Key Contributors


Aimee Rhodes

Founder and Editor-in-Chief, Security Current

Aimee Rhodes is Editor-in-Chief at securitycurrent. Previously, Aimee led marketing at several security companies including Corero Network Security, Inc., Xceedium, AlgoSec and Whale Communications Ltd., acquired by Microsoft.  She also served as Vice President of Media and Editorial Content at GenerationA, where she was responsible for launching an Internet-based news and information portal. Prior to GenerationA, Aimee served as a foreign correspondent at the Reuters News Agency out of Israel where she interviewed leading politicians and influencers. Previously, she served as Director of Israel Radio's English News Service, where she was responsible for management and execution of four daily broadcasts, aired locally and internationally. Aimee also worked as an on air news presenter for Jerusalem Online, a globally broadcast current affairs program.

She holds a Masters in Journalism and a Bachelors in Political Science both from Michigan State University.


Victor Wheatman

Senior Editor, Security Current

Vic Wheatman is Senior Editor at securitycurrent and an Independent Global Security Market Analyst.  Prior to this, Vic was a Managing Vice President at Gartner Research for the Security and Privacy team where he worked for over 20 years.  

He also chaired and programmed Gartner's worldwide security conferences. Earlier, Vic was vice president at Gartner's Electronic Commerce / Electronic Business research area.  He served as President of the northern California EDI/EC Users Group for seven years. Earlier in his career, Mr. Wheatman worked as a public radio producer and station manager.  


Jennifer Tanner 

Managing Editor, Security Current

Jennifer Tanner is Managing Editor at Security Current. Previously, Jennifer was director of corporate communication at T.E.N., an award-winning organization that facilitates deep peer-to-peer relationships between top security executives, industry visionaries and technology solutions providers.

Prior to T.E.N., Jennifer served as media relations manager for Georgia Southern University where she liaised with the media and served as a university spokesperson.  She also served as a communications specialist for Valdosta State University where she was responsible for the dissemination of public information and media relations for the institution’s strategic communication initiative. Prior to that she was a journalist with the Valdosta Daily Times where she covered business news.

She holds a Masters in Public Administration and a Bachelor of Fine Arts in Speech Communication and Public Relations both from Valdosta State University.


Charles Kolodgy

Former IDC Research Vice President for Security Products and "Ask the Expert" Security Current

Charles Kolodgy was a Research Vice President for IDC's Security Products service. He was with IDC for a dozen years where he executes primary research projects, and analyzes security markets. Areas of particular focus are endpoint security, mobile security, vulnerability assessment and risk management, security intelligence, and encryption.

He is best known for the naming and defining of the Unified Threat Management (UTM) market. Prior to IDC, Charles spent 16 years with the National Security Agency, where he held a variety of analyst and managerial positions within both information assurance and signals intelligence organizations. Charles is frequently quoted in popular business and trade publications and has been a speaker at numerous industry conferences.


Christine Vanderpool

CISO MolsonCoors Brewing Company

Christine Vanderpool is the Chief Information Security Officer for MolsonCoors Brewing Company.  Vanderpool is responsible for the security of MolsonCoors Brewing Company’s information technologies and data, as well as the compliance requirements from an IT perspective. 

She has a proven track record as a security leader.  Vanderpool spent her career in positions of increasing responsibility in Information Technology Security realm including application security, IT audit, IT controls and compliance. She started her career at IBM’s Storage Technologies Division. After leaving IBM, she joined Deloitte for a short time focusing on SOX Compliance.

Vanderpool joined Coors Brewing Company in 2004 and has served in numerous roles responsible for leading successful IT Security initiatives including the IT GCC controls, the IT Policy and Procedures and End User Education Programs, a full scale Identity Management program and other projects and programs resulting in an improved mature Security program.

Vanderpool earned her Bachelor of Business Administration with a concentration in Marketing Management at University of New Mexico.


David Cass

CISO IBM Cloud and SaaS Operational Services

David is the CISO for IBM's Cloud and SaaS Operational Services. At IBM he has global responsibility for all aspects of security practices, processes, and policies across the IBM Cloud SaaS business unit. 

