SecureWorld Seattle 2025

Kip Boyle is the Virtual Chief Information Security Officer of Cyber Risk Opportunities, whose mission is to help executives become more proficient cyber risk managers. He has over 24 years of cybersecurity experience serving as Chief Information Security Officer (CISO) and in other IT risk management roles for organizations in the financial services, technology, telecom, military, civil engineering, and logistics industries.

Larry Wilson was formerly the Chief Information Security Officer for Sumitomo Pharma Americas, Inc., Worcester Polytechnic Institute, and the University of Massachusetts (UMass) President's Office. In the CISO role, Larry was responsible for developing, implementing, and overseeing compliance with the SMPA / WPI / UMass Information Security Policy and Written Information Security Plan (WISP). In addition to designing and deploying the respective cybersecurity programs, Larry has developed and delivered cybersecurity training at multiple industry events, workshops, training venues, etc. Courses include Designing and Building a Cybersecurity Program, Designing and Building a Ransomware Program, and Designing and Building a Third-Party Risk Program. Larry has also worked with multiple companies in multiple industries to help design, build, and maintain their Cybersecurity Programs, Ransomware Program, and Third-Party Risk Programs.

Mr. Di Giacomo is an award-winning, veteran cybersecurity executive with over 26 years of experience leading security strategy and governance across critical infrastructure and corporate environments, both domestically and internationally. His expertise encompasses IT and OT security, security governance, cloud security, disaster recovery, risk and compliance management across multiple industry frameworks, and data privacy. In his current role as Chief Information Security Officer at Sound Transit, he built a nationally recognized, security program from the ground up based on the ISO 27001 international standard, achieving top-tier maturity ratings, confirmed by independent audits. Mr. Di Giacomo holds multiple rigorous, industry-relevant certifications including C|CISO, CISSP, CISM, CISA, CRISC, CDPSE and HISP, and is a frequent speaker, lecturer, and advisor on cybersecurity, risk, and resilience. Mr. Di Giacomo holds both a B.S. in Electronic Engineering degree, as well as a Master of Engineering and Technology Management, Summa Cum Laude.

A strategic visionary and hands-on leader, Mr. Di Giacomo is deeply committed to advancing cybersecurity maturity and resilience. He currently serves on the Washington State Technology Services Board Security Subcommittee and contributes to multiple professional associations including ISACA, ISC2 and ISSA and the IEEE, where he has achieved Senior Member status. Fluent in English, Spanish, and Italian, Mr. Di Giacomo brings a global perspective with a business and mission centric focus to today’s cybersecurity challenges and solutions.

As the Chief Information Security Officer at Nordstrom, I lead a team of cybersecurity professionals who are passionate about protecting the company's data, systems, and customers. I have over 10 years of experience in cybersecurity, spanning various domains such as incident response, forensics, malware analysis, network security, and data protection.

My mission is to bring honesty, transparency, and integrity to the cybersecurity function, and to partner with other technology and business teams to ensure a balanced and pragmatic approach to our common goals. I leverage my expertise in cybersecurity strategy, policy, governance, and risk management to enable REI's growth and innovation. I also foster a culture of security awareness, education, and empowerment across the organization.

As PACCAR's CISO, I am responsible for strategy, investigations, forensics work, policy and procedure creation and review, security risk assessments and project management. This is a global position, with information security responsibility for all PACCAR locations.

Lisa Plaggemier is Executive Director at the National Cybersecurity Alliance. She is a recognized thought leader in security awareness and education with a track record of engaging and empowering people to protect themselves, their families, and their organizations. Lisa is a University of Michigan graduate (Go Blue!) and while she wasn’t born in Austin, Texas, she got there as fast as she could.

Tristan works for the Washington Military Department’s Emergency Management Division. Leading the Infrastructure and Industry Section, his work is focused on critical infrastructure resilience, cybersecurity preparedness and response, and enhancing public-private cooperation before, during and after disasters. Prior to joining state service in 2016, Tristan worked for the federal government focusing on technology research and development to improve the nation’s defense and international humanitarian response operations.

Chief Jeffrey (Jeff) Flohr has over 30 years of law enforcement experience. Jeff began his career in the Bay Area of California, where he worked for Moraga and San Pablo Police Departments. During his time in California, Jeff served as Field Training Officer, K9 Handler, Drug Recognition Expert, Gang Detective, and member of several state and federal task forces.

Drawn to the size and diversity of the King County Sheriff’s Office and the variety of assignments and opportunities it provides, Jeff began his career with KCSO in early 2005. He started as a Deputy in the contract city of Kenmore, served as a School Resource Officer in Kirkland, and quickly became a Master Police Officer (MPO) before being promoted to Sergeant in 2012. During his tenure as Sergeant, Jeff had numerous assignments, including North Precinct patrol, KCSO patrol K9 Unit, Sound Transit, Special Emphasis Team, and Explosive Detection K9 Unit. In 2016, Jeff was selected to be the Field Operations Administrative Sergeant for the Patrol Operations Chief. In this role, Jeff supported KCSO patrol operations and assignments county-wide, including Background Investigations, staffing, and recruiting. Jeff also coordinated the Critical Incident Review Boards for KCSO.

