Rocco Grillo is Protiviti Managing Director and Global Leader of Incident Response & Forensics Investigations practice. Rocco and his team of world class incident responders and forensics examiners have successfully triaged some of the largest data breaches recorded over the last decade.  His professional affiliations include active roles as:Board Advisor for FS-ISAC and NH-ISAC;

Steering Committee Member for Shared Assessments Program;

Board member of the IT Policy Compliance Group; and

Previously served on the Board of Directors NY Metro ISSA .

He is a CISSP,  CRMA, PCI-QSA, and PFI Lead Investigator at Protiviti. Rocco is a frequent public speaker and has presented at the RSA Conference, the National Retail Federation, the IT Policy Compliance Group, the ISSA, IIA, and (i-4).  He has been quoted in CNNMoney, WSJ.Com, The London Times, Thomsen, Reuters, Bank Info Security, Integrated Solutions for Retailers Magazine, and other industry publications.

As the Chair of the Technology, Media & Intellectual Property Practice Group, Ted coordinates and oversees the handling and defense of these types of claims and lawsuits throughout the firm. Ted has been litigating cases in state and federal courts since 1994. He has experience in the litigation of technology, media, trademark, trade dress, patent, copyright, and data security matters in jurisdictions throughout Pennsylvania, New Jersey, Florida, Indiana, Illinois, California, Ohio, Massachusetts, Tennessee, Delaware, and New York. Ted also advises and speaks with clients, trade-groups and organizations regarding Data Security and Privacy Issues and breaches, as they relate to various industries including healthcare companies, retail stores, restaurants, financial organizations, and technology companies.

After receiving his Bachelor of Science in Chemical Engineering, Ted worked for the U.S. Department of Defense as an engineer. While with the Department of Defense, he worked with, and supervised, the deck coatings application and formulation program for the entire Navy fleet. Ted left his position as a Senior Engineer for the Navy in order to attend law school. Since graduating in 1994, his focus has been on litigation, and he has handled a variety of general litigation matters as an associate at other large law firms and as in-house counsel for a major insurance company.

When Ted joined Marshall Dennehey in 2000, he focused his practice on construction litigation and intellectual property litigation matters. A portion of his practice continues to focus on the defense of design professionals in construction claims and copyright infringement claims, where his career in engineering provides his clients with a significant advantage. Ted's experience is not limited to the defense of intellectual property matters and construction claims, but also includes the litigation of real estate, products liability, medical malpractice, and insurance bad faith/coverage claims. Throughout his career, Ted has tried a number of bench trials, jury trials, and arbitrations.

