Oregon Public Sector Cybersecurity Summit 2023 Banner

Oregon Public Sector Cybersecurity Summit 2023

Oregon Public Sector Cybersecurity Summit 2023 Banner

Overview

Cyber-attacks have increased dramatically over the last few years. The 2023 Oregon Public Sector Cybersecurity Summit provides an opportunity for government technology professionals to learn about the latest efforts to defend, respond and recover from cyber criminals who wish to do harm. The Summit, hosted by the Oregon Enterprise Information Services (EIS) Agency includes cybersecurity leaders from state and local government throughout Oregon.

A message from our Keynote Speaker

The Oregon Public Sector Cybersecurity Summit is an opportunity for Oregon to affirm the whole-of-government approach. Coming together for common education supports a coordinated effort to detect, protect, identify, respond to, and recover from cyber-attacks.

- Terrence Woods, Chief Information Officer, State of Oregon

Speakers

Ben Gherezgiher

Ben Gherezgiher

Chief Information Security Officer, State of Oregon

Ben has over 30 years experience in information technology leadership mainly in the public safety and security supporting law enforcement and justice side of State government. He served as a division director leading state law enforcement support systems and communication services at Oklahoma state Bureau of Investigation over 24 years, he also served as deputy CIO leading 14 public safety agencies under the state CIO’s office after IT services was unified in the state. After retirement, he moved to Oregon and served as senior IT portfolio manager for the public safety policy area, assistant state CIO for the same policy area and starting August of 2022 assumed the role of Chief Information Security Officer for the state.

More
Terrence Woods

Terrence Woods

Chief Information Officer, State of Oregon

Before being appointed State CIO in 2018, Terrence was the State Deputy CIO, the Department of Revenue CIO, the Oregon Health Authority Director of IT, and the Department of Human Services Deputy CIO.
Prior to joining state government, Terrence was the Human Resources Manager and Regional Technology Manager for Safeco Insurance.
Taking to heart the interests of state government and the Oregonians it serves, Terrence is the Chair of the Board of Directors for Link Oregon, a non-profit organization providing high-speed, fiber-optic broadband connectivity to our state’s public and non-profit sectors.
Terrence earned a Master of Arts in Organizational Behavior from Gonzaga University and a Bachelor of Arts degree in Information Systems from Portland State University.
Extending his education of organizational behavior and passion for people, Terrence is a Prosci Certified Change Practitioner as well as a Leadership and Executive Coach certified by the Hudson Institute of Coaching.
When the opportunity arises, Terrence is an outdoor enthusiast enjoying camping and ATV riding.

More
Nancy Nathanson

Nancy Nathanson

State Representative, Oregon State Legislature

Representative Nancy Nathanson serves House District 13- which includes north Eugene's Harlow, Cal Young, Northeast Neighbors, Goodpasture, River Road, and Santa Clara neighborhoods. She was recently honored as the 2022 Recipient of Excellence in Telecommunications Policy and Legislation by the Oregon Connections Telecommunications Conference and she received the Lane Council of Governments award for Outstanding Elected Official in 2019. Along with a senate co-chair, Sen. Aaron Woods, she has led the Joint Committee on Information Management and Technology. Prior to her current gavel as chair of House Committee on Revenue, she served as Vice-Chair of the legislature's budget committee, Joint Committee on Ways and Means, 2007-2018 and Co-Chair for 2016-2018. While serving on the Eugene City Council, she was elected by the National League of Cities to their Board of Directors, and also chaired the NLC’s Committee on Information Technology and Communications. She was appointed as one of 15 officials to the Federal Communications Commission’s Local & State Government Advisory Committee.

