Featured Speakers

Jim Reavis

Co-founder and Chief Executive Officer of CSA

For many years, Jim Reavis has worked in the information security industry as an entrepreneur, writer, speaker, technologist and business strategist. Jim’s innovative thinking about emerging security trends have been published and presented widely throughout the industry and have influenced many. Jim is helping shape the future of information security and related technology industries as co-founder, CEO and driving force of the Cloud Security Alliance. Jim has been named as one of the Top 10 cloud computing leaders by SearchCloudComputing.com.

Jim Reavis


Vice President, CISO, Premera Blue Cross

Sean Murphy is the Vice President and Chief Information Security Officer at Premera Blue Cross in Seattle, WA. He is considered a healthcare information security expert and has more than 20 years of experience in a variety of healthcare organizational settings. He’s also a retired Air Force Officer (Medical Service Corps). He’s the author of “Healthcare Information Security and Privacy.” Sean is a current board member of the Association for Executives in Healthcare Information Security (AEHIS). He holds several industry-recognized certifications including CISSP-ISSMP, HCISPP, CIPT, FACHE, and CPHIMS.

Sean Murphy

Jesper Johansson Ph.D

Security Guy, Google

Jesper has been a security practitioner for more years than he cares to admit and has been fortunate to work for three of the biggest drivers of technology and innovation.

Jesper Johansson


Strategist, Office of the CISO Zscaler

Bil Harmer has been at the forefront of the Internet since 1995 and his work in security began in 1998. He has led security for startups, government agencies and well established financial institutions. In 2007 he pioneered the use of the SAS70 coupled with ISO to create a trusted security audit methodology used by the SaaS industry until the introduction of the SOC2. He has been interviewed by and has written for various publications such as Dark Reading, Data Informed, SecureWorld and Security Intelligence. Bil has served as Chief Security Office for GoodData, VP Security & Global Privacy Officer for the Cloud Division of SAP and now serves as a Strategist for Zscaler where he runs the Office of the CISO for the Americas.

Bil Harmer

Sarah Squire, MSIM, CISSP

Founder and Principal Consultant, Engage Identity

Sarah Squire is the Founder and Principal Consultant at Engage Identity. She is a co-author of NIST Special Publication 800-63C Digital Identity Guidelines, which outlines federated authentication standards for all US federal agencies. She has acted as a subject matter expert in identity and access management to several government agencies, private companies, and open standards groups including NIST, the US Department of Health and Human Services, Yubico, and the OpenID Foundation. Sarah holds a Bachelor of Science in Physics and a Master of Science in Information Management from the University of Washington where she was a NASA Space Grant Scholar. She is also a Certified Information Security System Professional (CISSP).

Sarah Squire

Brian Fielder CISSP

Security Manager, Microsoft

Brian Fielder has broad experience in information security having been a security business owner, engineer, operations leader, and consulting executive. Brian currently works at Microsoft in the CISO organization. He is a regular speaker at executive security briefings on the subject of information security strategy, cloud security, and emerging technologies.

Brian Fielder

Andrew Plato, CISSP, CISM, QSA

CEO Anitian

In 1995 while working at Microsoft, Andrew executed the first known instance of a SQL Injection attack against an early e-commerce site. When he demonstrated this attack to the developers, they dismissed the issue as irrelevant. Intrigued, Andrew left Microsoft to found Anitian, an information security intelligence firm. Today, Anitian is one of the most trusted names in security intelligence with clients worldwide. Anitian has a mission to Build Great Security Leaders. For the past 20 years, Andrew and Anitian have consistently executed on this mission with innovative, pragmatic answers to the most vexing security, compliance, and risk challenges. Andrew’s career encompasses nearly every dimension of information security. He has participated in thousands of security projects, written hundreds of articles, and advised hundreds of C-level executives. Being a both a business owner and security practitioner allows Andrew to bring a unique perspective to any discussion regarding security, technology, and governance. Andrew is well-known for delivering entertaining presentations that challenge conventional thinking and deliver practical answers to complex IT security challenges.

