Season 4 Episode 6 - A Day in the Life: Data Protection and Privacy, Diane Tran

In this episode, Aparna Kadari speaks with Diane Tran about her role in the Data Protection Space. Diane shares the challenges organizations face to protect data in this Global age, the support system she has had in her family and how she continues to be a trailblazer supporting women in the Information Security space. She encourages women to hone their craft and create work life harmony in all areas of their lives. Please enjoy. 

HOST:
Aparna Kadari is an Information Security Director for Operations, Endpoint Security, and Cloud Protection Engineering teams at Fannie Mae.  She has an MBA with a double major in Pharmaceutical and Chemical Management from Fairleigh Dickinson University, and a minor in International Business from Wroxton College, Oxfordshire, UK. She is an avid Cyber Security speaker and an active blogger. She also writes poetry and has four anthologies published to her credit. 
She continues to be a mentor at the Girls in Technology (GIT) and Women in Technology (WIT); served as Vice-Chair for the WIT Mentor - Protege program, and as the ATA Convention Women's Forum Chair. She has been involved with community give-back organizations like ASCEND ( a Pan-Asian Leadership group), Executive Women's Forum, developed online awareness campaigns such as STOP Elder Abuse (SEA), continues to advocate for equity for women in STEM and meritocracy in our education system.

SPEAKER:
Diane Tran is an innovative leader with a unique background consisting of cross-disciplinary skills and experience in Data Protection and Privacy, Information Security and Information Technology. 

As a leader, she strives for continuous improvement while leading high-performance teams in diverse and dynamic environments. She currently leads the Data Protection program with a big focus on Data Loss Prevention. The program’s objective is to ensure data is well protected while supporting regulatory mandates and business priorities. It includes the development and implementation of enterprise-wide data management policies, control & governance frameworks, and technical capabilities.

In this episode, Rachel sits down with Sai and they speak about Sai's journey from being a technologist, to challenging herself in various roles and responsibilities in Governance Risk and Compliance and later moving to the C-suite. Sai shares her insights with others about career development, and how to be an advocate and mentor to others.

HOST:
Luyao (Rachel) Chen is a Senior Manager with Schellman & Company based in Austin, TX, specializing in managing and conducting examinations and compliance engagements including SOC 1, SOC 2 SOC 3, HIPPA, and ISO 27001.  Luyao has worked with organizations ranging from start‐ups to fortune 500 companies across various industries including technology, energy, cloud services, communications, healthcare, legal and financial services.

GUEST SPEAKER:
Sailakshmi Santhanakrishnan ( Sai) is Professional Services – Senior Security Assurance & Advisor for AWS.  She is collaborative, result driven cloud risk, compliance and security executive who has enabled Fortune 100 & 500 organizations to successfully deliver highly visible and significant regulatory, compliance and technology initiatives.

As a trusted advisor, her core strengths are in partnering with the C-suite and business segments to enable their cloud adoption journey to build resilient and regulatory-compliant organizations in the Cloud. 

Sai enjoys global travel and learning about cultural variances. Sai is involved in her community as a NextGen advisor, volunteer, and mentor and as a guest faculty University of Texas, Dallas.  

In this episode, Preeti conducts an engaging interview with Ashwini Rao, the co-founder and CEO of Eydle. Throughout their conversation, Ashwini talks about her career in cybersecurity, as well as the impact of her findings within the field. We hope that you will enjoy it and thank you so much for listening!

Guest - Ashwini Rao
Ashwini Rao, PhD is a cybersecurity expert, and Cofounder and CEO of Eydle, a startup that protects people and brands from impersonation scams on social media. Previously, she was the CISO at Spring Labs. She has also worked at companies such as Qualcomm and Appian. Her research has been recognized by the Federal Trade Commission, has been used to support a seminal privacy-related case in the US Supreme Court, and has been cited in the Big Data and Privacy report by the President’s Council of Advisors on Science and Technology. Her research has been covered by the popular press including NPR, Scientific American and New Scientist.

Host - Preeti Ravindra
Preeti solves security problems with data and math with industry experience working at the intersection of security and AI. She has experience developing and operationalizing machine learning key differentiator solutions to solve cybersecurity problems in security operations, vulnerability management and endpoint protection. Her unique value proposition is working cross-functionally to help security teams succeed in adopting data science and machine learning to deliver business value. She gives back to the cybersecurity community by sharing her work at conferences and supporting women in cybersecurity through podcasting. 
 
