2021 Philadelphia/Washington, DC Virtual
CISO Roundtable

#IANSPhiladelphia #IANSDC #IANSEvents

Tuesday, October 5, 2021 | 8:55 AM - 12:30 PM ET
Web Conference, Philadelphia and Washington, DC Metro Areas

This roundtable at the Philadelphia/Washington, DC Virtual Forum is designed exclusively for CISOs and senior level information security executives to learn and share insights in a confidential setting.

The curriculum will incorporate a blend of strategic content, workbook exercises, and peer discussion to help with long-term success as a leader. Session themes for the day include:


Let your colleagues know you're coming!

This event has ended.

Check out our other upcoming events!

View All Events
*Receive 1 CPE credit for every hour of attendance at our events.


8:55 AM - 9:15 AM

IANS Opening Remarks and Introductions

Jason Cathey


Jason Cathey is an Arkansas native and Alumni of Arkansas State University where he graduated with a Bachelor of Science degree in Management Information Systems. Since 2006, Mr. Cathey has held key management roles in Information Technology, Bank Operations, and Information Security for financial institutions ranging in total assets from 400M to 27B+. He is currently the CISO for Bank OZK (responsible for Information Security, Cybersecurity, Vendor Risk Management, Data Governance, and Data Privacy), President and Board Member of InfraGard Arkansas, Board Member of ISACA - Central Arkansas Chapter, and holds active CISSP, CISM, GCIH, and CDPSE certifications. He is also an active member of InfraGard, ISACA, FS-ISAC, ISC2, and FBI Citizens Academy Alumni.

Paul Connelly

Paul Connelly

Chief Security Officer, HCA Healthcare

Paul Connelly is Chief Security Officer and leads the programs for Cyber Security, Privacy, Information Governance, and Physical Security for HCA Healthcare, one of the nation’s leading providers of healthcare services.  The Company comprises more than 2,000 sites of care, including 185 hospitals as well as surgery centers, freestanding Emergency Rooms, urgent care centers, and physician clinics in 21 states and the United Kingdom.  HCA Healthcare has more than 35 million annual patient encounters.
Paul started as an information security analyst at the National Security Agency in 1984, spent nine years as the Information Security Officer at the White House, and six years as a partner leading an information security audit and consulting group at PricewaterhouseCoopers. He has led HCA’s program since 2002.
Highlights of Paul’s career include:

  • The first Information Security Officer at the White House, serving under Presidents Ronald Reagan, George H.W. Bush, and Bill Clinton. 
  • The first civilian Presidential Communications Officer, leading communications and emergency support for the President during travel throughout the world.
  • Inducted into the White House Communications Agency Hall of Fame.
  • Recipient of the federal government’s top award for achievement in Information Security, the Rowlett Trophy.
  • Recipient of the Private Sector Information Security Executive of the Year Award for North America.
  • 32 members of Paul’s teams have been selected as Chief Information Security Officers at other organizations.
Paul has Bachelor’s and Master’s degrees in Resource Economics from the University of Florida, completed the US Naval War College National Security Studies program, holds the National Association of Corporate Directors/Carnegie Mellon University  Certificate in Cybersecurity Oversight, and is part of the Leadership Nashville class of 2018.

9:15 AM - 10:00 AM

CISO 1:1 – Ask Me Anything

with Jason Cathey and Paul Connelly

Two CISOs walk into a bar and… end up talking shop because that’s what we do in infosec. In this session, Jason Cathey, CISO for Bank OZK and Paul Connelly, CISO for HCA Healthcare will have a one-on-one interview, candidly discussing their perspectives on:

  • Current events and developments in the security market.
  • Running a team and aligning with the business.
  • Managing the stress of the job and growing as a CISO.

Part way through the session, we’ll open the floor for participation. Come with questions ready and expect to leave with actionable insights from your peers.

10:00 AM - 10:10 AM

Solution Provider Case Study #1

Jonathan Scott Gration

Ambassador Scott Gration

Major General, USAF (Ret)

Ambassador Scott Gration has had a unique career as a diplomat and military leader. His diplomatic assignments have included serving as the United States (US) Ambassador to Kenya, as US Special Envoy to Sudan, and as Special Assistant to the President in the White House. Scott Gration retired as a Major General from the US Air Force after serving for thirty-two years as a fighter pilot and senior military leader.

Having spent nearly half his life in Africa and the Middle East, he has a deep and profound understanding of Kenya and East Africa, including the language and culture of each region. Scott remained in Kenya following his diplomatic assignment and served as a businessman and humanitarian for another five years. He now serves as a business consultant and pubic speaker.

Ambassador Gration recently published his unique and interesting experiences in an inspirational memoir, “Flight Path: Son of Africa to Warrior-Diplomat.” He and his wife Judy have settled in Winter Garden, Florida. They have four children and eight grandchildren.

