Colby Cousens is a strategic IT leader responsible for the functionality and security of various municipal information technology and operational technology environments. A Co-Founder of the North Shore IT Collaborative, cybersecurity representative on the Northeast Homeland Security Regional Advisory Council, and an active member of the Cyber Resilient Massachusetts Working Group, Colby is committed to advancing the security posture of resource-challenged organizations in the Commonwealth.

Chris is a highly skilled technology professional bringing 20+ years of IT experience to HUB Tech. He leads a successful Managed Services and Security program which has grown to be one of the top programs in the country. HUB’s Managed Services and Security program is focused on keeping our customers Connected, Managed, and Secured. Prior to HUB Chris has spent most of his career in the enterprise space working mostly in the financial vertical where he held various roles from solution architect to technology risk manager.

Gretchen Grozier is the Director of Identity & Access Management in the Department of Innovation & Technology at the City of Boston. Gretchen has worked in Identity & Access Management since the then CTO at the Commonwealth of MA "voluntold" her into an IAM project way back in 2010.  She has worked on the enterprise IAM team at Harvard University assisting with the rollout of both HarvardKey and HarvardKey Lite.  At the City of Boston, she led the award winning Access Boston program - an enterprise IAM implementation that has created a single user name and password for all of the City's workforce along with enforcing multi-factor authentication on all accounts.  The Boston IAM team is currently working on deploying a solution for City residents and vendors.  Gretchen believes that IAM is a cornerstone of any enterprise and that it can both help strengthen cybersecurity and provide better user journeys for end users when done well.

Jenny W. Hedderman Esq. is Risk Counsel in the Statewide Risk Management Team in the Massachusetts Office of the Comptroller.  Attorney Hedderman specializes in compliance, internal controls, and risk management in the areas of statewide accounting, payroll, financial reporting, and statewide financial audits for 154 state agencies. Her current focus is developing the Comptroller’s Statewide Risk Management program, including cybersecurity internal controls and cybersecurity awareness to reduce fraud and cyber incidents. Recent projects include the CTR Cyber Center website (macomptroller.org/ctr-cyber/) providing cybersecurity content, Cybersecurity Tips of the Week, CTR Cyber 5 Videos and other internal controls to improve financial responsibility and protection of data, assets and resources across the Commonwealth. Attorney Hedderman is Chair of the State Records Conservation Board, Secretary of the Essex Co-Operative Farming Association Board, as well as Adjunct Professor in Business Law at Endicott College and Cybersecurity and Privacy at Boston University Law School.

Greg McCarthy is the first Chief Information Security Officer for the City of Boston and career public servant. Since joining the City of Boston’s Cybersecurity Team in 2010, Greg has managed the implementation of numerous information security solutions, developed the City's first cybersecurity awareness program for employees and successfully enforced the use of multi-factor authentication for all employees. In his role, Greg continues to lead efforts to strengthen the cybersecurity capabilities across the City and further the team’s mission through modernizing technology, partnerships, and regular training. Greg is a cybersecurity leader and change agent who is focused on strengthening cybersecurity for the City of Boston and all municipal governments through partnership and collaboration. Greg is also the Co-founder and Co-Chair of the Coalition of City CISOs. Prior to joining the City of Boston, Greg spent seven years working at the Rhode Island Department of Corrections. Greg holds an undergraduate degree in Criminal Justice and a graduate degree in Information Assurance, both from Northeastern University. He has also earned a Certified Information Security Manager (CISM) certification from ISACA, graduate certification in Project Management from Boston University, and a Project Management Professional certification from the Project Management Institute.

Susan Noyes is the Director at the Office of Municipal and School Technology (OMST) at the Executive Office of Technology Services and Security (EOTSS) for the Commonwealth. She is responsible for overseeing the OMST staff, which administers the municipal cybersecurity awareness training grant (MCAGP) to public government organizations and the Cybersecurity Health Check services, provide guidance on technology needs and best practices and consults on common municipal challenges. Susan and her team advise municipalities and schools on the availability of the Community Compact Cabinet Grants and other partner resources, while also serving as the OMST liaison with the MA Tech Collaborative/CRMWG.
Susan joined EOTSS in January 2020 serving in the Office of Municipal and School Technology (OMST) as a Municipal and School IT Manager until October 2022. Prior to joining EOTSS, she served in municipal government for 15+ years, most recently as a municipal IT Director and prior to that in multiple municipal roles. Previous to joining the public sector, she had a successful career in the corporate high-technology field serving in Technical Support, Service Marketing and Professional Services Management capacities, both domestically and overseas. She holds an A.B.A. in Management from Newbury College.