Andrew Plato

Eric Andrews

VP of Cloud Security, Symantec

Eric Andrews has more than 25 years of marketing and executive management experience in the networking and security industry. As VP Cloud Security at Symantec, Eric is driving initiatives to establish Symantec as a leader in this emerging market. Eric came into Symantec through the acquisition of Elastica (via Blue Coat), where he led marketing for the CASB startup since its inception. Prior to Elastica, he led marketing for WiChorus, a wireless gateway startup which was acquired by Tellabs. He has also served as VP Marketing at NetDevices (now part of Alcatel), a startup company delivering integrated networking and security solutions for the enterprise market, and Turnstone Systems, a pioneer in local-loop management for DSL carriers. Earlier in his career, Eric held various marketing and product management roles at networking companies such as Newbridge Networks and Penril DataComm Networks. Eric holds an MS and BS in Computer Science and Electrical Engineering from the Massachusetts Institute of Technology.

Eric Andrews


Security and Privacy Senior Manager, Protiviti

Network security engineer who has worked in a very wide variety of environments from the Department of Defense, to the Fortune 500, to state and local government. He currently works for Protiviti providing security consulting for a wide variety of clients and industries. His interests outside of work include traveling, hockey, strange beers, and his bulldog. He's spoken at Def Con, Shmoocon, BSides, and many other security events and conferences, and enjoys conducting research in his home lab, much to the dismay of his power bill

Jonathan Medina

Santosh Kandala, CISSP

Principal Security Engineering Manager, Microsoft

Santosh Kandala is a passionate security leader with diverse hands-on experience in the areas of cloud security engineering, behavioral analytics, security monitoring, incident response, cloud scale detection, digital forensics, ethical hacking and investigations. He specializes in cloud security solutions for SAAS (Office 365), Consumer (Xbox and Windows) and Azure (PAAS & IAAS) service offerings. Being a runner by passion, when he is not finding needles in the haystack you will find him running half marathons in the trails around Puget Sound.

Santosh Kandala

Irwan Tjan

CISO, Expedia, Inc.

Irwan is the Chief Information Security Officer at Expedia, with over 30 years of experience devising and driving strategies that enhance security and risk management without sacrificing speed or innovation.

Irwan Tjan

Norm Barber

Managing Director, UnifyCloud LLC

Norm Barber is Managing Director of UnifyCloud, a Microsoft Gold Partner and a Tier 1 Microsoft Cloud Solutions Provider (CSP) with a focus on Cloud, Cybersecurity, Compliance (regulatory) and Cost. Prior to joining UnifyCloud, Norm was Principal Program Manager for the Customer & Partner Engineering Group with Microsoft’s Identity & Security Division and Microsoft’s Strategic Security Advisor for US Financial Services. Prior to Microsoft he was a founding Managing Director of Protiviti, a global risk management firm, and a Partner and Global Services Director of Security & Privacy Consulting for Andersen Worldwide.

Norm Barber

Micheal Hamilton, CISSP

Founder and President, Critical Informatics

Michael is Founder and President of Critical Informatics. Formerly a Policy Advisor for Washington State, CISO for the City of Seattle, and Managing Consultant for VeriSign, he has consulted with more than 200 organizations over the past 25 years, from Fortune 1 to small non-profits.

Micheal Hamilton

Michael Gutsche, MBA

Security Strategist, MicroFocus

Michael Gutsche is a Security Strategist within the Enterprise Security Products business unit at MicroFocus. In this role, Mr. Gutsche is responsible for driving strategic initiatives for the ESP Security Strategy group and providing thought leadership and insight regarding the ever changing global threat landscape.

Micheal G

Paul Rich

Principal Program Manager, Office 365 Team, Microsoft.

Paul Rich is a principal program manager in the Office 365 team. Paul joined Microsoft in 1998 and for the past several years has focused primarily on the protection of customer data in Microsoft cloud services. In addition to his engineering work, Paul regularly meets with CIOs and CISOs in industry, government, and national defense. Prior to Microsoft, Paul worked in health care, manufacturing, insurance, and is a veteran of the United States Navy. See more at https://www.linkedin.com/in/parich/

Paul Rich

Shane Macaulay

Director at IOActive, Inc.

Shane Macaulay is a computer security professional with IOActive who has mastered the art of low level systems, hypervisor interactions, and exotic (esoteric) minutia in a search for understanding. Macaulay is often working on problems related to memory verification, program execution tracing, or code exploitation. His hacker pseudonym is K2 and he works to promote a positive community and the growth of anybody who is willing to learn. He also works to excite and promote development and excellence through open source contributions (a few of his projects are located on GitHub (https://github.com/K2). Macaulay’s earlier works include polymorphic shellcode (ADMMutate), co-originator of the KARMA attack platform, compiler exploits (EkoParty winner), CanSecWest speaker & P0wn to own winner, and he is also a frequent conference speaker/attendee (including DefCon, BlueHat, BlackHat, VirusBulliten, IEEE, AAFS, BSides, Agora, Source Boston/Seattle, PacSec, and others).

