabled Sales, Technical Teams and Technical Partners and contributed to numerous architectural projects in both private and public sector. Regarding credentials and certifications, he possesses top Security Vendors Certifications such AWS and Azure as well as worldwide recognized credentials such as CISM (ISACA) and CISSP (ISC2).

Brian Henning is a Senior Solutions Engineer with 15+ years in enterprise software development and three+ years in cybersecurity sales engineering. He specializes in closing high-value deals by combining deep technical expertise with compelling client engagement. At HUMAN Security, he designs scalable solutions to combat advanced threats such as account takeover, credential stuffing, and ransomware.

Previously at Target, Brian led major modernization initiatives, saving millions through system migrations, security transformations, and process automation. He is skilled across Java, Kotlin, TypeScript, Python, cloud platforms, and container technologies, and holds a B.S. in Applied Computer Science from St. Cloud State University.

Nathan Wenzler is a field chief information security officer at Optiv, where he advises clients on how to strengthen and optimize every aspect of their cybersecurity program. With nearly 30 years of experience, he has built and led security initiatives for government agencies, nonprofits and Fortune 1000 companies.

Wenzler has served as a CISO, executive management consultant and senior analyst, holding leadership roles at Tenable, Moss Adams, AsTech and Thycotic. He also spent more than a decade in public-sector IT and security roles with Monterey County, California, and supported state and federal agencies.

He is known for helping security leaders better communicate the measurable value and benefit of a mature, effective cybersecurity program to executives, technical stakeholders and nontechnical business partners. His approach emphasizes not only technical excellence but also the human and organizational factors that drive long-term security success.

Wenzler has spoken at more than 400 events worldwide, educating security leaders and professionals on how to excel in their role as an organization's risk expert. He has also served on advisory boards, including the Tombolo Institute at Bellevue College, and is a former member of the Forbes Technology Council. His areas of expertise include vulnerability and exposure management, privileged access management and identity governance, cyber risk management, incident response, and executive-level communications and program management.

Craig Spiezle is the Founder and President of AgeLight Advisory & Research Group, a professional services firm focused on online and digital services. Craig is a recognized authority on trust and the convergence of privacy and security promoting ethical privacy practices, end-to-end security and the importance on moving from a compliance mindset to stewardship. Craig is the Charmain emeritus of the Online Trust Alliance, an initiative of the Internet Society. He frequently briefs international policy makers driving awareness of best practices by both the public and private sectors and importance of internet governance. Craig has championed security best practices to help protect consumers while promoting innovation and the role of meaningful self-regulation. Prior to OTA, Craig spent over a decade at Microsoft focused on security and privacy enhancing technologies and standards. Craig chairs the Online Trust & Integrity Council and is on the board of the Identity Theft Council, editorial board of SC Magazine and a member of InfraGard, the IAPP and the APWG.

Transforming vision into reality through strategic leadership, technology innovation, and governance excellence. For more than 30 years, Jonathan Barrios has led technology programs that fuel growth, build resilience, and strengthen trust for global organizations in financial services, SaaS, and fintech.

An inspirational leader and master storyteller, Jonathan motivates teams to act while grounding his vision in the financial acumen that drives business results. Trusted as a credible voice in decision-making, forging strategic financing partnerships, and defining governance boundaries, he consistently earns a seat at the table wherever he serves.

Jonathan began his technology career at just 16, nurturing a lifelong passion for innovation. Today, as Chief Information Security Officer at Vindicia (an Amdocs company), he leads global cybersecurity strategy, risk management, and compliance for a portfolio of SaaS commerce platforms. His programs protect millions of consumer transactions and embed governance and privacy-by-design into every stage of development. Under his leadership, Vindicia has achieved multi-framework compliance—including SOC 2, ISO 27001, PCI-DSS, and GDPR—while accelerating secure, rapid innovation for clients worldwide.

​At the same time, as Director of Information Security & Compliance for the Amdocs SaaS Business Unit, Jonathan oversaw security for six global SaaS products, aligning security roadmaps with product strategy and the rigorous demands of Tier-1 telecom clients.

Earlier in his career, he founded JOBA Technologies, delivering bespoke technology and security solutions across diverse industries. Today, Jonathan is spearheading strategic shifts that transform IT from a functional cost center into a catalyst for business innovation, uniting the organization to operate as a truly global enterprise.

Scott Benson is the Director of Cybersecurity and Infrastructure at Mud Bay, with over 25 years of experience in the field. He holds certifications such as CISSP, CEH, and PCIP. Scott leads a team responsible for cybersecurity, infrastructure, and help desk services, ensuring successful business outcomes and compliance with industry standards. He has a strong background in risk management, cloud security, and cybersecurity strategies.

Doug Cavit has been involved in cybersecurity for 30 years as CIO of McAfee and Chief Security Strategist at Microsoft, as well as CISO for two tech startups working on automated cybersecurity in the cloud. He was a major contributor to Microsoft adding anti-malware and several versions of Windows. He has been involved in setting security standards for the financial services and utility industries as well as the ISO process for secure software development. He has helped the Global Fortune 1000 and governments around the world on security and is a noted speaker in the security industry. Doug was a finalist for an Orbie award for CISO of the year in 2025. He holds multiple patents for IT infrastructure. Currently, he is CISO for Snohomish County in Washington State. In addition, he is a volunteer board member for a local non-profit that provides computers to the disadvantaged.

William serves as the leader of AAA Washington’s information security and compliance efforts. He is responsible to establish a responsive, dynamic, and flexible cybersecurity program to meet continually changing information security, regulatory, and compliance needs in the organization.  William has been with AAA Washington since August of 2017. Other roles that William serves in the company include coordinating business continuity program activities and leading the company through emerging privacy legislation management.

In the evenings, William instructs graduate and undergraduate cybersecurity courses at the University of Washington and The Penn State University. William completed his Bachelor of Science in Computer Science from the U.S. Military Academy at West Point. He subsequently earned a Masters in Management Information Systems and an MBA from the University of Maryland. In December of 2018, he completed his Doctorate of Philosophy in Cybersecurity and Information Assurance from Capella University.

Prior to William starting at AAA Washington, he served five years as the Manager of IT Security Engineering at Puget Sound Energy. Prior to that, he also served as the regional CISO for Providence Health and Services. He has also served in similar positions with Alaska USA Federal Credit Union, Chugach Electric Association, and the State of Alaska, Department of Public Safety.

William served in the U.S. Army from 1990 to 1996 as an officer in the Infantry and is a combat veteran for Operation Desert Storm.

Jared has more than 25 years experience in the tech industry and currently works as Cohesity’s senior director of product marketing.

