SPEAKER BIOGRAPHIES

SPEAKERS AT THE ENTERPRISE RISK/SECURITY MANAGEMENT CONFERENCE – FEBRUARY 20, 2025

 

Todd M. Covert, CISSP, CDPSE, CISO, National General (an Allstate Insurance Company)

Todd is a seasoned cybersecurity executive with over two decades of experience driving information security strategies in highly regulated environments. As Chief Information Security Officer at National General, he has spearheaded transformative initiatives and the integration of acquired organizations. With a passion for fostering proactive security cultures and driving innovation responsibly, he is committed to empowering organizations to navigate the complex cybersecurity landscape with confidence.

A trusted advisor to senior leadership, he excels in aligning security initiatives with business objectives, ensuring compliance with regulations such as NY DFS, HIPAA, GDPR, and meeting PCI DSS requirements.

Todd holds an MBA and multiple certifications, including CISSP, CDPSE and Associate C|CISO.

 

Matt Cox, CISO, Mindsight

Over 20 years of experience in Telecommunications, Information Technology and Security, including technical leadership, engineering, consulting, and installation. Proven experience in challenging environments utilizing critical thinking and communications skills. Able to communicate complex technical ideas to a broad audience. Passionate about information security and using technology to improve business outcomes.

 

Jeff Gardiner, MBA, CD, BSc, BA: virtual CISO, Glasshouse Systems

Jeff is a distinguished executive renowned for his strategic leadership and technical expertise in cybersecurity. With a career spanning over two decades, Jeff has left an indelible mark on the cybersecurity landscape, notably as a double-tenured Chief Information Security Officer (CISO) at two of Canada’s top universities and a visionary leader in the finance sector. In these roles, Jeff has accrued over a decade of executive experience.

Jeff’s career trajectory is defined by his unwavering commitment to excellence and innovation, which is evident in his pivotal role in spearheading transformative initiatives with national impact. As the architect behind creating a groundbreaking national cybersecurity program for a collection of supercomputing and high-performance computing sites across Canada, Jeff demonstrated unparalleled leadership in navigating complex interdependencies and fostering collaboration among government agencies, research institutions, and industry partners.

Under Jeff’s stewardship, this pioneering program established robust cybersecurity standards, protocols, and best practices tailored to the unique challenges of high-performance computing environments, fortifying Canada’s critical infrastructure against evolving cyber threats. Jeff’s strategic vision and technical acumen were instrumental in advancing Canada’s cybersecurity posture, positioning the country as a global leader in high-performance computing security. Jeff has twice been recognized nationally for his work.

In addition to his groundbreaking work in cybersecurity, Jeff has also played a pivotal role in the finance sector, where he led transformative initiatives to integrate wealth and investment management systems while mitigating technology risks associated with mergers and acquisitions. His cloud-first strategy secured over 2000+ platforms, further cementing his reputation as a trailblazer in cybersecurity innovation.

As a virtual CISO and executive consultant with Glasshouse Systems, Jeff continues redefining cybersecurity excellence’s boundaries, partnering with esteemed organizations, including global banks, to fortify their cybersecurity posture and elevate technical risk management strategies to new heights.

Jeff’s remarkable career is a testament to his unwavering dedication to advancing cybersecurity nationally, his strategic foresight in navigating complex cybersecurity landscapes, and his relentless pursuit of excellence in all endeavors. Jeff is also a veteran of the Afghanistan conflict.

 

Lori Kevin, Vice President, Enterprise IT & Security, IMO Health

Lori has over 20 years of experience in technology, operations, and specifically in building an innovative and robust security program from the ground up. She is currently VP of Enterprise IT & Security at IMO Health, a software development organization whose product offerings ensure clinical data quality and integrity across the healthcare ecosystem. Lori and her team provide not only technical security expertise and guidance to software engineers, they also collaborate across the entire enterprise to communicate security awareness through training, awareness campaigns, and risk management.

Allan “Ransomware Sommelier” Liska, Senior Security Architect and Ransomware Specialist, Recorded Future 

With more than 20 years of experience in ransomware and information security, Allan Liska has improved countless organizations’ security posture using more effective intelligence. Liska provides ransomware-related counsel and key recommendations to major global corporations and government agencies, sitting on national ransomware task forces and speaking at global conferences.

