2018 PLUS Cyber University
2018 PLUS Cyber University
Start Date - End Date
May 02, 2018
Registration Deadline
Wednesday, May 02, 2018
Registration Fees
| Price Description | Amount |
|---|---|
| Regular Non-Member Cyber U and Cyber Symposium | $1539.00 |
| Early Non-Member Cyber U and Cyber Symposium | $1384.00 |
| Regular Member Cyber U and Cyber Symposium | $1169.00 |
| Early Member Cyber U and Cyber Symposium | $1009.00 |
| Non-Member Cyber U Only | $599.00 |
| Member Cyber U Only | $449.00 |
Available Functions
| Wednesday - May 02 | ||
|---|---|---|
| 8:00 am - 4:45 pm | ||
|
Registration |
||
| 8:30 am - 9:15 am | ||
|
Factual and Legal Foundations
Privacy and cybersecurity issues dominate national and international headlines, consume significant resources to protect against and respond to threats, prompt considerable legal attention, and affect the global insurance marketplace. This session will provide the framework for the rest of today by discussing some key privacy and cybersecurity concepts and providing an overview of applicable laws and regulations. |
||
| 9:15 am - 10:00 am | ||
|
Risks
First party cyber coverage provides protection for the data of the insured, such as customer or employee data. Third party cyber coverage provides protection for liability associated with an insured’s customer data. One of the most interesting aspects of cyber is that most if not all industries have first party or third party exposures arising from the risks of a data breach, cyber-attack, or business interruption. |
||
| 10:00 am - 10:30 am | ||
|
Refreshment Break |
||
| 10:30 am - 11:30 am | ||
|
Coverage & Policies
In this session, our speakers will discuss coverage under various policies, why cyber is not covered within those policies, and exclusions. Additionally, they will discuss the basic cyber coverages that do exist, more attenuated coverages, and new and evolving coverages. |
||
| 11:30 am - 12:00 pm | ||
|
Current Issues & Trends
In this session, our speaker will discuss claims trends, coverage, and threats. |
||
| 12:00 pm - 12:45 pm | ||
|
Networking Luncheon |
||
| 12:45 pm - 2:00 pm | ||
|
Underwriting, Breach Response, 1st Party Incidents, 3rd Party Claims
In this session, our speaker will discuss the type of data and information applicants store that is at risk of being compromised, as well as what controls and procedures are in place. Additionaly, she'll discuss how to properly vet vendors, aggregation concerns among vendors and product lines, pre-breach prepardeness, and breach response. |
||
| 2:00 pm - 2:30 pm | ||
|
Refreshment Break |
||
| 2:30 pm - 3:30 pm | ||
|
Risk Management
Cyber, Privacy and security risks are not just a task for the IT department to tackle. These are enterprise risks and require a task force within an organization. In this session we will hear from a risk manager, CISO and legal counsel on how they manage these risks, communicate and plan. |
||
| 3:30 pm - 4:45 pm | ||
|
Breach Scenario
In this breach scenario, the panel will run through a breach response including breach response investigation, remdiation, and documentation, as well as 3rd party claims. |
||
| 4:45 pm - 5:45 pm | ||
|
Networking Reception |
||
Speakers
| Name | Organization | Speaking At |
|---|---|---|
| Bill Hardin (PANELIST)
<p>
Bill has worked on over a thousand data incident/data breach cases along with numerous cases dealing with white collar crime and enterprise risk management. He has handled all types of ransomware, data extortion, business email compromise, nation state attacks, malware outbreaks, insider threats, amongst other items. Many of his cases have been mentioned in The Wall Street Journal, Financial Times, Forbes, and Krebs on Security, amongst other publications. With a background in finance, operations, and software development, he brings valuable insights to clients from multiple dimensions.
<br/><br/>
In addition to his forensic engagement assignments, Bill has served in numerous interim management roles for organizations experiencing disruption. He has assisted companies with various management consulting assignments pertaining to strategy, operations, and software implementations.
