Has been with UCSF for over 15 years and currently runs the Data Security Compliance Program in Finance and Administrative Services at UCSF.

Srinivas Atluri, MS, CISSP, CISM, GWAPT is co-owner and Executive Vice president of Anvaya Solutions, Inc. He is a leading subject matter expert in cyber security and holds four patents in security engineering (three additional pending). His practical approach to security combined with his ability to communicate difficult security concepts makes him a sought-after advisor to executives with IT responsibilities. He is a highly-regarded speaker and panelist at state and national level conferences and symposiums. An active member of ISACA, Infragard and ISC2, he is passionate about mentoring youth through Boy Scouts and various programs, especially in STEM fields, and has led multiple robotics teams to reach three world championships.

Chief Information Security Officer and Director, Information Systems, University of California, Irvine, Healthcare (UCI Health). Sri has over 25 years of Information Management Systems experience in multiple industries including healthcare. Sri has held many leadership positions in health plans and prior to his current work at UCI Sri consulted with Integrated Delivery Network (IDNs) around ACO, HIE and Clinical integration. Sri has expertise in Applications Development, Enterprise-wide IT Infrastructure and Operations. Sri is well known for his process knowledge delivering performance improvements in multiple industries during his long tenure with Deloitte in various parts of the Americas, Asia Pacific and EMEA region. Sri also has expertise building products for customers through his earlier involvement with SAP AG (an ERP vendor).Sri is a MS, FHIMSS, CHCIO, CPHIMS, PMP, CISSP, Chartered Global Management Accountant (FCGMA)(U.K), Professional, Academy of Healthcare Management (PAHM), and a Six Sigma Black Belt (ASQ). Sri is Executive Committee member of the Healthcare Sector Coordinating Council Cybersecurity Working Group and is Co-Chair, Marketing and Communications Workgroup.

A product of the University of California having worked in and completed both undergraduate (BS Electrical Engineering) and graduate studies (MBA) at UC Davis, Peter started his employment as a student writer in 1986 and managed to have three years of internship work at the Lawrence Berkeley Labs in the early 90's before becoming a career UCD staff in 1993. During his career, he has worked primarily in Information and Educational Technology (IET), starting in the help desk, moving to operations manager for a single department, and becoming the business manager for all departments in IET. Peter has worked as a developer, tech/desktop support, trainer, operations manager, business manager, and business systems analyst. During that time, he dealt with numerous data sources to provide reports to justify the existence of a service, the need to expand programs, and the true cost of services. Peter has also been an active volunteer in the UC Davis Staff Assembly, advocating for staff interests sometimes directly to senior campus executives such as the chancellor or provost, or collaborating on reports that are presented to senior UC executives such as the UC president. This means making sure there are solid numbers to justify a position or a proposal. These numbers are often presented at the high level for quick review and understanding. He is currently a business systems analyst for IET assigned full time to the Information Security Office (ISO). Part of his role with the ISO is to review various data sources, evaluate reporting tools, and provide a process and sample reports that could be used by executives.

Communications Coordinator, Student Affairs IT, UC Santa Barbara

Currently serving as an Assistant Chief Security Officer in the UC Davis Information Security Office. Prior to this position Petr served as the UC Berkeley Student Affairs IT Chief Security Officer, the Director of Information Technology Security at the University of New Hampshire and the Director of Client Services and Telecommunications at the University of New Hampshire. Petr conducted vendor risk assessments at the three universities.

Has worked as a writer, editor and communications planner for Information and Educational Technology at UC Davis for 13 years, specializing in communications and outreach for various technological and information security projects. He is a former editor of the Sacramento Business Journal, and previously held jobs as an editor or writer at different California newspapers. His work has won several communications industry awards, and he has degrees in journalism and English from UC Berkeley.

An avid PowerShell user with numerous years of experience in an enterprise environment.

Jennifer works at UC Davis Student Affairs Marketing and Communications

Jack Cable is a coder turned white hat hacker and a current freshman at Stanford University. Jack is a top ranked hacker on the HackerOne bug bounty platform, having identified over 300 vulnerabilities in companies including Google, Facebook, Uber, Yahoo, and the U.S. Department of Defense. After placing first in the Hack the Air Force challenge, Jack began working this past summer at the Pentagon’s Defense Digital Service. In addition to probing internal and public-facing DoD networks for vulnerabilities, Jack helped organize the Hack the Marine Corps competition held live in Las Vegas and advises policymakers on vulnerability disclosure. Jack was named one of Time Magazine’s 25 most influential teens for 2018. At Stanford, Jack studies computer science and helped launch Stanford’s bug bounty program, one of the first in higher education.

Information Security Officer at Humboldt State University.

Started his career in compliance and information security at Pricewaterhouse Coopers (PwC) in 2010 and has continuously worked in the field ever since. His journey started in security assessments for companies that hosted financial system of records that fed into financials of Fortune 100 companies, and also financials of startups that had Big Four Audit requirements in venture capitalist funding contracts. David has also written SOC Reports, ISO 27001:2013 certification readiness assessments, performed security assessments of systems for WebTrust for CA Certifications, written Standards Documentation for a NIST 800-171 environment and has much exposure to Health Care, Higher Education, Data Processors, Semiconductor, and Software and Internet Organizations. While at Davis, David has programmed a GRC for vendor risk assessments, assessed Hundreds of Cloud Suppliers as a consultant or on behalf of University of California, Davis.

Research Computing Architect at UC Berkeley. He works as the Service Manager for the Cloud Consulting Services group within UCB's Research IT department. He has an extensive background in research computing using on-premises HPC technologies and virtualization and is working on deploying secure HPC solutions in the cloud.

