HRMCon 2025 – The Age of Adaptive Defense

A hosted lunch provided on-site at Q2 Stadium, home of Austin FC. Attendees will enjoy a catered meal and have the opportunity to network and recharge in one of Austin’s premier venues before the afternoon sessions.

Ashley Rose | Founder & CEO | Living Security

Opening Remarks

Session Overview
Ashley Rose will kick off HRMCon with an energizing welcome that looks back at the journey of Human Risk Management and the growth of this community, while setting the stage for an impactful day ahead.

Speaker Bio
Ashley Rose is the Founder & CEO of Living Security, named the #1 Human Risk Management solution in the Forrester Wave™ (Q3 2024). She is driving a shift in how enterprises approach cybersecurity—placing people, not just technology, at the center of defense strategy. Under her leadership, Living Security has raised $25M+ and grown into a category leader serving Fortune 500 clients. A recognized voice in the industry, Ashley has been featured in Forbes, Dark Reading, Security Magazine, and CyberWire, where she shares insights on emerging threats and the future of human-centric security

Brett Wahlin | CISO | Aurora 

From Counterintelligence to Cybersecurity: Rethinking the Human Factor Across Industries

Session Overview
Risk frameworks have long been the backbone of enterprise security, providing structure and clarity in a complex landscape. But most have been built almost entirely around technology, leaving the human element underrepresented. In this keynote, Brett Wahlin will trace his journey from counterintelligence to the CISO seat, revealing how insights about human behavior translate across industries and into modern defense strategies. He will highlight where traditional frameworks succeed, where they fall short, and how Human Risk Management bridges the gap—integrating people into the same disciplined approach that has long governed technology.

Speaker Bio
Brett Wahlin is a veteran security leader with more than 30 years of global experience. He began his career in U.S. Army counterintelligence and has since served as CISO or CSO at organizations including McAfee, Sony, Hewlett-Packard Enterprise, Staples, and Amazon Prime Video. He also held security leadership roles at Los Alamos National Laboratory, Wells Fargo, and Intel, and today advises organizations while serving on the Board of Directors for NINJIO.

Tim Taylor | VP of Security Education & Awareness | Mastercard

Creating Human Risk Visibility: Where to Start and How to Scale

Session Abstract
Organizations know people are their greatest risk surface, but too often the data feels overwhelming, fragmented, and impossible to act on. In this session, Tim Taylor will show how to cut through the noise and create clear visibility into human risk—fast. Attendees will learn how to define goals, identify 2–3 critical data sources, and build a meaningful baseline within 90 days. Tim will share a practical framework for transforming messy, siloed data into signals of risk and vigilance, giving leaders the insights they need to prioritize actions, reduce noise, and prove measurable outcomes

Speaker Bio
Tim Taylor brings more than 35 years of IT and cybersecurity leadership spanning financial services, technology, and enterprise transformation. At Mastercard, he leads efforts to advance security education and Human Risk Management, helping the organization translate complex risk data into actionable insights. Previously, Tim has guided dozens of Fortune 50 companies, government agencies, and higher education institutions through digital transformation and governance initiatives. His expertise lies in turning complexity into clarity—establishing frameworks, building visibility, and driving measurable security and cultural outcomes.

Take time to connect with peers, continue discussions from earlier sessions, and build new relationships. This break offers a chance to recharge while fostering the connections that make HRMCon a collaborative and impactful experience.

Ashley Atiles (Director of Human Risk) & Alfonso Mancuso (Director of Information Security) | LabCorp

The Access Equation: Identity Meets Human Risk

Session Abstract
Identity has become one of the most powerful levers for reducing human risk, yet it’s also one of the most overlooked. In this session, Ashley Atiles and Alfonso Mancuso will explore how identity and human behavior intersect—where privilege creep, MFA fatigue, and provisioning errors create real-world vulnerabilities. They’ll show how organizations can move from identity visibility to mitigation, correlating IAM data with behavior patterns to prioritize the risks that matter most. With real-world examples from enterprise environments, Ashley and Alfonso will demonstrate how to translate identity insights into targeted interventions that scale, reducing exposure while improving efficiency and strengthening security culture

Speaker Bios

As Director of Human Risk at Labcorp, Ashley Atiles expertly blends strategic learning, change management, and cybersecurity to drive cultural transformation. She excels at delivering top-tier results by leveraging her ADKAR and Lean methodology expertise, fostering accountability-driven risk management, and championing a proactive, culture-first security approach. Her comprehensive education, technical certifications, and leadership roles—plus recognitions like Labcorp’s Chairman’s Award—underscore her capability to guide complex organizational change while mentoring others toward excellence. As a detail‑oriented perfectionist, she thrives under pressure and is committed to continuous professional and personal growth

Alfonso Mancuso is the Director of Information Security at Labcorp. His expertise spans identity and access management (IAM), security engineering, security testing, and automation, with a focus on strengthening identity controls and advancing enterprise security practices

Panel Session
Balancing the Line: Innovating Risk Management Without Breaking Compliance

