AN ON-DEMAND EVENT SERIES

The Art & Science of
Building a Security Culture

This event has already taken place. Please click above to register to receive the on-demand recording.

The Art & Science of Building a Security Culture: Demystified


Organizations need to transform users from targets to defenders. In part one of this series, we’ll look at the emergence, definition, and research of a security culture and how it can transform people from targets to defenders capable of recognizing and avoiding cybersecurity threats. Our experts will discuss how to leverage a security culture to manage the challenges of human error.

You’ll learn about:

  • Foundations of a security culture
  • Basic definition and benefits of infusing a security culture
  • Research from academic thought leaders showing how a security culture reduces risk
  • Key elements of a security culture framework

Join Proofpoint during Cybersecurity Awareness Month for The Art & Science of Building a Security Culture to get the insights, information, and tools you need to build a security culture that engages and educates your users and turns them into active defenders against phishing and other cyber attacks.

Rutrun Vehicula Fermentum Lacinia Enim

FEATURED HOST

Brian Reed
Brian Reed | Director of Cybersecurity Strategy, Proofpoint, Inc.

Brian Reed is our Director of Cybersecurity Strategy at Proofpoint. He comes to Proofpoint from Gartner where he focused on a wide variety of topics - cloud security, data security, incident response, insider threats and security awareness. Since 2015, he published over 50 thought-leading research notes at Gartner, including Cool Vendors reports, Market Guides for Digital Forensics and Incident Response Services and Security Awareness Training, Risk Management research, as well as the last two Gartner Magic Quadrants for Enterprise DLP. Previous to Gartner, he spent over 15 years in a variety of business development, product management, sales and system engineering roles, at companies including Sourcefire (acquired by Cisco), HP, McAfee and Internet Security Systems (acquired by IBM). He is well known in the information security industry and has spoken at numerous Gartner events, as well as other industry events globally. Brian also serves as an advisory board member and holds a BA degree from The University of Georgia and an MBA from Kennesaw State University.


FEATURED PANELISTS

Alexandra Panaretos
Alexandra Panaretos | Americas Cybersecurity Lead, Ernst & Young LLP

Alexandra Panaretos is the Americas Cybersecurity Lead for Secure Culture Activation at Ernst & Young LLP. With a background in broadcasting and operational security, she specializes in secure communications and education, awareness program development, the psychology of social engineering, human-based risk mitigation, and behavior analytics. She has over 12 years of experience developing and implementing security awareness, communication, and education strategies in Fortune 50/100 companies and other global enterprises. Alex is OPSEC Manager II Certified by the U.S. Army and the Joint Information Operations Warfare Center (JIOWC). In addition, she volunteers with local law enforcement agencies educating parents, community groups, and youth organizations on information security and social media safety in her free time.

Lisa Plaggemier
Lisa Plaggemier | Interim Executive Director, National Cyber Security Alliance

Lisa Plaggemier is Interim Executive Director at the National Cyber Security Alliance. Lisa is a trailblazer in security awareness and education, and is a prominent security influencer with a proven track record of engaging and empowering businesses and their employees to protect themselves and their data.

Lisa has held executive roles with the Ford Motor Company, CDK Global, InfoSec and MediaPRO, and is a frequent speaker at major events including RSA, Gartner and SANS. She is a University of Michigan graduate (Go Blue!) and while she wasn’t born in Austin, Texas, she got there as fast as she could.


Lucia Milică
Lucia Milică | Global Resident CISO, Proofpoint, Inc.

Lucia Milică currently serves as Global Resident CISO at Proofpoint. She is a senior technology leader with over 20 years of technical and business experience. In her previous role, Milică was the VP, Chief Information Security Officer & Chief Privacy Officer for Polycom, responsible for all aspects of data privacy and information security. She also held leadership and technical roles in IT governance & strategy, security risk and compliance, corporate and product security, data privacy, and IT infrastructure at companies including Polycom, HP, Palm, Wells Fargo, and Franklin Templeton. Milică serves as an advisor on the board of University Of Colorado, School of Business’s Center for Information Technology Innovation and holds a Master in Business Administration and Juris Doctorate.

