IT Professionals, Experts, and Strategists.
Colin Whittaker
Colin provides cyber security risk consultancy services to a wide range of public and private companies, and has presented on Information Security at major events around the world, and has published a number of papers on security.
Meghan Maneval
Meghan is a respected cybersecurity and GRC leader with nearly 20 years of experience simplifying risk for global organizations. Known for advancing risk-centric GRC practices, she has shaped AI governance frameworks, continuous monitoring processes, and industry curricula while championing innovation, responsible AI, and diversity across the technology and security landscape.
Paul McKay
Paul leads global research on risk management, GRC providers, and cyber risk ratings. With deep expertise in security policy, regulatory technology, and European security services, he is widely quoted by major publications and recognized for shaping thought leadership in enterprise security and risk.
Janet Worthington
Janet is Senior Analyst at Forrester, advises security and risk leaders on product security, secure development, and application security. With 25+ years in software development, security program management, and engineering leadership, she has helped global enterprises build scalable AppSec programs and strengthen collaboration across security, development, and product teams.
Paul Valente
Paul is CEO and co-founder of VISO TRUST, brings 25+ years of cybersecurity and risk leadership. A former CISO at multiple high-growth companies, he now leads an AI-powered TPRM platform used by top global organizations. He frequently shares practical insights on scaling security and navigating modern third-party risk challenges.
Pat McParland
Patricia is AVP of Product Marketing at MetricStream, leading messaging, market strategy, and trend analysis across the company’s AI, risk, cyber, compliance, and third-party risk solutions. With 25+ years in financial technology marketing, she has held senior roles at Dow Jones and Dun & Bradstreet and excels in GRC product leadership.
Paulo Amaral
Paulo is specializes in building and maturing cyber risk and compliance programs. He developed Diligent’s third-party risk framework and aligns cybersecurity with ISO 27001, SOC 2, and FedRAMP/NIST requirements. His experience automating SaaS compliance provides deep insight into the true operational demands and costs of security compliance.
Adam Bixler
Adam is a seasoned cybersecurity entrepreneur and former U.S. Air Force Cyberspace Operations Officer. He specializes in turning early-stage concepts into scalable enterprise products, with expertise spanning security analysis, compliance, incident response, and strategic product innovation across both commercial and government environments.
Avesta Hojjati
Avesta is a cybersecurity innovator with expertise as both attacker and defender. He develops transformative networks and proactive strategies to protect organizations from evolving threats. Renowned for creating cutting-edge solutions, Avesta drives operational excellence, strategic growth, and empowers businesses to navigate digital risks confidently and securely.
Erich Kron
Erich is a cybersecurity veteran with 25+ years’ experience across medical, aerospace, and defense sectors. Former US Army security manager, he holds multiple certifications including CISSP. Erich empowers security professionals worldwide through tools, training, and educational programs, advancing skills and awareness in information security.
Cody Scott
Cody is Senior Analyst at Forrester, advises security and risk professionals on cyber risk management, including cyber risk quantification, enterprise risk management, and GRC. With 10 years of experience, he helps organizations implement effective risk strategies, build high-performing security teams, and enhance operational resilience while delivering measurable business value.
Kathryn Carlson
Kathryn brings 20+ years of leadership in product management and development. She’s held key roles at Riskonnect, KPA, and ADP, where she led the creation of patented hiring software. Her pragmatic, innovative approach delivers client-focused solutions that accelerate time to market and drive measurable value.
Keri Bowman
Keri is a CISA-certified SAP implementation consultant with over 15 years of experience in risk management, governance, and GRC solutions. She specializes in SAP security, product development, and performance improvement, expertly translating business needs into successful projects across IT programs, ERP implementations, audits, and training initiatives.
Scott Augenbaum
Scott Augenbaum is a best-selling author and retired FBI Supervisory Special Agent with 30 years of CyberCrime investigation experience. Known for “The Secret to CyberSecurity,” he educates global audiences on preventing CyberCrime. A frequent media guest and keynote speaker, Scott delivers practical, actionable strategies for building a cyber-safe environment.
Daniil Karp
Daniil Karp, brings 15+ years of SaaS leadership across IT risk, compliance, and AI. He’s helped scale transformative technologies at Asana and 6sense, driving market expansion and customer success. Daniil specializes in modernizing business functions with disruptive, category-defining solutions.
