Call
for Speakers for 2008 Registration 2007 Sponsors PLATINUM Sponsor
GOLD Sponsors: SILVER Sponsor:  
Contributing Sponsors:
Chapter Sponsor:
Honorable Mention:
| Watch
for 2008 Speaker information as it becomes available. 2007 Speakers Included... E. Eugene Schultz Gene Schultz, Ph.D., CISM, CISSP, is the Chief Technology Officer at High Tower Software. He is the author/co-author of five books on information security, the most recent of which is Intrusion Detection and Prevention from McGraw Hill. Gene is the Editor-in-Chief of Computers and Security as well as associate editor of Network Security and Information Security Bulletin. Prior to joining High Tower, Dr. Schultz was a Principal Engineer with Lawrence Berkeley National Laboratory and also taught computer science courses at the University of California at Berkeley. He has received the NASA Technical Excellence Award, the U.S. Department of Energy Technical Excellence Award, Information Systems Security Association (ISSA) Professional Achievement and Honor Roll Awards, and has been elected to the ISSA Hall of Fame. While at Lawrence Livermore National Laboratory, he was the founder and original project manager of the U.S. Department of Energy's Computer Incident Advisory Capability (CIAC) and also a co-founder of FIRST, the Forum of Incident Response and Security Teams. Audrey Pantas Audrey Pantas is chief information risk officer for Xerox Corporation. She was named to this position in December 2003. As head of the Xerox Information Risk Management Office, Pantas holds worldwide responsibility for establishing and maintaining a risk management program that safeguards and sustains the company's vast information assets. In addition to producing business-aligned controls and practices that correspond to persistent and emerging information security threats, Pantas manages regulatory impact, protects information privacy, and ensures the continuity of IT operations that support the company's global workforce, customers and partners. Pantas joined Xerox in 1980 as a programmer analyst and progressed through various information systems' development, strategic planning and implementation management positions. She has lead information management programs for product development, marketing through collection, and corporate information management functions. Pantas holds an MBA from the University of Rochester Simon School and undergraduate degrees in Information Management and Organizational Management. Sam McQuade Sam McQuade currently serves as the Professional Studies Graduate Program Coordinator at the Rochester Institute of Technology. He is a former Air National Guard security officer, deputy sheriff and police officer, police organizational change consultant, National Institute of Justice Program Manager for the U.S Department of Justice, and Study Director for the Committee on Law and Justice at the National Research Council of the National Academies of Sciences. Professor McQuade holds a Doctoral Degree in Public Policy from George Mason University, and a Masters Degree in Public Administration from the University of Washington. He teaches and conducts research at RIT in areas inclusive of computer crime, security technology administration, and career options in technology-oriented societies. Dr. McQuade also oversees a professional concentration of graduate courses pertaining to Security Technology, which are now offered through RIT's Professional Studies Masters of Science Degree. His new textbook titled, Understanding and Managing Cybercrime, was published by Allyn & Bacon/Pearson Education in 2006. Michael Green Mike Green was elected Monroe County District Attorney in 2003 and took office January 1, 2004. Under his leadership the office is combating violent crime and homicides by targeting armed violent felons, drug dealers, and those illegally carrying guns. Mr. Green is working to bring law enforcement together to attack crime through his leadership role in efforts such as Operation Impact, Ceasefire, and Project Exile. Every year Green has been District Attorney his office been the leading large office in New York State for DWI conviction percentage. Working with the Domestic Violence Consortium, Green has implemented innovative prosecution protocols for domestic violence cases that include evidence based prosecution. District Attorney Green implemented Project Step Up, using money seized from drug dealers to fund an educational and recreational program for teens at the Boys and Girls Club. District Attorney Green has also partnered with the Boys and Girls club to support a literacy program for children. Joe Ondercin Special Agent Joe Ondercin, Federal Bureau of Investigation Beth