This event has already taken place. Please click above to register to receive the on demand recording.

The Art & Science of Building a Security Culture: CISO Perspectives


CISOs are looking beyond checkbox compliance training to empower users with a modern approach to security awareness.

Our CISO panel will explore the organizational challenges of building a security culture and how they are progressing on their respective journeys. They’ll share lessons learned, approaches to gaining executive and cross functional support, and how they are adjusting security awareness programs to build the foundation for a security culture.

You’ll discover how:

  • CISOs are evolving their security awareness programs to create sustained behavior change
  • Organizational challenges of creating a security culture
  • How users are changing and how this impacts security culture development
  • The role of key performance indicators and how to measure success

Join Proofpoint during Cybersecurity Awareness Month for The Art & Science of Building a Security Culture to get the insights, information, and tools you need to build a security culture that engages and educates your users and turns them into active defenders against phishing and other cyber attacks.

Rutrun Vehicula Fermentum Lacinia Enim

FEATURED HOST

Brian Reed
Brian Reed | Director of Cybersecurity Strategy, Proofpoint, Inc.

Brian Reed is our Director of Cybersecurity Strategy at Proofpoint. He comes to Proofpoint from Gartner where he focused on a wide variety of topics - cloud security, data security, incident response, insider threats and security awareness. Since 2015, he published over 50 thought-leading research notes at Gartner, including Cool Vendors reports, Market Guides for Digital Forensics and Incident Response Services and Security Awareness Training, Risk Management research, as well as the last two Gartner Magic Quadrants for Enterprise DLP. Previous to Gartner, he spent over 15 years in a variety of business development, product management, sales and system engineering roles, at companies including Sourcefire (acquired by Cisco), HP, McAfee and Internet Security Systems (acquired by IBM). He is well known in the information security industry and has spoken at numerous Gartner events, as well as other industry events globally. Brian also serves as an advisory board member and holds a BA degree from The University of Georgia and an MBA from Kennesaw State University.

FEATURED MODERATOR

Lucia Milică
Lucia Milică | Global Resident CISO, Proofpoint, Inc.

Lucia Milică currently serves as Global Resident CISO at Proofpoint. She is a senior technology leader with over 20 years of technical and business experience. In her previous role, Milică was the VP, Chief Information Security Officer & Chief Privacy Officer for Polycom, responsible for all aspects of data privacy and information security. She also held leadership and technical roles in IT governance & strategy, security risk and compliance, corporate and product security, data privacy, and IT infrastructure at companies including Polycom, HP, Palm, Wells Fargo, and Franklin Templeton. Milică serves as an advisor on the board of University Of Colorado, School of Business’s Center for Information Technology Innovation and holds a Master in Business Administration and Juris Doctorate.

FEATURED PANELISTS

Rebecca Harness
Rebecca Harness | AVP & Chief Information Security Officer, Saint Louis University & SLUCare

Rebecca Harness is AVP & Chief Information Security Officer for Saint Louis University & SLUCare. Rebecca has an established 20+ year career in information technology with the past ten years specifically focused on information security and compliance. An accomplished entrepreneur, Rebecca has founded and led two successful technology startups over the course of her career, and volunteers her time serving as vice president for ISACA St. Louis. Rebecca is an alumnus of Hastings College, holds several technology and security certifications, and is currently pursuing a Master of Science in Information Security Engineering (MSISE) from SANS Technology Institute.