UCSF School of MedicineDirector, Technology Strategy & DevelopmentDirector of Strategic Development for IliosSascha is the Director of Technology Strategy & Development for Technology Enhanced Education at the UCSF School of Medicine, as well as the Director of the Ilios Project, a competency-based curriculum management tool designed for and used by schools around the world to help achieve excellence in medical and health education.Holding degrees in religion, comparative culture, and Middle Eastern history, arts and language, Sascha's research is currently focused on the development of sustainable models for technology-enhanced education and curriculum development.

A recent addition to Higher Ed, as he has only been doing cyber security at Sac State for the past 7 years, but he has previously logged over 28 years of experience as an IT security professional in the defense and security sphere, including time on NATO staff and with the Canadian government. His interest in "big data" log analytics goes back to his time doing incident response in NATO, when he built out and ran the NATO Computer Incident Response Capability from 1997 to 2002, during two shooting wars.

Solutions Architect
Ian Crew a Solutions Architect in the Information Services and Technology-Applications, Platforms, and Integration group at the University of California Berkeley. He holds a Bachelor of Science in Electrical Engineering and Computer Science from UC Berkeley and a Master of Science in Human-Computer Interaction with Ergonomics from University College London. Ian has held several IT positions at UC Berkeley over the past 20 years, with a consistent focus on delivering solutions that are easy to use for the end user of the service. His current position focuses on designing solutions to meet campus needs.

Has more than 20 years of experience with IT architecture, design, and deployment in large multi-national organizations. He has been focused on Microsoft technologies since the late 90s, and has worked as a consultant and engineer at Microsoft for more than 8 years. Eric also leads a weekly national call for Education customers to ask their questions about Azure, stay up to date on the platform, and learn about a new topic each week in more depth. Learn more at https://aka.ms/edu/azurehour

Ronald Dodge is currently the Senior Director for Information Security Engineering at Palo Alto Networks - responsible for building and securing a global security information infrastructure. Ron has a diverse background spanning over 20 years including IT leadership in government, academia, and industry; leading innovation in IT infrastructure/services, security education, and cyber research.
Ron has served in leadership positions in many international consortiums including the Institute for Infrastructure Protection (I3P), the Colloquium for Information Systems Security Education (CISSE), the International Federation for Information Processing (IFIP), the IEEE/ACM 2013 Computing Curriculum working group, and the Honeynet Project. Ron was an early thought leader in cyber security exercises and in the delivery of security education using virtualization.
Ron served over 28 years in the US Army with military assignments ranging from combat duties in an attack helicopter squadron to the CIO for the United States Military Academy, West Point. Ron received his Ph.D. from George Mason University, Fairfax, Virginia in Computer Science.

In my role as Santa Cruz's Chief Privacy Officer, I lead our campus' General Data Protection Regulation (GDPR) Taskforce to oversee implementation, distribute information, and facilitate compliance efforts for European Economic Area's (EEA) sweeping extraterritorial privacy regulations. In my role as the campus Information Practices Coordinator, I oversee processes to facilitate an almost unlimited right of access to information held by the University that directly relates to individuals (i.e., data subjects). This includes meeting UC's transparency objectives in alignment with relevant state and federal laws, university policies, and industry standards; which collectively, I observe closely parallel rights and principles embodied in GDPR.

Jeremy is a security analyst in the UC Davis Information Security Office. He leads the design and deployment of multiple campus-wide security services including campus antivirus, campus data loss prevention, and campus vulnerability management with Tenable. In the last year, he has taken the new vulnerability management program (VMP 2.0) from initial concept design to service rollout.

Completed his undergraduate and graduate degrees in computer science and physics at MIT. While there, he founded an electronic medical records company and later served as Chief Technology Officer of the acquiring organization. Michael then devoted a year to teaching undergraduate and graduate computer science courses as a Visiting Instructor at Miami University in Ohio before relocating to the Bay Area, where he led the information security program at SRI International in Menlo Park for the next 11 years. Michael joined Stanford in 2012 and ascended to the Chief Information Security Officer role in 2013.

Director, Global Cybersecurity Policy at Intel Corporation, Intel CorporationDirector of Global Cybersecurity Policy at Intel Corporation and a Lecturer at UC Berkeley's School of Information Master in Information and Cybersecurity. She holds a JSD from UC Berkeley School of Law and graduated summa cum laude three prior degrees. Her research in information security law and policy has appeared in leading technology law journals, presented atn conferences such as Black Hat, USENIX Enigma, USENIX Security, BsidesLV, BsidesSF and DEF CON, and featured at leading news sites such as The Wall Street Journal, The Washington Post and the New York Times. In 2018, she received a Center for Long Term Cybersecurity grant for her work on private ordering regulating information security, exploring safe harbors for security researchers. She practiced law in Israel.

In addition to being the primary developer for the NetReg application, Saskia is a data analyst and database administrator for UC Berkeley's Security Operations Center. She consults with application and data owners about their asset registration needs and requirements.

Traci is communications lead for the School of Medicine Technology Services at UCSF.

Clinical Professor in the College of Natural Sciences at The University of Texas at Austin, and Director of Digital Healthcare Innovation, McCombs School of Business. She leads research in digital healthcare and develops new digital healthcare educational programs for McCombs' Executive Education Department. Dr. Field has a B.S. degree from Florida State University, a M.S. degree from The University of Georgia, and a Ph.D. from The University of Texas at Austin. She is also an Adjunct Associate Professor of Public Health at The University of Texas Health Sciences Center, School of Public Health. In 2010 - 2013, Dr. Field participated as a co-principal investigator for the Professional University Resources in Health Information Technology (PURE-HIT) consortium, a group of three Texas Universities that applied for HITECH funding to build a workforce in Health IT. In April 2010, the consortium received the largest award among nine universities in the nation ($5.4 million) to become a University- Based Training Program as a grantee of the Office of National Coordinator for Health IT. Dr. Field administered $2.77 million in funding over three-years, and led a team of faculty and staff to create three professional certificate programs designed to rapidly train college-educated individuals to enter the Health IT workforce. One of these, an innovative nine-week certificate program, was transitioned at the end of the grant into a successful professional education program that continues today. With generous support from Health IT industry partners, she designed and developed a unique simulation laboratory that models the healthcare continuum of care, and includes current Health IT technologies. Dr. Field is applying the lessons learned from her eight years of leadership in health IT workforce development to partner with Mr. Sri Bharadwaj, CISO, UC Irvine Health, and other industry experts in healthcare privacy and security, to develop a post-baccalaureate certificate program designed to train individuals to manage privacy and security risks in healthcare environments. She is a member of the Healthcare and Public Health Sector Coordinating Council, Cybersecurity Working Group, TG-3 Task Group, focused on workforce development in healthcare cybersecurity, has spoken on this topic at several national meetings, and has testified before the Texas Health Services Authority at the Texas Capitol on the state of Privacy and Security in Texas.