VanVliet Vice President of Client Services, Dixon Schwabl Chip Nimick Chip Nimick, CISSP, is Information Security Officer for Strong Memorial Hospital and Highland Hospital and is Security Group Manager in the Information Systems Division of Strong Health. He is a Computer Engineering graduate of the University of Rochester, where he previously worked as Director of Academic Computing, ResNet Project Manager, Telecommunications (voice/data) Engineering Manager, Hospital Applications Manager, and Chief Network Architect for UR's Medical Center. Rumors that he started working for the University as a toddler are unfounded. Dave Pecora Dave Pecora is the Associate Director of Customer Support Services for Information and Technology Services at the Rochester Institute of Technology. Dave has over 20 years of experience in a wide variety of IT roles. He currently oversees the RIT ITS HelpDesk as well as Desktop Support, Desktop Engineering, Residential Network Computing (Resnet), and Distributed Support Services. Dave was also the project manager for the implementation of an online music service at RIT, and played a lead role in the training and communication for the university's recent electronic ID initiative. Dave previously held an IT management position at Bausch and Lomb and has also been a consultant for SAP America. Wyman Miles Wyman Miles started in higher-ed as a UNIX/VMS systems administrator 16 years ago. After a stint doing desktop support and UNIX admin for Cal State LA, and supporting user services at USC, he wound up at Rice University, eventually becoming Manager of Infrastructure. There, his team developed high-availability e-mail systems, provided centralized campus middleware services, and ran a student consultant program for the dorms. In 2004, he moved to Ithaca, NY to take a position as a security engineer for Cornell University. Since then, he has developed Spider, which is a tool to find certain types of confidential data. He has also developed vulnerability scanning systems, incident response procedures and tools, and Netflow processing strategies. A recent family expansion largely put a stop to biking, snowboarding, and hiking in the Finger Lakes region of New York. David Koon David Koon was elected to represent the 135th Assembly District in a special election held in February 1996. He was elected to a full term in November of that year. David serves as a member of the Alcoholism and Drug Abuse; Economic Development, Job Creation, Commerce and Industry; Local Governments; Small Business; and Library and Education Technology Committees. He is also Vice Chair of the Legislative Commission on Rural Resources and Vice Chair of the Legislative Commission on Toxic Substances and Hazardous Waste. Jeffrey Stanton Jeff Stanton, associate professor and director of the School of Information Studies Ph.D. program has recently published a book called, "The Visible Employee: Using Workplace Monitoring and Surveillance to Protect Information Assets - Without Compromising Employee Privacy or Trust." The book, co-authored by Dr. Kathryn Stam, assistant professor at SUNY Institute of Technology, reports results from four years of research conducted by the authors and focuses on the roles of employees, managers, and information professionals in the support of effective information security. In this presentation, Dr. Stanton will discuss some of the security cases his research team encountered during the project and will provide some practical suggestions for improving security through better management of behavior. Lionel Bittner City of Rochester, New York CIO UCB/Celltech Group, Rochester, NY Vice President of Information Technology UCB / CIO Celltech Group A leading € 2.5 billion European headquartered biopharmaceutical company HARTE-HANKS DIRECT MARKETING, Austin, TX Vice President Information Technology / CIO Fully integrated $550 million Direct Marketing Company GENENCOR INTERNATIONAL, INC., Rochester, NY Corporate Director, Information Technology A diversified $325 million biotechnology global manufacturer of specialty enzymes MOBIL CORPORATION, INC. Divisional Information Systems Manager A diversified global energy and chemical company with $ 52 billion in annual revenues Ford Greene Rochester City Schools CIO Ford C. Greene is Chief of Information Management & Technology for the Rochester (NY) City School District (RCSD). Mr. Greene has over twenty-five years of extensive background and experience in the design and deployment of terrestrial Broadband Data, Microwave, Information Technology (IT) and RF systems, in the public and private sectors. Mr. Greene began his career in technology with the IBM Corporation in its large mainframe