Speaker Bios
We are honored to have the following keynotes, conference speakers, panelists and workshop instructors contribute their expertise to the 2019 NY Metro Joint Cyber Security Conference.

Welcome Address

  William Hugh Murray
National Cyber Security Hall of Fame, (ISC)2 Fellow & Harold Tipton Lifetime Achievement Award, ISE Luminary Leadership Award
William Hugh (Bill) Murray has been responding for years to security threats with nonconventional thinking. When he sees a security breakdown, he asks what is the current practice that allows the breakdown to happen, and what new practice would stop it? Most of our security vulnerabilities arise from poor practice, not from inadequate technology.

He joined IBM Research as a programmer in 1956, where he worked on such iconic systems as the first 704 and the first 650 Tape System, US Steel One, and with such industry pioneers as Nathaniel Rochester, Arthur Samuels, Jerrier Haddad, and Frederick Brooks. He managed the design and development of the access control subsystem for IBM's Advanced Administrative System and has since been associated with security, audit, and control. He has been recognized as a "founder" of the systems audit field and as a "pioneer" of computer security. After retiring from IBM in 1987, he has been associated with Ernst & Young, Deloitte, TruSecure, Cybertrust, and Verizon Business. He serves on the faculty of the Naval Postgraduate School. He also serves on the board of (ISC)^2, the certifying body for computer security professionals. In 2016, he was inducted into National Cyber Security Hall of Fame.


  Ron Ross
Fellow, National Institute of Standards and Technology
Ron Ross is a Fellow at the National Institute of Standards and Technology (NIST). His areas of specialization include information security, risk management, security architecture/engineering, and systems resiliency. Dr. Ross leads the Federal Information Security Management Act Implementation Project, which includes the development of security standards and guidelines for the federal government, contractors, and the United States critical information infrastructure. He is the principal architect of the NIST Risk Management Framework and multi-tiered approach that provides a disciplined and structured methodology for integrating the suite of security standards and guidelines into a comprehensive enterprise-wide information security program. Dr. Ross also leads the Joint Task Force, an interagency partnership with the Department of Defense, the Intelligence Community, and the Committee on National Security Systems that developed the Unified Information Security Framework for the federal government.

In addition to his responsibilities at NIST, Dr. Ross also supports the U.S. State Department in its international outreach program for cybersecurity and critical infrastructure protection. He previously served as the Director of the National Information Assurance Partnership, a joint activity of NIST and the National Security Agency and has been a guest lecturer at many universities and colleges across the country. A graduate of the United States Military Academy at West Point, Dr. Ross served in a variety of leadership and technical positions during his twenty-year career in the United States Army. During his military career, Dr. Ross served as a White House aide and as a senior advisor to the Department of the Army. He is a graduate of the Defense Systems Management College and holds both Masters and Ph.D. degrees in Computer Science from the Naval Postgraduate School specializing in artificial intelligence and robotics.

Conference/Workshop Speakers

  Nina Alli
Biohacking Village
Nina Alli is the Executive Director of the BioHacking Village at DEF CON and a guru of trivial knowledge. Nina has worked in healthcare tech/sec for 16 years, primarily in Electronic Medical Record programming, interfacing, and security as well as worked on various biomedical projects. She has two higher education degrees, in Biomedical Informatics and Translational Medicine - with a focus on medical devices. She is working on a diagnostic microfluidics device being incubated at the NYU Veterans Future Lab. Nina worked as a Scientist in Residence at the New York Academy of Sciences and has served in the US Marine Corps.
  Andrea Bonime-Blanc
CEO/Founder, GEC Risk Advisory LLC
Dr. Andrea Bonime-Blanc is founder and CEO of GEC Risk Advisory, a global strategic governance, risk, ethics and cyber advisor to business, government and non-profits. She is a former global senior executive at Bertelsmann, Verint and PSEG and a board member and former board chair and chair emeritus of the Ethics and Compliance Association. Since 2017, she has served as Ethics Advisor to the Financial Oversight and Management Board for Puerto Rico. She is start-up mentor at Plug & Play Tech Center, life member at the Council on Foreign Relations, faculty at the NACD and NYU and an international keynote speaker with Thinking Heads. She is author of numerous books including The Reputation Risk Handbook (2014), Emerging Practices in Cyber Risk Governance (2016) and coauthor, The Artificial Intelligence Imperative (2018). Her latest book is Gloom to Boom: How Leaders Transform Risk into Resilience and Value published in 2019 by Routledge. She tweets as @GlobalEthicist.
  (ret.) U.S. Army Colonel Jon Brickey - Panelist
Senior Vice President, Cybersecurity Evangelist, Mastercard Operations & Technology
Dr. Jon Brickey is Senior Vice President, Cybersecurity Evangelist, for Mastercard Operations & Technology (O&T). In this role, he leads the development of cybersecurity strategy, architecture, research, outreach, education/training/awareness, and tech scouting. Jon supports Corporate Security's mission of delivering safety and security at the speed of business.