2000 Year Joined Organization: Intellectual Property, Technology, Media Data Security / Privacy Architectural & Engineering Litigation Construction Defect Litigation Professional Liability Pennsylvania, 1994 New Jersey, 1995 U.S. District Court Eastern District of Pennsylvania, 1995 U.S. District Court District of New Jersey, 1995 U.S. District Court Western District of Pennsylvania, 1998 U.S. Court of Appeals 3rd Circuit, 2002 U.S. Court of Appeals Federal Circuit, 2002 U.S. District Court Middle District of Pennsylvania, 2004 U.S. District Court District of Colorado, 2009 Widener University School of Law, Wilmington, Delaware, 1994 J.D. Honors: Cum Laude   Purdue University, 1987 B.S. Major:  Chemical Engineering   How Will South Shore's Breach Impact Us, Data Breach News, September 10, 2010   How The Rite Aid Settlement Impacts Your Disposal Practices, Data Breach News, July 27, 2010   Nosey Employees Can Be Costly, Data Breach News, June 18, 2010   Are Digital Copiers Leaving Us Vulnerable, Data Breach News, May 5, 2010   What Can We Expect in 2010, Data Breach News, December 29, 2009   Will the Pendulum Swing the Other Way?, Data Breach News, October 19, 2009   Flagging Down Identity Theft, PLUS Journal, Vol. XXII, No. 2, Feb., 2009   Is Your Company A Creditor?/ Identity Theft Prevention: Know Your Red Flags, DRI In-House Defense Quarterly, Winter, 2008   Evolution of Famous Name Litigation, InRe Magazine, 2007   Copyright Protection for Architectural Works, Defense Digest, 2006   Pennsylvania Superior Court Expands Scope of Mechanic's Lien Law, Defense Digest, 2005   It's What You Say, Not What You Know that Can Impute Liability, Defense Digest, 2003   Complying with State Public Notification Requirements and Deadlines: Making Sense of Conflicting Priorities in the Event of a Breach - 4th Annual Advanced Forum on Cyber & Data Risk Insurance, September 2010   In coordination with colleague Katherine Keefe, Esq. - HIPAA/HITECH Disclosures and Regulatory Enforcement - The 'do's and don'ts' when responding to data security and privacy breaches, The New Jersey Health Information Management Association's annual meeting, Atlantic City, New Jersey - June 27, 2010   NetDiligence Cyber Risk and Privacy Liability Forum on the topic of Data Breach Liability: An Unstable Legal Environment, June 7 & 8, 2010   Best Practices for Health Care Organizations to Keep the Cyber Liability Genie in the Bottle, Chubb Insurance Web cast, April 28, 2010   Panelist - What REALLY Happens After A Breach or Electronic Data Loss Event, PLUS International Conference, Chicago, IL, November 2009   New Federal Regulatory Developments & Enforcement Action Regarding Privacy and Security of Information; and, Third Party Vendors and Suppliers: Limiting Liability Contractually, ACI 3rd National Advanced Forum on Cyber / Data Risk Insurance, September 2009   FTC Red Flag Rules on ID Theft, Now Imminent, Have Broader Application Than Many Realize, NRRDA Webinar, July 2009   Data Breach and Security Exposures, Philly I on Law Day, December 2008   Walking The Data Security Tightrope: What Lies Below?, PLUS International Conference, 2008   Advanced Construction Law in Pennsylvania, National Business Institute (NBI), January 16, 2004   Various in-house seminars to insurance carriers regarding Intellectual Property and Technology Risks, 2005 and 2006   Technology Risks, PLUS Conference, 2006   Defending Design Professionals, CNA, 2002 and 2003   Various in-house seminars to insurance carriers regarding Real Estate E&O Risks, 2005   American Jurisprudence Award, Civil Procedure   Phi Delta Phi, Harrington Inn, Honors Chapter   Pennsylvania Bar Association  

Craig Hoffman is a leading member of BakerHostetler’s Chambers USA-ranked Privacy and Data Protection team. He provides proactive counsel on the complex regulatory issues that arise from data collection and use, analytics, emerging payments, cross border transfers, and security incident response preparedness. He has worked with clients to respond to hundreds of security incidents to help clients develop a practical approach to meet their business goals in a way that minimizes regulatory risk.
 
 

Beth Diamond is the Global Head of Specialty Lines Complex Claims and the Global Claims Team Leader for Technology, Media and Business Services claims at Beazley.  Ms. Diamond has extensive experience in data privacy and cyber security matters, assisting insureds in navigating through immediate and comprehensive responses to data breaches and network intrusions.  She speaks frequently in national and international forums on issues of privacy, computer security and insurance, and is considered a leading and respected voice in privacy claims.  Prior to joining Beazley nine years ago, Ms. Diamond spent over eleven years as a practicing attorney at a large international law firm in New York, specializing in complex commercial litigation.  While in private practice, Ms. Diamond handled litigation in state and federal courts, bench and jury trials, as well as domestic and international arbitrations.  Ms. Diamond also regularly provided litigation advice on corporate deals, and is a trained mediator.  Ms. Diamond graduated from Wellesley College, and Cornell Law School, where she was the Senior Articles Editor of the Cornell Journal of Law and Public Policy and was named to Who’s Who of American Law Students.  She completed a federal clerkship in 1996 for The Honorable Alfred J. Lechner, Jr., United States District Court, District of New Jersey.