More
Bryce Austin

Bryce Austin

CEO, TCE Strategy

Bryce Austin started his technology career on a Commodore 64 computer and a cassette tape drive. Today he is a leading voice on technology and cybersecurity. Bryce holds a CISM certification, advises the boards of companies in a diverse array of industries, and has over 20 years of cybersecurity leadership experience. He is the named CISO (Chief Information Security Officer) for many companies, including one listed on the S&P 500.
Bryce speaks to audiences worldwide on how to stay safe from cybercriminals. The #1 goal of his presentation is for you to learn how to bring your cybersecurity risk to a level that is Secure Enough for you. His best-selling book is titled Secure Enough? 20 Questions on Cybersecurity for Business Owners and Executives.
In his free time, Bryce is a high-speed track driver and coach. He has driven cars from a 65 horsepower Mini Cooper to a 650 horsepower Porsche 911 Turbo. He has had over 100 students, none of whom have died while under his instruction.

More
Phil Bertolini

Phil Bertolini

Senior Vice President, Government Technology

Phil Bertolini is a senior vice president for Government Technology, the premiere event and thought leadership content provider for state and local government technology professionals. Previously, he served as deputy county executive and CIO for Oakland County, Michigan. During his 31-year tenure, Phil built a world-class IT organization in the second-largest county in Michigan, just north of Detroit. As Oakland County CIO, he oversaw more than 150 employees serving over 1.2 million residents. In 2005, he was also promoted to deputy county executive, holding dual positions until his retirement. Phil’s efforts earned the county national attention, winning numerous awards for technology innovation and excellence. He was named Governing Magazine’s Public Official of the Year and Government Technology Magazine’s Top 25 Doers, Dreamers & Drivers. He was also honored by the President Obama White House as a Champion of Change.

More
Kathy Cruz

Kathy Cruz

Practice Leader, Mandiant, now part of Google Cloud

With more than 30 years of experience in information technology (IT) and cybersecurity, Kathy is a five-time Chief Information Officer (CIO) with a background across all IT and business domains. As a Mandiant Consulting Practice Leader Ms. Cruz helps clients assess, design and build effective security programs focusing on threat intelligence, defensive posture, proactive cyber management, security validation, incident response and incident preparedness.
Ms. Cruz is the recipient of the Silicon Valley YWCA Tribute to Women in Industry (TWIN) Award, is a past Board member of the Gentle Barn Foundation headquartered in Santa Clarita, CA, a past Board Member of the Career Action Center in San Jose, CA, and a former member of Golden Gate University School of Technology and Industry Executive Advisory Board. She previously served as an Ensign in the California State Guard, Cyber Operations Detachment.

More
Hector Dominguez

Hector Dominguez

Open Data and Privacy Coordinator, Smart City PDX, Bureau of Planning and Sustainability, City of Portland

Hector is the Open Data and Privacy Coordinator at the City of Portland, Oregon and part of the Smart City PDX team. Hector is leading initiatives on open data, privacy, surveillance technologies, and automated decision systems, including AI, in the City. His work includes implementing open data strategies, technology impact assessments, helping agencies to implement privacy and information protection practices, policy development, and designing surveillance technologies strategies and procedures.

More
Tim Gallo

Tim Gallo

Principal Architect, Mandiant, now part of Google Cloud

Tim Gallo leads the Americas Mandiant Principal Architect team covering Mandiant solutions including Cyber Threat Intelligence, traditional Intelligence Operations, Managed Detection and Response, Security Controls Validation, and Attack Surface Management and asset discovery.
He Joined Google Cloud through the acquisition of Mandiant by Google in 2022, he had spent 5 years at Mandiant prior to the acquisition in a variety of field facing roles covering the aforementioned topics.
Before joining Mandiant, Tim leveraged his over 20 years’ experience in information security and intelligence operations to aid in the development and deployment of a number of solutions. Including building client and organizational expertise in Intelligence Guided Cyber Network Defense (IGCND). This included the development and product management of some of the first cyber intelligence solutions ever brought to market. These solutions have included threat and vulnerability management tools, IOC prediction algorithms, intelligence services, and strategic intelligence consulting.
Today he spends his days helping clients understand the importance of Intelligence as a guiding principle for building out effective security processes and operations and helping clients and vendors find ways to leverage technologies responsibly to build their cyber defense centers and security operations practices. Every once in a while he can be found out in the desert, sometimes on his Harley with a flamethrower, sometimes with just a flamethrower.

