Academic Leader Award

Christophe Veltsos, Professor, Minnesota State University Mankato

A globally recognized cybersecurity leader. He is one of the very few who bridge both academia and industry. His technical background, business acumen and understanding of people make him one of the few people who can advise information technology leaders and teach computer science students. He is a top-rated speaker at local and international security conferences. Even his presence on Twitter is noteworthy with 12,000 followers.
____________________________
Chris Veltsos is a professor in the Department of Computer Information Science at Minnesota State University, Mankato, where he regularly teaches cybersecurity courses and oversees a master’s program focused on cyber-risk. Chris is passionate about helping the next generation of security professionals articulate and integrate cybersecurity into business to drive better decisions.

Beyond the classroom he has co-authored two books, has had over 100 blog articles published in various outlets including IBM’s Security Intelligence blog and the D&O Diary blog. Chris is a frequent speaker at industry conferences and advisor to CISOs and other business executives.

Applications Security Leader Award

Mike Kijewski, CEO, MedCrypt

A leader who understands the intersection of healthcare and cybersecurity. He understands the healthcare clinical use cases, trends in medical device vulnerabilities and challenges faced by various members of the community. Focused on the root cause of the problem, he founded a company driven by the mission of bringing safety to patients through cybersecure devices. Mike is a pioneer in this industry. Focus on enabling devices to offer patient safety.
____________________________
Mike Kijewski (MMP’10/WG’12) is the CEO and co-founder of MedCrypt, a technology startup focused on helping medical device manufacturers secure their devices against malicious hacking. He previously was the founder of Gamma Basics, a software company focused on building web-based technologies for use in radiation oncology. Gamma Basics was acquired by Varian Medical Systems in 2013. Mike holds a Bachelor’s degree in physics from the West Chester University of Pennsylvania, a Master’s degree of Medical Physics from the University of Pennsylvania, and an MBA from the Wharton School.

Global Security Leader Award

Andrew Borene, Senior Director, Symantec National Security Group; Director Homeland Security Program at George Mason University Law School

A Certified Information Systems Security Professional and widely published and recognized US National Security lawyer. Leads Symantec Corporation’s US National Security Group, at the world’s leading cybersecurity firm. Senior Advisor to the Intelligence Advanced Research Projects Activity (IARPA). Personally led to new industrial, academic and direct foreign government partnerships to advance American scientific and technology advantage. Instrumental architect in the first cyberdefense and policy wargame hosted by the Truman National Security Project in Washington DC.
____________________________
Andrew Borene, JD, CISSP, has led high-performing businesses and corporate initiatives for Symantec, IBM, LexisNexis, Booz Allen Hamilton, Wells Fargo and technology startups. He has been a Senior Advisor to the Intelligence Advanced Research Projects Activity (IARPA), and an Associate Deputy General Counsel at the Pentagon. A former U.S. Marine Corps intelligence officer, he served in the Middle East after 9/11. He completed executive education at Harvard University and is a graduate of Macalester College and the University of Minnesota Law School. He has received the FBI Director’s Award and is a life member of the Council on Foreign Relations.

Governance Champion Award

Suzanne Spaulding, Senior Adviser, Homeland Security, International Security Program, CSIS

Served as undersecretary for the National Protection and Programs Directorate at the Department of Homeland Security (DHS). She functioned as CEO, with a rank equivalent to a four-star general; managed a $3 billion budget and a workforce of 18,000; charged to strengthen cybersecurity and protect the nation’s critical infrastructure. She led the transformation of budget, acquisition, analytic, and operational processes to bring greater agility and unity of effort to an organization experiencing dramatic growth and acquisition of new entities and missions over several years.
____________________________
Suzanne Spaulding is a Senior Adviser for Homeland Security and the Director of the Defending Democratic Institutions Project at the Center for Strategic and International Studies (CSIS). She is also a member of the Cyberspace Solarium Commission.

Prior to joining CSIS, Ms. Spaulding served as Under Secretary for the National Protection and Programs Directorate at the Department of Homeland Security. In this role, she was charged with strengthening cybersecurity and protecting the nation’s critical infrastructure. Before working at DHS, she was general counsel for the Senate Select Committee on Intelligence and minority staff director for the U.S. House of Representatives Permanent Select Committee on Intelligence.

Information Technology Audit Leader Award

Mary Frantz, CEO, Enterprise Knowledge Partners, LLC (EKP)

Thinks often steps ahead of other cyber security professionals to see potential threats, pitfalls and problems. Often hired by companies to find cyber security ‘problems’ – from insider threat, to criminal activity, to undetected breaches. Does not take shortcuts and puts in the time necessary to solve problems. Has been an expert witness in criminal trials, and helped companies respond to or prevent cyber breaches. Functions effectively in the ever-changing cyber security world.
____________________________
Mary is a globally recognized expert in cyber security. She is often steps ahead of other cyber security professionals to see potential threats, pitfalls and problems. Often hired by companies to detect cyber security ‘problems’ – from insider threat, to criminal activity, to undetected breaches. Mary does not take shortcuts and puts in the time necessary to solve problems. She has been an expert witness in some of our country’s largest data breaches, but she prefers to help companies prevent or respond to cyber breaches. She is an passionate supporter of STEM education, particularly in computer science and cyber security, at all levels and ages.