Currently a member of the UC CyberRisk Coordination Center Team at UCOP having recently left her position as the Security Awareness and Training Program Manager for the Information Security team at UCLA. She joined UCLA's IT Security Team in late 2015 to create a strategy and program for outreach, engagement, and cyber-security training for over 60,000 faculty, students, and staff. At UCLA, Cecelia designed monthly print and digital outreach programs, reshaped the IT Security Office website, and created a first of its kind in the UC system, student IT Security blog, the Cybersafe Bruin (https://www.it.ucla.edu/security/cybersafebruin). She also launched UCLA's Annual National Cyber Security Awareness Month campaigns and activities with guest speakers (from the FBI, DHS, and more), hands on training, events and In-N-Out Burger giveaways for students learning more about and becoming more cyber secure. Cecelia began her career as a paralegal in law firms then in-house with MCI Communications/Verizon where she spent nearly 20 years moving into product development and implementation, and SOX IT Audit and Compliance. Just prior to joining UCLA, she established the IT Security Governance framework at the Motion Picture Association of America. Cecelia is a Certified Scrum Master, and a Certified ISO 27000 Lead Auditor.

Project Manager at Project Management Office in Information and Education Technology organization at UC Davis.

Solutions Architect with FireEye, who has over 20 years' experience in information security. Tim's expertise is in Intelligence Guided Cyber Network Defense (IGCND). Today he spends his days helping clients understand the importance of Intelligence as a guiding principle for building out effective processes and leveraging technologies to build their cyber defense centers and security operations practices. As part of his current role, Tim provides thought leadership in the areas of security strategy, intelligence initiatives, and threat and vulnerability management as well. In Tim's previous roles, he helped develop intelligence solutions, led the security practice for a leading industrial manufacturer, and delivered Security Operations and Compliance consulting services.

Has been in IT for over 20 years with focus on IT Security for the past 10 years. She considers herself a Jane of All Trades when it comes to IT; with direct experience across all three major desktop and server OS platforms, server administration, networking, and software and web development. Currently she manages the Endpoint Protection solution for UCSF as well owns their Security Exception Request process.

National Security Architect at ePlus focusing exclusively on Cisco Security. He successfully completed his CCIE in Routing and Switching in 2001 (CCIE#7467), and continues to maintain an active CCIE, re-certifying in Security every two years. Alex also earned a Master of Science in Information Assurance in 2006. He has worked with the Cisco Security portfolio through all the acquisitions and has successfully consulted and instructed on much of the Cisco Security Portfolio. Alex is a husband and father. Alex is also an accomplished Crossfit Athlete (Crossfit Games 2014 Master's Division), loves to play golf, and enjoys being outdoors as much as possible.

Identity and Access Management (IAM) Architect on the Enterprise Architecture (EA) team at UCOP. He has been involved in IAM for over 15 years as the manager of IAM teams and products. As a member of the EA team, he works with system-wide and campus constituencies to create, collect and promote architectures for shared, reusable IT services in support of the UC system.

Began his career as an IT administrator with Goodby, Silverstein and Partners, an advertising firm in San Francisco, leaving as Director of Creative Technology. He then continued to Leo Burnett World Wide in Chicago as a relationship manager for IT projects. After the enterprise jobs, he left advertising to join JAMF Software, makers of the Casper Suite, as employee number 16. He progressed at JAMF, starting as a Product Specialist, then Product Manager, Systems Engineer and finally, Consulting Engineer. He joined Apple in 2012 as a Systems Engineer for Higher Education in Northern California. He's very passionate about privacy and security in educational and state institutions where he continues utilizing the skills he learned in enterprise environments.

Has worked for California State University, Sacramento for 24 years. He is the Desktop and Client Security Lead and is responsible for security outreach and awareness. Along with other duties, he manages Sac State's Cyber Security Awareness Month activities, the Cofense PhishMe phishing awareness campaigns, and security awareness training. He comes from an extensive customer service management background and managed Sacramento State's Service Desk for over twenty years. Brad is an avid runner and especially enjoys running marathons.

Molly is the Deputy CIO at UC Office of the President. She is responsible for leading the team that provides production support for system wide applications such as UC Path, PPS, Apply UC, and the Retirement system. Molly has an MBA from Golden Gate University and a Bachelor's of Science degree from UC Davis.

Digital Health Engineer working at the UC San Francisco. He splits his time between providing computing solutions for researchers and participating in research activities himself. He has worked with the IT groups at UC San Francisco to deploy a HIPAA compliant research computing environment in Amazon Web Services and has a deep understanding of both the administrative and technological hurdles to providing secure cloud computing environments for health research.

Technical Director, Cloud Services

As a previous Security Engineer at both Intuit and Premera Blue Cross, Kevin has experience with both the Software and Operational sides of Security. Kevin has designed highly-available authentication systems using PKI infrastructure and built out an enterprise-ready SIEM implementation. Kevin currently enjoys sharing the love of Splunk with State & Local customers throughout the Pacific Northwest. Kevin has a PhD in Cognitive Science from the University of California, San Diego.