More
Kathryn Darnall Helms

Kathryn Darnall Helms

Chief Data Officer, Enterprise Information Services, Data Governance and Transparency, State of Oregon

Kathryn Darnall Helms, MSIS, MA, currently serves as Oregon’s inaugural Chief Data Officer. Kathryn has recently led the development of Oregon’s first Enterprise Data Strategy, launched the State’s Open Data Program, and is currently staffing and expanding the Chief Data Office. In previous roles, Kathryn led an initiative to centralize information and data governance at the City of Austin and provided information governance and digital archiving consulting services to human rights organizations in Rwanda, El Salvador, Austin, and Guatemala as part of the Human Rights Documentation Initiative. Kathryn holds graduate degrees in Information Science and Latin American Studies, both from the University of Texas at Austin, where she focused her studies on the role of government records in addressing human rights abuses and as tools to speak truth to power.

More
Shane Perry

Shane Perry

Information Security & Risk Officer, Oregon Public Employees Retirement System

In his 9th year at Oregon Public Employees Retirement System (PERS), Shane Perry is leading the agency’s Information Security and Risk Management Program(s), focused on protecting member data in an ever-changing environment. As the Information Security and Risk Officer, Mr. Perry leads a team that oversees the security, continuity, and risk challenges for Oregon PERS. Prior to joining Oregon PERS, Mr. Perry led and managed IT and Security functions across various industries including semi-conductor manufacturing, higher-education, private education, and most recently in the public sector. In total, Mr. Perry has over 20 years’ experience in Information Technology and Security. Mr. Perry maintains his CISSP certification and holds a Master’s degree in Management of Information Systems from the Westminster College of Salt Lake City, and a Bachelor of Arts degree in Speech Communications from the University of Utah (Go Utes!)

More
Victor Tham

Victor Tham LinkedIn

Chief Technologist, Opentext Cybersecurity

Victor is a Chief Technologist at Opentext Cybersecurity. He works to help organizations understand various cybersecurity risks and challenges they might face and how they can help manage that risk. He has over 20 years of experience in the enterprise security industry and over 25 years of experience overall in technology. Victor graduated from University of California, Berkeley and holds a bachelor’s degree in Statistics. He also is a Certified Information Systems Security Professional (CISSP). Victor is based in Northern California. Outside of work, he enjoys practicing and teaching martial arts and watching baseball and football.

More
Mark Weatherford

Mark Weatherford

Senior Fellow, Center for Digital Government

Mark Weatherford is a globally recognized information security professional with experience at some of the world’s largest public- and private-sector organizations. He was appointed as the first deputy undersecretary for cybersecurity at DHS in the Obama administration and was chief information security officer for the state of Colorado and for the state of California under Gov. Arnold Schwarzenegger. In the energy industry, he was VP and chief security officer at the North American Electric Reliability Corporation, where he worked daily with Congress and electric utilities across North America on cybersecurity standards, regulations, and policy issues. He also served as a principal at The Chertoff Group and was VP and chief cybersecurity strategist at vArmour. Most recently, he was the VP and global information security strategist at Booking Holdings, the world’s largest online travel business with offices and employees in almost every country in the world and whose major companies include Booking, Priceline, Kayak, OpenTable and Agoda.

More
Chris Wysopal

Chris Wysopal

CTO & Founder, Veracode

Chris Wysopal is Chief Technology Officer at Veracode. He oversees technology strategy and information security. Prior to co-founding Veracode in 2006, Chris was vice president of research and development at security consultancy @stake, which was acquired by Symantec.
In the 1990’s, Chris was one of the original vulnerability researchers at The L0pht, a hacker think tank, where he was one of the first to publicize the risks of insecure software. He has testified to the US Congress on the subjects of government security and how vulnerabilities are discovered in software.
Chris received a BS in computer and systems engineering from Rensselaer Polytechnic Institute. He is the author of The Art of Software Security Testing.
Chris is often called upon to download the latest Minecraft mods for his 6-year-old son. An avid photographer and nature-lover, Chris spends his free time hiking the many conservation trails near his home outside Boston.

