Board of Advisers
Our exclusive board of advisers guides this site’s coverage of security, fraud, privacy, risk management
and other key issues. These experts provide input about the latest hot topics and contribute insight for news
coverage, podcast interviews and guest blogs. They regularly offer expert advice about regulatory compliance and the
current threat landscape, as well as provide insights about risk management strategies and security technologies.
Chief Technology Officer, ThreatMetrix
Baumhof is an internationally renowned cybersecurity thought-leader and expert with deep experience in the encryption, PKI, malware and phishing markets. Baumhof and his ThreatMetrix Labs team have been examining and reverse-engineering banking malware for over six years, giving a unique insight into the evolution of the malware landscape. They don't just see the malware itself, but also the resulting transactions, providing excellent insight into stopping cybercriminals. His commentary has appeared in numerous publications.
Information Security Administrator and Business Continuity Plan Coordinator, BankWest Inc.
Broer supports and assists with the $754 million South Dakota-based bank's incident response plan, as it relates to breaches of information security. She also maintains the bank's information security program, which includes security oversight and administration of most of the bank's software applications. Broer also maintains BankWest's business continuity plan by coordinating annual updates and conducting enterprise-wide table-top exercises. Broer has been employed at BankWest for 25 years.
FBCS, MSc, Independent Advisor & International Speaker
More than 20 years in financial services and technology made Jones believe in change through innovation & partnerships. She is regularly invited to advise organisations of all sizes on payments, cyber risk, information security and digital innovation where she always strives to demystify the hype surrounding current issues. She likes engaging on social media and regularly addresses global audiences on these topics. She chairs the Advisory Board for mobile innovator Ensygnia & the Global Advisory Board for the Centre for Strategic Cybercrime & Security Science and is a Founding Advisory Board Member for GiveADay UK. She sits on the Advisory Board of the Emerging Payments Association and is on the City AM FinTech Most Influential Power List. Tripwire nominated Jones Top Influencer in Security To Follow on Twitter in January 2015 and CEOWorld Magazine nominated her Top Chief Security Officer to Follow on Twitter in April 2014. She is the Merchant Payments Ecosystem Acquiring Personality of the Year 2013, the SC Magazine Information Security Person of the Year 2012 an is an InfoSecurity Europe Hall of Fame alumni. Jones has previously worked for Barclaycard, Santander, Abbey National, Oracle Corp. and Unisys.
Chief Technology Officer, PCI Security Standards Council
Mr. Leach partners with Council representatives, Participating Organizations and industry leaders to develop comprehensive standards and strategies to secure payment card data and the supporting infrastructure. He is a congressional subject matter expert on payment security and the current chairman of the Council's Standards Committee. Prior to joining the PCI Council, Mr. Leach has held various positions in IT management, software development, systems administration, network engineering, security assessment, forensic analytics and incident response for data compromise. Mr. Leach holds a Master of Science in Telecommunications & Network Management as well as a graduate degree in Information Security Management from Syracuse University.
VP and Distinguished Analyst, Gartner Research
Litan is a vice president and distinguished analyst at Gartner Research. Her areas of expertise include endpoint security, security analytics for cybersecurity and fraud, user and entity behavioral analytics, insider threats, fraud detection, and prevention and identity proofing.
Partner, Co-Chair - Data Protection, Privacy & Access to Information (US), Norton Rose Fulbright
David Navetta is a U.S. Co-Chair of Norton Rose Fulbright's Data Protection, Privacy & Cybersecurity practice group. Navetta focuses on technology, privacy, information security and intellectual property law. His work ranges from compliance and transactional work to breach notification, regulatory response and litigation. Navetta has served a wide range of clients from large Fortune 500 multinationals, retailers, healthcare companies and financial institutions, to sophisticated technology companies, traditional brick-and-mortar companies, energy companies and startups. He is a Certified Information Privacy Professional through the International Association of Privacy Professionals and previously served as a Co-Chair of the American Bar Association's Information Security Committee.
SVP, Research Director Head of Fraud & Securit, Javelin Strategy and Research
As SVP of Research, Al Pascual leads Javelin's Advisory Services and Custom Research businesses. He provides clients actionable insights on a variety of fraud and security issues, acts as a partner in developing strategies for managing risk, and identifies and raises awareness of future threats and solutions. He researches a range of topics, including the applicability of biometrics in banking and payments, the effect of data breaches on the integrity of consumer identities, the relationship between identity fraud and loyalty, and the best methods for securing payment data and transactions. Pascual has presented findings from Javelin's rigorous, industry-leading research at conferences around the world, including BAI, CARTES, Money20/20, NACHA and RSA. He has also provided commentary on fraud and security issues to American Banker, Bloomberg, CNNMoney, Fox Business, Reuters, The New York Times, The Wall Street Journal, The Washington Post, and Wired.
Previously Pascual held risk management roles at HSBC, Goldman Sachs, and FIS. He is a member of the Association of Certified Fraud Examiners, the International Association of Financial Crimes Investigators, and the Federal Reserve Secure Payments Task Force.