Zabrina McIntyre is a Director with KPMG focusing on large scale cybersecurity transformations for clients with a focus on compliance. She holds the CISSP and PMP certifications and is working on her PCI QSA. She is a dedicated supporter of Women in Cybersecurity (WiCyS) and is currently on the leadership board for the Business Information Security Officer (BISO) Affiliate.

Currently the Vice President of Cyber Services for AmTrustCyber, Courtney Hans brings a variety of experience into her work. In her early career, Courtney was an adventure travel guide with a short window to make a strong impression. Curiosity became her superpower as she learned how to uncover the inner motivations of diverse groups of guests. Guiding, just like cybersecurity, requires agility and a cool head during a crisis. Formerly the Head of Security and IT for a growing SaaS startup, Courtney joined AmTrust to help to reduce risk and deepen the relationship between carrier and insured.

Kip Boyle is the Virtual Chief Information Security Officer of Cyber Risk Opportunities, whose mission is to help executives become more proficient cyber risk managers. He has over 24 years of cybersecurity experience serving as Chief Information Security Officer (CISO) and in other IT risk management roles for organizations in the financial services, technology, telecom, military, civil engineering, and logistics industries.

Jake Bernstein is a practicing attorney and CISSP who counsels clients trying to understand their cybersecurity risks and the legal duties that arise from those risks. In his decade-plus of practice, Jake has acted as both regulator as an Assistant Attorney General with the Washington State Attorney General's Office and as private defense counsel representing companies subject to data security and privacy regulations enforced by federal, state, and international authorities.

Chaney has more than 15 years of practitioner experience spanning multiple disciplines in environments ranging from Higher Education to working with Fortune 100 companies and international businesses. During these years, he started with Microsoft Enterprise Applications eventually including Linux and Network administration. Transitioning his focus to information security, he performed Security Analysis, Audits, Penetration Testing, and Vulnerability Assessments, as well as coordinating Incident Response efforts and forensic gathering for Litigation Holds. While in information security roles, five of those years were spent in a managerial role supervising and training team members while ensuring operational security and service delivery. Prior to transitioning to sales, he assisted Fortune and international companies with vulnerability management program creation and SOC onboarding. He joined Rapid7 in 2021, where he has been able to work with customers across all sizes and industries to help build and expand security programs and to increase operational security, governance, compliance, and data resiliency.

Jonathan Harris, hailing from Portland, Oregon, leads a top-tier team of Solution Architects within HPE’s Data Services and Storage business unit. Over the past several years, he has held various leadership and technical positions at HPE, joining the company through the acquisition of Nimble Storage. Before his career in technical sales, Jonathan worked as an infrastructure architect for an international manufacturing company, based in the Northwest. In that role, he designed, implemented, and supported a range of IT and business infrastructure solutions, driving digital transformation throughout the organization. Jonathan is passionate about technology and its potential to enhance our lives, and he enjoys finding the right combination of technologies to create optimal solutions.

Kevin has more than 25 years of experience in threat intelligence and information security. He was the VP of cybersecurity operations and governance at IOActive.com, a retired NSA intelligence officer, the former director of Windows security architecture at Microsoft, and shipped Windows 10 (not by myself). He holds the CISM, CISSP, CGEIT security certifications.

Joe DePalo leads the platform engineering organization, customer support, customer success and the network product development teams at Netskope and is responsible for the design, build, and operations of the current and future generations of the Netskope infrastructure and platform. Prior to joining Netskope, Joe was the global head of internet services for Amazon Web Services (AWS), where he was responsible for the AWS Global Network and the Amazon carrier strategy. Prior to AWS, he was SVP of operations and engineering at Limelight Networks. There, he and his team built the second-largest content delivery network in the world. Joe and his team has been building large scale networks and cloud for almost 30 years.

Cliff Steinhauer is a passionate information security and privacy professional. Currently based in Seattle, he has over a decade of experience in sales, marketing, and project management. With the National Cybersecurity Alliance, Cliff works to direct community engagement through live events, educates through thought leadership, and runs the Cybersecurity program for NCA. Cliff enjoys sharing the message of securing your digital life, protecting information systems and the people that run them, and mentoring young folks to promote interest in the field.​

Randy J. Hinrichs is a national leader in AI ethics and cybersecurity education, serving as Professor of Practice at Norwich University and PhD candidate in CyberEthics at the University of Idaho. He directs multiple NSA-funded NCAE Co-Op Centers, advancing workforce development through experiential learning and ethical AI integration. Randy is the architect of the AI Moral Code—an empirical framework for embedding moral reasoning into AI systems—and the creator of the NSA-endorsed “CyberEd in a Box” program. With over 25 years of leadership across Microsoft, Sun Microsystems, and federal innovation projects, he combines immersive technologies, ethical governance, and workforce transformation to build a secure and responsible AI future.

Eric Anderson is the Director of the Enterprise Security team at Adobe, where he is a strategic leader driving proactive cybersecurity for the enterprise including security reference architecture, zero-trust architecture, identity and access management, and endpoint security. His team is focused on delivering enhanced security for identities, authentication, public key infrastructure (PKI), and more.

For more than 30 years, Eric has been inspiring and driving initiatives that pioneer the technology industry. He has held numerous engineering and management positions at Adobe, including Computer Scientist and Automation Engineer, and is passionate about delivering a seamless user experience while helping increase the security posture of the organization.

Eric holds a B.A. in History from the University of Washington and an Executive M.B.A. from the Washington State University Carson College of Business.

William serves as the leader of AAA Washington’s information security and compliance efforts. He is responsible to establish a responsive, dynamic, and flexible cybersecurity program to meet continually changing information security, regulatory, and compliance needs in the organization.  William has been with AAA Washington since August of 2017. Other roles that William serves in the company include coordinating business continuity program activities and leading the company through emerging privacy legislation management.

In the evenings, William instructs graduate and undergraduate cybersecurity courses at the University of Washington and The Penn State University. William completed his Bachelor of Science in Computer Science from the U.S. Military Academy at West Point. He subsequently earned a Masters in Management Information Systems and an MBA from the University of Maryland. In December of 2018, he completed his Doctorate of Philosophy in Cybersecurity and Information Assurance from Capella University.

Prior to William starting at AAA Washington, he served five years as the Manager of IT Security Engineering at Puget Sound Energy. Prior to that, he also served as the regional CISO for Providence Health and Services. He has also served in similar positions with Alaska USA Federal Credit Union, Chugach Electric Association, and the State of Alaska, Department of Public Safety.

William served in the U.S. Army from 1990 to 1996 as an officer in the Infantry and is a combat veteran for Operation Desert Storm.