More
L. Stephen Younger

L. Stephen Younger

Compliance Program Manager, Enterprise Information Services, Data Center Services, State of Oregon

In his current role, Stephen developed and manages the regulatory compliance program from the State of Oregon Data Center designed to meet the regulatory needs of the Executive Branch agencies who serve Oregon’s diverse population. Prior to joining the State of Oregon in 2019, he worked for nearly 20 years in the private sector as an operations and regulatory compliance professional in the banking and finance industry. Stephen is a Fellow of Information Privacy with the International Association of Privacy Professionals and maintains certifications with that organization as an Information Privacy Professional (CIPP/US), Information Privacy Manager (CIPM), and Information Privacy Technologist (CIPT). He is a graduate of Portland State University with a Bachelor of Social Science, with special emphasis in sociology, psychology, and conflict resolution. In his free time, Stephen enjoys backpacking and honing his harmonica skills as far from civilization as possible.

More
View Speakers

Agenda

Wednesday, September 27

8:00 am Pacific

Registration and Morning Refreshments

Santiam Gallery

9:00 am Pacific

Opening Remarks

Santiam 1 – 3

Ben Gherezgiher, Chief Information Security Officer, State of Oregon

Terrence Woods, Chief Information Officer, State of Oregon

9:15 am Pacific

Keynote – Keep Your Head Out of the Cyber Sand: Using Superior Communications to Get the Job Done!

Santiam 1 – 3

Risk can take on many forms and governments must understand how to accept it, mitigate it, or insure against it while not sticking their head in the sand to ignore it. How will you assess your cyber risks and balance them against your needs? How will you make the rational decisions needed to be successful? How will you navigate the road to recovery? This session will answer these questions with a focus on ideas that will help you engage your leaders with real-world examples.

Bryce Austin, CEO, TCE Strategy

10:15 am Pacific

Networking Break

Santiam Gallery

10:45 am Pacific

Concurrent Sessions

Cybersecurity 101: Security is OUR Business!

Santiam 6

We all know that security is everyone’s problem, and everyone needs to be in alignment to reduce risk, even those outside of the IT department. We all need to cover the basics of cybersecurity and explore topics such as: maturity continuum, risk assessment, cyber hygiene and reporting to keep our systems safe. This session will ensure that you have the right roadmap in place and the knowledge needed to develop a strong cybersecurity posture.

Moderator: Phil Bertolini, Senior Vice President, Government Technology

Patrick (Kevin) Bohan, Architect and Chief Information Security Officer, Link Oregon

David McMorries, Chief Information Security Officer, Office of Information Security, Oregon State University

Dennis Tomlin, Chief Information Security Officer, Multnomah County

Chris Wysopal, CTO & Founder, Veracode

Privacy and Security Make the Data Go

Santiam 4/5

Data is everywhere and it is being pressed into service in ways that none of us could have imagined just a few years ago. Such a valuable commodity deserves to be leveraged to its fullest benefit but in a secure way. Do you have the right privacy and security policies in place for your data? This session discusses ways to overcome the challenges inherent in pushing for greater data privacy and security.

Moderator: Kathryn Darnall Helms, Chief Data Officer, Enterprise Information Services, Data Governance and Transparency, State of Oregon

Hector Dominguez, Open Data and Privacy Coordinator, Smart City PDX, Bureau of Planning and Sustainability, City of Portland

Ellen Flint, Senior Assistant Attorney General, General Counsel Division / Business Transactions Section, Department of Justice, State of Oregon

Victor Tham, Chief Technologist, Opentext Cybersecurity

Stephen Younger, Compliance Program Manager, Enterprise Information Services, Data Center Services (DCS), State of Oregon

