Board of Advisers
Our exclusive board of advisers guides this site’s coverage of security, fraud, privacy, risk management
and other key issues. These experts provide input about the latest hot topics and contribute insight for news
coverage, podcast interviews and guest blogs. They regularly offer expert advice about regulatory compliance and the
current threat landscape, as well as provide insights about risk management strategies and security technologies.
Chief Technology Officer, ThreatMetrix
Baumhof is an internationally renowned cybersecurity thought-leader and expert with deep experience in the encryption, PKI, malware and phishing markets. Baumhof and his ThreatMetrix Labs team have been examining and reverse-engineering banking malware for over six years, giving a unique insight into the evolution of the malware landscape. They don't just see the malware itself, but also the resulting transactions, providing excellent insight into stopping cybercriminals. His commentary has appeared in numerous publications.
Information Security Administrator and Business Continuity Plan Coordinator, BankWest Inc.
Broer supports and assists with the $754 million South Dakota-based bank's incident response plan, as it relates to breaches of information security. She also maintains the bank's information security program, which includes security oversight and administration of most of the bank's software applications. Broer also maintains BankWest's business continuity plan by coordinating annual updates and conducting enterprise-wide table-top exercises. Broer has been employed at BankWest for 25 years.
SVP & Chief Advisor, Payments & Cybersecurity Policy, American Bankers Association
Johnson is the ABA's senior VP and chief advisor for payments and cybersecurity policy, where he's involved in a variety of public policy and compliance issues. He currently leads the association's enterprise risk, physical and cybersecurity, business continuity and resiliency policy and fraud deterrence efforts. Johnson currently serves as vice chairman of the Financial Services Sector Coordinating Council, which advises the federal bank regulatory agencies on homeland security and critical infrastructure protection issues. He is also a board member of the FS-ISAC, a private corporation that works with government to provide the financial sector with cyber and physical threat and vulnerability information.
FBCS, MSc, Independent Advisor & International Speaker
More than 20 years in financial services and technology made Jones believe in change through innovation & partnerships. She is regularly invited to advise organisations of all sizes on payments, cyber risk, information security and digital innovation where she always strives to demystify the hype surrounding current issues. She likes engaging on social media and regularly addresses global audiences on these topics. She chairs the Advisory Board for mobile innovator Ensygnia & the Global Advisory Board for the Centre for Strategic Cybercrime & Security Science and is a Founding Advisory Board Member for GiveADay UK. She sits on the Advisory Board of the Emerging Payments Association and is on the City AM FinTech Most Influential Power List. Tripwire nominated Jones Top Influencer in Security To Follow on Twitter in January 2015 and CEOWorld Magazine nominated her Top Chief Security Officer to Follow on Twitter in April 2014. She is the Merchant Payments Ecosystem Acquiring Personality of the Year 2013, the SC Magazine Information Security Person of the Year 2012 an is an InfoSecurity Europe Hall of Fame alumni. Jones has previously worked for Barclaycard, Santander, Abbey National, Oracle Corp. and Unisys.
Chief Technology Officer, PCI Security Standards Council
Mr. Leach partners with Council representatives, Participating Organizations and industry leaders to develop comprehensive standards and strategies to secure payment card data and the supporting infrastructure. He is a congressional subject matter expert on payment security and the current chairman of the Council's Standards Committee. Prior to joining the PCI Council, Mr. Leach has held various positions in IT management, software development, systems administration, network engineering, security assessment, forensic analytics and incident response for data compromise. Mr. Leach holds a Master of Science in Telecommunications & Network Management as well as a graduate degree in Information Security Management from Syracuse University.
VP and Distinguished Analyst, Gartner Research
Litan has more than 30 years of experience in the IT industry, with expertise in financial fraud, authentication, access management, identity proofing, identity theft, fraud detection and prevention applications, as well as other areas of information security and risk. She also covers the security related to payment systems and PCI compliance. Before joining Gartner, Litan worked as a director of financial systems at the World Bank. She also worked as a journalist and columnist for the Washington Times.
Partner, Co-Chair - Data Protection, Privacy & Access to Information (US), Norton Rose Fulbright
David Navetta is a U.S. Co-Chair of Norton Rose Fulbright's Data Protection, Privacy & Cybersecurity practice group. Navetta focuses on technology, privacy, information security and intellectual property law. His work ranges from compliance and transactional work to breach notification, regulatory response and litigation. Navetta has served a wide range of clients from large Fortune 500 multinationals, retailers, healthcare companies and financial institutions, to sophisticated technology companies, traditional brick-and-mortar companies, energy companies and startups. He is a Certified Information Privacy Professional through the International Association of Privacy Professionals and previously served as a Co-Chair of the American Bar Association's Information Security Committee.
SVP, Research Director Head of Fraud & Securit, Javelin Strategy and Research
Pascual brings his industry experience and passion for fighting financial crime to bear in leading Javelin's fraud and security practice. An accomplished fraud investigator, he began his career with HSBC during the height of the mortgage boom. With HSBC's Borrower Verification department, Pascual performed enhanced due diligence investigations of high-risk loans. He was subsequently tapped by Goldman Sachs to join the Fixed Income, Currency and Commodities division, serving on the mortgage fraud investigations team. He later transitioned to Fidelity National Information Services (now FIS Global). Pascual has successfully led complex, data-driven, risk management investigations of organized payment fraud groups throughout the country.
