-Current risks and trends of data loss
-How a bad economy makes the problem more pervasive
-How to reduce your risk with Data Loss Prevention

Bill Allison is a senior IT manager at UC Berkeley. 
Bill chairs the campus information security and privacy committee, which has implemented key policy initiatives around privacy, data management, outsourcing and audit standards.   His web applications unit is responsible for web-based systems including e-commerce, billing, business resumption, grading and course scheduling, and also includes a security team.  The application security team manages penetration testing,  web application scanning programs and recently launched a secure-by-design application development strategy for the University. 

Prior to his work in higher education, Bill spent ten years managing large scale software development and technology initiatives in the U.S. and overseas for clients including Microsoft, Lexis-Nexis, Fort Point Partners, USAID, and the San Francisco Giants.   He received his B.A. from Yale University.

Mark Coderre
In his 20 year career with Aetna Mark has led the company in early adoption of distributed security systems. He has been responsible for the evolution and from LAN based domain security to Directory Services to Federated IdPs. His efforts and support of provisioning have allowed Aetna to centralize, streamline and provide single signon for employees, providers and consumers. As a long-standing proponent of centralized access control and single sign-on, Mark represents Aetna on a variety of industry forums and customer advisory boards. Most recently, Mark is engaged in Aetna security architecture including governance and IT risk management.

Hilary Ward is the Global Product Manager for the industry-leading Citi Managed Identity Services. In this role, she is responsible for business strategy, P&L management, product development and client innovation. Prior to this position, she was responsible for the development of Citi’s award-winning TreasuryVision web-based solution. 

Hilary joined Citi in 1999. Prior to that, she spent 11 years at First Union National Bank and CoreStates Financial where she held key roles in Global Cash Management. Hilary has 20 years of commercial banking experience in the areas of product management, sales and operations.  

Gene Kim is the CTO and founder of Tripwire, Inc. In 1992, he co-authored Tripwire while at Purdue University with Dr. Gene Spafford. In 2004, he wrote the Visible Ops Handbook and co-founded the IT Process Institute, dedicated to research, benchmarking and developing prescriptive guidance for IT operations and security management and auditors. In 2003, was named by InfoWorld as one of the “Four Up and Coming CTOs to Watch" and in 2007, ComputerWorld added Gene to their “40 Innovative IT People Under The Age Of 40” list.

Hal Pomeranz is the founder and technical lead of Deer Run Associates, and has been active in the system and network management/security field for over twenty years. As a Faculty Fellow for the SANS Institute, Hal developed the SANS "Step-by-Step" course model and currently serves as the track coordinator and primary instructor for the SANS/GIAC Unix Security Certification track (GCUX). In 2001 he received the SAGE Outstanding Achievement Award for his teaching and leadership in the field of System Administration.

Jim Routh, CISM.Chief Information Security Officer. The Depository Trust & Clearing Corporation
Jim Routh has over 20 years of experience in information technology and information security as a practitioner, management consultant and leader of technology functions and information security functions for global financial service firms. Jim is a Managing Director and Chief Information Security Officer for the Depository Trust and Clearing Corporation (DTCC). Jim designed and implemented an enterprise wide information security program for the DTCC based on risk management best practice, COBIT and ISO 27001 standards. He implemented an innovative information security risk assessment process and an industry leading security program for software development. Mr. Routh was selected the 2007 Information Security Executive of the year for the Northeast.

Prior to joining DTCC he was the first CISO for American Express and responsible for the implementation of an enterprise wide implementation of GLBA specific controls and practices within two different banking entities in North America. Prior to that, he led a customer information management function within Risk Management for the US card businesses for American Express. Prior to that he led the information technology function for the Institutional Services and Investment Management businesses for American Express Financial Advisors. Mr. Routh was a management consultant in information technology for dozens of leading financial service firms for over 12 years.

Mr. Routh is a member of the Board of Directors for FS-ISAC and the Wall Street Technology Association. He is Chairman of the FS-ISAC Product & Services Committee along with the Program Committee for 2009. He is a steering committee member for the Security and Risk Management Committee for BITS and a member of the Executive Advisory Committee for the BITS Shared Assessments Program. Mr. Routh is also an active member of the SIFMA Security and Risk Management Committee.