11:45 am Pacific

Lunch

Santiam 1 – 3

12:20 pm Pacific

Afternoon Remarks

Santiam 1 – 3

Nancy Nathanson, State Representative, Oregon State Legislature

12:30 pm Pacific

Featured Speaker – State Cybersecurity Overview

Santiam 1 – 3

Ben Gherezgiher, Chief Information Security Officer, State of Oregon

12:55 pm Pacific

Featured Speaker – Navigating Your Cyber Future: Next-Gen Threats, Strategies and Tech

Santiam 1 – 3

The Center for Digital Government works tirelessly to analyze the current and future state of cybersecurity. How will governments stay ahead of cyber-attackers? Are the emerging threats just too much? What are the new approaches to addressing cyber challenges? This session will tackle these issues by having the CDG present an update on key issues and trends facing government cybersecurity leaders today.

Mark Weatherford, Senior Fellow, Center for Digital Government

1:30 pm Pacific

Networking Break

Santiam Gallery

1:50 pm Pacific

Concurrent Sessions

Managing the 4 Rs of Cyber: Risk, Reward, Response and Recovery

Santiam 6

Governments today struggle to balance risk versus reward when it comes to cybersecurity. Attacks can happen in a moment’s notice. How will you respond and recover while you manage your risk? This session will explore how governments stay resilient in the face of never-ending cyber-attacks.

Moderator: Phil Bertolini, Senior Vice President, Government Technology

Tim Gallo, Principal Architect, Mandiant, now part of Google Cloud

Shane Perry, Information Security & Risk Officer, Oregon Public Employees Retirement System

Yaqub Prowell, Supervisory Special Agent, FBI, Portland Division

Emerging Tech to Protect!

Santiam 4/5

The advantages of emerging technologies can be utilized to detect cyberthreats and malicious activity. What’s working, and what risks are involved? Does your team understand the limitations of these technologies as they relate to protecting your intellectual property? Join this session to learn more about how the public sector is leveraging emerging technologies like AI and ML to enhance their cybersecurity protections.

Moderator: Mark Weatherford, Senior Fellow, Center for Digital Government

Kathy Cruz, Practice Leader, Mandiant, now part of Google Cloud

Cybersecurity Advisor, Cybersecurity and Infrastructure Security Agency (CISA), Department of Homeland Security

Victor Tham, Chief Technologist, Opentext Cybersecurity

2:50 pm Pacific

Break

3:00 pm Pacific

Bits and Bytes – Cybersecurity Center for Excellence Briefing

Santiam 1 – 3

Birol Yeşilada, Professor & Founding Director, Mark O. Hatfield Cybersecurity & Cyber Defense Policy Center, Portland State University

3:30 pm Pacific

Networking Reception

Santiam Gallery

Network with your colleagues and discuss technology solutions with the event exhibitors.

4:15 pm Pacific

End of Conference

Conference times, agenda, and speakers are subject to change.

Salem Convention Center

200 Commercial Street SE
Salem, OR 97301
(503) 589-1700

Get Directions To
Salem Convention Center

Advisory Board

Government Representatives

James Foster
Executive Director, State Data Center
Enterprise Information Services
State of Oregon

Ben Gherezgiher
Chief Information Security Officer
Enterprise Security Office
State of Oregon

Shirlene Gonzalez
Legislative Liaison and Communications Director
Enterprise Information Services
State of Oregon

Kathryn Helms
Chief Data Officer
Enterprise Information Services
State of Oregon

Terrence Woods
Chief Information Officer
Enterprise Information Services
State of Oregon

Made Possible by Our Corporate Sponsors

Registration Information / Contact Us

Contact Information

2024 Sponsorship opportunities are available. For more information, contact:

Heather Earney
Government Technology
Phone: (916) 932-1339
E-mail: heather.earney@erepublic.com

View Full Site

Venue

Salem Convention Center

200 Commercial Street SE
Salem, OR 97301
(503) 589-1700

© 2025 All Rights Reserved. E.Republic LLC
Privacy & AI / Do Not Sell My Personal Information