Cybersecurity

As the Vice President of Charles River Associates’ Global Cybersecurity and Incident Response Investigations, Forensics services practice in Toronto, Aniket Bhardwaj provides cyber intrusion investigation services to clients globally. His 20 years of experience in crisis response, threat intelligence, attack surface identification, and other cybersecurity advisory services such as security hygiene, compromise discovery and red team, combined with his well-established understanding of challenges within the nation’s critical infrastructure, have made him one of the top cybersecurity leaders globally. Bhardwaj’s experience also includes tracking nation-state adversaries, threat actors involved with cyber espionage, and financially motivated crime groups, including insider threats. Bhardwaj has also served as Virtual Chief Information Security Officer at various organizations and has executed security transformation journeys by establishing functions such as risk & compliance, incident and threat management, overall IT operations and security, and mature clients’ ability to respond to incidents. Recognizing his services to clients globally, Bhardwaj has been featured in Who’s Who Legal as a Global Leader in 2020, 2021, and 2022. Over the years, Bhardwaj has assisted clients globally in conducting incident readiness engagements and working with clients to create and implement a security transformation strategy. He frequently moderates tabletop simulations for organizations, helps build the muscle memory for detection and response programs, and works with the board to raise cybersecurity awareness by disseminating various forms of strategic threat intelligence. Before joining Charles River Associates, Bhardwaj worked with PwC’s Global Cyber Threat Operations team across the Americas and the EU, leading numerous incident response and cybersecurity transformation engagements. As well as being a GCIA, GREM, GCFA, and GNFA, Bhardwaj earned a Master’s degree in Security & Cryptography from the Johns Hopkins University and is currently pursuing his MA in International Affairs from King’s College – London with a specialization in Espionage & Surveillance.

Adam Hart is a consultant with Charles River Associates specializing in digital forensics and incident response investigations. He has over fifteen years of specialized training and experience with investigations involving the analysis of computers, servers, email systems, network devices, mobile devices, GPS devices, vehicle infotainment systems, cloud storage, social media accounts, and malware. As a former detective with the Montgomery County Police in Maryland and member of the United States Secret Service Electronic Crimes Task Force (ECTF), he has managed numerous complex criminal investigations involving digital evidence and cybercrime. He has extensive experience testifying as both a fact witness and an expert witness in the area of digital forensics in state and federal court. He has also conducted numerous training classes in digital forensics, incident response, and social media investigations for law enforcement, attorneys, insurance investigators, and corporate clients. Hart earned an MFS in digital forensics from the George Washington University and a BA in political science from the College of the Holy Cross. He also holds a number of certifications. He is a Certified Forensic Computer Examiner (CFCE) and a Certified Digital Forensic Examiner (CDFE) by the Department of Defense Cyber Investigation Training Academy (DCITA) and is a member of the International Association of Computer Investigative Specialists (IACIS). He is certified in GIAC Reverse Engineering Malware (GREM) and GIAC Cyber Threat Intelligence (GCTI) by the SANS Institute, and is a Cellebrite Certified Mobile Examiner (CCME), a Magnet Certified Forensic Examiner (MCFE), and a Blacklight Certified Examiner.

Bhavesh Vadhani is Principal and Global Leader of CohnReznick’s Cybersecurity, Technology Risk, and Privacy practice. In this role, he helps organizations adopt industry best practices and frameworks to improve their cybersecurity postures, reduce risk, and become more resilient. This ultimately helps organizations increase efficiencies in day-to-day processes and reduce the cost of compliance. He has more than 20 years of experience in the field of information risk management, security consulting, and privacy advisory services. Vadhani has experience in many different industries including consumer products and retail, financial services, healthcare, government contracting, manufacturing and distribution, and technology. He is often called upon to share insights on the evolving cybersecurity landscape, threat actors, threat vectors, and emerging technological advances with the goal of helping organizations identify, detect, prevent, and recover adequately from cybersecurity incidents. Vadhani has and currently acts as a virtual CISO for many organizations where he assists executives with their cybersecurity strategies, program designs, and board level reporting.

