Amgen – Gregory Barnes – Global Chief Information Security Officer
Mr. Barnes is the Global Chief Information Security Officer at Amgen and has over 20 years of experience as a practitioner. He began his security career in the United States Air Force, where he managed classified intelligence and cyber operations systems. Prior to joining Amgen, Mr. Barnes served as the CISO for Horizon Blue Cross Blue Shield of New Jersey, worked for Health Care Service Corporation as the ISO for Blue Cross of Oklahoma, and Lucent Technologies as a Managing Principal. At Lucent, he lead multiple highly skilled technology teams, designing advanced technology networks for MCI/Worldcom and conducting numerous program designs, penetration tests and technology engagements for Exxon, Washington Mutual, Cisco, State Farm, Williams Communications, WalMart and others. Mr. Barnes served as a former Chair to the Payer Subsector of the Healthcare and Public Health (HPH) Sector Coordinating Council (SCC,) and former Blue Cross Blue Shield Association (BCBSA) Cyber Security Subcommittee advisor.
BlueCross BlueShield Association – Petar Naumovski, Chief Information Security Officer
With over two decades of cybersecurity experience, Pete Naumovski has successfully led the development and implementation of global security solutions in a wide range of corporate retail, e-commerce, healthcare and wholesale distribution fields and delivered extensive security consulting for Fortune 100 companies. Throughout his career, Naumovski has consistently driven effective organizational change, building highly skilled security teams and instilling security best practices across diverse IT and business processes.
Blue Cross Blue Shield of Western New York – Scott Morris – Chief Information Security Officer
Scott Morris serves as Chief Information Security Officer for Blue Cross Blue Shield of Western New York headquartered in Buffalo, New York. Morris is responsible for the development, governance and assurance of the health insurance company’s technology risk and third party risk programs, as well as the management of all information and cyber security domains. A seasoned information security executive possessing nearly two decades of experience, Morris has a successful track record of developing project methodologies, architectural governance, enterprise documentation, and team development. Morris is actively engaged in the cyber community, serving on the executive board of directors for InfoTech Niagara, the Advisory Board for local accounting firm, and is a frequent speaker at several national and local events and conferences.
CVS Health – Frank Price – Chief Information Security Officer
Frank Price serves as Chief Information Security Officer of CVS Health, the largest pharmacy healthcare provider in the United States, and is responsible for the company’s Enterprise Information Security Program. Prior to joining CVS Health in 2013, Frank worked in the telecommunications sector as Chief Information Security Officer of Alcatel-Lucent and in the healthcare sector as Vice President of Global Information Security at Medco Health Services, Inc. (now Express Scripts.) Frank has also held Information Security roles in the banking sector at Dai-Ichi Kangyo Bank and Long Island Savings Bank. He obtained his Bachelor of Science degree in Information Systems Management from New York University.
Emory University – Brad Sanford – Chief Information Security Officer
Brad Sanford currently serves as the Chief Information Security Officer for Emory University where he has overarching information security responsibilities for both Emory University and Emory Healthcare. Brad has over 25 years of IT experience working for organizations such as Humana, Vanderbilt University, Hospital Corporation of America, and Emory University where he has focused on creating and leading Information Security programs and developing innovative Information Security solutions. Brad was a finalist for Southeast Information Security Executive of the Year in 2011 and was the recipient of the 2011 Healthcare Information Security Executive of the Year award for North America. Brad is an active member of the Research and Education Networking Information Sharing and Analysis Center (REN-ISAC). Additionally, Brad serves on the SANS Educational Advisory Board and served on customer advisory boards for Lancope and TippingPoint. Brad is also an Emory University faculty member within the Rollins School of Public Health where he serves as a periodic lecturer and has taught a graduate course on Information Security and Privacy.
HCA Healthcare – TJ Bean, Director of CyberSecurity – Information Protection and Security
With over 15 years at HCA Healthcare, TJ Bean is the Director of CyberSecurity focusing in Threat Analytics and Intelligence and Response within the HCA Healthcare Cyber Defense Center. Prior service and leadership with teams toward Vulnerability Management, GRC, and DevSecOps, with aligned strategy with areas of Security Architecture, Vendor/Medical Risk Management, Security Risk, Physical Security, Privacy, Internal Audit and Enterprise Emergency Operations Center.
Intermountain Healthcare – Karl West – Chief Information Security Officer and Assistant Vice President
Karl West has been involved in information technology and security for more than 30 years. His current responsibilities span all aspects of Cybersecurity and Strategy at Intermountain Healthcare, an integrated delivery network of 22 hospitals and 185 clinics in Utah and Southern Idaho. Security specialties include governance, architecture, risk and compliance, Identity and Access, eDiscovery, forensics, and incident management. He is currently a member of the Utah Health Information Network (UHIN) Privacy and Security Board, a member of the Association for Executives in Healthcare Information Security (AEHIS), which is part of CHIME, and also Weber State College’s Computer Science department.