In 2018, Jeff was promoted to Captain and assigned to lead the King County Communications Center. He was promoted to Major in 2020 and assigned to lead the Southwest Precinct, which includes Skyway, White Center, and Vashon communities. In this role, Jeff joined the Urban King County Reimagining Policing Group, where he worked with numerous King County departments to explore what policing in unincorporated King County will look like in the future. In 2021, Jeff was promoted to Chief and assigned to the Technical Services Division. While there he oversaw the successful ratification of multiple groundbreaking labor contracts, inclusion of body worn cameras in the bi-annual budget and an increased effort surrounding recruiting and reducing vacancies. In 2023, with the addition of two new divisions at KCSO, Jeff was assigned to the Special Operations Division. The Special Operations Division includes two transit contacts, Metro Transit Police and Sound Transit Police, the Aircraft Rescue and Fire Fighting at the King County International Airport as well as the traditional Special Operations units such as TAC-30, Crisis Negotiation, Bomb Disposal, K9s, Air Support, Search and Rescue, Marine Rescue Dive Unit.
Jeff believes in community policing that is fair and accountable. Throughout his career, Jeff has led by example and built strong working relationships at all levels of government through open and honest communication. Jeff has served as Incident Commander for high-profile events including dignitary visits, anti-terrorism efforts, concerts, sporting events, and civil disturbances. He has also led the development and implementation of several initiatives, including the creation of Sound Transit’s Special Emphasis Team (SET) to enhance rider and employee safety; modernizing the statistical tracking of K9 deployments, contacts, and training documentation; working with the King County Council to implement ordinances impacting solicitations and noise complaints; and working with U.S. Senators and Congress members to update King County’s 911 system to address next-generation issues. Jeff has received numerous accolades and awards throughout his career, including Officer of the Year, Deputy of the Year, Sergeant of the Year, Lifesaver Award, and the Sheriff’s Medal.

Jeff and his wife, Stevee, have been together for over 20 years. They enjoy traveling, watching their daughter play softball at Central Washington University, and playing with their dog.

Jenifer Clark is a Senior Security Engineer at Costco Wholesale. As part of the enterprise Data Security team, her focus is on Data Loss Prevention (DLP) and liaison work with internal business teams. Jenifer is a long-time member of the SecureWorld Advisory Council and actively supports public/private partnership efforts. She is a member of Washington State Cybersecurity Advisory Committee, Domestic Security Alliance Council (DSAC), InfraGard, FBI Seattle Citizens Academy Alumni Association, and a multi-year participant in DHS Analyst Exchange Program (AEP). Jenifer also volunteers in the local community as a member and director in King County 4x4 Search and Rescue Association.

Stephanie Warren has over 28 years of experience in technology, with the past 15 years dedicated to the field of Information Security. As the Assistant Director of Information Security, she brings a seasoned perspective to federal and regulatory compliance, incident response, and data protection. She excels at bridging communication between frontline employees and executive leadership, fostering alignment that strengthens organizational resilience. Her expertise in risk management helps organizations anticipate threats, adapt to challenges, and sustain long-term operational continuity. She holds a Bachelor of Science in Cybersecurity and Information Assurance and is a Certified Information Systems Security Professional (CISSP).

CISSP and Security+ certified Principal Cybersecurity Engineer using system engineering principles and a lot of curiosity.

Brian is an IT Executive with 29 years of experience from Security Operations and Support, Compliance, Risk Management, Technology Innovation, IT Operations, and Support. Currently, Brian is a Business Information Security Officer (BISO) supporting multiple business units at Salesforce, delivering security and compliance across our people, process, technology, and data. In addition to this, he has worked in Security and GRC at Starbucks, Microsoft, and Bank of America, as well as served as a Cybersecurity Advisor for CREATE.ORG, sat on the Board of Technical Advisors for NODUS technologies, served as an alternate to the PCI-DSS Customer Advisory Council, held CISSP and CISM certifications, and published two books and three industry papers on security.

Brian Denman is the Director of Global Cyber Risk Solution Delivery for SecurityScorecard. In this role, he leads service delivery for our MAX third-party cyber risk management program.

Brian has over thirty years of executive and frontline experience in enterprise IT, cybersecurity, and cyberwarfare operations, twenty-five of which were in the national security sector or the Intelligence Community. As a global network operator, he was responsible for the daily operation and security of the United States Air Force’s classified and unclassified worldwide networks, including proactive management of cyber risk and all-hazards incident response. As a third-party incident responder, he organized and trained Cyber Protection Teams for U.S. Cyber Command’s to provide threat hunting, advisory, and incident response services. He led these teams to defend military systems, domestic and international critical infrastructure, and the Defense Industrial Base, including the Command’s first landmark “Defend Forward” missions in support of U.S. election security and partner defense in Eastern Europe. Since retiring from government service, Brian has advised and trained both U.S. government and private sector organizations, ranging from small and medium businesses to Fortune 50 firms, on enterprise cybersecurity, risk, and incident response management.

Yasser is a Principal Solutions Architect (Cloud Security SME) for Bitdefender and Security Practitioner with over 20 years of experience in Information Security. Along his career he has worked for Healthcare Providers, ISPs, MSPs and SOCs, among many other verticals and throughout multiple Information Security Domains. On his previous role as a Product Manager for Cloud Security, he enabled Sales, Technical Teams and Technical Partners and contributed to numerous architectural projects in both private and public sector. Regarding credentials and certifications, he possesses top Security Vendors Certifications such AWS and Azure as well as worldwide recognized credentials such as CISM (ISACA) and CISSP (ISC2).

