- About Us
|Board of Advisors|
The Board of Advisors of the Executive Women’s Forum on Information Security, Risk Management and Privacy was formed in 2013 and is a network of highly influential female thought-leaders.
Founder, Chairman and CEO
The Santa Fe Group
For more than 30 years, Catherine A. Allen has been an outstanding leader in technology strategy and financial services and a luminary in business innovation. Catherine has won accolades from industry, government, academia, business groups and the press for her success in fostering innovation, promoting new technologies, and bringing stakeholders together to address common challenges.
Catherine stepped down from her role as the founding CEO of the financial services industry consortium BITS in 2007 after a decade of service. During her tenure, Catherine worked closely with CEOs, CIOs and executives at the nation’s largest financial institutions on strategic issues facing the financial services industry, from payments strategies to risk management. BITS’ accomplishments under Catherine’s leadership include creating best practices in more than 30 areas of financial services management, facilitating the industry’s transition from paper to electronic payments, and creating a trusted forum in which corporate leaders could speak candidly about critical challenges in a noncompetitive environment.
Today, Catherine is chairman and CEO of The Santa Fe Group, a strategic consulting company based in Santa Fe, NM. Catherine established The Santa Fe Group in 1996, and soon afterward the company became a strategic partner to BITS. The Santa Fe Group specializes in briefings to C-level executives and boards of directors at financial institutions and other critical infrastructure companies, and provides management for strategic industry and institutional projects.
Marene N. Allison
Vice President and Chief Information Security Officer
Johnson & Johnson
Marene, Vice President and Chief Information Security Officer for Johnson & Johnson, has responsibility for protecting the Information Technology (IT) systems and data worldwide through elimination and mitigation of IT risk. She co-leads the IT Risk Management Council and is a member of the Enterprise Compliance Council. Marene joined Johnson & Johnson in September of 2010.
Prior to joining Johnson & Johnson, Marene was Chief Security Officer and Vice President for Medco, the largest pharmacy benefit manager in the United States. Marene was responsible for all aspects of the company's security, regulatory and compliance including, physical and logical security, executive protection as well as HIPPA, Payment Card Industry, Medicare and prescription fraud and IT controls.
Prior to that, Marene was with Avaya as head of Global Security where she worked on securing the World Cup network in Korea and Japan in 2002. Before joining Avaya she was Vice President of Loss Prevention and Safety for the Great Atlantic and Pacific Tea Company. Before joining the corporate world, she served as a Special Agent in the FBI working on undercover drug operations in Newark, NJ and also working on terrorist bombings in San Diego, CA. She developed and participated in the nuclear terrorism exercise, Compass Rose ’88, the largest mock terrorism incident exercise by the federal government.
Marene has a Bachelor of Science degree from The United States Military Academy at West Point, in the first class to include women. She has served in the US Army in the Military Police, at Ft Hood, TX, Ft Chaffee, AR and Ft McClellan, AL. She has served on the Defense Advisory Committee on Women in the Services appointed by the Secretary of Defense and the Overseas Security Advisory Committee appointed by the Secretary of State. She is a founding member of West Point Women and currently serves as their President.
Marene is married, has one son and lives in Bucks County, Pennsylvania, USA.
CEO, Alta Associates
Founder of the Executive Women's Forum
Joyce Brocaglia is the founder and CEO of Alta Associates. Founded in 1986 Alta Associates has become the most prominent boutique executive search firm specializing in Information Security, IT Risk Management and Privacy. Joyce is a strategic advisor to her clients who has gained the trust and respect of the industry’s most influential executives by accomplishing their strategic and diverse hiring goals. She is a career advisor to industry thought leaders and a trusted member of the Information Security, Risk Management and Privacy industry. Joyce is sought after for her deep knowledge of the industry, market conditions, business intelligence and ability to create industry alliances.
Joyce is known for her commitment to enabling women to achieve their professional goals and personal dreams through education, leadership development and the creation of trusted relationships.
Joyce received the prestigious 2015 CSO Compass Award in recognition of outstanding achievement in security and risk management leadership.
