Dan Birtwhistle

Principal Security Consultant, GE Healthcare

Dan is a principal security consultant for GE Healthcare. Prior to joining GE, Dan worked for Roche Diagnostics. He has been focused on improving security of medical devices and accessories for over 10 years. He has a history in medical device security, focused in research & development, which ranges from national blood bank systems to consumer diabetes care devices. He has worked on security for healthcare systems used in immunochemistry, genetics, diabetes/insulin delivery, molecular biochemistry, tissue diagnostics, x-ray, surgery, and more.


Scott Erven

Associate Director, Protiviti

Scott Erven is an Associate Director at Protiviti. He has over 15 years of information security and information technology experience with subject matter expertise in medical device and healthcare security. Scott has consulted with the Department of Homeland Security, Food and Drug Administration and advised national policymakers. His research on medical device security has been featured in Wired, Forbes and numerous media outlets worldwide. Mr. Erven has presented his research and expertise in the field internationally. Scott also has served as a subject matter expert and exam writer for numerous industry certifications. His current focus is on research that affects human life and public safety issues inside today’s healthcare landscape.


Tammy Green

Senior Principal Security Architect, Blue Coat Systems

Tammy Green is the Senior Principal Security Architect at Blue Coat Systems. Her passion and career focus is software security and secure design. Ms. Green is a strong advocate for better security and is the Director of Blue Coat's internal PSIRT. She participates in the IEEE Center for Secure Design and regularly speaks at the International Cryptographic Module Conference. Ms. Green has 20 years of experience in security field, and holds a Master's degree in Computer Science from Carnegie Mellon University and a Bachelor's degree in Computer Engineering from Tulane University.


Tom Hash

Director of Security Engineering, OpenDNS

Tom is currently the Director of Security Engineering at OpenDNS where his team tackles different responsibilities ranging from incident response to compliance as well as traditional infrastructure security. He has over fifteen years of operations experience in both individual contributor and management roles. His sensible approach to security balances business needs with the necessity of protecting data.

Prior to OpenDNS, Tom was the Director of Security Operations at Yahoo, Inc. He began his career at BBN Technologies where he worked on "black" projects for the Defense Advanced Research Projects Agency (DARPA). He holds a BS degree in Computer Science from Virginia Tech and sits on a number of Customer and Product Advisory Boards.


Dan Kaminsky

Chief Scientist, White Ops

Dan Kaminsky has been a noted security researcher for over fifteen years and has spent his career advising Fortune 500 companies such as Cisco, Avaya, and Microsoft. He spent three years working with Microsoft on their Vista, Server 2008, and Windows 7 releases.

Mr. Kaminsky is best known for his work finding a critical flaw in the Internet's Domain Name System (DNS), and for leading what became the largest synchronized fix to the Internet's infrastructure of all time. Of the seven Recovery Key Shareholders who possess the ability to restore the DNS root keys, he is the American representative. He is currently chief scientist and cofounder of White Ops, a firm specializing in detecting fake users on websites.


Gary McGraw

CTO, Cigital

Gary McGraw is the Chief Technology Officer at Cigital, a consulting firm specializing in application and software security. McGraw is considered a world authority in software and application security and has spoken at many events, such as RSA and AppSec USA.

He is the author of 11 books—including Software Security, Building Secure Software, Java Security, and Exploiting Software—and over 100 peer-reviewed publications on IT security topics. He also produces a monthly podcast for IEEE Security and Privacy Magazine called Silver Bullet Security. McGraw serves on the Dean's Advisory Council for the School of Informatics of Indiana University and the advisory boards of several companies, including Dasient, Fortify Software, Invincea, and Raven White.


Michael McNeil

Global Product Security & Services Officer, Royal Philips

Michael C. McNeil is the current Global Product Security & Services Officer for Royal Philips, responsible for leading the global product security program for the company and insuring consistent repeatable processes are deployed throughout their products and services in the Healthcare market. Prior to this assignment, McNeil was the former Global Chief Privacy & Security Officer at Medtronic responsible for the development and design of their initial product security and incident response management programs; Chief IT Security Officer at Liberty Mutual Group; Global Chief Privacy Officer at Pitney Bowes, and Vice President, Chief Privacy Officer of Data Services for Reynolds & Reynolds.

