Jonathan Nguyen-Duy is a Field CISO at Fortinet where he focuses on advising carriers, service providers and systems integrators on multi-domain risk management. With extensive experience in securing complex networks and hybrid-architectures, Jonathan is responsible for developing innovative solutions addressing the challenges of digital transformation – from edge-based computing to multi-cloud ecosystems. He specializes in security and governance issues pertaining to zero trust, insider threats, privacy, resilience and managed services.

Prior to joining Fortinet, Jonathan served as the Security CTO at Verizon Enterprise Solutions where he was responsible for strategic technology partnerships, the Verizon Cyber Intelligence Center, and the data science team that produces the annual Verizon Data Breach Investigations Report. His research experience spans root cause analysis of over 12,000 data breaches – providing great insight on effective risk management strategies.

Before that role, he led Managed Security Services and was responsible for data analytics and solutions supporting global enterprises and public sector agencies of all sizes. During this time, Verizon grew to become the industry’s largest and most analyst-awarded MSSP. A certified business continuity planner, Jonathan also developed Verizon’s resilience and advisory services.

Jonathan also served with the U.S. Foreign Service in Central America working on economic development and disarmament initiatives. He has more than 20 years of cybersecurity and BCDR/COOP experience – working through many business challenges including armed conflict, civil strife, labor strikes, natural disasters, terrorist attacks, network outages and a wide range of cyber incidents.

Jonathan is a widely published security expert and frequent speaker at industry conferences. He holds a BA in International Economics and an MBA in IT Marketing and International Business from the George Washington University.

Specialties: Cybersecurity, SIEM, SOAR, Data Analytics, Zero Trust, Artificial Intelligence, Machine Learning, CARTA, Physical Security, BCDR/COOP, Managed Services, Risk Management and Digital Transformation.

« show less

Leon Ravenna is Chief Information Security Officer at KAR Global. He leads KAR’s efforts in global security strategy, execution, and privacy and compliance services for the company’s more than 17,500 employees. A seasoned CISO, Leon has extensive experience in regulatory, compliance, and privacy, having managed ISO27001, HIPAA, SSAE-16, PCI, and NIST system builds and audits—in addition to holding a PMP. He is one of a very small group worldwide to hold six major Global Privacy certifications including CIPM, CIPP/ C and CIPP/ E, CIPP/ G, CIPP/ US, and FIP. Leon has more than 25 years of technology leadership experience in healthcare, financial services, and technology companies. He has also led nationwide support, web, and CRM development efforts, data center builds, and infrastructure for SaaS companies in the medical and financial space.

« show less

Mr. Forsyth provides over 15 years of experience designing and integrating technical cyber solutions for federal customers. He has a current CISSP, Certified Penetration Tester (GPEN), and has a Master’s degree in Information Security and Assurance. Kyle is knowledgeable and trained in multiple Cyber Domains including Cyber Analytics, Cloud Security, Cyber Forensics, Security Engineering, Risk and Compliance, and Offensive Security. He also has extensive experience as an ISSM/ISSO authoring and managing system policies, procedures, and Assessment & Authorization (A&A) packages for multiple customers and security programs.

Kyle also works regularly on Cyber Threat Hunting teams that leverage data science methods to look for threat-actor patterns and vulnerabilities in large amounts of log and PCAP data. Kyle has experience with various operating systems and many security tools like Kali, Wireshark, Nessus, Fortify, Zeek, FireEye, Cuckoo and several scripting languages. Mr. Forsyth also has experience with integrating system/software development best practices into projects using Python, Tableau, Spark, Hadoop, Hive, and D3.js.

« show less