Annual CxO Event

October 22, 8:00am, PDT - 4:00pm, PDT

Symantec Executive Briefing Center
Symantec Corporation
350 Ellis St, Building D
Mountain View, CA 94043 


Non-member Price: 
Defending a Cyber Breach - Are you prepared?

Unfortunately, breaches have become all too common in the press these days. How do organizations balance the challenges of cumbersome security programs, lack of resources, underfunded budgets and still effectively manage cybersecurity? Top industry Cyber specialists share their stories and effective tools to help prepare, manage, and respond to the emerging threat landscape.

Print Flyer

Mike Ahmadi - Empowering Healthcare to Effectively Manage Cybersecurity
Andy Ellis - Cognitive Injection: Herding Lizards for Fun, Profit, and Safety
Mike Garvin - Cyber Attack, Through the Eyes of a Hacker
John Millican - Twenty Steps to Better Information Security


Register by October 20
Members, sponsors, affiliated groups $60
Non-members $70
Students $30

Walk-in Registration on October 22
Members, sponsors, affiliated groups $65
Non-members $75
Students $35


8:00     Registration and Breakfast

9:00     HIMSS Welcome

Nancy Hall, NorCal HIMSS President


9:15     Symantec Welcome

Tim Fitzgerald, CISO, Symantec


9:30      Next Generation Healthcare Security Programs, More Easily Achievable

Andy Ellis, Chief Security Officer, AKAMAI


10:30     Sponsors Recognition - Nick Steinbach

10:45     Break

11:00       Empowering Healthcare to Effectively Manage Cybersecurity

Mike Ahmadi -Director of Critical Systems Security - Software Integrity Group at Synopsys Inc.


12:00     Lunch/Networking

1:00       Cyber Attack Through the Eyes of a Hacker

Mike Garvin, Product Manager, Symantec


2:00       Top Twenty Ways to Defend Against Cyber Breaches

John Millican, The Office of the CIO


3:00       Break

3:15     CISO Panel: 6 Inexpensive Steps to Better Healthcare Security and Compliance


Tom August, CISO, John Muir Health, CISSP
Auston Davis, CISO, Stanford Children’s Health
David FinnCISA, CISM, CRISC – Healthcare Evangelist
Mike McAlpen, CISM, CISSP, Executive Director of Information Security, Compliance & International Data Privacy, 8x8, Inc

3:45       Closing Remarks

Julie Winingar & Nancy Hall, NorCal HIMSS

Stay for the Networking Cocktail Reception immediately following from 4:00 to 6:00 pm!

Additional Materials: 


Mike Ahmadi

Director of Critical Systems Security - Software Integrity Group
Synopsys Inc.

USTAG (US Expert) for IEC 62443 standards working groups.
Actively serving as a member of the Medical Device Innovation, Safety, and Security Consortium (MDISS).
Actively serving as a member of the Association for the Advancement of Medical Instrumentation (AAMI) Medical Device Security Working Group and Wireless Strategy Task Force.
Participated in the development of testing and certification standards under the NIST SGIP CSWG Smart Grid Security Testing and Certification Subgroup, as well as CSWG Design Principles sub-group.
Served as a core member of the UCAIug OpenSG Embedded Security Task Force (part of the SG Security Working Group), with a focus on creating security requirements for the Energy Utility Industry.
Active member of the DHS ICSJWG.
Assisted the California Public Utility Commission (CPUC) in drafting security requirements for Smart Grid deployment.
Served on the California Office of Health Information Integrity (CalOHII) Core Security Team, whose focus was the creation and management of health care security policies.
Currently serving on the US Secret Service Electronic Crimes Task (USSS ECTF) Advisory Board.
Achievements also include serving on the Board of Directors of the ASQ East Bay Section, Editorial Board member of the Information System Security Association (ISSA), contributor to the American Bar Association Information Security Book.
Co-founder of the RFID Security Alliance, which serves to educate stakeholders about security issues surrounding RFID solutions.
As a technologist, I believe that successful technologies are correctly measured by the net effect on business metrics and that all projects require both clear cut objectives and a clearly defined execution strategy to ensure success.

