The ISE® Southeast Executive Forum and Awards 2020 was held on March 11, 2020 at the Westin Peachtree Plaza Downtown in Atlanta, GA. The ISE® Southeast Award recognizes the information security executives and their teams who have demonstrated outstanding leadership in risk management, data asset protection, regulatory compliance, privacy, and network security.
The ISE® Southeast Awards are held in conjunction with a one day Executive Forum which includes keynote speakers, interactive roundtables moderated by the CISOs and VPs of participating companies, and hot topic panel discussions. The one day program offers the opportunity to meet with peers and leading IT executives from across the region to discuss and share insights into today's issues and solutions.
ISE® Southeast Executive Award Winner 2020
Global Chief Information Security & Privacy Officer
ISE® Southeast Project Award Winner 2020
Cynet Comp Controls
Executive Sponsor: Andrew Bjerken, Global Chief Information Security & Privacy Officer
Project Team: Ken Pascua (Director Security Risk Management), Nancy Wright (Manager Security Operations), Mike Stolarik (Manager Security Architecture & Engineering), Anthony Prezenchuk (Pres-n-shook) (Security Engineer), Mike Hamilton (Sr. Implementation Analyst), Chris Bates (Sr. Director Support), Dulani McLaurin (Dir Product Management), Marion Hamacek (GVP International), Roberto Luberti (IT & Ops Director, Italy), Kanako Nukagawa “Nuk” (Manager, Japan), Toshihito Takahashi “Toshi” (Director Technology, Japan), Jerome Husson (System & Network Dir, EU), Ana Walsh (Program Manager), Sarah Sensibaugh (Project Manager), Hannah Lawrence (Enterprise Agility Leader), Steve Stephenson (Dir of Quality Engineering), Barry Hauhe (Test Engineer II), Penny Boyer (Sr. Dir Brand Development), Heather Talerico (VP Sales Enablement), Michael Wiege (IT Dir (Germany), Moira Hinson (ED Corporate Communication), Stephen Miano (Lead Systems Engineer), Kevin Buley (Lead Delivery Engineer), Crystal Stainrod (Privacy Analyst), Rajkumar Karuppaiah (Raj) (Sr. Network Firewall Engineer), Srihari Balu (Sr. Financial Analyst), Premal Patel (GM UK)
Location: St. Petersburg, FL
Catalina maintains appliances in 45,000+ stores worldwide across 325+ retailer networks. These appliances enable one of Catalina’s primary revenue streams and must remain compliant to continue to operate. Catalina launched the Retailer Awards Compliance (RAC) project to achieve ongoing and demonstrable compliance with PCI, HIPAA, APPI, and GDPR. The project included Symantec MFA and Cynet to reduce risk, assure security and privacy for 430M consumers. Key control requirements included the ability to operate on the existing legacy hardware/OS base, anti-virus, application whitelisting, FIM, and 24/7 monitoring capability. The successful implementation included global coordination for individualized rollout plans for each retailer.
ISE® Southeast People's Choice Award Winner 2020
Global Chief Information Security & Privacy Officer
ISE® Southeast Executive Award Runner-Up 2020
Chief Information Security Officer (CISO)
University of Virginia
ISE® Southeast Project Award Finalists 2020
Cloud Transformation: Building Automated Cloud-native Security and Governance
Executive Sponsor: Almir Hadzialjevic, VP of Enterprise Risk and Security
Project Team: David Nolan (Director, InfoSec), Jeremy Brooks (InfoSec Architect), Abigail Johnson (Senior Security Engineer), Joshua McNair (Infrastructure Principal Engineer), John McAleer (IAM Engineer), Joseph Moore (Systems Engineer), Eric Simmons (Lead AppSec Engineer), Stuart Lane (AppSec Engineer)
Location: Atlanta, GA
Aaron’s Technology and Information Security teams formed a joint cloud adoption and governance task force. Over the past year, this task force was able to improve security, reduce costs, and improve overall cost management in Aaron’s Azure environment. Due to the lack of existing commercial technologies and tools, the team shifted to a cloud-native approach by creating customized integrations and automation using Azure native functionality and open source tools to achieve leading security. This allowed Aaron’s to improve visibility, automate event alerting and remediation and as a result, reduced MTTR to milliseconds.
Quacking the Code: Aflac’s Global Malware Analysis Program
Executive Sponsor: Tim Callahan, Senior Vice President, Global Security Officer
Project Team: DJ Goldsworthy (Director, Security Operations & Threat Management), Ben Harbin (Manager, Threat Management)
Location: Columbus, GA
The goal of the project was to proactively combat today’s cyber threat by leveraging the very same resource used by criminals: malware. Aflac first collected malware from sensors distributed in the United States and Japan, and then analyzed and incorporated the findings into defensive capabilities. Using the thousands of malicious samples sent to Aflac via email each day, the team deconstructed and analyzed the malware to extract precise indicators of compromise. The information was then tagged and organized in Aflac’s threat intelligence platform. The automatic orchestration ensured relevant data was then pushed to defensive technologies, strengthening Aflac’s overall security posture.
Executive Sponsor: Brad Boucher, Deputy Chief Information Security Officer (CISO) and Vice President
Project Team: Michael Deal (Director, Technology)
Location: Sandy Springs, GA
To address Security’s challenge ingraining accountability across its business and an increasing need for enhanced stakeholder reporting; the team developed and implemented a cyber analytics and visualization portal; IRIS. IRIS empowers the cybersecurity team and its stakeholders to monitor, track, and report on the state of the cybersecurity program in a structured, centralized and automated means. IRIS is now Cox’s centralized portal for security practitioners, technology stakeholders, and business owners to view relevant metrics, dashboards, and reports impacting the organization's security posture.
Executive Sponsor: Tony Spurlin, Vice President & Chief Information Security Officer
Project Team: Amanda Deusenbery (Director – Security Engineering), Jason Nystrom (Director – Identity & Access Management), Milt Curtis (Applications Programmer), David Holmes (Sr. Security Engineer), Sam Adewale (Security Engineer), Nell Gainer (Sr. Security Consultant), Brian Cullinan (Sr. Security Engineer)
Location: Atlanta, GA
WINAuth is a highly scalable authentication and access management capability designed and built by Windstream Enterprise Information Risk & Security to provide identity and access management (IAM), user access certification, single sign-on (SSO) and Multi-factor authentication (MFA). The WINAuth solution serves all Windstream customers, consumers, employees, vendors and third-parties by delivering a secure, frictionless, single sign-on and multifactored authentication service for over 1.6 Million user accounts. This mission critical capability has not only improved the security and user experience for our over 1.6 million users it was also critical to the success of Windstream’s new PCI compliant product and services delivered to our enterprise customers.