Mary Frantz is the CEO of Enterprise Knowledge Partners, LLC (EKP). She has performed and led advanced ethical hacking (red teams), security assessments, managed multiple incident investigations for companies. She was the primary technical cyber expert in the Equifax, Yahoo, and Facebook breach matters. Mary holds 4 bachelor degrees and two masters degrees and various active and non-active certifications in systems auditing, ethical hacking, penetration testing, forensics, engineering and architecture. She is a national advocate and mentor of women and minorities in STEM, a Board Officer for the Minnesota Academy of Science, board advisor for the Minneapolis Cyber Summit, and an elected School Board Director for MN District 719.

Security Awareness Program Leader Award

Jerrod Montoya, Deputy Chief Information Security Officer, Open Access Technology International (OATI); President, InfraGard Minnesota Chapter

Contributes to the practice of cybersecurity in many different ways. In addition to his work at OATI as Deputy CISO, is also the president of the Mn InfraGard chapter, a volunteer position. Provides learning opportunities, encourages participation in the security space and ensures events take place and are valuable. Ensures speakers and topics are relevant and informative for the membership community and is always gracious and professional.
____________________________
Jerrod Montoya is a practical and investigative security leader who always seeks out the “why” behind tough challenges to implement realistic and effective solutions. He draws upon a unique background at the intersection of the law and cybersecurity in his role as Deputy Chief Information Security Officer (CISO) at OATI and specializes in outreach and serves as chief advisor for the vision, strategy, and overall governance of cybersecurity, physical security, privacy, and awareness/training. In addition to his duties as Deputy CISO, Mr. Montoya provides expert project management for key strategic projects on the bleeding edge of the smart grid, with a specialty in Electric Vehicle (EV) management using state of the art software technology. He is also President of InfraGard Minnesota Members Alliance, a 1200+ member 501(C)(3) non-profit public/private partnership with the FBI that facilitates the advancement of security for the 16 Critical Infrastructure sectors identified by DHS. Mr. Montoya is an Adjunct Professor at Mitchell Hamline School of Law for its Cybersecurity and Privacy Law Program and is also an advisor to the Cybersecurity Summit and SecureWorld. In his prior role as Security and Compliance Counsel at OATI, he provided counsel on legal, policy, regulatory, and strategic matters. Mr. Montoya also was Adjunct Associate Professor at the University of Minnesota Law School, where he taught a course on cybersecurity law, and served honorably as a non-commissioned officer in the U.S. Marine Corps. He holds an M.S. in security technologies from the University of Minnesota Technological Leadership Institute, a J.D. from Hamline University School of Law with a certificate in advocacy and problem solving from the Dispute Resolution Institute, and a B.A. from the University of Minnesota.

Security Operations Leader Award

John Israel, Security Operations Manager – Security Operations Center (SOC), Incident Response, and Forensics, State of Minnesota

Took over lead for a security operations center during drastic change that had led to frustration in the ranks. Solely through leadership, without additional resources, he turned the environment around via team restructuring and greater leverage of existing tools and resources. Team now is more effective. His visionary leadership of the State’s Security Operations Center has improved detection and response to security incidents across executive branch, and in counties, cities, schools, and libraries.
____________________________
John Israel started his career in the days before smartphones ruled the world, crime became virtual, and clouds held data instead of rain. He spent ten years as the forensics lead for Minnesota IT Services building the state’s cyber incident response and forensics practices before taking on a larger leadership role within the state’s enterprise security program. He currently manages the State of Minnesota’s Security Operations Center (SOC) and Enterprise Forensics teams overseeing the state’s efforts to improve cybersecurity monitoring, incident detection, and incident investigations as well and providing cybersecurity analysis for the Minnesota Fusion Center.

Security Program and Oversight Leader Award

Jodie Kautt, Vice President, Cyber Security, Target Corp.

Leads Cyber Fusion Center integrating threat intelligence, advanced analytics and state-of-the-art technology to detect, deter, investigate and mitigate cyber threats. Leads product security, data protection and enterprise incident management. Champions for inclusion, promotion and development of women at Target and in the industry. Leads by example and supports individuals seeking career development. Executive Champion of Target Technology’s Diversity Action Committee. Mentors women in technology, both at Target and through external partnerships.
____________________________
Jodie Kautt is vice president of cyber security at Target. In this role, Jodie leads the Cyber Fusion Center, which integrates threat intelligence, advanced analytics and state-of-the-art technology to detect, deter, investigate and mitigate cyber threats. In addition, she leads product security, data protection and enterprise incident management for Target.

Prior to this role, she was Target’s Senior Director of Information Risk Management. Jodie joined Target in 2005 from KPMG, where she consulted with a variety of companies.

Jodie earned a Bachelor’s degree from Minnesota State University in Accounting, as well as a Master’s Degree from Augsburg University in Business Administration.