Neha is a seasoned cybersecurity leader with a global track record of driving innovation at the intersection of security, emerging tech, and financial services. As VP of Cybersecurity Products at J.P. Morgan Chase, she leads the development of next-generation data protection solutions that secure the foundation of modern financial technology at scale and with impact.

Neha’s career spans strategic and technical leadership roles across Fortune 500 firms and global consultancies, including Deloitte, EY, Accenture, Flagstar Bank, NVIDIA and Bank of America. Her work has taken her across North America, Europe, and Asia, giving her a uniquely global perspective on regulatory landscapes, threat intelligence, and enterprise-scale security architecture. At the core of her leadership is a commitment to innovation, especially in advancing privacy-enhancing technologies, secure AI adoption, and zero-trust frameworks. Neha bridges deep technical acumen with strategic foresight, enabling organizations to not only defend against today's threats but also prepare for the next wave of disruption.

Beyond the enterprise, Neha is an active advisor to early-stage startups and venture firms, where she helps founders navigate the complex intersection of cybersecurity, compliance, and product-market fit. She is passionate about ensuring that innovation in security is not just cutting-edge but also responsible, resilient, and built for real-world impact. Neha also contributes to industry working groups focused on standards development and ethical tech adoption. From securing today’s digital economy to enabling the next generation of secure platforms, Neha brings a visionary yet grounded approach to cybersecurity, one that’s deeply technical, future-focused, and driven by purpose.

Mark serves as a Senior Executive, President and Board Member to the Information Systems Security Association, the largest Not-for-Profit Security Practitioner Association in the Pacific . Northwest. He also serves as Executive Board Member of the Cloud Security Alliance, Seattle chapter– where he is jointly-responsible for chapter development, community outreach and education of the flagship STAR Cloud Security Program and latest TAISE Agentic AI Security Certifications & Training. His expertise spans Network Security, Cloud Security; SaaS/SSPM Security, IAM, Agentic AI. He has worked in various leadership roles in service to the world's largest business representing Healthcare, Retail, Aviation and Financial Services.

Mark is an active member in the cyber security industry. He is a contributor to the CSA AI and SaaS Security Working Groups. He is also a leader and mentor to a number of AI Native startups on product roadmaps and differentiation development focusing on the Software-as-a-Service area of Identity and Access Management, Zero Trust and SSPM. Mark earned a Bachelor of Science degree in Business and outside of work, he enjoys hiking, Outdoor Bootcamp Style Exercise, Volunteering for Humanitarian causes like Food Banks, Boys and Girls Clubs, and Fostering the next generation of Cybersecurity Leaders."

Troy Batterberry is the founder and CEO of EchoMark, a Software-as-a-Service (SaaS) company pioneering a new standard in information protection. The company was founded on that trust is central to empowering everyone to do their best work. Troy brings years of product and technology experience, including 25 years at Microsoft, where he most recently served as a Corporate Vice President as the product leader of Microsoft Teams Meetings, Calling, and Events. During his tenure, Troy also played an integral role in the growth and success of marquee Microsoft products, such as Windows, Explorer/Edge, Bing, Xbox, and MSN. Before joining Microsoft, Troy held engineering positions at Sony and within the U.S. Department of Defense. Troy is driven by a long-standing passion for creating new experiences and products.

In addition to his professional pursuits, Troy is a parent volunteer at his kids’ schools, spends time volunteering for Boy Scouts, and also enjoys time outdoors boating, hiking, and running. He holds an M.S. in Information Systems from the University of Southern California and a B.S. in Electrical and Electronic Engineering from North Dakota State University.

Colson has been in the cybersecurity space for seven years now, with that journey starting at pre-Cisco Duo. Over the years he developed significant interest in cloud security and governance. While in the past that might have specifically referred to the public cloud, applications and the users that connect to them live everywhere, which means a broader viewpoint is needed to effectively secure the users, data, and devices that make up an organization. Colson has helped companies develop effective Zero Trust Network Access and data protection programs, starting with visibility and ending with effectively implementing policies that protect critical business data.

Today, his journey brings him back to devices, though still with a "zero trust" lens, where organizations are not just trusting the data their systems provide but validating and verifying via aggregating all of their different data sources into one place. This visibility, just as it does when building a data protection program, is the first step to effective risk management programs.

Bryan Ward is a cybersecurity veteran with over two decades of experience helping global enterprises strengthen their security posture. He specializes in Zero Trust, microsegmentation, and practical approaches to network and infrastructure security, with leadership roles at companies like Akamai, Guardicore, and ColorTokens. Bryan is known for turning complex security challenges into actionable strategies that actually work.

Erika Voss offers two decades of extraordinary success in a series of high level roles at top tier companies that include Capital One, Salesforce, Oracle Public Cloud, Microsoft Corporation and Amazon Web Services.

Erika’s invaluable expertise and broad business range have powered a history of developing successful process improvements that drive productivity, reliability, and client satisfaction. Such traits have consistently enabled Erika to achieve an impressive command of the skills needed to manage ongoing business planning processes while developing strategies to meet future challenges.

Upon being named as Vice President of Information Security for DAT Freight & Analytics, Erika will lead vision, strategy, and execution for all facets of security for this Fortune 500 Supply Chain Logistics corporation, while defining and revising policies, procedures, and best practices for security, including application security, access control, authentication, third party risk management, and intrusion detection. Dr.. Voss has dedicated herself and her vision as a leader who engages in projects with an “All-In” attitude.

With a forte for successfully building strong teams and holding a key role leading all facets of finance and strategy, Dr. Voss has successfully positioned companies, as a leading expert in its field with respect foundational security basics, fraud, identity, and cloud security practices contributing to the following successes:

● Effectively manages a team of product and application security engineers, architects, and DevSecOps personnel, continually
identifying opportunities to reinforce the company’s security posture.
● Engages directly with customers, providing information and guidance on the company’s security posture.
● Served as the CISO of the company’s cybersecurity program in line with all industry standards and regulatory requirements, including SOC2, PCI, SOX, and other industry regulations.

Combining her proven business instinct with an unprecedented disciplinary work ethic, Erika has continuously exceeded expectations in high stake environments throughout her career positioning herself as a key member of each company and a driving force for growth. Erika holds a Ph.D. in Cybersecurity from Northcentral University, as well as a Master of Science Degree in Security Administration and a Bachelor of Science Degree in Computer Operations Technology from Southwestern College.