In 2014 Joyce was honored with the SANS Difference Maker Award for her industry contributions and named one of the Top 25 Women Entrepreneurs of New Jersey.
In 2013 the EWF Leadership Journey was launched. Corporations are utilizing this comprehensive virtual leadership development program to optimize individual performance, authentic personal leadership skills and organizational impact.
Galina Datskovsky, PH.D., CRM
Chief Executive Officer
Dr. Galina Datskovsky is currently the CEO of Vaporstream®. She has also served on the board of multiple startups, assisting with strategy. Formerly Senior Vice President of Information Governance at Autonomy an HP Company. She served as Chair, President, President Elect and Director of ARMA International (2007-2013) as well as fellow in 2014. She also served as Senior Vice President of Architecture at CA Technologies, responsible for corporate-wide architecture and design initiatives, General Manager of the Information Governance Business Unit and a Distinguished Engineer. She joined CA in 2006 with the acquisition of MDY Group International, where she served as founder and CEO. Galina is a Certified Records Manager (CRM) and is recognized around the world as an expert in information governance and associated technologies. She is the recipient of the prestigious Leahy award and a Fellow of ARMA International. She has been widely published in academic journals and speaks frequently for industry organizations such as AIIM, ARMA International, ILTA, IQPC and Cohasset Associates/MER. She received the NJBIZ: Best 50 Women in Business Award in April 2010. Prior to founding MDY, Galina consulted for IBM and Bell Labs and taught at the Fordham University Graduate School of Business and the Graduate School of Arts and Sciences at Columbia University. She received her CRM certification in 2004 and earned doctoral and master’s and bachelor’s degrees in Computer Science from Columbia University.
Forney Group LLC
Renee Forney is currently the CEO of the Forney Group LLC, a strategic consulting firm focusing on Enterprise Risk Management, Cyber Threat Intelligence and Cyber Workforce, as well as the Executive Managing Director of Global Cyber Security Management at Equinoxys Inc.
Mrs. Forney previously served as Deputy Chief Information Officer (DCIO) for Cybersecurity and Enterprise Operations, where she was responsible for managing the Department of Energy’s (DOE) Enterprise Cybersecurity Program and IT Infrastructure; advising Departmental senior officials on integrating cybersecurity; risk management; and implementing enterprise information resources management across the DOE. Mrs. Forney provided executive-level guidance for the interagency on cybersecurity initiatives; including the White House’s Cybersecurity National Action Plan, the Defense Industrial Base Sector (for information safeguarding and critical infrastructure protection) and the NICE Interagency Coordinating Council lead by the NIST.
Prior to DOE, Mrs. Forney was the Department of Homeland Security’s (DHS) Executive Director for the Cyber Skills Management Support Initiative, where she was responsible for managing cybersecurity-related projects for the Undersecretary of Management. She led a collaborative effort to design an organization to strategically address and manage DHS cybersecurity workforce issues affecting DHS Components execution of cyber mission to include USSS, TSA, CBP, USCG, ICE-HSI and NPPD. In this role, she developed the Cyber Management Support Initiative Push Button, which assists hiring managers and human resource professionals. in accurately defining job descriptions for cyber professionals. In conjunction with the Push Button initiative, her efforts were instrumental in developing legislation and the Federal Cyber Security Workforce Strategy Plan. She also spearheaded the Cyber Student Volunteer Initiative which placed cyber students in DHS field offices and Fusion centers across the country.
Mrs. Forney also served as the Branch Chief for the General Services Administration’s (GSA) Business Intelligence Division, where she developed innovative enterprise solutions such as the FAStoday Portal, and led the digital information efforts for the 2008 U.S. Presidential Transition Team.
Mrs. Forney also held a variety of information assurance and technology roles in the private sector, including Division Program Manager for Unisys, and Senior Security Analyst for Telos. Notable accomplishments from this time include managing collaboration with the Unisys Director of Enterprise Security Initiatives, United Kingdom, and supporting the development of a security framework model for Unisys Federal.
