Visionaries

Steve Durbin is Vice President of the Information Security Forum (ISF). His main areas of focus include the emerging security threat landscape, Cyber security, BYOD, Big data, Cloud security and Social media across both the corporate and personal environments. He is a regular speaker and chair at global events and is often quoted in publications such as the Financial Times, Wall Street Journal, Forbes, Deutsche Presse, Süddeutsche Zeitung, CIO Forum, ZD Net and Information Week. Formerly at Ernst & Young, Steve was responsible for the growth of the firm's entrepreneurial markets business in Europe, Middle East, India and Africa. He has considerable experience working in the technology and telecoms markets and was previously senior vice president at Gartner. As global head of Gartner's consultancy business he developed a range of strategic marketing, business and IT solutions for international investment and entrepreneurial markets.

Adrian Lane is the CTO and Security Analyst at Securosis. He is a Senior Security Strategist with 25 years of industry experience. He brings over a decade of C-level executive expertise to the Securosis team. Mr. Lane specializes in database security, data security and secure code development. With extensive experience as a member of the vendor community (including positions at Ingres and Oracle), in addition to time as an IT customer in the CIO role, Adrian brings a business-oriented perspective to security implementations. Prior to joining Securosis, Adrian was CTO at database security firm IPLocks, Vice President of Engineering at Touchpoint, and CTO of the secure payment and digital rights management firm Transactor/Brodia. Adrian also blogs for Dark Reading and is a regular contributor to Information Security Magazine. Mr. Lane is a Computer Science graduate of the University of California at Berkeley with post-graduate work in operating systems at Stanford University.

Derek Brink is the Vice President and Research Fellow at Aberdeen group. He is a senior high-tech executive experienced in strategy development and execution, corporate / business development, and product management / product marketing. He is a results-oriented leader with a proven track record of driving growth through new and enhanced product offerings, in companies ranging from start-up to Fortune 500. He brings a unique blend of analytical / technical background, combined with excellent communication skills and extensive information security industry expertise.

Before joining Aberdeen, Derek was RSA Security's vice president of strategy and corporate development, and was earlier the product line director for RSA SecurID. Prior to RSA, his experience includes director of marketing at Gradient Technologies (now Entegrity); various marketing and business development positions with Transarc Corporation (a subsidiary of IBM); corporate marketing with Sun Microsystems; and a variety of technical sales and field marketing positions with Hewlett-Packard. He began his professional career as an analyst for the Central Intelligence Agency.

Derek was an active member of the five-company team that co-founded the PKI Forum, and as RSA Security's representative was a member of the PKI Forum Executive Board and subsequently the Steering Committee for the OASIS Member Section on PKI. He is co-author of the book PKI: Implementing and Managing E-Security (ISBN: 0072131233).

Derek earned an MBA with honors from the Harvard Business School and a BS in Applied Mathematics with highest honors from the Rochester Institute of Technology. He also holds a second degree Black Belt in Tae Kwon Do.

Stephen M. Walker II, Managing Director. As Managing Director of Colborn Morrison, Stephen focuses on addressing the most pressing and fiscally-relevant business and technology issues, challenges, and opportunities confronting organizations in today's turbulent global market through surveying, extensively discussing with, and advising thousands of executives, directors, and managers across all industries and geographies that are using, implementing, or evaluating business optimization solutions. Stephen's business strategy, advisory, and project-based consulting services help ensure the successful execution of his clients mission-critical initiatives by combining targeted data and business-focused expert research, analysis and insights with extensive industry, media & publication, and end-user connections and comprehensive market segment coverage.

About Colborn Morrison

Colborn Morrison is a boutique business strategy, advisory, and project-based consulting services firm. Working closely with key Business and IT stakeholders throughout the organizational structure, Colborn Morrison uniquely tailors its range of business strategy, advisory, and project-based services to help its clients continuously advance their mission-critical initiatives by successfully bridging the gap between strategic planning and tactical execution. To learn more about Colborn Morrison please contact us using the information below.