Information Security Officer at California State University, Sacramento.

In my current position as Associate CISO, I work with the Chief Information Security Officer (CISO) to develop and manage campus-wide programs, projects and activities to reduce information security risk and support UC policy on stewardship of electronic resources. My responsibilities include management of a comprehensive Security Operations Center, staffed by six Security Analysts, to prevent, detect, and respond to information security threats. I also serve as the campus representative and subject matter expert in campus-wide, system-wide and national forums regarding information security and related policy in the higher education sector.

University of California Santa Barbara's (UCSB) Chief Information Security Officer. In his role, Sam is responsible for the development and administration of a campus-wide information security program. Information technology at UCSB is widely distributed. The information security program consolidates infrastructure, line-of-business applications, and distributed departmental computing into a single risk-management view.From a central perspective, Sam directs Security Operations Center activities in conjunction with the Director of Networks and Telecommunications. Sam is a member of the campus Information Technology Committee as well as multiple IT focused workgroups. Sam chairs the Security Operations Workgroup and sits as a consultant to the Cyber Security Work Group of the Faculty Senate.Prior to joining UCSB, Sam held several information security positions at Hewlett-Packard. His final position at HP was the Worldwide Director of Threat, Vulnerability, and Incident Management.Sam holds Certified Information Security System Professional (CISSP) and Certified Information Security (CISM) certifications.

Currently the Chief Security Officer at Tenable. He has more than 20 years of information security experience across financial, defense, and critical infrastructure sectors. At Tenable, Robert oversees the company's global security teams, working cross-functionally to reduce risk to the organization and its customers. Robert is an active member of the Air National Guard, serving in a cyber operations squadron supporting both federal and state missions.Prior to joining Tenable Robert was the Chief Security and Strategy Officer at Eastwind Networks, focused on growing Eastwind's business and delivering omni environment security solutions. In 2015 Robert's company, Critical Intelligence, an OT threat intelligence and solutions provider, was acquired by cyber threat intelligence leader iSIGHT Partners. Previously Robert has served as a member of the Lockheed Martin CIRT, a OT security researcher at Idaho National Laboratory and the Chief Security Architect for JP Morgan Chase. Robert currently serves as a board member and advisor to several security startups.

A solution architect and senior network security engineer at Dasher Technologies. His expertise is in building and deploying network and cybersecurity solutions for enterprise and public sector clients throughout the San Francisco Bay Area and around the world. Working with Dasher's professional services engineering team, Mitchell identifies and delivers best-of-breed enterprise solutions for client projects. He guides client projects from initial concept meetings, to architecture planning and building of high performance and secure solutions, through to technical solution delivery and optimization. Mitchell holds over a dozen industry certifications and is deeply knowledgeable of network and security technologies from a large number of solution vendors.

Lead Java Developer at Veterinary School at UC Davis

Security Analyst with UC Berkeley and has been for over 15 years. During much of that time he has specialized in Intrusion Detection and Incident Response. Prior to that he was a System Administrator.

An accomplished executive and leader with over 24 years of consulting experience on security and risk management, Jeromie Jackson has been featured in Forbes Magazine as one of the nation’s top ethical hackers. He is a trusted advisor to senior executives with a focus on strategy development, IT optimization, governance, and risk management. Mr. Jackson engages executives with a consultative approach to enable businesses with innovative opportunities to mitigate and reduce information technology (IT) risks. Mr. Jackson's deep technical knowledge coupled with a passion for leading-edge security architecture gives his clientele the ability to move quickly from concept into executive decisioning and delivery. Mr. Jackson executes with precision and focus on enabling businesses by wielding the Control Objectives from frameworks, such as Center for Internet Security's (CIS) Critical Security Controls (CSC), the NIST Cybersecurity Framework, Balanced Scorecards (BSC) implementations, and Strategy Maps.

Tanya is a UC Berkeley graduate and an award-winning communications and outreach professional, with 17 years in communications including managing strategic communications, events, public relations, and more to meet the needs of various stakeholders and their audiences, ranging from employees to students and the public. Her background includes UC Berkeley, the Bay Area's 511 program, and UCSF. She has the technical, yet charismatic business demeanor to connect with stakeholders of many backgrounds to effectively drive change in audiences.

UCSF Campus LibraryProgrammer Analyst IV. Lead Engineer, Ilios Project Lead architect for the Ilios Project and builds open source web applications for UCSF (and the world!!).

Barry Jones is the Security Lead for SLED West at WWT. In this capacity, Barry has helped shape security practices and policies at large public health care institutions and large university campuses in the West. Prior to joining WWT, Barry worked on Department of Defense contracts supporting network and security operations for the United States Navy and United States Marine Corps.

A national technical specialist for the Aruba IntroSpect behavioral analytics solution, and is based in Dallas, Texas. Ron is a 28 year veteran of the IT industry, a Certified Ethical Hacker, and has worked at companies such as RSA, Sybase, Business Objects, and Mattel. Before his time at HP Aruba, he spent almost a decade at RSA helping customers hunt down the forces of evil with SIEM and full packet capture solutions. When he isn't tracking down the bad guys in the digital world, Ron enjoys spending time with his wife and family, and also riding motorcycles in the Texas Hill Country.

Has been writing code for UC Davis for over a decade and has led the development of some of its most widely used we apps, including PrePurchasing, Course Evaluations, and Online Giving.

A business-IT leader with twenty-five years of industry experience covering the whole IT spectrum. He is currently leading the cybersecurity efforts as the Chief Information Security Officer at UC Merced. After almost two decades in private sector, Tolgay joined UC and initially worked for UC ANR leading statewide infrastructure projects and managing the IT help desk, network, systems, and information security teams. He is an advocate of lifelong learning and also teaches business-IT graduate courses at Saint Mary's College of California where he got his MBA. He received his Ph.D. from Dokuz Eylul University in Turkey focusing on information security, quality and patient safety. His current research interests are cybersecurity, business analytics, and educational IT programs.

