Board of Directors 

To contact an ISACA board member, please email news@isaca.org.

Director Brennan BaybeckChair Brennan P. Baybeck, CISA, CISM, CRISC, CISSP, is Vice President - Customer Support Services Security Risk Management for Oracle Corporation. In his role, Baybeck leads a global team that addresses IT security risk management for one of the largest lines of business at Oracle. He is also responsible for leading security, privacy and availability for customer-facing services, as well as Global IT’s key enterprise IT services, including cloud initiatives. He has more than 25 years of experience in IT security, governance, risk, audit and consulting, and has worked in various industries designing, implementing and operating enterprisewide programs to address global security risks. He has held leadership positions at Sun Microsystems, StorageTek and Qwest Communications, and served as an information security risk consulting director for several years. Baybeck also has been actively involved with ISACA for more than 25 years, serving many years as a chapter board leader and more than 8 years working at the international level, as chair for various working groups and as a board director. He is a recipient of the Western Michigan University’s Business Information Systems Outstanding Alumni Award in recognition of his distinguished service and accomplishments.

Vice Chair Rolf von RoessingVice Chair Rolf von Roessing, CISA, CISM, CGEIT is partner and CEO at Forfa Consulting AG and chairman of Forfa Holding AG. He brings more than 25 years of experience in governance, risk management and compliance; security and business continuity; and crisis management in a range of sectors, including banking and finance, insurance, wholesale and retail, automotive, and healthcare. He has also been teaching as a senior lecturer in M. Sc. courses at Donau-Universität Krems since 2005 and is a member of the Academic Council for M. Sc. Management and IT, M. Sc. Information Security Management, and M. Sc. Cybersecurity. In the more than 20 years that von Roessing has been an ISACA member, he has served on a number of ISACA committees and was International Vice President from 2009-2011. He previously held senior positions at KPMG and Ernst & Young.

Director Tracey DedrickDirector Tracey Dedrick is a C-Suite executive experienced in risk, compliance, treasury and investor relations. Dedrick was EVP and Head of ERM for Santander Holdings US, where she was responsible for enterprise risk, operational risk and market risk for the Americas. Prior to this role, she was EVP, Chief Risk Officer and a member of the executive team for Hudson City Bancorp, where she built regulatory compliant risk, compliance and information security functions. Prior to that, Dedrick spent nine years at MetLife, where she successively built the capital markets function for the newly demutualized company as assistant treasurer, reinvented the investor relations function, helping to double the share prices as head of investor relations, and installed a market-consistent economic capital model as head of market risk, leading to the eventual disposition of the annuity business. Additionally, Dedrick serves on the boards of the Royal Shakespeare Company of America and the Royal Oak Foundation. She previously served on the conference committee of the New Jersey Women’s Banking Association and on the board of Children’s Aid and Family Services.

Director Pam NigroDirector Pam Nigro, CRMA, CISA, CGEIT, CRISC, is the senior director of information security focusing on the GRC practice at Heath Care Service Corporation (HCSC), the fourth largest health insurance company, where she is responsible for information technology/information security risk and compliance testing. Successively, she inaugurated automated IT and cybersecurity controls/testing/analytics program for Agile/DevSecOps, and designed compliance checks in a digital chain of custody for transparency of code movement through the release pipeline to enable compliant code release velocity for the five Blue Cross Blue Shield Plans Illinois, Texas, New Mexico Oklahoma, and Montana, which comprise HCSC. Prior to HCSC, Nigro joined the Systems and Process Assurance (SPA) practice at PwC where she served both audit and non-audit clients. She is a recognized subject matter expert in HIPAA, HITRUST, SOC 1, SOC 2, Sarbanes-Oxley (NAIC-MAR), and IT/cybersecurity controls and risk assessments. Nigro is also an adjunct professor at Lewis University in Illinois, USA, where she teaches graduate-level courses on information security, ethics, risk, IT governance and compliance, and management of information systems in the MSIS and MBA programs. At ISACA, Nigro held various board positions for the Chicago Chapter, including chapter president, and is chair of the ISACA Chicago Women’s Forum (SheLeadsTech). She is a frequent trainer for ISACA at both the chapter and international levels. She also served on the ISACA International Chapter Services Working Group. Nigro received her MBA from Stuart School of Business at Illinois Institute of Technology in Chicago, Illinois. She has more than 25 years of experience in the information technology industry and holds numerous IT certifications. Nigro is also a member of Toastmasters International and has held numerous Toastmasters leadership positions, culminating in her achievement of her “Distinguished Toastmaster” award. She is a frequent speaker at industry conferences such as ISACA’s CACS and CSX events, ISACA and The IIA’s Governance, Risk and Control (GRC) Conference, IIA’s All-Stars Conference, and local ISACA and IIA chapter meetings.

