HRMCon 2025 – The Age of Adaptive Defense

Ashley Rose | Founder & CEO | Living Security

Edna Conway | Global CISO, Founder & CEO | EMC Advisors

The Age of Adaptive Defense: From Detection to Prediction

Session Overview

The era of reactive defense is ending—and a new age of predictive security is beginning. In this opening keynote conversation, Ashley Rose and Edna Conway explore why traditional human risk management approaches are falling short and how emerging technologies, including AI, are shaping the future of proactive defense.

Together, they’ll examine what it takes to evolve from compliance-driven programs to dynamic, intelligence-led strategies that anticipate risk before it occurs. Drawing on perspectives from both the boardroom and the front lines of innovation, Ashley and Edna will challenge the status quo and set the stage for a new era of adaptive defense.

This session opens HRM Con 2025 with a candid, forward-looking discussion on the transformation of human risk management—and what it means for the leaders building the future of security.

Speaker Bios
Ashley Rose is the Founder & CEO of Living Security, named the #1 Human Risk Management solution in the Forrester Wave™ (Q3 2024). She is driving a shift in how enterprises approach cybersecurity—placing people, not just technology, at the center of defense strategy. Under her leadership, Living Security has raised $25M+ and grown into a category leader serving Fortune 500 clients. A recognized voice in the industry, Ashley has been featured in Forbes, Dark Reading, Security Magazine, and CyberWire, where she shares insights on emerging threats and the future of human-centric security.

Edna Conway is a globally recognized cybersecurity and risk executive who has led security innovation at some of the world’s largest technology companies. As former Chief Security & Risk Officer for Microsoft Cloud Infrastructure and Cisco’s Global Value Chain, she built and scaled programs that safeguarded trillions in operations across five continents.

Now CEO of EMC Advisors, Edna advises global enterprises and governments on technology resilience, supply chain security, and human risk. She serves on multiple corporate and academic boards and has been honored among Fortune’s Most Powerful Women and the ISSA Hall of Fame.

Mike Siegel (President) & Kelly Harward (VP of Product) | Living Security

Introducing the Next Evolution of Human Risk Management

Session Overview

This session marks a defining moment in the evolution of Human Risk Management. Mike Siegel and Kelly Harward share a major innovation that reimagines how organizations understand and act on workforce risk—bridging vision, data, and outcomes in entirely new ways.

Designed for security and business leaders alike, this announcement sets the tone for the future: measurable, adaptive, and human-centric defense at scale.

Speaker Bios

Mike Siegel is the President of Living Security, where he leads strategy and operations to accelerate the adoption of Human Risk Management. He brings more than 20 years of leadership experience from top technology and cybersecurity companies, including senior roles at McAfee, Symantec, and Forcepoint. Throughout his career, Mike has guided global teams in product strategy, sales, and business transformation, building a track record of scaling organizations and bringing innovative solutions to market.

Kelly Harward is the Vice President of Product at Living Security. He brings over 20 years of experience in cybersecurity, application security, and information security. Previously, Kelly held senior product leadership roles at F5 Networks, Shape Security, and Forcepoint. He also led product teams in roles at Raytheon, and earlier in his career worked with engineering-oriented roles at Oakley Networks and Ingenix. 

Tim Taylor | VP of Security Education & Awareness | Mastercard

Creating Human Risk Visibility: Where to Start and How to Scale

Session Abstract
Organizations know people are their greatest risk surface, but too often the data feels overwhelming, fragmented, and impossible to act on. In this session, Tim Taylor will show how to cut through the noise and create clear visibility into human risk—fast. Attendees will learn how to define goals, identify 2–3 critical data sources, and build a meaningful baseline within 90 days. Tim will share a practical framework for transforming messy, siloed data into signals of risk and vigilance, giving leaders the insights they need to prioritize actions, reduce noise, and prove measurable outcomes

Speaker Bio
Tim Taylor brings more than 35 years of IT and cybersecurity leadership spanning financial services, technology, and enterprise transformation. At Mastercard, he leads efforts to advance security education and Human Risk Management, helping the organization translate complex risk data into actionable insights. Previously, Tim has guided dozens of Fortune 50 companies, government agencies, and higher education institutions through digital transformation and governance initiatives. His expertise lies in turning complexity into clarity—establishing frameworks, building visibility, and driving measurable security and cultural outcomes.