Brad Medairy is a technology executive and leads Booz Allen’s National Cyber Platform account, focusing on the cyber missions of national-level clients including the intelligence community, U.S. Cyber Command, Federal Bureau of Investigation (FBI), the Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA), and the Department of Defense (DoD). In this role, Medairy is responsible for addressing some of the nation’s top cybersecurity challenges, including protecting critical infrastructure, securing the supply chain, protecting emerging platforms (5G, medical devices, weapons, and space systems), and defending the extended Federal enterprise against cyberattacks. Medairy is passionate about advancing the nation’s capabilities in cyberspace by integrating emerging technologies with intelligence tradecraft to deliver next generation, full spectrum cyber solutions. He leads a multidisciplinary team of cyber operators, AI/machine learning engineers, software developers, and cloud engineers to develop and deliver these solutions across the federal and commercial markets. Medairy was named a 2021 Federal 100 Award Winner, Top 50 Cyber Leader for 2021, 2020 Cyber Executive of the Year by the Northern Virginia Technology Council, and a Finalist for Washington Exec’s 2020 Cybersecurity Industry Executive of the Year. In his community, he is a high school Science Olympiad coach focused on increasing youth interest in STEM, and a coach for elementary and middle school youth soccer and basketball programs. In addition, he serves as an advisory board member for the University of Maryland, Baltimore County and the George Mason University Volgenau School of Engineering. Medairy earned his BS from the University of Maryland, Baltimore County and an MS from Johns Hopkins University.

Anthony Catalano leads the cybersecurity practice for private equity at RSM. He has more than 17 years of experience advising multibillion-dollar healthcare and technology organizations on matters relating to information security. Having served as virtual chief information security officer (vCISO) for a variety of organizations, Catalano has experience building entire security programs and developing security management strategies that align with an organization’s business goals. He focuses on helping private equity and healthcare clients solve regulatory challenges and mitigate operational and financial risk. Catalano has assisted domestic and international Fortune 500 clients with alignment to vertical-specific standards and frameworks, including National Institute of Standards and Technology (NIST), HITRUST, International Organization for Standardization (ISO), European Union Safe Harbor, North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP), HIPAA, Payment Card Industry (PCI) and General Data Protection Regulation (GDPR). Catalano is a published author, a frequent speaker at cybersecurity events, and is a certified information systems auditor and certified information systems security professional. He earned a Bachelor of Science from Kent State University.

Cuyler Robinson is Vice President within Charles River Associates’ Forensic Services Practice. He has expertise in digital forensics, information security, and incident response and leads complex investigations of cybersecurity attacks, trade secret theft, white collar crimes, data privacy incidents, and other disruptions that threaten a company’s integrity or value. Robinson frequently reports investigation findings to counsel on behalf of company management and boards and has testified as an expert witness in U.S. state and district courts numerous times. He has also served as a neutral forensic expert, appointed by courts and parties, to supervise and conduct digital forensic analysis of evidence. Robinson is a Certified Information Systems Security Professional (CISSP), a Certified Information Privacy Technologist (CIPT), and has received extensive training in information security, incident response, data privacy, and digital forensics. He is a member of the International Association of Privacy Professionals and former Co-Chair of its Chicago KnowledgeNet Chapter and frequently speaks at industry conferences on forensics and security. He has also written for publications such as Technology for the Litigator, an American Bar Association publication. Robinson earned a Bachelor of Science in business administration and computer information systems from Colorado State University.

Greg Boison is a Managing Director and Partner with the Boston Consulting Group, one of the largest management consulting firms in the world. For almost 50 years, BCG has been a pioneer and leader in business strategy, including innovating the growth-share matrix portfolio management framework. Boison serves BCG as the North American leader of Cyber and Federal Technology and BCG’s Center for Digital Government and is also a key leader in BCG’s Federal Corporation. He has spent more than two decades working with international corporations and governments on their most pressing digital topics. Between periods of his career with BCG, Boison worked with Lockheed Martin in a number of executive positions including Director of Homeland & Cyber Security, Director of Energy Programs, and Director of FBI and Justice Programs. He holds an MA in philosophy and social policy from George Washington University and a BA in government and philosophy from Dartmouth College.