Tom August

John Muir Health, CISSP
CISSP and Co-author of “The CISO Handbook”

Established information security and risk management leader with extensive experience in designing and implementing risk management programs, including the development of governance processes, policies, and risk assessment activities designed to meet business and regulatory objectives. Tom collaboratively works with business leaders to develop risk management practices that balance legal and compliance requirements along with strategic business goals and operational objectives. Speaking Engagements Examples:
- 2015 5th Annual HIMSS SoCal Privacy & Security Forum
- 2014 iHT2 Health IT Summit Beverly Hills Panel
- 2014 HIMSS Privacy & Security Summit, San Diego

Auston Davis

Stanford Children’s Health

Auston Davis is the Chief Information Security Officer at Stanford Children’s Health. Mr. Davis is an award-winning leader and information security professional commanding more than 18 years of information security, technology and investigations experience. Prior to joining Stanford Children’s Health, Auston provided information security leadership and expertise to multiple communities including: private, government and Fortune 500 organizations. He has received numerous awards and acknowledgement for his ability to improve organizational efficiency, maximize processes, and identify and resolve complex issues. He is a trusted cyber-security expert who maintains a keen awareness of prevailing and emerging threats and mitigation strategies. Auston recently retired after a distinguished twenty-two year career with the United States Air Force and Air Force Reserves. He served as a special agent with the Air Force Office of Special Investigations, specializing in Counter-Intelligence and Cyber- Crime Investigations.

Andy Ellis

Chief Security Officer

Andy Ellis is Akamai's Chief Security Officer, responsible for overseeing the security architecture and compliance of the company's massive, globally distributed network. He is the designer and patentholder of Akamai's SSL acceleration network, as well as several of the critical technologies underpinning the company’s Kona Security Solutions.

Andy is at the forefront of Internet policy; as a speaker, blogger, member of the FCC CSRIC, supporting Akamai's CEOs on the NIAC and NSTAC, and an advisory board member of HacKid.

He is a graduate of MIT and a former US Air Force officer, the recipient of the CSO Magazine Compass Award, the Air Force Commendation Medal, The Wine Spectator's Award of Excellence, and the Spirit of Disneyland Award. He can be found on Twitter as @csoandy.


Healthcare Evangelist
Health Information Technology Officer

David is the Health Information Technology Officer for Symantec. Prior to that role he was the Chief Information Officer and Vice President of Information Services for Texas Children’s Hospital. He also served as the Privacy and Security Officer for Texas Children’s. Prior to that Mr. Finn spent 7 years as a healthcare consultant and 5 years as a systems auditor.

Mr. Finn has more than 30 years’ experience in the planning, management and control of information technology and business processes. He is focused on creating and maintaining trust in and value from information and information systems.

Finn holds a BA degree from the University of North Dakota and an MA from Angelo State University. He currently serves on the CHIME Board of Trustees.Mike McAlpen, CISM, CISSP, Executive Director of Information Security, Compliance & International Data Privacy, 8x8, Inc

Mike Garvin

Product Manager

Over 20 years in information technology and information security and compliance, including strategy, architecture and business experience. Michael Garvin is the Director of the Security Simulation line of business within the Cyber Security Services (CSS) business unit, which develops and delivers Symantec's Security Simulation and Cyber Security Exercise offerings as well as Symantec's CyberWar Games.



Executive Director of Information Security, Compliance & International Data Privacy
8x8, Inc

U.S. and International Regulatory Law authority. Responsible for IT Information Security, SOX/COSO/CoBiT IT Audits, PCI-DSS, HIPAA, FISMA Compliance, International Safe Harbor Data Privacy and Data Sovereignty at 8x8, Inc. the largest International Hosted UC VoIP. Prior to this Mike was a Global InfoSec. & Compliance Executive at Visa, Inc. Prior to this Mike was an Executive in HP Professional Services Information Security, CIO, CISO Advisory and Enterprise Architecture practices. Mike is a member of Board of Directors of the FBI’s InfraGard Cyber Def. initiative and an active member of the joint DARPA/DHS/SRI Cyber Defense ITTC, active member in ABA, ISACA, ISC2 & ISSA and HIMSS. Mike is a frequent U.S. and International Regulatory Compliance speaker.

John Millican

The Office of the CIO

Strong experience in IT information security, personnel management, software and hardware project management, IT support services and help desk management, understanding of all facets of business and bring a value-added orientation to all efforts undertaken. Demonstrated ability to build high performing teams, integrating those teams with other business units and maximizing their contribution to enterprise effectiveness. I am the first person to be certified by the SANS Institute in the assessment and implementation of the Council of CyberSecurity Twenty Critical Security Controls.