Faculty Directory

David is the founder and principal consultant of HazarDSec LLC and co-founder of Next Level3. He also provides cybersecurity consulting services and training as an author and instructor for the SANS Institute. With more than 20 years of technical experience, David has spent over 15 years helping organizations establish and implement security controls and practices.

Jessica Hebenstreit is the AVP of Information Security at Benevity with deep expertise in building and maturing security programs. Prior to Benevity, Jessica held roles at both Quorum Software and Eptura. She has led global teams across Security Operations, GRC, and Engineering, and is known for making complex security challenges actionable for both executives and practitioners. Jessica has consulted with many of the largest companies in the world including many Fortune 100.

Rebecca is Founder, Owner, and CEO of Rebecca Herold, LLC aka The Privacy Professor®, an information security, privacy, IT, and compliance services firm. She also co-founded Privacy Security Brainiacs, a SaaS platform, early 2020 with her oldest son, Noah. Rebecca also serves as a Distinguished Ponemon Institute Fellow and as an Advisory Board Member for multiple technology businesses and startups. Additionally, Rebecca serves as an expert witness for diverse cases, is an advisor on multiple high school and college/university curriculum and program boards, and hosts a VoiceAmerica radio show called “Data Security & Privacy with the Privacy Professor.”

Chris Hetner is a senior executive and board director specializing in cybersecurity, risk management, and regulatory compliance. He advises the NACD, chairs cybersecurity and privacy at Nasdaq, and serves on several boards and advisory roles, including MIT Sloan and Simulint. Formerly, he held leadership positions at the SEC, Moody’s, Marsh, EY, GE Capital, and Citi, and contributed to U.S. Treasury and Homeland Security initiatives. Hetner is recognized for elevating cyber risk and AI governance to executive and board levels, aligning cybersecurity strategies with business goals, and launching programs across public and private sectors.

Heather Hinton is a four‑time CISO, cybersecurity executive, and trusted advisor with more than 30 years of experience and over 75 issued patents in security and identity management. A two‑time CISO 100 honoree, Top 40 CISO to Watch, and inductee into the Women in Technology Hall of Fame, she is also a sought‑after mentor and coach for cybersecurity professionals. As a Lecturer at Harvard Extension School, Heather teaches Product Security, Secure Operations, and Ethical Hacking, and leads capstone projects for the cybersecurity master’s program. She has led security initiatives at leading technology companies, with deep expertise in cloud‑native security, global security operations, identity and data protection, and building high‑performing teams.

Chad Holmes is a cybersecurity strategist with over 20 years of experience helping organizations protect critical systems, enable secure development, and build resilient teams. With deep expertise in healthcare security, application security, and hands-on training, he combines technical insight with business acumen to drive meaningful outcomes. Whether guiding CISOs through strategic decisions or mentoring the next generation of security professionals, Chad is passionate about developing talent and making security a catalyst for innovation.

With 20 years of IT and cybersecurity experience in the U.S. Department of Defense as well as federal and commercial industries, Chris has held roles in security architecture, engineering and GRC, as well as security leadership, including CISO. He has deep expertise in cloud-native security, compliance innovation, vulnerability management, application security, DevSecOps and software supply chain security. Chris is currently the president and co-founder of Aquia and a cyber innovation fellow with CISA.

Nick has over 25 years in the security industry as a consultant and IT security officer. He is the Co-founder and CEO of StackBob.ai, the first Agentic IGA solution that enables identity governance across any application without traditional integrations. He also provides executive strategic guidance on IAM and security program development through authoring articles and speaking at industry conferences. Nick specializes in large enterprise security implementations, IAM, security program development and application hosting implementations for numerous public and private organizations.

Lee is a Security Go-To-Market Strategist for Splunk, a Cisco Company, where he helps businesses build resilient cybersecurity functions, and realize the greatest value from their investment in their security program. He has worked in security and IT for four decades, starting as a programmer and working security roles from admin to CISO. He has been responsible for information security at the Department of Justice, managed cybersecurity programs in the healthcare sector impacting 99% of US citizens, and served as CISO for a financial services company with global operations. Lee has also taught thousands of cybersecurity professionals as a mentor.

Todd Inskeep is CEO of Incovate Solutions and hands-on advisor to CISOs, CIOs, and business leaders. He brings 25+ years of cybersecurity & innovation at NSA, Bank of America, Booz Allen, & more. Todd built one of the first consumer banking MFA programs, managed major ransomware recovery efforts in healthcare, and routinely advises clients on building programs to meet NIST CSF, HIPAA, and cyber insurance needs. He's led projects on identity & access management, risk quantification, incident response, plus program assessment and maturity. He serves as a fractional CISO across industries, currently building out AI governance programs.

