Gartner Security & Risk Management Summit

Ant Allan, Ph.D., is a Research Vice President in Gartner Research. He is a core member of the identity and access management (IAM) research community and specializes in IAM program management and in key "authentication" and related "administration" technologies, processes, policies and best practices.

Rob Ayoub is a Security Strategist with Fortinet. In this role, Rob keeps abreast of the latest security challenges and works with customers - including healthcare organizations, managed security service providers and large enterprises - to deploy security solutions in order to address the latest threats. Prior to working at Fortinet, Rob Ayoub was the Research Manager for Frost & Sullivan’s Information Security program. In that position, Rob was providing continued coverage of a variety of Information Security markets including IPS, SIEM, and UTM. Rob also had consulting responsibilities, engaging with clients to help them make informed decisions around information security solutions.

French Caldwell is a Vice President and Gartner Fellow in Gartner Research, where he leads governance, risk and compliance research. Mr. Caldwell advises executive clients and program managers of Global 2000 companies and government agencies on strategies, markets, public policy and processes. He leads strategic research and advisory projects on governance, risk management and compliance (GRC), corporate governance, enterprise risk management (ERM), vendor risk management, IT risk management, public policy and legal developments, social risk management, and strategic information risk analysis. He advises on emerging issues in public policy and corporate affairs such as Dodd-Frank Whistleblower rules, U.K. Bribery Act, third-party risk management and cross-border compliance. He led the ground-breaking White House-sponsored cyberterrorism war game, Digital Pearl Harbor, and has appeared on international news programs, including a documentary on the History Channel. He established Gartner research and advisory programs on knowledge management, digital society, government, public policy, and risk management and compliance.

Carsten Casper is a Vice President with Gartner Research, responsible for the Privacy Key Initiative and for the security role in Gartner for IT Leaders in Germany. He advises clients on privacy and security strategies and technologies, in particular regarding European privacy regulations, data protection, managed security services in Europe and selected areas of compliance.

After a career as gendarmerie officer which he held alternately operational responsibilities for the safety of goods and people, and responsibilities in Information Systems, Olivier Chapron left the military with the rank of Lieutenant–Colonel. He then went as an Associated Consultant in a consulting firm for 15 years. During this period of time, Olivier managed strategic IT missions mainly for CAC40 listed companies and public ministers (masterplans, strategy, coaching). He joined Societe Generale in 2007 as Group Chief Information Security Officer and IT Risk manager. Olivier Chapron is a graduate from the Ecole Nationale Supérieure des Telecommunications of Paris.

Sheila Childs covers storage management software with a primary focus on archiving and secondary focus on related topics such as e-discovery and information governance. She also covers archive storage (including cloud), and other areas related to hardware, software or services associated with managing aging data.

As the global head of Security Operations for one of the Netherland's largest banks, Cornelissen is responsible for providing strategic Security Operations solutions and services to the Rabobank International Wholesale and International Retail and Rural Business, and oversees the teams to ensure these global solutions are delivered in a well-controlled, timely and cost effective manner. He has extensive experience in IT risk and security management. Prior to joining Rabobank International, Cornelissen held senior IT and security positions at HBOS Plc. (Lloyds Banking Group), Clerical Medical Financial Services B.V., Vodafone and ABN AMRO Bank N.V. Asset Management.

David is the Information Security Officer for the Investec Group and is responsible for the Group’s information security programme; developing and implementing the security policies, coordinating standards and guidelines within a globally decentralised environment. He ensures that the Group’s information assets are given an appropriate level of protection. He has a strong technical and networking background in the finance and telecommunications industry. His experience includes roles in network management, network security, support and implementation. David was recently awarded a master’s degree in Internet and Telecommunications Law (LLM) from Strathclyde University. He is also a CISSP, CISM and CISA. He has been awarded an Advanced Professional Certificate in Investigative Practices (APCIP) and is currently studying for a Masters in Investigative Practice.

Simon Crosby is Co–founder and CTO at Bromium. He was founder and CTO of XenSource prior to the acquisition of XenSource by Citrix, and then served as CTO of the Virtualization & Management Division at Citrix. Previously, Simon was at Intel where he led strategic research in distributed autonomic computing, platform security and trust. He was also the Founder of CPlane, a network optimization company. Prior to CPlane, Simon was a tenured faculty member at the University of Cambridge, UK, where he led research on networking, and multimedia operating systems. He has been named one of InfoWorld's Top 25 CTOs.

