Speakers
We're bringing together some of the most passionate and informed individuals ever to discuss the intersection of identity and the cloud.
Alex Balazs, Identity Architect, Intuit
Alex is the architect for Identity & Access Management at Intuit Inc. He is responsible for architecture and design of Intuit’s Cloud Identity strategy to support an Ecosystem of Global Ready SaaS Products and Services. This strategy encompasses over 100 Intuit Offerings (Mobile, Web, & Desktop), developed both inside and outside Intuit for industries ranging from Personal Finance & Taxes, Online Banking, Healthcare, and Accounting. He lives in San Diego.
Bob Brandt, 3M
Bob Brandt works for 3M, in the IT Office of the CIO, on global security architecture and strategy.
A recent, perhap pertinent, project for this conference included helping overlay a "hosted in the cloud" sharepoint collaboration service that interworks with the rest of 3M's extensive 3M.com infrastructure, including: J2EE portals, wikis, SaaS integrations, Web SSO, LDAP, IdM provisioning processes, and branded domain login services. Use of standards to bridge existing Identity stores and SAML flows with WS-Federation, using both Ping Federate and ADFSv2, and without writing one line of code ;), was the approach used.
Bob has an ARIN Handle, and while at 3M, has worked with Jon Postel on 3M CIDR block allocation, has participated in IETF and ATM Forum groups, implemented multihomed BGP4 for the company, and done significant LDAP, SSO, provisioning, and Federation work - some of which was presented at the last Ping conference.
With respect to standards, Bob also represented NCR on the Corporation for Open Systems (COS) during the US GOSIP period, and prior to the AT&T purchase of NCR.
Current interest areas include influencing application and infrastructure managers/developers to proactively "build-in" standard Identity security for services; influencing partners to adopt secure, but open, integration approaches; and influencing enterprise IT security types to move up beyond the commodity level (layer 4) of the stack, both in their thinking and investment.
Bob has a degree in Mathematics and a Computer Science concentration from St. Olaf, Northfield, MN
Bob lives in the Minneapolis/St.Paul area
Doron Cohen, CTO, SafeNet
Doron Cohen serves as CTO for Authentication solutions at SafeNet. He leads the development of technology strategy for the company’s multifactor authentication and identity protection solutions. Mr. Cohen has over 25 years of experience in IT Security and directing development of enterprise-class system and applications. He has extensive expertise in the development of Identity Management products for distributed cross-platform environments - spanning operating systems, databases and applications.
Mr. Cohen joined SafeNet in April 2009 with the acquisition of Aladdin Knowledge Systems, where he served as CTO of the eToken Business unit, focusing on driving the authentication product line technology and innovation.
Prior to joining Aladdin, Mr. Cohen served as CTO of the Identity Management Business Unit at BMC Software, where directed the design and development of BMC Identity Management solutions and strategy. Prior to BMC Software, he held several positions as IT security officer with the Israeli Defense Forces.
Mr. Cohen holds a Bachelor of Science degree in Math and Computer Science from Bar-Ilan University and is a Certified Information Systems Security Professional (CISSP).
Steve Coplan, 451 Group
Steve is a Senior Analyst within The 451 Group's Enterprise Security Practice, providing in-depth, timely perspectives on the state of enterprise security and emerging trends. Steve's primary area of coverage is on identity and access management, with his research currently focused on understanding the impact on identity from shifts in the IT consumption model.Steve rejoined The 451 Group after serving as director of product marketing at Whale Communications, a secure remote-access vendor acquired by Microsoft in 2006. At Whale, he was responsible for implementing the product marketing strategy for a corporate repositioning, and he worked on post-acquisition strategy. Before joining The 451 Group at its inception in April 2000 and serving as both director of M&A and network and security research, Steve covered technology and economic trends for European financial newswire AFX News as the San Francisco Bureau Chief.
