<div style="text-align:center;font-family:'Calibri';font-size:11.00pt;"><span style="font-family:'Calibri';font-size:11.00pt;"> <p> <strong>Experience:</strong> <ul style="list-style-type:disc"> <li>18 years experience in IT, cybersecurity, and management consulting</li> <li>Provided cybersecurity and strategy advisory to AXA XL’s Cyber Insurance team and Chief Underwriting Officer</li> <li>Previously Lead Senior Consultant and Security Assessment Subject Matter Expert at Sungard Availability Services and Senior Consultant at Booz Allen Hamilton.</li> <li>As a QSA, wrote Reports on Compliance for several large retail companies against the PCI DSS standard.</li> <li>As a certified ISO 27001 Lead Implementer, led several large companies through the ISO 27001 certification process, including a DAX 30 automotive company & a multinational law firm.</li> <li>Assisted a global US-headquartered law firm in designing and implementing a GDPR compliance programme.</li> <li>Assisted a large multinational telecom company that serves over a billion customers daily, to design a robust cyber incident response program.</li> <li>Led a large insurance brokerage through a three-year cyber security improvement programme based on NIST 800-53 controls.</li> </ul><br/> <strong>Background:</strong><br/> Aaron Aanenson has spent the past 18 years in IT and cybersecurity, starting his career in management consulting at Booz Allen Hamilton where he provided risk management advisory to financial services companies. Aaron continued his consulting career at Sungard Availability Services where he served as the company’s security assessment subject matter expert and PCI Qualified Security Assessor. Aaron graduated with honors degrees in Information Systems and Information Assurance from Pace University, designated a National Center of Academic Excellence in Information Assurance by the US National Security Agency and Department of Homeland Security. Now, as Cyber Security Director at S-RM, Aaron oversees the cybersecurity business in the Americas, providing cyber security consulting services to corporate senior leadership and private individuals, promoting that security strategy should be realistic, risk-based, and cost-effective. During his time at S-RM he has also served as an internal security and strategy consultant for AXA XL’s cyber insurance team, reporting to their Chief Underwriting Officer. </p>

<p> Alan Levine is the former Chief Information Security Officer for two Fortune 500’s, Alcoa and Arconic, where he held global accountability for all aspects of cyber security, personal data privacy, compliance, and eDiscovery. Alan is the recipient of numerous awards including two commendations from the FBI for his work in support of national security. Alan earned his Bachelors from John Jay College of Criminal Justice, a Masters from City College of New York, and is ABD from Carnegie Mellon University. Alan is currently an independent cyber security advisor and Board Chair of CMU’s CISO program. Alan is based in Pittsburgh, PA. </p>

<p> Bill has worked on over a thousand data incident/data breach cases along with numerous cases dealing with white collar crime and enterprise risk management. He has handled all types of ransomware, data extortion, business email compromise, nation state attacks, malware outbreaks, insider threats, amongst other items. Many of his cases have been mentioned in The Wall Street Journal, Financial Times, Forbes, and Krebs on Security, amongst other publications. With a background in finance, operations, and software development, he brings valuable insights to clients from multiple dimensions. <br/><br/> In addition to his forensic engagement assignments, Bill has served in numerous interim management roles for organizations experiencing disruption. He has assisted companies with various management consulting assignments pertaining to strategy, operations, and software implementations. <br/><br/> Bill is a Certified Public Accountant (CPA)/CFF, Certified Fraud Examiner (CFE), and a certified Project Management Professional (PMP). He has spoken at numerous events on cybercrime, risk management, and strategy/operations consulting. He serves on the board for Legal Prep Charter Schools and is an adjunct professor at DePaul University in Chicago. </p>

<p> Chas Bellingrath is a Partner and National Practice Leader for Cyber, Privacy & Technology E&O at ARC Excess & Surplus, LLC. In his role Chas is responsible for advising agents and clients on issues related to technology, privacy and cyber related risks as well as negotiating with carriers on policy terms and conditions. Chas specializes in tailoring tech, cyber, and breach response coverage and advises clients on breach preparedness and incident response planning. In addition, Chas is responsible for product development and production throughout the United States. <br/><br/> Prior to joining ARC, Chas was a Senior Broker and head of the Cyber/Tech division at a regional wholesaler where he initially launched the product in 2007. <br/><br/> Chas brings ARC over 10 years of dedicated Cyber, Privacy & Technology risk expertise. Chas is globally recognized and frequently instructs privacy seminars and participates on executive panels for Cyber Risk conferences. Chas also sits on several Producer Advisory Councils for top insurance carriers and the PLUS CyberRisk Task Force. </p>