Andy Dancer is Chief Technology Officer for EMEA at Trend Micro. Andy joined Trend Micro through its acquisition of Identum, where he served as CEO, CTO and Board Director, responsible for developing the company's pairing based on cryptographic technology as well as its desktop and gateway email encryption products. On joining Trend Micro, Andy worked initially to integrate the Identum technologies and then to concept and develop Trend Micro's flagship cloud encryption solution - SecureCloud. As EMEA CTO, Andy splits his time between customers, partners, and media work. Earlier in his career, Andy worked with British Gas plc, WHSmith plc, before founding and successfully exiting a series of technology companies

Mario de Boer, Ph.D., is an Analyst in the Gartner for Technical Professionals Security and Risk Management Strategies team. He covers endpoint and email encryption, mobile device security, Web browser security, and client virtualization security.

Joseph Feiman, Ph.D., is a Research Vice President and Gartner Fellow in Gartner Research. Mr. Feiman focuses on application and data security, software life cycle security, application security testing, application fortification, data masking, data privacy, database protection, security intelligence, cloud applications/systems™ security, application and data security as a service.

David Furlonger is a VP and Gartner Fellow. He leads the worldwide research agenda for the banking and investment services industry. His specific research focus is the Bank of the Future, including industry structure, trends and directions, IT and business strategy, customer experience and innovation; capital markets and treasury and trading, including core trading systems; and risk management and regulatory compliance. Mr. Furlonger is also charged with developing research on the Future of Money to investigate new forms of money and technologies connected to its use, across multiple industries.

John E. Girard is a VP and distinguished analyst in Gartner's Info Security and Privacy Research Center. He specializes in business security and privacy solutions for wireless and mobile road warriors, extranet, remote offices and teleworkers.

Paul joined Morgan Stanley in October 2011. He is currently the Global Security Solution Engineering manager within Technology and Information Risk. Paul joined Morgan Stanley from Goldman Sachs where he worked for 14 years performing a broad range of roles including running the Global Risk Program for the Investment Banking division and the Global Security Program Manager for the Infrastructure Risk and Monitoring team. He became an Executive Director in 2005. Prior to joining Goldman Sachs Paul worked as a Research Associate at the University of Liverpool working on integrated circuit design and artificial intelligence research. Paul has a Ph.D. in Analogue Neural Network Design and Implementation from the University of Liverpool.

Jay Heiser is a Research Vice President specializing in the areas of IT risk assessment and management, collaboration security, security policy and security organization. Current research areas include cloud and SaaS computing risk and control, technologies and processes for the secure sharing of data with external partners, security program management, and the writing and enforcement of corporate policies.

Trent Henry is a Research VP covering identity and security. His primary research topics include authentication, PKI, information protection, and mobility and identity.

I am a British National and have lived in Switzerland for the last 20 years. I have an extensive knowledge of the banking industry having worked with Swiss Banks for the last 30 years and now with a good level of understanding of the Insurance business in several key areas. I work now for Zurich Insurance Group where I have successfully delivered a migration of a data warehouse and data mart technologies to leverage off-shore cost models. I now have the responsibility to consolidate and improve the delivery of software in support of the Risk Management, Audit and Compliance including support for Solvency II.

Ramon Krikken is an Analyst in the Gartner for Technical Professionals Security and Risk Management Strategies team. He covers software/application security; mobile application security and service-oriented architecture (SOA) security; structured and unstructured data security, including database security, data masking, redaction and tokenization; encryption and key management; security monitoring and security analytics; security metrics; and virtualization and cloud computing security as it pertains to the other categories.

David Lello is a contractor in Gartner Global Operations.

Lawrence Leyton, Innovation, Communication & Human Behaviour Expert. Lawrence is a top-level international speaker and best-known for his unique style and charismatic delivery. He is innovative, motivational, dynamic and his unconventional approach combined with his tailored presentations will astound and amaze you.