Steve has a degree in Linguistics and Zulu from the University of Cape Town, where he graduated with honors, and an MA in Journalism from Northwestern University's Medill School of Journalism.
Tom Fisher, SuccessFactors Vice President Cloud
Tom Fisher joined SuccessFactors as Vice President of Cloud Computing. SuccessFactors is one of the fastest growing software companies in the world. Tom is responsible for the company’s Cloud initiatives including supporting technology alliances and Cloud integration. Tom, in his current role, is widely published and a popular speaker on both the technology and the business of the Cloud.
Previously Tom was Vice President of IT for Qualcomm and CIO for QUALCOMM’s CDMA Technologies (QCT) Group – the largest fabless semi-conductor in the world. Tom had worldwide responsibility for the business and engineering systems that supported Qualcomm’s semiconductor and global positioning businesses. Tom was instrumental in creating the ‘fabless five’ a regularly scheduled meeting of the five largest fabless semi-conductors in the world. He was recognized, worldwide, as a technology and thought leader in IT.
Prior to joining Qualcomm, Tom was vice president for architecture and technology strategy and acting Chief Technology Officer (CTO) at eBay. His responsibilities at eBay included helping to redesign and manage the delivery of the Web site after several massive outages. He was also responsible for establishing the firm’s technology strategy to support the massive scale and shifting business requirements. Tom was responsible for significant business development strategies at eBay including the creation and establishment of eBay’s Developers Program, eBay’s StoreFront initiative and eBay’s internationalization as the company expanded globally.
Patrick Harding, Ping Identity CTO
Harding brings more than 20 years of experience in software development, networking infrastructure and information security to the role of Chief Technology Office for Ping Identity. Harding is responsible for Ping Identity’s technology strategy.
Previously, Harding was a vice president and security architect at Fidelity Investments where he was responsible for aligning identity management and security technologies with the strategic goals of the business. Harding was integrally involved with the implementation of federated identity technologies at Fidelity -- from “napkin" to production. An active leader in the Identity Security space, Harding is a Founding Board Member for the Information Card Foundation, a member of the Cloud Security Alliance Board of Advisors, on the steering committee for OASIS and actively involved in the Kantara Initiative and Project Concordia. He is a regular speaker at RSA, Digital ID World, SaaS Summit, Burton Catalyst and other conferences. Harding holds a BS Degree in Computer Science from the University of New South Wales in Sydney, Australia.
Brad Hill, Principal Consultant at iSEC Partners
Brad Hill is a Principal Consultant at iSEC Partners, the industry leader in research and consulting services for mobile, web and distributed application security. Brad's work focuses on security assurance for large-scale authentication and identity systems, from protocol analysis to implementation and deployment. He has discovered new vulnerabilities in systems ranging from Kerberos to WS-Security, presented original research internationally at top conferences such as Black Hat, and served as an invited expert with the W3C XML Security Working Group.
Brian Kissel, CEO of JanRain and Chairman of the OpenID Foundation Board
Brian Kissel is the CEO of Janrain, a provider of hosted user management solutions for authentication and social publishing that leverage the social web. In addition, Brian was elected Chairman of the Board of Directors for the OpenID Foundation in 2009 and 2010, where he has worked to expand adoption and usage of internet-scale identity technologies both in the government and private sectors. Brian has over 20 years of experience developing products, markets and successful business strategies. Prior to his current role at Janrain, Brian was the SVP Electronic Banking Solutions at CheckFree (acquired by Fiserv), CEO of Paraform (acquired by Metris), and VP Marketing at Oblix (acquired by Oracle). Brian earned an MBA from Stanford University and a BS in Mechanical Engineering from the US Naval Academy.
Eve Maler, PayPal and the UMA Project
Eve Maler is a Distinguished Engineer in PayPal’s Identity Services group, where she drives the development of security and identity strategies for enabling consumer choice in permissioning of personal data sharing.