Prior to joining IBM he was CISO of Elsevier where he led an organization of experienced legal, risk and security professionals that provide data protection, privacy, security, and risk management guidance on a global basis.

David has extensive experience in IT security, risk assessment, risk management, business continuity and disaster recovery, developing security policies and procedures. He has played a key role in leading and building corporate risk and governance and information security organizations in the financial sector.

As the senior director of information security risk and governance for Freddie Mac, David rebuilt the risk and governance function. Prior to that he was VP of risk management for JPMorgan Chase, and was responsible for providing an accurate assessment of the current risk management state.

He has an MSE from Penn Engineering and The Wharton School of Business and an MBA from MIT.


David Hahn

CISO Hearst Corporation and "Ask the CISO" Security Current

David is the head of Corporate Information Security and Risk for the Hearst Corporation.  Hearst is one of the world's largest and most diversified media companies with Businesses in Magazines, Newspapers, Television/Broadcast, Business Media, and Ventures including A&E channels and ESPN.

David is helping Hearst innovate and lead into more Cloud computing and moving content to Digital capabilities leveraging the Hearst multiple media outlets in a fast, efficient and secure manner.  

Prior to Hearst, David was at Intuit where he lead the CyberFraud strategy and managed areas in Security Operations, including Cloud with the many product/business groups such as TurboTax, Quicken, Mint, and QuickBooks.

David also spent many years at Wells Fargo Bank, where he headed up all security for, at the time the largest on-line banking site.  

David’s focus and background has been about taking risk based approaches to enable business to grow and innovate. He has an MBA from Golden Gate University and Undergrad from San Jose State University in Business Admin. He has been a CISSP.  


David Sheidlower


David Sheidlower, CISSP, CISM is the Chief Information Security Officer for BBDO, the world's most awarded advertising agency.

Previousy he was (CISO) for Health Quest, the Mid-Hudson Valley's largest healthcare system.  David also serves as a member of the State of New York Health Information Network Policy Committee. Prior to Health Quest, he was the Division Information Security Officer within the small business lending division of Wells Fargo Bank—the largest small business lender in the country. 

David writes and blogs on security with a focus on the intersection of cyber security and humanism, something he is uniquely qualified to write on.  His past activities include presenting at the MIS Institute’s Big Data Security Conference, working with the World Health Organization on Functional Health Status Measures and teaching letterpress printing at the Naropa Institute’s Jack Kerouac School for Disembodied Poetics in Boulder, Colorado.

David also blogs at . He holds a Bachelor’s degree from the University of California, Berkeley and a Master’s degree in Health Service Administration from St. Mary’s College of California.


David Sherry

CISO Brown University

David Sherry is the Chief Information Security Officer at Brown University in Providence, RI.  He has institutional responsibilities for all areas of information security and privacy, and plays a key role in the records management program, regulatory compliance, and copyright law. 

Prior to moving to higher education David spent several years in financial services, with responsibilities for enterprise security governance and regulatory compliance, access controls and operations, identity management, and the security awareness program. 

A graduate of Providence College and Northeastern University, with certifications of CISSP and CISM, he is a frequent conference speaker on emerging security topics and best practices, as well as a guest-lecturer throughout the academic year at several New England institutions.


Farhaad Nero 

Vice President of Enterprise Security, Bank of Tokyo-Mitsubishi UFJ, Ltd. 

Farhaad has more than 15 years of Information security experience, many in management roles. In addition to his role at the Bank of Tokyo, Mitsubishi he served as Assistance Vice President at BNP Paribas. Prior to that, he led the Network Services team, with full information security responsibilities, at Time-Warner. He also led the global information security team for a top ten Big Data startup. 

In addition to his vast private sector experience, he has worked in the public sector having served in the US Navy as an Information Assurance Manager (IAM) Level 2 and Division Manager where he developed performance metrics and measurement tools.

He has done deep dives into standards including PCI DSS, ISO 27001/2, SOX, GLBA, and conducted security risk assessments - including vendor security risk assessments both remote and onsite. 