David Smith is a Seattle–based Field CISO at Rubrik with more than a decade of experience in cybersecurity. Previously, as Senior Strategic Sales Engineer, he worked with hundreds of clients to implement robust cybersecurity and resiliency solutions. David is passionate about leveraging AI and strong cyber resiliency to bolster the ever-present need for information and data protection for customers. David has a degree from Utah State University, and in his off time enjoys spending time with his family throughout the Pacific Northwest.

Troy Batterberry is the founder and CEO of EchoMark, a Software-as-a-Service (SaaS) company pioneering a new standard in information protection. The company was founded on that trust is central to empowering everyone to do their best work. Troy brings years of product and technology experience, including 25 years at Microsoft, where he most recently served as a Corporate Vice President as the product leader of Microsoft Teams Meetings, Calling, and Events. During his tenure, Troy also played an integral role in the growth and success of marquee Microsoft products, such as Windows, Explorer/Edge, Bing, Xbox, and MSN. Before joining Microsoft, Troy held engineering positions at Sony and within the U.S. Department of Defense. Troy is driven by a long-standing passion for creating new experiences and products.

In addition to his professional pursuits, Troy is a parent volunteer at his kids’ schools, spends time volunteering for Boy Scouts, and also enjoys time outdoors boating, hiking, and running. He holds an M.S. in Information Systems from the University of Southern California and a B.S. in Electrical and Electronic Engineering from North Dakota State University.

Kip Boyle is the Virtual Chief Information Security Officer of Cyber Risk Opportunities, whose mission is to help executives become more proficient cyber risk managers. He has over 24 years of cybersecurity experience serving as Chief Information Security Officer (CISO) and in other IT risk management roles for organizations in the financial services, technology, telecom, military, civil engineering, and logistics industries.

Larry Wilson was formerly the Chief Information Security Officer for Sumitomo Pharma Americas, Inc., Worcester Polytechnic Institute, and the University of Massachusetts (UMass) President's Office. In the CISO role, Larry was responsible for developing, implementing, and overseeing compliance with the SMPA / WPI / UMass Information Security Policy and Written Information Security Plan (WISP). In addition to designing and deploying the respective cybersecurity programs, Larry has developed and delivered cybersecurity training at multiple industry events, workshops, training venues, etc. Courses include Designing and Building a Cybersecurity Program, Designing and Building a Ransomware Program, and Designing and Building a Third-Party Risk Program. Larry has also worked with multiple companies in multiple industries to help design, build, and maintain their Cybersecurity Programs, Ransomware Program, and Third-Party Risk Programs.

Kip Boyle is the Virtual Chief Information Security Officer of Cyber Risk Opportunities, whose mission is to help executives become more proficient cyber risk managers. He has over 24 years of cybersecurity experience serving as Chief Information Security Officer (CISO) and in other IT risk management roles for organizations in the financial services, technology, telecom, military, civil engineering, and logistics industries.

Larry Wilson was formerly the Chief Information Security Officer for Sumitomo Pharma Americas, Inc., Worcester Polytechnic Institute, and the University of Massachusetts (UMass) President's Office. In the CISO role, Larry was responsible for developing, implementing, and overseeing compliance with the SMPA / WPI / UMass Information Security Policy and Written Information Security Plan (WISP). In addition to designing and deploying the respective cybersecurity programs, Larry has developed and delivered cybersecurity training at multiple industry events, workshops, training venues, etc. Courses include Designing and Building a Cybersecurity Program, Designing and Building a Ransomware Program, and Designing and Building a Third-Party Risk Program. Larry has also worked with multiple companies in multiple industries to help design, build, and maintain their Cybersecurity Programs, Ransomware Program, and Third-Party Risk Programs.

Cliff Steinhauer is a passionate information security and privacy professional. Currently based in Seattle, he has over a decade of experience in sales, marketing, and project management. With the National Cybersecurity Alliance, Cliff works to direct community engagement through live events, educates through thought leadership, and runs the Cybersecurity program for NCA. Cliff enjoys sharing the message of securing your digital life, protecting information systems and the people that run them, and mentoring young folks to promote interest in the field.​

Jeff Jones is the Chief Information Security Officer (CISO) for Milliman, Inc., an actuarial consulting and solutions firm headquartered in Seattle. Jeff is responsible for managing the information security program that encompasses 130 Practices in 80 cities, and supports over 8000 clients and more than 500M participants worldwide. Jeff was a CISO finalist at the 2023 Seattle Orbie Awards, featured in Profile Magazine in December 2022, and is a Founding Board member at the University of WA Information School.

Jeff joined Milliman in 2016 and has demonstrated innovative skills advising practices internally, managing cybersecurity and incident response, and representing Milliman’s information security interests with major clients, auditors, and vendors. Jeff came to Milliman following a consulting engagement with Nordstrom. Prior to Nordstrom, Jeff was the Senior Information Security Manager at Black Knight Financial Services, where he managed the internal risk management team and developed information security policies.

Early in his career, Jeff served honorably in the United States Air Force. Jeff brings over thirty years of IT, software development, risk management, and cybersecurity experience to the CISO role, including tenures at IBM, AT&T, ADP, and First American CoreLogic.

Among his four degrees, Jeff earned a Bachelor of Science degree in Computer Science & Engineering from the University of California, Davis, and a Master of Science in Information Technology from Golden Gate University. Jeff has a passion for serving in his community, is a former VP of the 100 Black Men of Sacramento, a non-profit that mentors young men in underserved communities, and he continues to volunteer in the Seattle area.

Tim Rains is an internationally recognized cybersecurity executive, advisor, and author.

Currently, Tim is Vice President and Chief Information Security Officer at ADT – the largest security and automation company in the United States, protecting 6.5 million households. In this role, Tim leads enterprise cybersecurity and product security.
Previously, Tim was Vice President Trust & Cyber Risk at T-Mobile where he led cybersecurity strategy, architecture, assurance, risk management, compliance, and the Business Information Security Officer function. While Tim was at T-Mobile, he was appointed to serve on a subcommittee of the President of the United States’ National Security Telecommunications Advisory Committee (NSTAC) that developed recommendations to the President focused on improving national cybersecurity.
Prior to T-Mobile, Tim held cybersecurity leadership positions at both Amazon Web Services and Microsoft. At AWS, Tim was the Global Security and Compliance Leader for Worldwide Public Sector, where he spent 3 years living in London.

In the 17 years Tim spent at Microsoft, he held numerous roles including Global Chief Security Advisor, Director of Security, Identity, and Enterprise Mobility, Director of Trustworthy Computing, and founding Technical Lead of Microsoft’s customer facing Cybersecurity Incident Response Team.

Tim is the author of the popular book, now in its second edition, “Cybersecurity Threats, Malware Trends, and Strategies” published by Packt Publishing.