<br/><br/>
Bill is a Certified Public Accountant (CPA)/CFF, Certified Fraud Examiner (CFE), and a certified Project Management Professional (PMP). He has spoken at numerous events on cybercrime, risk management, and strategy/operations consulting. He serves on the board for Legal Prep Charter Schools and is an adjunct professor at DePaul University in Chicago.
</p>
|
Charles River Associates | Current Issues & Trends |
| Bret Padres (PANELIST)
<p>
Bret Padres is the Chief Executive Officer of The Crypsis Group. He has over 25 years of experience in information security, digital forensics, law enforcement, electronic discovery, and counterintelligence. Mr. Padres has responded to, investigated, remediated, and advised legal teams on issues resulting from some of the highest profile retail and state-sponsored data breaches in recent times. In addition, he has testified as a digital forensics expert in a number of trials including an espionage case in federal court.<br/><br/>
Mr. Padres began his career as a computer programmer and later became a Special Agent in the U.S. Air Force Office of Special Investigations. There he was the lead agent on numerous national and international computer intrusion investigations, and conducted computer forensic examinations for criminal investigations involving child pornography, homicide, narcotics, and violent crime. <br/><br/>
He later served as the Chief of Research and Development in the Computer Crimes Unit for the U.S. Postal Service Office of the Inspector General where he conducted investigations in addition to overseeing the research, development, and implementation of new computer crime technologies. In this capacity, he also acted as the liaison to the Central Intelligence Agency on a national software development project.<br/><br/>
In the private sector, Mr. Padres was most recently a Managing Director at Stroz Friedberg where he
managed the firm’s execution of the Cyber Resilience practice. In addition to managing a team responsible for intrusion investigations, security risk assessments, penetration tests, and data breach response, he maintained an active case load and led a team responsible for authoring several forensic tools. Mr. Padres was also the Director of Incident Response for Mandiant (later acquired by FireEye) where he responded to and resolved high-risk intrusions for government agencies and Fortune 500 companies; and the Director of Cyber Operations at Athena Innovative Solutions where he directed network surveillance and intrusion detection counterintelligence operations for U.S. government agencies and built forensic and field monitoring capabilities in support of counterintelligence cyber-operations for government clients.<br/><br/>
Mr. Padres holds a Bachelor of Science degree in computer information systems from Excelsior College and holds a number of professional certifications. He has developed a number of open source digital forensic tools and co-hosts a Internet radio show, where he interviews industry experts and explores digital forensics, network security, and computer crime topics.
</p>
|
Crypsis | Breach Scenario |
| Charles Bellingrath (PANELIST)
<p>
Chas Bellingrath is a Partner and National Practice Leader for Cyber, Privacy & Technology E&O at ARC Excess & Surplus, LLC. In his role Chas is responsible for advising agents and clients on issues related to technology, privacy and cyber related risks as well as negotiating with carriers on policy terms and conditions. Chas specializes in tailoring tech, cyber, and breach response coverage and advises clients on breach preparedness and incident response planning. In addition, Chas is responsible for product development and production throughout the United States. <br/><br/>
Prior to joining ARC, Chas was a Senior Broker and head of the Cyber/Tech division at a regional wholesaler where he initially launched the product in 2007. <br/><br/>
Chas brings ARC over 10 years of dedicated Cyber, Privacy & Technology risk expertise. Chas is globally recognized and frequently instructs privacy seminars and participates on executive panels for Cyber Risk conferences. Chas also sits on several Producer Advisory Councils for top insurance carriers and the PLUS CyberRisk Task Force.
</p>
|
ARC Excess & Surplus LLC | Risk Management |
| Charles Bellingrath (PANELIST)
<p>
Chas Bellingrath is a Partner and National Practice Leader for Cyber, Privacy & Technology E&O at ARC Excess & Surplus, LLC. In his role Chas is responsible for advising agents and clients on issues related to technology, privacy and cyber related risks as well as negotiating with carriers on policy terms and conditions. Chas specializes in tailoring tech, cyber, and breach response coverage and advises clients on breach preparedness and incident response planning. In addition, Chas is responsible for product development and production throughout the United States. <br/><br/>
Prior to joining ARC, Chas was a Senior Broker and head of the Cyber/Tech division at a regional wholesaler where he initially launched the product in 2007. <br/><br/>
Chas brings ARC over 10 years of dedicated Cyber, Privacy & Technology risk expertise. Chas is globally recognized and frequently instructs privacy seminars and participates on executive panels for Cyber Risk conferences. Chas also sits on several Producer Advisory Councils for top insurance carriers and the PLUS CyberRisk Task Force.
