Meg Anderson leads the vision and execution of the Information Security & Risk team for Principal Financial Group in the role of VP-chief information security officer (CISO). As the chief information security officer, Meg is responsible for developing and executing a comprehensive cybersecurity strategy to mitigate risks, strengthen the company’s security posture, and foster a culture of security awareness. Meg is a driving force in the company’s commitment to security, ensuring the protection of customer data, and maintaining the trust and confidence of stakeholders in an ever-changing cyberescurity landscape.

Meg and her high performing global team enable the company to adapt to evolving cyber threats while supporting innovation and growth by aligning security initiatives with business objectives, for a seamless integration of security and operations. With over 15 years of cybersecurity leadership in the financial services industry, Meg is an established trusted professional and collaborator in safeguarding crtitical assets, protecting customer data, and ensuring regulatory compliance. Meg engages stakeholders at all levels of the organization, including executive leadership and the board of directors, to effectively convey complex security concepts.

Meg stays at the forefront of the rapidly evolving cybersecurity landscape, continuously enhancing knowledge and skills by actively participating in a wide variety of CISO councils, is an active participant of the Financial Services Information Sharing and Analysis Center (FS-ISAC) and past Board member. She is passionate about mentoring and developing current and future security professionals including with Cyversity and the NYU Tandon School of Engineering CISO program, along with multiple other professional and volunteer engagements. Meg also co-sponsors the Women in Technology group at Principal.

As the director of MITRE Engenuity’s Center for Threat-Informed Defense, Jon Baker is responsible for the Center’s strategy and its outcomes as he convenes the global cybersecurity community to advance the state of the art and the practice in threat-informed defense.

Jon co-founded the Center as a privately funded research and development organization where he partners with sophisticated cybersecurity teams to systematically advance the global understanding of adversary tradecraft and apply that knowledge to improve the community’s ability to defend against those threats.

Jon has extensive experience leading research teams and collaborating with industry to advance cybersecurity capabilities. Most recently, he led MITRE’s Cyber Threat Intelligence and Adversary Emulation Department where he was responsible for advancing those critical capabilities across MITRE’s work program and overseeing MITRE’s work on MITRE CALDERATM and MITRE ATT&CK®.

Jon led MITRE’s team in the early development of the OASIS STIX and TAXII standards while supporting the Department of Homeland Security. He led MITRE’s security automation team through the development of SCAP and managed the CVE team. He was a co-creator of OVAL, a standard language for describing and checking for the presence of misconfigurations, vulnerabilities, and other endpoint artifacts.

Jon holds a Master’s in Computer Science from Boston University and a Bachelor’s in Psychology from Tufts University.

Ashlee is an astrophysicist turned security researcher whose career has spanned roles in detection engineering, threat hunting, analytics, and security outreach. In her current role as Director of Threat Intelligence Advocacy at ReversingLabs, she focuses on the efficient use and mobilization of threat research outputs across the business and in public outreach. She has previously held roles in threat hunting and research at Cisco Talos, the ThreatGrid Research and Efficacy team, and ZeroFOX. In addition to degrees in Chemistry and Physics, she also holds an MBA from the Smith School of Business.

Joseph is Chief Security Scientist and Advisory CISO at Delinea. A Cyber Security Professional with 25+ years’ experience, Joseph is a Certified Information Systems Security Professional (CISSP). An active member of the Cyber Security community and a frequent speaker at Cyber Security events globally Joseph is also an adviser to several governments and cyber security conferences. (ISC)² Information Security Leadership Award Americas Winner 2018. Joseph is also host of the award-winning podcast 401 Access Denied.

Alex Holden is founder and Chief Information Security Officer at infosec and threat intelligence services firm Hold Security LLC. Under Alex’s leadership, Hold Security has played a pivotal role in information security and threat intelligence, becoming one of the most recognizable names in its field. Alex researches the minds and techniques of cybercriminals and helps society to build better defenses against their attacks.

Rich Nagle is the Associate Vice President and Chief Information Security Officer at The Ohio State University, where he manages the Enterprise Security team and oversees Information Risk and Control Governance across University units. With 25 years of experience in Information Technology, Security, Risk and Resiliency professions, Rich brings a wealth of experience in managing information and technology risk for large multi-national and global organizations.

Prior to working at Ohio State, Rich spent thirteen years in a Fortune 20 Financial Services firm, where he was focused on different security and risk areas including overseeing and managing identity and access management programs and operations which delivered security capabilities to internal business partners and businesses.