Kip Boyle is the Virtual Chief Information Security Officer of Cyber Risk Opportunities, whose mission is to help executives become more proficient cyber risk managers. He has over 24 years of cybersecurity experience serving as Chief Information Security Officer (CISO) and in other IT risk management roles for organizations in the financial services, technology, telecom, military, civil engineering, and logistics industries.

Ralph Hogaboom is a seasoned cybersecurity leader with a deep commitment to public service and a human-centered approach to information security. A West Coast native from Aberdeen, Washington, Hogaboom worked his way up from grassroots tech support roles—from learning Perl and web design on the weekends to promote his string of punk bands, to serving as Chief Information Security Officer for the Washington State Department of Natural Resources. Today, Hogaboom is focused on building a world-class cybersecurity program powered by sound technical capability, practical risk management, trust, and empathy.

Jake Bernstein is a practicing attorney and CISSP who counsels clients trying to understand their cybersecurity risks and the legal duties that arise from those risks. In his decade-plus of practice, Jake has acted as both regulator as an Assistant Attorney General with the Washington State Attorney General's Office and as private defense counsel representing companies subject to data security and privacy regulations enforced by federal, state, and international authorities.

Jane E. Petoskey is an associate at the firm's Seattle office. She is a member of the Technology Transactions practice group, and primarily services clients under the Data Protection, Privacy, and Security focus area. Jane is also a Certified Information Privacy Professional in the United States (CIPP/US) and Certified Information Privacy Manager (CIPM), and is a Fellow of Information Privacy (FIP).

Prior to joining the firm, Jane served as a technology transactions and data privacy associate attorney at the Seattle office of an AmLaw 100 firm. Through this role, Jane regularly advised clients of all sizes and industries through privacy and data security matters, including counseling on compliance with domestic and international privacy and data security laws and regulations, including the CCPA, COPPA, GLBA, HIPAA and HITECH, and GDPR.

In a career spanning more than three decades, Mr. Khaja Ahmed has worked at the forefront of security technology — developing cutting-edge solutions in secure communications, data protection, and applied cryptography. He has led high-impact security teams at leading companies including Gemini (a cryptocurrency exchange), Microsoft, Google, and Amazon. His expertise spans hands-on system design, organizational leadership, and executive engagement—enabling him to architect solutions, build world-class teams, and shape security strategy at the highest levels. A sought-after speaker and panelist, he frequently addresses topics ranging from technical security practices to team building and leadership for individual and organizational growth. Currently, Khaja is an angel investor and advisor/consultant to startups in security. He enjoys teaching at his son’s institute, Ahmed Tech Academy, and at Bellevue College where he teaches Information Security and Computer Architecture as adjunct faculty.

Anil Karmel is a cybersecurity leader, serial entrepreneur, and startup advisor, founding two companies from 0 to 1 to exit. Formerly, Anil served as the National Nuclear Security Administration's (NNSA) Deputy Chief Technology Officer. Karmel began his government career as a Technical Staff Member of Los Alamos National Laboratory (LANL) and was responsible for inventing their cloud and collaboration technologies. Karmel and his team have garnered industry and government accolades, including the SANS National Cyber Security Innovators Award for Cloud Security, SINET Top 16 Cybersecurity Startups, InformationWeek 500 Top Government IT Innovators, and the DOE Secretary's Achievement Award. Anil served as the president of the Cloud Security Alliance’s DC Metro Area Chapter and is a member of the CSA's CxO Trust Advisory Council.

With more than 20 years of experience in the technology industry, Vishwas has a passion for innovation and problem-solving, and a track record of delivering high-impact products and projects in various domains, such as infrastructure, networking, security, cloud, IoT, and data. He is formerly the Chief Technologist and Head of Cloud Native Security at McAfee, where he led the vision, strategy, and execution of cutting-edge security solutions for the cloud. He has also been a founder, CEO, CTO, product manager, and engineer in large companies and startups, working with diverse technologies and languages. Has co-invented multiple technologies and authored several publications in the IETF, where he is an active contributor and member. His specialties include bringing new ideas to market, creating new technology, building energized teams, and providing technology execution, vision and direction.

Aradhna serves as a Managing Director Executive – Digital & Cyber Transformations at TIAA, a financial services company, she is responsible for the cloud security DevSecOps for Applications, Data, AI Enterprise vision, strategy, standards, security patterns in a multi-cloud hybrid enterprise. Her expertise spans Cloud Security; IAM, Zero Trust, Data Protection and GenAI Security Engineering. She has worked in various cybersecurity leadership roles at JP Morgan Chase, Boeing Company, Microsoft, and T-Mobile. Aradhna is an active member in the cyber security industry. She is Co-Chair of Cloud Native Computing Foundation Security TAG, Co-Chair for CSA Serverless Working group and a Cloud Security Alliance Research Fellow; she contributes to OWASP AI, CNCF , Cloud Security Alliance working groups and NIST Cloud computing standards, has influenced best practices and standards for cloud, containers and micro services security. She has also been providing expert guidance to a number of startups on security product roadmaps and feature development especially in the area of Identity and Access Management, Zero Trust and Container Security etc. Aradhna has a Masters in Cybersecurity, a bachelor's in electrical engineering, a
CISSP and CCSP from ISC2.org. Outside of work, Aradhna enjoys hiking, snowshoeing, and volunteering for women’s causes.

Erik has worked with the National Guard Bureau in Arlington, VA, to provide real-time feedback on team and organizational performance during cyber incident response. His work there as part of a research group contributed to significant long-term change at the bureau. Currently, his research also includes AI-driven blockchain auditing, avatar-based training experiences in AI-driven scenarios, and shielding architectures for internet-connected networks.

Transforming vision into reality through strategic leadership, technology innovation, and governance excellence. For more than 30 years, Jonathan Barrios has led technology programs that fuel growth, build resilience, and strengthen trust for global organizations in financial services, SaaS, and fintech.

An inspirational leader and master storyteller, Jonathan motivates teams to act while grounding his vision in the financial acumen that drives business results. Trusted as a credible voice in decision-making, forging strategic financing partnerships, and defining governance boundaries, he consistently earns a seat at the table wherever he serves.

Jonathan began his technology career at just 16, nurturing a lifelong passion for innovation. Today, as Chief Information Security Officer at Vindicia (an Amdocs company), he leads global cybersecurity strategy, risk management, and compliance for a portfolio of SaaS commerce platforms. His programs protect millions of consumer transactions and embed governance and privacy-by-design into every stage of development. Under his leadership, Vindicia has achieved multi-framework compliance—including SOC 2, ISO 27001, PCI-DSS, and GDPR—while accelerating secure, rapid innovation for clients worldwide.