<p> Edward J. McAndrew is a counselor, investigator, and trial lawyer who helps clients navigate life in the digital world. He is the Co-Practice Leader of the firm's Privacy and Data Security Group and the Leader of its national Cyber Incident Response Team.<br/><br/> Named a "Cybersecurity and Data Privacy Trailblazer" by <em>The National Law Journal</em>, Ed helps clients manage cyber risk, comply with legal requirements and industry standards, prepare for and respond to cyber incidents, and handle related investigations and litigation. Major substantive areas of his practice include cybersecurity, digital privacy, social media, online speech, commercial, employment, intellectual property, corporate governance, regulatory, and criminal matters. He also advises clients on cyber-based national security issues, as well as governmental demands for data and assistance in investigations. He focuses his pro bono work on assisting individual and nonprofit victims of cybercrimes.<br/><br/> Prior to joining Ballard Spahr, Ed served for nearly a decade as a federal cybercrime prosecutor in the U.S. Attorney's Offices for the Eastern District of Virginia and for the District of Delaware. As a Cybercrime Coordinator and National Security Cyber Specialist, Ed developed extensive experience in investigations and litigation involving hacking and other cyberattacks; digital espionage; cyberstalking; threats and extortion; identity and intellectual property theft; terrorism and domestic extremism; financial, government contracting, and tax fraud; money laundering; export control violations; obstruction of justice; online child exploitation; and human, narcotics, and firearms trafficking. He has handled a multitude of high-profile, complex and sensitive investigations, trials and appeals-many involving cutting-edge legal and technological issues.<br/><br/> Ed serves by appointment as Co-Chair of the Delaware Supreme Court's Commission on Law and Technology, which has developed leading practices and educational programs relating to cybersecurity and digital privacy for lawyers and legal services organizations.<br/><br/> He is an avid commentator, presenter, and author on legal issues related to cybersecurity, digital privacy, cybercrime, computer forensics, and Internet safety.<br/><br/> </p>

<p> Elissa is a Managing Director and Cyber Product Leader for Lockton’s Financial Services Pacific Series. Based remotely in New York City, Elissa is responsible for leading product and thought leadership for Cyber, Tech E&O, and Media Liability. In addition, she is the lead technical consultant and advises clients and colleagues on best practices in risk mitigation, vendor management, and claims navigation. <br/><br/> Elissa has over fifteen years of cyber, technology and media liability insurance expertise having worked as a Managing Director and Cyber Technical Leader for NFP’s Management and Professional Lines. While at NFP, she was responsible for the development of thought leadership, claims advocacy and consultation services as well as counseling clients on their risks and insurance needs in the areas of technology, privacy and cyber. Prior to NFP, Elissa worked as the Underwriting and Product Manager at AXA XL where she was responsible for AXA XL’s risk management services designed to minimize the frequency and severity of data breaches. Before joining AXA XL, Elissa was a broker in Marsh and McLennan’s Network Security and Privacy Practice and claims counsel at AIG focusing on Data Security and Privacy, Media and Technology Liability. She has considerable experience presenting on these topics on panels and seminars for clients and industry associations and has published several industry related articles. Elissa holds a Bachelor of Arts from the State University of New York at Albany and a Juris Doctor from Suffolk University Law School and is admitted to practice law in Massachusetts and Connecticut. </p>

John has extensive experience in insurance law, regularly advising insurers on liability and insurance issues concerning professional and directors' and officers' liability, transactional liability, privacy and cybersecurity and media liability. He frequently assists insurers in drafting insurance policies including director and officer liability, professional libility and cyber and technology liability insurance. John speaks and writes frequently on legal and insurance issues involving privacy and information security. John co-authored the chapter on information security in the Revised Internet Law for the Business Lawyer (2d ed. 2012)(ABA), and RFID, Near Field Communications and Mobile Payments - A Guide for Lawyers (2013)(ABA). He recently co-authored the insurance chapter for the recent ABA book, The Directors' Technology Handbook. John is a member of the IAPP, holding a CIPP/US certification, and is co-chair of the ABA Cyber insurance subcommittee within the Cyberspace Law Committee. Since 2019 he has regularly presented at Plus Cyber University on issues of silent cyber.