Dan Radke is a cybersecurity researcher and developer with over 20 years of experience focused on threat intelligence, adversary hunting, and technology development. His career began as a military intelligence analyst, followed by roles in civilian and government agencies specializing in counterintelligence and offensive cyber operations. This foundation helped Dan master navigating complex adversarial landscapes and how intelligence can be effectively leveraged in offensive and defensive cyber strategies.
At Deloitte, Dan leverages this background to develop cutting-edge tools for adversarial pursuit, focusing on analytical capabilities, AI-driven penetration testing, threat analysis, and evaluating the effectiveness of threat intelligence solutions. His research into the evolving risks posed by generative AI technologies is helping to shape the future of intelligence capabilities and incident handling while empowering analysts with the tools they need. Dan’s work is driven by a strong sense of curiosity and the belief that effort and innovation openly conspire toward practical progress, continually bridging the gap between theory and real-world application.
Recognized for his thoughtful approach, Dan gets invited to speak at industry panels, sharing insights on the role of curiosity, effects of proper tools, hunt methodologies, and collaboration in cybersecurity. His work reflects a balance between academic rigor and the real-world need for practical, adaptable solutions to emerging threats.

Tina I. Smith is a seasoned Chief Information Security Officer based in Greater Boston, MA, with extensive experience in cybersecurity, risk management, and information security across both the public and private sectors.
Currently serving as the Chief Information Security Officer for the Commonwealth of Massachusetts Executive Office of Public Safety and Security (EOPSS), Tina leads strategic initiatives to enforce and strengthen cybersecurity policies to safeguard sensitive data across 12 public safety and security agencies.
She has successfully developed a comprehensive Information Security Program, within Public Safety and Security organization to align with frameworks such as NIST SP 800-53r5 and CIS / MS-ISAC, ensuring best practices in the space of governance, risk, and compliance (GRC) protocols.
Tina's leadership has been pivotal in designing and launching the EOPSS Cybersecurity Awareness Training Program, supporting over 38,000 agency business users. Additionally, she spearheads the monthly 'Cyber News You Can Use' bulletin, aimed at raising awareness and promoting cybersecurity best practices within the organization.
Prior to her role at EOPSS, Tina served as the Information Systems Security Officer for the Department of Veterans Affairs, where she oversaw the security of critical data, ensuring compliance with the Federal Information Security Management Act (FISMA). She has also held key roles at Manulife/John Hancock, where she managed third-party vendor risk assessments and provided expert guidance on regulatory compliance for systems security.
Tina holds an MBA from Kaplan University and is certified in several areas of cybersecurity, including Certified Ethical Hacker (CEH) and Certified in Risk and Information Systems Control (CRISC). Her technical expertise spans cloud computing, vulnerability management, incident response, and secure architecture, with proficiency in tools such as Tenable, Splunk, AWS Cloud, and Google Cloud. \
Throughout her career, Tina has been recognized for her ability to enhance security postures while reducing operational costs and risks to her business customers. Her forward-thinking approach continues to drive her success as a leader in cybersecurity.

[LinkedIn:https://www.linkedin.com/in/tracy-sullivan-6036ab13/

Tracy Sullivan is the Director of Municipal Information Systems for the Town of Weston, where she has served for 12 years. In her role, she oversees the development, implementation, and management of the town's technological infrastructure, ensuring seamless access to critical information systems and services for both municipal staff and the community. Tracy is committed to leveraging technology to enhance efficiency and service delivery in local government operations.

Jenna joined the Upstate NY Fortinet team as a Systems Engineer, helping hundreds of K-12, higher-education, and government organizations achieve their cybersecurity goals. She currently leads the Upstate New York and New England public sector territory in doing the same. Prior to joining the Fortinet SLED team, Jenna supported over 2000 of Fortinet’s partners across the country.
Jenna also actively participates in the WiCyS (Women in Cybersecurity) program and Fortinet’s Women of Fortinet program as a mentor, with a firm belief that anyone interested in cybersecurity should be able to pursue it successfully.