Preeti has a Master's degree in Information Networking with a Cybersecurity concentration from Carnegie Mellon University. She has held different roles such as Security Researcher, Applied Researcher, Machine Learning Engineer and Data Scientist. Currently, she is an Information Security Manager at BetterUp leading the security insights and automation team operating at the intersection of security and data science, helping all security teams understand, prioritize and action on their security gaps and risks in a data-driven way.

Hello and welcome to Season 4 Episode 3 of the NextExec Podcast. In this episode, Katie sits down and has a candid conversation with Aparna Kadari, the Information Security Director at Fannie Mae. From their conversation we learn about Aparna's aspirations of being a journalist, her career in pharmacy and the events leading up to her career change to Information Security. She discusses her culturally diverse background and how that has helped to shape who she is today as a mentor, friend and leader to the teams she currently supports.  Please enjoy.

Guest -  Aparna Kadari
Aparna Kadari is an Information Security Director for Operations, Endpoint Security, and Cloud Protection Engineering teams at Fannie Mae.  She has an MBA with a double major in Pharmaceutical and Chemical Management from Fairleigh Dickinson University, and a minor in International Business from Wroxton College, Oxfordshire, UK. She is an avid Cyber Security speaker and an active blogger. She also writes poetry and has four anthologies published to her credit. 

She continues to be a mentor at the Girls in Technology (GIT) and Women in Technology (WIT); served as Vice-Chair for the WIT Mentor - Protege program, and as the ATA Convention Women's Forum Chair. She has been involved with community give-back organizations like ASCEND ( a Pan-Asian Leadership group), Executive Women's Forum, developed online awareness campaigns such as STOP Elder Abuse (SEA), continues to advocate for equity for women in STEM and meritocracy in our education system.

Host - Katie Margraf
Katie Margraf is a Vice President of Information Security at Citi Bank. She has experience in several cybersecurity and assurance disciplines and business.

Hello and welcome to Season 4 Episode 2 of the NextExec Podcast. In this episode, Ashley speaks with Joyce Brocaglia the founder of the Executive Women's Forum (EWF) about her vision some 20 years ago and what the EWF is today. They discuss the sisterhood this platform has created, how the EWF has impacted growth in the lives of conference attendees and their corporate benefactors as well as the trajectory created by the various programs that have been instituted over the years. Please enjoy.

Guest - Joyce Brocaglia
Joyce Brocaglia is a visionary entrepreneur who created both the first executive search firm specializing in cybersecurity and a ground-breaking membership organization that builds women leaders in cybersecurity, risk, and privacy.Joyce founded Alta Associates in 1986 and today Alta is the most prominent executive search firm specializing in Cybersecurity, IT Risk Management and Data Privacy. Alta, ranked one of the top 50 executive search firms in the US has an unprecedented track record of placing Chief Information Security Officer’s and building world class organizations.

In March of 2022, Alta was acquired by Diversified Search Group, the largest women-led, women-founded executive search firm. Joyce is the Global Cybersecurity Practice Leader. This joining of forces has expanded Alta’s search capabilities throughout the C-Suite and into the boardroom. Joyce is a business advisor to her clients who has gained the trust and respect of the industry’s most influential executives by accomplishing their strategic and diverse hiring goals. 

For over three decades Joyce has helped to define, elevate, and integrate the role of cybersecurity leaders and professionals in firms ranging from private equity, venture-backed growth companies to the world’s largest and most complex global corporations.  Joyce is the leading authority on the recruitment of Chief Information Security Officers. She is a career advisor to executive thought leaders, sought after for her deep knowledge of the industry, market conditions, and business intelligence.

Joyce is a fierce advocate for women and has dedicated her career to advancing women leaders in cybersecurity, risk and privacy. In 2002, Joyce founded the Executive Women’s Forum ( EWF). Today the EWF is the largest member organization serving over 15,000 emerging leaders as well as the most prominent and influential female executives in their field.

With over 80 Corporate Benefactors globally, the EWF is turbocharging the advancement of their DE&I and ESG goals. The EWF Leadership Academy equips women with the self-awareness, resiliency, and skills necessary to compete for leadership roles. The EWF Cybersecurity Women on Capitol Hill Symposium strengthens public-private relationships. The Carnegie Mellon University, Joyce Brocaglia Endowed Fellowship Fund provides scholarships to underrepresented students.

