|Patrick Millar is the Technology Lead for the The Institutes’ RiskBlockTM Alliance, an industry-led consortium collaborating to unlock the potential of blockchain across the insurance industry. In his current role, Patrick leads the build-out of the technology that powers the distributed applications used by RiskBlockTM Alliance members. In the 3 years prior to joining RiskBlock, Patrick co-founded several startups in the machine learning and 3D vision spaces. His most recent startup, Love Park Robotics, was sold in January 2018. Prior to working on startups, Patrick was deeply involved with technology in Finance and the Capital Markets, serving as CTO, CIO and CISO for Chatham Financial, an advisory and technology firm specializing in derivatives, for over 10 years. Patrick’s professional interest in distributed ledgers started while at Chatham Financial, a journey which continues with the RiskBlockTM Alliance.
Justin Klein Keane currently serves as the Information Security Operations Manager for Penn Medicine. Justin holds a Master’s degree in Computers and Information Technology from the University of Pennsylvania School of Engineering and Applied Science. Justin began his career as a software developer and database administrator and throughout his more than 20 years of information security experience he has maintained a focus on applications and data science. Justin is credited with finding and disclosing hundreds of vulnerabilities including several high profile vulnerabilities including one affecting high profile government websites. Justin presents frequently at information security conferences on various topics including Internet of Things security, application security, and emerging technologies. Justin has worked most of his career at the University of Pennsylvania on both the academic side as well as with Penn Medicine. Justin has also served as Security Architect for an IoT startup, contributed to national standards for Internet of Things, and published several articles on embedded device security.
Summary of Presentation – The Intersection of Big Data & Security in HealthCareInformation security is a relatively new trade that is maturing rapidly in attempts to keep pace with technology innovation. It has become clear that big data both presents new security challenges and provides new security opportunities. As healthcare becomes more connected, interdependent, and produces ever larger volumes of data about everything from patient vital signs to the weights and measures of kitchen trash, our healthcare systems are increasingly connected. This explosion of digital devices and information means the attack surface for adversaries is expanding, but the chance to leverage internal visibility is also growing. Finding needles in the haystack of digital information increasingly requires a focus on data analytics rather than traditional digital forensics skills. Although security product vendors are racing to embrace big data, artificial intelligence, and machine learning, the need for bespoke solutions leveraging these techniques is outstripping the supply. Healthcare is not unique in this need, but the structure of healthcare does mean that is has unique qualities that confound traditional security and demand new ways of thinking about data security and data analytics. This talk will attempt to explore the various facets of this condition to highlight the interdependence of data and security in modern healthcare environments.
Keith Wiley leads the Risk and Advisory practice at Layer 8 Security, a boutique cybersecurity services and advisory firm. Keith’s focus at Layer 8 Security is in Data Privacy, Risk, and Compliance. His approach is to keep the human factor central in all risk, compliance, privacy and technology activities to create and implement impactful and sustaining enterprise programs and solutions. Most recently, drawing from past technology experience, Keith formed an Enterprise Program Management Office (“EPMO”) comprised of Program, Portfolio, and Change Management functions at a pharmaceutical manufacturing company. Some of the programs that the EPMO ran included enterprise process definition and data harmonization, GDPR, plant commercialization, corporate project prioritization, and forming a connected health strategy that included building an advanced analytics function. Prior to this, he was an ETL and analytics developer and eventually, while working for the CIO, set up and managed the Office of the CIO.
Summary of Presentation – GDPR
As of Friday May 25, 2018 European Union regulators began enforcing the General Data Protection Regulation (GDPR). The GDPR replaces the EU Data Protection Directive that was adopted by the EU Parliament in 2016 with an aim to unify data protection laws within the EU. In a sentence, GDPR’s objective is that “Natural persons should have control of their own personal data.”
The impact GDPR has on businesses inside and outside of the EU specifically on ensuring compliance remains unclear. According to SAS, a leader in business analytics and intelligence, less than half of organizations fully understand the impact of GDPR and how their business can effectively address this new regulation. Now, with The California Consumer Privacy Act of 2018 set to go into effect in early 2020, it becomes even more critical that technology and business professionals understand the impacts and steps needed to address these regulations.
Woody Priester has worked for over 30 years in the Information Technology, Technology Audit and Information and Cyber Security fields since the start of his career, working for a series of companies including insurance providers, a transportation and logistics company, business services, and mortgage and banking companies. Mr. Priester currently works for Cenlar FSB, a federally chartered bank and Mortgage Subservicing company that provides mortgage servicing operational outsourcing and private label support to clients in the financial services industry. Mr. Priester currently holds the position of Senior Vice President and Chief Technology Risk Officer and continues in his former role as the acting Chief Information Security Officer. His responsibilities include establishing and maintaining Cenlar’s corporate-wide technology risk and information security programs with a key focus on cybersecurity policies and practices. In previous roles, Mr. Priester has consulted with organizations on their development of technology risk programs and he has served in the CISO role developing and maturing Information and Cybersecurity programs from the ground up. Mr. Priester acquired a BS degree in Business and Accounting from the University of Baltimore and is a former CPA in the State of Maryland. He has also held the CISA designation from ISACA.