GIAC GWEB Certified

UC Davis Security Analyst and Outreach Coordinator

Aa leading senior security strategist with Fortinet FortiGuard Labs. He is responsible for providing IT security solutions to major enterprises and government organizations. He has extensive experience around reverse malware engineering, DarkNet research, and offensive security. Known as Dr. Chaos, operates the popular security social media blog by the same name. In its recent list of 46 Federal Technology Experts to Follow on Twitter, Forbes magazine described Aamir Lakhani as "a blogger, InfoSec specialist, super hero and all around good guy."

Senior Product Marketing Manager (PMM) for Gigamon. Formerly, as PMM, at Juniper Networks John focused on business and product strategy, and product operations for Juniper Services, Juniper Security products and Juniper Service Provider products. Prior to this, John held positions in Product Management, Systems Engineering, and Customer Support at Cisco Systems.

System Administrator at Enterprise Infrastructure Services organization at UC Davis.

Dr. Lin's research interests relate broadly to policy-related dimensions of cybersecurity and cyberspace, and he is particularly interested in the use of offensive operations in cyberspace as instruments of national policy and in the security dimensions of information warfare and influence operations on national security. In addition to his positions at Stanford University, he is Chief Scientist, Emeritus for the Computer Science and Telecommunications Board, National Research Council (NRC) of the National Academies, where he served from 1990 through 2014 as study director of major projects on public policy and information technology, and Adjunct Senior Research Scholar and Senior Fellow in Cybersecurity (not in residence) at the Saltzman Institute for War and Peace Studies in the School for International and Public Affairs at Columbia University; and a member of the Science and Security Board of the Bulletin of Atomic Scientists. In 2016, he served on President Obama's Commission on Enhancing National Cybersecurity. Prior to his NRC service, he was a professional staff member and staff scientist for the House Armed Services Committee (1986-1990), where his portfolio included defense policy and arms control issues. He received his doctorate in physics from MIT.

Zac Lively is an IT network professional specializing in engineering, administration, and support of large and complex network environments. Experienced in implementation, analysis, optimization, troubleshooting, and documentation.

As the Cybersecurity Audit Director, Greg established and leads the systemwide Cybersecurity Audit Team, which is deployed across the 10 campus and 5 academic health center system to deliver specialized cybersecurity audits and advisory services and serves to provide independent oversight, assurance and advice on systemwide cybersecurity initiatives and programs to senior UC leadership and the UC Board of Regents.Greg has over 20 years of experience in IT, information security, and IT audit. He started his career as a system administrator dealing hands on with cybersecurity related issues, and has previously held positions as an IT management consultant at Gartner focused on cyber risk, a mentor with the SANS institute, and as an IT director for Colleges within the UC. Greg is a member of the SANS Advisory Board, and has a M.B.A from UC Davis, and holds the CIA, CISSP, CISA, and GSNA, certifications.

On the security team at the University of California, Irvine (UCI). She has been working in the security field for 8 years. Her work experience includes governance, risk assessments, policy and compliance, awareness training and outreach, project management, and data analytics. Michelle has practiced security in many different industries including education, utilities, banking, and government. She received her undergraduate degree in Cybersecurity from California State University, San Bernardino and her Master's in Public Administration from VirginiaTech. Michelle is passionate about people coming together to accomplish the same mission.

Senior Security Product Consultant at HP. As a passionate evangelist of HP's cybersecurity strategy, Kurt travels throughout North America meeting with enterprise companies and partners about today's modern security threats - and how HP's innovative, hardware-enforced, security and manageability solutions help keep businesses secure.Throughout his 35-year career in IT, Kurt has been committed to delivering impactful security products and solutions that delight end users and IT professionals alike. Before joining HP's security consulting team, Kurt spent several decades in numerous roles within the security space, including product manager, implementation consultant, solutions architect, and security administrator. Kurt is a published author and has been granted several US patents in the areas of cybersecurity and database technology.

Leads and manages Identity and Access Management, and Authentication services for UC Davis Campus and Health.

A research data analyst at UCSF. She received her PhD in Biomedical Informatics from UCSF and then completed a Postdoc at Stanford and the VA Palo Alto. For the past 4 years, she's been serving the researchers' data needs by working in the Enterprise Analytics and Information department at UCSF.

Has been in Higher Education for the last 17 years. Over those years, I have been fortunate to have worked at California State University Channel Islands, Cal Poly Pomona, Claremont Graduate University, LAUSD and Mt. SAC to name a few. I have a Master's degree in Educational Multimedia from Cal Poly Pomona and I am a Veteran of the U.S. Army. I have lived in California and Hawaii. I would like to continue my technical education, and I am currently working on towards my CISSP certification.

Deputy Chief Information Security Officer for UC Davis

Shreya Nallapati is the 18 year old Founder and Executive Director of #NeverAgainTech, a project that uses artificial intelligence and machine learning to prevent mass shootings. She currently leads a team of 200 young women, all across the nation, who are passionate about using computer science for social good. Additionally, Shreya avidly pursues cybersecurity. After being hacked her freshman year of high school, she made it her mission to protect the information of innocent citizens and businesses nationwide. This led her to win national cybersecurity competitions in Future Business Leaders of America and Cyberpatriot. She has also held prestigious internships with the Colorado Governor’s Office of Information Technology, the National Cybersecurity Center, among others. She founded a startup in cybersecurity focused on providing threat intelligence, via AI, to small businesses and nonprofit organizations. Her work piqued the interest of Stanford University, who brought her on as an information security engineering intern in its office of privacy and security May of 2018. With Stanford, Shreya is the co- lead of the Stanford Bug Bounty Program and has piloted machine learning initiatives in the security operations department.