FOUNDERS AWARD: National Cyber Defense Leadership

Center for Internet Security, Inc. (CIS®)

For a number of years, the Cyber Security Summit has recognized those who are trail blazers in securing our country’s infrastructure. This year two individuals from the Center for Internet Security, Inc. (CIS) have been nominated for their work: Tony Sager, Senior Vice President and Chief Evangelist and Barbara Ware, Director of Communications.  Both candidates have demonstrated amazing innovation in the field of cyber security.  Eileen Manning, Summit Founder, felt recognition should also go to the entire agency for the body of work they have accomplished supporting both public and private sectors against cyber threats.  “This agency has built tools, shaped best practices and provided critical timely threat alerts, generously contributing their time and voice to build our national defense.”  Such support was endorsed by Brigadier General Stefanie Horvath, 2018 Visionary Leadership Award winner, and the 2019 nominating committee chaired by Chris Buse, Deputy Legislative Auditor, State of Minnesota, also winner of the 2016 Visionary Leadership Award. The Founders Award was created to recognize the work of this exceptional non-profit organization, a global group of dedicated IT security practitioners committed to providing technical expertise to all states. 
____________________________
The Center for Internet Security (CIS) is internationally recognized as cybersecurity organization with a mission to identify, develop, validate, promote and sustain best practices for cyber defense and build and lead communities to enable an environment of trust in cyberspace. CIS is: non-profit entity with members from large corporations, government agencies, and academic institutions; a volunteer, global community of IT professionals who continuously refine and verify CIS best practices and cybersecurity tools. home to the Elections Infrastructure Information Sharing and Analysis Center™ (EI-ISAC®), which supports the U.S. State, Local and Territorial elections offices protection efforts of the electoral process.

CIS is a non-profit entity with members from large corporations, government agencies, and academic institutions. CIS communities are a volunteer, global community of IT professionals who continuously refine and verify CIS best practices and cybersecurity tools. To develop and structure its benchmarks, CIS teams collect suggestions, advice, official work and recommendations from participating organizations. The teams analyze their data and information to determine the most vital configuration settings to improve internet system security. Building upon the foundational security controls, CIS members have created secure computer images, automated configuration assessment tools and information services to quickly inform organizations and provide immediate remediation support.

CIS is also home to both the Multi-State Information Sharing and Analysis Center® (MS-ISAC®), the vital resource for U.S. State, Local, Tribal, and Territorial government entities to receive cyber threat prevention, protection, response, and recovery services, and the Elections Infrastructure Information Sharing and Analysis Center™ (EI-ISAC®), which supports the U.S. State, Local and Territorial elections offices protection efforts of the electoral process. Both ISACs provide invaluable information services to State, Local, Tribal and Territorial government entities through advisories and Malware reporting.

2019 Leadership Categories

• Visionary Academic Leader. This award will recognize the leader of a pioneering cyber security academic program. Award nominations will be considered from academic leaders or security practitioners.
• Visionary Application Security Leader. This award will recognize a security practitioner or team that demonstrates innovation and outstanding oversight of an application security program. Award nominations will be considered from security practitioners, including members of the Twin Cities OWASP chapter.
• Visionary Global Leader. This award will recognize a person who has advanced the cause of cybersecurity on a global scale. Award nominations will be considered from academic leaders and security practitioners.
• Visionary Governance Champion. This award will recognize a C-suite leader, board member, or elected official who recognizes the cyber security value proposition and serves as a champion for the information security program. Award nominations will be considered from security practitioners.
• Visionary IT Audit Leader. This award will recognize a technology audit practitioner or team that provides outstanding cyber security assessment services. Award nominations will be considered from security practitioners and members of the Twin Cities ISACA chapter.
• Visionary Security Awareness Program Leader. This award will recognize a security practitioner or team that demonstrates outstanding oversight of an innovative security awareness program. Award nominations will be considered from security practitioners.
• Visionary Security Operations Leader. This award will recognize a security practitioner or team that demonstrates innovation and outstanding oversight of security operational areas, such as monitoring, vulnerability management, incident response, or access control. Award nominations will be considered from security practitioners.
• Visionary Security Program Leader. This award will recognize a CISO who uses innovative tools and techniques to continuously improve a complex cyber security program. Award nominations will be considered from security practitioners and governance champions.

Awards Judges:

Chris Buse, Deputy Legislative Auditor, Office of the Legislative Auditor Office of the Legislative Auditor
Todd Carpenter, Adventium Labs, Chief Engineer Adventium Labs
Jennifer Czaplewski, Director, Target Product Intelligence Team Lead Target
Steen Fjalstad, Security and Mitigation Principal Midwest Reliability Organization
Chrysa Freeman, Security Awareness Program Manager Security Mindedness
Brian Isle, Senior Fellow, Adventium Labs; Senior Fellow, University of Minnesota Technological Leadership Institute, Adventium Labs
Eileen Manning, Co-Founder, Cyber Security Summit

Supported by:

View previous years’ Visionary winners.