Joan Ross is the Field CISO for Fortinet, working closely with internal and external security executive teams. A technologist for more than 25 years, Joan’s security leadership comes from direct, hands-on security experience and exhaustive research, most recently working with the Verizon Cyber Intelligence Center, taking their findings directly to security teams to improve the security resiliency of global, complex, computing environments. Joan is the former chief security officer for two technology companies in the Pacific Northwest, DocuSign and Avanade, and understands first-hand the challenges, priorities and risk considerations daily facing every security executive. Prior to becoming a CSO, Joan was a security strategist and architect for Microsoft’s Online Security and Compliance division during the advent of cloud computing and introduction of Azure, and Vice President of Information Security at Washington Mutual, now JP Morgan Chase, creating their first information security, incident response and forensics divisions, Joan was one of the first professionals to obtain many now well-known security and privacy certifications, including the CISSP-ISSAP and the CIPT. She started out in security spearheading commercial cryptography, has run her own cybersecurity consulting companies, and travels the world helping organizations better secure their most important information and operations. Adept at assessing risk and putting the right technology in place before breaches occur, Joan has worked across organizations implementing digital protections and processes. An early proponent of secure development operations (SecDevOps), Joan works closely with teams optimizing their most strategic business plans ensure the verification of security and privacy information and metrics needed to ensure continuous improvements and resilient operations. Joan holds a Master of Science degree in Human Computer Design and Engineering from the University of Washington and works closely with their Center for Information Assurance and Cybersecurity mentoring and developing the next generation of cybersecurity professionals.