Mandy Huth
Mandy Huth | VP, Cybersecurity, Kohler

Mandy Huth is the VP of Cybersecurity at Kohler, a $7 billion global manufacturer enabling gracious living through smart kitchen and bath products and power products, as well as host to various hospitality locations. At Kohler, Mandy runs the company’s global security strategy. Previously Director of Information Security at Smarsh, a leading provider of archiving & compliance solutions, she ran security strategy & execution, including product security and securing corporate DevOps. Mandy joined Smarsh after building a security organization responsible for IT and OT from ground up for Belden, a $2 billion manufacturer of signal transmission products. She served as Head of Security and Technology at Tripwire (acquired by Belden), responsible for securing Tripwire’s internal technologies and solutions. Mandy has over 15 years’ experience, developed in Hewlett Packard’s managed services division, leading the infrastructure & logical security of its data centers. Mandy is a LinkedIn Learning/Lynda author. Further, she holds multiple certifications including CISSP, CIPT (privacy) and GSLC and is an active member with ISSA, ISACA and Infragard. Mandy has delivered advisory services in information security, IT governance, IT process analysis and information risk management. On a personal note, Mandy enjoys exercise, traveling, and reading. She would like to do (another) half Ironman this year, continue to scuba dive, improve her kite surfing, and to increase the number of countries she has visited from 45 to 60.

Jason Cox
Jason Cox | Chief Information Security Officer, Elevate Textiles

Jason is responsible for the overall Information Security program at Elevate Textiles, the parent company of the historic brands of American & Efird (A&E), Burlington Fabrics, Cone Denim, Gutermann, and Safety Components. With a global footprint that includes 36 facilities and over 15,000 employees, Elevate threads and fabrics can be found in places like your car, the clothes you wear, the gear you carry, the office where you work, and even the seams of a baseball! Prior to Elevate he worked in consulting for a large MSP, as an Information Security Officer in healthcare, and he began his career supporting IT infrastructure, security, and end users for a large independent telecom company. He lives in Central North Carolina with his wife and their three animals.

Zoom | Tuesday, October 26, 2021 | 1:00PM-2:00PM ET - Americas

The Art & Science of Building a Security Culture: Making it Real


Security awareness programs are evolving to support sustained behavior change and a foundation for a security culture.

Our experts will explore the security awareness solution frameworks and capabilities that are critical to developing and maintaining a security culture. We’ll share the capabilities needed for a continuous process that assesses readiness and drives behavior change, and why measuring and reporting success is critical to a security culture.

You’ll learn how the security awareness solution capabilities are evolving to:

  • Accurately access user risk and readiness
  • Provide agile and adaptable content that engages users and supports brand and culture needs
  • Track security culture progress with key performance indicators and intelligent reports

Join Proofpoint during Cybersecurity Awareness Month for The Art & Science of Building a Security Culture to get the insights, information, and tools you need to build a security culture that engages and educates your users and turns them into active defenders against phishing and other cyber attacks.

Get your Thank You Gift for Attending!

To celebrate Cybersecurity Awareness Month, each qualified attendee* will have the option to order their own complimentary Thank You Gift** after the event, selecting from a McStreamy Microphone & Light Ring, a Vivo Combination Speaker & Wireless Charger, or a JBL Clip 4 Waterproof Speaker.

*If you cannot accept or wish not to accept the gift, please make sure to decline upon registering. Gifts are only available to qualified attendees in the U.S. or Canada.

Rutrun Vehicula Fermentum Lacinia Enim

FEATURED HOST

Brian Reed
Brian Reed | Director of Cybersecurity Strategy, Proofpoint, Inc.

Brian Reed is our Director of Cybersecurity Strategy at Proofpoint. He comes to Proofpoint from Gartner where he focused on a wide variety of topics - cloud security, data security, incident response, insider threats and security awareness. Since 2015, he published over 50 thought-leading research notes at Gartner, including Cool Vendors reports, Market Guides for Digital Forensics and Incident Response Services and Security Awareness Training, Risk Management research, as well as the last two Gartner Magic Quadrants for Enterprise DLP. Previous to Gartner, he spent over 15 years in a variety of business development, product management, sales and system engineering roles, at companies including Sourcefire (acquired by Cisco), HP, McAfee and Internet Security Systems (acquired by IBM). He is well known in the information security industry and has spoken at numerous Gartner events, as well as other industry events globally. Brian also serves as an advisory board member and holds a BA degree from The University of Georgia and an MBA from Kennesaw State University.