Sudarshan Narayanan is the Practice Head of DevSecOps at we45, a focused application security company. Sudarshan currently leads the service delivery practice at we45 and comes with a decade long experience in Software Quality Assurance.

Sudarshan's primary focus involves conceptualizing a feasible and "risk based" model of continuous security implementation for product teams by identifying bottlenecks and addressing them before integrating security into development life-cycle while remaining agile. Sudarshan has also worked on various client engagements evaluating web and mobile applications and presenting findings to the product teams and recommending remediations.

Drawing from his experiences of having worked with various engineering teams, Sudarshan leads a team that works on developing a test-driven approach to continuous security automation by enhancing test coverage and optimizing security assessment using open-source tools and frameworks.

Soon to be graduate of UC Davis Health Informatics Program. Interested in technology and entrepreneurship, especially in healthcare and fintech space. Part of various early stage startups.

Currently works as the Data Security Compliance Analyst for the UCSF School of Medicine's Technology Services. She has over 17 years' experience working in all aspects of Information Technology, from hands-on system and network administration to security consulting, auditing and management. She has served in an advisory role for security and compliance throughout the AWS Research Cloud project.

Senior Systems Engineer at UCLA HumTech. He is an alumni, who started his IT career at UCLA as an undergraduate and eventually the Network Administrator at UCLA's Business Division. He was part of the team that installed the 10,000+ node switched network in 1995 (then the largest switched network in the western US). He installed the first CheckPoint Firewall on campus in 1999 and then the first wireless bridge from Wilshire Center to a site 5 miles away at the University Apartments in 2001. He spent the next several years in telecom and startup software companies managing a global hybrid AWS infrastructure in North America & Europe. He returned to UCLA in 2015 to join the fantastic team at UCLA Humanities. Together they've since redesigned the network infrastructure, encouraged positive IT culture, and redeployed all Humanities department websites to SSL. These sites now score a Qualys SSLLABS.com grade of A across the 60 department websites. Please check them out at https://humtech.ucla.edu/. His background is in Network Architecture and Security, AWS Architecture, Unix Systems, Cisco, VMware, and F5.

UC San Diego Campus Privacy Officer. She is certified in US and EU privacy regimes as well as privacy program management. In her 12 years at various higher ed institutions, she has worked on health and non-health privacy issues, infosec initiatives, research design and planning, federal contract negotiations, and global research strategies. She has a JD and an MBA, is a US Veteran, and is an honor grad of Army truck driver school.

I am the lead admin and architect who designed and deployed Elastic Stack for the Vet School over three years ago.

Began his InfoSec career five years ago as a SOC analyst utilizing Splunk as a SIEM. Since then, he has expanded its capabilities to include threat hunting, automation of analysis, security operations and vulnerability management. Elliot performs regular web app scans of SDSC researcher domains, became OSCP certified last year, and applies his pentesting knowledge to Splunk use-case and exercise engagements.

Patrick Phelan is Chief Information Security Officer of UCSF, one of premier academic medical centers in the country. He is responsible for the security strategy for systems supporting the research, education, and clinical missions of the institution. A 25-year IT veteran, he is a member of several professional organizations, holds CISSP, CEH, CISM certifications, and a B.S. in computer science from UCLA.

Product owner for Aggie Desktop (https://aggiedesktop.ucdavis.edu/), a partnership between academic and administrative units across campus to unify and streamline the endpoint lifecycle.

Gene Pinedo is a Sr. Sales Engineer at Splunk, evangelizing the value of Splunk. He brings a background of post-sales consulting and pre-sales work focusing on event and capacity management along with application performance monitoring for several large software companies. Outside of work Gene can be found cycling, running, competing in duathlons and stand up paddle boarding.

Rob Randell is a Director in the Security and Risk Practice at ServiceNow with over 23 years experience in IT and over 20 years in Security. Rob’s current role is leading a team of Solutions Consultants at ServiceNow who help our customers understand how to address security incident and vulnerability response in a faster and more efficient way. Rob is a regular speaker at different events from local ISSA Meetings to larger security conferences such as the RSA Conference. Rob’s career has been deep into information security through several avenues. Virtualization security and microsegmentation through the hypervisor at VMware, endpoint memory based protection with startup Determina (acquired by VMware), anti-malware at Webroot and prior to that Vericept which was the original player in the DLP space.

Manages the systemwide Cyber Risk Program at University of California Office of the President. In his role, Monte participates with UC leaders to establish cyber risk strategic plans and objectives. He also leads the UC Health Chief Information Security Officers in various information security related initiatives.As a cybersecurity leader with over 18 years of experience, Mr. Ratzlaff has presented at the 2017 and 2018 FireEye Defense Summit, 2017 Educause Security Professionals Conference, 2017 UC Risk Summit, Educause 2016, 2016 HIMSS So-Cal Privacy and Security conference, UC Computing Services Conferences, and the California Cyber Security Symposium.

Project Manager for Duo implementation

Systems engineer with the Cancer Data Informatics Integration Initiative (CDI3) at UC Davis Health. He has been involved with technical computing and research related digital infrastructure at the University of California for more than 15 years. He is particularly interested in open source tooling and technologies that facilitate research and patient care by providing seamless and secure access to code, data assets, and supporting documentation. With a background in end-user support, systems administration, web development, and formal scientific research, Matt brings a generalist approach to bear on the 'digital plumbing' required for modern clinical research and data-driven medicine.