In addition to strategic leadership positions, Farhaad also has solid hands-on technical experience, implementing technologies and processes first-hand. He holds CISSP, C|CISO, and IAM Level 2 (US Department of Defense) certifications.


Gary Hayslip 

CISO City of San Diego

Gary Hayslip is the Deputy Director and Chief Information Security Officer (CISO) for the City of San Diego. As the CISO, Gary advises the City of San Diego’s executive leadership which consists of the Mayor, City Council, and 40+ city departments and agencies.

He oversees citywide cyber security strategy and the enterprise cyber security program, operations, compliance and risk assessment services. His mission includes creating a “risk aware” culture that places high value on securing city information resources and protecting personal information entrusted to the City of San Diego.


Hussein Syed

CISO Barnabas Health

Hussein Syed is the Chief Information Security Officer at Barnabas Health, New Jersey’s largest integrated health care delivery system, providing treatment and services to more than two million patients each year.

At Barnabas Health, Hussein is responsible for information security and the organization’s HIPAA compliance and security governance program. Hussein and his team are responsible for information security functions for the healthcare system.

A seasoned Information Technology professional, he has more than 22 years of experience.


Joel Rosenblatt

Columbia University Director of Computer and Network Security

Joel Rosenblatt is the Director of Computer and Network Security, Columbia Information Security Office (CISO).  As Director, Joel oversees the computer security for all systems connected to the Columbia University Network. He is the chairperson of the Security Metrics subcommittee of the Security Effective Practices committee of Educause.

Joel Graduated from Columbia Engineering and went to work for what was then called CUCCA (Columbia University Center for Computing Activities) running the IBM Mainframe systems. He is a member of Infragard and the NYECTF and active in other organizations that he can neither confirm nor deny the existence of.

John. J. Masserini

CSO MIAX Options Exchange

As Chief Security Officer, John is responsible for information security, physical security, and business continuity for the MIAX Options Exchange. A 20-year veteran of the security industry, John is responsible for all information security and risk management strategies, including security architecture, security operations, regulatory compliance, and business continuity.

Prior to joining MIAX, John was the CISO for Dow Jones, overseeing security and risk management for all of the Dow Jones and Wall Street Journal brands for over six years. He has held key leadership positions at several information security market leaders such as VeriSign and Guardent, as well as leading integrators such as EDS and SAIC.

He has been honored as a 2013 Top 10 Breakaway Leader at the Evanta Global CISO Summit ( and as the 2010 ISE Northeast Information Security Executive of the Year by T.E.N. (

John Pescatore 

SANS Institute Director of Emerging Security Trends and "Ask Mr. Security Answer Person" securitycurrent

John Pescatore is Director of Emerging Security Trends at the SANS institute and was a Vice President and Distinguished Analyst at Gartner for 13 years. John has over 35 years of experience in computer, network and information security.

Prior to Gartner, he was senior consultant for Entrust Technologies and Trusted Information Systems and a Security Engineer for the U.S. Secret Service and the National Security Agency.

Larry Whiteside Jr.


Larry Whiteside Jr. is the Chief Security Officer at LCRA, an organization that supplies cost effective electricity for Central Texas, manages water supplies and floods in the lower Colorado River basin, provides public parks, and supports community development in 58 Texas counties.

Larry is a seasoned executive having served as CISO and in several other leadership positions in both the private and public sector. Larry has served as the CISO of Spectrum Health, CISO of Visiting Nurse Service of NY, Deputy CISO of  Marsh & McLennan Companies, Inc. and VP of Global Information Security among other roles.

A dedicated security professional and sought after speaker,  Larry started his career in the United States Air Force as an officer. While in the military he held various roles including, Chief- Information Warfare/Network Security Divisions at the Pentagon, Chief- Network Security Division - Single Agency Manager at the Pentagon.

Larry received his BS in Computer Science at Huston-Tillotson University in 1994 and is an active member in of various organizations, including Information System Security Association, Infragard, Cloud Security Alliance, Phi Beta Sigma Fraternity, Boys and Girls Club, YMCA, and multiple industry-based Security Committees committed to strengthening security in the public sector.