Director R.V. RaghuDirector R.V. Raghu, CISA, CRISC, is director of Versatilist Consulting India Pvt. Ltd. Raghu cofounded Versatilist, which provides consulting, training and auditing services in information security, IT service management, business continuity and enterprise risk management. Raghu has more than a decade of extensive, hands-on, global experience across various verticals, such as engineering, manufacturing, IT, ITeS, BFSI, chemicals, mining and telecom. He has provided training, consulting and implementation support for establishing management systems compliant to ISO international standards and other frameworks, such as CMMI and COBIT. He is a gold level member of ISACA and is immediate past president of the ISACA Bangalore Chapter, where he has served as director of membership, secretary, vice president previously.

Director Martha Gabriela ReynagaDirector Martha Gabriela Reynaga, CRISC, CISA, GRCP, is the founder and CEO of Holistics GRC Consultancy, which provides IT-related services (Mexico). Previously, she worked as IT audit and governance director at Qualtop, as consultancy partner at GPI Global Practice International, GRC manager at ISM, and BRS manager Salles, Sainz - Grant Thornton, S.C. Before serving in these roles, she spent nearly 10 years at Deloitte in a variety of audit and risk services roles. In addition, she is a COBIT 5 Accredited Trainer and a public accountant. Reynaga has been actively involved with ISACA over the past seven years, currently as president of the ISACA Guadalajara Chapter (Mexico), where she previously served as secretary. She is also part of ISACA’s LatinCACS Governance Committee and Finance Committee, as well as president of the IT Commission for the Mexican Institute of Public Accountants. In addition, she is an international speaker with ISACA, ASIS, OAS and other organizations, and contributes articles on cybersecurity, IT and corporate governance for publications such as Best Corporate Practices (Mejores Practicas).

Director Gregory J. TouhillDirector Gregory J. Touhill, CISM, CISSP, Brigadier General (ret), is president of Cyxtera Federal Group, Cyxtera Technologies, a secure infrastructure company which offers data center services and cybersecurity capabilities to federal agencies and departments (USA). In addition, he serves as adjunct professor of Cybersecurity at Carnegie Mellon University’s Heinz College. He serves on the boards of Bay Dynamics, Inc. and Cybersponse, Inc. as well as the Symantec Federal Advisory Board and Cyber Security Forum Initiative Advisory Boards. Prior to joining Cyxtera Technologies, he was selected by President Obama as the US government’s first Chief Information Security Officer. His other civilian government service includes duties as the Deputy Assistant Secretary, Cybersecurity and Communications at the United States Department of Homeland Security; and as Director of the National Cybersecurity and Communications Integration Center, where he led national programs to protect the United States and its critical infrastructure. He is a retired Air Force general officer, a highly-decorated combat leader, an accomplished author and public speaker, and a former American diplomat. He has received numerous awards and recognition, including most recently, the 2017 F. Lynn McNulty Tribute Award in recognition of his contributions to securing the nation from cyber threats and the 2016 Federal 100 Award for accomplishments as Deputy Assistant Secretary to improve public- and private-sector partnership to better manage risk.

Asaf WeisbergDirector Asaf Weisberg, CISM, CRISC, CISA, CGEIT, is founder and CEO of introSight, where he is responsible for the development of risk management methodologies and oversees the implementation of risk assessment and risk management projects for clients. In addition, he consults boards and executives on cybersecurity risk management. He has more than 20 years of hands-on, managerial and mentoring experience in cybersecurity and various other IT disciplines, including in past roles as MIS manager and IT infrastructure director for multi-national corporations. Weisberg has been a member of ISACA for more than 15 years and is the immediate past president of the ISACA Israel Chapter.