Mrs. Forney holds a Bachelor of Science from DeVry University and a Master of Science in Engineering Management from George Washington University. She also holds an honorary Doctorate Degree of Science and Technology from Champlain College. She was also named a 2016 Women of Influence by SC Magazine and ACT-IAC Igniting Innovation award winner. She is a Certified Information System Security Professional (CISSP), Shared Assessments Certified Third Party Risk Professional (CTPRP) and has held the Project Management Professional (PMP) certification.
Sally Kenyon Grant
Director of Cybersecurity for CYBRScore
Comtech Command & Control Technologies
Sally Kenyon Grant specializes in Cybersecurity/IT global business development working with Fortune 500 companies, Federal Agency and Federal defense contractors. Sally utilizes her 25 years of industry, government and Federal appropriations experience to protect critical infrastructure and strengthen cybersecurity to insure the protection of our economic and national assets.
Bringing more than two decades of Federal and Private Sector experience in the enterprise business and economic development sector, plus a background in Federal IT Appropriations and Cybersecurity budget allocations, Grant is helping position Comtech as a world-wide leader in the cybersecurity assessment and training domain. Grant brings a wealth of experience and a passion for success in the cybersecurity industry to secure our networks. Her commitment to protect critical infrastructure to preserve national security and economic interest is second to none. She has a proven history of stimulating growth with a customer-first focus approach by spearheading company initiatives with Fortune 500 and Federal Senior Official decision makers.
Grant is leading Enterprise to Comtech’s Cybersecurity Unit for scored Assessments and hands-on Training and is responsible for leading business development with Fortune 500 partners. Prior to joining Comtech, Grant served in Industry, State and Federal Administration positions plus successfully managing private sector economic and defense global clients in Washington, D.C.
Recently, Sally Kenyon Grant was honored to lead one-hundred cybersecurity Executive women on Capitol Hill for a historic day of empowerment and technical expertise to the U.S. Senate and U.S. House of Representatives Armed Services and Homeland Security Committees. It is Sally’s true honor to serve alongside America’s cyber warriors to defend our United States critical infrastructure assets.
Denise Hucke, CISSP
Denise currently serves as Executive Director at JPMorgan Chase. Previously, Denise was the Vice President, Chief Business Security Officer for Payroll & Money Movement, where she was responsible in overseeing the Business Security Officers who were accountable to the Divisional Leadership delivering centralized security services in accordance to the need, risk level and plans associated with the business areas – National Account Services, Major Account Services, Small Business Services, TotalSource, Corporate, Added Value Services and Health Data Protection. These teams monitor and report necessary metrics to demonstrate overall security posture, including key compliance services per the needs of the division. She maintained the relationships with the CSO, CISO, CPO, ERM, ORM and Divisional leaders and leads divisional level incident management and crisis coordination required by the corporate crisis management program.
As the VP of Global Operational Risk for ADP, Denise was responsible for leading the Global Operational Risk group, which manages the Operational Risk Program, the Controls Assurance and the M&A team. Denise’s helped ensure ADP continues to drive an integrated approach with partners in Enterprise Risk Management and global risk mitigation strategies. In her first 2+ years at ADP, Denise Hucke was responsible for providing leadership for ADP’s Cyber and Information Security Teams, including ADP’s Threat Management Centers (CIRC and Fraud Monitoring), Security Engineering and Operations, Vulnerability Management and Security Testing and Analysis Teams. In 2012-13, the GSO team and programs under Denise’s leadership have been recognized by ISE as the North America Project Award Winner 2012 and by CSO40 in recognition of the success of the Trusted Platform Security Initiative.
Dr. Dena Haritos Tsamitis
Barbara Lazarus Professor in Information Networking
Director, Information Networking Institute
Founding Director, Education, Training and Outreach, CyLab
Carnegie Mellon University
Dena Haritos Tsamitis has led Carnegie Mellon's Information Networking Institute (INI) as director since 2004. Her efforts have prepared the next generation of information networking, security and mobility professionals. She joined the university in 2000, serving first as the INI's associate director in 2002 before assuming the role of director in 2004.
