CIO & CISO STRATEGY MEETING
Innovate, Inspire, Protect, Perform
June 7, 2022 | The Carolinas
CIO & CISO CAROLINAS FACILITATORS INCLUDE:
Richard Biever, Chief Information Security Officer
Richard Biever is Duke University’s assistant chief information officer and chief information security officer. Under Richard’s leadership, Duke University has developed a strong, collaborative IT Security Office working with university departments, research faculty, other higher education partners to develop and enable effective cybersecurity defenses at Duke. In addition to leading the security office, Richard is responsible for leading strategic planning efforts and coordinating IT support and needs for Duke-wide programs and projects. He is an adjunct professor in the Pratt School of Engineering, teaching in the Cybersecurity Master of Engineering program and has coordinated several technology grants at Duke, including National Science Foundation grants to create and deploy STINGAR, a Duke-developed threat intelligence and sharing initiative currently deployed beyond Duke at a number of higher education and research partners. More information on STINGAR may be found at https://stingar.security.duke.edu.
Richard joined Duke in February 2011, after previously holding positions with the Georgia Institute of Technology’s Office of Information Technology and Hewlett Packard. He holds a bachelor’s degree in political science from the University of Georgia and a master’s degree in international relations from Georgia State University.
Matthew Lang, Former Senior Vice President/Chief Information Security Officer
State Employees’ Credit Union (SECU)
As an experienced executive of Information Security with a strategic mindset and tactical skillsets; Matthew Lang’s vision for every organization is to improve the security posture by implementing the right tools with the right people at the right time. As Chief Information Security Officer for SECU, Matthew was responsible for Information Security Awareness, Network Security, Data Loss Prevention and the full suite of IT Security program initiatives. Matthew consistently delivers cost effective results, using risk-based decision, by aligning technology initiatives with business goals focusing on information security. Using improvements to IT security standardization and system performance as foundational goals, he championed these changes:
- Cost savings initiatives at Bank of America saw a return on investment of 55 (mil) annualized by reducing redundant insecure external data exchanges with a secure data exchange, an excellent example of saving money while improving the security posture in just a 5-month period.
- With a strategic focus on annual budget he was able to reduce duplicate security systems at Belk saving an annualized 1.5 (mil) in IT spend for Information Security Department with no impact to security readiness or risk. His ability to influence even at the Board level allowed training of Board members and company executive team to give them a better understanding of Information Security Incidents and how to respond to them.
Matthew mentors and coaches’ individuals to push themselves out of their comfort zone and to perform at higher levels. As a Retired Navy Chief Petty Officer after 22 years he continues to motivate allowing subordinates to buy in to the corporate vision and standard he sets.
His career includes leadership roles at Large as well as small companies. He holds a Bachelor of Science in Accounting at East Carolina University as well as professional certifications such as Certified Information Systems Manager (CISM) Certified Information Systems Auditor (CISA) and ITIL-F. He is a member of Infra-Gard and ISACA as well as the CISO Executive Network where he is a founding member. Lastly, he has recently completed the FBI’s CISO Academy in Quantico Virginia.
Benjamin Corll, Vice President, Cybersecurity
Benjamin Corrl has been in the IT industry for about 25 years now. He started in the US military as a small computer systems specialist, also known as a UNIX systems administrator. Being versed in CLI and IPTables, Benjamin was assigned to taking care of the firewalls and perimeter devices. This started a transition from sysadmin to the security administrator.
During the dot.com boom, Benjamin transitioned from military life into technology consulting. He spent the next several years deploying network and security devices before deciding it was time to settle down and begin building and maturing organizational security programs. He was fortunate enough to be a founding member of the US Postal Service’s Computer Incident Response Team (CIRT) where they built a world-class response organization with engagement with other CIRT/CSIRT/SOC’s around the globe.
After a few years of building programs from a security engineering perspective, Benjamin shifted to building programs as an InfoSec Director. This allowed him to shift to a more strategic perspective and build programs that not only focused on risk management and protecting his organizations but also build programs that align security with business objectives.
John Capello, Vice President, Product Strategy, Field CTO
John Capello plays an instrumental role in directing Nasuni’s product strategy, and can often be found working with customers and technology partners to understand their requirements and identify new use cases for the Nasuni File Data Platform. Before joining Nasuni, John was Vice President of Product at fast growing startups Abuzz (acquired by The New York Times) and Tabblo (acquired by Hewlett-Packard). He also served as a general manager for The New York Times Digital and as a consultant for McKinsey and Company.