Author of “Wireless Security Architecture”, “Low Tech Hacking” and other titles, Jennifer (JJ) Jabbusch has been named as a Top 10 Power Player in cyber security by SC Magazine. As an advisor to more than 50 Fortune-rated companies and hundreds of others, JJ brings a uniquely energetic approach to cyber security, blending deep technical experience with strategic guidance. Her ability to connect with audiences and articulate technical concepts in simple terms has taken her all over the world. She is also the creator of the Mindfulness-Based Leadership for Infosec workshop series. Jennifer is the founder and principal advisor of Viszen Security, offering technical strategy and coaching solutions to CXOs and practitioners.

Steven is an accomplished Global Senior Executive and Board Member with more than 30 years of success, and a diverse background spanning healthcare, software, agriculture, retail, wholesale, distribution, chemical manufacturing, and ecommerce companies ranging from startup to well-established to turnaround. Steven is an invaluable asset to a company employing new technologies to transform and grow, engaging data assets to build competitive advantage, mitigating future-looking risks like disruptive business models and cyber-attacks, working with private equity and activist investors to refresh and retool, developing emerging technologies and services that increase value for the customer and elevates the company’s market position.

Throughout his Executive career, Steven has held business or IT positions with Workday, Agriliance, HB Fuller, First Health, CIGNA, and Transora, and Aramark. He also teaches an IT leadership forum in NYC for Fortune 500 companies. A seasoned Board Member, Steven has held positions with RAPID, Gemini Ventures, and DEMO CIO Council. Additionally, he is a Founding Member of the Agricultural CIO Forum and the CIO Executive Council. Proving his thought leadership, he was selected by Computerworld Magazine as one of the Premier 100 IT Leaders; CIO Executive Council as Leader of the Year; InformationWeek as a Relentless Innovator; Hewlett-Packard as a Member of their Big Data Customer Advisory Council; and inducted into the CIO Hall of Fame in 2018.

Dave is the Founder and Owner of TrustedSec, an information security consulting firm, and Binary Defense, a AI-Focused Managed Detection and Response (MDR) that detects attackers early to prevent large-scale invasions. In addition to creating several widely popular open-source tools, including 'The Social-Engineer Toolkit' (SET), PenTesters Framework (PTF), and Artillery. David has also released security advisories, including zero-days, with a focus on security research.

Lee Kim specializes in cybersecurity, data privacy, governance, compliance, and generative artificial intelligence. Her insights are informed by her scientific training, creative pursuits, and diverse professional background. She presents before a wide range of domestic and international audiences. She has significant experience with the media and has been featured on the Canadian Broadcasting Corporation (live and pre-recorded interviews), radio shows, and podcasts. She also has significant experience working in the public policy realm, including with Congressional staffers and various governmental agencies around the world.

By way of background, Lee is an AV preeminent peer review rated attorney (a distinction that only 10% of all attorneys have earned according to Martindale-Hubbell). (Note, however, that while Lee is an attorney, she does not provide legal services through IANS.) Additionally, prior to law school, Lee worked as a database, system, and web administrator at a major university, software company, and a major academic medical center.

Lee served as an analyst with the US Department of Homeland Security Analytic Exchange Program for seven years. Her teams’ research topics have included phishing, healthcare cybersecurity, patient safety, and maritime and port cybersecurity.

Lee serves as a Director of InfraGard Northern Capital Region and Vice Chair of the Policy Committee and Artificial Intelligence (AI) Taskforce of the American Bar Association Health Law Section. Previously, Lee served with the ISC2 Government Advisory Council Executive Writers Bureau.

Please note: The advice that Lee Kim provides through IANS is not legal advice and is not intended to be relied on as such. There is no attorney-client relationship.

AJ is the CISO for Hunter Strategy where he leads their Cyber Security consulting practice advising clients in public, private, and government spaces. His core skills include cyber security leadership, security architecture, third-party vendor risk management, program management, and general governance practices.

Prior to his current role, AJ has developed information security programs from the ground up leading extensive cybersecurity teams in support of globally distributed companies. AJ actively seeks opportunities to add value to organizations and measurably increase their overall security posture. As an active member in the information security community AJ is a member of ISSA, Infragard, and a regular at local events such as SecDSM and SecKC.