Jing de Jong-Chen
Partner and General Manager
Jing de Jong-Chen is a Partner and General Manager, Global Security Strategy in the Corporate, External and Legal Affairs Division at Microsoft Corp. She has over 20 years of experience in the technology industry with domain expertise in global cybersecurity policy and strategy. She also has extensive experience in developing strategic partnerships with public sector, academic and industry groups. Jing’s leadership roles include the head of the Technology Advancement Group of Trustworthy Computing at Microsoft, Vice President and Board member of the Trusted Computing Group (TCG), Board Advisor of the Executive Women Forum (EWF), and advisor to the Woodrow Wilson Center's Digital Futures Project. Jing is passionate about promoting women in technology and gender equality. She received the “Women of Influence Award” by the Executive Women Forum in 2014 for her professional contributions to cybersecurity. She holds a Master’s Degree in Business Administration (M.B.A) and a Bachelor of Science Degree (B.S) in Computer Science.
Sandra R. Hughes
Sandra Hughes Strategies, Ltd.
Retired after 25+ years with the Procter & Gamble Company, the worlds largest consumer products company, greatest advertiser and most admired worldwide.In the last decade served as Global Privacy Executive, in addition to leading the Global Ethics & Compliance practice, Information Governance, and Competitive Intelligence. Recognized by the International Association of Privacy Professionals with the Vanguard Award as best Corporate Practitioner and by the Executive Women’s Forum for Risk Management, Information Security and Privacy with the Woman of Influence, Lifetime Achievement Award.
MacLean Risk Partners
With more than 30 years of information technology industry experience, Rhonda MacLean is founder of MacLean Risk Partners LLC, a consulting firm that provides strategic security and risk advisory services. Prior to founding MacLean Risk Partners, Ms. MacLean was the global leader of Information Security for Barclays, PLC in London, England and Bank of America headquartered in Charlotte, NC. For over 12 years she was responsible for the respective Banks’ security policies; compliance reporting for relevant legal and regulatory statutes; security and risk technology implementations; cyber forensics and e-discovery; and general information risk management awareness. Prior to joining Bank of America in 1996, she was responsible for information security at The Boeing Company, managing Boeing proprietary and government programs. Ms. MacLean previously served on the Board of Directors for the Vontu Corporation and PGP prior to their respective acquisitions by Symantec Corporation.
In 2002, the U.S. Treasury Secretary appointed Rhonda as the Financial Services Sector Coordinator for Critical Infrastructure Protection and Homeland Security. Over the years numerous awards have been presented to her for visionary industry leadership. Some highlights are: The Executive Women’s Forum (EWF) "2003 Women of Vision”; NetworkWorld’s 2003 and 2004 issues named her one of the fifty most powerful people in technology; 2005 CSO’s Compass Award; 2008 EMEA Visionary Award; 2009 Lifetime Achievement Award from the EWF; and most recently in 2013 recognized as one of the top ten women in Cloud Computing.
Senior Vice President, Chief Information Security Officer
Eli Lilly & Company
Principal, Cybersecurity, America's Life Sciences and Health Cybersecurity Leader
Ernst & Young
Elizabeth Butwin Mann (Liz) is the EY Cybersecurity leader for Life Sciences and Health in the Americas.
Liz has worked in the information security (cybersecurity) discipline for more than 20 years, with much of her time focused in the Identity and Access Management, Identity Governance and more recently Cyber Threat Management disciplines.
Liz has worked on developing and delivering new and transformative solutions in Information Security to Fortune 100 clients in numerous sectors. She established her leadership position early in the development of the cybersecurity landscape, looking at security from the perspective of identity, access, privilege management and entitlement reviews. She is focused on delivering a risk-based perspective to the questions information security and business transformation. She leverages the global Advanced Security Centers at EY to deliver world class threat intelligence and threat management services as well.
Liz serves as the Americas’ Life Sciences and Health Cybersecurity leader, tracking cyber intelligence and critical risk factors to assist clients in aligning their cybersecurity investments. She actively engages in the NH-ISAC and commissions research on the topic of cyber threat in healthcare. Liz is working with EY’s top clients, sharing insights and assisting in the prioritization of programs, in support of business priorities, risk mitigation, and regulatory compliance. She is developing approaches to information security that cross traditional boundaries – from ERP to non-ERP governance programs, to threat and vulnerability management programs, to security data analytics, contemporary cyber war gaming and scenario based testing and drills.