</p>
|
ARC Excess & Surplus LLC | Coverage & Policies |
| Christopher Allman (PANELIST)
<P>
Christopher Allman is the Director of Risk Management, Compliance and Insurance for Garden City Hospital, a 323-bed community hospital located in Garden City, Michigan, and the Midwest Regional Director of Risk Management for Prime Healthcare Services, the parent company of Garden City Hospital and 45 other hospitals across the U.S. Mr. Allman is a 21-year attorney and a Certified Professional in Healthcare Risk Management (CPHRM), a Past President of the Michigan Society of Healthcare Risk Management and has served as the Chair of the Advocacy Task Force for the American Society for Healthcare Risk Management (ASHRM) from 2012-2014. In addition to his current activity with the ASHRM Advocacy Task Force, he is also an active member of the State Bar of Michigan - Health Law Section and the American Health Lawyers Association. Mr. Allman graduated from Wayne State University Law School in 1996 and Hope College in 1992.
</P>
|
Garden City Hospital | Risk Management |
| Dan Healy (PANELIST)
<div style="text-align:center;font-family:'Calibri';font-size:11.00pt;"><span style="font-family:'Calibri';font-size:11.00pt;"> <p>
Daniel J. Healy is a partner in Anderson Kill's Washington, D.C. office. After starting his career with Anderson Kill, he served for over five years as a Trial Attorney with the United States Department of Justice, Tax Division. He appeared as lead trial counsel in federal, state and bankruptcy courts across the country. His caseload involved tax shelters, fraud, substantive tax disputes and claims to real property. While doing so, he received numerous Outstanding Attorney awards and a Special Commendation. He also served as the E-Discovery Coordinator for the Tax Division.<br/><br/>
Mr. Healy represents policyholders seeking insurance coverage, and is Deputy Co-Chair of the Cyber Insurance Recovery Practice Group, as well as a member of the firm's Blockchain and Regulated Products Groups. He was selected by his peers for inclusion in the 2018 edition of the Best Lawyers in America in the category of insurance litigation.<br/><br/>
Mr. Healy has experience obtaining coverage relating to D&O liabilities, business interruptions, environmental liabilities, health benefits, property damage, asbestos products, and intellectual property disputes. He has represented clients in a range of industries, including in railroad, financial services, manufacturing, retail, technology and food and beverage. He also litigates all areas of intellectual property. He has represented trademark owners in disputes involving domain names, cybersquatting, online infringement and reverse confusion, has appeared before the Trademark Trial and Appeal Board and has litigated claims of unfair competition, copyright infringement and patent infringement. Once, he successfully represented a client against the U.S. Patent and Trademark Office. <br/><br/>
<strong>EDUCATION</strong><br/>
Fordham University, J.D.<br/>
Siena College, B.A.<br/>
Editor, Fordham Urban Law Journal<br/><br/>
<strong>BAR ADMISSIONS</strong><br/>
New York, District of Columbia and Maryland<br/><br/>
<strong>COURT ADMISSIONS</strong><br/>
United States Supreme Court and numerous Federal Courts of Appeal and District Courts
</p>
|
Anderson Kill P.C. | Risk Management |
| Edward Marchewka (PANELIST)
<div style="text-align:center;font-family:'Calibri';font-size:11.00pt;"><span style="font-family:'Calibri';font-size:11.00pt;"> <p>
Edward Marchewka is the Director of Information and Technology Services for Gift of Hope Organ & Tissue Donor Network. In his role, Edward is responsible for maintaining and securing the infrastructure for 24/7/365 operations, supporting the IT customer environment, and delivering and supporting the enterprise applications and data that run Gift of Hope. His teams work with Gift of Hope’s internal and external customers to deliver high quality information and technology services. Edward is also the Founder and Creator of CHICAGO Metrics™, a platform to help manage your company's key IT and Information Security risks enabling you to tell a better story.<br/><br/>
