This website uses cookies to store information on your computer. Some of these cookies are used for visitor analysis, others are essential to making our site function properly and improve the user experience. By using this site, you consent to the placement of these cookies. Click Accept to consent and dismiss this message or Deny to leave this website. Read our Privacy Statement for more.
Contact Us   |   Print Page   |   Sign In   |   Join Now
March 2018 ISSA Web Conference

ISSA Thought Leadership Series:Security Awareness Strategies

Recorded (1 Hour Event) on Wednesday, March 21, 2018

Click here to view the recording.
Click here for the presentation.

Click here to take the CPE quiz.


                                           Beating Hackers at Their Own Game: Security Awareness Strategies That Work

If 2017’s explosion of cybersecurity breaches taught us anything, it’s that our workforces, more than ever, are one of our most critical defenses. But with as much as 30% of employees unable to spot a phishing email, how do you keep hackers from hijacking your data? The seemingly obvious answer is security awareness training. Unfortunately, many security education programs today fail to sufficiently change employees’ security attitudes, skills and behaviors -- providing a false sense of protection and safety. Even worse, 48% of companies do not have an employee security education program.

If your New Year’s infosec resolutions include launching a security awareness initiative, or reviving an existing one, what better way to guarantee results than to learn from pros who have been in your shoes. Join our expert panel as they share:

● Their most effective security awareness strategies to improve your organization’s security posture

● Proven methods to get employees to take security seriously (before a breach occurs)

● Security awareness program pitfalls to avoid and biggest lessons learned

● Predictions on what will cyber attacks will look like in the next couple years and what you should do in your security awareness program today to prepare


Robb Reck, Ping Identity


As Chief Information Security Officer at Ping Identity,  Robb is responsible for ensuring the integrity of all products Ping creates, the confidentiality of sensitive data, and the availability of critical services. Robb serves on the CISO Advisory Council for ISSA International, and previously served as president for the Denver chapter. Previous to his role at Ping, Robb served as vice president and CISO for Pulte Financial Services. Before Pulte Robb served as Information Security Officer and Director of Risk Management for Harland Financial Solutions. Robb holds a Bachelor’s of Arts from George Fox University and an MBA from Colorado State University.



Jack Koziol, InfoSec Institute

Jack Koziol is President & Founder of InfoSec Institute, a leading security awareness and anti-phishing training provider. With years of private vulnerability and exploitation development experience, he has trained members of the U.S. intelligence community, military and federal law agencies. His extensive experience also includes delivering security awareness and training for Fortune 500 companies including Microsoft, HP and Citibank. Jack is the lead author of The Shellcoder's Handbook: Discovering and Exploiting Security Holes. He also wrote Intrusion Detection with Snort, a best-selling security resource with top reviews from Linux Journal, Slashdot and Information Security Magazine. Jack has appeared in USA Today, CNN, MSNBC, First Business and other media outlets for his expert opinions on information security.


Marnie Wilking, Orion Health

Marnie Wilking has directed Information Security and Operational Risk Programs for more than 15 years, providing a unique set of skills and experience to manage operational risks and improve risk management among diverse businesses. She is currently Chief Information Security Officer for Orion Health, a global provider of healthcare information technology. She has held multiple Information Security and Risk Management positions with Early Warning in Scottsdale, AZ, and Wells Fargo, including technical project and program management; technology consulting; and oversight of Information Security, Third Party Risk Management, Business Continuity, and Records Management programs. She began her career with Accenture, providing project and program management services to global Financial Services clients. Ms. Wilking holds the CISSP, CISA, and CISM designations, and is a member of the Phoenix chapters of ISSA and ISACA, as well as the CISO Advisory Council for the ISSA CISO Executive Forum. She holds an MBA in Technology Management from University of Phoenix, and a Bachelor of Arts in Mathematics and Statistics from Miami University (Ohio).


Michael Towers, Allergan

Mike is accountable globally for protecting the confidentiality, integrity and availability of Allergan’s vast information assets across an R&D, supply chain and commercial enterprise spanning ~100 countries. This includes strategy, governance, risk management, 3rd -party oversight, IT compliance, identity & access management, security technology management, security analytics and monitoring, incident response, investigations and forensics, and SAP/ERP security.
Mike passionately champions industry collaboration and information sharing within multiple executive security forums, including Department of Homeland Security’s National Health ISAC, where he is currently serving on the Board of Directors and is Chair of the Product and Services Committee. Mike is also an active member of McKinsey’s Healthcare CISO Group, Corporate Executive Program (CEP), and Corporate Executive Board’s Information Risk Leadership Council. Specific to the cybersecurity space, Mike serves as an executive advisor to many leading technology and service providers, including Okta, Exabeam, and Palo Alto Networks.
Mike was recently named the 2015 Information Security Executive of the Year for the Northeast by T.E.N., as well as the 2015 Information Security North America Executive of the Year for the Healthcare sector.
Previously, Mike was VP, Information Security Assurance at GlaxoSmithKline (GSK). There, Mike was accountable for the security of GSK’s information systems and computing infrastructure spanning 400+ sites in 110 countries, owning shared services in the areas of platform, network, application, and data security and advanced threat defense.
Mike is CISSP, Lean Sigma Coach/Practitioner, Six Sigma Green-Belt, and ITILv3 certified. 

Community Search
Sign In


ISSA International Series: Security Standards Organizations - The good, the bad, and the ugly?

8/3/2019 » 8/8/2019
Black Hat USA 2019

ISSA Thought Leadership Series: Paving the Way to a Passwordless Future

ISSA International Series: Legislative Aspects

ISSA Thought Leadership Series: Update on the latest cyber threats and trends

Copyright © 2016, Information Systems Security Association, All Rights Reserved
Privacy PolicyCopyright Information