Charlie Jones
Charlie is a recognized expert in software supply chain security, digital trust, and cyber risk. With a decade of consulting experience at PwC, he has shaped cybersecurity, TPRM, and audit programs for major financial institutions. A CSO 30 Award honoree, he actively contributes to global security standards.
Nathan Parker
Nathan is a recognized expert in RegTech, FinTech, and Web3, leading global research and content strategy for top vendors and regulators. He’s produced podcasts, blogs, and white papers on financial crime, ESG, cyber risk, AI governance, and GRC—helping firms launch innovative products and succeed in competitive, regulated markets.
Ed Thomas
Ed is a seasoned Third-Party Risk Management expert. With deep industry knowledge and practical insights, he helps organizations build efficient, effective risk programs. His guidance empowers businesses to maximize the value of TPRM and strengthen resilience against evolving cyber threats.
Nick Geyer
Nicholas is the Sr. Product Marketing Manager for Third-Party Management at OneTrust. He leads go-to-market strategy and product positioning for TPRM solutions, helping organizations understand evolving vendor risks and adopt data-driven, scalable approaches to building secure third-party ecosystems through modern technology.
Paul Asadoorian
Paul is Principal Security Evangelist at Eclypsium and founder of Security Weekly. With deep experience in penetration testing, vulnerability management, Python development, and security product evaluation, he brings hands-on expertise from roles supporting universities, enterprises, and security vendors. His work continues to influence modern vulnerability and firmware security practices.
Dirk Schrader
Dirk Schrader is a 25-year cybersecurity veteran with CISSP and CISM certifications. He champions cyber resilience through global projects, thought leadership, and published insights on change and vulnerability management—bridging technical, product, and strategic roles across startups and multinational corporations.
Josh Bressers
Josh leads development across commercial and open source platforms. He co-founded the Global Security Database and co-leads OpenSSF’s SBOM Everywhere. A member of the OpenSSF technical advisory council, Josh advances open source security through collaboration, innovation, and community-driven standards.
Gerald West
Gerald is an SAP security expert with 20+ years’ experience, has led Fortune 500 transformations and created frameworks like CLEAR and CSI GAME. A former Pathlock advisor, he now leads CaroKahn, helping enterprises modernize identity governance, unify analytics, and enforce real-time controls across SAP, ERP, and cloud applications.
Branden R. Williams
Branden is a Distinguished Fellow of the Information Systems Security Association (ISSA) and one of the industry’s leading experts on Payment Security. He publishes regularly and co-authored multiple books on the PCI Compliance.
K Royal
K is an attorney and compliance professional with 25 years of experience in the legal and health-related fields implementing or overseeing programs globally. As an attorney, she has been recognized as a Forty-under-40 honoree for Phoenix, one of the top pro bono attorneys in Arizona, an Outstanding Woman in Business.
Allan Liska
Allan has more than 15 years of experience in information security and has helped countless organizations improve their security posture using more effective intelligence. He is the author of “The Practice of Network Security, Building an Intelligence-Led Security Program,” and “Securing NTP: A Quickstart Guide,”.
Dr. Else van der Berg
Dr. Else holds a PhD in law and is an expert on Data Privacy Regulations. She monitors the global Privacy Regulation landscape with a focus on the US and Europe and is responsible for ensuring compliance of the Datawallet Compliance Tool, and has extensive experience on the intersection of technology and law.
Brandon Dunlap
Brandon is a prolific speaker and professional with a background in consulting, security professional and manager. He has more than 20 years of experience managing business technology risk and has served in a variety of roles across heavily regulated industries, successfully leading all aspects of IT security programs.
Yo Delmar
Yo is focused on the company's GRC market leadership. She has over 30 years of experience in Information Technology and Management, with a focus on Governance, Risk and Compliance over the past 10 years, and drives MetricStream's GRC Journey Program.
Matt Kunkel
Matt has over a decade of experience delivering cutting edge technology solutions to solve complex business issues related to audits, investigations, risk management, regulatory compliance, and process automation. He is an industry leading expert in solving organizations governance, risk, and compliance issues using technology.
Rebecca Herold
Rebecca is a widely a recognized and respected information security, privacy and compliance expert, author and instructor who has provided assistance, advice, services, tools and products to organizations in a wide range of industries during the past two decades.
Mark Chaplin
Mark has more than 25 years of experience, covering all aspects of information security, Mark helps global organisations and governments implement the most effective methods for managing information risk, and is the principal author of the ISF Standard of Good Practice for Information Security.
