“An exceptional conference experience through cutting edge content, peer-to-peer information sharing, and ready to implement solutions.”

Provide strategic oversight, direction, and coordination for City of Phoenix information security and privacy programs based on internationally recognized information security governance best practices. Directs Information Security and Privacy Office (ISPO). Duties include drafting, vetting and implementing information security and privacy policies, standards, and standard operating procedures for 15,000 plus employees. Responsible and accountable for critical control system security program oversight to include recommendation and implementation of approved citywide critical control system policy based on industry best practices, federal and state regulations, legal requirements, and line-of-business needs. Serves as the primary liaison between City Departments, the Office of Emergency Management, and Arizona Counter Terrorism Information Center (ACTIC) relative to critical controls security. Spearheads City's Payment Card Industry Data Security Standards (PCI DSS) strategic assessment and remediation for 26 functional Departments processing $200 million plus transactions annually.

As Chief Privacy Officer (CPO) responsible for coordination and oversight of City’s Information Management Plans. Duties include monitoring security and privacy trends; coordinating with City Attorney and Deputy City Manager; and collaborating with government and private sector critical infrastructure key resource (CIKR) partners on security and privacy related initiatives. Direct all actions to investigate or remediate a privacy breach.



Spencer Mott is the Chief Information Security Officer of McKesson Corporation. As CISO, Spencer is responsible for enhancing and overseeing the information security strategy and program of a diverse and global environment. He leads the Information Security & Risk Management team that oversees projects, standards and controls that mitigate risks, strengthen defenses, and reduce vulnerabilities in a manner that aligns with business goals.

Spencer brings over 30 years’ experience in technology and security, encompassing domestic, international, public and private sectors. His industry experience includes healthcare, technology, and government. Prior to McKesson, he served as Interim Global Chief Information Officer at Amgen Biotechnology, the world’s largest independent biotechnology company, where he was responsible for leading Amgen’s Global Information Systems organization supporting the global delivery of information systems and successful development and commercialization of Amgen’s drug products, digital solutions, and services. Prior to that, Spencer served as the Vice President and Global CISO, Cybersecurity, Architecture, Risk and Engineering, and managed Amgen’s compliance, IT architecture, engineering, program management, development operations, identity management and learning functions.

Prior to Amgen, Spencer was at Electronic Arts where he held multiple global leadership roles based in the United Kingdom, the United States and Switzerland, last serving as Vice President and Chief Information Security Officer. He also held roles in global leadership roles Electronic Arts and the Motion Picture Association of America.

Spencer has also spent time in the Royal Marines/Armed Forces and in leadership roles with the Metropolitan Police Service’s Serious Organized Crime Group at New Scotland Yard. During a 15-year police career in UK law enforcement, he worked on the Murder Squad, the Specialist, Organized and Economic Crime Command, the National High-Tech Crime Unit and with the UK Security Services.

Spencer sits on the board of the National Healthcare Information Sharing and Analysis Center and is a Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), and a Certified Protection Professional (CPP) and Industrial Control Systems security professional. He achieved his Master’s degree in Security and Risk Management at Leicester University in the United Kingdom.

In his spare time, Spencer is a rugby coach for a local youth team, plays guitar and enjoys travelling. He is located in Scottsdale, Arizona.

Kurt Lieber



Randell Smith, CISM, CISSP, PMP

Chief Information Security Officer/Chief Privacy Officer

City of Phoenix

Spencer Mott

SVP and Global CISO


Irwan Tjan




Kurt Lieber is the Vice President and Chief Information Security Officer at Aetna. Kurt has over 20 years of experience in Information Technology and Information Security across multiple industries including health care, retail and financial services.Kurt was formerly with Kaiser Permanente where he had responsibility for IAM as well as HIPAA remediation.

Prior to Kaiser Permanente, Kurt worked for Target Corporation, where he was accountable for the company’s IT Security program and led the technology team responsible for their Payment Card Industry (PCI) program. Prior to Target, had roles with Goldman Sachs and Accenture.

Click to Inquire about Sponsoring Security Leadership Exchange

Michael Dierickx



IT Security Exchange

IT Security Leadership Exchange is produced by the MIS Training Institute in conjunction with nGage Events LLC

© 2019 IT Security Leadership Exchange



Why Attend



nGage Events Logo MISTI Logo

Why Sponsor


September 23-25, 2018 | Sheraton Grand at Wild Horse Pass, Phoenix, AZ

September 23-25, 2018 | Sheraton Grand at Wild Horse Pass | Phoenix, AZ

Joey Johnson


Premise Health

Joey Johnson is Chief Information Security Officer at Premise Health, provider of large employer sponsor health and wellness centers for employees. Joey is responsible for leading all organizational efforts related to security operations and engineering, information technology and security compliance, identity access management, policy development, security audit, and vendor risk management to meet challenging security and compliance demands. In his six years with Premise Health, Joey has been instrumental in implementing a proactive security and risk management environment focused organizational risk awareness that is transformative in the healthcare industry. He successfully launched a cutting-edge vendor and business associate maturity development program that dynamically empowered business partners of various scales and complexity to meet challenging security and compliance demands. Additionally, he has worked to develop a team driven by passion in security, with a focus on empowering and fostering women in the security field. In 2016 Joey was presented CISO of the Year award by the Nashville Technology Council.


WHY Attend

Why Sponsor






Click to Inquire about Attending Security Leadership Exchange