Brian Lowans, Ph.D., is a Principal Research Analyst within the Secure Business Enablement group, which is part of the Information Security and Privacy research organization of Gartner Research. Dr. Lowans focuses on a range of security issues, including structured and unstructured data encryption, database audit and protection, public key infrastructure, key management and intellectual property management and strategy, as well as other information security and risk topics.

Richard Menear is director for Security Centre of Excellence in Gartner Consulting EMEA.

John Morency is a research vice president who covers the management of disaster recovery and IT resiliency. He also focuses on compliance, security and risk management issues related to the implementation of effective disaster recovery.

Eric Ouellet is a vice president in Gartner, where he is responsible for research activities and content delivery relating to data loss prevention (DLP); enterprise digital rights management (EDRM); PKI/PKO: Certificate Authorities (CA); database, application and storage encryption; encrypted e-mail; and virtualization and risk management.

Spencer has more than 15 years' experience in the information security sector. Prior to joining Websense, he was director of product management at ScanSafe (acquired by Cisco in December 2009). Prior to that he was product line manager for AirDefense, a provider of wireless security products, and director of technical solutions at Niksun, providers of enterprise security surveillance systems. Spencer has a BSc in Molecular Biology from the University of Portsmouth (UK) and is a self-confessed fan of any new shiny gadgets.

Clemens Peyerl holds the role of the Global Information Security Manager for Stryker. Stryker is one of the world’s leading medical technology companies with more than 25.000 employees worldwide. Mr. Peyerl is the head of an international Security team and part of the Enterprise Risk Management. He is also the interface for Compliance and Security issues. He worked for well-respected companies in the IT-sector and has more than 12 years experience in different areas of security (Identity management, PKI, Audit, GRC).

Nisha Pillai joined BBC World News in October 1995. She is one of the main anchors on the channel, presenting its hourly news bulletins. She has also conducted award-winning investigations for Panorama, the BBC's flagship current affairs programme, and the Money Programme. Away from the studio, Nisha coaches both groups and individuals on the topics of communication and presentations skills, uncovering the secrets of the most successful communicators - from Barack Obama to Steve Jobs and Steve Ballmer. Nisha reveals how to capture your audience’s attention, and get your message across clearly, effectively and, above all, memorably. Nisha was born in Kolkata, but spent much of her childhood in Mumbai. She attended the London School of Economics and has a BSc in analytical economics.

Paul Proctor is a vice president, distinguished analyst, and the chief of research for security and risk management. He helps organizations build mature risk and security programs that are aligned with business need. His coverage includes board reporting, KRI development, risk assessment and GRC technologies. His ground-breaking research in Risk-Adjusted Value Management helps organizations integrate risk and corporate performance.

Tom Scholtz is a Research Vice President in Gartner, where he advises clients on security management strategies and trends, and is an acknowledged authority on information security policy design, security organizational dynamics, and security management processes. Based in the United Kingdom, Mr. Scholtz is a regular presenter at European industry events.

Julie Short is a Research Director and Research Agenda Manager at Gartner, focusing on the discipline of enterprise architecture (EA). She also has a risk management and compliance background. In her career, she has worked and managed all IT disciplines. She specializes in how EA integrates with and is consumed by the other IT disciplines, how risk management is integral to EA, incorporating EA as part of major initiatives, and the importance of defining governance from a business objectives perspective. She is also one of the past co-authors for the EA tools Magic Quadrant and has led research specifically on the functionality, selection, and implementation of EA tools.

Doug Simmons is Burton Group vice president of consulting services. His expertise is in enterprise, e-business and service provider security, risk management, data loss prevention, identity and access management, application and data security, network security, security policy and program development, PKI, messaging and collaboration services.

David Smith is the Deputy Commissioner with responsibility for the Data Protection supervisory functions of the Information Commissioner’s Office (ICO) based in Wilmslow, Cheshire. As well as providing Data Protection leadership across the Information Commissioner’s Office, David has direct responsibility for oversight of its Strategic Liaison Division which develops and manages the ICO’s relations with its key stakeholders. He is a member of both the Commissioner’s Management Board and Executive Team. The international aspects of David’s work involve him in representing the UK on the Article 29 Working Party of European Supervisory Authorities set up under the Data Protection Directive. In addition he was the Chairman of the data protection supervisory body for Europol from October 2006 to October 2009.