Director Tichaona ZororoDirector Tichaona Zororo, CISA, CISM, CGEIT, CRISC, COBIT 5 Certified Assessor, CIA, CRMA, is Director, IT Advisory, with EGIT | Enterprise Governance of IT (Pty) Ltd., an IT Advisory firm (South Africa). He has several years of in-depth experience in mainstream IT, IT auditing, cybersecurity, IT governance and IT risk across private and public sectors in Africa, Europe, the USA and Asia. Zororo is an advisor to a number of boards of directors, IT and business leaders across the globe on governance of enterprise IT, cybersecurity, IT auditing, IT risk, innovation and digital transformation. He was involved in the development of numerous ISACA white papers and COBIT 5 publications. A renowned COBIT expert, advisor and accredited trainer, Zororo is credited for being the first COBIT 5 Certified Assessor in Southern Africa. He has served on the ISACA Framework Committee, CGEIT Test Enhancement Subcommittee and the External Advocacy Committee. He is a recipient of the ISACA 2017 Harold Weiss Award for Outstanding Achievement, which recognizes an individual for sustained contributions to the advancement of the governance of enterprise IT. Zororo was voted a top speaker at 2017 Asia Pacific CACS and 2017 Africa CACS conferences. He is the Immediate Past President of the ISACA South Africa chapter.

Chair Robert ClydeDirector and 2018-2019 ISACA Board Chair Rob Clyde, CISM, NACD Board Leadership Fellow, is executive chair of the board of directors for White Cloud Security (trusted app list enforcement), and independent board director for Titus (leader in data protection, categorization and classification) (USA). He is the managing director of Clyde Consulting LLC, which provides board and executive advisory services to cyber security software companies. He serves as an executive advisor to HyTrust (multi cloud workload security) and BullGuard Software (consumer and smart home cyber security). Prior to becoming chair of ISACA’s board of directors, he served as vice-chair, chaired the board-level ISACA Finance Committee and served as a member of ISACA’s Strategic Advisory Council, Conference and Education Board and the IT Governance Institute Advisory Panel. Previously, he was CEO of Adaptive Computing, which provides workload management software for some of the world’s largest cloud, high-performance computing, and big data environments. Prior to founding Clyde Consulting, he was chief technology officer at Symantec and a co-founder of Axent Technologies. Clyde is a frequent speaker at ISACA, cybersecurity conferences and for the National Association of Corporate Directors (NACD). He also serves on the industry advisory council for the Management Information Systems Department of Utah State University (USA).

Past Chair Christos K. Dimitriadis,Director and 2015-2017 Board Chair Chris K. Dimitriadis, Ph.D., CISA, CISM, CRISC, is Group Chief Services and Delivery Officer at INTRALOT, managing the provision of integrated gaming solutions and services in 47 jurisdictions worldwide. Prior to this role, he served as Group Director of Information Security, reporting to the Group CEO of INTRALOT for 12 years, having created the global information and cyber security operations. He served ISACA as chair of the board for two terms and as director of the board for six terms. Chris has been working in the area of information technology, security and privacy for 19 years. He holds three patents and six awards, and he has authored more than 150 publications. He holds a degree in Electrical and Computer Engineering and a Ph.D. in Information Security.

Director Greg Grocholski,Director Greg Grocholski, CISA, served as ISACA Board Chair from 2012-2013. He is also advisor to the chief audit executive (CAE) and CEO at SABIC, where he previously served as vice president and CAE. Before joining SABIC, he was global business finance director for the Ventures and Business Development unit within The Dow Chemical Company, a role he took after serving as chief audit executive at Dow. Grocholski has been chair of ISACA's Finance Committee, Assurance Committee and Knowledge Board, and member of ISACA's Strategic Advisory Council, Audit Committee, Professional Influence and Advocacy Committee, Professional Issues Task Force and Governance Committee. He is a recipient of the Saginaw Valley State University's Distinguished Alumni Award in recognition of his distinguished service and accomplishments.

ISACA CEO David SamuelsonISACA CEO David Samuelson is a seasoned executive with particular strength in strategic and technology leadership, communications and execution. He has a deep foundational expertise in operational execution, product management and leadership, and deep industry experience in global education technology, software development, consumer publishing, television, and theater. Samuelson has had proven success in both creative ideation and tactical execution of ideas, with an excellent track record of working effectively across global, complex and matrixed organizations. His 25 years in education began at the Minnesota Educational Computing Corporation as vice president and executive producer. He worked at Pearson, the leading global education company, for 15 years in a variety of executive roles, including president of global schools, chief marketing officer and product strategist for Pearson’s US School division, and VP of the Family Education Network. Samuelson’s earlier career in theatre and television included an Emmy award-winning children’s television producer.