Colborn Morrison LLC

41 Skipwith Green Cir.

Richmond, VA 23294

Phone: 804.303.5415

E-mail: This email address is being protected from spambots. You need JavaScript enabled to view it.

Rebecca Herold, CISM, CISSP, CISA, CIPP, FLMI. Rebecca is an information privacy, security and compliance consultant, author and instructor who has provided assistance, advice, services, tools and products to organizations in a wide range of industries during the past two decades. Rebecca is a widely recognized and respected information security, privacy and compliance expert.Rebecca assists organizations of all sizes and industries throughout the world with their information privacy, security and regulatory compliance programs, content development, and strategy development and implementation through a large variety of tools and services. She offers a range of standard and customized one and two-day workshops including one addressing how individuals across disciplines can work together to most effectively assure privacy and regulatory compliance while efficiently implementing security controls. Rebecca has also been an Adjunct Professor for the Norwich University Master of Science in Information Assurance (MSIA) program since 2004.

John Kindervag is a Senior Analyst at Forrester serving Security & Risk professionals. He is a leading expert on wireless security, network security, security information management, and PCI data security.John is a 25-year veteran of the high-tech world. He holds numerous industry certifications including CISSP, CEH, QSA, and CCNA. Prior to joining Forrester, John was the senior security architect with security consultancy Vigilar, and he started the security practice for a Cisco Gold VAR, Flair Data Systems, where he was a principal security consultant. He has particular expertise in the areas of wireless security, intrusion detection and prevention, and voice over IP hacking. He has been interviewed and published in numerous magazines including Hospitality Technology Magazine, SecurityFocus.com, and Techtarget.com. John has spoken at many security conferences and events including ToorCon, ShmoCon, and InfoSec World.

Brandon Dunlap is the Managing Director of research at Brightfly. He has more than 15 years of experience managing business technology risk in large and small organizations. He has served in a variety of roles across heavily regulated industries, successfully leading all aspects of IT security programs, including policy and procedure management, oversight and control, strategy, architecture, development, and training. Currently, he is the Managing Director of Research of Brightfly, an independent, advisory and research firm that focuses on building a collaborative IT practitioner communities and bridging the gaps within information technology, security, risk, compliance, and audit disciplines.

Using Brightfly's research for real-world applications, Brandon helped develop Policy Manager, a tool for automating IT policy development, compliance and tracking, which is now part of the Symantec Control Compliance Suite. Brandon has also served as a Symantec Senior Product Manager and as the head of the Information Protection Unit at Constellation Energy. In his role at Brightfly, he uses his unique background to guide the firm's research agenda and cultivate the community involvement. Additionally, he develops and delivers curriculum on key security and compliance topics for leading professional associations.

Brandon's broad presentation history, charismatic speaking style, credible experience, and vendor-neutral perspective have made him a popular presenter at technical and business-focused events In addition to headlining Brightfly events, he has recently addressed professionals at international gatherings and regional events of the Institute of Internal Auditors (IIA) and ISACA, as well as the Institute for Applied Network Security (IANS), the ASIS International, and other events. Brandon has been quoted and profiled in major industry publications, including CSO Online, Information Security Magazine, Dark Reading, and TechTarget's SearchSecurity.

Ed Ferrara is Principal Analyst for Security and Risk at Forrester Research. He contributes to Forrester's offerings for the Security & Risk Professional, leading the company's coverage of security metrics, security program effectiveness, security awareness, and enterprise security information architecture. Ed's research builds on his work as a highly experienced in-program manager for the design and delivery of secure information technology solutions, including strategy, process, applications, and infrastructure. He has consulted with Fortune 50 companies in the area of solution determination based on understanding the needs and the skills required to create a successful security posture for organizations.