Senior Solution Architect at AWS

Now a SacState Hornet, comes from CSU Bakersfield with a Master of Business Administration and 18 years' within Information Technology, the last 7 years within Information Security. Sue was the 2018 Chair of the CSU Information Security Advisory Committee and has extensive working experience with IT procurement vendor security reviews as well as risk assessments, incident response, governance, audit, PCI, PeopleSoft Security for Campus Solutions, and training, most recently Cybersecurity Awareness. Outside of work, Sue enjoys the outdoors whether it's on the water or in the mountains as well as Rv'ng, and she's interested in traveling.

SVMIT at UC Davis security leadspeaker at the last three symposium

Spent 15+ years as a Research Scientist in the UC Davis Computer Science Department. For the past 3 years, he has been working in the UC Davis Information Security Office as a senior SOC analyst. His current duties include campus-wide event logging, correlation and automation, network border security controls, IDS development and operation, vulnerability management, incident response and forensics.

Chief Information Security Officer (CISO) at University of California, Office of the President, where he develops and implements of the information security strategy and collaborates system-wide on a variety of initiatives. His 20+ year of experience covers multiple industry sectors, including, financial, healthcare, higher education, energy and related public sectors, and he leverages a unique blend of creativity, business acumen and technology expertise to promote a risk-based approach to information security, privacy, and compliance. He was previously CISO at University of California, San Francisco (UCSF)

Tamara Santos is the Security, Policy and Compliance Manager at UCSC within the ITS Division, Information Security unit. This role is responsible for information security awareness and training, IT policy and compliance-related consulting/support, and security breach management and response. Tamara has 30 years experience at UCSC. Prior to ITS, she worked in Financial Affairs as project and operations manager for the Payroll/Personnel System and the Enterprise Time and Attendance System.

Principal Field Engineer. Craig Schippers has worked in the security industry for approximately 20 years, assisting customers with their Infrastructure Security needs. He lives in Portland, Oregon.

Global Pursuit Specialist at FireEye. In this role he works extensively with education, healthcare, and public sector technology leaders to develop cybersecurity strategy and implement complex security transformation programs. Chris has more than 20 years of IT and information security experience, including more than 8 years in CISO and BISO roles.Before joining FireEye, Chris was the CISO and HIPAA Security Officer at the University of Arizona. Chris held prior leadership positions with SunGard Data Systems, University of Wisconsin - Whitewater, University of Wisconsin - Madison, and Central Michigan University.Chris has a Bachelor of Science in Business Administration from Central Michigan University, a Masters Certificate in Project Management from the University of Wisconsin - Madison, and holds multiple professional certifications including Certified Information Security Manager (CISM) and Project Management Professional (PMP).

With nearly 20 years of experience, Christopher has designed and delivered some of the most comprehensive proactive security programs for the world's largest organizations in industries including: financial, defense, commercial, and manufacturing. Throughout his career, he has led incident response teams for some of the largest data breach investigations. At IBM, Christopher is responsible for proactive security services, incident response, containment and remediation, balancing his technical background with business strategy and communications. A true problem solver, he works closely with organizations to help them use technology to respond to incidents and also helps them understand what happened and communicate it to the proper stakeholders.Prior to joining IBM X-Force IRIS, Christopher was a consultant at CrowdStrike, where he was heavily focused on incident remediation. He also worked to create complex scenarios and tabletop exercises for organizations to understand the need for preparedness. Before CrowdStrike, Christopher spent more than 15 years working for L-3 Communications. It was in this position that Christopher started his career in IT, discovering his passion for security after working tirelessly to secure the organization.

Technical Director, Cloud Services at Symantec

After completing his PhD in English at UCLA in 2012, David came to work at UCLA HumTech as Lead Academic Developer. He works in digital humanities, text mining, and instructional technology programming.

Anthony Shriver has worked in IT at UC Davis for over 24 years: providing desktop support, desktop engineering and systems administration for several academic and administrative departments. Currently he is the IT Lead for the School of Education, and provides Tier 2 support as a BigFix Master Operator for UC Davis, Box Admin for UC Davis, and Jamf Pro Service Manager for Aggie Desktop.

HCISPP, PMP, CBCP, CISSP, is the UCSF IT Security Training and Awareness Program Manager. In this role, she develops and implements various IT security awareness and training activities and promotional materials for the UCSF Campus and Medical Center. Activities and promotional materials include on-line courses, webinars by authoritative speakers, live courses, promotional events, posters, and prizes among other things. She was previously UCSF the Mission Continuity Program Manager for six years where she worked with the campus departments to develop, implement and test their plans for ensuring continuity of their critical functions. Prior to working at UCSF, Esther had several Information Technology and Risk Management roles at various organizations including a stint at UCOP as an auditor.

CISSP, PMPSystemwide IT Policy DirectorBefore joining the University of California Office of the President's Systemwide CISO's office, Robert Smith was the senior director of technology for student affairs at UC Riverside. He has been with the University of California since 2011 and was the lead for IT security and compliance, software development, infrastructure, services, and program management at UCR. Robert's experience covers multiple industry areas, including; FDA/HIPAA regulated, DoD, corporate environments, and product development environments. Notably, he ran enterprise endpoint security product development and other projects during his years at Symantec. He participates in UC-wide security initiatives that focus on shared services, PCI, and HIPAA. Robert also helps coordinate incident response and intelligence sharing with ISACs and law enforcement. He has written articles and short stories on security, compliance, and IT for the Journal of GxP Compliance. Robert regularly speaks on IT and security topics at multiple events, including the EDUCAUSE Security Professionals Conference, NH-ISAC Summits, University of California Information Security Symposiums, and University of California Cyber Security Summits, among others.

Carlos Souza serves as the Director of Risk Product Management, where his realm of responsibilities include product management, business development, managing channel alliances, technical sales management, and hardware and enterprise software sales. A proven and tested leader with 20+ years of work experience in the tech industry with development experience spanning two continents and specializing in working across diverse cultures and geographies.