Director of Information Risk
KAR Auction Services
Stacy Mill leads the information risk efforts at KAR Auction Services, Inc (NYSE:KAR), an auction corporation which operates a complete auction solution throughout North America. The company offers a wide range of vehicle remarketing services – from whole car and salvage, to financing, remarketing, technology, inspection and repair services for licensed dealers and the insurance industry. Stacy’s passion for protecting the company’s digital assets bridges business continuity, disaster recovery, security architecture, security operations, information risk and compliance initiatives. Collaborating with her business partners, Stacy ensures information risk is understood, mitigated and controlled to business acceptable levels through building trust and awareness at all levels of the organization.
Prior to 2013, Stacy built a dynamic international team to address all aspects of information security across Yum Brands, Inc. spanning 120 countries. These brands included Taco Bell, Pizza Hut, and Kentucky Fried Chicken. Under her strategic leadership, Yum Brands achieved global PCI/SOX/HIPAA/Safe Harbor compliance, built out underlying security infrastructures and kept ahead of the myriad of US and international data and privacy laws.
Stacy started in security as Humana Military’s Chief Security Officer after holding numerous positions in her 17 year career in IT at Humana Inc. She worked closely with the Department of Defense as a member of the Information Assurance Work Group (IAWG) in support of the Tricare Management Agency and DITSCAP/DIACAP initiatives. Her tenured career also includes VP of Engineering for Darwin Networks, Inc.
After receiving her B.S. in Computer Science and Mathematics, her 20+ year experience in IT includes engineering, operations, implementation as well as business strategy. She has held positions on numerous CISO boards in addition to her speaking engagements across the country. Stacy has been nominated and received the following awards in her successful career: 2011 NG20 Top 20 Global CISO award, 2013 ISE Southeast Executive of the Year finalist, 2013 Ranked #5 CISO in the US by ExecRank (#1 Female), 2013 Cisco Security Innovator of the year – Retail and 2013 Evanta Global CISO Top 25 Breakaway Leaders (Top 10 finalist).
Shira Rubinoff is a recognized cyber security executive and influencer, who has built two cyber security product companies, and led multiple women-in-technology efforts. She currently serves as President of social-media-security firm, SecureMySocial, as well as the President and Co- Founder of Tech Incubator, Prime Tech Partners in New York City.
Shira also serves on the Boards of both the Executive Women’s Forum for Information Security and Leading Women in Technology.
Executive Women's Forum
Lynn has more than 23 years’ experience in information systems, over half of which has been in information security. She has worked both as a practitioner and a vendor – She was the director of information security risk for Oracle’s Health Sciences Global Business Unit and formerly was 10 years at Microsoft corporate headquarters in security response, then critical infrastructure protection as a security strategist, and a director of software compliance. She was also was Head of Security Architecture, Standards and Infrastructure Engineering for Barclays Bank. Her previous experience includes working as a solution integrator and consultant to large corporations. She is a founding member of the Cloud Security Alliance. She holds a CISSP and MA from the University of Missouri-Columbia.
Chief Information Security Officer
Patricia Titus is the Chief Information Security Officer of the Global Security Services division at Markel Corporation located in Richmond, VA. She will continue serving on the Board of Advisors for Guardant Global a worldwide services company. She is a Distinguished Fellow at the Ponemon Institute and serves on the Visual Privacy Advisory Council focusing on Visual Hacking issues. Ms. Titus was formerly the Vice President and Chief Information Security Officer at Freddie Mac, Symantec, Unisys Corporation and the Transportation Security Administration within the Department of Homeland Security. She has been and continues to be focused on transforming, implementing and maintaining robust IT security programs. Ms. Titus also worked overseas for several years in various positions within the U.S. Department of Defense, the U.S. State Department and various private sector firms. She has more than 20 years of security management experience.
Ms. Titus is on the Board of Advisors for the Executive Women's forum and was recognized as a 'Woman of Influence' by the Executive Women’s Forum in 2009 and the Silicon Valley Business Journal in 2013. She serves on the Executive Women’s Advisory Board for the Girl Scouts Council of the Nation’s Capital.