Don Smith is a leading information security expert who is the technical lead for Dell’s EMEA information security practice. His close ties with Dell SecureWorks’ Counter Threat Unit give him unparalleled visibility into the threat landscape as well as effective countermeasures and protective security strategies. This insight is frequently shared at government conferences and security gatherings around the world.

Mark joined Liverpool Victoria (LV=) as Head of Information Security in March 2012. Previously, Mark was Information Security Manager at the FSA, and before that held senior security leadership roles at Barclays, UK Payments Administration Ltd and BT. When not working, Mark enjoys spending time with his wife Emma (who is also a senior Risk Manager) and their children at home in Christchurch, and playing golf (quite badly). He is passionate about the need for meaningful and business-focussed security metrics, and on keeping security (and IT) simple, effective and cheap.

Mike StJohn Green has just spent the past three years in the UK Cabinet Office, in the Office of Cyber Security and Information Assurance (OCSIA). For the most of 2011, Mike and his team had been preparing the UK policy position for the London Conference on Cyberspace in November 2011 and working on the National Cyber Security Strategy published also in November 2011. His most recent work was concerned with setting adequate standards in cyber security. Mike is an engineer by training and previously was Deputy Director of CESG, the Information Assurance arm of GCHQ. He has held a variety of engineering and science posts – 31 years in GCHQ and working at MOD before that.

Bálint has more than ten years experience in managing Information Security and Compliance with Shell, after a few years of IT infrastructure management. He started by being responsible for the European, followed by global Shell Downstream Information Security for IT infrastructure. The scope included country specific compliance as well as advisory and stakeholder management to local senior business managers. In his current role, he is responsible for Downstream Compliance and Incident management in Shell Enterprise Services. His scope includes compliance management of business critical applications, local specific activities, audit and SOX.

Marcel Van Der Meer is the IT Manager for Netherlands-based SITA NEWS, an operating subsidiary of GDF Suez. In his role he is responsible for streamlining security and compliance requirements and interfacing with Business. He has experience with Identity and Access Management, GRC and Enterprise Applications such as SAP.

Andrew Walls is a Research Vice President in Gartner Research, where he specializes in information security practices, tools and markets in social media, enterprise governance, awareness/communications, directories, investigations, managed security services and security program management. Security practices and markets in the Asia/Pacific region are also a focus of his research agenda.

David Walter is the General Manager of GRC in EMEA at RSA, a division of EMC. As an expert in governance, risk and compliance (GRC), he has been responsible for developing many of the solutions in the RSA Archer GRC suite. Currently David is focused on building the GRC business within Europe, the Middle East and Africa. A certified public accountant (CPA) and former CFO, David brings a wealth of financial experience to this role – giving him a real-world insight into the pressures that organizations face in trying to balance risk and compliance best practice with fiscal responsibility.

Joerg Weber, Head of Attack Monitoring at Barclays Bank Plc Joerg joined Barclays Bank in 2008 to establish their Global Intrusion Detection Programme. His team monitors Barclays' networks for electronic attacks groupwide and protects Barclays' customers by developing new and creative ways of staying ahead of potential attackers. Joerg has over 10 years IT security experience, including roles as CSO for InfoServe GmbH.

Roberta Witty is a Vice President in Gartner Research, where she is part of the Risk and Security Management Programs group. Her primary area of focus is business continuity management and disaster recovery. Ms. Witty is the Key Initiative Lead for Gartner for IT Leaders (GITL) and chairs the BCM program at Gartner's annual Security & Risk Management Summit.

Tim Zimmerman is a vice president in Gartner Research. His research includes networking issues focusing on wired and wireless local-area networking (WLAN) campus and data center technologies and vendors, as well as RFID and ruggedized mobile devices.

Dionisio Zumerle is a Principal Research Analyst with Gartner Research. His research focuses on mobile security. His research coverage includes mobile device security, mobile application security, mobile and wireless network security, and the impact of consumerization of IT and BYOD on security. His research interests also include emerging technologies such as Near Field Communications (NFC) security and machine to machine (M2M) security.