Director of Critical Systems Security - Software Integrity Group
USTAG (US Expert) for IEC 62443 standards working groups.
Actively serving as a member of the Medical Device Innovation, Safety, and Security Consortium (MDISS).
Actively serving as a member of the Association for the Advancement of Medical Instrumentation (AAMI) Medical Device Security Working Group and Wireless Strategy Task Force.
Participated in the development of testing and certification standards under the NIST SGIP CSWG Smart Grid Security Testing and Certification Subgroup, as well as CSWG Design Principles sub-group.
Served as a core member of the UCAIug OpenSG Embedded Security Task Force (part of the SG Security Working Group), with a focus on creating security requirements for the Energy Utility Industry.
Active member of the DHS ICSJWG.
Assisted the California Public Utility Commission (CPUC) in drafting security requirements for Smart Grid deployment.
Served on the California Office of Health Information Integrity (CalOHII) Core Security Team, whose focus was the creation and management of health care security policies.
Currently serving on the US Secret Service Electronic Crimes Task (USSS ECTF) Advisory Board.
Achievements also include serving on the Board of Directors of the ASQ East Bay Section, Editorial Board member of the Information System Security Association (ISSA), contributor to the American Bar Association Information Security Book.
Co-founder of the RFID Security Alliance, which serves to educate stakeholders about security issues surrounding RFID solutions.
As a technologist, I believe that successful technologies are correctly measured by the net effect on business metrics and that all projects require both clear cut objectives and a clearly defined execution strategy to ensure success.
John Muir Health, CISSP
CISSP and Co-author of “The CISO Handbook”
Established information security and risk management leader with extensive experience in designing and implementing risk management programs, including the development of governance processes, policies, and risk assessment activities designed to meet business and regulatory objectives. Tom collaboratively works with business leaders to develop risk management practices that balance legal and compliance requirements along with strategic business goals and operational objectives. Speaking Engagements Examples:
- 2015 5th Annual HIMSS SoCal Privacy & Security Forum
- 2014 iHT2 Health IT Summit Beverly Hills Panel
- 2014 HIMSS Privacy & Security Summit, San Diego
Stanford Children’s Health
Auston Davis is the Chief Information Security Officer at Stanford Children’s Health. Mr. Davis is an award-winning leader and information security professional commanding more than 18 years of information security, technology and investigations experience. Prior to joining Stanford Children’s Health, Auston provided information security leadership and expertise to multiple communities including: private, government and Fortune 500 organizations. He has received numerous awards and acknowledgement for his ability to improve organizational efficiency, maximize processes, and identify and resolve complex issues. He is a trusted cyber-security expert who maintains a keen awareness of prevailing and emerging threats and mitigation strategies. Auston recently retired after a distinguished twenty-two year career with the United States Air Force and Air Force Reserves. He served as a special agent with the Air Force Office of Special Investigations, specializing in Counter-Intelligence and Cyber- Crime Investigations.
Chief Security Officer
Andy Ellis is Akamai's Chief Security Officer, responsible for overseeing the security architecture and compliance of the company's massive, globally distributed network. He is the designer and patentholder of Akamai's SSL acceleration network, as well as several of the critical technologies underpinning the company’s Kona Security Solutions.
Andy is at the forefront of Internet policy; as a speaker, blogger, member of the FCC CSRIC, supporting Akamai's CEOs on the NIAC and NSTAC, and an advisory board member of HacKid.
He is a graduate of MIT and a former US Air Force officer, the recipient of the CSO Magazine Compass Award, the Air Force Commendation Medal, The Wine Spectator's Award of Excellence, and the Spirit of Disneyland Award. He can be found on Twitter as @csoandy.
David Finn, CISA, CISM, CRISC
Health Information Technology Officer
David is the Health Information Technology Officer for Symantec. Prior to that role he was the Chief Information Officer and Vice President of Information Services for Texas Children’s Hospital. He also served as the Privacy and Security Officer for Texas Children’s. Prior to that Mr. Finn spent 7 years as a healthcare consultant and 5 years as a systems auditor.
Mr. Finn has more than 30 years’ experience in the planning, management and control of information technology and business processes. He is focused on creating and maintaining trust in and value from information and information systems.
Finn holds a BA degree from the University of North Dakota and an MA from Angelo State University. He currently serves on the CHIME Board of Trustees.Mike McAlpen, CISM, CISSP, Executive Director of Information Security, Compliance & International Data Privacy, 8x8, Inc
Over 20 years in information technology and information security and compliance, including strategy, architecture and business experience. Michael Garvin is the Director of the Security Simulation line of business within the Cyber Security Services (CSS) business unit, which develops and delivers Symantec's Security Simulation and Cyber Security Exercise offerings as well as Symantec's CyberWar Games.
Mike McAlpen, CISSP, CISM, CISO
Executive Director of Information Security, Compliance & International Data Privacy
U.S. and International Regulatory Law authority. Responsible for IT Information Security, SOX/COSO/CoBiT IT Audits, PCI-DSS, HIPAA, FISMA Compliance, International Safe Harbor Data Privacy and Data Sovereignty at 8x8, Inc. the largest International Hosted UC VoIP. Prior to this Mike was a Global InfoSec. & Compliance Executive at Visa, Inc. Prior to this Mike was an Executive in HP Professional Services Information Security, CIO, CISO Advisory and Enterprise Architecture practices. Mike is a member of Board of Directors of the FBI’s InfraGard Cyber Def. initiative and an active member of the joint DARPA/DHS/SRI Cyber Defense ITTC, active member in ABA, ISACA, ISC2 & ISSA and HIMSS. Mike is a frequent U.S. and International Regulatory Compliance speaker.
The Office of the CIO
Strong experience in IT information security, personnel management, software and hardware project management, IT support services and help desk management, understanding of all facets of business and bring a value-added orientation to all efforts undertaken. Demonstrated ability to build high performing teams, integrating those teams with other business units and maximizing their contribution to enterprise effectiveness. I am the first person to be certified by the SANS Institute in the assessment and implementation of the Council of CyberSecurity Twenty Critical Security Controls.