Craig Spiezle is the Founder and President of AgeLight Advisory & Research Group, a professional services firm focused on online and digital services. Craig is a recognized authority on trust and the convergence of privacy and security promoting ethical privacy practices, end-to-end security and the importance on moving from a compliance mindset to stewardship. Craig is the Charmain emeritus of the Online Trust Alliance, an initiative of the Internet Society. He frequently briefs international policy makers driving awareness of best practices by both the public and private sectors and importance of internet governance. Craig has championed security best practices to help protect consumers while promoting innovation and the role of meaningful self-regulation. Prior to OTA, Craig spent over a decade at Microsoft focused on security and privacy enhancing technologies and standards. Craig chairs the Online Trust & Integrity Council and is on the board of the Identity Theft Council, editorial board of SC Magazine and a member of InfraGard, the IAPP and the APWG.

Scott Benson is the Director of Cybersecurity and Infrastructure at Mud Bay, with over 25 years of experience in the field. He holds certifications such as CISSP, CEH, and PCIP. Scott leads a team responsible for cybersecurity, infrastructure, and help desk services, ensuring successful business outcomes and compliance with industry standards. He has a strong background in risk management, cloud security, and cybersecurity strategies.

Erika Carrara is a seasoned cybersecurity and technology expert with over two decades of experience. Skilled at helping businesses navigate cyber risks, data governance, and digital transformation, Erika has led several corporations through a security maturity curve in the defense industrial base, federal sector, and twice in manufacturing, now at Greenbrier. She is an expert in security governance, compliance, privacy, and digital systemic risk.

In her role as Chief Information Security & Infrastructure Officer, Erika presents at all board meetings, providing information and guidance on cyber protection and resiliency. As a Boardroom Qualified Technology Expert (QTE), she works closely with the board's enterprise risk and audit committee and C-Suite, providing updates on the materiality of cybersecurity risks and incidents. Erika has enhanced security governance at Wabtec by strengthening the company's governance framework, establishing effective risk management processes, conducting frequent risk assessments, and providing strategic guidance to the board and C-Suite on cyber risk matters. She maintains a pulse on the regulatory landscape, overseeing adherence to cybersecurity regulations, industry standards, and data protection laws in the 53 countries where Wabtec operates.

A Native American and veteran, Erika is passionate about championing DEI and social programs/causes. She advocates for gender diversity through education, industry sharing, and career development. As a values-based leader, Erika demonstrates diplomacy, flexibility, and a deep commitment to life-affirming principles such as honesty, integrity, trust, and compassion for others.

Doug Cavit has been involved in cybersecurity for 30 years as CIO of McAfee and Chief Security Strategist at Microsoft, as well as CISO for two tech startups working on automated cybersecurity in the cloud. He was a major contributor to Microsoft adding anti-malware and several versions of Windows. He has been involved in setting security standards for the financial services and utility industries as well as the ISO process for secure software development. He has helped the Global Fortune 1000 and governments around the world on security and is a noted speaker in the security industry. Doug was a finalist for an Orbie award for CISO of the year in 2025. He holds multiple patents for IT infrastructure. Currently, he is CISO for Snohomish County in Washington State. In addition, he is a volunteer board member for a local non-profit that provides computers to the disadvantaged.

William serves as the leader of AAA Washington’s information security and compliance efforts. He is responsible to establish a responsive, dynamic, and flexible cybersecurity program to meet continually changing information security, regulatory, and compliance needs in the organization.  William has been with AAA Washington since August of 2017. Other roles that William serves in the company include coordinating business continuity program activities and leading the company through emerging privacy legislation management.

In the evenings, William instructs graduate and undergraduate cybersecurity courses at the University of Washington and The Penn State University. William completed his Bachelor of Science in Computer Science from the U.S. Military Academy at West Point. He subsequently earned a Masters in Management Information Systems and an MBA from the University of Maryland. In December of 2018, he completed his Doctorate of Philosophy in Cybersecurity and Information Assurance from Capella University.

Prior to William starting at AAA Washington, he served five years as the Manager of IT Security Engineering at Puget Sound Energy. Prior to that, he also served as the regional CISO for Providence Health and Services. He has also served in similar positions with Alaska USA Federal Credit Union, Chugach Electric Association, and the State of Alaska, Department of Public Safety.

William served in the U.S. Army from 1990 to 1996 as an officer in the Infantry and is a combat veteran for Operation Desert Storm.

Zabrina McIntyre is a Director with KPMG focusing on large scale cybersecurity transformations for clients with a focus on compliance. She holds the CISSP and PMP certifications and is working on her PCI QSA. She is a dedicated supporter of Women in Cybersecurity (WiCyS) and is currently on the leadership board for the Business Information Security Officer (BISO) Affiliate.

Currently the Vice President of Cyber Services for AmTrustCyber, Courtney Hans brings a variety of experience into her work. In her early career, Courtney was an adventure travel guide with a short window to make a strong impression. Curiosity became her superpower as she learned how to uncover the inner motivations of diverse groups of guests. Guiding, just like cybersecurity, requires agility and a cool head during a crisis. Formerly the Head of Security and IT for a growing SaaS startup, Courtney joined AmTrust to help to reduce risk and deepen the relationship between carrier and insured.

