Carlos is Chief Information Security Officer (CISO) at Bakkt, responsible for all aspects of internal infrastructure security, product security, and physical security. Prior to joining Bakkt, he served as CISO at BetterCloud leading both cyber security and corporate IT. He also worked at SunTrust Bank (now Truist) for nearly ten years in a variety of cyber leadership roles, and also worked overseas for GE Power Conversation in Paris, France. Carlos holds a B.S. in Criminal Justice from Georgia State University, and holds both the CISSP and CSSLP certifications.
Thomas Dager, VP, Chief Information Security Officer (CISO) Global Information & Cyber Security
A strategic thinker with deep technical and broad business skills, Thomas heads information and cyber security globally for Archer Daniels Midland (ADM). In this capacity he leads a team of dedicated professionals focused on information and cyber security of ADM information, people and resources. With over 20 years of experience dedicated to information security Thomas has demonstrated experience in defining and deploying cyber security strategies and programs for large and complex organizations.
He began his career as an information security professional while serving in the United States Army working for the Directorate of Information Management. Upon leaving the military full-time, he continued to serve in the National Guard for several years while working in law enforcement where he conducted criminal investigations, physical security assessments, and participated in court proceedings on an ongoing basis.
During his career he has led information security organizations across multiple industries, providing strategic direction and oversight that supported board derived business objectives while remaining in compliance to regulatory and industry standards such as PCI, GLBA, NIST, and ISO 27000.
He attended Clayton University where he obtained a Bachelors of Information Technology and holds multiple industry certifications including CISSP, CISM, and SANS. He is also a member of the Delta Community Credit Union Audit Committee.
Roy Hadley, Adams & Reese LLP
I am a trusted advisor to high growth companies, state and local governments, educational institutions, and family businesses. As a former general counsel and chief privacy officer in the corporate sector, I bring strategic vision, innovative thinking, and unparalleled focus to bear for your success.
I am also passionate about increasing diversity in all areas of technology. In addition to leading diversity efforts at law firms and in corporate America, I currently co-lead the Social Justice and Equity Task Force for the Technology Association of Georgia (TAG), whose mission is to increase diversity and equity in the Georgia technology community.
Named a “2021 Cybersecurity Leader” by Security magazine, I was also named a “Cyber-Security Visionary” by USBE Magazine; and one of Georgia's "Most Powerful and Influential Lawyers". I was recognized by Legal 500 for my work in M&A and by Savoy Magazine as a national “Top 100” lawyer. Further, I was named a “Game Changer” in Information Security by HUB Magazine and a 2020 Trailblazer by the Daily Report.
I also focus on compliance and governance, including internal investigations and board advisory services, and often serve a virtual CISO/CPO for clients. I also work with high profile families and family offices in the areas of privacy, cybersecurity and online risk management.
You can follow my thoughts on cybersecurity at https://twitter.com/GovCyberPrep.
A frequent speaker and author, I have appeared in The Wall Street Journal, USA Today, FOX News, Compliance Week, Gov. Tech. magazine, Security magazine, Healthcare Risk Mgmt., Inside Counsel, CIO.com, Homeland Security Today, Corp. Compliance Insights, Law.com, American City & County, National Law Review, and many other publications, and on radio and television.
I sit on the TAG Board and co-chair the Board of the TAG InfoSec Society. I am on the Advisory Board for the National Tech. Security Coalition and sit on the City of Atlanta's CIO Advisory Board. I am also on the Board of the Georgia Defense Industrial Base Taskforce, whose mission is to assist Georgia businesses with cybersecurity and CMMC compliance. I was also honored by the State of Georgia legislature for my work in cybersecurity.
I previously served as Special Counsel to the President of The American Bar Assoc. and as a special assistant attorney general for the state of Georgia.
I am on the UGA Board of Visitors, active in the community, and an Eagle Scout.
Passionate Information Security and Risk Management Leader with over 25 years experience in information technology spanning application development, security operations, IT risk management, IT compliance, process improvement and governance. Current responsibility for Information Security at Safe-Guard Products International, LLC.
Proven ability to build and lead cross-functional teams that produce exceptional results under tight deadlines and pressure situations. Demonstrated track record of developing departmental alliances and working with staff at all levels to achieve corporate business objectives. Solid experience in strategic planning, business continuity and budget management.
Specialties: CISM, CGEIT, ITILv3, CISSP (exp), HISP (exp)
Kevin Simmonds, Cyber Risk & Regulatory Partner at PwC
Kevin has over 17 years of experience assisting organizations with developing Information Security programs, developing sustainable Payment Card Industry (PCI) programs, overseeing technical assessments (e.g., penetration testing), and responding to cyber-attacks/breaches. As an advisor for various global organizations in the Financial Services, Retail & Consumer (R&C), Technology, and Healthcare industry, he has provided strategic guidance to solve complex business and technology issues.
Kevin also provides oversight for PwC's national Cyber Penetration Testing Team (CPT²). CPT² is a team of advanced penetration testers focused on executing Red Teaming exercises, traditional network-based penetration testing, dynamic application security testing (DAST), mobile application security testing, and various technical assessments for clients across all industries.
Specifically, Kevin has experience in the following areas:
- Cybersecurity Program Strategy Development
- Threat & Vulnerability Management Program Enhancements
- ISO Risk Assessments
- NIST Cybersecurity Assessments
- PCI Assessments, Remediation, & Strategy Development
- Attack & Penetration Methodologies/Assessments
- Web Application Assessments
- Infrastructure Security Enhancements (e.g., Servers, Network Appliances)
- Network Segmentation Strategy
Certified Information Systems Security Professional (CISSP)
PCI Qualified Security Assessor (PCI-QSA)