Before joining Gift of Hope Edward was the Enterprise Information Security and Server Operations Manager (CISO) for Chicago Public Schools, the third largest school district in the country. Additionally, his IT background includes experiences from running his own business to field service to Fortune 250 experience with Thermo Fisher Scientific. Edward holds active certifications from: (ISC)2, ITIL, PCI, Microsoft, CompTIA, and a designation from the NSA, along with legacy certifications from: Cisco and HP. He is a member of (ISC)2, AITP, ISACA, SIM, and a Board Member with the Chicago InfraGard. <br/><br/>
Edward has completed, from Northern Illinois University, an MBA and an MS in Mathematics and, from Thomas Edison State University, a BS in Nuclear Engineering Technologies and a BA in Liberal Studies. He also holds a Certificates in Nonprofit Management and Leadership from the Kellogg School of Management at Northwestern University and a Certificate in Applied Project Management from Northwestern University.
</p>
|
Gift of Hope Organ & Tissue Donor Network | Risk Management |
| Elissa Doroff (PANELIST)
<p>
Elissa is a Managing Director and Cyber Product Leader for Lockton’s Financial Services Pacific Series. Based remotely in New York City, Elissa is responsible for leading product and thought leadership for Cyber, Tech E&O, and Media Liability. In addition, she is the lead technical consultant and advises clients and colleagues on best practices in risk mitigation, vendor management, and claims navigation.
<br/><br/>
Elissa has over fifteen years of cyber, technology and media liability insurance expertise having worked as a Managing Director and Cyber Technical Leader for NFP’s Management and Professional Lines. While at NFP, she was responsible for the development of thought leadership, claims advocacy and consultation services as well as counseling clients on their risks and insurance needs in the areas of technology, privacy and cyber. Prior to NFP, Elissa worked as the Underwriting and Product Manager at AXA XL where she was responsible for AXA XL’s risk management services designed to minimize the frequency and severity of data breaches. Before joining AXA XL, Elissa was a broker in Marsh and McLennan’s Network Security and Privacy Practice and claims counsel at AIG focusing on Data Security and Privacy, Media and Technology Liability. She has considerable experience presenting on these topics on panels and seminars for clients and industry associations and has published several industry related articles. Elissa holds a Bachelor of Arts from the State University of New York at Albany and a Juris Doctor from Suffolk University Law School and is admitted to practice law in Massachusetts and Connecticut.
</p>
|
Lockton | Underwriting, Breach Response, 1st Party Incidents, 3rd Party Claims |
| Elissa Doroff (PANELIST)
<p>
Elissa is a Managing Director and Cyber Product Leader for Lockton’s Financial Services Pacific Series. Based remotely in New York City, Elissa is responsible for leading product and thought leadership for Cyber, Tech E&O, and Media Liability. In addition, she is the lead technical consultant and advises clients and colleagues on best practices in risk mitigation, vendor management, and claims navigation.
<br/><br/>
Elissa has over fifteen years of cyber, technology and media liability insurance expertise having worked as a Managing Director and Cyber Technical Leader for NFP’s Management and Professional Lines. While at NFP, she was responsible for the development of thought leadership, claims advocacy and consultation services as well as counseling clients on their risks and insurance needs in the areas of technology, privacy and cyber. Prior to NFP, Elissa worked as the Underwriting and Product Manager at AXA XL where she was responsible for AXA XL’s risk management services designed to minimize the frequency and severity of data breaches. Before joining AXA XL, Elissa was a broker in Marsh and McLennan’s Network Security and Privacy Practice and claims counsel at AIG focusing on Data Security and Privacy, Media and Technology Liability. She has considerable experience presenting on these topics on panels and seminars for clients and industry associations and has published several industry related articles. Elissa holds a Bachelor of Arts from the State University of New York at Albany and a Juris Doctor from Suffolk University Law School and is admitted to practice law in Massachusetts and Connecticut.