Before joining Mastercard, Dr. Brickey served in the Army on active duty for over 26 years and retired as a Colonel, holding a variety of leadership and technical roles in information systems management and cyberspace operations. In his last position, he served as the Army Cyber Institute Partner Relations Director for the National Capital Region. Previously, Jon held leadership positions in Cyber-related programs at the National Security Agency, U.S. Cyber Command, Army Cyber Command, U.S. Northern Command, and the U.S. Military Academy at West Point.

Dr. Brickey earned his bachelor's degree in Political Science from the United States Military Academy at West Point, a master's degree in Science in Information Technology Management from the Naval Postgraduate School, and a Ph.D. in Computer Science and Information Systems from the University of Colorado Denver.
  John C. Checco
President Emeritus, NY Metro InfraGard
John Checco is President Emeritus of the not-for-profit NY Metro InfraGard Members Alliance, an appointed member to Strategic Content Advisory Board of the Wall Street Technology Association, and belongs to a variety of local information security organizations. He has also presented at the FBI's Information Sharing Initiative, HackNYC, previous NYMJCSC conferences, and at various cybersecurity chapter meetings.
  Robert Darling
CEO, Turning Point Crisis Mgt
Robert "Bob" Darling is founder and CEO of TPCM-USA. Prior to starting the company, Bob led missions flying attack helicopters in Desert Shield, Desert Storm, and Somalia Africa and subsequently served as a presidential helicopter pilot supporting President Bill Clinton, and as an Airlift Operations officer for the White House Military Office (WHMO) under President George W. Bush. Bob is the author of "24 Hours Inside the President's Bunker", a graduate of Harvard University's seminar on Crisis Leadership, and an internationally sought-after public speaker on Crisis Management and Leadership
  Elissa Doroff
Vice President, Underwriting and Product Manager for Technology and Cyber Liability of AXA XL Insurance
Elissa Doroff is a Vice President and Product Manager for XL Catlin's Cyber & Technology team. In this role, she works to direct and manage XL Catlin's risk management services designed to minimize the frequency and severity of data breaches. She has over a decade of cyber and technology insurance expertise having worked as claims counsel at AIG and, previously, as a broker of cyber insurance at Marsh and McLennan where she counseled public and private clients on their risks and insurance needs in the areas of media, technology, privacy and cyber. She has considerable experience presenting these topics on panels and seminars for clients and industry associations and she has published many industry related articles.
  Eric Dull
Specialist Leader, Deloitte Cyber Risk
Eric Dull is a Specialist Leader at Deloitte Cyber Risk, developing and executing large-scale data science and cyber applications for a variety of clients. He is a recognized expert with demonstrated mission successes in applied graph theory, data mining, anomaly detection, and data quality algorithms. His work includes machine learning, anomaly detection, computer network analysis, data mining, graph algorithm research and application against client problems. He has received a BA in CS from Carleton College and a MS in CS from Johns Hopkins University.
  Paul Ferrillo
Partner, Greenberg Traurig LLP