Founder and Vice President, Products and Services, Guardian Analytics
Priess founded Guardian Analytics in 2005, introducing the industry's first individual behavior-based fraud prevention solution. He leads the company's fraud prevention product and service innovations. He also directs the company's Fraud Intelligence and Analyst teams, producing unique insights into fraud trends and fraud prevention best practices. Priess offers expertise in threats, banking and payment systems, and layered security strategies.
Executive Vice President & Enterprise CIO, Regions Bank
Speare joined Regions in 2013 and serves as the head of governance and integration. Regions is a top U.S. bank-holding company headquartered in Birmingham, Ala., with $117 billion in assets, operating approximately 1,700 banking offices in 16 states. In this role, Speare has responsibility for information security; check, ATM/debit, and credit card fraud operations; and systems integration for consumer, business and commercial banking groups. Prior to assuming his current role in 2013, Speare was the chief technology officer for M&T Bank, an $82 billion financial institution based out of Buffalo, N.Y.
President and CEO, Authentify
Before joining Authentify, a provider of out-of-band authentication services, Tapling served as chief operating officer of IDMetrix, an outsourced provider of digital-certificate services. Tapling has spent more than 25 years in the IT services and research industry. He also serves on NACHA - The Electronic Payments Association Internet Council, and participates in the Identity Ecosystem Steering Group created as part of the National Strategy for Trusted Identities in Cyberspace. Tapling is a co-author of the book, Mastering the Fraud Tsunami.
Vice President and Regulatory Counsel, Independent Community Bankers of America
Thomas specializes in a wide-range of critical community banking issues, including issues pertaining to the Bank Secrecy Act, data security and privacy. Before coming to the ICBA, Thomas was assistant general counsel at the Credit Union National Association. Prior to that, she served as CUNA's federal compliance counsel and director of compliance operations. She holds a Juris Doctorate from Vermont Law School and a bachelor's degree from the University of Maryland.
Sr. Director, Product Strategy & Innovation, ThreatMetrix
Prior to his current role, Tubin was the senior security strategist for Trusteer, where he headed the thought-leadership program to advance online- and mobile-banking adoption and safety, and advised enterprises on best practices for protecting corporate assets from targeted attacks. With over 25 years in the banking and high-technology industries, his areas of expertise include consumer online and mobile banking, online fraud and identity theft prevention and enterprise fraud-management strategies.
Principal Consultant, Urban Designs, LLC.
Urban is accomplished in data analytics and financial crime areas including cyber, payment fraud, money laundering, sanctions screening, FATCA, and regulatory reporting. He is the principal consultant at Urban Designs, LLC which enables financial institutions, insurance companies and the vendor community to create continuous improvements in financial crime detection, process and technology. Urban served as Product Portfolio Director for Fiserv's Financial Crime Solutions and as Senior Director of Product Strategy for FICO's Fraud Solutions. Mike co-invented Card Alert Services, an ATM network fraud and breach detection service which was acquired by HNC Software.
Managing Director Forensic Technology
Walp has more than 20 years of industry experience. Prior to joining KPMG, Walp was the CISO of M&T Bank, an $83 billion financial institution, where he was responsible for IT security, data protection and privacy strategies that focused on cybersecurity and intelligence gathering and external/internal network security systems. Walp managed the functions of access and identity management, IT compliance and risk management, and the PCI program. Walp has held a variety of positions in industry verticals including Electronic Data Systems (EDS) and Moog Inc. A veteran of the US Air Force, Walp served his country for 22 years and in 2004 was recalled to Kuwait as a part of an elite logistics cadre to aid in establishing the US Central Command's Deployment and Distribution Operations Center.
Director, Ontrack Advisory Group
Wills is a Fintech architect and strategist specializing in payments, security and digital identity. For more than two decades, he has guided organizations such as Visa, Bank of America, Wells Fargo Bank, UnionBank of the Philippines, VeriFone, Intuit, Richemont, Ping Identity and multiple startups to build and secure their digital platforms. Career highlights of Wills include leading the development, launch and operation of Visa's core transaction fraud management services and VeriFone's digital wallets, merchant e-commerce platforms and payment gateways, as well as secure platform/product design for Visa's prepaid card management system, national mobile payment networks in the Dominican Republic (tPago), Bangladesh (bKash), a Philippines' major credit card issuer and the Manila public transit network. He has also served as a CISO for CrossCheck and Intuit subsidiary PayCycle.com, and as a mentor for StartupBootcamp FinTech and four Asian payment startups. In addition, he is a tenured speaker and media commentator on security in digital transactions. He holds both CISSP and CFE certifications. A resident of Singapore, Tom has also lived and worked in the US, UK, UAE, Philippines and Dominican Republic.
Senior Vice President and Chief Technology Officer, QCR Holdings Inc.
At this multibank holding company based in Moline, Ill., Wyffels focuses on compliance, fraud prevention and technology. He has worked in information technology for more than 20 years. His career has focused on the financial services markets and credit card processing and operations. Before joining QCR, he directed MIS and distributed systems for Alliance Data Systems in Dallas. Prior to Alliance Data Systems, Wyffels worked in several enterprise and line-of-business roles within IT for First Data Corp.