|
Moderator
 Colin Whittaker, PCI Industry Alumni, Founder and Director Informed Risk Decisions Ltd. Colin has been instrumental in driving forward a risk and security strategy for payments over the last 15 years since he retired from the military in 2001, and took up the role of Head of Security at APACS. Whilst there he was one of the first people to be elected to the PCI SSC Board of Advisors where he was always keen to try and promote the differences in threat between Europe and UK, and the US. He was also responsible for coordinating Visa Europe's approach to cardholder data breaches in Europe, and for the changes to the Visa Europe Compliance strategy through the creation of the Technology Innovation Programme which gave the very first PCI DSS compliance relief for EMV chip accepting merchants. In 2015 he went independent and currently provides cyber security risk consultancy services to a wide range of public and private companies. Colin has presented on Information Security at major events around the world, and has published a number of papers on security.
Panel
 Paul Asadoorian is currently the Principal Security Evangelist for Eclypsium and the founder of Security Weekly, a security podcast network (acquired by CyberRisk Alliance in 2020). Paul's previous roles have been spent “in the trenches” coding in Python, testing security products, and evaluating and implementing open-source software. Paul's career began by implementing security programs for a lottery company and then a large university. Paul is offensive, having spent several years as a penetration tester. As Product Evangelist for Tenable Network Security, Paul built a library of materials on the topic of vulnerability management.
 Charlie Jones, CISA,(ChCSP, CISSP, CISA), Director, Product Management at ReversingLabs. Charlie is currently a Director of Product Management and subject matter expert (SME) in supply chain security, digital trust, and product strategy. Formerly a consultant at PwC, Charlie has 10 years experience delivering strategic transformation initiatives, specializing in cyber security, third-party risk management, and IT audit programs for Fortune and FTSE 100 financial service institutions. An active member of the global cyber security community, Charlie regularly publishes thought leadership, speaks at high-profile conferences, participates in industry working groups, and helps shape international standards through his position on the Technical Advisory Panel for the UK Cyber Security Council. Recently honored with the prestigious CSO 30 Award, Charlie is recognized as a top security leader in the UK, demonstrating outstanding business value, innovation, and contributions to the wider community. LinkedIn: https://www.linkedin.com/in/charlie-jones3/
 Brian Fox, Co-founder and CTO of Sonatype, Brian Fox is a member of the Apache Software Foundation and former Chair of the Apache Maven project. As a direct contributor to the Maven ecosystem, including the maven-dependency-plugin and maven-enforcer-plugin, he has over 20 years of experience driving the vision behind, as well as developing and leading the development of software for organizations ranging from startups to large enterprises. Brian is a frequent speaker at national and regional events including Java User Groups and other development related conferences. https://www.linkedin.com/in/brianefox/
 Andrew Dorminey is currently a GRC Specialist Solutions Engineer at OneTrust, an industry leader in third-party risk management technology. Formally a consultant for EY, Andrew has spent the better portion of the past decade understanding client use cases and advising best practices utilizing technology in an everchanging regulatory landscape. Andrew is also a United States Army veteran.
NASBA CPE Information
Register for this session through the console above. In order to be awarded the full credits, you must be respond to three out of the four polling questions asked during the program, and attend the session for a minimum of 45 minutes.
Qualifying participants will earn 1.5 CPE credits
Field of Study: Information Technology
Additional Information
Prerequisites: Basic knowledge of internet security issues within enterprise and the financial industry. No advance preparation required.
Who Should Attend: This session is suitable for executives, managers and key staff in all GRC and Information Security roles (including risk, audit, compliance, ethics, legal, performance, IT, Data Security, Cyber Security etc…). Members of technology providers and professional service firms will also benefit from understanding the issues and approaches covered on this session.
Program Level: Overview
Delivery Method: Group Internet Based. This is a group live event for NASBA authorized continuing education credit. Qualifying attendees will receive a certificate of completion of this event indicating 1 hour of CPE.
Refunds and Cancellations: No Fee. For more information regarding complaints, and/or program cancellation policies please contact our at This email address is being protected from spambots. You need JavaScript enabled to view it.
|
The IT GRC Forum from Executive IT Forums, Inc, is a premier online resource for Governance, Risk Management, and Compliance (GRC) Executives. We produce educational events and provide CPE credits on our programs. 
Justyna Kucharczak, Senior Portfolio Solutions Marketing Manager at Cloudflare. In her role Justyna focuses on data compliance and protection with 12+ years of experience. She has worked across B2B tech industries in cybersecurity, network and app performance monitoring, app development, DevOps and backup. She is passionate about all things cloud and how it has transformed the way we work and live.
Jason Dover serves as Chief Product Officer of FileCloud, responsible for overall product direction, strategic technology partnerships, and M&A activity. Jason has over 15 years of technology leadership experience working across enterprise organizations. At NYSE Euronext, he led systems integration projects with Liffe, AEMS, AMEX, and Euronext. At Deutsche Bank, he was responsible for the management of the entire messaging ecosystem while supporting a global enterprise technologies services re-architecture and migration to HP management. At Kemp Technologies, he held various roles across sales, marketing, product, and strategy, leading to the creation of a $10M+ strategic partner business with Dell, the acquisition an integration of Flowmon Networks, and the strategic acquisition of Kemp by Progress Software. At Progress, he led Product portfolio integration, worked on business unit M&A initiatives, coordinated emerging technologies development, and created a newly integrated ~$100M product family as VP of Product Strategy.
Erich Kron, Security Awareness Advocate at KnowBe4, is a veteran information security professional with over 20 years’ experience in the medical, aerospace manufacturing and defense fields. He is the former security manager for the 2nd Regional Cyber Center-Western Hemisphere and holds CISSP, CISSP-ISSAP, MCITP and ITIL v3 certifications, among others. He has managed the technical integration and functional testing of multi-million-dollar enterprise level technology projects within the Department of Defense, as well as large military security programs. Erich has worked with information security professionals around the world to provide the tools, training and educational opportunities to succeed in the InfoSec industry.
Dirk Schrader is a seasoned expert in cyber resilience and information security processes, Dirk is Global VP of Security Research at New Net Technologies, now part of Netwrix, the leading provider of SecureOps™. A 25-year veteran in IT security with certifications as CISSP (ISC²) and CISM (ISACA), he works to advance cyber resilience as a modern approach to tackling cyber threats. Dirk has worked on cybersecurity projects around the globe, starting in technical and support roles at the beginning of his career and then moving into sales, marketing and product management positions at both large multinational corporations and small startups. He has published numerous articles about the need to address change and vulnerability management to achieve cyber resilience.
Nicholas Muy is the Chief Information Security Officer at Scrut Automation, where he leads cybersecurity, data privacy, and compliance. A vocal advocate within the security community for building security programs that align to business objectives. Previously a security and strategy leader at Expedia Group in security engineering and architecture and M&A. Prior to this, a cyber policy strategist in the U.S. Department of Homeland Security. Passionate about security, Nicholas is an active member of the security and technology community, promoting responsible innovation and building security.