Paul Nikhinson is a Privacy Breach Response Services Manager with Beazley Breach Response Services. Paul supports Beazley's clients in data breach investigations, assists with privacy risk management and loss control, and helps Beazley insureds respond to the wide range of issues that arise in connection with an actual or suspected data security incident.  Prior to joining Beazley, Paul practiced law with a focus on data breach response and data protection at a global law firm in San Francisco and London, and before that, as privacy counsel to a US federal agency, advising on the interplay between legal and technical security issues.  Paul is a graduate of the University of California, Berkeley, the Boston University School of Law, and is recognized by the International Association of Privacy Professionals as a Certified Information Privacy Professional for the US and EU.
 

Ziad Kubursi is the Senior Vice President and Head of PHLY’s Management & Professional Liability division. Mr. Kubursi brings over 15 years of experience in the management liability insurance industry including 13 years at AIG in various management positions in the U.S. and overseas.  He also worked at Marsh & McLennan in their FinPro Unit based out of Washington DC.  After graduating with a BA in Government & Politics from George Mason University, Ziad went on to earn an MBA from Adelphia University, and an EMBA from London Business School.

Mike leads Deloitte Financial Advisory Services’ Computer and Cyber Forensics offering and has over 16 years of computer forensic investigation experience across criminal, civil, and national security matters.  He has testified as an expert witness on matters of data and intellectual property theft, data authenticity, evidence spoliation, and data collection discovery burden, and he leads computer forensic investigations and incident response teams for clients across industries.
Prior to Deloitte, Mike was with an international consulting firm where he also testified as an expert witness and lead incident response teams.
 
Previous to his consulting experience, Mike was a computer forensic examiner with the U.S. Department of Defense Computer Forensics Laboratory (DCFL).  While at DCFL, Mike worked on counter intelligence, counter terrorism, and computer intrusion matters, and he worked extensively with the FBI investigating the attacks of September 11, 2001. He also consulted and worked with the intelligence community on the rapid examination of digital media. 
 
Prior to his DCFL experience, Mike was the Senior Forensic Analyst with the Illinois Office of the Attorney General where he examined computer systems related to criminal matters and trained law enforcement officers on proper electronic evidence collection and investigation.
 

Jordan Rittenberry joined Edelman’s Technology practice in 2006. As an executive vice president, he plays a lead role on a number of the agency’s accounts, developing strategic communications programs designed to drive business value. He has a wealth of experience working with both corporate and consumer-facing brands, from start-ups to the Fortune 100.

Rittenberry is on the steering committee of Edelman's Data Security & Privacy practice, helping clients navigate the increasingly complex environment surrounding the collection, use and protection of corporate and personal data. Having helped numerous organizations such as Neiman Marcus manage a data breach, Rittenberry has a wealth of knowledge working alongside forensics experts and legal counsel in times of need, as well as playing a lead role in restoring their reputation post-crisis

His past client roster includes Motorola, BlackBerry, Groupon, iRobot, Lockheed Martin and Expedia, as well as other established and emerging players. His award-winning work at Edelman has been recognized by the Public Relations Society of America, International Association of Business Communicators, Business Marketing Association and Publicity Club of Chicago.

Rittenberry was previously a member of Ruder Finn’s Enterprise Software practice where he focused on the supply chain and manufacturing space. Before joining Ruder Finn Rittenberry was a communications coordinator at Raymond James.

Rittenberry earned a Bachelor of Arts degree in public relations/advertising and graduated Cum Laude from the University of Houston.

TBD

John Wurzler is currently the president of OneBeacon Technology.  He began this role in August of 2010, bringing his proven track record of building and managing both technology and insurance businesses to bear in this multiline specialty unit for One Beacon.

Prior to joining OneBeacon, he was the vice president of Underwriting and Technology Practice Leader at CNA Insurance Companies, where he worked for five years. John has also worked for American International Group as a zonal vice president of eBusiness Risk Solutions, and he recently led SafeonLine, an insurance company targeting emerging e-commerce business risks.
 
