Myrna Soto joined Comcast in September of 2009 after earning more than 20 years of focused Information Technology /Security experience and accolades within a variety of industries, including: financial services, hospitality, Insurance/Risk Management and gaming/entertainment.  In 2009 she Joined Comcast as, SVP & CIISO (Chief Infrastructure & Information Security Officer) for Comcast Cable and held this position until August 2015.  In that role, she was responsible for Enterprise Information and Infrastructure Security strategy and operations for Comcast Cable as well as several other business assets within Comcast Corp.  



Tim joined Aflac in April, 2014. Tim is responsible for the Aflac Global Security Program which includes Technology Risk Management, Physical and Logical Information Asset Protection, Information Security Program, Threat and Vulnerability Management, Cyber Security Operations and Incident Response, Information Technology Compliance and Risk Management, Security Engineering, Business Resiliency and Disaster Recovery.  Tim is the executive responsible for the protection and availability of the information assets for the world’s leading provider of supplemental and voluntary insurance. Tim leads various securit‍‍‍y and risk committees and structures to help business partners accelerate in a safe and sound manner, while protecting Aflac clients.

“An exceptional conference experience through cutting edge content, peer-to-peer information sharing, and ready to implement solutions.”

Click to Inquire about Attending Security Leadership ExchangeClick to Inquire about Sponsoring Security Leadership Exchange

May 20-22, 2018 | Ponte Vedra Inn & Club, Ponte Vedra Beach, FL‍‍‍

Security Leadership Exchange is produced by the MIS Training Institute in conjunction with nGage Events LLC

© 2018 Security Leadership Exchange



Why Attend



nGage Events LogoMISTI Logo

May 20-22, 2018 | Ponte Vedra Inn & Club | Ponte Vedra Beach, FL

Security Leadership Exchange Logo

Why Sponsor


Jim Routh, CISM, CSSLP

Chief Security Officer


Myrna Soto, MBA, MS

Corporate SVP & Global CISO

Tim Callahan

SVP, Global Chief Security Officer


Devon Bryan

Executive Vice President and Chief Information Security Officer

The Federal Reserve System

David A. Cass

Global Partner Cloud Security Services & CISO Cloud & SaaS Operations


John Sapp



‍‍‍Kevin Haynes

Chief Privacy Officer


Hussein Syed


RJWBarnabas Health

Richard Rushing


Motorola Mobility

Daniel Conroy


‍‍‍United Technologies  

Mike Towers


Allergan  ‍‍‍

‍‍‍Joey Johnson


Premise Health


Jim Routh‍‍‍ is the Chief Security Officer and leads the Global Security function for Aetna. He is the Chairman of the NH-ISAC Board. He serves on the Board of the National Cyber Security Alliance and is a member of the Advisory Board of the ClearSky Security Fund.

‍‍‍He was formerly the Global Head of Application & Mobile Security for JP Morgan Chase. Prior to that he was the CISO for KPMG, DTCC and American Express.  Jim is the winner of the 2017 Evanta Breakaway Leaders Award, 2016 Security Alliance Award for Innovation, 2016 ISE Luminary Leadership Award, and many other awards.

John Sappis a visionary, strategic and certified Information Technology professional with more than 30 years of in-depth and cross-industry e‍‍‍xperience that includes healthcare, telecommunications, financial services, retail, hospitality and manufacturing. His career spans a progression of roles from Systems Operations and Network Administration, Software Engineering, Business Analysis, IT Project Management, Information Security, IT Risk Management, Disaster Recovery and Business Continuity Planning. As the Global CISO for Orthofix, John is currently focused on leading the development of strategic and innovative implementations of Information Security and IT Risk Management initiatives that leverage enabling technologies within the healthcare industry. He is doing this by applying practical, business-driven vision to develop sensitive data protection strategies that address the cyber value at risk.

‍‍‍Mr. Cass is the Global Partner of Cloud Security Services & Cloud CISO. He has global responsibility for all aspects of cloud security practices, processes, and policies across the IBM Cloud & Security Services Unit.  Mr. Cass serves as a regulatory SME and an Executive Steering committee member for IBM’s International Banking Customers. David is an active contributor to the FS-ISAC on Cloud Compliance and Security for financial services firms, and works closely with U.S., and International Regulators.

Previously Mr. Cass served as the SVP & Chief Information Security Officer for Elsevier.  Where he lead an organization of experienced legal, risk and security professionals that provided data protection, privacy, security, and risk management guidance on a global basis for Elsevier. He also served as the HIPAA officer for Elsevier.  David has over 4.5 years of experience running a regulated FTSE 100 enterprise in the cloud.