Eve was one of the inventors of XML; she also co-founded the SAML effort and has made major leadership, technical, and educational contributions to many other standards and technical communities. In recent times she has focused primarily on consumer trust, privacy, and empowerment issues in Web identity and permissioned data-sharing. She launched an open effort called User-Managed Access to explore long-term solutions in this area.
Eve is a sought-after public speaker, and serves as the chair of the Web Services and Identity track of the annual XML Summer School held at University of Oxford.
Eve co-authored Developing SGML DTDs: From Text to Model to Markup, a book that provided a unique methodology for information analysis and SGML schema design. Eve’s blog, Pushing String at xmlgrrl.com, touches on topics both technical and whimsical.
Chuck Mortimore, Salesforce.com
Chuck is responsible for Authentication, Identity, and Single Sign-On product management at salesforce.com. Prior to salesforce.com, Chuck ran Platform Product Management at Rearden Commerce, during which the company was awarded the Liberty Alliance Identity Deployment of the Year in 2007. Before joining Rearden Commerce, Chuck was at Sxip Identity, where he helped design and build the next generation of user-centric Identity technologies for the Web, and pioneered the first Cloud Identity product line, Sxip Access.
Chuck brings a wealth of experience in software development from Netscape Communications, AOL and Sun Microsystems, and was as key enabler of Sun's successful entrance into the access management and federation markets. In addition, he founded the openinfocard project, and released the first opensource implementation of the InfoCard protocols. Chuck holds a B.A. from the University of Madison and a Masters from the McCormick School of Engineering at Northwestern University.
Mike Neuenschwander , Accenture
Mike Neuenschwander is a Sr. Manager in Accenture's security consulting practice. At Accenture, Mike oversees large scale and complex projects involving digital identity, access management, and compliance and is assisting in the development of Accenture's cloud security model. Mike is an internationally recognized thought leader in the identity management industry. Over the last 10 years, Mike has advised IT architects from corporate enterprises, governments, and software vendors on topics related to digital identity. Prior to joining Accenture, Mike led the Identity and Privacy Strategies service at Burton Group (now owned by Gartner, Inc.) for 8 years. While at Burton Group, Mike initiated analyst blogs, where he posted novel ideas for digital identity including the "Limited Liability Persona." Mike continues to blog on topics of trust, security, and digital identity at http://hybridvigor.net.
Gunnar Peterson, Artec Group
Gunnar Peterson is a Managing Principal at Arctec Group. He is focused on distributed systems security for large mission critical financial, financial exchanges, healthcare, manufacturer, and insurance systems, as well as emerging start ups. Mr. Peterson is an internationally recognized software security expert, frequently published, an Associate Editor for IEEE Security & Privacy Journal on Building Security In, a contributor to the SEI and DHS Build Security In portal on software security, a Visiting Scientist at Carnegie Mellon Software Engineering Institute, and an in-demand speaker at security conferences. He maintains a popular informationsecurity blog athttp://1raindrop.typepad.com.
Doug Pierce, CTO - Momentum World Wide / President Fuz1on
Doug Pierce has been with global marketing giant Momentum Worldwide for over ten years and currently leads the Company’s global IT division. Doug oversees all IT functions including data center management, vendor relationships, technical support, application development, financial systems, and disaster recovery planning. He played an integral role in the company becoming SOX compliant, manages capitol and operating budgets in excess of $8M annually and directs the activities of 30+ staff.
Notable Accomplishments:
SOX Compliancy
Creating profit centers for IT. This was accomplished through the addition of several services not normally offered by IT. CD/DVD duplication, Video/Audio rendering, Systematic Color accounting, web based file transfer, offering IT services to clients through a fee based model.
Momentum Portal, from concept to creation, design to conclusion. One of the first corporate social networking sites developed in the industry. Portal provides WEB2.0 enterprise applications, like WIKI’s, Blogs and RSS and has over 1400 active users.