​At the same time, as Director of Information Security & Compliance for the Amdocs SaaS Business Unit, Jonathan oversaw security for six global SaaS products, aligning security roadmaps with product strategy and the rigorous demands of Tier-1 telecom clients.

Earlier in his career, he founded JOBA Technologies, delivering bespoke technology and security solutions across diverse industries. Today, Jonathan is spearheading strategic shifts that transform IT from a functional cost center into a catalyst for business innovation, uniting the organization to operate as a truly global enterprise.

Marivell Alicea-Gamlin is a Senior Cybersecurity BISO Analyst at CBRE, where she connects cybersecurity strategy to business outcomes through client assurance, audit support, and third-party risk engagement. With more than 20 years of experience across IT operations, governance, and compliance, she plays a key role in shaping cyber strategy and building client trust. Marivell serves on the board of ISSA Puget Sound as Director of Membership and actively mentors emerging cybersecurity professionals. She holds a Master’s in Network and Communications Management, is ISC2 Certified in Cybersecurity (CC), and brings a global perspective with fluency in Spanish and developing proficiency in Portuguese.

Iain Sloan is an accomplished cybersecurity leader with more than 40 years of experience in information technology and security across both public and private sectors in the UK, Texas, and Washington State. As Chief Information Security Officer for the Washington State Liquor and Cannabis Board, he is responsible for safeguarding critical infrastructure, ensuring regulatory compliance, and driving strategic initiatives that enhance the agency’s security posture.

Throughout his career, Iain has led enterprise programs, implemented risk management frameworks, and fostered cross-functional collaboration to address evolving cyber threats. His deep technical expertise, combined with a commitment to operational excellence and public service, makes him a respected voice in the cybersecurity community.

George Williams is a seasoned technology executive and retired Senior Army Officer with over two decades of distinguished leadership in IT operations, strategic planning, and organizational transformation. Currently serving as Chief Information Officer and Director of IT Services for the Washington State Liquor and Cannabis Board, George leads enterprise-wide technology initiatives that drive innovation, efficiency, and mission alignment. His recent success includes spearheading a $70 million Salesforce CRM modernization project, replacing seven legacy systems and streamlining agency operations.

George’s career spans both public and private sectors, with prior roles including Senior IT Manager and Assistant Division Manager at Washington state agencies, and Engineering Manager at Iron Bow Technologies. His expertise encompasses cloud infrastructure, cybersecurity, enterprise systems, and vendor management—backed by hands-on experience with platforms like VMware, Azure, AWS, and Salesforce. A veteran of the U.S. Army and Washington Army National Guard, George held pivotal roles in global operations, including strategic planning for NATO in Afghanistan and communications leadership in Iraq. His military tenure culminated in commanding a missile defense site and developing communications doctrine for the Army’s digital transformation.

George holds an MBA in IT Management from Western Governors University (Feb 2024) and a BA in Education from Eastern Washington University. He is a Certified Scrum Master, Lean Six Sigma Green Belt, and IPMA LeaderPath graduate. Known for his disciplined approach, mentoring mindset, and results-driven leadership, George continues to bridge technology and strategy to empower teams and transform organizations.

Brian has over a decade of experience in data protection, specializing in DLP and Insider Risk Management. As Cyberhaven’s Director of Sales Engineering and creator of DLPTest.com, he has held key roles at Palo Alto Networks, Digital Guardian, and InteliSecure, and regularly shares insights at conferences like ISSA, CSA, and RMISC.

Joe is a risk management professional with experience across many security, risk and compliance domains. Past roles include advising on GRC software implementations at highly regulated customers and supporting data protection efforts at Aptible, a HITRUST Certified Platform-as-a-Service. Joe currently leads the Trust & Security function at Conveyor, an AI agent company automating the customer security review process and he regularly participates in and presents at regional and national ISACA events.

Timothy Youngblood is the former SVP, Chief Security Officer and Product Security Officer for T-Mobile, where he led the company’s cybersecurity organization. Prior to T-Mobile, Youngblood served as the Chief Information Security Officer for McDonald’s. He also established the CISO roles for two major industry brands, becoming the first Global CISO for both Dell and Kimberly-Clark. Earlier in his career, Youngblood held leadership roles at KPMG, providing advisory services to leading companies across industries. In addition to his board activities, Youngblood is an active angel investor with a focus on cybersecurity, medical devices, clean tech, media, and CPG. In 2024, he was recognized as the top member of the world’s largest angel investment organization, Keiretsu Forum. Youngblood also serves as an adviser to some of the most innovative cybersecurity startups in the industry. He currently holds the role of CISO-in-Residence for Astrix Security, the leader in Agentic and Non-Human Identity Security.

Kip Boyle is the Virtual Chief Information Security Officer of Cyber Risk Opportunities, whose mission is to help executives become more proficient cyber risk managers. He has over 24 years of cybersecurity experience serving as Chief Information Security Officer (CISO) and in other IT risk management roles for organizations in the financial services, technology, telecom, military, civil engineering, and logistics industries.

With a deep passion for cybersecurity, Stephen achieved his CISSP certification in 2012 and completed a Masters in Cybersecurity Management and Policy from the University of Maryland. His distinguished career in the Marine Corps has provided him with challenging and rewarding experiences. Stephen is excited to utilize his expertise to support the local ISC2 Chapter.

Jake Bernstein is a practicing attorney and CISSP who counsels clients trying to understand their cybersecurity risks and the legal duties that arise from those risks. In his decade-plus of practice, Jake has acted as both regulator as an Assistant Attorney General with the Washington State Attorney General's Office and as private defense counsel representing companies subject to data security and privacy regulations enforced by federal, state, and international authorities.

Frank Simorjay (CISSP, ISSA Distinguished Fellow) is a cloud security and compliance subject matter expert. Frank works for Microsoft Azure global ecosystem organization as the Lead PM of the Azure automation Blueprint program, that includes the PCI automation blueprint. Frank has written an extensive library of papers, and blogs (http://cloudntech.blogspot.com/)

AK obtained her CISSP in 2023, after attending an ISC2 Seattle CISSP Bootcamp. She holds a Masters in Analytical Chemistry from the University of Washington and Bachelors in Biochemistry and Computer Science, both from Seattle University.

Jean is an Executive Consultant, ISSA Distinguished Fellow, and honored as a 2015 SC Magazine “Woman of Influence”. With a global focus on strategy, architecture, and technology in the high tech and financial industries, she alternates between technical and executive leadership roles. Once focused on security and cryptography for the financial industry, her current focus is on the use and abuse of blockchains, augmented reality, and the Internet of Things (IoT).