Host - Ashley Baich
Ashley Baich is a Cybersecurity Senior Analyst at Accenture on the Cyber Investigation, Forensic, and Response team (CIFR). with experience in many disciplines of cybersecurity.  Her analytical background in marketing, communications, technology, and business development inform her mindful but competitive approach.

Ashley is fueled by her desire to bridge the communication between IT Professionals and Business Executives.  She considers herself a ‘forever student’, eager to continue to build her academic foundation to be innovative and forward thinking in the world of cybersecurity.  She is in the process of earning her MBA in information security and is an active participant in the EWF, currently as a co-lead for the Rising Leader Forum.  

In this episode, Liz sat down with Linda to discuss her journey from being in academia to having a career in Law Enforcement and to her current role as a Senior Incident Response Analyst. Linda highlights the similarities between her time as a detective specializing in digital forensics and her current role within the private sector. She also shares advice for those who are considering a career within the Technology space whether they are fresh out of college or for those considering a career switch. Do enjoy!

Guest: Linda Smith 
My name is Linda Smith and I like to break hacker’s hearts. I am also the Founder of Codify Zone a Tech-Education company where children learn programming, logical and critical thinking skills. I am an ex-cop with extensive experience in the field of Digital Forensics.

Currently I am a Senior Incident Response Analyst with one of the best companies in the field of cyber security, Sophos. I am a mom of 2 beautiful children and a wife, in my spare time I run to support local and international charities.  I am a workout freak, and I can’t sit still. I love to travel, boxing and I absolutely could not live without caffeine.

I love what I do
I do what I love
I do what I do to protect business and humans.

Host: Liz Jaluague

Liz Jaluague is a Cyber Testing Associate at RSM Canada where she performs penetration tests for clients in a wide span of industries. Her previous work experience includes full-stack development, cloud automation, and security governance consulting at a Big Four firm. She earned a BSc in Biochemistry and a postgraduate certificate in Computer Security and Digital Forensics.

Liz serves as a mentor in several organizations for people who are in their first cybersecurity role or looking to enter the field. She also co-leads the EWF's Podcast Action Team.

• https://attack.mitre.org/matrices/enterprise/cloud/
• https://cloudsecurityalliance.org/research/working-groups/top-threats/
• https://tldrsec.com/
• https://cloudseclist.com/
• https://acloudguru.com/
• https://madhuakula.com/ (great workshop guy, some resources on his site too)
• https://aws.amazon.com/certification/
• https://cloud.google.com/certification
• https://www.lastweekinaws.com/
• https://meanwhileinsecurity.com/

In this episode, Ashley chats with Inhel, a Senior Director of Information Security Engineering at BD, one of the largest global medical technology companies in the world. With privacy in healthcare at the forefront of current events, our guests delve into the nuances of the medical device industry. Inhel also provides actionable advice about career transitions, navigating the workplace, and other lessons learned from her experiences in the field.

Guest:

Inhel Rekik is the Sr Director of Information Security Engineering at BD, a global medical technology company that is advancing the world of health by improving medical discovery, diagnostics and the delivery of care. She currently leads all information security engineering initiatives for Enterprise IT, BD products, manufacturing/OT and R&D. Before joining BD,  Inhel was the Director of Health Technology Security at MedStar Health where she founded the program of medical device security, IoMT and IoT security.

Prior to moving into information security, Inhel held various roles of Healthcare Technology Management in HDOs. Inhel is CISM certified. Inhel pursued her education in Canada where she received her Bachelor’s degree in Computer Engineering from Laval University and her Master’s degree in Biomedical engineering from Polytechnic School of Montreal. Inhel is an active member of HISAC Medical Device Security Information Sharing Advisory Committee, MDIC (Medical Device Innovation Consortium) and EWF (Executive Women Forum). Awards include Intelligent Health Association (IHA) Grand Award and (IHA) Improving Patient Care and Health Delivery Award.

Host:

Ashley Baich is a Cybersecurity Consulting Analyst at Accenture with experience in many disciplines of cybersecurity.  Her analytical background in marketing, communications, technology and business development inform her mindful but competitive approach.

Ashley is fueled by her desire to bridge the communication between IT Professionals and Business Executives.  She considers herself a ‘forever student’, eager to continue to build her academic foundation to be innovative and forward thinking in the world of cybersecurity.  She is in the process of earning her MBA in information security and is an active participant in the EWF, currently as a co-lead for the Rising Leader Forum.  

