Bret Arsenault is Corporate Vice President and Chief Information Security Officer at Microsoft, the world’s largest software company. In the CISO role since 2009, Bret is charged with keeping all Microsoft data secure from the 21st century’s ever- growing cyber-threats, while ensuring compliance with evolving regulations. With the global team of information security professionals that he leads, he successfully developed and implemented the company’s robust corporate incidence response strategy, as well as sophisticated companywide defenses that combine threat monitoring, vulnerability analysis and control tools.
In addition to his responsibilities as CISO, Bret serves as Chairman of Microsoft’s Information Risk Management Council, convening teams from across the company that focus on data protection. He frequently takes his expertise directly to enterprise customers as the host of Microsoft’s Security Council, a forum that drives product direction and operational best practices. Bret serves as an outside cyber-risk advisor to executives and boards at numerous Fortune 100 companies, and has served on the Advisory Boards of several enterprises and numerous government agencies. He is a founding member of Security 50 and the Executive Security Action Forum (ESAF), an association of senior information security and risk executives from governments and Global 1000 companies. Bret is frequently asked to speak on cyber security strategy, at events that include HP Discover, Security50, the Pacific Enterprise Risk Forum and Gartner’s Security and Risk Management Summit.