Randy Marchany 

CISO Virginia Tech, SANS Instructor

Randy Marchany is the Chief Information Security Officer for Virginia (VA) Tech. He is also the director of the VA Tech IT Security Lab, a component of the university's Information Technology Security Office. 

A SANS instructor since 1992, Randy was a co-author of the original SANS Institute Top 10 Internet Threats, the SANS Top 20 Internet Threats, the White House-commissioned SANS Consensus Roadmap for Defeating Distributed Denial of Service (DDoS) Attacks, and the SANS Incident Response Step-by-Step guides. 

He also was part of the SANS Institute's Secure Code project that developed a set of exams to test programmers' knowledge of secure coding techniques. He is a member of the Center for Internet Security development team that produced and tested the CIS Solaris, HPUX, AIX, Linux and Windows2000/XP security benchmarks and scoring tools. 

Randy is a co-author of the Educause "Computer and Network Security in Higher Education" booklet. He is a member of the EDUCAUSE security task force focusing on risk assessment and security metrics. He is one of the founders of the Virginia Alliance for Secure Computing and Networking, a consortium of security practitioners and researchers from VA Tech, University of Virginia, James Madison University, and George Mason University. He also is co-holder of two cyber security patents.​

Randy is a frequent speaker globally at conferences including Educause, SANS, IIA, ISACA, ACUA, International CISO symposium, IEEE, NIST, NY State OIT Security conference, FBI-Infraguard chapters, US Forest & Wildlife Service, Computer Security Conference, Air Force Material Command. ​


Richard Stiennon

Richard Stiennon is a security expert and industry analyst, Richard is the author of Surviving Cyberwar (Government Institutes, 2010) and founder of IT-Harvest, an independent analyst firm that researches IT security technologies. He was formerly a Vice President of Research at Gartner where he covered security topics including firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), security consulting and managed security services. He is a holder of Gartner’s Thought Leadership award and was named “One of the 50 most powerful people in Networking” by Network World Magazine.

Richard also has served as Chief Marketing Officer at Fortinet, Inc. and Vice President of Threat Research at Webroot Software. A noted security specialist, Richard is a sought after speaker having presented in more than 26 countries on six continents and is one of the most followed security analysts on Twitter.

Richard is frequently quoted in trade and business publications, including Business Week, Reuters, InformationWeek, Investor's Business Daily, InternetWeek, Light Reading, Network World, and The Wall Street Journal, and has written columns and blogs for a variety of publications including Forbes, Network World magazine, CNet, and CIOUpdate.

He earned a Bachelor of Science in Aerospace Engineering from the University of Michigan. He holds two patents. He is currently completing his Masters of Arts in War in the Modern World program at King’s College, London.


Bob Tarzey

Quocirca Director and Key Analyst

Bob Tarzey is a director and key analyst at UK-based Quocirca. His main areas of coverage are IT security, networking, on-demand services and system management and performance.

As with all Quocirca analysts, Bob’s focus is on the big picture working to help businesses understand how they can benefit from a particular IT investment. This often includes looking at the total delivery of IT solutions, rather than specifics. Known for its knowledge of the market based on its primary research, Bob has managed numerous projects at Quocirca targeted primarily at Europe but also covering the USA, Far East, Middle East and Australia.

He writes regular analytical columns and blogs for Computing, Computer Weekly, Tech Republic, Computer Reseller News (CRN), Infosecurity Magazine and IT Director. He has written for The Times, Financial Times and The Daily Telegraph and provides general comment for the UK and European IT and business press. Bob is a regular participant of roundtables with various media bodies and since 2003 has acted as a judge for the CRN Channel Awards. He has also acted as a moderator at end-user and channel forums and regularly presents Quocirca’s research at seminars and webinars including regular appearances for Computing, Computer Weekly and Infosecurity Magazine.

Bob has extensive knowledge of the IT industry. Prior to joining Quocirca in he spent 16 years working for US technology vendors including DEC (now HP), Sybase (now SAP), Gupta, Merant (now Serena), eGain and webMethods (now Software AG).

Bob has a Bachelors of Science in Geology from Manchester University and PhD in Geochemistry from Leicester University.


About Security Current | Privacy Policy | Subscribe to our newsletter