Jotham Nyamari is a Consulting Partner and Global Head of the Cybersecurity & Privacy Risk practice at Tata Consultancy Services (TCS). Nyamari drives the vision, strategy, solutions, revenue growth, and client engagement for the practice within the financial services industry. As a trusted advisor, Nyamari works and partners with senior executives to address regulatory and compliance risks, while advising on risk mitigation and remediation strategies to ultimately protect and safeguard client brand and reputation. Prior to TCS, Nyamari spent a significant number of years at PwC, Deloitte, and EY as a risk management, audit, and information security professional. He has additionally served on various non-profit boards, including ISACA chapters, most recently the New York Metropolitan ISACA Chapter, and has previously contributed thought-leadership to several committees at ISACA International. He holds a Master’s in Accountancy in information systems audit and control, and a Masters of Public Administration in financial administration from Bowling Green State University.

Jason Smolanoff is the President of Cyber Risk for Kroll, the leading independent provider of risk and financial advisory solutions. Kroll leverages its unique insights, data, and technology to help clients stay ahead of complex demands. The firm’s team of more than 6,500 professionals worldwide continues its nearly 100-year history of trusted expertise spanning risk, governance, transactions, and valuation. Its advanced solutions and intelligence provide clients with the foresight they need to create an enduring competitive advantage. Prior to joining Kroll in January 2017, Smolanoff was the Chief Executive Officer of CISO Advisory & Investigations LLC and Managing Director of Stroz Friedberg, LLC. Before that, he served for more than 12 years as a Supervisory Special Agent for the FBI and was also a Field Process Engineer for Tokyo Electron. He has been the recipient of numerous awards, including the Attorney General's Award for Distinguished Service. Smolanoff earned a Master of Science in Chemistry from Stony Brook University and a Bachelor of Science in Chemistry from SUNY New Paltz.

As a Senior Director with Alvarez & Marsal’s Private Equity Performance Improvement Group in New York, Jay Vijayakrishnan leads teams in conducting cybersecurity due diligences of M&A targets and advises clients on implementing cybersecurity programs. He leverages his 15+ years of professional and consulting experience working with C-suite leaders on cybersecurity and technology risk topics while reviewing the cybersecurity posture of organizations across financial services, technology, manufacturing and distribution, healthcare, and consumer products. He has worked across multiple cybersecurity disciplines and has led consulting teams on cybersecurity risk assessments and capability maturity evaluations based on several industry standards (NIST CSF, FFIEC CAT, CIS CSC20). Prior to joining Alvarez & Marsal, Vijayakrishnan served as a Managing Principal at Capco, a management consulting firm, providing cybersecurity risk advisory and IT consulting services for Fortune 500 financial institutions. There, he was instrumental in developing the cybersecurity consulting practice and led several assignments conducting cybersecurity risk assessments and managing cybersecurity programs for clients. Previously, he worked at Kurt Salmon Associates, UMT (acquired by EY), and Cognizant Technologies. Vijayakrishnan holds an MBA from the Indian Institute of Management (IIM) Bangalore and earned a bachelor’s degree in computer science from Visveswaraiah Technological University.

Kelly Rozumalski is a Senior Vice President leading Booz Allen’s National Cyber Defense business. She develops solutions that address some of the nation’s top cybersecurity challenges, including protecting critical infrastructure, safeguarding connected devices, improving the defense and resilience of government networks, securing the supply chain, deepening cross-sector collaboration, and defending the federal enterprise against cyber threats. Rozumalski has over a decade of experience driving differentiated solutions to help clients identify and understand cyber risks, automate compliance for real-time insights into security weaknesses, and mitigate vulnerabilities to reduce cyber threats. She supports the core missions of national-level clients across the Federal Civilian, Department of Defense, and intelligence community. Prior to her existing role, Rozumalski led Booz Allen’s Secure Connected Health initiatives – advancing the healthcare industry’s cybersecurity capabilities. She and her team collaborated with federal and commercial clients to drive next-generation service offerings that combated vulnerable channels to biological data. Supporting the development of an increasingly connected, resilient healthcare system, she took a patient-focused approach to risk, remediation, and secure product development frameworks. Consulting Magazine named Rozumalski a 2021 Woman Leader in Technology, honored for Excellence in Innovation. In addition, she leads cyber talent programs to help Booz Allen attract and retain the industry’s top talent. She earned a Bachelor of Science in business from the University of Maryland.