As the City of Seattle’s Chief Privacy Officer, Ginger has responsibility for five citywide programs addressing data protection, government transparency, and public trust, including Responsible AI and Privacy. Prior to this role, she worked for Microsoft as part of an international team of privacy specialists. She spent the first 20 years of her career working in sales and marketing for Fortune 500 companies such as IBM, Hewlett-Packard and Johnson & Johnson, and several medical technology startup companies.

Ginger completed her undergraduate degree in Political Science from Barnard College, Columbia University. As a recipient of the National Science Foundation’s Scholarship for Service Program (CyberCorps), she earned her master’s degree in Infrastructure Planning and Management from the University of Washington, focusing on critical infrastructure cyber resiliency.

Lana is a motivated and results-oriented leader with 20+ years of international experience.

She is experienced in supervising and training teams, building global enterprise-wide programs from the ground up, and leading, planning & executing projects in a variety of industries, ranging from aviation to software, to manufacturing, to telecom and education. She has over 23 years of team management and technology experience, with 19 years of strong contributions to the privacy, security and risk management space at Alaska Airlines Group, Microsoft and Ernst & Young, and with 18 years of training, communications and marketing experience at Alaska Airlines, Microsoft, Ernst & Young, Boeing, PacifiCorp and SCS.

She has earned and been awarded the Six Sigma, CIPP, CIPM, CISA and ITIL Foundations certifications, and is a member of the Digital Marketing Association, Institute of Internal Auditors, the International Association of Privacy Professionals, as well as the IT Compliance Institute. She has an MBA in International Business.

Harald Upegui is the Director of Information Security at HealthPoint, bringing more than 25 years of experience in technology, networking, and cybersecurity. Prior to leading HealthPoint’s cybersecurity program, Harald managed a combined IT Operations and Security Operations team, driving alignment between infrastructure and security initiatives.

In his current role, Harald leads a team focused on cybersecurity strategy and compliance, ensuring adherence to industry standards such as HIPAA, while delivering measurable business outcomes.

Harald holds a Bachelor of Science in Business Information Systems and a Master’s in Information Systems, both from the University of Phoenix. He is also a Certified Information Systems Security Professional (CISSP).

Jenifer Clark is a Senior Security Engineer at Costco Wholesale. As part of the enterprise Data Security team, her focus is on Data Loss Prevention (DLP) and liaison work with internal business teams. Jenifer is a long-time member of the SecureWorld Advisory Council and actively supports public/private partnership efforts. She is a member of Washington State Cybersecurity Advisory Committee, Domestic Security Alliance Council (DSAC), InfraGard, FBI Seattle Citizens Academy Alumni Association, and a multi-year participant in DHS Analyst Exchange Program (AEP). Jenifer also volunteers in the local community as a member and director in King County 4x4 Search and Rescue Association.

Kip Boyle is the Virtual Chief Information Security Officer of Cyber Risk Opportunities, whose mission is to help executives become more proficient cyber risk managers. He has over 24 years of cybersecurity experience serving as Chief Information Security Officer (CISO) and in other IT risk management roles for organizations in the financial services, technology, telecom, military, civil engineering, and logistics industries.

Jake Bernstein is a practicing attorney and CISSP who counsels clients trying to understand their cybersecurity risks and the legal duties that arise from those risks. In his decade-plus of practice, Jake has acted as both regulator as an Assistant Attorney General with the Washington State Attorney General's Office and as private defense counsel representing companies subject to data security and privacy regulations enforced by federal, state, and international authorities.

Matt Crane, Director at Schellman, oversees PCI DSS assessments for diverse industries, leveraging over a decade of information security expertise. He conducts PCI workshops, speaks at industry events, and collaborates with Fortune 500 companies on compliance challenges, including SWIFT CSCF. Before joining Schellman in 2017, Matt specialized in PCI and NIST assessments and intelligence analysis in both private and public sectors. He holds a BBA in Information Security and Assurance and certifications including CISSP, CISA, CRISC, and QSA, ensuring clients receive expert guidance in achieving compliance goals.

Maggie Amato is a dynamic cybersecurity leader with deep expertise in cloud security, AI security, and risk management across technology, healthcare, and federal sectors. Throughout her career, Maggie has been at the forefront of innovation, leading the development of AI-specific security programs, advancing cloud security initiatives at Aetna, and forging impactful public-private partnerships in healthcare. Her leadership and strategic vision have consistently driven transformative security solutions that strengthen organizational resilience.

Brian is an IT Executive with 29 years of experience from Security Operations and Support, Compliance, Risk Management, Technology Innovation, IT Operations, and Support. Currently, Brian is a Business Information Security Officer (BISO) supporting multiple business units at Salesforce, delivering security and compliance across our people, process, technology, and data. In addition to this, he has worked in Security and GRC at Starbucks, Microsoft, and Bank of America, as well as served as a Cybersecurity Advisor for CREATE.ORG, sat on the Board of Technical Advisors for NODUS technologies, served as an alternate to the PCI-DSS Customer Advisory Council, held CISSP and CISM certifications, and published two books and three industry papers on security.

Tim Gallo is the Head of Global Threat Intelligence at Google Cloud, he specializes in Cyber Threat Intelligence and Risk everything from Intelligence Operations and Cyber Threat Profile development to risk based analytic approaches to Security Operations. He Joined Google Cloud through the acquisition of Mandiant by Google in 2022, he had spent 5 years at Mandiant prior to the acquisition in a variety of field facing roles covering the aforementioned topics. Before joining Mandiant, Tim leveraged his over 20 years’ experience in information security and intelligence operations to aid in the development and deployment of a number of solutions. Including building client and organizational expertise in Intelligence Led Security and Business Operations. This included the development and product management of some of the first cyber intelligence solutions ever brought to market. These solutions have included threat and vulnerability management tools, IOC prediction algorithms, intelligence services, and strategic intelligence consulting. Today he spends his days helping clients understand the importance of Intelligence as a guiding principle for building out effective security processes and operations and helping clients and vendors find ways to leverage technologies responsibly to build their cyber defense centers and security operations practices. Every once in a while he can be found out in the desert, sometimes on his Harley with a flamethrower, sometimes with just a flamethrower

Ian Riley is a cybersecurity professional with more than a decade of experience in the IT world, including more than six years specifically focused on cyber security. His career highlights include roles at Blumira as a Solutions Architect, Senior Security Operations Analyst, and Security Cloud Ops at Amazon Web Services (AWS). Ian's expertise lies in security incident response, security best practice configuration and system hardening, approaching cybersecurity from a defensive standpoint. With a strong background in both cloud operations and security analysis, Ian brings a wealth of knowledge and practical experience to the field of information security.

