2019 Tennessee CyberSecurity Collaboration Forum

April 18, 2019 – Gaylord Opryland Resort & Convention Center, Nashville

Register NowLeadership Board Chairs

Diane Ball Diane Ball, CISSP
Vice President and Chief Information Security Officer
BlueCross BlueShield of Tennessee
Peter Gallinari Peter Gallinari
Domain Information Security Officer / Data Privacy
State of Tennessee, Department of Finance and Administration
Mark Hackney Mark Hackney
Chief Information Officer
Tennessee Bureau of Investigation
Lester Matthews Lester K. Matthews
Chief Information Officer
University of Tennessee System

Leadership Board Members

  • •  Robert Banniza, Associate Vice President, Information Security, AmSurg
  • •  Steve Barnard, Vice President Information Technology, EnergySolutions
  • •  Ed Balsmann, Senior Vice President, Chief Compliance Officer, Jackson National Life
  • •  Thomas Bartolomeo, Executive Vice President, Head of Cyber Security Defense and Monitoring, Wells Fargo
  • •  Michael D. Boyd, Chief Information Officer, Southwest Tennessee Community College
  • •  Charles Bertrand, Cyber Security Engineer and Chief Information Security Officer, Buckman Laboratories
  • •  Scott Breece, Vice President and Chief Information Security Officer, Community Health Systems
  • •  Stephen Brown, Senior IT Security and Cyber Analyst, University of Tennessee
  • •  Curtis Campbell, Vice President, Manager, IT Procurement and Vendor Management, Atlantic Capital Bank
  • •  Sean Datcher, Chief Technology Officer, Check Into Cash Online
  • •  Andrea Di Fabio, Chief Information Security Officer and Associate Chief Information Officer, East Tennessee State University
  • •  Jamie Engstrom, Chief Information Officer, Caterpillar Financial Services
  • •  Ahmed Esmail, Chief Technology Officer, The Conrad Pearson Clinic
  • •  Wes Floyd, Director IT Security, Kenco Group
  • •  Eddie Gadsey, Chief Technology Officer, RCCH Healthcare
  • •  Dennis Gendron, Chief Information Officer, University of Tennessee - Chattanooga
  • •  Angela Gibson, Chief Information Officer, University of Tennessee Institute of Agriculture
  • •  Aaron J. Goodwin, Chief Information Officer and Chief Information Security Officer, B. Riley Wealth
  • •  Ricky Grant, Senior Cyber Security Architect, Volkswagen Group of America
  • •  Ryan Hammer, Senior Director, Global Security and Risk, Asurion
  • •  Tim Hill, Chief Information Officer and Senior Vice President, Lifeway Christian Resources
  • •  David Holman, Chief Technology Officer, Clarksville Montgomery County School System
  • •  Andrew Hutchinson, Executive Director Cyber Security, Vanderbilt University Medical Center
  • •  John Jeffries, Chief Information Security Officer, Information Security Director, University of Tennessee Medical Center
  • •  Joey Johnson, Chief Information Security Officer, Premise Health
  • •  Walter Kolodziey, Chief Information Officer, American Bath Group
  • •  Dawn Lambert, Chief Information Security Officer, Steward Health Care System
  • •  Sandra D. Lindsey, Chief Information Security Officer, University of Tennessee Institute of Agriculture
  • •  Scott Mackelprang, Chief Security Officer, Asurion
  • •  Michael Mangold, Vice President, IT Infrastructure Services & Security, Tractor Supply Company
  • •  Steve Marshall, Vice President, IT Services, Ingram Content Group
  • •  Ron McClure, Chief Information Officer, Acadia Health
  • •  Shawn McClure, System Security Officer, Chief Information Security Officer, Shelby County
  • •  Gray Mitchell, Chief Information Security Officer, TeamHealth
  • •  Paul Novak, Vice President, IT and Cyber Security, A. O. Smith
  • •  Jason Powell, Vice President, Chief Information Security Officer, Brookdale Senior Living Center
  • •  Robert Ridenour, Chief Information Security Officer, University of Tennessee System
  • •  Rockwell Scott, CISSP, Chief Information Officer, Delek US Holdings
  • •  David Ulloa, Chief Information Security Officer, Technology Solutions, IMC Companies
  • •  Jan J. van der Aa, Vice Chancellor for IT and Chief Information Officer, University of Tennessee Health Science Center
  • •  Steve Vieira, Chief Information Officer, Tennessee Board of Regents
  • •  Dan Wittig, Chief Information Security Officer, Louisiana Pacific Corporation

