SPEAKER BIOGRAPHIES

SPEAKERS AT THE ENTERPRISE RISK/SECURITY MANAGEMENT CONFERENCE – MAY 28, 2025

Derek Milroy, Sr. Security Architect, Large Midwest Enterprise

Derek Milroy is a corporate security professional that has been implementing security, as both an internal employee and as a consultant, for the past twenty plus years. His main areas of focus the past decade or so have been: Systems Hardening (focusing mainly on Windows Forest/Domain/GPO architectures), Vulnerability Management, Patch Management, Log Management/SIM/SEIM, Incident Response, Network Infrastructure Security, Cloud Controls and Hardening, Red Team Program Management, Threat Modeling, and Threat Intel. He is a former QSA, current PCIP, and has also performed ISO 72001/27002, CIS Top18, and NIST CSF assessments.