Currently the director of emergency management and mission continuity at UC Davis. Part of the UC Davis Safety Services unit, he works closely with the Event and Crisis Management Team, chaired by the chancellor and provost, as well as emergency officials throughout the region. Mr. Stokes has 22 years of management and strategic consulting experience in public health, emergency management, business continuity and risk management. Prior to joining UC Davis he served as director of emergency management at Northwestern University for seven years. He has also been the emergency planning officer with the District of Columbia Homeland Security and Emergency Management Agency. As an on-site consultant, he worked at Booz Allen Hamilton and Innovative Emergency Management in support of Hurricane Katrina and several high profile incidents at the Federal Emergency Management Agency, and at the federal departments of Health and Human Services and Homeland Security. Mr. Stokes is certified as both an emergency manager and business continuity professional. He holds a bachelor's degree in communications from the University of Notre Dame and a master's in threat and response management from the University of Chicago.

Program Manager for Bug Bounty and File Storage Security at Stanford. Mike is also a bug bounty hunter, penetration tester, and specializes in web application security.

Cloud Services Architect working at UC Davis. He has been responsible for the deployment of the Secure Research Computing Environment, a basic research computing platform that resides in the Amazon Web Services cloud and has been certified through a 3rd party audit to be NIST 800-171 compliant.

Customer Evangelist, Senior Systems Engineer, ForeScout TechnologiesSpanning a 20-year career as an accomplished and well-respected Systems Engineer, Shawn Taylor's strong mix of technical acumen, architectural expertise, and passion for operational efficiencies has established him as a trusted advisor to ForeScout's customers since joining in 2016. His experience designing, architecting and evangelizing solutions across a wide spectrum of industries delivers a rare cross-functional understanding of today's business-technology challenges, including Cybersecurity, Biometrics and Identity Management, IT Operations, Service Management, IT Asset Management and Data Management.Shawn holds an ITIL® Foundation Certification and a BA in Economics from University of Maryland, College Park, and prior to ForeScout was with BMC, Delphix, and CA Technologies.

IT Professional with over a decade of experience in Higher Education Information Technology. He is currently the IT Manager for the Arts Group at UC Davis leading a team of enthusiastic IT Professionals. Huy has experience in business process architecting, change management, systems management and project management. In additional to his professional life, Huy is an avid winemaker, cyclists, backpacker, and enjoys many other outdoor activities. Huy holds a degree in Computer Engineering from UC Davis, is ITIL Foundations certified and is currently pursuing his Master's in Business Administration.

Associate Director, IT Strategic Sourcing. As Associate Director, IT Strategic Sourcing for the University of California system, Thomas Trappler leads enterprisewide IT procurement and supplier management initiatives and negotiations focused on cost reduction and risk mitigation. In 2018, the UC IT Strategic Sourcing team won both the EPIC Team Innovation Award and CHEC Focus On Efficiency Award. Thomas currently serves as the Chair for the EDCAUSE IT Procurement and Supplier Management Community Group. Tom is an internationally recognized expert in cloud computing risk mitigation via contract negotiation and supplier management.

Jeff Tully is an anesthesiologist, pediatrician, and security researcher. He practices at UC Davis Medical Center.

Bek Umarov, , OSCP, GRID, GAWN, is a Senior Security Specialist at Anvaya Solutions, Inc. He is an experienced Penetration Tester and is knowledgeable in security controls, documenting gaps, making recommendations for mitigations and providing solutions.

Duo Service Manager for UC Davis.

part of the IET Academic Technology Services team and serves as the campus Learning Management System (LMS) Program Manager. In this role, he has overseen the campus' move from Sakai (SmartSite) to Canvas. Mr. Van Zandt completed his undergraduate work in Managerial Economics at UC Davis, and has over 22 years of service working in Information Technology at the University of California. After an eleven-year stint at UC Merced where he was part of opening the tenth UC and establishing IT services for the campus, he returned to UC Davis to pursue his passion of academic technology. He has background in IT user services, academic technology, and IT training.

Began using Splunk seven years ago, and has worked in information security for nearly a decade. After obtaining an MS in Information Systems from the University of Colorado Denver, Edward worked for a managed security service provider (MSSP) providing network and security solutions for industrial control systems. He began working at the University of California in 2015, focusing on network security architecture, SIEM analysis, and securing cloud platforms such as AWS and Azure.

Sr Systems Engineer at VMware and has extensive experience leading training sessions around the world. His knowledge of virtual networking and security has enabled him to audit multiple courses and books as well as authoring the lab being presented at this security symposium.

Chief Information Security Officer, UC Davis

This session will be co-presented with Libby Whitt, who is responsible for managing the devices and the UTM service. Libby fell in love with computers while studying Mandarin in college. After graduation, she started working for the Geography Department. Over the years, Libby has honed her skills with hands-on experience, graduating from first tier tech support to managing computer labs and specializing in the Identification phase of Incident Response. Cybersecurity quickly became the focus of her interest. Eventually, the Climate Hazards Group at UCSB brought her on to develop their rapidly evolving IT infrastructure. The wild west of academic research afforded her the opportunity to "destroy and learn" as well as the valuable lesson that not destroying is preferable. Over the years, Libby attended various UC conferences about IT and information security. She thinks that working with the new campus UTM is the coolest job ever. Libby is currently working with myriad campus IT admins to bring them into the fold of increased visibility and security.

Software Engineer at Google. Graduate degree in Computer Science studying Security, Blockchain, Statistics, and Visualization from UC Davis.

Microsoft Azure Cloud Solution Architect

Enjoys a good wine while debating the merits of safe spaces in higher education.His day job is running the UC Davis Data Center and all associated critical campus services. He manages the operations and infrastructure teams and loves finding new technologies and deploying them. Fun projects he has worked on include virtualizing a data center, migrating data centers, deploying hyperconverged infrastructure, and deploying NSX.Dave has degrees in German, Computer Science, and MBA, all from UC Davis.