Agenda

We are currently working with the Leadership Board to develop the agenda based on their insight and direction. We will post sessions and speakers as soon as they are finalized. View Forum Schedule


Ensuring Your Incident Response Plan Works When You Need it Most
Last year, East Tennessee State University (ETSU) became the victim of a phishing attack that resulted in a potential data breach of sensitive employees’ information. This session provides a deep dive into ETSU’s incident response (IR) plan, from incident identification to resolution and lesson learned. The session will examine the role of key internal and external partnerships and discuss how the slower and meticulous approach to evidence gathering affects senior leadership’s damage control plan. This session will also look at how ETSU transformed its security controls and IR plan after post mortem incident review.

Speaker:

Andrea Di Fabio

Andrea di Fabio
Chief Information Security Officer and Associate Chief Information Officer, East Tennessee State University
View Bio

 

Overhauling Cybersecurity Infrastructure
Les Mathews and Robert Ridenour will discuss creating a cybersecurity program based on the NIST Cybersecurity Framework that includes risk management, procedure development and controls implementation. The success of the University of Tennessee System Administration (UTSA) IT security program is based on a sound plan developed from the Framework as well as engagement by the leadership and staff of UTSA. Les and Robert will outline how they accomplished both of these tasks.

Speaker:

Lester Matthews

Lester K. Matthews
Chief Information Officer, University of Tennessee System
View Bio

Robert Ridenour

Robert Ridenour
Chief Information Security Officer, University of Tennessee System

 

Navigating Security and Privacy On-Prem and in the Cloud
With an ever-changing threat landscape, we’ve seen the convergence of Data Privacy and Cybersecurity functions as a response to those shifting risks. To stay ahead of bad actors, these two teams need to work closely together to ensure they have a complete data protection program in place to cover all aspects of data security. This session will outline key components of effective data security programs within organizations and within the cloud. This is all with the ultimate goal of establishing an environment in which data privacy and data protection teams across the State of Tennessee are able to successfully fulfil regulatory and state obligations, both individually and in concert, through diffusion of knowledge and supportive connections.

Speaker:

Peter Gallinari

Peter Gallinari
Domain Information Security Officer / Data Privacy, State of Tennessee, Department of Finance and Administration
View Bio

Speakers

Speakers will be added in the upcoming weeks. Stay tuned…

Diane Ball Diane Ball, CISSP
Vice President and Chief Information Security Officer
BlueCross BlueShield of Tennessee
View Bio
Steven Barnard Steven Barnard
Vice President Information Technology
EnergySolutions
View Bio
Scott Breece Scott Breece
Vice President, Chief Information Security Officer
Community Health System
View Bio
Andrea Di Fabio Andrea Di Fabio
Chief Information Security Officer and Associate Chief Information Officer, Information Technology Services
East Tennessee State University
View Bio
Wes Floyd Wes Floyd
Director IT Security
Kenco Group
View Bio
Peter Gallinari Peter Gallinari
Domain Information Security Officer / Data Privacy
State of Tennessee, Department of Finance and Administration
View Bio
Aaron J. Goodwin Aaron J. Goodwin
Chief Information Officer and Chief Information Security Officer
B. Riley Wealth
View Bio
Mark Hackney Mark Hackney
Chief Information Officer
Tennessee Bureau of Investigation
View Bio
Byron Herlong Byron Herlong
Lead Systems Engineer – Unix
Tractor Supply Company
View Bio
David Holman David Holman
Chief Technology Officer
Clarksville Montgomery County School System
View Bio
Andrew Hutchinson Andrew Hutchinson
Executive Director, VUMC Enterprise Cybersecurity
Vanderbilt University Medical Center
View Bio
John Jeffries John Jeffries
Information Security Director
University of Tennessee Medical Center
View Bio
Geoffrey F. Jenista, CISSP, MBA, MA Geoffrey F. Jenista, CISSP, MBA, MA
Cyber Security Advisor, Region VII (MO, KS, IA, NE)
Cybersecurity and Infrastructure Security Agency, Cybersecurity Division Stakeholder Engagement and Cyber Infrastructure Resilience