Vivian Tero
Vivian focuses on risk and compliance solutions, as well as CTO and Product AR. Prior to Illumio, she was the Senior Product Manager for the GRC and Vendor Risk Management Suite with ServiceNow’s Security BU, and held product marketing and product management roles with Symantec’s Data Center Security BU.
Chris McClean
Chris leads the company's coverage of governance, risk, and compliance (GRC). He is also a thought leader on the related issues of corporate social responsibility (CSR) and sustainability. He is a frequent speaker on these subjects at vendor events as well as conferences run by industry organizations such as the Risk Management Association.
Todd Boehler
Todd collaborates with customers, partners and internal product teams to develop and deliver high-value risk and compliance solutions. He has extensive GRC experience, working with organizations’ engineering, services and sales teams to develop solutions, enable sales and deliver customer success.
Dr. Anton Chuvakin
Anton was, until recently, a Research Vice President and Distinguished Analyst at Gartner for Technical Professionals (GTP) Security and Risk Management Strategies team. Anton is a recognized security expert in the field of log management, SIEM and PCI DSS compliance., and is author of multiple books on PCI Compliance and Data Security.
Jason Sabourin
Jason is responsible for driving the development and delivery OneTrust's Vendor Risk Management product as well as driving the refinement of the toolset and offerings.
Szuyin Leow
Szuyin works everyday with LogicGate’s customers and partners to operationalize their governance, risk, and compliance objectives to deliver meaningful results and value through the LogicGate platform.
Chris Poulin
Chris has been in cybersecurity for almost 35 years, in both technical roles and executive positions, such as CSO for Q1 Labs and CEO of his own boutique consultancy.
Teju Shyamsundar
Prior to Okta, she worked at Microsoft and implemented enterprise mobility technologies in various industries. Teju works on driving the value of Okta's adaptive MFA and adaptive SSO capabilities across customers and partners. Teju holds a BS degree in Computer & Information Technology from Purdue University.
Ilia Sotnikov
Ilia is driving product innovation and strategy at Netwrix. His technical background is extensive in the areas of Security, Identity and Access Management, Vulnerability Assessment, Regulatory Compliance, SaaS and Cloud Computing. Ilia has over 15 years of experience in IT management software market.
Emily Affinito
Emily works closely with LogicGate customers to move their offline GRC programs to LogicGate’s platform, the Risk Cloud. Additionally, Emily works as a primary content development resource for the success team, expanding and developing GRC application templates for continued use by LogicGate customers.
Joseph Carson
Joseph has more than 25 years of experience in enterprise security, an InfoSec award winner, author of Privileged Account Management for dummies and Least Privilege Cybersecurity for dummies.
Kelly White
Kelly has nearly 20 years of experience in assessing and defending complex enterprises, and has held various enterprise security roles, including CISO and Director of Information Security for financial services companies.
Chad Wood
Chad excels at applying Integrated Risk Management technology solutions across the Enterprise and has been instrumental in many of Galvanize’s strategic customer engagements.
Stephen Boyer
Prior to founding BitSight, Stephen was President and Co-Founder of Saperix. While at the MIT Lincoln Laboratory, Stephen was a member of the Cyber Systems and Technology Group where he led R&D programs solving large-scale national cybersecurity problems.
Sooji Seo
Sooji provides a broad range of leadership involving direct support and execution for the design, development, coordination, implementation and ongoing management of Dell’s global privacy program across Dell's global enterprise.
Nick Hayes
Nick has a decade of experience working in the cybersecurity technology industry, with senior positions in product, strategy, and marketing. He is regularly cited by industry and business media.
Weston Nelson
Weston has over 17 years of experience in financial compliance, internal controls and risk management services, and has led global compliance practices and strategy for multinational companies in Fortune 100, Big Four and regional public accounting environments.
Janalyn Schreiber
Janalyn brings 20 years of experience consulting with Fortune 500 companies in the Financial Services, Healthcare, and Oil & Gas sectors on the complexities of managing privacy, protecting data and responding to high profile investigations and litigations.
Mike Urban
Mike provides strategic consulting services to global organizations focused on the identification and management of compliance, cyber, and fraud risk. Most recently, Mike was Financial Crime Solution Product Line Director at Fiserv.
James Rice
James has over seventeen years of client consulting and enterprise software experience, focusing on Integrated Risk Management capabilities for Financial, Regulatory and Security business processes.
Sumedh Thakar
Sumedh oversees worldwide field operations as well as all things product including engineering, development, product management, cloud operations, DevOps, and customer support.