Founder and Vice President, Products and Services, Guardian Analytics
Priess founded Guardian Analytics in 2005, introducing the industry's first individual behavior-based fraud prevention solution. He leads the company's fraud prevention product and service innovations. He also directs the company's Fraud Intelligence and Analyst teams, producing unique insights into fraud trends and fraud prevention best practices. Priess offers expertise in threats, banking and payment systems, and layered security strategies.
Executive Vice President & Enterprise CIO, Regions Bank
Speare joined Regions in 2013 and serves as the head of governance and integration. Regions is a top U.S. bank-holding company headquartered in Birmingham, Ala., with $117 billion in assets, operating approximately 1,700 banking offices in 16 states. In this role, Speare has responsibility for information security; check, ATM/debit, and credit card fraud operations; and systems integration for consumer, business and commercial banking groups. Prior to assuming his current role in 2013, Speare was the chief technology officer for M&T Bank, an $82 billion financial institution based out of Buffalo, N.Y.
President and CEO, Authentify
Before joining Authentify, a provider of out-of-band authentication services, Tapling served as chief operating officer of IDMetrix, an outsourced provider of digital-certificate services. Tapling has spent more than 25 years in the IT services and research industry. He also serves on NACHA - The Electronic Payments Association Internet Council, and participates in the Identity Ecosystem Steering Group created as part of the National Strategy for Trusted Identities in Cyberspace. Tapling is a co-author of the book, Mastering the Fraud Tsunami.
Vice President and Regulatory Counsel, Independent Community Bankers of America
Thomas specializes in a wide-range of critical community banking issues, including issues pertaining to the Bank Secrecy Act, data security and privacy. Before coming to the ICBA, Thomas was assistant general counsel at the Credit Union National Association. Prior to that, she served as CUNA's federal compliance counsel and director of compliance operations. She holds a Juris Doctorate from Vermont Law School and a bachelor's degree from the University of Maryland.
Sr. Director, Product Strategy & Innovation, ThreatMetrix
Prior to his current role, Tubin was the senior security strategist for Trusteer, where he headed the thought-leadership program to advance online- and mobile-banking adoption and safety, and advised enterprises on best practices for protecting corporate assets from targeted attacks. With over 25 years in the banking and high-technology industries, his areas of expertise include consumer online and mobile banking, online fraud and identity theft prevention and enterprise fraud-management strategies.
Principal Consultant, Urban Designs, LLC.
Urban is accomplished in data analytics and financial crime areas including cyber, payment fraud, money laundering, sanctions screening, FATCA, and regulatory reporting. He is the principal consultant at Urban Designs, LLC which enables financial institutions, insurance companies and the vendor community to create continuous improvements in financial crime detection, process and technology. Urban served as Product Portfolio Director for Fiserv's Financial Crime Solutions and as Senior Director of Product Strategy for FICO's Fraud Solutions. Mike co-invented Card Alert Services, an ATM network fraud and breach detection service which was acquired by HNC Software.
Walp has more than 20 years of industry experience. Prior to joining KPMG, Walp was the CISO of M&T Bank, an $83 billion financial institution, where he was responsible for IT security, data protection and privacy strategies that focused on cybersecurity and intelligence gathering and external/internal network security systems. Walp managed the functions of access and identity management, IT compliance and risk management, and the PCI program. Walp has held a variety of positions in industry verticals including Electronic Data Systems (EDS) and Moog Inc. A veteran of the US Air Force, Walp served his country for 22 years and in 2004 was recalled to Kuwait as a part of an elite logistics cadre to aid in establishing the US Central Command's Deployment and Distribution Operations Center.
Director, Ontrack Advisory Group
Wills is a Fintech architect and strategist specializing in payments, security and digital identity. For more than two decades, he has guided organizations such as Visa, Bank of America, Wells Fargo Bank, UnionBank of the Philippines, VeriFone, Intuit, Richemont, Ping Identity and multiple startups to build and secure their digital platforms. Career highlights of Wills include leading the development, launch and operation of Visa's core transaction fraud management services and VeriFone's digital wallets, merchant e-commerce platforms and payment gateways, as well as secure platform/product design for Visa's prepaid card management system, national mobile payment networks in the Dominican Republic (tPago), Bangladesh (bKash), a Philippines' major credit card issuer and the Manila public transit network. He has also served as a CISO for CrossCheck and Intuit subsidiary PayCycle.com, and as a mentor for StartupBootcamp FinTech and four Asian payment startups. In addition, he is a tenured speaker and media commentator on security in digital transactions. He holds both CISSP and CFE certifications. A resident of Singapore, Tom has also lived and worked in the US, UK, UAE, Philippines and Dominican Republic.
Senior Vice President and Chief Technology Officer, QCR Holdings Inc.
At this multibank holding company based in Moline, Ill., Wyffels focuses on compliance, fraud prevention and technology. He has worked in information technology for more than 20 years. His career has focused on the financial services markets and credit card processing and operations. Before joining QCR, he directed MIS and distributed systems for Alliance Data Systems in Dallas. Prior to Alliance Data Systems, Wyffels worked in several enterprise and line-of-business roles within IT for First Data Corp.