environment, specializing in software development and data communications, both local and remote. Mr. Greene’s IBM background consisted of management and executive positions in Sales, Marketing and Engineering Management, including executive positions with the IBM Information Network (Advantis, the IBM Global Network which is currently ATT GlobalNet). Mr. Greene culminated his IBM career as Director of Commercial Integration in the IBM Federal Systems Division. This division specialized in terrestrial-based voice/data networks, and Information Systems implementation and management in the Urban Rail, Electric Utility and Public Sector markets. Since leaving IBM, Mr. Greene has held several executive positions with technology based firms where he has managed the design, engineering, and deployment of several large-scale data, RF and VSAT networks for Federal, State and Local Government and Commercial clients. Mr. Greene served as Co-founder and Chief Operating Officer at North American Wireless, Inc. (NAWI) where he was responsible for the design, engineering, implementation, marketing and management of a North American Personal Communications Service (PCS) wireless network in partnership with Lucent Technologies (formerly AT&T) and Cable & Wireless, Inc. Most recently, Mr. Greene was President of Frontier Telephone of Rochester (NY) and is an acknowledged wireless communications industry leader, having served as keynote speaker for both industry conferences and the Federal Communications Commission (FCC). Mr. Greene has testified at Congressional Hearings on behalf of Minority and Women owned businesses in telecommunications, and he continues to be active in regulatory and legislative activities. Mr. Greene studied Electrical Engineering at Georgia Institute of Technology (Georgia Tech) and received his BS in Mathematics and Computer Science from Morgan State University in Baltimore, MD. Mr. Greene has completed several post-graduate courses at the Darden School of Business at the University of Virginia (Masters in Business Certificate) and at Johns Hopkins University. Mr. Greene resides with his wife in Rochester, New York David E. Lewis University of Rochester CIO David E. Lewis is the Vice Provost and Chief Information Officer, a cabinet position, at the University of Rochester. In his current position he reports to the Provost as the Senior University IT Officer and also oversees the University's Information Technology organization. He provides broad leadership for the extensive and diverse information technology (IT) initiatives required by a leading research university. As the primary hub for IT programs and initiatives, the Office of the CIO engages constituents University-wide to ensure that all IT services align with the institution's missions of teaching, research, patient care, performance, and community service. A key objective is to build collaborative relationships across the University to create integrated, secure, and dependable IT systems and practices that support efficient and cost-effective distribution of information across the University community Experience and Areas of Interest Dave joined the University of Rochester in 1997. He was previously employed by the University of Michigan for over 10 years, where he served in a variety of IT leadership roles. He has an extensive background leading information technology organizations including developing and integrating complex IT infrastructures into higher education and health care environments. Dave is experienced in collaborating with University faculty on projects relating to research, and teaching and learning initiatives that require technology support. As a University administrator, Dave has been involved and at the leading edge of developing sustainable cost recovery models for funding information technology infrastructure. He is also very interested in community and team building as well as organizational dynamics and culture. National Participation and Education Lewis is active in many national and regional initiatives including Educause, NYSERNet, Internet2, and ACUTA. He received both his bachelor's degree in Organizational Development and his master's degree in Business Administration from Eastern Michigan University. Dave currently resides in Pittsford, New York with his wife Anne and their two children. Dave enjoys sports, building relationships, and spending time with his family. Rodney J. Petersen Rodney Petersen is a Government Relations Officer with EDUCAUSE and the Coordinator of the EDUCAUSE/Internet2 Computer and Network Security Task Force. He was formerly the Director of IT Policy and Planning in the Office of the Vice President and Chief Information Officer at