Xcel Energy CSO Steve Brown and his team will share insights into what it takes to continue to advance your cybersecurity program and capabilities to stay ahead of the curve with escalating threats and increasing risks.
About Steve Brown

Steve Brown is the vice president, enterprise security services and chief security officer of Xcel Energy. He is responsible for all aspects of the company’s cybersecurity, physical security, enterprise continuity, strategy performance, and security governance and risk programs.
A seasoned information security executive, Brown has over 35 years of industry and military experience in the field of security. Prior to Xcel Energy, he was the vice president & deputy CISO at Hewlett Packard, responsible for global security operations. He spent 13 years with Wells Fargo as the senior vice president of information management and enterprise information security operations. He started his career in the US Navy, where he spent 20 years in technical and leadership positions in information warfare, signals intelligence and network operations.
Brown previously sat on the board of directors for Information Technology Information Sharing Analysis Center (IT-ISAC), the board of directors of the Financial Services ISAC (FS-ISAC), and as the co-chair of the Minnesota CSO Summit. He has a bachelor of science in information management from the University of Maryland and an executive MBA from the University of Michigan.
About Garrett Dietrick

Garrett Dietrick is the director of security governance and risk services at Xcel Energy within Enterprise Security Services. Dietrick’s focus is building security into the DNA of Xcel Energy’s culture. He does this through training and awareness, policy and standard dissemination, and performing risk assessments throughout the organization.
Dietrick specializes in establishing and managing Governance, Risk and Compliance (GRC) programs. He formerly owned and operated his own business, Policy and Risk Consulting LLC, which advised organizations on GRC programs. While his main focus has been on GRC, he also assisted organizations with program or project initiatives within IT security. Additionally, Dietrick has obtained and held many noteworthy positions and industry leading certifications during his career.