Johnson & Johnson – Marene N. Allison, Vice President and Chief Information Security Officer
Ms. Allison is responsible for protecting the company’s Information Technology systems and data worldwide through elimination and mitigation of cybersecurity risk. This includes ensuring that the J&J information security posture supports business growth objectives, protects public trust in the J&J brand, and meets legal/regulatory requirements. With 265 companies in 60+ countries, J&J is a leader in consumer health, medical devices and pharmaceutical products worldwide.
Merck & Co. – Terence Rice – Vice President, Information Risk Management and CISO
Mr. Rice is responsible for Information Security, IT Regulatory Readiness, Quality/Technical Assurance, Business Continuity Planning and Policy, and has held multiple roles at Merck, as Executive Director, Information Risk Management & Compliance within the Enterprise Technology & Application Services organization. Prior to Merck, Mr. Rice served as Director of Global Information Security for Johnson & Johnson, and then in the consulting industry in a variety of roles. Mr. Rice holds a BS degree from West Point; and a Masters of Science degree from George Washington University.
Partners Healthcare – Jigar Kadakia – Chief Information Security and Privacy Officer CISSP, CIPP, CRISC
Jigar is the Chief Information Security and Privacy Officer for Partners Healthcare. He has more than 17 years of information security experience across multiple industries with a focus on healthcare delivery. Jigar holds a Bachelor of Science degree in Chemical Engineering from the University of Cincinnati and a Master in Business Administration from Xavier University.
Pfizer – Brian D. Cincera – Vice President
Brian has global responsibility for Pfizer’s information security and technology risk management program. In his role, Brian oversees strategy development, cybersecurity risk management, policy and governance, protection operations and workforce awareness. As part of Pfizer’s company-wide enterprise risk management program, Brian is responsible for leading its information security risk governance process including regular reporting to Pfizer’s executive leadership and members of its Board of Directors. Brian joined Pfizer in 2005 and works in Collegeville, PA.
Royal Philips – Michael McNeil – Global Product Security & Services Officer
Michael C. McNeil is the current Global Product Security & Services Officer for Royal Philips. In this capacity, McNeil is responsible for leading the global product security program for the company and ensuring consistent repeatable processes are deployed throughout their products and services in the Healthcare market. Prior to this assignment, McNeil was the former Global Chief Privacy & Security Officer at Medtronic responsible for the development and design of their initial product security and incident response management programs; Chief IT Security Officer at Liberty Mutual Group; Global Chief Privacy Officer at Pitney Bowes, and Vice President, Chief Privacy Officer of Data Services for Reynolds & Reynolds.
Takeda – Mike Towers – CISSP – Chief Security Officer
Mike is accountable for designing, implementing, operating and monitoring a comprehensive, global security and risk management program to include the vision, strategy and objectives to ensure that critical assets are adequately protected. He is responsible for managing security risks in a manner that meets compliance, quality, legal and regulatory requirements, and aligns with and supports the risk posture of the company. He develops and implements policies, standards and process to ensure a world class information and cybersecurity program. Prior to Takeda, Mike was CISO at Allergan plc, accountable globally for protecting the confidentiality, integrity and availability of Allergan’s vast information assets across an R&D, supply chain and commercial enterprise. Previously, Mike was VP, Information Security Assurance at GlaxoSmithKline (GSK).
H-ISAC – Denise Anderson – President
Denise Anderson is President of the Health Information Sharing and Analysis Center (H-ISAC). Prior to H-ISAC, she was a Vice President of FS-ISAC where for almost nine years she helped the ISAC grow and achieve its successful status in the information sharing community. She has over 25 years of executive management level experience in the private sector. Denise currently serves as Chair of the National Council of ISACs (NCI). She was instrumental in implementing a CI/KR industry initiative to establish a private sector liaison seat at the National Infrastructure Coordinating Center (NICC) to enhance information sharing between the private sector, CI/KR community and the federal government and serves as one of the liaisons. She is a health sector representative to the National Cybersecurity and Communications Integration Center (NCCIC) — a Department of Homeland Security-led coordinated watch and warning center that improves national efforts to address threats and incidents affecting the nation’s critical information technology and cyber infrastructure. Denise was certified as an EMT (B), and Firefighter I/II for twenty years and as an Instructor I/II and state EMT evaluator in Virginia for over ten years. Denise holds an MBA in International Business and is a graduate of the Executive Leaders Program at the Naval Postgraduate School Center for Homeland Defense and Security.