ISE® Central Executive Forum and Awards 2017

Information Security Executive of the Year Awards

The ISE® Central Executive Forum and Awards 2017 was held May 17, 2017 at The Westin Galleria Dallas in Dallas, TX. The Forum includes keynote speakers, interactive roundtables moderated by the CISOs and VPs of participating companies, and hot topic panel discussions. The one day program offers the opportunity to meet with peers and leading IT executives from across the region to discuss and share insights into today's issues and solutions.

The ISE® Central Awards are held in conjunction with a one day Executive Forum which includes keynote speakers, interactive roundtables moderated by the CISOs and VPs of participating companies, and hot topic panel discussions. The one day program offers the opportunity to meet with peers and leading IT executives from across the region to discuss and share insights into today's issues and solutions.

ISE® Central Executive of the Year Award Winner 2017

Stephen R. Katz

Roy Mellinger
Vice President & Chief Information Security Officer
Anthem, Inc.
ISE® Central Executive of the Year Award Winner 2017
ISE® North America Executive: Health Care Award Finalist 2017

Biography

ISE® Central Project Award Winner 2017

aetna
Distributed Controls: Managing Security differently Across 15 Organizations
Executive Sponsor: Jim Routh,Chief Security Officer, VP of Global Security, Aetna
Project Team: Mignona Cote - SR Director, Information Security, CISO PayFlex; CISO Phoenix Data Center Services

As daunting as securing a Fortune 50 company, adding fourteen independently operated affiliates (subsidiaries) to the mix, stretches leadership and innovation. Resiliency to market demands, continuous change in threats and fourteen completely different companies ranging from financial services, international markets and consumer healthcare forces the Global Security Officer to manage fourteen security programs uniquely while leveraging core Aetna techniques and solutions. At Aetna, a model was developed to identify risks, measure maturity and implement solutions maintaining the unique DNA of each company while assuring the security as they operate within the boutique styles required for competitive advantage and speed to market.

ISE® Central People's Choice Award Winner 2017

Mignona Cote

Mignona Cote
Chief Security Officer
NetApp
ISE® Central People's Choice Award Winner 2017
ISE® Central Executive Award Finalist 2017
ISE® North America Executive: Health Care Award Winner 2017

Biography



ISE® Central Executive Award Winner Finalists 2017

Mignona Cote

Mignona Cote
Chief Security Officer
NetApp
ISE® Central People's Choice Award Winner 2017
ISE® Central Executive Award Finalist 2017
ISE® North America Executive: Health Care Award Winner 2017

Biography



Steve Jensen

Steve Jensen
Global Chief Information Security Officer
Aegon
ISE® North America Commercial Executive Award Finalist 2013
ISE® North America Financial Executive Award Finalist 2016
ISE® Central Executive Award Finalist 2017
ISE® East Executive Award Finalist 2023

Biography



Stephen R. Katz

Roy Mellinger
Vice President & Chief Information Security Officer
Anthem, Inc.
ISE® Central Executive of the Year Award Winner 2017
ISE® North America Executive: Health Care Award Finalist 2017

Biography



ISE® Central Project Award Finalists 2017

aetna
Distributed Controls: Managing Security differently Across 15 Organizations
Executive Sponsor: Jim Routh,Chief Security Officer, VP of Global Security, Aetna
Project Team: Mignona Cote - SR Director, Information Security, CISO PayFlex; CISO Phoenix Data Center Services

As daunting as securing a Fortune 50 company, adding fourteen independently operated affiliates (subsidiaries) to the mix, stretches leadership and innovation. Resiliency to market demands, continuous change in threats and fourteen completely different companies ranging from financial services, international markets and consumer healthcare forces the Global Security Officer to manage fourteen security programs uniquely while leveraging core Aetna techniques and solutions. At Aetna, a model was developed to identify risks, measure maturity and implement solutions maintaining the unique DNA of each company while assuring the security as they operate within the boutique styles required for competitive advantage and speed to market.