Rich has a Bachelor’s degree in Communications. He is a member of the SMRT Columbus Security & Privacy Board, Zoom CISO Advisory Board and actively participates in the CISO Executive Roundtable.

Ariel Ropek's deep knowledge and experience in threat detection has forged a path for his successful career in Threat Intelligence. As a NYU graduate, Ariel quickly navigated to find his passion from engineering to tech and cybersecurity all while keeping his passion for music. With experience at IBM, SDL plc, from Principal Engineer at LogRhythm and Chief Technology Officer at 1440 Security, Ropek joined Avertium in 2020 and was recently named Director of Cyber Threat Intelligence. An avid musician in his spare time, Ropek’s innovative work continues to deliver cutting edge cyber intelligence and threat detection capabilities to customers.

Giovanni Vigna is a Professor in the Department of Computer Science at the University of California in Santa Barbara, and the director of the NSF AI Institute for Agent-based Cyber Threat Intelligence and Operation (ACTION) at UCSB. He was the CTO and co-founder of Lastline, Inc., a company that provides anti-malware solutions. Lastline was acquired by VMware, Inc., in June 2020 and since then Dr. Vigna has served in a part-time role as the Sr. Director of Threat Intelligence at VMware.

His research interests include malware analysis, vulnerability assessment, the underground economy, the security of social networks, voting security and misinformation detection, and the applications of machine learning and artificial intelligence to security problems.

Giovanni has been the Program Chair of the International Symposium on Recent Advances in Intrusion Detection (RAID 2003), of the ISOC Symposium on Network and Distributed Systems Security (NDSS 2009), of the IEEE Symposium on Security and Privacy (Oakland 2010-2011), and of the ACM Conference on Computer and Communications Security (CCS 2020-2021).

He is known for organizing and running, since 2003, a yearly educational Capture The Flag hacking contest, called iCTF, that every year involves dozens of teams around the world.

Giovanni is also the founder of the Shellphish hacking group, who has participated in more DEF CON CTF competitions than any other group in history. He received his Ph.D. from Politecnico di Milano, Italy, and he is an IEEE Fellow and an ACM Fellow.

Chris is a Principal Director at Accenture Security with 20 years of threat intelligence experience serving public and private sector organizations. He currently leads Global Strategy and Service Delivery for Accenture Cyber Threat Intelligence. Chris has worked with hundreds of Global 1000 clients empowering them to become intelligence-led security organizations. Prior to Accenture, Chris spent six years in cybersecurity startups where he was part of three successful exits at iSIGHT Partners ($275M acquisition by FireEye/Mandiant, now Google), Flashpoint (acquisition by Audax Private Equity) and XM Cyber ($700M acquisition by Schwarz Group). His areas of focus include: threat intelligence, crisis and incident response, security program implementation, security transformation and security operations.

Daniel Thomas is a technology writer, researcher, and content producer for CyberRisk Alliance. He has over a decade of experience writing on the most critical topics of interest for the cybersecurity community, including cloud computing, artificial intelligence and machine learning, data analytics, threat hunting, automation, IAM, and digital security policies. He previously served as a senior editor for Defense News, and as the director of research for GovExec News in Washington, D.C.. He is currently based in beautiful Bend, Oregon, where — if not at his writing desk — he can almost certainly be found snowboarding out on Mt. Bachelor.

Jason D. Christopher is the Director of Cyber Risk at the industrial cybersecurity company Dragos, Inc., where he leads the risk management global service focusing on innovative approaches for decision-makers and executives by blending traditional risk engineering approaches with state-of-the-art technology & services across the company’s product catalogue.

Prior to Dragos, Jason held multiple roles in industry as an executive leader, researcher, regulator, and engineer. As CTO of Axio, a cyber risk management SaaS company, he pioneered new cyber risk techniques for clients to measure and address their risk exposure. He previously led security metrics R&D at the Electric Power Research Institute where he worked directly with utilities on actionable measurement capabilities. While working for the United States government, Mr. Christopher spearheaded the energy sector strategy for the National Institute of Standards and Technology (NIST) Cybersecurity Framework, the Cybersecurity Capability Maturity Model (C2M2), and was the technical lead for the North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP) Standards.

With over 20 years of experience in cybersecurity and industrial control systems, Jason offers critical infrastructure expertise in developing successful cyber risk strategies.

James Condon, Director of Security Research at Lacework, breaks down how the cloud is being attacked with higher velocity and scale than ever before. He dives into the new tactics and how they are affecting the cloud landscape. The good news is that by understanding how attacks are carried out, you can improve your security posture.