Skip to content

Speaker Biographies

ENTERPRISE RISK / SECURITY MANAGEMENT –  SPEAKER BIOGRAPHIES – May 28, 2026

 

Joseph Burkard, CISO, Morgan Street Holdings

Joseph (Joe) Burkard is the Chief Information Security Officer at Morgan Street Holdings, where he provides strategic leadership across the organization’s cybersecurity, risk, and resilience programs. He has held multiple CISO roles throughout his career, including at Baxter Healthcare, Sidley Austin LLP, and Alight Solutions, and previously worked as a CISO Advisor with Protiviti Inc.
Joseph is widely regarded for his ability to build high‑performing security organizations and guide executive teams through complex cyber risk decisions. He also serves as an Advisory Council Member for the Information Security Forum (ISF) and on the Executive Advisory Board for Tenable Inc., the cyber exposure company. Joe holds a Master’s degree from Lake Forest Graduate School of Management and a BSEE from Marquette University.

 

 

Dave Geudtner, VP, Enterprise Principle Architect, City National Bank

Bio to Come!

 

 

Jill Gunnufson, Senior Director, IT Risk Management, Northwestern Mutual

Bio to Come!

 

 

Victor Hsiang, CISO, GATX

Victor Hsiang is an accomplished Information Security, Risk and IT Professional with over 19 years of experience working within the Financial Services and Healthcare sectors. He has an established track record of delivering successful IT and Information Security solutions that manages risk while supporting business requirements. His experience includes implementation of technology, security audits, risk assessments, information records management, privacy concerns, compliance and legal issues related to security, forensics, security practices and policy development. He currently leads the Information Security program at GATX Corporation.

 

 

Eric Hulse, Director of Research, Command Zero

Bio to Come!

 

 

Derek Milroy, Sr. Security Architect, Gallagher

Derek Milroy is a corporate security professional that has been implementing security, as both an internal employee and as a consultant, for the past twenty plus years. His main areas of focus the past decade or so have been: Systems Hardening (focusing mainly on Windows Forest/Domain/GPO Architectures), Vulnerability Management, Patch Management, Log Management/SIM/SEIM, Incident Response, Network Infrastructure Security, Cloud Controls and Hardening, Red Team Program Management, Threat Modeling, and Threat Intel. He is a former QSA, current PCIP, and has also performed ISO 72001/27002, CIS Top18, and NIST CSF assessments.

 

 

Riccardo Reati, General Manager, SpearTip

Riccardo currently leads SpearTip a cybersecurity service firm fully owned by Zurich Insurance, where he focuses on innovation on value proposition for clients and superior client delivery.  Prior to that he owned a consulting firm focused on technology and risk management and before that he was an executive at Zurich insurance globally focused mainly on operations and technology. His foundational experience on cyber goes back to when he advised large Italian banks on building cyber culture through awareness and training programs. Riccardo grew up in Italy, worked in Zambia with an NGO and has been in the USA since 2009. He is an avid reader, swimmer, skier and father of two girls.