Kip Boyle is the Virtual Chief Information Security Officer of Cyber Risk Opportunities, whose mission is to help executives become more proficient cyber risk managers. He has over 24 years of cybersecurity experience serving as Chief Information Security Officer (CISO) and in other IT risk management roles for organizations in the financial services, technology, telecom, military, civil engineering, and logistics industries.

Jake Bernstein is a practicing attorney and CISSP who counsels clients trying to understand their cybersecurity risks and the legal duties that arise from those risks. In his decade-plus of practice, Jake has acted as both regulator as an Assistant Attorney General with the Washington State Attorney General's Office and as private defense counsel representing companies subject to data security and privacy regulations enforced by federal, state, and international authorities.

Lisa Plaggemier is Executive Director at the National Cybersecurity Alliance. She is a recognized thought leader in security awareness and education with a track record of engaging and empowering people to protect themselves, their families, and their organizations. Lisa is a University of Michigan graduate (Go Blue!) and while she wasn’t born in Austin, Texas, she got there as fast as she could.

Cliff Steinhauer is a passionate information security and privacy professional. Currently based in Seattle, he has over a decade of experience in sales, marketing, and project management. With the National Cybersecurity Alliance, Cliff works to direct community engagement through live events, educates through thought leadership, and runs the Cybersecurity program for NCA. Cliff enjoys sharing the message of securing your digital life, protecting information systems and the people that run them, and mentoring young folks to promote interest in the field.​

Randy J. Hinrichs is a national leader in AI ethics and cybersecurity education, serving as Professor of Practice at Norwich University and PhD candidate in CyberEthics at the University of Idaho. He directs multiple NSA-funded NCAE Co-Op Centers, advancing workforce development through experiential learning and ethical AI integration. Randy is the architect of the AI Moral Code—an empirical framework for embedding moral reasoning into AI systems—and the creator of the NSA-endorsed “CyberEd in a Box” program. With over 25 years of leadership across Microsoft, Sun Microsystems, and federal innovation projects, he combines immersive technologies, ethical governance, and workforce transformation to build a secure and responsible AI future.

Colson has been in the cybersecurity space for seven years now, with that journey starting at pre-Cisco Duo. Over the years he developed significant interest in cloud security and governance. While in the past that might have specifically referred to the public cloud, applications and the users that connect to them live everywhere, which means a broader viewpoint is needed to effectively secure the users, data, and devices that make up an organization. Colson has helped companies develop effective Zero Trust Network Access and data protection programs, starting with visibility and ending with effectively implementing policies that protect critical business data.

Today, his journey brings him back to devices, though still with a "zero trust" lens, where organizations are not just trusting the data their systems provide but validating and verifying via aggregating all of their different data sources into one place. This visibility, just as it does when building a data protection program, is the first step to effective risk management programs.

Bryan Ward is a cybersecurity veteran with over two decades of experience helping global enterprises strengthen their security posture. He specializes in Zero Trust, microsegmentation, and practical approaches to network and infrastructure security, with leadership roles at companies like Akamai, Guardicore, and ColorTokens. Bryan is known for turning complex security challenges into actionable strategies that actually work.

Troy Batterberry is the founder and CEO of EchoMark, a Software-as-a-Service (SaaS) company pioneering a new standard in information protection. The company was founded on that trust is central to empowering everyone to do their best work. Troy brings years of product and technology experience, including 25 years at Microsoft, where he most recently served as a Corporate Vice President as the product leader of Microsoft Teams Meetings, Calling, and Events. During his tenure, Troy also played an integral role in the growth and success of marquee Microsoft products, such as Windows, Explorer/Edge, Bing, Xbox, and MSN. Before joining Microsoft, Troy held engineering positions at Sony and within the U.S. Department of Defense. Troy is driven by a long-standing passion for creating new experiences and products.

In addition to his professional pursuits, Troy is a parent volunteer at his kids’ schools, spends time volunteering for Boy Scouts, and also enjoys time outdoors boating, hiking, and running. He holds an M.S. in Information Systems from the University of Southern California and a B.S. in Electrical and Electronic Engineering from North Dakota State University.

Kip Boyle is the Virtual Chief Information Security Officer of Cyber Risk Opportunities, whose mission is to help executives become more proficient cyber risk managers. He has over 24 years of cybersecurity experience serving as Chief Information Security Officer (CISO) and in other IT risk management roles for organizations in the financial services, technology, telecom, military, civil engineering, and logistics industries.

Larry Wilson was formerly the Chief Information Security Officer for Sumitomo Pharma Americas, Inc., Worcester Polytechnic Institute, and the University of Massachusetts (UMass) President's Office. In the CISO role, Larry was responsible for developing, implementing, and overseeing compliance with the SMPA / WPI / UMass Information Security Policy and Written Information Security Plan (WISP). In addition to designing and deploying the respective cybersecurity programs, Larry has developed and delivered cybersecurity training at multiple industry events, workshops, training venues, etc. Courses include Designing and Building a Cybersecurity Program, Designing and Building a Ransomware Program, and Designing and Building a Third-Party Risk Program. Larry has also worked with multiple companies in multiple industries to help design, build, and maintain their Cybersecurity Programs, Ransomware Program, and Third-Party Risk Programs.