FEATURED PANELISTS

Jill Areson-Perkins
Jill Areson-Perkins | Product Owner, Cybersecurity Awareness, Liberty Mutual Insurance

Jill Areson-Perkins is the Product Owner for Cybersecurity Awareness and Training at Liberty Mutual Insurance, a $43.8B global company with more than 45K employees. For more than 5 years at Liberty, she has strategically driven efforts to reduce human risk and create an enterprise-wide culture of data protection. She focuses on changing employee behaviors to reflect cybersecurity best practices in their daily actions. Jill leads broad-based awareness and training, along with security role-based training. She uses her 25+ years in marketing (including 10+ years at Timberland) to develop engaging cybersecurity programs and campaigns. Jill has an undergrad in Communications from BU, an MBA from UNH and has earned the SANS Security Awareness Professional certification.


Kurt Wescoe
Kurt Wescoe | CTO, Security Awareness Training, Proofpoint, Inc.

As CTO for Proofpoint Security Awareness and Training, Kurt Wescoe draws on his understanding of education techniques, data science and software development to help design and build tools that allow our customers to gain insight into their end users risk and how they can drive behavior change to reduce it. He is passionate about helping organizations strengthen their security posture and help defend against the ever-evolving threat landscape through data driven awareness and training programs. Previously Kurt served for twelve years as a faculty member at Carnegie Mellon University in the School of Computer Science.

Andrew Rose
Andrew Rose | Resident CISO, EMEA, Proofpoint, Inc.

Andrew has joined Proofpoint from Mastercard, where he was the Chief Security Officer of their subsidiary firm, Vocalink, a firm which provides the transactional backbone of the financial services industry in the UK. Prior to that Andrew held the CISO role at the UK Air Traffic Control provider, NATS, where he oversaw a security transformation and contributed to the design of the next generation air traffic control system. Andrew has also held CISO roles at two top tier global law firms, Allen Overy LLP and Clifford Chance LLP. In between these roles, Andrew was a Principal Analyst at Forrester Research where he covered the role of the CISO and Security Culture & Awareness as two of his specialty areas. Andrew was recognized as European CISO of the year (2018) and has previously won awards for devising and leading the Best security awareness program (2015). Andrew holds a master’s degree in information security, is a regular speaker at global security conferences (including RSA in 2019) and has contributed to media outlets such as the Wall Street Journal, the Financial Times, the Washington Post, Wired magazine and the Times newspaper. Andrew also appeared in the CNBC documentary entitled Rise of the Machines.

(ISC)2 CPE Logo

Earn Cybersecurity CPE Credits - ISC2

This event is approved and endorsed by (ISC)2 and one CPE credit will automatically be credited to your member account within four to six weeks.

Terms and Conditions

*Qualified attendees include information security decision makers: CXO, VP of IT, Director of IT; mid-level information security management (Senior Security Manager, IT Security Manager, IT Manager); and technical information security practitioners (Security Engineer, Messaging Architect, IT Analyst) from enterprises and organizations. It is also suitable for compliance decision-makers, including: General Counsel, Chief Compliance or Privacy Officer; mid-level compliance/privacy management (Compliance Manager); and compliance/privacy practitioners (Compliance/Risk Assistant, Compliance Administrator). This gift is not available to independent consultants or channel or technology partners.

**Offer subject to availability. These gifts are a $50 value. Please see above for details on what the specific gifts are. Gift is not contingent upon agreeing to do business with Proofpoint, Inc. By accepting this gift you represent and warrant that (1) you are not a representative, employee or contractor of any national, federal, provincial, state, municipal or other government, governmental agency, or quasi-governmental entity (“Government User”), (2) you are not related to any person who is a representative, employee or contractor of a Government User, and (3) your acceptance of this gift does not violate your employer’s code of conduct or similar policies, and you have notified your employer of this offer and your employer has consented to you accepting this offer.