Panel Session
Balancing the Line: Innovating Risk Management Without Breaking Compliance

Session Overview
Human Risk Management leaders face a constant tension: how to innovate and reduce human-driven risk while still meeting strict compliance requirements. This panel will bring together practitioners from highly regulated industries to share how they’ve navigated that balance—turning compliance from a limitation into a launchpad for proactive risk reduction. Attendees will hear candid lessons on prioritizing the risks that matter most, translating visibility into mitigation, and using data to tell a compelling story of both compliance and cultural resilience.

Speaker Bios

Jon Garza is Chief Information Security Officer & Global Director, Information Technology Security & Compliance at PSA BDP, where he leads strategy and execution across security, compliance, and risk in the global supply chain network.

Amjed is CEO and Founder of Trove, an award-winning family office firm offering services in advisory, lifestyle management, and financial operations. Previously, he served as CEO of CyberVista, where he focused on applying learning science and behavioral techniques to cybersecurity education and workforce development.

Jacob Revord is a seasoned security awareness and training leader. He currently serves as Director of Security Engagement & Awareness at AVEVA, and prior to that led Information Security Awareness & Training at Sony Pictures.

Ashley Atiles (Director of Human Risk) & Alfonso Mancuso (Director of Information Security) | LabCorp

The Access Equation: Identity Meets Human Risk

Session Abstract
Identity has become one of the most powerful levers for reducing human risk, yet it’s also one of the most overlooked. In this session, Ashley Atiles and Alfonso Mancuso will explore how identity and human behavior intersect—where privilege creep, MFA fatigue, and provisioning errors create real-world vulnerabilities. They’ll show how organizations can move from identity visibility to mitigation, correlating IAM data with behavior patterns to prioritize the risks that matter most. With real-world examples from enterprise environments, Ashley and Alfonso will demonstrate how to translate identity insights into targeted interventions that scale, reducing exposure while improving efficiency and strengthening security culture

Speaker Bios

As Director of Human Risk at Labcorp, Ashley Atiles expertly blends strategic learning, change management, and cybersecurity to drive cultural transformation. She excels at delivering top-tier results by leveraging her ADKAR and Lean methodology expertise, fostering accountability-driven risk management, and championing a proactive, culture-first security approach. Her comprehensive education, technical certifications, and leadership roles—plus recognitions like Labcorp’s Chairman’s Award—underscore her capability to guide complex organizational change while mentoring others toward excellence. As a detail‑oriented perfectionist, she thrives under pressure and is committed to continuous professional and personal growth

Alfonso Mancuso is the Director of Information Security at Labcorp. His expertise spans identity and access management (IAM), security engineering, security testing, and automation, with a focus on strengthening identity controls and advancing enterprise security practices

Jinan Budge | VP, Research Director| Forrester

Graham Westbrook | VP, International Markets | SimSpace

The Future of Human Risk Management: Market Landscape and the Role of Agentic AI

Session Overview
Human Risk Management is rapidly maturing from a compliance-driven function into a strategic market with board-level visibility. In this session, Forrester’s Jinan Budge will explore the current state of the HRM market, where it is headed, and how organizations should prepare for the shifts ahead. She will highlight emerging opportunities and challenges in governance, accountability, and cultural resilience—while also examining the transformative role of agentic AI in reshaping how organizations measure, prioritize, and reduce risk at scale.