<

cook county
Cook County Cyber Threat Intelligence Grid (CCCTIG)
Executive Sponsor: Ricardo Lafosse, CISO, Cook County Department of Homeland Security and Emergency Management
Project Team: Katie Kolon – Executive Assistant, Tom Vari – Information Security Program Manager, Yilmaz Bal – Information Security Manager Risk and Compliance

The Cook County Department of Homeland Security and Emergency Management, Information Security Office partnered with private sector organization Anomali in launching the Cook County Cyber Threat Intelligence Grid (CCCTIG). The CCCTIG is a collaborative project designed to strengthen the regions cybersecurity landscape through shared intelligence to effectively combat cyber-attacks. All CCCTIG participating municipalities have access to the secure platform which shares a wealth of cyber-threat intelligence along which includes bad actors, malicious campaigns and security incidents. CCCTIG members can publish threat intelligence to a circle of trust through a variety of formats via the platform.



hms
[A.M.O.S.] Asset Management on Steroids
Executive Sponsor: Scott Pettigrew, VP, Chief Information Officer, HMS
Project Team: Scot Miller, Vice President, CISO, Kory Anderson, Manager, Security Operations, Sidd Kunche, Sr. IT Project Manager

Identity is the foundation of security. Without identifying the assets in their institution, leaders are forced to make generalized assumptions to apply security as a blanket instead of using a risk-based approach. An oversimplified view of asset management establishes a CMDB (Configuration Management Database), but AMOS (Asset Management on Steroids) goes beyond this by ensuring consistency of information for risk management, business operations reporting, and procurement services. This is not a “one-and-done” project. AMOS is a program that forces groups to document their processes, eliminate information silos, and establish standards. Ultimately, HMS will lower risk, save money, and meet compliance objectives.



usbank
The Process Alignment and Risk Management Enhancements (PARE) Project
Executive Sponsor: Jason Witty, CISO, U.S. Bancorp
Project Team: Marcia Peters – Information Security Governance, Risk & Compliance Executive, Arisbe Gardner (A-reese) –Senior Manager of Information Security, Adam Maslow – Information Security Director, Anna Pedersen – Senior Manager of Information Security, Michele Kaplan Clinard – Senior Manager of Information Security, Thoralf Symreng – Senior Manager of Information Security, John Kuisle – Senior Manager of Information Security, Rebecca Benson – Manager of Information Security, Dan Bohen – Senior Risk, Compliance & Audit Manager, Steve Casper – Risk, Compliance and Audit Manager, Mike Murray – Senior Risk, Compliance & Audit Manager, Lue Vue - Risk, Compliance and Audit Consultant, Kathleen Palmer - Risk, Compliance and Audit Consultant, Derek Tracey - Risk, Compliance and Audit Consultant, Molly Cook – Risk, Compliance and Audit Manager, Brian Rossmann – Senior Risk, Compliance & Audit Manager, Janet Lerch - Chief Continuity/Technology Risk Executive, Kathy Aultom – Information Security Risk & Compliance Analyst, Tammi Burr- Senior Information Security Specialist, Alicia Marshal (A-lee-see-a) – Information Security Risk &Compliance Analyst, Maureen Meyer – Senior Manager of Information Security, Aaron Neville – Information Security Risk &Compliance Analyst, Jan Morey – Manager of Information Security, Jonathan Kitchin – Manager of Information Security, Alex Duzan – Manager of Information Security

US Bank take steps every day to be the most trusted choice in their industry, and that commitment extends to their information security efforts. The Process Alignment and Risk Management Enhancements (PARE) project sought to mature the Information Security program and create a more robust control set. The project started with a pilot of high risk processes in which US Bank identified the need to be more granular at the process level and the need to work hand in hand with the oversight teams. The objective of the PARE project was to document information security processes, risks, and controls and align to the National Institute of Standards and Technology’s Cybersecurity Framework (NIST CSF). NIST CSF was used in order to define program completeness.