SECON NJ 2023 Special Edition Issue April 27th 2023

SECON

SECON NJ 2023 Conference Welcome Note

This Special Edition of our newsletter is to encourage you to attend this unique conference, as more than half of the speakers are members from the NJ (ISC)² or ISACA chapters, as well as students from Kean University. While this event is hybrid, we strongly encourage you to attend this event if you live locally. (Details of this conference can be found in the next section.)

This event would not be possible without the partnerships of (ISC)² New Jersey Chapter, ISACA New Jersey Chapter, Kean University, and all of our sponsors!

We'd like to give a special thanks to our amazing SECON NJ 2023 Organizing Committee!
Adam Shuren, Arthur Hedge, Aneta Klepacka, Anicee Monfleury, Albert Park, Bob Henderson, Bryon Singh, Tran Cheung, Jose Lagdameo Jr, Ed Brockner, Frank Costeira, Gillian Deak, Gina Pierson, Gio Mercado, Angelo Garcia, Indu Subramanian, Dr. Irene Kopaliani, Jim Mullahey, Jocelin De Leon, John Linkowsky, Jomini Chu, Kat Jules, Krishna Nekkalapudi, Marie Ivanov, Mark Schleisner, Ralph Migliore, Mohamed Brahim, Nancy Jean-Charles, Ola Komolafe, Raja Pasupuleti, Samantha Snellen, Sanina Shen, Saurabh Sagdeo, Mallik Prasad, Stan Mierzwa, Priyanka De Abrew, Bill D'Alia, Kerwyn Velasco, Sanjeev Kale, Mizba Tawa, Lori Polanksy and Ken Fishkin.

SECON NJ 2023

Please join the (ISC)² and ISACA New Jersey Chapters for their annual cybersecurity conference, SECON NJ 2023 to be held at Kean University, followed by a fun networking event. A virtual option is also available, but onsite is highly encouraged for those that live locally. Please note that this event is easily accessible via train. See below for conference details.

Event Website: njsecon.org

Event: SECON NJ 2023
Date: Thursday, June 1, 2023 | 9:00 a.m. to 5:00 p.m.
Location: Kean University, 1075 Morris Avenue, NJCSTM/STEM Building, Union, NJ 07083
Virtual Location: gather.town

Presenters: Three Keynotes PLUS over 30 speakers/panelists!
Ira Winkler - Field CISO at CYE Security
Michael Geraghty - CISO of NJ
Niloufer Tamboly - Co-Founder/Past President of (ISC)² New Jersey Chapter

We will also be having a Career Track, where attendees can have their resumes reviewed, learn how to improve their social media presence, have their headshot taken, and more!

Registration: Eventbrite Registration

Onsite Registration Fee: $75 for members of (ISC)² and ISACA NJ Chapters / $150 for non-members (lunch will be provided)
Virtual Registration Fee: $50 for members of (ISC)² and ISACA NJ Chapters / $100 for non-members

Note: The (ISC)² New Jersey Chapter’s annual dues are $75, so you can become a member and only pay $75 to attend the conference. (No (ISC)² certification is necessary to join our chapter.)

CPEs: (ISC)² certification holders will earn 7 CPE credits for attending either conference.

SECON NJ 2023 Agenda

Schedule below is subject to change

Starting at 8:15am | Conference Registration
8:30am - 9:00am | Conference Sponsor Showcase
8:30am - 9:00am | Breakfast

9:00am - 9:15am | Welcome Address | Ken Fishkin, Bill D'alla and Stan Mierzwa

9:15am - 9:45am | Keynote: It Takes a Village – Or Does It? | Niloufer Tamboly

9:45am - 10:15am | Keynote: The State of Cybersecurity | Michael Geraghty

10:15am - 10:25am | 10 minute break

11:05am - 11:15am | 10 minute break

11:15am - 12:00pm | Panel - What Lurks Below the Surface – Understanding and Managing Third Party Risk | Mark Schleisner, Jason Starr, Sophia Kokolis and Jim Ambrosini
11:15am - 12:00pm | Private 5G Networks Security | Peter Thermos
11:15am - 12:00pm | The Cybersecurity Dilemma | Dr. Erdal Ozkaya
11:15am - 12:00pm | Risk/Control, Audit Management - A Great Career Path for a Female IT Leader | Jennifer Bayuk
11:15am - 12:00pm | Career Workshop