Paul Ferrillo focuses his practice on cybersecurity corporate governance issues, complex securities and business litigation, and internal investigations. He assists clients with governance, disclosure, and regulatory matters relating to their cybersecurity postures and the regulatory requirements which govern them. Paul represents public companies and their directors and officers in shareholder class and derivative actions, as well as in internal investigations. In particular, he has coordinated numerous internal investigations on behalf of audit committees and special committees, and handled the defense of securities class actions alleging accounting irregularities and/or financial fraud. He is also the author of Navigating the Cybersecurity Storm: A Guide for Directors and Officers (Advisen 2015) and Co-Author of Take Back Control of Your Cybersecurity Now: Game Changing Concepts on AI and Cyber Governance Solutions for Executives (Advisen 2017).
CEO, Interactive Security Training, LLC
Jay is a multi-certified Information Security Subject-Matter-Expert (SME) and with more than 30 years of professional experience, which includes Security & Compliance, Integration and Transformation Initiatives, IS Management Process and Operational Metrics Definition and Documentation. Customers include Community Health Network of Connecticut, Inc. (CHNCT), Cigna Insurance, Microsoft, Rogers Communications, GM, AT&T, USMC, US Air Force, US ARMY and DISA. Other customers include banks, government agencies, health agencies and providers. Jay is Past President of Greater Hartford Chapter of ISACA.
  Carol Fox
VP, Risk and Insurance Management Society
Carol Fox, ARM, Vice President, Strategic Initiatives, joined the staff of RIMS, the risk management societyŽ in 2010. Carol spearheads RIMS' emphasis on applied risk management practices by distinguishing RIMS' approaches to enterprise and strategic risk management as organizational disciplines, by influencing risk management standards and practices, and by contributing to the advancement of risk management as a profession. In 2016, she began leading RIMS global development and content programming and more recently assumed responsibilities for knowledge and learning, as well as publications for the society. A Miami University graduate, she has held progressively responsible risk management positions in the customer care, telecommunications, manufacturing, defense and insurance industries. Carol is the former chair of the U.S. ISO 31000 Technical Advisory Group on risk management standards, a liaison member of the ISO 37000 Technical Committee on the governance of organizations, served as a participant on the COSO ERM Advisory Council and serves on the Advisory Board for Miami University's Isaac & Oxley Center for Business Leadership in the Farmer Business School. Known for her risk management experience and writing, she received RIMS' prestigious Goodell Award in 2009. In 2011, Treasury & Risk named her as one of the 100 Most Influential People in Finance.
  Mark Francis
Partner, Holland & Knight
Mark Francis is a tech & data partner at the law firm Holland & Knight LLP in New York, with a focus on cybersecurity, data privacy and intellectual property matters. Mark advises clients on a wide array of data and technology issues and his practice includes counseling, legal compliance, regulatory investigations, litigation, and a wide array of transactions. Mark has a background in computer science and telecommunications, and received his JD/MBA from Fordham University. He is a Certified Information Systems Security Professional (CISSP) and Certified Ethical Hacker (CEH), as well as an IAPP Fellow of Information Privacy. Mark is currently serving on the board of the New York Metro InfraGard association.
  U.S. Army Colonel Hise Gibson, DBA - Panelist
Academy Professor, United States Military Academy at West Point
Dr. Hise O. Gibson is a Colonel in the United States Army and has served on active duty for over 20 years. As a Master-rated Army Aviator, he led Blackhawk flight platoons/companies and commanded teams across Korea, Germany, Afghanistan, and Iraq. He is the recipient of the Bronze Star Medal for service in Afghanistan and Iraq.