10:10 AM - 10:55 AM

Operating Under Scrutiny: Using Forgiveness & Servant Leadership to Handle the Pressure

with Ambassador Scott Gration

While serving as U.S. Ambassador to Kenya during the Obama Administration, retired Air Force Major General Scott Gration was brought to trial, accused of shortcomings in his role. He was forced to resign his position. He was fully acquitted of all charges, but the damage was done. This kind of adversity is familiar to CISOs, who often work knowing that, regardless of the details, they’ll be the first to take blame for data breaches. In this session, Gration will discuss how to:

  • Use forgiveness as a tool to let go of bitterness from being scapegoated and continue to lead effectively.
  • Define & prioritize the most important tasks in high-tension environments that put leaders under a microscope.
  • Apply servant leadership principles to build trust with your team.

The pressure associated with the CISO role isn’t going anywhere. This session offers actionable guidance on leading through that pressure.

11:00 AM - 11:10 AM

Solution Provider Case Study #2

Aaron Turner

IANS Faculty

Aaron Turner is the Founder & CEO of Siriux Security, a SaaS posture management company which partners with IANS on M365 security consulting projects. He is also a member of the board and security advisor to HighSide and CTO of Integricell. Aaron is a long-serving member of the RSA Conference Program Committee, helping select educational content presented at the annual RSA Conference.

11:10 AM - 11:40 AM

Bridging the M365 Security Gap – Managing Risk in Microsoft’s Cloud

with Aaron Turner

The proliferation of M365 in enterprise settings has exposed organizations to new security risks as a nice-to-have SaaS collaboration tool is now critical. Based on extensive consulting on M365 security configurations, IANS Faculty member Aaron Turner will offer an in-depth look at this evolving threat climate. In this session, he’ll cover:

  • Lessons learned from IANS customers' efforts to improve the security posture of their M365 tenants.
  • Best practices on where to focus resources and how to deal with Protection, Detection and Response needs moving forward.
11:40 AM - 11:50 AM

Solution Provider Case Study #3

11:50 AM - 12:00 PM

Vendor Feedback Session

Throughout the roundtable, three vendors will provide short case studies showcasing how they believe their solutions can deliver value. The feedback session is a discussion of those case studies and solutions without the vendor present. It’s an opportunity to get inside intelligence on vendors you may be considering for your environment.
Shamla Naidoo

Shamla Naidoo

IANS Faculty

Shamla is the Head of Cloud Strategy and Innovation at Netskope and a former Managing Partner and Global CISO at IBM. She is a Board Director at both QBE and Stonebridge Acquisition Capital and a Board Member at ReferencePoint. Shamla’s experience spans 38+ years in a variety of sectors and 6 continents, making her an expert in cross-cultural collaboration and working across industries. She is recognized as a leader in applying security to enable priorities of the business. Her background also includes authoring and teaching several courses for the University of Illinois Chicago School of Law in technology, security, and privacy law. Shamla coaches professionals on leadership, board communication and how to align security with strategic business initiatives. 

Steven Martano

Steven Martano

The Caldwell Partners, Consultant, Cyber Security Practice

Steven Martano is a consultant in Caldwell Partners’ Cyber Security Practice. He recruits across the information security function, including CISOs, CSOs, cyber advisory board members, and cyber leaders in professional services.

Steven spent seven years at Russell Reynolds Associates, where he helped build the Cyber Security and Supply Chain functional practices, serving as a member of the global Corporate Officers practice.

Earlier in his career, Steven worked at Sikorsky Aircraft (then part of United Technologies Corporation), where he led operations and financial planning for multi-billion contracts for the U.S military and key international customers in the Middle East, Asia and South America.

In addition to his professional career, Steven serves as an editor and featured writer at Beyond the Box Score, SB Nation’s baseball analytics platform, and is a contributing columnist to FanGraphs’ The Hardball Times. He holds a BA from The Catholic University of America and a master’s degree in economics & finance from Trinity College.

12:00 PM - 12:35 PM

Career Development Session

with Shamla Naidoo and Steven Martano
IANS is developing a CISO Competency Framework tracking the skills and competencies CISOs need to succeed as they mature in the role, both today and over the next 36 months. During this session, Shamla Naidoo, Former CISO and managing partner at IBM and Independent Director at QBE NA will join Artico Search’s Steve Martano to:

  • Share the highlights of this research
  • Bring in experienced CISOs to discuss how they’ve developed new competencies over the course of their careers
  • Provide Q&A with executive recruiters so you can get feedback on how the market perceives these competencies and what you can do to demonstrate your capabilities


2021 Philadelphia/Washington, DC Virtual Facilitators


Tim Bernard

Area Vice President, IANS
Tim Bernard is the Area VP for IANS. He’s responsible for new client acquisition as well as customer success and retention in the North. Since joining IANS in 2009, Tim has played a role in growing the business from 50 customers in 2009 to over 300 to start 2020. It’s a true up-and-comer story, starting with his boyhood adoration for the perpetually woeful NY Mets, his Business Economics degree from Providence College, his unrequited love for PC’s Friar Basketball, and decade+ helping CISOs to elevate their missions. There’s never a dull moment in this industry, and he loves the challenge because the mission matters. Tim is married and has 2 kids under 10 years old. Whatever he’s doing, he would probably rather be skiing.

Web Conference

Registrants will receive a logistics email with web conference meeting information one day prior to the event.

Attendee Contact


Check out IANS other upcoming events