12:00pm - 12:10pm | 10 minute break

12:40pm - 1:30pm | Lunch

1:30pm - 2:15pm | Panel - A Candid Discussion on the Risks of Generative AI Tools | Decanda Fauk, Michelle Schapp, Ester Poulsen and Ken Fishkin
1:30pm - 2:15pm | Demystifying Cyber Threat Intelligence: People, Processes, and Technologies | Grace Chi
1:30pm - 2:15pm | Fireside Chat - Zero Trust Architecture: Because trusting anyone is so 2020 | John Linkowsky and Joel Rosenblatt
1:30pm - 2:15pm | ISACA Track | TBD 1:30pm - 2:15pm | Career Workshop

2:15pm - 2:25pm | 10 minute break

2:25pm - 3:10pm | Keynote: Deserving the Budget You Need | Ira Winkler

3:10pm - 3:20pm | 10 minute break

4:05pm - 4:15pm | 10 minute break

4:15pm - 4:55pm | Borders and Breaches | Black Hills Information Security
4:15pm - 4:55pm | Career Workshop

4:55pm - 5:00pm | Closing Remarks

5:00pm - 7:00pm | After hour Networking

Keynote Speakers

Ira Winkler - Field CISO for CYE Security

Ira Winkler, CISSP is the Field CISO for CYE Security, former Chief Security Architect at Walmart, and author of You Can Stop Stupid, Security Awareness for Dummies, and Advanced Persistent Security. He is considered one of the world’s most influential security professionals and has been named a “Modern Day James Bond” by the media. He did this by performing espionage simulations, where he physically and technically “broke into” some of the largest companies in the World and investigating crimes against them and telling them how to cost effectively protect their information and computer infrastructure. He continues to perform these espionage simulations, as well as assisting organizations in developing cost effective security programs. Ira also won the Hall of Fame award from the Information Systems Security Association, as well as several other prestigious industry awards. CSO Magazine named Ira a CSO Compass Award winner as The Awareness Crusader. He was named 2021 Top Cybersecurity Leader by Security Magazine, and most recently Cybersecurity Champion of the Year by the Cybersecurity Association of Maryland.

Niloufer Tamboly - Risk Management Specialist at Verizon

Niloufer Tamboly is a risk management professional and leads system and process improvements to reduce risk. She guides business teams on 3rd party compliance and vendor assessments to achieve business objectives. Niloufer co-founded two not-for-profits (ISC)2 New Jersey Chapter and Step Up Skill. She prepares the next generation of cybersecurity professionals by teaching a 400-level class at Rutgers University.

Michael Geraghty - Chief Information Security Officer at State of New Jersey

Michael Geraghty is the State of New Jersey’s Chief Information Security Officer (CISO) and Director of the New Jersey Cybersecurity and Communications Integration Cell (NJCCIC). In these roles Director Geraghty is responsible for the development and execution of the State’s cybersecurity strategy. He is responsible for leading and coordinating New Jersey’s cybersecurity efforts while building resiliency throughout the State and has direct responsibility for all aspects of statewide cybersecurity operations; governance, risk and compliance; and incident response.

Speakers

Grace Chi - Cofounder & COO at Pulsedive

Grace works closely with defensive security and CTI practitioners all over the world, ranging from local consulting teams to enterprise operations. As a result, she has unique insights into the requirements and diverse traits of CTI success for individuals, teams, and organizations. On the weekend, she’s a hyper-serious cooperative board gamer and watercolorist.

Gina Pierson - Lead Cybersecurity Engineer at Atlantic Health System

Gina has a diverse experience in cybersecurity and infrastructure IT engineering. She has worked in healthcare, finance, cybersecurity consulting, and the public sector. She is a strong advocate for approaching defense from the perspective of offense and strongly believes the best way to scale defenses to the cloud is through a good offense.