<p> Detail and client-oriented attorney with comprehensive background in all aspects of the insurance industry, including corporate governance, best practices and procedures, risk management, executive liability, compliance, and employment exposures. Proven success in proactively identifying risk exposures and implementing targeted plans to minimize risks, increase revenue, and to control expenses. Highly versatile. Quickly master new roles and responsibilities. Excellent management, emotional intelligence, oral and written communication skills. Welcome challenges. Fluent in Spanish and French. Dual national US and UK/EEU.<br/><br/> I am passionate about serving clients, educating companies, sharing critical knowledge and optimizing productivity to benefit your corporation’s bottom line. My expertise includes risk management, corporate governance, compliance, employment practices, executive liability and business development.<br/><br/> My mission is to streamline, organize and create best practices and procedures to improve your company’s risk profile. By marrying an eye on expenses with risk management, we protect and position your company to achieve greater results. I welcome the opportunity to connect and learn more about your company and how I can best serve you.<br/><br/> Specialties include, inter alia: <br/> Professional Liability Insurance <br/> Enterprise Risk Management (ERM) <br/> Compliance<br/> Employment Practices (EPL) <br/> Directors & Officers Liability (D&O) <br/> Corporate Governance <br/> Cyber Risk Mitigation<br/> Regulatory Compliance <br/> Regulatory Audits <br/> Medical Liability <br/> Human Resources Consulting: Best Practices and Procedures, File Documentation, Performance Management, Documentation Training, and EEOC Meeting Preparation <br/> Sales & Business Development <br/> Product Development<br/><br/> <strong>Education</strong><br/> University of Oxford, Honour School of Jurisprudence <br/> Juris Doctor (J.D.), Law - Jurisprudence <br/><br/> Cornell University <br/> Bachelor's Degree, Law & Psychology<br/><br/> Pursuing CISSP studies time permitting<br/> Cyber Risk Management and Systems Security Matters · (2018) <br/><br/> Smith College <br/> Bachelor's Degree, Government and Psychology - Double Major<br/><br/> Emma Willard School <br/> High School Diploma, Political Science and Government, Languages </p>

<div style="text-align:center;font-family:'Calibri';font-size:11.00pt;"><span style="font-family:'Calibri';font-size:11.00pt;"> <p> Molly McGinnis Stine, a partner in Locke Lord’s Chicago office, represents insurers and reinsurers with cyber, technology, media, data security, professional liability, D&O, E&O, and financial liability policies and risks. She advises insurers developing or revising a variety of types of policy wording. Molly also has experience with more than 1,400 first-party and third-party cybersecurity and privacy claims. In addition, she works with insurance and non-insurance clients to create and implement programs and procedures for cybersecurity and privacy risk preparedness and compliance and for incident response. Molly graduated from Macalester College and the University of Michigan Law School. </p>

<p> Steve Robinson is the Area President and National Cyber Practice Leader for Risk Placement Services, Inc. The RPS team has specific expertise in cyber insurance program development for businesses and organizations in numerous verticals such as financial services, education, healthcare, retail, hospitality, religious and nonprofit and education. A graduate of the University of South Carolina, Steve has been with RPS since 1995 and his public speaking engagements have included the national Advisen Cyber Liability Insights Conference, the ACI Cyber and Data Risk Insurance Litigation Conference, the national Cyber Liability Insurance ExecuSummit, and a panelist discussing cyber risk insurance trends before the Federal Insurance Office at the United States Treasury. Steve has published numerous articles on cyber risk insurance, authored white papers relative to information risk exposures that organizations face, and trained insurance agent groups throughout the United States on matters of cyber risk insurance, both through webinars and continuing education certification. Steve can be reached in the Cambridge, Maryland office at 410-901-0704 or via email at Steven_Robinson@RPSins.com. </p>