As a Managing Director of Kroll’s North American Governance and Cyber Risk practice in New York, Keith Novak leads multi-disciplinary teams providing cyber risk, compliance, privacy, and advisory services to clients globally. His 25 years of experience in information technology, cyber security, offensive security, and investigations have enabled him to advise clients on effectively navigating the complex and evolving cyber threat and regulatory landscapes. Prior positions held by Novak include Chief Technology Officer and Information Security Officer in the highly regulated healthcare sector, and more than a decade in various engineering and technology roles. He has special expertise in healthcare information technology, is highly proficient in the technical and regulatory requirements relating to the Health Insurance Portability and Accountability Act (HIPAA), National Institute of Standards and Technology (NIST), and Center for Internet Security frameworks and is a frequent speaker and author on cybersecurity topics.

Lance Mathews is Principal with the Forensics Services Practice of Charles River Associates (CRA). He specializes in cybersecurity incident response, digital forensics, and legal and compliance investigations. CRA is a leading global consulting firm known for their proven skills in complex cases and exceptional strength in analytics, driven by fact-based advice for their high-profile, high-stakes matters. As one of the original members of the Forensics Services Practice at CRA, Mathews has been instrumental in developing CRA’s analytic and automation capabilities to conduct digital forensic investigations. He leverages these capabilities to lead responses to client cybersecurity incidents including business email compromises, ransomware response and recovery, network or application vulnerability exploitations, and allegations of the misappropriation of trade secrets. Before joining CRA, Mathews established himself supporting legal and compliance investigations using data analytic techniques to solve complex client challenges. In his free time, he enjoys exploring the outdoors, skiing, and hiking. He holds a Master of Science in Information Systems and a Bachelor of Science in Finance from Indiana University.

Michael Coden advises boards, CEOs, C-Suites, and CISOs on IT and OT cybersecurity strategy, implementation, and resilience, both as Senior Advisor at BCG and Managing Partner at Magjic LLC Cybersecurity Consulting. Previously, Coden was Managing Director and Global Leader of BCG’s Cybersecurity Practice. Additionally, Coden is Associate Director of MIT Sloan’s cybersecurity research consortium, Expert Advisor to the Election Cybersecurity Initiative at USC, and on the advisory boards of The Decision Lab, SAFE Security Inc., and HMG Strategy. Coden is also a member of the joint MIT-Stanford-CMU-UW-Google-VMWare DBOS-Project developing a revolutionary cyber-resilient operating system that self-detects cyberattacks with 99.96% accuracy in milliseconds, and self-restores itself to the pre-attack state in ~5 minutes for business continuity. Previously, Coden assisted in developing the NIST Cybersecurity Framework–receiving a letter from the White House thanking him for his leadership–and was editor of the ISO/IEC-62443 OT cybersecurity standard. Coden has published more than 140 articles, a book with 100,000 copies in circulation, spoken at RSA and many other conferences, appeared on Bloomberg Radio and PBS television, and authored 17 patents on cybersecurity hardware and software. Coden has a BSEE from MIT, an MSBA from Columbia University, and an MS from the Courant Institute of Mathematical Sciences at NYU.

Seasoned incident response leader Pierson Clair is Managing Director in Kroll’s Managed Cyber Security Services. Clair is a highly respected leader in the world of cyber security, having led more than 500 network intrusion incident response investigations into a vast array of digital criminal activities—including ransomware, financial fraud, nation state, and insider threats. In his current role in Kroll’s Responder Managed Security Services, he leverages nearly 25 years of information technology and information security experience and a wide range of threat intelligence, attacker tactics, and security capabilities to advise organizations on modern approaches to cyber security. Prior to joining the private sector, Clair worked with the U.S. Intelligence Community. In addition to his frequent industry presentations on attacker tactics, since 2012 Clair has been a faculty member at the University of Southern California’s Viterbi School of Engineering, teaching courses in cyber security along with macOS and mobile device forensics and security. He earned an interdisciplinary degree in International Security and Technology from the University of Southern California, and a Master of Science in Digital Forensic Science from Champlain College.