In this episode, we’re bringing to you a discussion around critical national infrastructure with our host Kristen and her guests Chantel and Sandy. With OT technologies taking prime spot in news headlines with the recent ransomware attacks, our guests provide their insight on the different threat vectors that OT face with components of critical national infrastructure being exposed to the internet. Sandy and Chantel talk about how IT and OT can come together and how regulatory bodies are responding  to tackle the external adversaries that are exploiting the gaps in the dynamics of IT/OT and Cloud. 

Guests:

Chantel Haswell

Chantel Haswell, PMP, is a Deloitte Advisory Manager within the Cyber Risk Services practice within the East Region.  Chantel has over 15 years of experience in the Energy industry, with a focus on the Power and Utilities sector.  In particular, Chantel has significant experience in regulatory reliability and compliance standards, including NERC Order 693 and Critical Infrastructure Protection (CIP).  Broadly, her activities have included Project Management, Cyber Policy development, Cyber metrics reporting, Compliance Training development and implementation, and overall Compliance program support and internal controls implementation.  Most recently, Chantel supported a large Cloud Service Provider (CSP) by performing analysis of the implications of Power & Utility customers hosting NERC CIP assets on the cloud.

 Sandy Bacik

Sandy Bacik, CISSP, ISSMP, CGEIT, CISA, CDPSE, PCI QSA, is CipherTechs’ Director Audit & Compliance, has over 20 years’ direct information security and operational experience in the areas of IT Audit and Compliance, BCP/DR, Incident Response, Physical security, Privacy, Regulatory Compliance and Audit, Policies/Procedures, Operations, and Management. With an additional 15 years in Information Technology Operations.  Ms. Bacik has been heavily involved with local, national, and international security industry events.  Ms. Bacik is the author of Building an Effective Security Policy Architecture and a contributing author to the past years of Information Security Management Handbook.

Host:

Kristen Wilbur, CPA, CISSP, CCSK, CISA, ISO 27001 Lead Auditor, is a Director at Schellman & Company LLC, with over 10 years of experience in providing IT attestation and compliance services. Kristen has evaluated risk and controls for Global 1000, Fortune 500, and regional companies during the course of her career with a strong focus in the technology sector. Kristen currently leads the New York City practice at Schellman where she specializes in SOC 1, SOC 2, ISO 27001, and HIPAA reporting. In her portfolio she also oversees large scale engagements that include assessments around FedRAMP, HITRUST, and Privacy.

In this episode of the Next Exec podcast, Ashley sits down with Christa White, Vice President of Customer Success and Services at Protenus, a healthcare compliance analytics platform that empowers health systems to monitor patient privacy and drug diversion through artificial intelligence. Christa shares her journey to Customer Success, the importance of her role and a customer friendly view of the in depth analytics that build trust, uncover patient risk, and identity potential theft and misuse of controlled substances in healthcare organizations. 

Guest: 

Christa White is the VP, Customer Success and Services at Protenus. She has been a member of the Protenus team since October 2016. In her time at Protenus, she has grown the Customer Success division from a team of one to a team of six Customer Success Managers (CSMs) and six professional services consultants. Her role involves collaborating across the revenue, product, and technical operations teams to streamline and optimize the customer journey, and crafting meaningful customer relationship management initiatives. She is also the community manager for the Protenus PANDAS (People and Analytics) user group, which hosts quarterly webinars and an annual conference with over 250 compliance professionals at the top healthcare organizations across the country. 

Prior to Protenus, Christa gained experience in leadership, customer engagement, training, and support for software platforms. She spent eight years at Booz Allen Hamilton as a Senior Technologist. Her experience there ranged from managing a support/training team for thousands of global users to developing and delivering precision technical documentation for DoD clients. Christa holds an MBA from the combined University of Baltimore/Towson University program. She received her BS in Applied Mathematics with a minor in Economics from Loyola University Maryland.

Host:

Ashley McArthur-Dean is a Senior Consultant at Deloitte the Risk & Financial Advisory practice with a focus in Cyber Data Privacy. She has over ten years of experience in the healthcare industry including privacy monitoring, data governance and project execution. She has experience and knowledge in HIPAA Security and Privacy Rules, compliance, information security, data analytics, risk management and privacy regulations. She previously led the planning and execution of training, workflow, and operational readiness during mergers & acquisitions, supported enterprise-wide compliance and privacy initiatives including audit readiness, program maturity, and access / process controls. Ashley has provided services to clients in the commercial, healthcare, and life sciences industries.

Ashley has the Project Management Professional (PMP) certification, is OneTrust Certified, and has her Masters in Business Administration.