Speaker Bios
Jinan Budge is Vice President and Principal Analyst at Forrester, where she leads security and risk research across the Asia Pacific region. Her work focuses on helping CISOs and technology leaders build high-performing security organizations and cultures, with a global reputation for her expertise in awareness, behavior, and culture. She is also a strong advocate for diversity and inclusion, championing approaches that help cybersecurity teams attract and retain talent. Jinan brings both a strategic global view and a pragmatic cultural lens to her research, making her a leading voice on the future of Human Risk Management.

Graham serves as the Vice President of International Markets at SimSpace, providing solutions for elite live-fire exercises, stack testing, and world-class training to organizations around the world. Prior to joining SimSpace, Graham spent time as a consultant for the DoD's Defense Information Systems Agency (DISA) web vulnerability scan team and JFHQ-DoDIN Readiness and Security Inspection Audit team, inspecting facilities within the DoD Information Network for compliance with US CYBERCOM regulations and NIST standards. Graham also built the Cyber Threat Intelligence (CTI) team at Geisinger Health, before joining Crowdstrike as a Strategic Advisor and leading Flashpoint's global Advisory practice. Graham has supported Federal & Global 2000 organizations and delivered threat briefings and ransomware response tabletops to CISO-level decision-makers, helping them better understand how to combat cyber threats. Graham holds a B.A. in Intelligence Analysis, an M.S. in Criminal Justice & Forensic Psychology and is a post-graduate candidate in AI for Business at University of Oxford.

Larry Whiteside Jr. | Co-Founder & President | CONFIDE

Evolving the Role of the CISO: From Defense to Business Enabler

Session Overview
The role of the CISO has expanded far beyond protecting networks and systems—it now demands strategic alignment with business goals, revenue growth, and enterprise resilience. In this session, Larry Whiteside Jr. will share lessons from decades of experience leading security programs across defense, federal government, financial services, healthcare, and critical infrastructure. He will highlight the pressures and opportunities CISOs face in a rapidly shifting threat and regulatory landscape, and how Human Risk Management can empower CISOs to bridge security with culture, accountability, and business outcomes.

Speaker Bio
Larry Whiteside Jr. is a former U.S. Air Force officer turned 30-year cybersecurity trailblazer. A veteran CISO, CSO, and CTO, he has built and led security programs that safeguard the DoD, federal agencies, global financial services, healthcare, and critical-infrastructure enterprises. Larry serves as a public Board Director, guiding CEOs and Fortune 2000 security leaders on strategy, revenue growth, and risk. He is Co-Founder & President of CONFIDE, a worldwide boutique reseller delivering mission-focused solutions for CISOs, and Co-Founder of Cyversity, the 501(c)(3) advancing diversity in the profession. A featured thought leader in major media, Larry is a sought-after voice on stages such as RSA Conference, Gartner Security Summit, InfoSec World, and SecureWorld.

Ashley Rose | Co-Founder & CEO | Living Security

Drew Rose | Co-Founder & CSO | Living Security

Closing Remarks

Session Overview
As HRM Con 2025 comes to a close, Ashley and Drew Rose will reflect on the day’s insights, key takeaways, and the collective vision driving the next chapter of Human Risk Management. Together, they’ll highlight the themes shaping the future of adaptive defense—and challenge leaders to turn inspiration into action as they return to their organizations.

Speaker Bio

Ashley Rose is the Founder & CEO of Living Security, named the #1 Human Risk Management solution in the Forrester Wave™ (Q3 2024). She is driving a shift in how enterprises approach cybersecurity—placing people, not just technology, at the center of defense strategy. Under her leadership, Living Security has raised $25M+ and grown into a category leader serving Fortune 500 clients. A recognized voice in the industry, Ashley has been featured in Forbes, Dark Reading, Security Magazine, and CyberWire, where she shares insights on emerging threats and the future of human-centric security.

Drew Rose is the Co-Founder and CSO of Living Security. With a background in cybersecurity and information security, Drew has helped shape the company’s vision and strategy to redefine how organizations understand and reduce human risk. He combines technical expertise with a passion for storytelling and culture-driven change, making him a trusted voice in advancing Human Risk Management.