Board of Advisors Alumnae
Ernst & Young
Julie is an Ernst & Young LLP Principal where she leads the security practice for Banking and Capital Markets. She is currently the Market Leader for the Information Privacy and Protection and Threat and Vulnerability Management capability domains.
Julie brings 18 years’ experience helping banks, insurers, asset managers and capital market firms improve their IT operations, interface with their customers, and meet their strategic objectives. Julie has experience in IT security, IT strategy and governance, and customer relationship management. She has built a career of progressive responsibility delivering complex work programs and business-driven IT strategies.
Julie is an active member of the Executive Women’s Forum, a community of the nation’s most influential female executives in Information Security, Data Privacy and Risk Management. She is also eng aged with other companies to bring security solutions to the financial services industry through FS-ISAC.
Co-Founder and Managing Director
Maria has been building and founding technology businesses for 20+ years. Her operational, entrepreneurial, and senior management experience in venture-backed technology companies includes two Massachusetts IPOs of the Year and the founding of two successful companies and a venture capital firm. Prior to co-founding .406 Ventures, Maria served as an SVP of VeriSign following its 2005 acquisition of Guardent, the market leading Managed Security Services provider for $142 million. Guardent was a Sequoia, Charles River Ventures and NEA-backed IT security company that Maria co-founded and led as CEO. In this role, Maria received industry recognition as "Massachusetts CEO of the Year" and "Ernst & Young Entrepreneur of the Year," among others. Prior to Guardent, Maria was Senior Vice President responsible for sales and marketing at Razorfish, an IT services company that acquired her previous company, i-Cube, for $1.8 billion in 1999 where Maria led sales and marketing. Prior to i-Cube, from 1993 – 1997 Maria was responsible for North American sales at Shiva, the category-creating remote access leader. Prior to Shiva, Maria held sales and marketing roles at Lotus Development Corporation and Software City Inc. Maria holds an AB in English literature from Mount Holyoke College where she has served as a Trustee and as a member of the college's investment committee. At .406 Ventures, in addition to her investment activities, Maria manages brand building and deal flow strategy and currently serves on the boards of .406 portfolio companies Attendware, Bit9, Digitalsmiths, Kaltura, Mineral Tree, Pwnie Express, Vaultive, Veracode and formerly served on the boards of Adtuitive and Memento until their respective acquisitions by Etsy and FIS.
Chief Privacy Officer
Michelle is currently the Chief Privacy Officer at Cisco. Previously, Michelle served as Chief Privacy Officer to McAfee, an Intel Company. She was responsible creating a privacy practice that is focused on quality and excellence in McAfee’s policies, products, procedures and governance efforts. Her and her team supported McAfee’s outreach efforts to educate and protect children, families and communities in the Digital Age.
Before coming to McAfee, Michelle founded The iDennedy Project, a consulting and advisory company specializing in privacy and security sensitive organizations. Michelle is also a founder and editor in chief of a new media site—TheIdentityProject.com—that was started as an advocacy and education site, currently focused on the growing crime of Child ID theft.
Michelle was the Vice President for Security & Privacy Solutions for the Oracle Corporation. Her team worked closely with customers to enable them to proceed with the confidence that information is protected and accelerated as an asset.
Before the Oracle acquisition of Sun, Michelle was Chief Data Governance Officer within the Cloud Computing division at Sun Microsystems, Inc. Michelle worked closely with Sun's business, technical and legal teams to create to the best data governance policies and processes possible for cloud computing to build trust for cloud environments through vendor transparency.
Michelle also served as Sun’s Chief Privacy Officer where she was responsible for the development and implementation of Sun's data privacy policies and practices, working across Sun's business groups to drive the company's continued data privacy excellence.
Michelle has a JD from Fordham University School of Law and a BS degree with university honors from The Ohio State University. In 2009, she was awarded the Goodwin Procter-IAPP Vanguard award for lifetime achievement and the EWF – CSO Magazine Woman of Influence award for work in the privacy and security fields. In 2012, she was honored by the National Diversity Council as one of California’s Most Powerful and Influential Women.