McNeil is a noted security and privacy expert, he has conducted in-house training and presentations for industry, customers and clients and has presented at several security and privacy conferences worldwide. Michael is a current Governing Body Co-Chair for the annual Summit, Boston and Minneapolis CISO Executive Summits presented by Evanta. He is an active member of the Association for the Advancement of Medical Instrumentation (AMMI), Medical Device Safety & Security Consortium (MDISS), and the NH-ISAC. Michael has held the chair position for the Medical Device Privacy Consortium (MDPC) and currently holds the chair position for the MDPC Device Security Working Group which recently published the Whitepaper entitled "Security Risk Assessment Framework for Medical Devices".

He was recently named an inaugural, 2013 Top 10 Breakaway Leader of Chief Information Security Officer (CISO), and was also awarded in 2013 as the First Minneapolis CISO Visionary Award, in addition to these accomplishments, he was also awarded the 2011 Outstanding MBA of the Year by the National Black MBA Association.


Scott Olechowski

Founder & Chief Product Officer, Plex, Inc.

Founder and Chief Product Officer of Plex, Scott Olechowski has applied his entrepreneurial know-how and spirit to a number of software & Internet focused companies over the past 15 years. Scott’s professional experience includes executive positions in product strategy, business development, marketing, and international sales for a number of established brands such as Cisco, PostX and IronPort. He also co-founded a successful video software company that pioneered the synchronization of video testimony and official transcripts, which dramatically improved conviction rates for trial lawyers. A graduate of DePaul University, Scott is an expert in cryptography, with six issued encryption and authentication patents, and was a technical and thought leader in Cisco’s global threat intelligence operations.


Jarret Raim

Security Intrapreneur, Rackspace

Jarret is currently a Security Intrapreneur at Rackspace. He has over a decade of experience in researching security and cryptography and working in application security remediation and development.

Jarret is the owner of two open source projects: Barbican (a key management platform) and Meniscus (a multi-tenant logging system). He graduated with a Bachelors in Computer Science from Trinity University and later received his Masters at Lehigh University.


Jeremy Rowley

VP of Legal & Business Development, DigiCert Inc.

Along with his Juris Doctorate and Master’s Degree in Chemical Engineering, Mr. Rowley practices in areas of patents, business law, trademarks, and the technical inner workings of gTLDs, Public Key Infrastructure, and security best practices. Mr. Rowley assures DigiCert’s compliance with regulatory standards, submits patent applications and partner contracts, represents DigiCert’s interests within various industry standards bodies, and helps drive new business opportunities within emerging markets.

As part of DigiCert’s vision to lead its industry toward better and more trusted practices, he actively participates in groups such as the CA/Browser Forum, IETF, Mozilla Forum, ICANN, and the CA Security Council. He was an active participant in drafting the CA/Browser Forum’s EV Guidelines, Baseline Requirements, and Network Security Guidelines, and continues to draft new policy and guidelines today.


Jason Sabin

Chief Security Officer, DigiCert Inc.

Jason Sabin is the Chief Security Officer at DigiCert. Jason works closely with customers to develop innovative products and features that simplify SAAS-based digital certificate management. He is widely recognized for his thought leadership in cloud computing, identity, authentication and encryption best practices. Previously, he oversaw Novell’s Security Review Board, built the company’s first penetration testing teams, and engineering innovative identity and access management solutions within the cloud.

Jason has filed more than 50 patents, recently earning him the “Utah Genius” award. He has a deep understanding of online security and frequently addresses audiences about security vulnerabilities and the best approaches to developing secure code to mitigate them.


Runa A. Sandvik

Independent Security Researcher

Runa A. Sandvik is an independent privacy and security researcher, working at the intersection of technology, law and policy. Sandvik contributes to The Tor Project, writes for Forbes, is a member of the review board for Black Hat Europe, and is a technical advisor to both the TrueCrypt Audit project and the Freedom of the Press Foundation.


Emily Stark

Software Engineer, Google Chrome Security

Emily Stark is a Software Engineer on the Google Chrome security team, where she focuses on efforts to make TLS/SSL more usable and secure. Previously, she was a Core Developer at Meteor Development Group, where she worked on web framework security and internal infrastructure. Prior to that Stark was a graduate student researching client-side cryptography in web browsers.

Stark has a master's degree from MIT and a bachelor's degree from Stanford, both in computer science.


Eric Stevenson

Technical Manager of Site Reliability Engineering, Adobe

Eric is currently a Technical Manager at Adobe and has over fifteen years of experience in IT. Prior to Adobe, he worked as a System Administrator for American Suzuki Motor Corp and Behr Process Corp. He has also worked as a Senior Technology Analyst for Goldman Sachs. He earned his MBA from Pepperdine University.