Colonel Gibson's previous assignments include serving as Company Commander in Germany and Iraq; Executive Officer (Chief of Staff) and Battalion Operations Officer in Germany and Afghanistan where he was second-in-command of a 750-Solider organization with a fleet of 50 helicopters; and Battalion Commander (CEO) of a 650- person/35-aircraft unit in the 82nd Airborne Division, Fort Bragg, NC.

Colonel Gibson serves as Academy Professor of Systems Engineering (tenured) at the United States Military Academy at West Point. He also currently serves as a Military Fellow at the MIT Lincoln Laboratory, and as a Visiting Scholar at Harvard Business School. Earlier in his career, he taught mathematics at West Point.

Colonel Gibson serves as Class President at the United States Military Academy at West Point, where he graduated with a B.S. in Operations Research and was a member of the NCAA Division-1A Army Football team. He received his M.S. in Operations Research from the Naval Postgraduate School, a Masters in Operations from the Air Command and Staff College, and a Doctor of Business Administration (DBA) in Technology and Operations Management from Harvard Business School.
  Billy Gouveia
Senior Managing Director of Cyber at S-RM Consulting
Multi-dimensional technology and cybersecurity executive who leverages leadership abilities and strategic thinking to solve business problems, support customers, and build teams. Deep experience in achieving cybersecurity, strategic, risk management, and compliance results at complex organizations. Highly-principled relationship builder who moves easily across cross-functional organizations with natural aptitude for building and mentoring high-performing teams, building trust, and gaining stakeholder buy-in to drive business results.
  Guy Hermann
Owner, GSA Training
Guy Hermann is an enterprise architect, developer and technical trainer with 30+ years of experience consulting, designing, testing, implementing, managing and securing software solutions and network infrastructures to provide cost-effective solutions for business. His focus has been primarily on Microsoft software and solutions. His focus has been on leveraging and securing Microsoft software products and operating systems. He has worked with some of the largest ISP's in the World, designing their infrastructure and evaluating their security. His irreverent and refreshing style will wake you up to the potential of new technologies to solve your toughest challenges.
  Robert Kratzke
VP Learning, BESTech Education
Technology consultant focused on the how to leverage technology to grow your business. Data breach prevention, compliance, and remediation specialist. Successfull track record of driving opportunities through strategic partnerships between national training providers, vendors and solution providers.
  Ondrej Krehel
Ondrej Krehel, CEO & Founder of LIFARS is recognized world-wide for his Digital Forensic expertise. He actively participates in many high-profile engagements around the world whereby his proprietary methodology is leveraged to achieve the most rapid root-cause analysis and remediation. With two decades of experience in computer security and forensics, Krehel has conducted a wide range of red team exercises, cyber resilience matters, investigations, including data breached through computer intrusions, theft of intellectual property, massive deletions, defragmentation, file carvings, anti-money laundering, financial fraud, mathematical modeling and computer hacking.
  Richard Lethin
President, Reservoir Labs
Dr. Richard Lethin is President at Reservoir Labs, Inc., a New York-based research and product company that serves government and industry clients. Richard leads projects in high performance computing for missions in cybersecurity, defense and energy. Richard is a recognized expert in the high performance computing field with publications spanning supercomputing, compilers, sensors, networking, algorithms, and mathematics. Richard has received his BS degree from Yale College and MS and PhD from MIT. Richard is also a Senior Lecturer in the Electrical Engineering department at Yale University.
  Peter Mosmans
Author, PluralSight
Peter is a senior pentester / security practitioner with broad experience in all aspects of Internet security (teaching, designing, planning, developing, implementing, hosting, testing and verifying). The main focus is on securing web applications, whether it's from providing advice in the design phase (threat modeling), instructing employees (security-related trainings, presenting workshops) or by performing and reporting on web penetration tests (pentesting: ethical / whitehat hacker).
  Keith Rayle
Strategist, Fortinet
Over 20 years of operational and consulting security experience. Executive level security consulting, to include program/portfolio creation and management. Provided board level reporting, security strategy creation and implementation, and global business security integrations. Acted as CISO for large corporations. Led large, technical multi-project teams at the program level, with oversight of multiple simultaneous and complex implementations of technical security integrations. Designed and implemented all aspects of corporate security programs.
  David Schoenberger
CEO, Eclypses
David Schoenberger has developed disruptive technology for electronic payments and data security companies since the mid-1990's. David has designed and delivered high speed, highly redundant, and highly secure platforms and continues to emerge as a first mover and innovator in applying these solutions to the mobile space and industry specific markets such as payment processors working directly with the Federal Reserve and Card Associations, the largest financial institutions, and Fortune 50 companies. With a programming and ERP configurable network computing foundation, David is a leader in payment and security solutions and has presented theories and solutions across the United States and internationally. David is currently the CIO and Co-Founder of Eclypses, Inc which has created and patented the MicroToken Exchange that secures data at 'rest' and in 'transit' preventing real data from being stolen. David also started a non-profit research laboratory that experiments with simulating monopolaric magnetic behavior and the effect on moving electrons efficiently.
  Ellen Shew Holland
President, Strategic Risk Frameworks
Ellen's expertise in risk management includes over two decades of experience working with complex organizations designing and implementing programs to mitigate risk. She now works with firms in identifying strategic risks that could prohibit them from reaching their goals. This includes a focus on cyber-security, crisis management and risk financing, and includes identifying innovative and effective ways for entities to mitigate losses while becoming more resilient. Ellen has served in leadership positions in various global risk management associations throughout her career.
  Rod Simmons
VP of Product Strategy - Active Directory, STEALTHbits
Senior level manager with over 20 years of technology experience, including roles as a single contributor, manager, and leadership team member. Extensive experience handling complex business problems, helping clients to define and solve the issues they face, turning desired outcomes into realistic solutions. Successfully grown Product Teams and delivered 10+ new products to market. Effective communicator with experience in public speaking, presentation development, webcast speaking, and technical writing.
  Brian M. Stites
Senior Managing Director, FTI Consulting
Brian M. Stites is a Managing Director in FTI Consulting's Cybersecurity practice and is based in Washington, DC. Mr. Stites has over 20 years of critical infrastructure protection and industrial cybersecurity experience having served in numerous high-level cybersecurity roles in the defense and private sectors.

