2021 Chicago/Columbus Virtual
CISO Roundtable

#IANSChicago #IANSColumbus #IANSEvents

Thursday, April 8, 2021 | 8:55 AM - 12:30 PM CT
Web Conference, Chicago and Columbus Metro Areas

This roundtable at the Chicago/Columbus Virtual Forum is designed exclusively for CISOs and senior level information security executives to learn and share insights in a confidential setting.

The curriculum will incorporate a blend of strategic content, workbook exercises, and peer discussion to help with long-term success as a leader. Session themes for the day include:


Let your colleagues know you're coming!

This event has ended.

Check out our other upcoming events!

View All Events
*Receive 1 CPE credit for every hour of attendance at our events.


8:55 AM - 9:15 AM

IANS Opening Remarks and Introductions

John Hultquist

John Hultquist

Vice President, Intelligence Analysis

John Hultquist leads the Mandiant Threat Intelligence analysis team. Prior to the acquisition of iSIGHT Partners by FireEye, John led iSIGHT’s cyber espionage practice and was responsible for creating the cyber espionage reporting line.

He has over a decade of experience covering emerging threats in cyber espionage and hacktivism and working in senior intelligence analysis positions in the U.S. Before working in cyber security, he worked with information sharing and analysis centers and was involved in counterinsurgency operations in the U.S. Army.


Jake Williams

IANS Faculty

Jake Williams, the CTO and Co-Founder of BreachQuest and Rendition Infosec, has two decades of experience in secure network design, penetration testing, incident response, forensics and malware reverse engineering. Prior to founding BreachQuest and Rendition Infosec, Williams worked with various government agencies in information security. Williams is an IANS Faculty Member and works as a SANS Analyst. He is a prolific speaker on topics in information security and has trained thousands of people on incident response, red team operations, reverse engineering, cyber threat intelligence, and other information security topics. Jake is the two time winner of the DC3 Digital Forensics Challenge, a recipient of the DoD Exceptional Civilian Service Award, and is one of only a handful of people to ever be certified as Master Network Exploitation Operator by the US Government.

9:15 AM - 10:00 AM

SolarWinds & Supply Chain Attacks: Insider Insights & Practical Next Steps

with John Hultquist and Jake Williams

The SolarWinds attack has become a new milestone for sophisticated, large-scale attacks. In this session, FireEye’s John Hultquist and IANS Faculty member Jake Williams will engage in a moderated conversation unpacking the ongoing implications of the attack. They’ll discuss:

  • Context around the attack: Who did it, what was the goal, how was it discovered, and what are the next shoes to drop?
  • Strategic impact: SolarWinds was far from the only vendor hit. What’s the latest here? MSFT’s role? FireEye and security firms’ role?
  • Where we go from here: Practical guidance on preparing for supply-chain hacks, managing software providers in your network, and understanding if it’s safe to assume other threat actors have compromised the same networks.

By the end of the session, the conversation will provide an insider look at the ongoing developments surrounding the incident and actionable recommendations you can bring back to your organization.

10:00 AM - 10:10 AM

Solution Provider Case Study #1

Jonathan Scott Gration

Ambassador Scott Gration

Major General, USAF (Ret)

Ambassador Scott Gration has had a unique career as a diplomat and military leader. His diplomatic assignments have included serving as the United States (US) Ambassador to Kenya, as US Special Envoy to Sudan, and as Special Assistant to the President in the White House. Scott Gration retired as a Major General from the US Air Force after serving for thirty-two years as a fighter pilot and senior military leader.

Having spent nearly half his life in Africa and the Middle East, he has a deep and profound understanding of Kenya and East Africa, including the language and culture of each region. Scott remained in Kenya following his diplomatic assignment and served as a businessman and humanitarian for another five years. He now serves as a business consultant and pubic speaker.

Ambassador Gration recently published his unique and interesting experiences in an inspirational memoir, “Flight Path: Son of Africa to Warrior-Diplomat.” He and his wife Judy have settled in Winter Garden, Florida. They have four children and eight grandchildren.

10:10 AM - 10:55 AM

Operating Under Scrutiny: Using Forgiveness & Servant Leadership to Handle the Pressure

with Ambassador Scott Gration

While serving as U.S. Ambassador to Kenya during the Obama Administration, retired Air Force Major General Scott Gration was brought to trial, accused of shortcomings in his role. He was forced to resign his position. He was fully acquitted of all charges, but the damage was done. This kind of adversity is familiar to CISOs, who often work knowing that, regardless of the details, they’ll be the first to take blame for data breaches. In this session, Gration will discuss how to:

  • Use forgiveness as a tool to let go of bitterness from being scapegoated and continue to lead effectively.
  • Define and prioritize the most important tasks in high-tension environments that put leaders under a microscope.
  • Apply servant leadership principles to build trust with your team.