Kip Boyle is the Virtual Chief Information Security Officer of Cyber Risk Opportunities, whose mission is to help executives become more proficient cyber risk managers. He has over 24 years of cybersecurity experience serving as Chief Information Security Officer (CISO) and in other IT risk management roles for organizations in the financial services, technology, telecom, military, civil engineering, and logistics industries.

Larry Wilson was formerly the Chief Information Security Officer for Sumitomo Pharma Americas, Inc., Worcester Polytechnic Institute, and the University of Massachusetts (UMass) President's Office. In the CISO role, Larry was responsible for developing, implementing, and overseeing compliance with the SMPA / WPI / UMass Information Security Policy and Written Information Security Plan (WISP). In addition to designing and deploying the respective cybersecurity programs, Larry has developed and delivered cybersecurity training at multiple industry events, workshops, training venues, etc. Courses include Designing and Building a Cybersecurity Program, Designing and Building a Ransomware Program, and Designing and Building a Third-Party Risk Program. Larry has also worked with multiple companies in multiple industries to help design, build, and maintain their Cybersecurity Programs, Ransomware Program, and Third-Party Risk Programs.

Lisa Plaggemier is Executive Director at the National Cybersecurity Alliance. She is a recognized thought leader in security awareness and education with a track record of engaging and empowering people to protect themselves, their families, and their organizations. Lisa is a University of Michigan graduate (Go Blue!) and while she wasn’t born in Austin, Texas, she got there as fast as she could.

Tim Rains is an internationally recognized cybersecurity executive, advisor, and author.

Currently, Tim is Vice President and Chief Information Security Officer at ADT – the largest security and automation company in the United States, protecting 6.5 million households. In this role, Tim leads enterprise cybersecurity and product security.
Previously, Tim was Vice President Trust & Cyber Risk at T-Mobile where he led cybersecurity strategy, architecture, assurance, risk management, compliance, and the Business Information Security Officer function. While Tim was at T-Mobile, he was appointed to serve on a subcommittee of the President of the United States’ National Security Telecommunications Advisory Committee (NSTAC) that developed recommendations to the President focused on improving national cybersecurity.
Prior to T-Mobile, Tim held cybersecurity leadership positions at both Amazon Web Services and Microsoft. At AWS, Tim was the Global Security and Compliance Leader for Worldwide Public Sector, where he spent 3 years living in London.

In the 17 years Tim spent at Microsoft, he held numerous roles including Global Chief Security Advisor, Director of Security, Identity, and Enterprise Mobility, Director of Trustworthy Computing, and founding Technical Lead of Microsoft’s customer facing Cybersecurity Incident Response Team.

Tim is the author of the popular book, now in its second edition, “Cybersecurity Threats, Malware Trends, and Strategies” published by Packt Publishing.

Ralph Hogaboom is a seasoned cybersecurity leader with a deep commitment to public service and a human-centered approach to information security. A West Coast native from Aberdeen, Washington, Hogaboom worked his way up from grassroots tech support roles—from learning Perl and web design on the weekends to promote his string of punk bands, to serving as Chief Information Security Officer for the Washington State Department of Natural Resources. Today, Hogaboom is focused on building a world-class cybersecurity program powered by sound technical capability, practical risk management, trust, and empathy.

In a career spanning more than three decades, Mr. Khaja Ahmed has worked at the forefront of security technology — developing cutting-edge solutions in secure communications, data protection, and applied cryptography. He has led high-impact security teams at leading companies including Gemini (a cryptocurrency exchange), Microsoft, Google, and Amazon. His expertise spans hands-on system design, organizational leadership, and executive engagement—enabling him to architect solutions, build world-class teams, and shape security strategy at the highest levels. A sought-after speaker and panelist, he frequently addresses topics ranging from technical security practices to team building and leadership for individual and organizational growth. Currently, Khaja is an angel investor and advisor/consultant to startups in security. He enjoys teaching at his son’s institute, Ahmed Tech Academy, and at Bellevue College where he teaches Information Security and Computer Architecture as adjunct faculty.

Anil Karmel is a cybersecurity leader, serial entrepreneur, and startup advisor, founding two companies from 0 to 1 to exit. Formerly, Anil served as the National Nuclear Security Administration's (NNSA) Deputy Chief Technology Officer. Karmel began his government career as a Technical Staff Member of Los Alamos National Laboratory (LANL) and was responsible for inventing their cloud and collaboration technologies. Karmel and his team have garnered industry and government accolades, including the SANS National Cyber Security Innovators Award for Cloud Security, SINET Top 16 Cybersecurity Startups, InformationWeek 500 Top Government IT Innovators, and the DOE Secretary's Achievement Award. Anil served as the president of the Cloud Security Alliance’s DC Metro Area Chapter and is a member of the CSA's CxO Trust Advisory Council.

With more than 20 years of experience in the technology industry, Vishwas has a passion for innovation and problem-solving, and a track record of delivering high-impact products and projects in various domains, such as infrastructure, networking, security, cloud, IoT, and data. He is formerly the Chief Technologist and Head of Cloud Native Security at McAfee, where he led the vision, strategy, and execution of cutting-edge security solutions for the cloud. He has also been a founder, CEO, CTO, product manager, and engineer in large companies and startups, working with diverse technologies and languages. Has co-invented multiple technologies and authored several publications in the IETF, where he is an active contributor and member. His specialties include bringing new ideas to market, creating new technology, building energized teams, and providing technology execution, vision and direction.