Richard Rushing is the Chief Information Security Officer for Motorola Mobility LLC. Richard participates in corporate, community, private, and government security councils and working groups, setting standards, policies, and solutions for current and emerging security issues. As Chief Information Security Officer for Motorola Mobility, he has led the organization's security effort by developing an international team to tackle  targeted attacks, cyber-crime, and emerging threats to mobile devices. He has organized, developed, and deployed practices, tools, and techniques to protect the enterprise's intellectual property worldwide. A much-in-demand international speaker on information security, Richard has spoken at many of the leading security conferences and seminars around the world.

Kevin Haynes is an experienced security and privacy professional currently responsible for the privacy program for a children’s healthcare system. His previously roles as an information security officer have provided Kevin with unique perspectives necessary to appreciate the bond that security and privacy have in information protection. He has been a presenter for MISTI, Microsoft, ISACA, and other industry partners.

Hussein Syed is the Chief Information Security Officer at RWJBarnabas Health, New Jersey’s largest integrated health care delivery system, providing treatment and services to more than two million patients each year. At RWJBarnabas Health, Hussein is responsible for information security and the organization’s HIPAA compliance and security governance program. Hussein and his team are responsible for information security functions for the healthcare system. A seasoned Information Technology professional, he has more than 22 years of experience. Hussein is currently the board chair for the Association for Executives in Healthcare Information Security (AEHIS).

Devon Bryan is Executive Vice President and Chief Information Security Officer (CISO) for the Federal Reserve System. As CISO, Devon oversees information security, including incident response, for the enterprise, ensuring information security architecture, standards, policies and programs remain effective and efficient. Devon came to the Federal Reserve from Fortune 500 payroll and human resources provider ADP, where led ADP’s information security strategy, collaborating across the company’s geographically dispersed business operations to ensure coordination, consensus, and effective execution across global operations. Prior to joining ADP in 2011, he served as the Deputy Chief Information Security Officer (CISO) for the Internal Revenue Service (IRS) after directing the IRS’s FISMA-compliant information security program and leading the IRS’s incident response team. His information security career began in the U.S. Air Force, where he served as a Captain and lead engineer working on systems and programs to protect the critical network and communications tools of the Air Force’s Air Combat Command.

An experienced information security and technology executive, Daniel Conroy is the Chief Information Security Officer of Synchrony Financial. Reporting directly to the Chief Information Officer, Daniel is responsible for establishing and maintaining the vision, strategy and programs necessary to ensure Synchrony Financial’s information assets and technologies are protected.Before joining Synchrony Financial, Daniel served as Global Head of Strategy, Planning and Governance at Citigroup. Prior to his tenure with Citigroup, Daniel was Chief Information Security Officer for The Bank of New York Mellon where he was responsible for the protection and security posture of the firm globally.Daniel has spoken on a range of information security topics at leading industry events including CISO Executive Forum, FS-ISAC Summits, BITS Working Group Meetings and SC Magazine Congress, among others.Daniel holds a degree in Electrical Engineering from the Institute of Technology in Dublin, Ireland.

Mike Towers is accountable globally for protecting the confidentiality, integrity and availability of Allergan’s vastinformation assets across an R&D, supply chain and commercial enterprise spanning ~100 countries. This includes strategy, governance, risk management, 3rd-party oversight, IT compliance, identity & access management, security technology management, security analytics and monitoring, incident response, investigations and forensics, and SAP/ERP security.

Mike passionately champions industry collaboration and information sharing within multiple executivesecurity forums, including Department of Homeland Security’s National Health ISAC, where he is currently serving on the Board of Directors and is Chair of the Product and Services Committee. Mike is also an active member of McKinsey’s Healthcare CISO Group, Corporate Executive Program (CEP), Evanta CISO Governing Body for Philadelphia and North New Jersey, and Corporate Executive Board’s Information Risk Leadership Council.

Mike was recently named the 2015 Information Security Executive of the Year for the Northeast byT.E.N., as well as the 2015 Information Security North America Executive of the Year for the Healthcare sector.

Joey Johnson is Chief Information Security Officer at Premise Health, provider of large employer sponsor health and wellness centers for employees. Joey is responsible for leading all organizational efforts related to security operations and engineering, information technology and security compliance, identity access management, policy development, security audit, and vendor risk management to meet challenging security and compliance demands. In his six years with Premise Health, Joey has been instrumental in implementing a proactive security and risk management environment focused organizational risk awareness that is transformative in the healthcare industry. He successfully launched a cutting-edge vendor and business associate maturity development program that dynamically empowered business partners of various scales and complexity to meet challenging security and compliance demands. Additionally, he has worked to develop a team driven by passion in security, with a focus on empowering and fostering women in the security field. In 2016 Joey was presented CISO of the Year award by the Nashville Technology Council.