US Department of Homeland Security
View Bio
Joey Johnson Joey Johnson
Chief Information Security Officer
Premise Health
View Bio
Chris Madeksho, CISA CRISC Chris Madeksho, CISA CRISC
Information Security, Information Technology Services
University of Tennessee Health Science Center
View Bio
Timothy S. Marsh Timothy S. Marsh
Special Agent, Counterintelligence/Cyber Program Private Sector Coordinator
FBI Memphis Field Office
View Bio
Lester Matthews Lester K. Matthews
Chief Information Officer
University of Tennessee System
View Bio
Paul Novak Paul Novak
Vice President, IT and Cyber Security
A. O. Smith
View Bio
Robert Ridenour Robert Ridenour
Chief Information Security Officer
University of Tennessee System
Jan van der Aa Jan van der Aa
Vice Chancellor for Information Technology and Chief Information Officer
University of Tennessee Health Science Center
View Bio
Kyle Yoches Kyle Yoches
IT Security Specialist
Tractor Supply Company
View Bio
   

Sponsors

The Leadership Board is reviewing nominated sponsors and selecting the industry-leading partners that they will be inviting to participate. For sponsorship inquiries, please email steveb@cxocollaboration.com.

Executive Boardroom

ExtraHop
White Paper

ExtraHop provides enterprise cyber analytics that deliver security and performance from the inside out. Our breakthrough approach analyzes all network interactions and applies advanced machine learning for complete visibility, real-time detection, and guided investigation. With this approach, we help the world’s leading enterprises including Hasbro, Credit Suisse, Caesars Entertainment, and Liberty Global to rise above the noise of alerts, organizational silos, and runaway technology. Whether you’re investigating threats, ensuring delivery of critical applications, or securing your investment in cloud, ExtraHop helps you protect and accelerate your business. Learn more at www.extrahop.com

Fortinet
White Paper

The Fortinet vision is to deliver broad, truly integrated, high-performance security across the IT infrastructure. We provide top-rated network and content security, as well as secure access products that share intelligence and work together to form a cooperative fabric. Our unique security fabric combines Security Processors, an intuitive operating system, and applied threat intelligence to give you proven security, exceptional performance, and better visibility and control--while providing easier administration. In addition to our flagship enterprise firewall platform, complementary products can be deployed with a Fortinet FortiGate to enable a simplified, end-to-end security infrastructure. www.fortinet.com

Best Practice Partner

RSA

RSA, a Dell Technologies business, offers business-driven security solutions that uniquely link business context with security incidents to help organizations manage digital risk and protect what matters most. RSA's award winning cybersecurity solutions are designed to effectively detect and respond to advanced attacks; manage user identities and access; and, reduce business risk, fraud, and cybercrime. RSA protects millions of users around the world and helps more than 90% of the Fortune 500 companies thrive in an uncertain, high-risk world. For more information, go to rsa.com

Session Host - Keynote

Duo Security
White Paper

Duo Security helps defend organizations against data breaches by making security easy and effective. Duo Beyond, the company's category defining zero-trust security platform, enables organizations to provide trusted access to all of their critical applications, for any user, from anywhere, and with any device. The company is a trusted partner to more than 10,000 customers globally, including Dresser-Rand, Etsy, Facebook, K-Swiss, Random House, Yelp, Zillow, Paramount Pictures, and more. Founded in Michigan, Duo has offices in Ann Arbor and Detroit, as well as growing hubs in Austin, Texas; San Mateo, California; and London, UK. Visit: duo.com

Emerging Game Changer

Nyotron
White Paper

Nyotron pioneers a new generation of automatic Endpoint Detection and Response with integrated protection called Endpoint Prevention and Response (EPR). Our product prevents damage from malware that evades existing security layers and offers granular visibility into the attack source, timelines and TTPs. Based on the OS-Centric Positive Security, Nyotron’s PARANOID automatically whitelists trusted operating system behavior and rejects everything else. No manual threat hunting, disk scanning, machine learning or cloud connectivity required. With PARANOID organizations gain true defense-in-depth protection against the most advanced attacks. Nyotron is headquartered in Santa Clara, CA with an R&D office in Israel. www.nyotron.com

Location and Venue Gaylord Opryland Resort & Convention Center

Gaylord Opryland Resort & Convention Center

Gaylord Opryland Resort & Convention Center
2800 Opryland Dr.
Nashville, TN 37214

Phone: 1.615.889.1000 | Website

Room Reservation and Info: Click Here

Contact Us

Please contact Steve about any of your Forum or sponsorship needs.

Steve Bangsund
Executive Director
CyberSecurity Collaboration Forum
D: 503.765.5117 | M: 503.481.5263
E: steveb@cxocollaboaration.com