She holds certifications from ISC2, GIAC, AWS, and Zscaler along with a BSAST in Technical Studies as well as an MSIT in Information Assurance from Thomas Edison State University. When not thinking about cybersecurity, she likes turning to her creative outlets (i.e. photography/art) or spending quality time with her favorite golden retriever."

Jason Starr - Senior Director - Cybersecurity at MARCUM Technology

Jason Starr is a senior director in Marcum Technology’s Cybersecurity Division, responsible for driving success for the Firm’s Managed Defense services. Jason has over a decade of experience in the professional services industry helping clients improve their security posture, reduce risk, and increase security operations maturity.
Jason has worked on large-scale projects to design and implement security program strategy, security assessments, and security operations to help clients identify current gaps and exposures in order to reduce cyber risk. He has also worked with clients that are victims of active cybercrime incidents and has overseen the implementation of a variety of security defense solutions.

Brandon Pugh - Senior Fellow & Counsel at R Street Institute

Brandon Pugh is a resident senior fellow and policy counsel for the Cybersecurity and Emerging Threats team. Outside of R Street, he serves as an international law officer in the U.S. Army Reserve where he worked on the Army Cyber Institute’s critical infrastructure resiliency project. Brandon is also a board member for the Ithaca College Cybersecurity Program and for a governor’s advisory council.

Brandon also served as a fellow with the Federal Bureau of Investigation, the managing editor of the Journal of Law and Cyber Warfare, the president/CEO of a homeland security advisory company, a board member on the Rutgers University Cybersecurity Program Board, and an elected and appointed official at the local, county and state level. This includes service as the vice president for legislation of the New Jersey School Boards Association, which is a quasi-governmental entity representing New Jersey’s nearly 600 school boards.

Yolanda Baker - Senior IT Auditor at Fiserv

Yolanda is an associate of Fiserv and an accomplished IT audit professional with 15 years of focus on technical systems audit, specializing in IT security, data privacy, trust services, internal control, data analysis, Sarbanes-Oxley (“SOX”) Section 404, business continuity, infrastructure, system implementation, and IT governance assessments.

Most recently conducted compliance assessments of data privacy, cybersecurity policy, and evaluation of incident response plan implementation. She is known for partnering with audit clients to identify gaps in security and recommendations with business impact that deliver improved processes while aligning with best practices and standard frameworks.

Alex Waintraub - DFIR Engagement Leader at CYGNVS Inc.

Alex Waintraub is currently the DFIR practice expert at CYGNVS. With over a decade of experience in security operations and incident response. He has worked on ~1700 cyber incidents ranging from massive Malspam campaigns from different APT groups to small medium and large business email compromise campaigns and small to largely spread ransomware attacks. One of his biggest negotiation discounts was 98% off from a Conti incident. Before CYGNVS, Alex worked at Arete, Bank of New York Mellon, Barclays, Booz Allen Hamilton, as well as other operations. He is a diehard Giants fan. In his free time, he has Cyberfiresides (cyberfiresidenj.com) in his backyard, continues to build out his home-office with computer monitors (currently at 9), collecting comics, and loves spending time with his rockstar wife of almost 11 years, 3 lovely daughters, and his newborn son (Feb 1, 2023). He graduated with a bachelor’s in Information Technology and Network Security from New York Institute of Technology.

Jim Ambrosini - CISO at IGI Cybersecurity

Jim Ambrosini, CISA, CRISC, CISSP, is an Information Security and Risk executive with over 25 years of experience spanning the middle market to some of the largest companies in the world. Jim currently works for the Infinite Group (IGI) as the Chief Information Security Officer (CISO) for multiple organizations across various business sectors. He is also President of SightHouse Consulting, providing board-level risk and governance advice for mid-sized companies.

Jim was an Adjunct Professor at NYU and has held leadership positions in several professional organizations, including being a past President of the ISACA Metro New York Chapter. He is the 2022 recipient of ISACA’s prestigious Wasserman Award – for his lifetime contributions to the Information Security, Risk, and Governance Profession. He is a sought-after public speaker on Cybersecurity and Risk Governance and a strategic advisor to several corporations.