The pressure associated with the CISO role isn’t going anywhere. This session offers actionable guidance on leading through that pressure.

11:00 AM - 11:10 AM

Solution Provider Case Study #2

Aaron Turner

IANS Faculty

Aaron Turner is the Founder & CEO of Siriux Security, a SaaS posture management company which partners with IANS on M365 security consulting projects. He is also a member of the board and security advisor to HighSide and CTO of Integricell. Aaron is a long-serving member of the RSA Conference Program Committee, helping select educational content presented at the annual RSA Conference.

11:10 AM - 11:40 AM

M365 Security – How the Pandemic Accelerated SaaS Collaboration and Increased Security Risks to Enterprises

with Aaron Turner

The pandemic has pushed businesses to become more reliant on M365, opening them up to new security risks as a nice-to-have SaaS collaboration tool quickly became critical. Dark Halo further complicated matters, using M365’s complexity to gain an entry point to attack. Join IANS Faculty member Aaron Turner for an in-depth look at this evolving threat climate. In this session, he’ll cover:

  • How Dark Halo used M365's complexity to blind security teams to attacker activity.
  • Hunting for Dark Halo artefacts in your M365 tenant.
  • Effective strategies to help security catch up to how businesses are using M365.

Turner will also discuss findings from consulting projects aimed at securing M365 configurations, leaving you with real-world strategies to employ in your environment.

11:40 AM - 11:50 AM

Solution Provider Case Study #3

11:50 AM - 12:00 PM

Vendor Feedback Session

Throughout the roundtable, three vendors will provide short case studies showcasing how they believe their solutions can deliver value. The feedback session is a discussion of those case studies and solutions without the vendor present. It’s an opportunity to get inside intelligence on vendors you may be considering for your environment.


Nick Mankovich

IANS Faculty

Nick is the CEO of CyberRisk Consulting, providing risk management advisory services for corporate boards and executive leadership. Trained in biological science, Nick worked extensively in R&D and has a long history of transformational leadership in R&D, product security, enterprise security and privacy, culminating in executive CISO roles in two Fortune 500 companies.

Steven Martano

Steven Martano

The Caldwell Partners, Consultant, Cyber Security Practice

Steven Martano is a consultant in Caldwell Partners’ Cyber Security Practice. He recruits across the information security function, including CISOs, CSOs, cyber advisory board members, and cyber leaders in professional services.

Steven spent seven years at Russell Reynolds Associates, where he helped build the Cyber Security and Supply Chain functional practices, serving as a member of the global Corporate Officers practice.

Earlier in his career, Steven worked at Sikorsky Aircraft (then part of United Technologies Corporation), where he led operations and financial planning for multi-billion contracts for the U.S military and key international customers in the Middle East, Asia and South America.

In addition to his professional career, Steven serves as an editor and featured writer at Beyond the Box Score, SB Nation’s baseball analytics platform, and is a contributing columnist to FanGraphs’ The Hardball Times. He holds a BA from The Catholic University of America and a master’s degree in economics & finance from Trinity College.

12:00 PM - 12:30 PM

Career Development Panel Discussion – CISO Competencies

with Nick Mankovich and Steven Martano

IANS is developing a CISO Competency Framework tracking the skills and competencies CISOs need to succeed as they mature in the role, both today and over the next 36 months. During this session, IANS Faculty member Nick Mankovich and Caldwell Partners’ Steve Martano will discuss:

  • Highlights of the competency research.
  • Practical actions CISOs can take to develop new skills on the job and mature in the role.
  • How the marketplace values various competencies for different types of CISO roles.

The session will conclude with an open question and answer time with Mankovich and Martano.

2021 Chicago/Columbus Virtual Facilitators


Collin Snow

Area Vice President, IANS

Collin is an Area Vice President at IANS and currently responsible for overseeing, managing and growing IANS End User Business Practice in the Mid-west, Mid-Atlanta and Southern portions of the U.S. Collin obtained his Bachelor of Science from James Cook University in Australia and holds graduate certificates in Applied Project Management and Business Analysis from Boston University.

Web Conference

Registrants will receive a logistics email with web conference meeting information one day prior to the event.

Attendee Contact


Check out IANS other upcoming events