We work with independent experts to produce educational events for Governance, Risk Management and Compliance professionals. If you're an expert in an enterprise GRC or IT security related field, and would like to participate on a future IT GRC Forum event, please email our speakers bureau at: This email address is being protected from spambots. You need JavaScript enabled to view it. for information on speaking opportunities. Below are some of the leading experts we have worked with:

Michael Osterman is the principal of Osterman Research, Inc., founded in 2001. Since that time, the company has become one of the leading analyst firms in the messaging and collaboration space, providing research, analysis, white papers and other services to companies like Microsoft, IBM, Google, EMC, Symantec, Hewlett Packard and many others.

Prior to founding Osterman Research, Michael was the Vice President of Market Research at Creative Networks, a leading market research and consulting firm focused on the messaging and directory markets. Michael has also held positions with the SRI International Business Intelligence Center, Ryan Hankin Kent, ElectroniCast and Gnostic Concepts. His background includes research and analysis of various markets, including computer-aided software engineering, data communications, telecommunications, and fiber optic components.

Michael is a frequent speaker at industry and vendor-sponsored events on the topics of archiving, messaging and Web security, instant messaging, presence and other messaging- and collaboration-focused issues. He is also the author of a weekly column on messaging, Web and collaboration issues for Messaging Wire.

Osterman Research Background
Osterman Research help vendors, IT departments and other organizations make better decisions through the acquisition and application of relevant, accurate and timely data on markets, market trends, products and technologies. We also help vendors of technology-oriented products and services to understand the needs of their current and prospective customers.

Osterman Research provides timely and accurate international market research, cost data, cost models, benchmarking information and other services to technology-based companies. We do this by continually gathering information from IT decision-makers and end-users of information technology. We analyze and report this information to help companies develop and improve the products and services they offer to these markets or to internal customers.

Osterman Research has developed numerous cost models that compare and contrast the cost of various messaging solutions, including hosted/managed versus on-premise solutions.

Among the things that make Osterman Research unique is our market research panel: a large and growing group of IT professionals and end-users around the world with whom we conduct our research surveys. This allows us to conduct surveys quickly and accurately with very high response rates. We are continually developing our panel of IT professionals and end-users into one of the leading sources of information for companies that offer products and services in the IT space.

More information is available at http://www.ostermanresearch.com/

Chris McClean contributes to Forrester's offerings for the Security & Risk professional, leading the company's coverage of governance, risk, and compliance (GRC). He is also a thought leader on the related issues of corporate social responsibility (CSR) and sustainability. He is a frequent speaker on these subjects at vendor events as well as conferences run by industry organizations such as the Risk Management Association. He has also been interviewed by top media outlets such as CFO Magazine, Compliance Week, CRO Magazine, and Treasury & Risk Magazine. Chris serves Forrester clients with research on GRC and CSR strategy, organization, best practices, and technologies, and he is a frequent speaker on these subjects at industry and vendor events. Before coming to Forrester, his background was in marketing for security and risk management vendors, representing a broad range of market segments, such as compliance management, vulnerability management, digital forensics, and security information management.

Branden Williams has over fifteen years of experience in technology and information security with a formidable background in the majority of the technologies that drive today's businesses. Branden has experience working for startups and the Fortune 10, and the reason why some of the best companies in the world rely on Branden's advice is they know that his solutions are creative and based on real world experience. His experience includes start-ups, retailers, financial institutions, utilities and energy, electronic merchants, healthcare, and payment processors.

Bob Russo is the General Manager of the PCI Security Standards Council, works with representatives from American Express, Discover, JCB International, MasterCard Worldwide, and Visa Inc. to drive awareness and adoption of the PCI Data Security Standard. Mr. Russo is responsible for driving the organization's growth and development, as well as meeting its goals to create educational programs, establish pools of certified Qualified Security Assessors (QSAs), Internal Security Assessors (ISAs), PCI Forensic Investigators (PFIs), and Approved Scanning Vendors (ASVs), and incorporate feedback from all stakeholders across the payment chain into the work of the Council and the development of new standards. In addition, Mr. Russo oversees the PCI Security Standards Council's training, testing, and certification programs for QSAs, ISAs, PFIs, and ASVs.