the University of Maryland. He is the co-editor of a book in the EDUCAUSE Leadership Strategy Series entitled "Computer and Network Security in Higher Education". He is also a founding member of the Association of College and University Policy Administrators and the author of "A Primer on Policy Development for Institutions of Higher Education" and "A Framework for IT Policy Development". He writes and speaks regularly on topics related to higher education cyber law and policy. He received his law degree from Wake Forest University. He also received a certificate as an Advanced Graduate Specialist in Education Policy, Planning, and Administration from the University of Maryland. Patrick Gray Prior to joining Cisco Systems, Patrick Gray was the Director of X-Force Operations, Office of the Chief Technology Officer, Internet Security Systems, Inc. (ISS). With twenty years of service with the Federal Bureau of Investigation, Gray was responsible for teams responding to network-related emergencies be they external or internal. Upon his retirement from the FBI in November 2001, he joined Internet Security Systems and created the X-Force Internet Threat Intelligence Center and thereafter was Director of the Penetration Testing and Emergency Response Teams until his promotion to Director. As a result, he has first-hand knowledge of the hacking community, its aims and methodologies as they attack government, ecommerce, energy and financial entities relentlessly. With respect to Emergency Response Teams he is aware of current vulnerabilities that are exploited by hackers and insiders and why the targeted systems are susceptible to attacks. Jim Pierce Jim Pierce, MBA, CISA, Senior, Ernst & Young Jim is a Senior in the North Central Area Technology and Security Risk Services (TSRS) practice. Jim has had over ten years in private industry including implementation and support experience in operational and accounting software within multiple industries including non-profit, manufacturing, printing, and logistics fulfillment. Ryan Sherstobitoff Ryan Sherstobitoff, Panda Software As the Product Technology Officer at Panda US, Ryan Sherstobitoff oversees and manages the US strategic response to new and emerging virus attacks. Sherstobitoff's extensive experience includes work designing and managing network infrastructures as well as mobilizing and managing security technologies throughout widely dispersed large-scale networks. As an intrinsic part of designing security infrastructures, Ryan has worked on a variety of security technologies in a myriad of platforms and environments, including financial, industrial, and service infrastructures. Ryan holds industry certifications in Microsoft MCSE, Microsoft MCSA, A+, Cisco CCNA and Comptia A+ Certified. Randy L. Newcomb Senior Investigator Randy L. Newcomb New York State Police Computer Crime Unit - Western Region. Troop "E" Headquarters 1569 Rochester Road Canandaigua, N.Y. 14425 585-398-4195 26 Years with the New York State Police, serving the last 20 years as an Investigator with the Bureau of Criminal Investigation. Since the statewide expansion of the Computer Crimes Unit in October of 2006, has served as the Senior Investigator in charge of the Computer Crime Unit - Western Region. For the 4-1/2 years prior to the expansion, served with the Troop "E" Cyber Terrorism Unit located at Troop "E" Headquarters. Received an A.A.S. Degree/Criminal Justice, from Monroe Community College in 1980. Has attended numerous specialized schools for computer forensics and investigation from the New York State Attorneys General Office, Division of Criminal Justice Services, SEARCH (National Criminal Justice Computer Laboratory and Training Center), National White Color Crime - Computer Crime Center, Internet Crimes Against Children Task Force, and the FBI. Member of the "High Technology Crime Investigation Association" - Northeast Chapter. CCU-Western's offices are located at Troop "A" Headquarters in Batavia, and at Troop "E" Headquarters in Canandaigua, N.Y. This unit provides investigative and technical assistance to all State Police Investigative Units in the 10 counties of Troop "E", the 8 counties of Troop "A" as well as other County/City/Village Police Departments. Duties include investigation of matters involving Internet Crimes Against Children, Cyber Terrorism, Network Security, Online-Fraud, Identity Theft, and other computer related offenses. Richard Stiennon Richard Stiennon, Chief Marketing Officer, has more than 25 years of experience in the security industry. An acknowledged and acclaimed industry thought leader, he is perhaps best known for his tenure as Vice President of Research for Gartner's Security and Privacy