Krishna Narayanaswamy

Co-Founder and Chief Scientist, Netskope

Krishna has over 25 years of experience in the areas of security and data networking and is an expert in deep packet inspection and behavioral anomaly detection technologies. Prior to Netskope, Krishna was a Distinguished Engineer in the Security business unit at Juniper Networks leading the NGFW architecture. Before that, he was a co-founder and system architect at Top Layer Networks where he was instrumental in delivering multiple products in the areas of security and load balancing to the market. He has also held senior engineering roles at FORE Systems and Digital Equipment Corporation. He has been awarded 20 patents covering a broad set of technologies and has a dozen more pending patent applications.

Krishna Narayanaswamy

Don Ankney

Senior Technical Program Manager for Security, Adobe

He works with engineering teams to build security solutions and automation. With more than a decade working at cloud scale, Don believes in the power of Data Science and expects it to completely transform how we think about security at scale. Don holds multiple patents in security informatics and teaches part-time at the University of Washington.

Don Ankney

Clinton Campbell, CISSP

Principal Consultant, Quirktree, LLC

Clinton Campbell has 18 years of experience in cybersecurity and 8 years of experience in mental health. Upon completing an MS in Computer Science, Clinton joined the NSA and honed his skill at evaluating complex cryptographic systems. A variety of technical and leadership experiences in the industry have shaped his approach to security management, but Clinton says that his work as a psychotherapist has had an equal or greater influence.

Clinton Campbell

John Bock

VP Software Security Solution, Optiv

John Bock has been a technical editor on many publications including HackNotes Network Security Portable Reference, Hacking Exposed: Windows Server 2003, and Network Security: A Beginner's Guide. As a Software Security Manager he leads projects that ensure the security of Optiv clients.

John Bock

Brian Duckering

Head of Product Marketing, Skycure, Now a part of Symantec 

Brian has been a thought leader and respected advisor in enterprise IT for over 15 years. With experience in engineering, product management, marketing, business strategy and technology evangelism, he has held executive-level positions at business- and consumer-facing companies, both large and small, and has multiple degrees in engineering and technology management. Brian has spent the last seven years focused on enterprise mobility, with a focus on achieving both productivity and security.

Brian Duckering

Srini Gurrapu

VP of Solutions Strategy, Skyhigh Networks

Srini Gurrapu is the VP, Solutions Strategy at Skyhigh Networks. Srini brings 20 years of experience in networking, security, virtualization, mobile and cloud security markets at several success companies such as BlueCoat, Neoteris (acquired by Juniper), FaceTime (now Actiance), RingCube (acquired by Citrix), Virtual Bridges and Wheel Innovationz. Srini led product management and strategic alliances at these startups and helped drive the vision, strategy and execution. Srini's primary forte is building trusting advisory relationships with customers, delivering innovative solutions that make customers successful in their strategic initiatives. Srini also worked as EIR (Entrepreneur-In-Residence) at Austin Ventures, one of the largest VC firms in the US.

Srini Gurrapu

Michael Landew

Co-Founder, Avanan

An early employee of multiple high-growth startups, Michael Landewe was one of the core team that created the Network Access Control product within ForeScout Technologies, today the leader in network policy management. In 2014, that same team left to create Avanan, The Cloud Security Platform. Today, Avanan has cloudified over 60 of the industry’s most trusted security products to create the the most complete, best-of-breed solution for protecting data in the cloud.

Michael Landew

Steve Enevold

Senior Director, Oracle Cloud

Steve Enevold has been at Oracle for 23 years. For the past 15 years, Steve has worked in information security at Oracle, delivering customer security assessments and doing business development and sales support for North America Sales. He is also a lead Information Security Manager within Oracle Global Information Security, and holds several certifications, including CISSP, CISM, CISA, CEH, and CIPP/IT. Steve is a Senior Director for Oracle Cloud operations PM focused on Oracle’s cloud operations security.

Steve Enevold