Anthony Zissimos - Cybersecurity Advisor at DHS Cybersecurity and Infrastructure Security Agency

Anthony Zissimos serves as a Cybersecurity Advisor in the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA). Mr. Zissimos is a part of the Cybersecurity Advisor (CSA) Program, which directly supports CISA’s mission and vision to strengthen the security, reliability, and resilience of the nation’s critical infrastructure. Mr. Zissimos is assigned to Region 2 which includes New York, New Jersey, Puerto Rico, and the US Virgin Islands. Mr. Zissimos is primarily responsible for New Jersey.

Dr. Erdal Ozkaya - CISO at Xcitium

Dr. Erdal Ozkaya is named along Top 50 Technology Leaders by IDC and CIO Online and he is known as a passionate, solutions-focused professional with a comprehensive global background within the information technology, information security, and cyber security fields.

He is committed to the delivery of accurate, accessible resources to inform individuals and organizations of cybersecurity and privacy matters in the internet age. Dr Erdal is a collaborative team leader with the key areas of his expertise spanning end-to-end IT solutions, management, communications, and innovation.

In addition, he is a well-known public speaker, an award-winning technical expert, a book author, and writer of certifications (courseware and exams) for prestigious organizations such as Microsoft, EC Council, and other expert-level vendors.

Joel Rosenblatt - Director of Computer and Network Security at Columbia University

Joel Rosenblatt is the Director of Computer and Network Security at Columbia University. In that position, he oversees the computer security for all systems connected to the Columbia Network. He was the chairperson of the Security Metrics subcommittee of the Security Effective Practices committee of Educause. He Graduated from Columbia Engineering in 1977 and went to work for what was then called CUCCA (Columbia University Center for Computing Activities) running the IBM Mainframe systems. His current responsibilities include oversight of the security of over 250,000 network nodes, DMCA, PCI and DLP for Columbia University. He writes for the online security magazine SecurityCurrent and is a member of Infragard and the NYECTF. He occasionally teaches a graduate class on Intrusion Detection systems for the CS department at the Columbia school of Engineering and Applied Science, and is serving on the Columbia Senate committee for IT.

He is also active in other security organizations that he can neither confirm or deny the existence of.

Brian Herron - Supervisory Senior Resident Agent at Federal Bureau of Investigation, Newark Division – Cyber Task Force

Supervisory Senior Resident Agent Brian Herron leads the Newark Division’s Branchburg Resident Agency and the Cyber Crimes Task Force. SSRA Herron’s Cyber Task Force is a diverse team of multiple federal, state and local agencies who pursue national security and criminal cyber adversaries in order to impose risk and consequences for their illicit activity. SSRA Herron holds a master’s degree in information security engineering, has numerous certifications focusing on forensics, pen testing, incident handling, intrusion analysis, and security architecture. As a subject matter expert, SSRA Herron has led the exploitation and analysis of digital evidence at many prominent crisis events and incidents around the world.

Esther A. Poulsen - Founder and CEO at Raare Solutions LLC

Esther Poulsen is the founder and Chief Operating Officer of Raare Solutions LLC, an award-winning leader in CRM and Marketing Operations. Esther partners with clients and agencies to bring brand engagement to life with compelling, engaging omni-channel interactions.

Esther is recognized as a leading expert in marketing operations, entrepreneurship, diversity and customer experience strategy. She is a speaker at technical and business conferences, author of multiple articles and a frequent podcast guest. She and her company are recognized for excellence by journals such as MarTech Outlook, The Enterprise World, Forbes and NJBiz, and is a 2020 Enterprising Woman “Woman of the Year.” Esther also serves on the board of Trustees of Centenary University and is active in business and charity groups.

Lori Polansky - Security Engineer, GSEC, SSCP, Security+

After twenty years of IT experience, Lori made the transition to cybersecurity 5 years ago.

She holds the GSEC, SSCP, and Security+ certifications as well as a bachelor's degree in computer science from Kean University.