Jim Reavis, Cloud Security Alliance Executive Director & Co-Founder
For many years, Jim Reavis has worked in the information security industry as an entrepreneur, writer, speaker, technologist and business strategist. Jim's innovative thinking about emerging security trends have been published and presented widely throughout the industry and have influenced many. Jim is helping shape the future of information security as co-founder, executive director and driving force of the Cloud Security Alliance.
Jim is the President of Reavis Consulting Group, LLC, where he advises security companies, large enterprises and other organizations on the implications of new trends such as Cloud and how to take advantage of them. Jim occasionally blogs at Risk Bloggers.
Jim has previously been an international board member of the ISSA, a global not for profit association of information security professionals and formerly served as the association's Executive Director. Jim was a co-founder of the Alliance for Enterprise Security Risk Management, a partnership between the ISSA, ISACA and ASIS, formed to address the enterprise risk issues associated with the convergence of logical and traditional security. Jim currently serves in an advisory capacity for many of the industry's most successful companies. Jim is also a partner with the MetroSITE Group.
Jim founded SecurityPortal in 1998 and has been an advisor on the launch of many industry ventures. Jim is widely quoted in the press and has worked with hundreds of corporations on their information security strategy and technology roadmap. Jim has a background in networking technologies, marketing, product management and systems integration. Jim received a B.A. in Business Administration / Computer Science from Western Washington University in 1987 and serves on WWU's alumni board.
Christian Reilly, Bechtel Corporation
Christian Reilly, manager of Global Systems Engineering, Bechtel Corporation, is responsible for the architecture and design of enterprise computing and communications infrastructure, from the datacenter to the desktop, in support of core business operations. Mr. Reilly also led Bechtel's EMEA Infrastructure Group, providing innovative infrastructure solutions to support Bechtel's engineering and construction project activities across business lines and geographies, and was Manager of Information Systems and Technology on the US$20 billion New Doha International Airport project in Qatar—the first purpose built airport to handle unconstrained operations of the Airbus A380 aircraft.
Eric Sachs - Google Product Mgr | Security & CIO Department
Eric Sachs has more than 15 years of experience in the areas of user identity and security for hosted Web applications. During his five-plus years at Google, he has worked as a Product Manager for many services, including the Google Account login system, Google Apps for Your Domain, orkut.com social network, Google Health, Google Security, and Internal Systems. Currently Mr. Sachs works with Google's CIO on an effort to move Google's internal systems to cloud-based technologies by leveraging the same developer tools that Google makes available publicly. As part of that work, he is involved with the development of industry standards for data interoperability, including OAuth, OpenID, and OpenSocial. Before Google, Mr. Sachs was CTO and co-founder of Interliant, which provided hosted corporate email services. While at Interliant, Mr. Sachs led co-development projects with both IBM and Microsoft to build platforms for hosting consumer and enterprise Web applications. Mr. Sachs graduated with a B.A. in computer science in 1993 from Rice University.
Anil Saldhana, Red Hat & OASIS
Anil is the lead security architect for middleware at Red Hat Inc. He represents Red Hat for security at the JCP, W3C and the Oasis. He is the secretary of the Oasis SAML Technical Committee and an elected member of the Oasis IDTrust Steering Committee. He is the co-editor of a forthcoming W3C specification on Browser Security. Apart from his regular duties as a leader in open source security, he presents on topics related to security around the world. He lives in Chicago.
John Shewchuk, Microsoft Technical Fellow
John Shewchuk is an industry veteran with over 25 years of experience developing internet, platform, and enterprise software. As a Microsoft Technical Fellow, Shewchuk is responsible for driving technical strategy and the cloud transition for Microsoft directory, identity, access, privacy, and information protection technologies. In this capacity Shewchuk works closely with leaders across the company to align Microsoft's overall services strategy and product architectures.
Over the last several years Shewchuk and his team lead the development of cloud application platform services. Prior to this Shewchuk was a co-founder of the Windows Communication Foundation (WCF) team and has driven many cross-industry interoperability initiatives. Shewchuk has co-authored many web services specifications and he managed the technical collaborations with IBM, Sun, and many others.