Naomi Ward is the Commonwealth of Massachusetts expert in Third Party Risk Management. In her current role with the EOTSS-Enterprise Risk Management Office, she works closely with senior leadership to incorporate risk awareness into the process of decision-making. Her current responsibilities include conducting assessments, expanding third-party continuous monitoring programs, collaborating with Commonwealth Secretariate CISO’s, building relationships with key partners including StateRAMP, developing tools for enterprise risk management communication, and creating internal risk awareness.
Her background in executive level leadership and auditing combined with a high level of organizational communication skills drives her role in Enterprise Risk Management. She has 10 years of internal audit experience in both the public and private sectors.
Early in her career, she picked up the book by James P. Owen, The Code of the West. She attributes the 10 principles outlined in this book to her success as an ethical leader.
Naomi holds a comprehensive degree in Communications from Evangel University and a Master of Business Administration from Jones International University. She sits on the NASPO/StateRAMP taskforce committee. She is a member of the Third-Party Risk Association, ISACA, and the Advanced Cyber Security Center (ACSC).

Roy Wattanasin is a healthcare information security professional now working in academia. He is an avid speaker providing thought leadership at conferences/webinars including: DEFCON, Defcon Groups, HOPE, RSA, Infosec World, SecureWorld, ISMG, Security BSides etc. Roy enjoys building information security programs. He is involved with the Boston Application Security Conference (BASC), OWASP Boston, ISSA and other groups and is a member of multiple advisory groups. He was previously an adjunct faculty member at Brandeis University as part of the Health and Medical Informatics program & its co-founder. Roy has experience in many industries and has worked internationally too. “Think differently, do your homework and preparation is key.”  

Jeffrey Wheat is a seasoned cybersecurity expert with extensive experience in protecting organizations from sophisticated threats. As CTO at Lumu Technologies, Jeff specializes in strategically implementing continuous compromise assessment, providing deep insights into network vulnerabilities, and enhancing incident response. He is dedicated to educating businesses on the latest cyber threat trends and effective defense mechanisms

Matt Whitten is the Chief Information Security Officer at the Executive Office of Energy and Environment Affairs overseeing Cybersecurity, Information Security, and Microsoft 365 Administration. Prior to joining the Massachusetts Executive branch in 2016, Matt spent 12 years in the private sector in various roles at three different early-stage information security companies, all of which were acquired. Matt is the chairman of the Massachusetts Executive branch’s Cybersecurity & Vulnerability Management Subcommittee. Matt grew up in the Boston area and holds a Bachelor of Science degree from Suffolk University.

Jarret Wright has over 20 years of experience in security, intelligence, and risk in the public sector. As the IT Deputy Director and Chief Information Security Officer (CISO) at the Massachusetts Port Authority (Massport), Jarret oversees the IT Department’s mission to provide innovative, robust and secure information and telecommunication systems for employees, business partners and the traveling public. He previously served as Massport’s Deputy Director of Corporate Security and Emergency Preparedness, maintaining a safe and secure environment for employees and passengers.
Prior to joining Massport, Jarret worked at DHS’s Cybersecurity and Infrastructure Security Agency, advising senior public and private security leaders on crisis management, physical security, and business continuity. As a Senior Analyst at the National Counterterrorism Center (NCTC), Jarret authored intelligence assessments for both policymakers and tactical operators on terrorism matters, as well as serving as the NCTC Domestic Representative in the New England region. Jarret proudly served as a US Navy officer, deploying in support of combat operations in the Middle East and the Horn of Africa. Jarret has also worked as a Legislative Aide in the US Senate, covering foreign policy, military policy and veterans’ affairs.
Jarret holds a MS in Cybersecurity Policy and Governance, and a BA in History, both from Boston College.

Jason Wright is a seasoned cybersecurity professional with 20+ years of frontline experience helping government organizations respond to and defend against cybersecurity incidents. Mr. Wright leads the Mandiant, Google Public Sector teams responsible for Incident Response and Red team services, as well as program development for clients across State, Local, and Education clients. Prior to Mandiant, Mr. Wright began his career working for the National Security Agency and then held lead roles in forensics and incident response at Parsons Corporations and Chiron Technology Services.

Lisa Wymer is the Deputy Director, IT Risk & Compliance at the MBTA where she has worked for the last 4 ½ years.  In her role, Lisa works with procurement to improve the vendor risk assessment review and monitoring process.  Lisa has expanded into AI Vendor Risk Assessment with her volunteer work as a voting member of the IEEE 3119 Subcommittee Standard for the Procurement of Artificial Intelligence and Automated Decision Systems. Lisa also is a Principal Investigator for the NIST AI Safety Institute Consortium working to develop additional vendor analysis and security controls for vendors with AI tools or components. Lisa holds a Masters in Cybersecurity Policy & Governance from Boston College.