As a Cybrary (www.cybrary.it) mentor, she is proud to have assisted learners in their cyber journey for the past 4 years. In addition, she is an advocate for both women and minorities as a member of both WiCyS and Black Girls Hack organizations.

In her spare time, she is an avid film fan, with horror movies being her favorite genre. She would be happy to hear about your favorite scary movie.

Peter Thermos - Founder & CTO at Palindrome Technologies

Peter has over 25+ years of experience in Cyber Security providing consulting to leading commercial organizations (Healthcare, Financial, Telecommunications) and conducting security research for US government organizations (i.e., DARPA, DHS, NIST). As founder of Palindrome Technologies, he is working as a subject matter expert with customers in several industry sectors including Government, Telecommunication, Energy, Financial and Healthcare, in securing Enterprise Networks, Carrier-grade Networks and helping organizations secure emerging technologies including 5G, MEC, IoT and V2X.

John Linkowsky Lead - Information Security Systems Engineer at L3Harris Technologies

CISSP - February 2021
CCNA - November 2008 - 2011
BCCPA - October 2008
Cisco Network Academy Instructor - 10+ years
Sr. Associate Professor @ Mercer County Community College - April 2017 - Present
Sr. Assistant Professor @ Mercer County Community College - August 1998 - April 2017

Specialties: Network Infrastructure design & installation, project management
Instructor: Cisco Academy Program - MCCC

David Garibaldi - Security Consultant at Amazon Web Services

David Garibaldi is a Team Leader and Practicing Security Professional at AWS Professional Services. He is focused in Cloud Engineering and Consulting, holding multiple AWS and Azure Certifications. David has established himself as a trusted advisor to his customers, providing strategic guidance on Defense-In-Depth and the Shared-Responsibility-Model in the Cloud.

David is a Veteran, Rutgers Graduate, and an active Member of ISC2 since obtaining his CISSP and CCSP in 2021 during the Covid-19 Pandemic.

Sophia Kokolis - Chief Information Security Officer (CISO) at Freedom Mortgage Corporation

As the Chief Information Security Officer (CISO) at Freedom Mortgage Corporation, Sofia Kokolis is responsible for the security strategy, policies, controls, vendor security, security operations and cyber threat detection and response.

With over 20 years of experience in mortgage lending, credit cards and global banking, Sofia is skilled in embedding effective risk management and governance programs to achieve business objectives.

Sofia earned her CISSP accreditation and is also a Certified Six Sigma Black Belt. Outside of work, Sofia can be found tending to her family and small farm.

Decanda Faulk - Certified Information Privacy Professional

Decanda® M. Faulk is a licensed attorney in New Jersey and New York, a certified information privacy professional in the United States, entrepreneur, and registered professional nurse. As an accomplished attorney who has worked at two Am 100 law firms and has extensive firm, in-house, academic, governmental, and consulting experience, her diverse legal, compliance, and privacy background covers many highly regulated industries, including life sciences, medical device distributors, technology-enabled businesses, consumer electronics, private equity firms, nonprofits, health-care entities such as hospitals and health systems, physician practices, long-term care facility chains, and start-up companies.

Scott Schober - CEO of Berkeley Varitronics Systems

Scott Schober is the President and CEO of Berkeley Varitronics Systems, a 50-year-old, New Jersey-based provider of advanced, world-class wireless test and security solutions. He is the author of three best-selling security books: Hacked Again, Cybersecurity is Everybody’s Business, and Senior Cyber. Scott is a highly sought-after author and expert for live security events, media appearances, and commentary on the topics of ransomware, wireless threats, drone surveillance and hacking, cybersecurity for consumers, and small business. He is often seen on ABC News, Bloomberg TV, Al Jazeera America, CBS This Morning News, CNN, Fox Business, and many more networks. Scott also serves as the CSO and Chief Media Commentator for Cybersecurity Ventures and sits on several cyber advisory boards for various companies.

Debra Price - Senior Product Marketing Manager at ExtraHop

Debra is a Security product management and marketing professional. She began her 20+ year security career at AT&T managing engineering and development teams to launch and provide high-revenue services including DDoS prevention, threat management, encryption and IoT security.