group, where he regularly provided strategic counsel to Global 2000 CIOs and earned Gartner's Thought Leadership Award for 2003. He was most recently the Founder and Chief Research Analyst of IT-Harvest, Inc., an independent IT research firm. Prior to IT Harvest, Richard was Vice President of Threat Research for Webroot Software, Inc. He holds several patents and has garnered prestigious industry designations, including being named one of the "50 Most Powerful People in Networking" by Network World magazine. Richard earned a B.S. degree in aerospace engineering from the University of Michigan. Steve Stasiukonis Steve Stasiukonis is vice president and founder of Secure Network Technologies Inc. With over 15 years of industry experience. His background in information security began as co-founder of Network Audit Systems, where he helped develop and launch a network security assessment tool called NetAuditor. In 1999, he sold the company to Armor Holdings and took over marketing Technology Risk Management, a suite of information security products and services used in financial, manufacturing and healthcare industries. Steve also serves as a columnist for Darkreading.com regarding Social Engineering and network security issues. Beth Jones Beth Jones manages the day to day research and analysis activities of incoming suspicious malware threats and potentially unwanted applications that arrive in the Lab via Sophos customers, partners and prospects. Beth has worked in the Boston-based SophosLab facility for more than four years and brings nearly a decade of network security experience to SophosLabs. Prior to joining Sophos, Beth worked in a variety of information technology roles throughout her career, including Integration Team Lead at Qwest, a leading provider of voice, video and data services across America and the world, and iBasis, one of the largest carriers of international voice traffic in the world. When Beth is not in the Lab, she regularly leads educational sessions for prospective customers as well as Sophos's K-12 and higher education customers on the growing security threats and ways in which to prevent and protect their organization. Additionally, Beth interfaces with the company's spokespeople to provide clarity on particular threats and statistical data. Rohyt Belani Rohyt Belani is a Managing Partner and co-founder of the Intrepidus Group. Prior to starting the Intrepidus Group, Mr. Belani has held the positions of Managing Director at Mandiant, Principal Consultant at Foundstone and Researcher at the US-CERT. During his tenure in information security consulting, Mr. Belani has provided strategic security consulting to information security executives, and performed numerous technical security reviews of critical financial applications and networks. In addition he has assisted organizations in responding to high exposure security incidents involving securities fraud, credit card theft, and cyber-extortion. He is a contributing author for Osborne's Hack Notes - Network Security, as well as Addison Wesley's Extrusion Detection: Security Monitoring for Internal Intrusions. Mr. Belani is a regular speaker at various industry conferences including Black Hat, OWASP, ASIS, Hack In The Box, Infosec World, DallasCon, CPM and several forums catering to the FBI and US Secret Service agents. He currently holds an Adjunct Faculty position at Carnegie Mellon University and has been invited to guest lecture at the University of Wisconsin, and Illinois Institute of Technology. He has written technical articles and columns for online publications like Securityfocus and SC magazine, and has been interviewed by BBC, Hacker Japan, InformationWeek, IndustryWeek, and Forbes magazine. Mr. Belani holds a Bachelor of Engineering in Computer Engineering from Bombay University and a Master of Science in Information Networking from Carnegie Mellon University. He currently leads the OWASP Java Project a world-wide consortium of Java security experts. Michael Bryant Special Agent in Charge Michael C. Bryant oversees U.S. Secret Service investigative and protective operations in Buffalo, New York. He has been employed with the U.S. Secret Service for over twenty-three years, five of which he served at the White House during the Clinton Administration. He possesses a Master's of Science degree in the Administration of Justice from the American University in Washington, D.C. Prior to his career with the U.S. Secret Service, he was employed with the Metropolitan Police Department, Washington, D.C. Allen Scalise Allen Scalise is President of Great Lakes Networks and has created strong relationships with customers across the US over the past twenty years. His unique experience