Rajeev Yadav is currently Director of Information Security with Thomson Reuters, a global market leading information provider where he primarily guides and implements information security strategies, governance and assurance on its financial products and services. Rajeev has worked in Information Security and IT services since 1993 in financial, media, hi-tech, telecommunication, health and insurance verticals. Prior to Thomson Reuters, Rajeev worked as a Senior Security Architect at Marsh & McLennan where he advised and worked on HIPPA, GLBA and data privacy regulatory requirements along with defining and leading day today information security objectives.

Rajeev is also a Sun Certified Systems Professional and has previously worked as Senior Project Engineer at Sun Microsystems where he led security and IT projects for many of its customer base. During mid 90’s, Rajeev worked as a Project Leader at Icon CMT, an Internet startup, which was acquired by Qwest Communications where he identified and implemented new security products and related professional services engagements. Rajeev is also a CISSP (Certified Information Security Systems Professional) and BS7799:2 certified professional, with extensive working experience in its new standard variant ISO-27001.

Rajeev has a Master of Science in Computer Science and holds a Bachelor’s degree in Computer Engineering from New Jersey Institute of Technology. Rajeev is a vivid music enthusiast and runs an ethnic Internet Radio station in his spare time. He is also an active yoga practitioner and founding member of GYAN, a non-profit educational charity organization.

Ben Rothke, CISSP, PCI QSA is a New York City based senior security consultant with BT Professional Services and has over 15 years of industry experience in information systems security and privacy.

His areas of expertise are in risk management and mitigation, security and privacy regulatory issues, design & implementation of systems security, encryption, PCI, cryptography and security policy development, with a specialization in the financial services and aviation sectors.

Ben is also a frequent speaker at industry conferences, such as CSI, RSA, MISTI, NetSec and ISACA and is a member of ASIS, CSI and InfraGard.

Jeffrey Fritz serves as Director, Enterprise Network Services for the University of California, San Francisco. He is responsible for directing the campus-wide voice and data network operations for the two main campuses in San Francisco, two hospitals and over 125 remote sites.

He has a Master's degree in Electrical Engineering from West Virginia University. His experience in Higher Education IT spans over 20 years. He is the co-founder and Chair Emeritus of the North American ISDN Users' Forum Enterprise Network Data Interconnectivity Family (ENDIF.) He is also the past Chair of the National Information Infrastructure Working Group (NIIWG.) The NIIWG paved the way for today’s Internet 2.

He is the author of “Remote LAN Access: a guide for networkers and the rest of us," published by Prentice-Hall and “Sensible ISDN Data Applications," now in its third printing, published by Vandalia Press. He has been an instructor for the American Institute and Ziff Davis University.

Eric Leighninger is the Chief Security Architect at Allstate Insurance. He brings to this position over 22 years of information security experience. In this role he is responsible for creating and articulating the information security architectural vision, communicating that vision to the enterprise, creating security architecture models and roadmaps, and validating information security architectures against enterprise requirements. He currently is leading the design and development an enterprise-wide identity management initiative comprising identity provisioning and management, authentication and authorization services and directory services. He also developed and managed the Allstate Cryptographic Technology Implementation Program which provides integrated cryptographic services e.g., PKI, digital signatures, data and file encryption and key management for users and applications.

Prior to joining Allstate, Mr. Leighninger was Director of Research for the Deloitte & Touche (D&T) eBusiness Technology Center which provided security and e-business expertise along with technology evaluation and development support to the D&T world-wide consulting practice.

Prior security activities while employed at the Mitre Corporation, Boeing, GTE Government Systems, Dynamics Research Corporation and Arca Systems have included analysis and deployment of cryptographic technologies including PKI, trusted software design and development, security standards and policy development, and systems security engineering for both government and commercial applications.

A veteran of the U.S. Navy, he holds a MA in mathematics from Arizona State University and an MDiv degree from Princeton Theological Seminary.

Areas of Expertise and Interest:

• Mathematics – statistical modeling, operations research, cryptography
• Systems security architectures
• Cryptographic technologies – algorithms, key management, protocols
• Identity and access management technologies
• Security standards and policies
• Trusted software design, analysis and development
• Ethics, technology and public policy relationships in the security community

Kevin Rowney-Founder, Data Loss Prevention Division
Kevin Rowney is a data loss prevention visionary who joined Symantec in 2007 as part of the Vontu acquisition, a company which he founded.

For the past 14 years, Rowney served in a variety of security roles at software startups in Silicon Valley. At Vontu, Rowney conceived the original value proposition, designed the system architecture and wrote the patent-pending search algorithms used in their award-winning product.

