North American Information Security Summit

Phil Venables is the Chief Information Security Officer of Google Cloud, where he leads the risk, security, compliance and privacy teams. He joined Google in 2020, after spending over 25 years as a CISO at multiple financial services companies.

Nasrin Rezai is senior vice president and Chief Information Security Officer for Verizon. She is responsible for setting information security strategy, policy, standards, architecture and processes. Rezai and her team work with and across Verizon’s business units to protect its customers and its leading networks.

Prior to joining Verizon, Nasrin held the position of Global Chief Information and Product Cyber Security Officer at GE. She was responsible for all aspects of cyber security strategy and operations for GE products and enterprise, including incident response, threat intelligence, security services, architecture, commercial OT security, and regulatory & compliance.

Her previous roles include Global CISO for GE Capital and head of Corporate Governance, Technology Risk and M&A security, for the industrial GE businesses. Prior to GE, she served as SVP, Chief Tech. Risk Officer in the Enterprise Risk Management Organization at State Street and as CTO of Security at Cisco Systems.

Throughout her career, Nasrin has promoted engineering and architecture in designing security solutions for large enterprises. She is passionate about helping others develop their potential, and mentors many young men and women. She holds a master’s degree in business administration and a bachelor’s degree in information systems. She also holds an Executive Certification from Harvard and Cambridge.

Nasrin lives with her family in New York City.

Garima Maheshwari is Vice President of Information Security and Risk Management (ISRM), Business Information Security Officer (BISO) for Johnson & Johnson Innovative Medicine. She leads a global organization responsible for information security and risk management activities for Innovative Medicine Commercial, R&D and Supply Chain areas with a focus on Digital Trust, ensuring that we protect our innovation, secure our products & drive resilience of our supply chain and enable availability, integrity, and confidentiality of company assets. Garima also has responsibility for Operational Technology (OT) Security for Johnson & Johnson. Garima is responsible for the Innovative Medicine business’s cybersecurity strategy and direction, working closely with senior leaders to identify and prioritize cybersecurity solutions and oversee the consistent implementation of business solutions in a secure manner. Garima started her career at Johnson & Johnson and has held roles of increasing responsibility in Business Technology, Risk Assurance, and Information Security across Consumer, MedTech, Shared Services and Innovative Medicine. Garima is passionate about talent development and is a mentor and sponsor of diverse talent through both formal and informal programs and channels. She is also an active contributor across industry cybersecurity working groups and forums. Garima holds a Master of Science degree in Computer Science from the New Jersey Institute of Technology and a bachelor’s degree in English and Economics.

Sherrod DeGrippo is Director of Threat Intelligence Strategy at Microsoft. She was selected as Cybersecurity woman of the year in 2022 and Cybersecurity PR Spokesperson of the year for 2021.

Previously, she was VP of Threat Research and Detection at Proofpoint, where she led a global team of threat researchers, malware reverse engineers, and threat intelligence analysts. Her career in cybersecurity spans 19 years with prior roles including leading Red Team Services at Nexum, senior solutions engineer for Symantec, senior security consultant for Secureworks, and senior network security analyst for the National Nuclear Security Administration (NNSA).

She is a frequently cited threat intelligence expert in media including televised appearances on the BBC news, and commentary in the Wall Street Journal, CNN, New York Times, and more. Having presented at Black Hat, Tech Crunch Disrupt, B-Sides Atlanta, RSA conference, RMISC, BrunchCon, and others, Sherrod is a well known public speaker. Currently Sherrod hosts THE Microsoft Threat Intelligence podcast.

In her personal time, Sherrod spends time with her rescue dog Boris Karloff.

Tomás Maldonado is the Chief Information Security Officer (CISO) at the National Football League (NFL).  He is globally responsible for leading the information security program for the League and its entities.  Maldonado has over 23 years of experience in this area, having led global information security teams and programs at several large international organizations.

Prior to Joining the NFL, Maldonado was the CISO at International Flavors & Fragrances where he was globally responsible for establishing and leading the Cybersecurity & Technology Risk Management business unit.

