Security education for the new generation: A panel discussion on developing the talent pipeline Hosted by Jacob West, CTO and Head of Research, Enterprise Security Products #HPProtect © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
Jacob West Lou Saviano
CTO and Head of Research, HP Enterprise Security Products
Sr Director of Global IT Services, SkillSoft
Robin “Montana” Williams
Chief of Cybersecurity Education & Awareness Branch, Department of Homeland Security
Keith Duemling
Information Security Office, Lake Health
Kirsten Davies
Head of ISEC Technical and Operations CISO - Global Strategy & Governance, Siemens
Nicki Havoc
Security Researcher, HP Security Research
Dr. Matthew Bishop
Professor of Computer Science, UC Davis
Jacob West
CTO and Head of Research, HP Enterprise Security Products
Dr. Matthew Bishop
Professor of Computer Science, UC Davis
Jacob West is chief technology officer for Enterprise Security Products at HP. In his role, West influences the security product roadmap and leads HP Security Research, which conducts research and leverages partnerships to deliver security intelligence to HP customers. West spent the last decade developing, delivering, and monetizing security solutions beginning with academic research and as an early researcher at Fortify prior to its growth and acquisition by HP. Most recently, West served as CTO and head of research for Fortify products. West co-authored the book Secure Programming with Static Analysis with Fortify founder Brian Chess and coauthors the Building Security in Maturity Model. A graduate of the University of California, Berkeley, West resides in San Francisco, CA. Professor Matt Bishop's research area is computer security, in which he has been active since 1979. He is especially interested in vulnerability analysis and denial of service problems, but maintains a healthy concern for formal modeling (especially of access controls and the Take-Grant Protection Model) and intrusion detection and response. He has also worked extensively on the security of various forms of the UNIX operating system. He is involved in efforts to improve education in information assurance, and is a charter member of the Colloquium for Information Systems Security Education. His textbook, Computer Security: Art and Science, was published by Addison-Wesley in December 2002. Professor Bishop's personal web page: http://nob.cs.ucdavis.edu/~bishop/ Office: 2209 Watershed
Phone: (530) 752-8060
E-mail:
[email protected]
http://www.cs.ucdavis.edu/people/faculty/bishop.html © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
Robin “Montana” Williams
Chief of Cybersecurity Education & Awareness Branch, Department of Homeland Security
Nicki Havoc
Security Researcher, HP Security Research
Currently the Chief, National Cybersecurity Education & Awareness Branch, Department of Homeland Security, Washington, D.C. His office is responsible for coordinating and developing national cybersecurity awareness, education, training, professional development, policy, standards, and assessment requirements to broaden, cultivate, and maintain an unrivaled, globally competitive cybersecurity workforce for the nation. Prior, Mr. Williams served as a Senior Technical Program Manager for the National Counterintelligence Executive directing cyber counterintelligence training & threat analysis. Mr. Williams has spent 24 years in government service including 21 years in the United States Air Force retiring as a Lt. Colonel. During his military career, he held numerous flying, intelligence, training, and cyberspace assignments, including commanding the USAF Cyber Red Team. He is a combat veteran with flying & information operations duties in Afghanistan and Iraq, including serving as the lead air-campaign planner for OPERATION ANACONDA & Chief, Electronic Warfare in the Iraqi Theater of Operations. Mr. Williams earned a Bachelor’s degree from Minnesota State University-Moorhead in 1989, a Master’s degree from Louisiana Tech in 1998, and currently completing a doctorate program. In addition, Mr. Williams is a Certified Workforce Development Professional (specializing in cybersecurity workforce) by the National Association of Workforce Development Professionals.
Nicki Havoc is a security researcher at HP. She has a BA in Political Science and a BS in Information Systems Security. Her MS in Information Technology with a concentration in Digital Forensics is nearing completion. As a student, Nicki focused her research on cyber warfare and leveraging social media for information warfare. Some of this research played an influential role in providing strategic guidance for the United States military’s cyberfocused psychological operations. Nicki previously volunteered with a freelance group providing cyber threat intelligence to United States federal agencies. Nicki’s responsibilities at HP include OSINT and HUMINT gathering and analysis, actor attribution, and technical writing.
© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
Keith Duemling
Information Security Office, Lake Health
Currently he oversees the day-to-day operations of the information security program for the organization and has served as the Information Security Officer for almost four years. Modernization and developing a holistic program that converges physical and logical security across the organization has been one of the major initiatives undertaken at Lake since assuming the position. The focus on developing a comprehensive security program with visibility across the entire enterprise is key to the ongoing security of Lake Health’s information systems and has helped shift the organizations maturity from one of reactive security to proactive security. Keith currently holds multiple professional certifications from the International Information Systems Security Certification Consortium (ISC)2 and the Information Systems Audit and Control Association (ISACA). In addition, he has received specialized information security and assurance training from the Pennsylvania State University (Penn State) and Carnegie Mellon University’s Heinz College. Sr. Director of Global IT Services, Skillsoft Lou Saviano leads the Global IT Organization and Corporate Security for Skillsoft. Extensive business and technical leadership experience in the financial, government contractor, manufacturing, and software development and corporate training industry sectors.
Lou Saviano
Sr Director of Global IT Services, SkillSoft
Current role is to align technology vision with business strategy by integrating company processes with the appropriate technologies. Responsible for all aspects of developing and implementing technology initiatives within the organization, maintain existing enterprise systems, while providing direction in all technology-related issues in support of information operations and core company values. Provide vision and leadership for developing and supporting security initiatives. Lead strategic security planning to achieve business goals by prioritizing defense initiatives and coordinating the evaluation, deployment, and management of current and future security technologies. Assess and objectively manage all aspects of risk brought to bear on the enterprise by IT security and legislative/regulatory compliance issues.
© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
Kirsten Davies
Head of ISEC Technical and Operations CISO – Global Strategy & Governance, Siemens
Ms. Davies provides a unique blend of leadership, IT and information security experience, and business-driven insight to strategy and roadmap setting, operational and organizational efficiency, business and technical processes optimization, and risk management and security policy development and execution. Across 15 years of global consulting, she has been recognized as a thought leader in refining enterprise ways of working, redesigning talent models and working processes, and innovating and optimizing technology and information security systems. Ms. Davies has an established track record of guiding large-scale regional and global transformation programs focused on technology, information security, business process, and organizational redesign, effectively working across a broad array of industries including manufacturing, finance, energy, healthcare, telecoms, and media & entertainment. As the Global Head of Information Security Technology & Operations based in Munich, Germany, Ms Davies is responsible for the operational performance of the technical processes and solutions of information security at the enterprise. She is also the global Program Manager for Siemens InfoSec Transformation program (“PR!O Program”), which encompasses a multi-continent, sharp-shooter team transforming the people, processes, and technology of information and cyber security at Siemens. On 1 October, 2014, Ms Davies will take on the role of CISO - Global Strategy & Governance at Siemens, responsible for the strategy, architecture and policies of Siemens Information Security, as well as the governance of the InfoSec operations, including performance management, regulatory compliance, and development of the global culture and community.
© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
Please give me your feedback Session PN3315
Panel
Please fill out a survey. Hand it to the door monitor on your way out. Thank you for providing your feedback, which helps us enhance content for future events.
7
© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
Thank you
© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.