In 1996, Mr. Wurzler began to realize a paradigm shift was about to take the business world apart at the seams. The traditional brick and mortar methods and processes were on the cusp of adapting to a shift in point of sale, shipping and receiving as well as hours of operation. All precipitated by the rapid advances in technology and the Internet. He embarked on extensive research and within two years began a company that would develop insurance products to fill the needs of the new business models. That specialized in insuring companies developing their e-commerce and e-business models.   These new business models all indicated that data and information were about to become the biggest exposures for all businesses.

Mr. Wurzler and his company grew to be one of the leaders in a competitive global marketplace. He served as one of many consultants to the National Security Advisor to President Clinton, has been quoted and featured in publications such as The Wall Street Journal, The Industry Standard, CIO, Investor’s Business Daily, E-Commerce Business and other. He has authored or co-authored several publications.

Relevant Experience/Specialization
Joe is a 30-year veteran in the insurance industry, with a focus on the cyber sector for the last 20 years. He began his career underwriting and broking Management Liability and Errors & Omissions risk transfer solutions, gained further expertise working with M&A Transactional Products and most recently, Cyber. He has held management and executive positions in underwriting, brokerage and MGA operations.   

Education and Credentials
Joe has served leadership roles in many organizations throughout his career. He is a current fellow for the Claims and Litigation Management Alliance and served as past chair for the Claims and Litigation Management Alliance’s Cyber Committee, and Professional Liability Committee.  He is a frequent author and speaker and is considered an expert in the area of Cyber Liability. 

Dianna D. McCarthy is a partner of Kaufman, Borgeest & Ryan where she is a member of the Employment Practice Group.  In addition to Employment Law, Dianna also works in the Cybersecurity and Data Privacy Group.  She has defended project managers in the technology sector, accountants, financial services industry professionals, mortgage brokers, appraisers, home inspectors, and insurance agents and brokers in professional liability matters.  She has also defended many not for profit Directors & Officers matters.  
 
Dianna speaks regularly nationwide on emerging issues in Employment Law, Cybersecurity and Data Privacy.  She co – chaired the Execusummit Cyber Liabilities Conference since its inception through 2019 (2012 - 2019) and she regularly speaks and writes on the topic.  She has also co-chaired Execusummit’s Employment Practice Liability Conference (Fall 2017) and regularly speaks at that conference as well.  

Dianna recently completed MIT’s AI in Leadership Course.  She is a 2019 Graduate from the FBI's Citizen's Academy.  She serves as Secretary on the New York Metro InfraGard Chapter.  She is a founding member and Vice President of Women in Cyber Leadership.  She is a founding member of Tortora Brayda Institute's AI - ISAO Task Force.  Finally, Dianna is an active member of the Steering Committee for the Eastern Chapter of the Professional Liability Underwriting Society.

John F. Mullen, Sr. has been licensed in Pennsylvania and New Jersey since 1991, and leads Nelson Levine deLuca & Horst’s Complex Litigation Practice Group.John has a personal focus on preparation for and defense of network security and privacy data breach events. He has presented on network and data security issues for insurers and brokers (Marsh, Willis, A.J. Gallagher, Wells Fargo and others) via national webinar/phone conferences and live presentations (NetDiligence, ACI, CPCU, RIMS and PLUS), and has been published on cyber/data loss issues in various publications including several articles in Best’s Review.John’s data and security practice centers on immediate and comprehensive response to data loss events, ideally post-event, but prior to suit. Through this approach, John concentrates on determining the scope of data loss through forensics, providing advice on customer and government notification, public relations management, analyzing data/document handling and retention compliance, as well as managing appropriate customer remedies, litigation hold/e-discovery requirements, indemnity shifting analysis, class action and multi-district litigation (MDL) issues.Specifically, John serves as Breach Coach Advisor and uses a pool of independent third-party professional service providers who have the capabilities and experience to help organizations and businesses execute their data breach response. In this role, John provides data breach consultation services and assists insureds as they manage the firms needed to address a data breach event such as firms handling computer forensics, notifications, call centers, public relations, crisis communications, fraud consultation, credit monitoring and identity restoration.John has been presenting on e-discovery issues throughout the U.S. since 2005. John received his B.A. from Pennsylvania State University and his J.D. from Arizona State University, College of Law.