Liska has worked as both a security practitioner and an ethical hacker at Symantec, iSIGHT Partners, FireEye, and Recorded Future. Regularly cited in The Washington Post, Bloomberg, The New York Times, and NBC News, he is a leading voice in ransomware and intelligence security. Liska has authored numerous books including “The Practice of Network Security;” Building an Intelligence-Led Security Program;” “Securing NTP: A Quickstart Guide;” “Ransomware: Defending Against Digital Extortion;” “DNS Security: Defending the Domain Name System;” and “Ransomware: Understand.Prevent.Recover.”

Derek Milroy, Security Architect, Arthur J. Gallagher

Derek Milroy is a corporate security professional that has been implementing security, as both an internal employee and as a consultant, for the past twenty plus years. His main areas of focus the past decade or so have been: Systems Hardening (focusing mainly on Windows Forest/Domain/GPO Architectures), Vulnerability Management, Patch Management, Log Management/SIM/SEIM, Incident Response, Network Infrastructure Security, Cloud Controls and Hardening, Red Team Program Management, Threat Modeling, and Threat Intel. He is a former QSA, current PCIP, and has also performed ISO 72001/27002, CIS Top18, and NIST CSF assessments.

 

Michael Myint, SVP – Chief Information Security Officer, AdaptHealth

A transformational leader with nearly thirty years of experience in information security and technology delivering business resilience to defend against the latest threats. Strategic, tactical, and a true hands-on practitioner… I am a business aligned pragmatic builder with over ten years of experience leading the information security program across four companies; two Fortune500’s, and two start-up organizations. Service oriented, started my career as a consultant (Accenture, Cap Gemini Ernst & Young, Deloitte) building security capabilities for clients in Healthcare, Financial Services, and Manufacturing. I have led teams as small as five and as large as two hundred with budgets ranging from seven to eight figures. I bring cohesiveness and optimal performance from my teams while developing future leaders; CEO, CISO, CIO, VP InfoSec, etc. I have revamped existing information security programs to expand capabilities and defend against the latest threats, as well as built programs from the ground up at high-growth organizations.

My areas of discipline are in Enterprise Risk Management, Security Operations, Governance, Privacy, and Regulatory Compliance for complex global organizations. I’ve helped multiple organizations establish or improve their security posture to support business critical processes, meet regulations, and provide improved security services. I have a vast degree of working knowledge of industry security and privacy requirements to include ISO 27001/2, NIST CSF, HIPAA, GDPR, SoX, and PCI.

 

Jacob Silutin, Global Sales Engineering Manager, Check Point

Jacob is a seasoned cyber intelligence professional with over 18 years of experience. He began his career in the Israeli special forces, where he developed expertise in intelligence gathering and counterterrorism. Transitioning to the intelligence services, he spent six years conducting and overseeing critical intelligence-gathering operations, specializing in threat analysis and counterintelligence.

Building on his deep expertise in the intelligence space, Jacob later led solution engineering teams at two leading cyber threat intelligence firms, driving technical strategy and solution adoption.

Dixon Wright, Head of GRC, TrustCloud

Dixon Wright is Head of GRC at TrustCloud, where he oversees all aspects of internal GRC and customer implementations. Prior to TrustCloud, he was VP of Assurance at Coalfire and led teams that delivered SOC 2, ISO, HITRUST, FedRAMP and PCI assessments. His strong background in cybersecurity compliance and passion to make compliance, risk, and customer assurance easier has enabled him to help 100s of organizations achieve their desired compliance outcomes.

 

Ron Zochalski, CTO & CISO, Lake County Government – Indiana

Ron Zochalski, COO of Lake County and prior CTO/CISO, is leading risk management, building improvements, and infrastructure. He continues to update outdated cyber and physical security, technology, and processes to protect data and facilities with limited resources. This includes working with architects, engineers, and technology and security vendors.

Ron recently created a five-course cybersecurity minor from three different schools at Indiana University Northwest and obtained approval from Indiana University and the Board of Education. Ron is teaching the advanced course of the five-course cybersecurity minor, which includes data analytics for the School of Business and Economics. Ron has spent 14 years teaching here. I recently won the Distinguished MBA Alumni Award and have been published in several publications.

Ron previously worked in executive and managerial technology and operational roles for Xerox Financial Services, Aon Consulting, Howard Publishing Group, Compucom Systems, ProLogis, and T-Mobile, USA.

Ron is also a keynote speaker and panelist on cybersecurity and data privacy for industry and also holds free seminars on cybersecurity and data privacy for senior citizens.