Aradhna serves as a Managing Director Executive – Digital & Cyber Transformations at TIAA, a financial services company, she is responsible for the cloud security DevSecOps for Applications, Data, AI Enterprise vision, strategy, standards, security patterns in a multi-cloud hybrid enterprise. Her expertise spans Cloud Security; IAM, Zero Trust, Data Protection and GenAI Security Engineering. She has worked in various cybersecurity leadership roles at JP Morgan Chase, Boeing Company, Microsoft, and T-Mobile. Aradhna is an active member in the cyber security industry. She is Co-Chair of Cloud Native Computing Foundation Security TAG, Co-Chair for CSA Serverless Working group and a Cloud Security Alliance Research Fellow; she contributes to OWASP AI, CNCF , Cloud Security Alliance working groups and NIST Cloud computing standards, has influenced best practices and standards for cloud, containers and micro services security. She has also been providing expert guidance to a number of startups on security product roadmaps and feature development especially in the area of Identity and Access Management, Zero Trust and Container Security etc. Aradhna has a Masters in Cybersecurity, a bachelor's in electrical engineering, a
CISSP and CCSP from ISC2.org. Outside of work, Aradhna enjoys hiking, snowshoeing, and volunteering for women’s causes.

Marivell Alicea-Gamlin is a Senior Cybersecurity BISO Analyst at CBRE, where she connects cybersecurity strategy to business outcomes through client assurance, audit support, and third-party risk engagement. With more than 20 years of experience across IT operations, governance, and compliance, she plays a key role in shaping cyber strategy and building client trust. Marivell serves on the board of ISSA Puget Sound as Director of Membership and actively mentors emerging cybersecurity professionals. She holds a Master’s in Network and Communications Management, is ISC2 Certified in Cybersecurity (CC), and brings a global perspective with fluency in Spanish and developing proficiency in Portuguese.

Iain Sloan is an accomplished cybersecurity leader with more than 40 years of experience in information technology and security across both public and private sectors in the UK, Texas, and Washington State. As Chief Information Security Officer for the Washington State Liquor and Cannabis Board, he is responsible for safeguarding critical infrastructure, ensuring regulatory compliance, and driving strategic initiatives that enhance the agency’s security posture.

Throughout his career, Iain has led enterprise programs, implemented risk management frameworks, and fostered cross-functional collaboration to address evolving cyber threats. His deep technical expertise, combined with a commitment to operational excellence and public service, makes him a respected voice in the cybersecurity community.

George Williams is a seasoned technology executive and retired Senior Army Officer with over two decades of distinguished leadership in IT operations, strategic planning, and organizational transformation. Currently serving as Chief Information Officer and Director of IT Services for the Washington State Liquor and Cannabis Board, George leads enterprise-wide technology initiatives that drive innovation, efficiency, and mission alignment. His recent success includes spearheading a $70 million Salesforce CRM modernization project, replacing seven legacy systems and streamlining agency operations.

George’s career spans both public and private sectors, with prior roles including Senior IT Manager and Assistant Division Manager at Washington state agencies, and Engineering Manager at Iron Bow Technologies. His expertise encompasses cloud infrastructure, cybersecurity, enterprise systems, and vendor management—backed by hands-on experience with platforms like VMware, Azure, AWS, and Salesforce. A veteran of the U.S. Army and Washington Army National Guard, George held pivotal roles in global operations, including strategic planning for NATO in Afghanistan and communications leadership in Iraq. His military tenure culminated in commanding a missile defense site and developing communications doctrine for the Army’s digital transformation.

George holds an MBA in IT Management from Western Governors University (Feb 2024) and a BA in Education from Eastern Washington University. He is a Certified Scrum Master, Lean Six Sigma Green Belt, and IPMA LeaderPath graduate. Known for his disciplined approach, mentoring mindset, and results-driven leadership, George continues to bridge technology and strategy to empower teams and transform organizations.

Brian has over a decade of experience in data protection, specializing in DLP and Insider Risk Management. As Cyberhaven’s Director of Sales Engineering and creator of DLPTest.com, he has held key roles at Palo Alto Networks, Digital Guardian, and InteliSecure, and regularly shares insights at conferences like ISSA, CSA, and RMISC.

Timothy Youngblood is the former SVP, Chief Security Officer and Product Security Officer for T-Mobile, where he led the company’s cybersecurity organization. Prior to T-Mobile, Youngblood served as the Chief Information Security Officer for McDonald’s. He also established the CISO roles for two major industry brands, becoming the first Global CISO for both Dell and Kimberly-Clark. Earlier in his career, Youngblood held leadership roles at KPMG, providing advisory services to leading companies across industries. In addition to his board activities, Youngblood is an active angel investor with a focus on cybersecurity, medical devices, clean tech, media, and CPG. In 2024, he was recognized as the top member of the world’s largest angel investment organization, Keiretsu Forum. Youngblood also serves as an adviser to some of the most innovative cybersecurity startups in the industry. He currently holds the role of CISO-in-Residence for Astrix Security, the leader in Agentic and Non-Human Identity Security.

