In the SecureWorld Spotlight Series, we learn about the speakers and Advisory Council members that make our events a success. In Q&A format, they share about their professional journeys, unique experiences, and hopes for the future of cybersecurity—along with some personal anecdotes.
Donna Ross is a senior security and compliance executive with over 20 years of diverse risk, compliance, cybersecurity, technology, and operations experience within the manufacturing, insurance, banking, financial services, healthcare, and retail sectors. Before joining Radian, Donna had senior level roles in security and compliance at Accolade, Corning Incorporated, GMAC, and Prudential. In those roles, she had program responsibility for global IT Risk Management, Compliance, Privacy, Third-Party Risk Management, Program Delivery Office, and Security and Disaster Recovery, including strategy and policy.
Get to know Donna Ross
Q: Why did you decide to pursue cybersecurity as a career path?
A: Making a difference and challenging work! There are always new threats and challenges to face. Cybersecurity provides an opportunity to serve a great mission (protecting the company or greater good) and fosters the opportunity for continuous learn and development. Every day is different, and staying on top of risks, threats, attacks, trends, market, products, vendors, etc. is required.
Q: What encouraged you to join your current organization?
A: The culture and mission, plus they're good corporate citizens and active in the communities they serve. Radian Group has innovative solutions (products and services) and is committed to social responsibility.
Q: How would you describe your feelings about cybersecurity in one word?
A: Fun
Q: What has been your most memorable moment thus far working in cybersecurity?
A: My most memorable moments working in cyber would revolve around the people I have met, places I've traveled, problems solved, and ways I have supported the business and our community at large. Also, watching my mentees develop and grow.
Q: If you had to choose: what's the one cybersecurity practice people can adopt that would have the greatest impact?
A: Addressing IT hygiene, patching, and technical debt, closely followed by employee training and awareness, strong access controls, endpoint and network security, and incident response planning and tabletops.
Q: What is an industrywide change you would like to see happen in the future?
A: Better integration of security into product designs, and more diversity and inclusivity.
Q: If you could pass or change one regulation/law in cybersecurity and data protection, what would it be and why?
A: Standardized federal regulation and compliance for security, incident reporting, and privacy.
Q: When you tell people what you do for a living, what do you say?
A: Information Security. I prevent good people from doing bad things.
Q: What are you most looking forward to at your regional SecureWorld conference this year?
A: Learning, networking, and meeting with partners.
Q: In honor of our 2023 conference theme, CyberSonic: Security & Sound Remix, what is your all-time favorite song?
A: "Bohemian Rhapsody" by Queen, "Stairway to Heaven" by Led Zeppelin, or "Imagine" by John Lennon.
To connect with Donna and other cybersecurity leaders from the greater Philadelphia area, attend the 20th annual SecureWorld Philadelphia conference on April 19-20, 2023. Donna will co-present a session on "ChatGPT and Other AI Products: What Are the Implications for Cybersecurity?" See the conference agenda and register here.
Continue to follow our Spotlight Series for more highlights from industry experts.