Earlier in his career Shewchuk worked on Microsoft development tools and runtimes and played a key role in the development and first release of Visual Studio and .NET. He played a role in the development of many Internet technologies including stylesheets, browser behaviors, and web server controls. Shewchuk joined Microsoft in 1993 with the acquisition of a startup he co-founded as a graduate student.
Shewchuk earned a Master of Computer Science from Brown University and holds a Bachelor in Electrical Engineering from Union College. He enjoys spending time with his wife Margot and their four children playing sports, cooking, and travelling. They reside in Redmond, Washington.
Brian Ward, Bechtel Corporation
Brian Ward is responsible for the design and construction of next generation cloud computing platforms, web and services oriented architecture components, information architecture components, identity management and application authentication & authorization frameworks. Mr. Ward previously lead the construction of most of Bechtel's extranet applications with a focus on identity life cycle management. With a focus on systems, Mr. Ward supports both infrastructure and application organizations within Bechtel.Workshop: Implementing SAML Single Sign-On
Ian Barnett - Ping Identity
Ian Barnett brings over 15 years of experience to his work as a Solutions Architect in Ping Identity’s Global Client Services organization. He works extensively with Ping Identity’s strategic partners and elite services customers, assisting them in understanding SAML and how Ping Identity products can interoperate with or enable their solutions to provide SISSO. Prior to joining Ping Identity, Barnett was at Netegrity and PricewaterhouseCoopers where he helped Fortune 100 clients design and implement complex IAM solutions.
Workshop: Implementing OpenID & OAuth
Chris Messina - Google
Chris Messina is a well-known advocate of the open web, starting as a leader of the community marketing of the launch of the popular Firefox web browser in 2004. He is a board member of the OpenID and Open Web Foundations, and plays an instrumental role in advancing OAuth and safer online computing. A frequent speaker at technology conferences such as Web 2.0 Expo and SXSW, he has been quoted in The New York Times, Business Week, LA Times, Washington Post, ReadWriteWeb, and Wired. In 2008, Chris received the Google Open Source Award recognizing his community work on initiatives like microformats. He also co-founded the coworking and BarCamp communities, and is credited with introducing hashtags on Twitter. He currently works at Google as an Open Web Advocate and resides in San Francisco.David Primmer - Google
David is a software engineer working on the security technologies usedin Google Developer Platforms, including OAuth, OpenID and Secure Data
Connector. David is a former systems and database administrator with a
wide background managing the business computing environment.
Workshop: The Essential XACML Primer
As president, Gerry Gebel is responsible for sales, customer support, marketing, and business development for the Americas region. In addition, he will contribute to product strategy and manage partner relationships for Axiomatics. Prior to joining Axiomatics, Gerry was vice president and service director for Burton Group's identity management practice. He covered topics such as authorization, federation, identity and access governance, user provisioning and other IdM topics. In 2007, he facilitated the first ever XACML interoperability demonstration at the Catalyst conference. In addition, Gerry has nearly 15 years experience in the financial services industry including architecture development, engineering, integration, and support of Internet, distributed, and mainframe systems.Security in the Cloud - Gunnar Peterson, Artec Group
Workshop: Cloud Security 101
Christofer Hoff, Cisco
Chris is Director of Cloud & Virtualization Solutions at Cisco Systems where he focuses on virtualization and cloud computing security spending most of his time interacting with global enterprises and service providers, governments, and the defense and intelligence communities. Previously, he was Unisys Corporation’s Chief Security Architect, served as Crossbeam Systems' chief security strategist, was the CISO and director of enterprise security at WesCorp, a $25 billion financial services company and was founder/CTO of a national security consultancy. Chris specializes in emerging and disruptive innovation and what it means to security, and is technical advisor to the Cloud Security Alliance. Chris blogs at http://www.rationalsurvivability.com/blog