Elizabeth Schaedler is a seasoned Splunk Security Advisor, specializing in helping organizations align their security strategies with business risk objectives. She has extensive expertise in leveraging risk-based alerting to address complex challenges such as fraud prevention. With over 20 years of experience in data center operations and cybersecurity, Elizabeth has held senior roles at leading technology companies including Cray Research, HP, RSA, Sun Microsystems, and IBM, mostly in the high-performance computing (HPC) sector. Based in Portland, Elizabeth is a 3rd generation U of O Duck and spends her free time with her husband, recently embarking on the project of organizing the treasures left behind by their two adult children.

William serves as the leader of AAA Washington’s information security and compliance efforts. He is responsible to establish a responsive, dynamic, and flexible cybersecurity program to meet continually changing information security, regulatory, and compliance needs in the organization.  William has been with AAA Washington since August of 2017. Other roles that William serves in the company include coordinating business continuity program activities and leading the company through emerging privacy legislation management.

In the evenings, William instructs graduate and undergraduate cybersecurity courses at the University of Washington and The Penn State University. William completed his Bachelor of Science in Computer Science from the U.S. Military Academy at West Point. He subsequently earned a Masters in Management Information Systems and an MBA from the University of Maryland. In December of 2018, he completed his Doctorate of Philosophy in Cybersecurity and Information Assurance from Capella University.

Prior to William starting at AAA Washington, he served five years as the Manager of IT Security Engineering at Puget Sound Energy. Prior to that, he also served as the regional CISO for Providence Health and Services. He has also served in similar positions with Alaska USA Federal Credit Union, Chugach Electric Association, and the State of Alaska, Department of Public Safety.

William served in the U.S. Army from 1990 to 1996 as an officer in the Infantry and is a combat veteran for Operation Desert Storm.

Dominique DeVaux Jeffords, a Senior Manager of Cybersecurity at T-Mobile USA, uniquely combines nearly two decades of cross-functional leadership experience with a deep commitment to cyber resilience. She leads teams in Cyber Resiliency and Cyber Portfolio Management, directly contributing to T-Mobile's ability to withstand and recover from cyberattacks. Her leadership in initiatives like the revamped bug bounty program has been pivotal in creating a robust defense by accelerating vulnerability remediation and enhancing the company's proactive security measures. Dominique's journey underscores her adaptability and dedication to making meaningful contributions to a more secure enterprise.

Zabrina McIntyre is a Director with KPMG focusing on large scale cybersecurity transformations for clients with a focus on compliance. She holds the CISSP and PMP certifications and is working on her PCI QSA. She is a dedicated supporter of Women in Cybersecurity (WiCyS) and is currently on the leadership board for the Business Information Security Officer (BISO) Affiliate.

Chief Technology Officer at Washington State Department of Labor and Industries. Expert level grasp on IT Security governance and management of security in application, infrastructure and cloud domains. Spearheaded teams to do FedRAMP assessments of major cloud service provider giants in the industry. Certifications include CISSP, CCSP, CISA, PCIP, PMP, and AWS-SAA. Formerly PCI-QSA certified with a PCI assessor.

Sonali Bhagwat is Senior Director Adobe, leading global programs in Security Engineering, Privacy and Data Protection. With over 20 years of experience at Adobe, Twitter, and Microsoft, she has built scalable AI governance frameworks, privacy-by-design initiatives, and enterprise security capabilities. She holds a Bachelor’s in Engineering from the University of Mumbai and an MBA from the University of North Carolina, Chapel Hill.

Akhila Nama leads the Enterprise Security organization at Box where she oversees security design, strategy, architecture and risk management, with a focus on securing modern enterprise environments while driving business growth. With more than a decade of experience, Akhila has worked through multiple roles and domains, helping organizations navigate complex threats while building security programs and teams that scale.

Scott Benson is the Director of Cybersecurity and Infrastructure at Mud Bay, with over 25 years of experience in the field. He holds certifications such as CISSP, CEH, and PCIP. Scott leads a team responsible for cybersecurity, infrastructure, and help desk services, ensuring successful business outcomes and compliance with industry standards. He has a strong background in risk management, cloud security, and cybersecurity strategies.

An Information Security leader with experience establishing resilient security strategies and procedures enhancing the corporate security posture, through evaluation of risk, promoting security awareness and privacy training, management of incident response, managing relationships with customers and business partners, and ensuring continued compliance through internal, customer and certification security audits.

A proven leader, skilled in managing network and application operations, knowledgeable in many collaboration and web environments and successfully managed services and large scale projects. Experienced in several security frameworks, including ISO 27001, PCI DSS, HITRUST, NIST 800-53, HIPAA, GDPR and SOC.

Megan Slabinski is the District President for Robert Half, the world’s first and largest specialized talent solutions firm. Megan oversees operations for the Technology and Marketing and Creative practice groups in the Pacific Northwest, Utah, New Mexico and Northern California.

Megan joined Robert Half in 1999 and has held numerous leadership roles within the company, including Regional Vice President and Executive Director of The Creative Group. A veteran of the staffing industry, she has helped place thousands of professionals in rewarding careers and has provided local businesses with the talent they need to be successful.

Megan is considered an industry expert and quoted frequently on career-related topics as well as speaking publicly at various events throughout the regions she oversees. She is a graduate of the University of Washington.

Kip Boyle is the Virtual Chief Information Security Officer of Cyber Risk Opportunities, whose mission is to help executives become more proficient cyber risk managers. He has over 24 years of cybersecurity experience serving as Chief Information Security Officer (CISO) and in other IT risk management roles for organizations in the financial services, technology, telecom, military, civil engineering, and logistics industries.

Larry Wilson was formerly the Chief Information Security Officer for Sumitomo Pharma Americas, Inc., Worcester Polytechnic Institute, and the University of Massachusetts (UMass) President's Office. In the CISO role, Larry was responsible for developing, implementing, and overseeing compliance with the SMPA / WPI / UMass Information Security Policy and Written Information Security Plan (WISP). In addition to designing and deploying the respective cybersecurity programs, Larry has developed and delivered cybersecurity training at multiple industry events, workshops, training venues, etc. Courses include Designing and Building a Cybersecurity Program, Designing and Building a Ransomware Program, and Designing and Building a Third-Party Risk Program. Larry has also worked with multiple companies in multiple industries to help design, build, and maintain their Cybersecurity Programs, Ransomware Program, and Third-Party Risk Programs.