in enterprise solutions, management, business, telecommunications, and distribution makes him an ideal leader for Great Lakes Networks. Allen founded Great Lakes Networks in 2005. Previously, Allen worked for two San Francisco based security startups, nCircle Network Security and CoSine Communications, held a national sales position at Frontier Communications and was Regional Director at SBC DataComm (now AT&T Enterprise Solutions) where he managed P&L, six multi-state offices and a remote sales force. Allen is an avid radio hobbyist. Allen graduated with a bachelors degree from Allegheny College in Pennsylvania, is co-founder and President of the Rochester Chapter of ISSA, a member of InfraGard, Executive Committee member of the Rochester Regional Cyber Safety, Security and Ethics Initiative and on the Board of Directors at Brighton Volunteer Ambulance. Ralf Durkee Ralph Durkee, CISSP, GSEC, GCIH, GSNA is the principal security consultant and president of Durkee Consulting, Inc since 1996. In addition to security audits and consultations, he has developed and taught a wide variety of professional security seminars on web application security, and hacking techniques in the last 5 years. Ralph led the development of several security benchmarks (standards) for the Center for Internet Security including Red Hat Linux, FreeBSD, Apache, DNS BIND, LDAP and RADIUS. Andrea Cogliati Andrea's first approach with IT occurred at the age of 8, when his father purchased the third Commodore PET 2001 sold in Italy. He soon started programming in BASIC and 6502 assembler. A few years later, while still at high school, he begun his professional career as a programmer for a small software house. In the late 80s his employer became the Italian sole agent for McAfee Antivirus program so he focused in virus and anti-virus technologies, supporting McAfee Italian customers: cooperation with McAfee lasted severals years and in 1995 he was part of the very first McAfee AVERT (now McAfee AVERT Labs). In 1998, after graduating in Mathematics at Scuola Normale Superiore in Pisa, Andrea joined Mondadori Informatica Education (the first and most important Authorized Microsoft Training Center in Italy) as a trainer and consultant; he also spoke at several national conferences and events sponsored by Microsoft. In 2000 he moved to Algol, the major Cisco and Extreme Networks distributor in Italy as AlgolCollege New Business Developer Manager. He taught classes on Microsoft, Extreme Networks and Compaq technologies in Italy and EMEA. In 2002 he founded a small consultancy and training company focused solely in IT Security, which was eventually awarded by the Province of Milan as one of the most innovative companies for a biometrics authentication project. In 2006 Andrea started a training program with Andrea Provaglio, a former associate of Bruce Eckel's MindView Inc., for a major European bank, developing and teaching security courses for software architects and developers. Andrea holds several Microsoft, Cisco, Extreme Networks, McAfee and Compaq certifications and he's also a BS7799 Lead Auditor. When not working, he enjoys playing keyboards with an amateur rock band. He also likes to cook for his family and friends and share his wine tasting experiences. James Kist James Kist, CISSP, is a Senior Information Security Consultant with Icons, Inc. He has more than 15 years experience in Information Technology, with more than 10 years specializing in Information Security. He has authored courseware on several topics including network security, system security, web application security, and wireless network security. He has recently assisted in the development of The OWASP Testing Guide v2 and is currently developing an OWASP "Best Practices" guide. He regularly conducts penetration tests and vulnerability assessments on wired networks, wireless networks, and web applications. He is a Certified Information Systems Security Professional (CISSP) and is a SANS GIAC-GWAS (GIAC Web Application Security) Certified Professional. He holds a Bachelor's degree in Computer Science from University at Buffalo. Bill Waterhouse Bill Waterhouse is currently University IT’s Interim Information Security Officer and Director of Security and Policy at the University of Rochester. He received his bachelor’s degree from SUNY Geneseo, his MBA from the William E. Simon Graduate School of Business Administration, and is certified as an Associate Business Continuity Planner and a Project Management Professional. Bill is a member of the University of Rochester’s Data Security Task Force, which is lead by Provost Ralph Kuncl and addresses the University’s information data security policies and guidelines. |