</p>
|
Lockton | Coverage & Policies |
| Manny Cho (PANELIST)
<p>
Manny is the leader of the Executive Lines Practice for Risk Placement Services. The Executive Lines Team focusses on Management Liability, Professional Liability, Cyber Liability and Reps and Warranties Coverages. Manny has extensive experience as an Underwriter and Broker. Manny has been involved in Cyber insurance since 1999.
</p>
|
Risk Placement Services | Breach Scenario |
| Molly McGinnis Stine (PANELIST)
<div style="text-align:center;font-family:'Calibri';font-size:11.00pt;"><span style="font-family:'Calibri';font-size:11.00pt;"> <p>
Molly McGinnis Stine, a partner in Locke Lord’s Chicago office, represents insurers and reinsurers with cyber, technology, media, data security, professional liability, D&O, E&O, and financial liability policies and risks. She advises insurers developing or revising a variety of types of policy wording. Molly also has experience with more than 1,400 first-party and third-party cybersecurity and privacy claims. In addition, she works with insurance and non-insurance clients to create and implement programs and procedures for cybersecurity and privacy risk preparedness and compliance and for incident response. Molly graduated from Macalester College and the University of Michigan Law School.
</p>
|
Locke Lord LLP | Factual and Legal Foundations |
| Nick Economidis (PANELIST)
<p>
Nick Economidis is a Vice President in the Professional Liability department for Crum & Forster responsible for eRisk including cyber insurance products and Technology Errors &Omissions.
Nick has over 30 years of total underwriting experience with 20 years of experience underwriting cyber risk exposures. Prior to joining Crum & Forster, Nick was an underwriter with Beazley (2008-2018), and the Vice President and Product Manager for Media, Technology and Network Security with AIG Executive Liability (2001-2008). He has an Associate in Risk Management designation from the Insurance Institute of America, a B.S. (Marketing) from Rutgers University, and an M.B.A. degree from Villanova University.
</p>
|
Crum & Forster | Factual and Legal Foundations |
| Patrick Thielen (PANELIST)
<div style="text-align:center;font-family:'Calibri';font-size:11.00pt;"><span style="font-family:'Calibri';font-size:11.00pt;"> <p>
Patrick Thielen is Senior Vice President, Financial Lines, with Chubb and is product lead for the Cyber and Technology E&O lines of insurance for North America. <br/><br/>
Mr. Thielen has spent most of his career in underwriting and leadership roles for business groups that provide all types of insurance to technology-industry companies and cyber insurance to companies across all industries. He was recently part of the leadership team that launched the Small Commercial Insurance division at Chubb. Among other responsibilities, Mr. Thielen is currently leading Chubb’s efforts to enhance and expand cyber coverage and risk mitigation solutions for small and midsize businesses.<br/><br/>
Mr. Thielen graduated with honors and distinction from the University of Minnesota’s Carlson School of Management in 2003. </p>
|
Chubb | Current Issues & Trends |
| Scott Swift (PANELIST)
<p>
Scott Swift is an Assistant Vice President-Claims for AXIS and is a manager in the Cyber, Tech, and E&O Claims group. During his 16 years with AXIS, Scott has handled Cyber, Tech, Media, E&O, and LPL claims and served as AXIS PRO’s Loss Control Counsel. Scott has spoken at numerous conferences, including the National Association of Broadcasters and the ABA Forum on Communications Law. Before joining AXIS, Scott was an attorney at Shook, Hardy, & Bacon in the firm’s Pharmaceutical/Medical Device Litigation division. He is a member of both the Missouri and Kansas Bars and earned his law degree from the University of Kansas School of Law where he served as Editor-in-Chief of the <em>Journal of Law and Public Policy. </em>
</p>
|
AXIS Insurance | Risks |
| Sean Hoar (PANELIST)
<p>