Joe is a risk management professional with experience across many security, risk and compliance domains. Past roles include advising on GRC software implementations at highly regulated customers and supporting data protection efforts at Aptible, a HITRUST Certified Platform-as-a-Service. Joe currently leads the Trust & Security function at Conveyor, an AI agent company automating the customer security review process and he regularly participates in and presents at regional and national ISACA events.

Jake Bernstein is a practicing attorney and CISSP who counsels clients trying to understand their cybersecurity risks and the legal duties that arise from those risks. In his decade-plus of practice, Jake has acted as both regulator as an Assistant Attorney General with the Washington State Attorney General's Office and as private defense counsel representing companies subject to data security and privacy regulations enforced by federal, state, and international authorities.

Frank Simorjay (CISSP, ISSA Distinguished Fellow) is a cloud security and compliance subject matter expert. Frank works for Microsoft Azure global ecosystem organization as the Lead PM of the Azure automation Blueprint program, that includes the PCI automation blueprint. Frank has written an extensive library of papers, and blogs (http://cloudntech.blogspot.com/)

AK obtained her CISSP in 2023, after attending an ISC2 Seattle CISSP Bootcamp. She holds a Masters in Analytical Chemistry from the University of Washington and Bachelors in Biochemistry and Computer Science, both from Seattle University.

Jean is an Executive Consultant, ISSA Distinguished Fellow, and honored as a 2015 SC Magazine “Woman of Influence”. With a global focus on strategy, architecture, and technology in the high tech and financial industries, she alternates between technical and executive leadership roles. Once focused on security and cryptography for the financial industry, her current focus is on the use and abuse of blockchains, augmented reality, and the Internet of Things (IoT).

Lana is a motivated and results-oriented leader with 20+ years of international experience.

She is experienced in supervising and training teams, building global enterprise-wide programs from the ground up, and leading, planning & executing projects in a variety of industries, ranging from aviation to software, to manufacturing, to telecom and education. She has over 23 years of team management and technology experience, with 19 years of strong contributions to the privacy, security and risk management space at Alaska Airlines Group, Microsoft and Ernst & Young, and with 18 years of training, communications and marketing experience at Alaska Airlines, Microsoft, Ernst & Young, Boeing, PacifiCorp and SCS.

She has earned and been awarded the Six Sigma, CIPP, CIPM, CISA and ITIL Foundations certifications, and is a member of the Digital Marketing Association, Institute of Internal Auditors, the International Association of Privacy Professionals, as well as the IT Compliance Institute. She has an MBA in International Business.

Kip Boyle is the Virtual Chief Information Security Officer of Cyber Risk Opportunities, whose mission is to help executives become more proficient cyber risk managers. He has over 24 years of cybersecurity experience serving as Chief Information Security Officer (CISO) and in other IT risk management roles for organizations in the financial services, technology, telecom, military, civil engineering, and logistics industries.

Jake Bernstein is a practicing attorney and CISSP who counsels clients trying to understand their cybersecurity risks and the legal duties that arise from those risks. In his decade-plus of practice, Jake has acted as both regulator as an Assistant Attorney General with the Washington State Attorney General's Office and as private defense counsel representing companies subject to data security and privacy regulations enforced by federal, state, and international authorities.

Matt Crane, Director at Schellman, oversees PCI DSS assessments for diverse industries, leveraging over a decade of information security expertise. He conducts PCI workshops, speaks at industry events, and collaborates with Fortune 500 companies on compliance challenges, including SWIFT CSCF. Before joining Schellman in 2017, Matt specialized in PCI and NIST assessments and intelligence analysis in both private and public sectors. He holds a BBA in Information Security and Assurance and certifications including CISSP, CISA, CRISC, and QSA, ensuring clients receive expert guidance in achieving compliance goals.

Mario Mercaldi is a Lead Security Engineer at Salesforce, with a career rooted in building security tools, reverse engineering software, and leading large-scale risk assessments. For over a decade, he has combined offensive and product security expertise with a passion for automation and developing practical frameworks that help organizations scale security without losing precision. Today, Mario focuses on applying AI and emerging standards such as the Model Context Protocol (MCP) to shift security from reactive detection to proactive prevention - bringing a practitioner’s eye for detail to one of the industry’s biggest transformations.

Tim Gallo is the Head of Global Threat Intelligence at Google Cloud, he specializes in Cyber Threat Intelligence and Risk everything from Intelligence Operations and Cyber Threat Profile development to risk based analytic approaches to Security Operations. He Joined Google Cloud through the acquisition of Mandiant by Google in 2022, he had spent 5 years at Mandiant prior to the acquisition in a variety of field facing roles covering the aforementioned topics. Before joining Mandiant, Tim leveraged his over 20 years’ experience in information security and intelligence operations to aid in the development and deployment of a number of solutions. Including building client and organizational expertise in Intelligence Led Security and Business Operations. This included the development and product management of some of the first cyber intelligence solutions ever brought to market. These solutions have included threat and vulnerability management tools, IOC prediction algorithms, intelligence services, and strategic intelligence consulting. Today he spends his days helping clients understand the importance of Intelligence as a guiding principle for building out effective security processes and operations and helping clients and vendors find ways to leverage technologies responsibly to build their cyber defense centers and security operations practices. Every once in a while he can be found out in the desert, sometimes on his Harley with a flamethrower, sometimes with just a flamethrower

Elizabeth Schaedler is a seasoned Splunk Security Advisor, specializing in helping organizations align their security strategies with business risk objectives. She has extensive expertise in leveraging risk-based alerting to address complex challenges such as fraud prevention. With over 20 years of experience in data center operations and cybersecurity, Elizabeth has held senior roles at leading technology companies including Cray Research, HP, RSA, Sun Microsystems, and IBM, mostly in the high-performance computing (HPC) sector. Based in Portland, Elizabeth is a 3rd generation U of O Duck and spends her free time with her husband, recently embarking on the project of organizing the treasures left behind by their two adult children.