Session Overview
Human Risk Management leaders face a constant tension: how to innovate and reduce human-driven risk while still meeting strict compliance requirements. This panel will bring together practitioners from highly regulated industries to share how they’ve navigated that balance—turning compliance from a limitation into a launchpad for proactive risk reduction. Attendees will hear candid lessons on prioritizing the risks that matter most, translating visibility into mitigation, and using data to tell a compelling story of both compliance and cultural resilience

Mike Siegel (President) & Kelly Harward (VP of Product) | Living Security

Operationalizing HRM: Frameworks, Playbooks & GOALS for Adaptive Defense

Session Overview
Most organizations acknowledge that people are their greatest risk surface, yet struggle to define what to measure and how to act on it. This session introduces the tools Living Security has built to help leaders turn Human Risk Management from theory into practice. Kelly Harward and Mike Privette will walk through the HRM Framework, Playbooks, and GOALS in Unify—showing how visibility, prioritization, and measurable outcomes come together to reduce human risk at scale. Attendees will leave with clarity on how to operationalize HRM, from defining what matters to demonstrating value to executives, and a glimpse into how these tools will evolve to address emerging forces like Agentic AI.

Speaker Bios

Mike Siegel is the President of Living Security, where he leads strategy and operations to accelerate the adoption of Human Risk Management. He brings more than 20 years of leadership experience from top technology and cybersecurity companies, including senior roles at McAfee, Symantec, and Forcepoint. Throughout his career, Mike has guided global teams in product strategy, sales, and business transformation, building a track record of scaling organizations and bringing innovative solutions to market.

Kelly Harward is the Vice President of Product at Living Security. He brings over 20 years of experience in cybersecurity, application security, and information security. Previously, Kelly held senior product leadership roles at F5 Networks, Shape Security, and Forcepoint. He also led product teams in roles at Raytheon, and earlier in his career worked with engineering-oriented roles at Oakley Networks and Ingenix. 

Jinan Budge | VP & Principal Analyst | Forrester

The Future of Human Risk Management: Market Landscape and the Role of Agentic AI

Session Overview
Human Risk Management is rapidly maturing from a compliance-driven function into a strategic market with board-level visibility. In this session, Forrester’s Jinan Budge will explore the current state of the HRM market, where it is headed, and how organizations should prepare for the shifts ahead. She will highlight emerging opportunities and challenges in governance, accountability, and cultural resilience—while also examining the transformative role of agentic AI in reshaping how organizations measure, prioritize, and reduce risk at scale.

Speaker Bio
Jinan Budge is Vice President and Principal Analyst at Forrester, where she leads security and risk research across the Asia Pacific region. Her work focuses on helping CISOs and technology leaders build high-performing security organizations and cultures, with a global reputation for her expertise in awareness, behavior, and culture. She is also a strong advocate for diversity and inclusion, championing approaches that help cybersecurity teams attract and retain talent. Jinan brings both a strategic global view and a pragmatic cultural lens to her research, making her a leading voice on the future of Human Risk Management.

Larry Whiteside Jr. | Co-Founder & President | CONFIDE

Evolving the Role of the CISO: From Defense to Business Enabler

Session Overview
The role of the CISO has expanded far beyond protecting networks and systems—it now demands strategic alignment with business goals, revenue growth, and enterprise resilience. In this session, Larry Whiteside Jr. will share lessons from decades of experience leading security programs across defense, federal government, financial services, healthcare, and critical infrastructure. He will highlight the pressures and opportunities CISOs face in a rapidly shifting threat and regulatory landscape, and how Human Risk Management can empower CISOs to bridge security with culture, accountability, and business outcomes.

Speaker Bio
Larry Whiteside Jr. is a former U.S. Air Force officer turned 30-year cybersecurity trailblazer. A veteran CISO, CSO, and CTO, he has built and led security programs that safeguard the DoD, federal agencies, global financial services, healthcare, and critical-infrastructure enterprises. Larry serves as a public Board Director, guiding CEOs and Fortune 2000 security leaders on strategy, revenue growth, and risk. He is Co-Founder & President of CONFIDE, a worldwide boutique reseller delivering mission-focused solutions for CISOs, and Co-Founder of Cyversity, the 501(c)(3) advancing diversity in the profession. A featured thought leader in major media, Larry is a sought-after voice on stages such as RSA Conference, Gartner Security Summit, InfoSec World, and SecureWorld.

Drew Rose | Co-Founder & CSO | Living Security

Moderator & Closing Remarks

Session Overview
As Moderator, Drew Rose will guide the program, connect the threads between sessions, and keep the energy flowing throughout HRMCon. In his closing remarks, Drew will reflect on the day’s most impactful moments and offer a forward-looking perspective to carry the momentum beyond the event.

Speaker Bio
Drew Rose is the Co-Founder and CSO of Living Security. With a background in cybersecurity and information security, Drew has helped shape the company’s vision and strategy to redefine how organizations understand and reduce human risk. He combines technical expertise with a passion for storytelling and culture-driven change, making him a trusted voice in advancing Human Risk Management.