The upper ranks of corporate security are seeing a high rate of change as companies try to adapt to the evolving threat landscape. Many companies are hiring a chief security officer (CSO) or chief information security officer (CISO) for the first time to support a deeper commitment to information security.
Follow this column to keep up with new appointments to senior-level security roles and perhaps gain a little insight into hiring trends. If you have an announcement of your own that you would like us to include here, contact Amy Bennett, executive editor.
New CISO appointments, February 2021
Northwestern Mutual appoints Laura Deaner as CISO
In her new role, Deaner will lead the Enterprise Information Risk & Cybersecurity team and be responsible for spearheading Northwestern Mutual’s information security strategy. She brings 21 years of experience working in cybersecurity for multi-national Fortune 500 companies and most recently was CISO at S&P Global. Deaner is the first woman to hold the CISO position at Northwestern Mutual.
Voyager Digital names Daniel Costantino CISO
Prior to joining the crypto-asset broker, Costantino was CISO and deputy CIO at Penn Medicine. He is also a board member of H-ISAC. During his time at Penn Medicine, Costantino won two CSO50 awards. (H/t MSSP Alert)
Precisely appoints Sue Bergamo as CISO
In this newly created role at the global software company, which bills itself as the global leader in data integrity, Bergamo is responsible for carrying out and managing the company’s information security vision, strategy, and program and fostering a culture of security stewardship. Prior to joining Precisely, Bergamo was CIO & CISO at digital experience company Episerver (recently rebranded to Optimizely). (H/t Security Magazine)
Michigan Department of Technology, Management and Budget names Laura Clark CSO
Clark had been serving as acting security officer since June 2020, replacing Chris DeRusha, who was recently appointed federal CISO. In this role, Clark is the state’s top cybersecurity official, responsible for the state government’s digital assets and physical security and emergency planning for facilities DTMB manages. (H/t StateScoop)
Lumen hires Nick Andersen as Public Sector CISO
Andersen brings several years of experience in state and Federal cybersecurity to his new role at the telecommunications company. Prior to joining Lumen he was Principal Deputy Assistant Secretary for Cybersecurity, Energy Security, and Emergency Response at the Department of Energy. Andersen also served as CISO for the State of Vermont and was CIO with the US Navy and US Coast Guard. At Lumen he “is responsible for ensuring that Lumen’s cybersecurity and IT products meet the federal government’s strict security requirements and risk management standards,” the company said. (H/t MeriTalk)
Aiven names James Arlen CISO
Arlen brings more than two decades of experience delivering information security solutions to Fortune 500, TSE 100 and major public-sector companies to the cloud data platform provider company. Prior to joining Aiven, he most recently served as the director of production engineering at Salesforce Heroku. (H/t Security magazine)
Comerica names Juan Rodriguez EVP, CISO
In his new role, Rodriguez oversees the financial services company’s enterprise-wide information security policy, strategy, architecture, operations and capability enhancements. Prior to joining Comerica, he most recently served as CISO at NatWest Markets.
Reddit hires Allison Miller as CISO and VP of trust
In her new role, Miller will “oversee the Safety and Security teams at Reddit where she’ll be responsible for expanding trust & safety operations and data security, as well as evolving programs to mitigate security challenges and risks,” according to the blog post announcing her appointment. “Miller will also redesign Reddit’s trust frameworks and transparency efforts to enable further growth across the platform.” She joins the social networking site from Bank of America where she was overseeing technology design and engineering delivery for the company’s information security organization.
Amplitude hires Olivia Rose as CISO, VP of IT & security
Prior to joining the product intelligence provider, Rose was most recently CISO at Mailchimp and director, global executive risk at managed security provider Kudelski Security.
GitHub hires Mike Hanley as CSO
Hanley joins the code hosting platform having previously served as CISO at Cisco and head of security at Duo Security. (H/t WHICH-50)
Director, Global Executive Risk
New CISO appointments, January 2021
Biden administration names Chris DeRusha as federal CISO
In his new role, the former Biden campaign CISO is responsible for coordinating cybersecurity policy across the federal government. Prior to joining the Biden campaign, DeRusha was chief security officer for the state of Michigan. He also previously served as a senior cybersecurity adviser at both the White House and the Department of Homeland Security during the Obama administration. (H/t cyberscoop)
The state of California appoints Vitaliy Panych as CISO
After two years as the state’s acting chief information security officer, the former deputy CISO has been appointed CISO of the state of California. Prior to joining the California Department of Technology, Panych was an agency chief information security and privacy officer at the California Department of Corrections and Rehabilitation. (H/t statescoop)
Department of Homeland Security appoints Kenneth Bible as CISO
Bible was formerly Deputy CIO for the United States Marine Corps. Bible holds a Master of Engineering degree from the University of South Carolina-Columbia and earned a Bachelor’s degree in Mechanical Engineering from Virginia Tech. (H/t governmentCIO)
Digital Realty names Don Freese as CISO
In his new role, Freese is responsible for overseeing the San Francisco-based real estate investment trust’s information security technology and programs and managing risks related to confidentiality, integrity and availability of systems and data. Prior to joining Digital Reality, Mr. Freese held security leadership roles at PwC and the FBI. He has a BA in Criminal Justice/Law Enforcement Administration from California State University-Fullerton and a MSc in Business Continuity, Security, and Risk Management from Boston University. (H/t helpnetsecurity)
Ungerboeck hires Casey Jessmon as CISO
In his new role at the event software maker, Jessmon will be responsible for fostering the organization’s security culture and will “liaise with customers to discuss security processes, protocols and certifications and develop industry security certifications such as PCI-DSS and TISAX and ISO27001,” according to Exhibition World. Prior to joining Ungerboeck, Jessmon was Business Information Security Officer at Equifax.
Opendoor hires Noah Beddome as CISO
In his new role, Beddome will lead the San Francisco-based online real estate company’s information security program and IT. Prior to joining Opendoor, Beddome held a number of security and consulting roles, most recently as VP of security engineering at Datadog. (H/t Security Magazine)