Navigating Change: A Roadmap for a CSO & CISO

Mike Howard, GM/CSO Microsoft Global Security & Bret Arsenault, CISO Microsoft

Viewers of this presentation will learn about the collaboration needed to create a successful unity of an organization's IT and Physical security departments.  Microsoft's solution involves peer to peer conversations from both a CSO and CISO to provide security for their buildings, environment, business and information.

Mike Howard is the General Manager/Chief Security Officer (CSO) for Microsoft Global Security.  Microsoft Global Security is responsible for physical security activities worldwide for the Microsoft Corporation, the world's largest software company.  Mike has been with Microsoft since 2002 where he was first hired to run the Executive Protection Unit (EPU) responsible for the protection of Bill Gates, Steve Ballmer and other senior Microsoft leaders.  In 2003, Mike was appointed to run all of Microsoft Global Security.  Microsoft Global Security encompasses:  Executive Protection, North American Operations, International Operations, Investigations, Background Investigations, Risk Mitigation/Crisis Management, Security Technology, Communications/Strategy/Budget, Intelligence and Analysis.  Microsoft Global Security also has three Global Security Operations Centers (GSOCS) responsible for global monitoring and response.  These GSOCs are located at Microsoft campuses in Redmond, WA; Hyderabad, India and the United Kingdom

Prior to joining Microsoft, Mike spent 23 years with the Central Intelligence Agency.  For the first six years, Mike worked in the Agency's Office of Security where he conducted Background Investigations/Adjudications and also worked as a member of the Director of Central Intelligence's Security Staff.  At the time, the Director, William J. Casey, was a Cabinet Level official in the Reagan Administration.  Mike then transferred over to the Directorate of Operations where he served in various operational positions for the bulk of his career.  Mike spent most of his time at CIA working as part of the Counterterrorist Center.  Mike ran global programs while at CIA and served in assignments primarily in Asia and Africa, though he did have some assignments in the Middle East and Europe.   During his CIA career, Mike also served rotational assignments with the Agency's HR Staff on Career Development issues and at one point, was in Recruiting as the Senior Recruiter for the Agency on the Operational side of the house.  Mike was also Executive Officer for the Agency's Office of Military Affairs (OMA) and worked as a Special Investigator for the Agency's Office of Inspector General (OIG).  Mike ended his career at the Agency with the National Resources Division as a Chief of Station.

Mike worked as Police Officer in Oakland, California in the late 1970's.  He served in Patrol Division as well as in a Burglary Task Force.

Mike was born in Boston but considers the Monterey Peninsula in California as his home.  Mike is an "Army Brat" and his father served in the U.S. Army primarily out of Fort Ord, California on the Monterey Peninsula during Mike's formative years.
Mike holds a BS Degree in Criminal Justice Administration with a minor in Sociology from San Jose State University in California.  Mike is married and has no children.  Mike has been involved in martial arts since the age of 14 and has studied a variety of styles including Jujitsu, Karate, Judo and Aikido.  Mike holds a Black Belt in Aikido.     

As the Chief Information Security Officer (CISO) for Microsoft, Bret Arsenault is responsible for information security risk management for Microsoft’s business. Overseeing a global team of information security professionals, Bret is responsible for the end-to-end governance, compliance, policy and practice spectrum of information security as well as enterprise business continuity. Prior to this role, Bret was the Chief Technology Officer (CTO) for Microsoft’s Identity and Security Division (ISD) where he was responsible for enabling ISD to realize its mission to become the trusted identity and security expert for customers and partners.

In Mr. Arsenault’s former role he led the US National Security team, whose focus was to align closely with Microsoft’s Enterprise customer to ensure a secure technology environment. Prior to that he served as Microsoft’s Director of Strategic Technology, he was responsible for working closely with customers and with the product groups to develop the Microsoft Security strategy. He has worked extensively on creating the Microsoft Risk Assessment (MSRA) methodology, which is a standardized framework to assess and provide guidance to Microsoft customers on their security risk. In addition to the MSRA, Mr. Arsenault has also been integrally involved in the development of Microsoft’s U.S. Emergency Response plan, the Worldwide Security Mobilization effort, and the Trustworthy Computing task force. Prior to his role as the Director of Strategic Technology, Mr. Arsenault was the Chief Technology Officer for Microsoft’s eBusiness Solutions group.

Mr. Arsenault is also involved at the executive level both with Microsoft customers and partners, holding advisory board roles in several government agencies, security companies and high-profile eBusiness organizations such as eBAY, Buy.com,Saints Ventures, @stake and Intel. In these roles, Bret has received numerous awards including the Architectural Engineer Achievement Award by Bill Gates for his leading Internet work.

Bret Arsenault has over 18 years of extensive experience in network computing, distributed processing, security and web based solutions. Prior to joining Microsoft in 1990, Bret worked for the Weyerhaeuser Company, where he was a leading systems analyst responsible for managing and securing VMS and Netware systems.

Complete the form below to request a copy of this presentation.