Stu Panensky is an experienced business attorney and commercial litigator. Stu handles all phases of routine and complex civil litigation up through and including trial. He advises professional and corporate clients across multiple business sectors on risk mitigation and the defense of third party claims. Stu’s practice is concentrated in the following practice areas.

Cyber-Risk & Data Breach:
Stu has significant experience acting as data breach counsel to companies in multiple verticals including professional services, retail, hospitality, financial institutions, technology and healthcare. Stu leads breach response investigations including working with his clients’ internal IT and digital forensics to provide legal advice on the nature of the occurrence, scope of data exfiltration, obligations to notify impacted consumers and/or state and federal government regulators as well as contractual obligations to report to the Payment Card Industry (PCI). As breach counsel, Stu is networked with quality breach response vendors (IT, forensics, e-discovery, public relations, breach notification and others) and coordinates them in data breach response efforts including print and email notification, call-center management, credit monitoring and restoration services, and other cyber-incident response activity.

Stu also provides legal counsel related to pre-breach cyber-risk preparedness including drafting incident response planning documents, hosting mock-breach “tabletop” presentations to clients, opining on privacy and data and information security company policies as well as reviewing technology vendor/provider contract agreements and scope documents.

Education:
Syracuse University College of Law, Juris Doctor, 2003
Ithaca College Roy H. Park School of Communications, Bachelor of Science in Cinema Studies, 2000

 

 

Antonio Trotta is the Cyber & Professional Liability Claim Practice Leader at QBE Insurance with over 20 years experience handling large risk commercial claims.  Antonio has handled all manner of claims tendered under Management Liability, EPL, Fidelity, Media, Errors & Omissions and Technology policies.  Prior to working for insurance carriers, Antonio worked in private practice as an insurance coverage, business dispute and securities litigation attorney.  Antonio is a graduate of the University of Maryland and New York Law School, where he served as an editor of the New York Law School Law Review.  Antonio has authored several articles for the Fidelity Law Journal, and has co-authored an insurance guide book on intellectual property and cyber liability claims.  Antonio speaks frequently on negotiation strategy, privacy law, data breach prevention, mitigation and remediation

Scott Umstot is a Wholesale Broker with RT Specialty and carries a strong background in Privacy/Network Security.  Scott began his career as a Director & Officer underwriter for Chubb and holds a BA in Marketing at the University of Massachusetts.  Throughout his career, Scott has held various broker/underwriting roles related to The Technology/Life Sciences Industry.  Scott currently runs a large book of Cyber business out of Boston and works to educate insureds, agents & colleagues on all things cyber.

Tom Finan is a Senior Cybersecurity Strategist and Counsel with the Department of Homeland Security’s National Protection and Programs Directorate (NPPD), where he leads work on cybersecurity insurance and cyber risk management in support of implementation of Executive Order 13636, “Improving Critical Infrastructure Cybersecurity.” Tom established DHS’ Cybersecurity Insurance webpage, http://www.dhs.gov/publication/cybersecurity-insurance, which includes a series of readout reports that describe DHS’ efforts in these areas. Previously, Tom led the effort to develop a resiliency-focused risk analysis and modeling office for NPPD that examines both cyber and physical threats to critical infrastructures, systems, and the public. Prior to his arrival at DHS, he served as the Staff Director and Counsel for the Subcommittee on Intelligence, Information Sharing and Terrorism Risk Assessment with the U.S. House Committee on Homeland Security where he advised the Subcommittee Chair, Jane Harman (D-CA). During his service with the Committee, Tom authored two major reports: Beyond Connecting the Dots: A VITAL Framework for Sharing Law Enforcement Intelligence Information and LEAP: A Law Enforcement Assistance and Partnership Strategy. Both informed many of the statutory provisions that he developed for Title V of the Implementing Recommendations of the 9/11 Commission Act of 2007 (P.L. 110-53) and the Reducing Over-Classification Act (P.L. 111-258). Tom is a former Assistant General Counsel at the FBI and previously worked in private litigation practice.