She moved to Radware to create a solutions marketing program. Her work on the company’s customer reference program garnered Gartner’s WAF Customer Choice Award in 2020. Two months ago Debra joined ExtraHop to provide product marketing for their managed services partner program and NPM product.

She obtained her CISSP certification in June 2004. Debra shares her knowledge through the NJ ISC2 mentor program and provides education on safe internet use via the ISC2 Safe and Secure On-Line program.

Mark Schleisner - Director/Owner at NYCBIZTEK Consulting

Mark has twenty years of experience with security-related project management, 3rd Party Vendors, business analysis, and user Identity/Access Management. He has led large-scale project initiatives at organizations as diverse as the American Museum of Natural History, the Continuum hospital network, the NYC Department of Parks and Recreation, and the NYC Cyber Command.

He has given cybersecurity lectures to numerous organizations, including the New York Academy of Medicine and the Yale Alumni Nonprofit Alliance. Mark has also facilitated workshops at the NYC chapter of the Project Management Institute and contributed to Health IT white papers concerning the protection of patient data on hospital wireless networks.

Rob McLeod - VP Threat Response Unit (TRU) at eSentire

As VP, Threat Response Unit (TRU), Rob McLeod is responsible for leading the full lifecycle of Threat Intelligence, Threat Detection, and Threat Research functions at eSentire, including the development of novel machine learning threat detection capabilities. His mission is to bring innovative, differentiated security capabilities to market to protect and defend organizations to manage risk against business-impacting threats.

Rob is a results-focused leader with a passion for data analytics and more than 15 years of experience overseeing diverse business initiatives to bring technical innovation to the highly competitive cybersecurity and telecommunications marketplace.

Jorge Torres - Chief IT Security (CSO/CISO) at UNICEF

Highly accomplished Global IT executive with experience in information security, IT management, and risk management including IT / security architectures, IT operations, systems development / procurement focusing on technical and- non-technical gap identification and improving security risk posture / management. Solid understanding and knowledge of NIST CSF, CMMC, ISO 27000, and other security frameworks. Familiar with cloud security architecture concepts for Infrastructure as a Service (IaaS) and Software as a Service platform. Instrumental in assessing, developing, and implementing national and international information/cybersecurity programs covering risk management, data governance, and protection programs. Dynamic IT leader, dedicated to excellence, cultural change, standards development, streamlining processes, and spearheading the development of forward-thinking technical solutions in both fluid or highly structured and regulated environments.

Michelle Schaap - Co-Chair of Tech, Privacy & Data Innovations Group at CSG Law

Michelle A. Schaap, Co-Chair of Chiesa Shahinian & Giantomasi PC's, Tech, Privacy & Data Innovations Group, regularly advises on cybersecurity preparedness, counsels when data security incidents arise and trains companies on best practices for security procedures addressing both their business operations and their customers’ concerns.

She is a Certified Information Privacy Professional, awarded from the International Association of Privacy Professionals, with a concentration on U.S. private-sector law (CIPP/US), and earned her certification on Cybersecurity: Managing Risk in the Information Age from Harvard in association with HarvardX and Cybersecurity and Privacy from Mitchell Hamline School of Law. She is the Co-Chair of the IAPP New Jersey KnowledgeNet Chapter.

Ms. Schaap is an adjunct professor at Fordham University, teaching Privacy & Cybersecurity.

Jason Blanchard - Excitement Co-Creator at Black Hills Information Security

Jason produces engaging content that earns people's attention and use that to build genuine thriving communities.

"He is creative and selfless in what he does, by investing in others and by giving back his time for the greater good of an emerging community." - Grayson Estes, Principal Consultant

"He is always approachable, and will give you a honest answer to anything you need." - Diana Forgione, Film Student, Full Sail University

"Jason juggles multiple projects at once, has high attention to detail and is an incredible resource." - Danielle Hernandez, SANS Marketing

James McQuiggan - Security Awareness Advocate at KnowBe4

James McQuiggan has over 20 years of experience in cybersecurity. He is currently a Security Awareness Advocate for KnowBe4, where he is responsible for amplifying the organization's messaging related to the importance of, effectiveness of and the need for new-school security awareness training within organizations through social media, webinars, in-person presentations, industry trade shows, and traditional media outlets.