Rowney has architected a range of security systems including credit card transaction processing systems and one of the first PKI Certificate Authorities operating on the Internet. Additionally, Rowney served on the Visa/Mastercard Secure Electronic Transactions standards committee as the representative of Verifone/EIT.

Lieutenant General Harry D. Raduege Jr. (USAF, Ret)-Chairman, Deloitte Center for Network Innovation. Director, Deloitte & Touche LLP
Lieutenant General Harry D. Raduege, Jr. (USAF, Ret) is Chairman of the Deloitte Center for Network Innovation, which develops solutions for clients grappling with the need for increasingly interdependent information networks, spanning both the public and private sectors. 

General Raduege retired after serving 35 years in the U.S. military. He worked in the areas of telecommunications, space, information and network operations. In his last position, he led Department of Defense net-centric operations as the Director of the Defense Information Systems Agency. In that role, he directed planning, engineering, and implementation of interoperable communications and intelligence systems serving the needs of the President, Secretary of Defense, Joint Chiefs of Staff, combatant commanders and the military Services. He led efforts to restore communications to the Pentagon following the September 11th terrorist attacks; upgraded Presidential communications; and led the successful expansion of the Department's Global Information Grid through a $1 billion transformational communications program.    

General Raduege was also appointed by the Secretary of Defense as the Commander of the Joint Task Force for Global Network Operations, and Deputy Commander for Global Network Operations and Defense for the U.S. Strategic Command. In these roles, he was the first commander assigned responsibility for directing the operation and defense of the Global Information Grid to assure timely and secure net-centric capabilities across the entire Department.

Prior to his last assignments, Raduege directed command and control systems for North American Aerospace Defense Command, U.S. Space Command and Air Force Space Command.  He also served as the Chief Information Officer for all three commands, and was the architect for computer network defense and attack capabilities established within the Department of Defense.

Ryan White, Product Marketing for VeriSign
Ryan White is a Product Marketing Manager for VeriSign.  He has been with VeriSign for 4 years.

Thomasz Chowanski
Tom currently serves as an IT Leader with the GE Capital, Americas where he has responsibility for security architecture and operations within the Retail Finance division. Previously, he was CISO of GE Money Services unit of GE Consumer Finance, Americas division. Tom's credentials combine fourteen years of information technology experience, a business degree and CISSP certification. He is a seasoned leader with a strong portfolio of successes in driving productivity and growth through information security initiatives. He is passionate about focusing security programs on strategic execution, operational efficiency and process improvement.

Sunil Seshadri-Senior Vice President, INFORMATION SECURITY, IT RISK MANAGEMENT & COMPLIANCE, NYSE EURONEXT
Mr. Seshadri leads the global information security function for NYSE Euronext.  He is responsible for all aspects of information security from defining the global vision and strategy of the organization to the management of a wide-ranging and diverse security infrastructure.  Additionally, he has accountability over policies, architecture, assessments, monitoring, awareness, investigations and operational aspects of security technologies, and manages the Sarbanes-Oxley 404 technology compliance efforts for the company.

Prior to his current position, Mr. Seshadri served as Managing Director, Information Security, at Archipelago Holdings, Inc., until the company’s merger with New York Stock Exchange in 2005.

Mark Connelly
Mark Connelly was Managing Director at Credit Suisse responsible for Global IT Infrastructure Risk and Security. He has been instrumental in delivering new innovative solutions in Risk and Security, and a key member of the Risk Governance Committees at Credit Suisse. He drove the deployment of new IT Risk/Security solutions, policies and standards and thus significant business value throughout the firm. He is a member of the Financial Services Sector Coordinating Committee Working Group, ISACA and Society for Information Managers (SIM). He has been a spokesman at key security forums around the country and worked to build partnerships across commercial and governmental enterprises on issues related to IT security.

Prior to Credit Suisse, Mark worked for Sun Microsystems for over 19 years. He held positions as Chief Information Security Officer, Vice President for IT, and Vice President for Global Technical Operations responsible for supporting a revenue stream of over $12B. Prior to Sun, Mark was a Member of Technical Staff at AT&T Bell Labs. He holds an M.S.E.E. from the Server Institute at Washington University, St. Louis, MO., a B.A. from Washington University, St. Louis, MO., and an M.A. from University of Missouri - Columbia, MO. He also holds the Certificate for Information Security Managers (CISM).