Roger Grimes
Roger is a 30-year computer security consultant, instructor, holder of dozens of computer certifications and an award-winning author of 10 books and over 1,000 magazine articles on computer security.
Evan Tegethoff
Evan previously held numerous leadership roles in Risk and Compliance Management. Prior to BitSight, he developed Third Party Risk approaches for numerous large organizations.
Gina Mahin
Gina possesses a deep subject matter expertise in business operations, information technology, information security, and compliance for the multiple market verticals with which Lynx Technology Partners engage.
David McNeely
David is focused on helping customers meet the evolving security needs of the modern enterprise, while contributing to the strategic vision of the company’s product portfolio.
Sam Abadir
Sam has over twenty years of experience helping companies realize value through improving processes, identifying performance metrics, and understanding risk.
Jake Olcott
Jake served as cybersecurity attorney to the Senate Commerce Committee and House Homeland Security Committee, and consults Fortune 1000 executives on cyber risk management.
Jason Bonds
Jason joined Ping Identity in 2008 and has over 20 years of experience in software development, networking infrastructure data integration and information security.
Derek Brink
Derek brings a unique blend of analytical / technical background, combined with excellent communication skills and extensive information security industry expertise. He earned an MBA with honors from the Harvard Business School and a BS in Applied Mathematics.
Albert Biketi
In this role, Albert leads the team responsible for HPE's encryption strategy, go-to-market, engineering and delivery for the products and services which help our customers manage risk and secure the world's most sensitive data
Barbara Cosgrove
Barbara has extensive expertise in managing international data protection compliance programs, and implementing data governance policies, technology compliance standards and programs, and privacy-by-design frameworks. She has also served as the chief security officer for Workday.
Jacqueline Cooney
Jacqueline has over 20 years of experience in public policy, privacy, governance, risk, and compliance. She manages projects related to privacy program development and enhancement, cyber security, and US and international regulatory compliance.
Robert D. Schneider
Robert has written eight books and numerous articles on database technology and other complex topics such as cloud computing, Big Data, business intelligence, security, and APIs. He is also a frequent organizer and presenter at major international technology industry events.
Rashmi Knowles
Rashmi's current responsibilities include working with customers in a trusted advisor role to help realise the business benefits of comprehensive data security and is a prominent evangelist and spokesperson for both professional and industry conferences.
Richard Bird
Richard's unique perspective will explore the most challenging identity and cyber security issues faced in today’s world. He brings more than 20 years of corporate business, technology and security operations experience to the table.
Perry Carpenter
With a long career as a security professional and researcher, Mr. Carpenter has broad experience in North America and Europe, providing security consulting and advisory services for many of the best-known global brands.
Daniele Catteddu
Daniele is member of various security expert groups and committees on cyber-security and privacy, keynote speaker at several conferences and author of numerous studies and papers on Risk Management, Cyber Security and Privacy.
Brian Philbrook
Brian provides guidance on global privacy regulations to assist compliance efforts and drive product innovation, and conducts training and workshops on the GDPR. He contributes to various publications and web-conferences regularly.
Cheryl Tang
Cheryl has over 10 years of experience in the IT security industry, covering a wide-range of technology including mobile and endpoint, risk and compliance, data loss prevention, and identity and access management.
Les McMonagle
Les has over twenty years’ experience in information security. He has held the position of Chief Information Security Officer (CISO) for a credit card company and ILC bank, and founded a computer training and IT outsourcing company in Europe.
Hrishikesh Choudhari
In his 5 years at MetricStream, he has worked on cybersecurity projects with customers at different maturity levels. He comes from a background in analytics, and believes strongly in data-driven processes across organizations.
Mark Diamond
Mark is an industry thought leader in proactive records & information management, litigation readiness and risk & compliance strategies. As a trusted advisor he and his company help bridge legal, compliance, security and business needs and policies with effective processes, technology and change management.
Hannah McClure
Hannah leverages her consulting experience and CRISC certification (certified in risk and information systems control) to enable customers to transform Risk Management into strategic advantage through a proven GRC platform.
Jerry Caponera
Jerry leads the effort to quantify cyber risk in financial terms. He’s been working on cyber risk quantification efforts for a number of years and has a broad background in cyber, having worked for incident response, malware analysis, and services companies.
Providing Thought Leadership on IT.
Executive IT Forums, Inc.
Copyright © 2026 Executive IT Forums, Inc. All Rights Reserved.