Sean Hoar is a partner in the Portland office of Lewis Brisbois and chair of the Data Privacy & Cybersecurity Practice. Sean Hoar, CISSP, GISP, CIPP/US, has extensive experience managing responses to digital crises and effectively marshalling resources to contain and remediate information security incidents. He served as the lead cyber attorney for the U.S. Attorney’s Office in Oregon where he was the point of contact for the FBI, Secret Service, and Homeland Security in system intrusions and other digital crime emergencies. He now manages responses to data breaches and counsels businesses on best practices in data privacy and information security. He also facilitates incident response planning, table top exercises, and risk assessments. <br/><br/>
As a veteran security and privacy attorney and an accomplished litigator prosecuting cybercrime, identity theft, Internet fraud, and other matters for the U.S. Department of Justice, Sean managed compliance with the Fourth Amendment, the Stored Communications Act, and other constitutional and regulatory frameworks for federal law enforcement. He trained federal investigators and prosecutors about the acquisition and use of digital evidence, and he trained foreign officials, on behalf of the U.S. Department of State, about anti-terrorism and cybercrime awareness. He taught courses in cybercrime and privacy law and serves as the executive director of the Financial Crimes & Digital Evidence Foundation. A frequent author and speaker on privacy and security matters, Sean has received numerous accolades from the FBI, the Secret Service, the IRS, and the DEA throughout his career.<br/><br/>
As referenced above, Sean holds the Certified Information Systems Security Professional (CISSP), the Global Information Security Professional (GISP), and the Certified Information Privacy Professional/United States (CIPP/US) credentials. These are often required to perform certain types of information security system audits.
</p>
|
Lewis Brisbois Bisgaard & Smith LLP | Breach Scenario |
| Shawn Melito (PANELIST)
<div style="text-align:center;font-family:'Calibri';font-size:11.00pt;"><span style="font-family:'Calibri';font-size:11.00pt;"> <p>
Shawn is a Management Analyst responsible for Kivu’s North American business development activities in the cyber insurance market and client relations with many of the leading data breach management and privacy specialized law firms.<br/><br/>
Shawn brings over 20 years of management experience to this role. Previously Shawn was a Management Consultant, Information Systems Analyst and business unit leader for NPC’s Immersion Data Breach Response Service group, a leading notification and call center service provider to the cyber insurance community. Other relevant prior work experience includes managing a Canadian breach response and identity theft services company, as well as Healthcare, Insurance Services and a contract with the Office of the Privacy Commissioner of Canada.<br/><br/>
Shawn is a certified information privacy professional (CIPP/US) through the International Association of Privacy Professionals (IAPP) and previous member of their Canadian Advisory Board. He has chaired multiple cyber insurance industry conferences and presented on the topics of data breach, data security and identity theft at IAPP, RIMS, NetDiligence, ACFE, CLE and the Institute of Internal Auditors events. He was also featured on SiriusXM’s radio show, <em>When Things Go Wrong.</em><br/><br/>
Shawn received his B.A. from the University of Toronto, and his M.B.A. from the Richard Ivey School of Business in London, Ontario.<br/><br/>
<strong>Education</strong>
<ul>
<li>Master of Business Administration, The University of Western Ontario, Richard Ivey School of Business, Canada</li>
<li>Bachelor of Arts, University of Toronto, Canada</li>
</ul><br/>
<strong>Certifications</strong>
<ul>
<li>Certified Information Privacy Professional / United States (CIPP/US), International Association of Privacy Professionals (IAPP)</li>
<li>Certified Sales Professional (CSP)</li>
</ul><br/>
<strong>Professional Associations</strong><br/>
International Association of Privacy Professionals (IAPP)
</p>
|
Cypfer | Breach Scenario |
Sponsors
Materials
Click here for an Excel list of attendees as of May 2, 2018
Click here for a list of CE/CLE approvals by state as of April 29, 2018
Handout Materials
Underwriting, Breach Response, 1st Party Incidents, 3rd party Claims