Sabitri Chakraborty is a passionate cybersecurity leader currently working as a Senior Partner for Cybersecurity & Risk Services at Wipro Ltd. She has been a seasoned cybersecurity professional working with a broad spectrum of clients across the globe and helping them manage their cybersecurity risks. Chakraborty has a deep understanding of various industries and their business and risk landscapes. She has led multiple board discussions to help make risk-aware decisions and drive risk awareness for clients. Currently, she leads delivery for a large group of clients in the Americas, and she is well known as a great coach and mentor as well as an evangelist for her clients. Chakraborty prides herself on her ability to develop relationships with clients and colleagues. She believes in driving innovation as well as the co-creation of values, and in continuous learning and sharing through articles and discussions through various channels. Chakraborty earned a bachelor of engineering in computer science and engineering from Tripura University.

Sam Olyaei is a Vice President at Gartner, leading an advisory team that is focused on servicing cybersecurity and risk executives. His thought leadership and research have been highly influential in evolving the role of the CISO, culminating in an exclusive CISO Effectiveness model – the first of its kind in the industry. Additionally, he has led Gartner’s Top Predicts – a collection of efforts to establish forward looking trends in the cybersecurity industry. His domain expertise and advisory extends to third party/product security, governance, cyber risk quantification, program management, and executive/board communication. Olyaei is a regular keynote speaker at industry events worldwide, including Gartner’s Global Security and Risk Management summits, and has contributed to various industry regulations, government, and mission critical organizations such as FS-ISAC, NYCRR500, NIST NICE, TRA, among others. Overall, Olyaei has published more than 70 industry whitepapers and delivered more than 100 pitches on various matters related to cybersecurity and risk management. He holds a Bachelor's degree in economics from Fairfield University and a Masters degree in business administration from Quinnipiac University.

Shyam Doddavula is a seasoned executive with more than 25 years of leadership experience in business and technology innovation. He serves the digital consulting needs of global 2000 organizations as Vice President at Infosys, a global leader in next-generation digital services and consulting with over $16 billion in revenue in FY22. Infosys is recognized as one of the top 3 IT brands in the world by Brand Finance in 2022. Doddavula’s primary areas of focus include innovation, consulting, intrapreneurship, and incubation of technology-led solutions for business transformation. He is a technologist with more than 10 granted patents, several publications, and deep expertise in AI, cybersecurity, and blockchain technologies. Doddavula believes the digital enterprises of the future need a sentient cybersecurity solution that continuously observes, senses, responds, learns, and evolves to keep pace with ever-changing cyber threats. He is working with large enterprise clients to understand their security needs and is passionately co-creating Infosys Cyber Next, a state-of-the-art managed security services platform that realizes this vision of sentient security. Doddavula earned his Master's in computer science from Texas Tech University and his Bachelors in electronics and communication engineering from the National Institute of Technology, Warangal, India.

Steve Bergman is a Managing Director with Kroll's Cyber Risk practice, based in the Washington, D.C. office. He leverages more than 20 years of experience leading and securing digital transformation initiatives through executive, C-Suite, and Board engagement. He creates mature cybersecurity programs that align with his customer’s business strategies, ensuring appropriate levels of compliance and risk mitigation while supporting business growth. He has served as the CIO and CISO for two large U.S.-based retail and health services organizations as well as the CEO of a leading consumer data privacy company. Previously, Bergman served as the General Manager of the Risk and Cybersecurity practice at RSA, leading the firm’s Global Services Advisory business. In this role, he guided teams as they supported clients in investment and M&A activities, conducting cyber diligence for emerging companies and new product lines. He developed and brought RSA’s risk frameworks to market, analytical models that measured cyber maturity through proprietary business risk quantification methods.