Prior to joining FTI Consulting, Mr. Stites served as a Director at Jacobs Engineering Group, where he focused on digital infrastructure safety and resiliency, metro and utility preparedness, and maritime and transportation infrastructure security. He also previously served as the Vice President of Business Development for the Department of Defense and Critical Infrastructure at Mission Secure Inc., Chief Architect and Senior Manager for Raytheon's Defense and Commercial Cyber Resilience Group, and Senior Strategic and Operational Planner for L-3 National Security Solutions (acquired by CACI in 2016) focused on executive national crisis response and state and local infrastructure preparedness and incident response.
  Viral Trivedi, SCCISP
Co-Founder & Cybersecurity Solutions Officer, Ampcus Cyber Inc
Viral is a Hands-on executive officer known for strategic and focused approach, with extensive accolades for limiting risk, creating lean teams, and establishing creative strategies for optimizing internal operations, financial returns, external customer service, and output. He has over 20 years of Sales, Pre-Sales, Solutions Architecture & Professional Services experience with a diverse set of verticals. Viral has represented Cyber Security Services & Critical Infrastructure Cybersecurity Solutions at organizations such as General Electric (GE Digital), Verizon Business, AT&T and Ernst & Young. In addition to Sales & Solution Development background, Viral assisted many Industrial clients to adopt a cyber-security blueprint throughout their digital transformation journey towards Industrial IoT and has spoken at events such as GE Minds and Machines and CS4CA - Cybersecurity For Critical Assets as well as ISACA Chapters all across USA. Viral is Customer-focused trusted advisors with a focus on helping customers achieve their cyber, business and financial outcomes. Demonstrated mastery in leading an organization through an upcoming period of growth. Expertise to deliver enhancements & cybersecurity solutions that drive customer satisfaction and loyalty.
  (ret.) U.S. Army Colonel JC Vega - Panelist
Executive Security Advisor, IBM Security
JC is the Executive Security Advisor and the X-Force Cyber Range Coach for IBM Security. He is a proven executive and visionary with over three decades of security leadership experience. He served 29 years in the Army in multiple leadership, advisory and mentorship roles. that include CIO, Board Member, Advisor, CISO, Director of Cyber Operations and United States Military Academy cyber instructor. JC has led operation in high stress environments characterized by demanding standards and intense operational schedules. He possesses extensive experience in building strategic cyber programs at the Army/National level and leading professional Operations, Research and Technology teams in preparation for combat and support missions in the most hostile environments.

JC is one of the Founders of the Army Cyber Institute (ACI), the US Army's cybersecurity career field (Cyber branch), Co-Founder and Chairman of the Joint Service Academy Cybersecurity Summit (JSA) and CyCon US. The ACI is US national asset and cybersecurity think tank that is focused on preventing "Cyber Strategic Surprise" that would negatively impact the United States, allies, and its critical infrastructure. In the creation of the Cyber branch, JC addressed the challenges of culture, talent management, education and training, and operational roles and relevance of the positions. He is the first conference chairman of CyCon US, a joint endeavor with NATO's Cooperative Cyber Defence Centre of Excellence that focuses on nation state cyber interests. As the co-founder of JSA and chairman (2015 and 2016), he organizes an elite group of leaders of group of leaders from government, private industry, and academia that focus on the future challenges of the cybersecurity discipline and domain.
  Sam Vohra
CompCiti Business Solutions
Sam Vohra is the CEO at CompCiti Business Solutions, Board of Directors & Membership Committee Co-Chair with ISACA New York Metropolitan Chapter. Sam Vohra co-founded CompCiti Business Solutions, Inc. (CompCiti.com) in 1996 to provide businesses, organizations, and governmental agencies with outstanding IT auditing, compliance, management and security services. Over the years, cybersecurity has become more of a concern, both due to the growing sophistication of attacks and our increasing reliance on networked systems. To augment CompCiti's services, Sam received his CISA and CISM certifications to provide clients with outstanding IT auditing and compliance for SOX, HIPAA, Opinion 483, and 23 NYCRR 500.
  Munish Walther-Puri
Director of Cyber Risk, NYC Cyber Command
Munish Walther-Puri is the Director of Cyber Risk for New York City Cyber Command, where he leads the cyber risk management program. Previously, he founded Presearch Strategy, a firm dedicated to applying technology and analytics to geopolitical risk, strategic intelligence, and cybersecurity, and was the Chief Research Officer at Terbium Labs, a dark web data intelligence startup, where he led strategy and operations of the company's analysis, intelligence, and reporting. He also spent time at Citigroup, working on the intersection of fraud, cyber investigations, and terrorism. Walther-Puri is a seasoned analyst, consultant, and trainer, with experience in technology, financial services, risk consulting, and policy. He is an active member of the analyst and intelligence community, and a technical advisor to the Do No Digital Harm Initiative. He is a member of INSA's Cyber Council, the International Consortium of Minority Cybersecurity Professionals, and the ODNI-DHS Analyst Exchange Program.

[ Home ]