Maldonado was also an executive director and CISO for the corporate sector of JPMorgan Chase, where he established and shaped the future direction of the security program and focus for the line of business. He was also a VP of technology risk management at Goldman Sachs where he worked on several key initiatives namely creating and leading the data loss protection program. He had additional opportunities at Schroders where he was the network security officer, Ernst & Young and Bloomberg LP.

Maldonado serves as an advisory board member to several innovative companies.  He has several industry recognizable certifications: he is a CISSP, a CISM, a CDPSE, and a CRISC. He also holds a Bachelor of Science in computer science from Fordham University.

Eric is a highly innovative, versatile, and dynamic executive leader with over 20 years of experience in Cybersecurity, Technology Controls, and Third Party Risk Management in the Financial Services Industry, primarily at Global Systemically Important Banks (G-SIBs).

In his current capacity, Eric is the US Chief Information Security Officer (CISO) for TD Bank, America’s Most Convenient Bank (AMCB) and TD Securities (TDS), and is based in Wilmington, Delaware. Prior to joining TD, Eric was the Supplier Assurance Services Executive at JPMorgan Chase & Co., where his organization was responsible for the assessment, continuous monitoring, and third party risk management activities for a highly complex supply chain with teams positioned across the globe. Eric also served as the Head of Cybersecurity for Chase Consumer and Community Banking (CCB), the North America Consumer Bank Group Information Security Officer (GISO) at Citi, and held progressive cybersecurity leadership roles at Bank of America.

Eric is a champion for Diversity, Equity and Inclusion (DE&I) both inside and outside of the organization, including previously serving as the Head of DE&I for Global Supplier Services at JPMorgan Chase & Co., and supporting innovative programs enabling minority suppliers to become cyber-ready to do business within the Financial Services Industry.

Eric is active in the community through board service, and currently serves as the Vice Chairman of the Board for the Delaware Community Reinvestment Action Council (DCRAC). He also serves as the Financial Services representative on the Delaware Cybersecurity Advisory Council, appointed by Governor John Carney in 2018.

Jeff Northrop was recently promoted from Chief Information Security Officer for Mars Petcare into his current role as Chief Information Officer for Mars Wrigley North America. Mr. Northrop joined Mars, Incorporated in May 2019 as Director, Security CoE where he established an OT security program, operationalized the data protection program, and managed Security Architecture before assuming the CISO role for Mars Petcare.

Prior experiences include positions as Security Officer for Liberty Mutual, CTO for the IAPP, and Head of Technology for Reed Elsevier. Mr. Northrop lives in Maine where, along with his wife, he has raised two boys. He now spends his free time hiking, tending to his gardens, and spoiling his cat and chickens.

Michael Elmore holds the position of SVP, Global Chief Information Security Officer (CISO) at GSK.  Prior, he was the CISO for Haleon, GSK’s Consumer Healthcare business, which was divested in 2022. In this role, Michael was responsible for successfully standing up the dedicated Cybersecurity Office for the new company spinout.

Before GSK, Michael was the Chief Experience Officer for Cisco’s $15B Enterprise Networking & Security Business Unit, and before Cisco, he was the Global CISO at Cigna Healthcare (Fortune 15).

Michael is a forward leaning technologist and has spent his entire career building and leading technology teams across several functional areas, including Cyber Security, IT infrastructure, Application Development, Contact Center and Collaboration. He has executive experience on both the customer and vendor sides of the table, leading large Infrastructure and Cyber Security transformations at UnitedHealth Group, Cigna, and GSK as well as driving the customer experience transformation towards a software-first, subscription-based business at Cisco. He has a proven track record of execution through M&A and insourcing transitions, improving security, compliance and driving cost optimization, while leading distributed teams in fast evolving global markets, including China and India.

Michael regularly advises venture capital firms and early to mid-stage startups that focus on IT infrastructure, Enterprise Software and Cyber Security advancements.  He currently serves as an Independent Board Director at Graphiant (Sequoia backed) and a board observer for Selector.ai.

Michael holds a B.S. and double major in Information Network Management and Marketing from the University of Minnesota.  A former college hockey player, he is passionate about sports and continues to play and coach youth hockey. He is also an avid runner and an active board member with the Special Olympics.  He and his wife Jennifer have two children, Ellie (16) and Landon (12).