William serves as the leader of AAA Washington’s information security and compliance efforts. He is responsible to establish a responsive, dynamic, and flexible cybersecurity program to meet continually changing information security, regulatory, and compliance needs in the organization.  William has been with AAA Washington since August of 2017. Other roles that William serves in the company include coordinating business continuity program activities and leading the company through emerging privacy legislation management.

In the evenings, William instructs graduate and undergraduate cybersecurity courses at the University of Washington and The Penn State University. William completed his Bachelor of Science in Computer Science from the U.S. Military Academy at West Point. He subsequently earned a Masters in Management Information Systems and an MBA from the University of Maryland. In December of 2018, he completed his Doctorate of Philosophy in Cybersecurity and Information Assurance from Capella University.

Prior to William starting at AAA Washington, he served five years as the Manager of IT Security Engineering at Puget Sound Energy. Prior to that, he also served as the regional CISO for Providence Health and Services. He has also served in similar positions with Alaska USA Federal Credit Union, Chugach Electric Association, and the State of Alaska, Department of Public Safety.

William served in the U.S. Army from 1990 to 1996 as an officer in the Infantry and is a combat veteran for Operation Desert Storm.

Sonali Bhagwat is Senior Director Adobe, leading global programs in Security Engineering, Privacy and Data Protection. With over 20 years of experience at Adobe, Twitter, and Microsoft, she has built scalable AI governance frameworks, privacy-by-design initiatives, and enterprise security capabilities. She holds a Bachelor’s in Engineering from the University of Mumbai and an MBA from the University of North Carolina, Chapel Hill.

Akhila Nama leads the Enterprise Security organization at Box where she oversees security design, strategy, architecture and risk management, with a focus on securing modern enterprise environments while driving business growth. With more than a decade of experience, Akhila has worked through multiple roles and domains, helping organizations navigate complex threats while building security programs and teams that scale.

Scott Benson is the Director of Cybersecurity and Infrastructure at Mud Bay, with over 25 years of experience in the field. He holds certifications such as CISSP, CEH, and PCIP. Scott leads a team responsible for cybersecurity, infrastructure, and help desk services, ensuring successful business outcomes and compliance with industry standards. He has a strong background in risk management, cloud security, and cybersecurity strategies.

An Information Security leader with experience establishing resilient security strategies and procedures enhancing the corporate security posture, through evaluation of risk, promoting security awareness and privacy training, management of incident response, managing relationships with customers and business partners, and ensuring continued compliance through internal, customer and certification security audits.

A proven leader, skilled in managing network and application operations, knowledgeable in many collaboration and web environments and successfully managed services and large scale projects. Experienced in several security frameworks, including ISO 27001, PCI DSS, HITRUST, NIST 800-53, HIPAA, GDPR and SOC.

Megan Slabinski is the District President for Robert Half, the world’s first and largest specialized talent solutions firm. Megan oversees operations for the Technology and Marketing and Creative practice groups in the Pacific Northwest, Utah, New Mexico and Northern California.

Megan joined Robert Half in 1999 and has held numerous leadership roles within the company, including Regional Vice President and Executive Director of The Creative Group. A veteran of the staffing industry, she has helped place thousands of professionals in rewarding careers and has provided local businesses with the talent they need to be successful.

Megan is considered an industry expert and quoted frequently on career-related topics as well as speaking publicly at various events throughout the regions she oversees. She is a graduate of the University of Washington.

Kip Boyle is the Virtual Chief Information Security Officer of Cyber Risk Opportunities, whose mission is to help executives become more proficient cyber risk managers. He has over 24 years of cybersecurity experience serving as Chief Information Security Officer (CISO) and in other IT risk management roles for organizations in the financial services, technology, telecom, military, civil engineering, and logistics industries.

Larry Wilson was formerly the Chief Information Security Officer for Sumitomo Pharma Americas, Inc., Worcester Polytechnic Institute, and the University of Massachusetts (UMass) President's Office. In the CISO role, Larry was responsible for developing, implementing, and overseeing compliance with the SMPA / WPI / UMass Information Security Policy and Written Information Security Plan (WISP). In addition to designing and deploying the respective cybersecurity programs, Larry has developed and delivered cybersecurity training at multiple industry events, workshops, training venues, etc. Courses include Designing and Building a Cybersecurity Program, Designing and Building a Ransomware Program, and Designing and Building a Third-Party Risk Program. Larry has also worked with multiple companies in multiple industries to help design, build, and maintain their Cybersecurity Programs, Ransomware Program, and Third-Party Risk Programs.