McQuiggan is also a part-time faculty professor at Valencia College in the Engineering, Computer Programming & Technology Division. Within the Central Florida community, he is the president of the (ISC)2 Central Florida Chapter and a member of the Trustee Board for the Center for Cyber Safety and Education.

KC Udoh - AVP at Truist Financial

KC Udoh is an AVP with Truist Financial focused on Third Party Cyber Risk Management. KC has over 15 years of experience in IT and cybersecurity and has worked with some of the world's most well-known and demanding companies such as Deloitte & Touche, Cisco, Dell, Verizon, and AT&T.

Eden Amitai - Director of Technical Partnerships at Anecdotes

Eden Amitai is the Director of Technical Partnerships within anecdotes, the world's first Compliance OS. Eden has had leadership positions at several tech companies like Intel, ACC, and Radware. He was one of the foundational employees in developing anecdotes and the brand voice of the company.

Jennifer Bayuk - CEO of Decision Framework Systems, Inc

• Experienced in a wide variety of cybersecurity positions, including Wall Street Chief Information Security Officer, Global Bank Operational Risk Management, Financial Services Internal Audit, Big 4 Information Systems Risk Management, Bell Labs Security Software Engineer, Risk Management Software Company Founder, and Expert Witness.
• Created curriculum on numerous information security, cybersecurity, and technology risk topics for conferences, seminars, corporate training, and graduate-level programs. Adjunct Professor at Stevens Institute of Technology and Quinnipiac University.
• Author of multiple textbooks and articles on a variety of cybersecurity topics. Many publications available for download at: www.bayuk.com.

Sharon Kelley - Director of Information Security and Compliance at Hudson Group

Sharon Kelley is the Director of Information Security and Compliance at Hudson Group; responsible for the US and Canada as well as taking a larger role in Risk and Governance for the global parent company. Before joining Hudson Sharon spent the last +20 years working with networking and security teams in higher education, finance, software development and law enforcement; to manage and secure their environments from threats, both inside and outside. Sharon is a member of both local and global chapters of (ISC)2, ISACA and ISSA. She is CISSP certified and holds a Bachelor of Science in Information Technology from Rochester Institute of Technology, a Master’s of Science in Telecommunications Management from Stevens Institute of Technology as well as an MBA in Innovation and Entrepreneurship.

Krista Valenzuela Bureau - Chief of Cyber Threat Outreach & Partnerships (CTOP) at the NJCCIC

Krista Valenzuela is the bureau chief of Cyber Threat Outreach & Partnerships (CTOP) at the NJCCIC, which is responsible for spreading awareness of current cyber threats, tactics, and techniques; promoting cybersecurity best practices; and establishing relationships with critical infrastructure, businesses, organizations, and individuals around the State and beyond. Mrs. Valenzuela has worked at the NJCCIC for over seven years and previously worked at the US Department of Defense on their information assurance mission.

Jim Mullahey - Sr. Client Solutions Advisor at Optiv

Jim is a Cybersecurity Executive with over 25 years of experience in IT, primarily focused on information security strategy, governance and risk management. Jim primarily serves as a Senior Cybersecurity Solutions Advisor to several Fortune 50 clients as part of his role at Optiv Security. Jim is also the founder of Cyber Inspired, LLC, where he leads a team on a mission to raise the level of cybersecurity awareness and social responsibility starting with a Digital Citizenship program for grade school and high school students while also attracting, educating and inspiring people to passionately pursue a career in cybersecurity.

Jim holds several highly regarded industry certifications including Certified Information Systems Security Professional (CISSP), GIAC Strategic Planning, Policy & Leadership (GSTRT), GIAC Certified Penetration Tester (GPEN), GIAC Systems and Network Auditor (GSNA) and a CISO certification (C-CISO).

SECON

SECON NJ 2023 Conference Welcome Note

SECON NJ 2023 Agenda

Sponsors

Keynote Speakers

Speakers