2010 Southern California CISO Executive Summit

Robert Brown is the Director of Information Security and CISO for Western Corporate FCU, a $30B wholesale financial institution providing payment and investment services nationwide. He has overall responsibility for all aspects of information security including policy, technology, budgeting, purchasing and staffing. His 14 years of experience in the industry have included roles as the founding partner of an INC500 security firm and acting as the senior consultant for the performance improvement practice at PricewaterhouseCoopers. Most recently, Brown has been focusing on the areas of virtualization, cloud computing, mobile technologies and security product integration efforts.

Malcolm Harkins is responsible for Intel’s IT infrastructure and application security, data privacy and protection, Sarbanes Oxley, and overall IT controls and compliance activities. He is also responsible for corporate business continuity. His overall mission within Intel is to drive the adoption and continued operation of controls to mitigate information risks to acceptable business levels. Harkins has been with Intel since 1992 and has had responsibility for Information Security since 2002.

Harkins’ prior roles include positions in finance, procurement and operations. He also program managed IT benchmarking and Sarbanes Oxley systems compliance efforts and he was the profit and loss manager for Intel’s Flash Product Group in the late 90's. He also co–authored an IT services business plan that lead to the creation of Intel Online Services, an external e-commerce hosting company.

Harkins has an MBA in Finance and Accounting from the University of California at Davis and a BA in Economics from the University of California at Irvine. Harkins is an active and accomplished speaker and whitepaper author and recently received the “Excellence in the Field of Security Practices” award at the 2010 RSA Conference.

David Lam, CISSP, CPP, has been involved in information security since 1991. As a Chief Information and Security Officer, Lam brings a converged view of information technology, information security and physical security to his day–to–day work. With 22 years of experience in information technology disciplines, Lam has also achieved ITIL Foundations, CNE, MCSE, CCNA, CCDA and Network+ certifications. With experience in both nonprofit and corporate arenas, Lam works to build the information security community through the Los Angeles ISSA, where he is currently Vice President. He has also been published three times in the ISSA Journal and has presented at numerous conferences on technology. He is currently working with a colleague on producing the Information Security chapters for the ASIS POA.

Arthur Lessard is the Chief of Information Security for Mattel, responsible for protection of company assets and digital intellectual property as well IT Security Architecture and Governance. Lessard's organization develops and coordinates implementation of security policy and standards for Mattel business units, ensures compliance with PCI and S/Ox, and drives development of new security-oriented services and projects.

Prior to joining Mattel, Lessard was VP of Worldwide Security for Technicolor, responsible for protection of customer content and intellectual property throughout the various Technicolor services organizations. His role encompassed managing both physical and information security in the production environments, and interfacing with the IT organization for network and business security.  Lessard engaged external auditors for site visits and worked with various law enforcement agencies, the MPAA, FACT and other organizations related to the control of movie piracy activities.

In past years Lessard led Disney's IT Security Policy and Strategy organization, served as head of IT Security Architecture for Disney, and was Director of Security and Network Infrastructure for Questia Media Inc.

Kevin Rigney is the Chief Information Security Officer for PETCO Animal Supplies, Inc. headquartered in San Diego, CA. His Information Security role involves the development, implementation and monitoring of the Information Security Program. The goal of the program is to protect customer information, employee information and company proprietary information. Additionally, he is responsible for overall IT Security & Compliance for the business. 

Rigney is a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) and a Certified Information Systems Auditor (CISA). Additionally, Rigney serves as the Naval Reserves Commander Third Fleet Computer Information Systems (CIS) Deputy, Joint Forces Maritime Component Command, supporting the Active Component of the Pacific Fleet.

Nick Staff is Senior Vice President and Information Security Manager for City National Bank. Staff has also been published in security periodicals and been credited with finding multiple exploits, including those involving Microsoft, Cisco and the Department of Justice. Prior to his management role he was a “white hat” hacker as well as Senior Security Architect for several financial institutions.

Miguel (Mike) Villegas is the Director of Information Security and CISO at Newegg Inc. and is responsible for information security, business continuity management and PCI DSS (Payment Card Industry Data Security Standard) compliance.

Villegas has more than 30 years of information systems security and IT audit experience. Previously he was VP & Technology Risk Manager for Wells Fargo Services responsible for IT regulatory compliance and was previously a partner at Ernst & Young and Arthur Andersen managing their information systems security and IS audit groups for a span of nine years. Villegas is a CISA, CISSP and GSEC.