Director at PayPal, Inc responsible for Security Engagement, Architecture and Strategy teams. A business partner organization that supports our PayPal Product and Technology teams in order to build applications with suitable security characteristics and/or features that protect our customers and brand. Formerly Chief Information Security Officer responsible for Information Security Strategy, Information Risk Assessment, FINRA & SEC Compliance as related to Technology enforcement, privacy compliance, Sarbanes Oxley (SOX) leader and manager for Information Technology, Business Continuity and Disaster Recovery Planning for firm. Specialties: Security Architecture, Security Strategy, Security Engineering, Business Partner Engagement, SOX Compliance, Regulatory Compliance, Business Continuity and Disaster Recovery Planning (BCP and DR Planning), FINRA and SEC broker dealer compliance, privacy compliance, Payments Industry Security. Licenses and Certifications: CISSP FINRA Series 7 (General Securities Representative) FINRA Series 63 (Uniform Securities Agent State Law Registration) FINRA Series 24 (General Securities Principal)

Director, Security Engagement, Architecture & Strategy @ From May 2012 to Present (3 years 8 months) San Francisco Bay AreaParanoid / Director of Security Management Services @ From May 2010 to May 2012 (2 years 1 month) Sr. Security Project Manager (Consultant) @ From 2009 to September 2010 (1 year) Chief Information Security Officer (CSO) @ * Information and Access Security and Network Security: Information security strategy and risk analysis including assurance that senior management understand current risks and remediation options. Work with IT to implement solutions to mitigate highest risks. * Regulatory Compliance: Work with Legal/Compliance business to ensure the Technology function is appropriate for regulation and law and that risks are addressed appropriately. * Sarbanes-Oxley (SOX) Compliance: Information Technology SOX compliance and serve on firm SOX Steering Committee. Work with all IT Managers to ensure understanding of SOX Controls, work closely with Internal Audit on reviews, testing and compliance. * Business Continuity Planning (BCP) – Planning firm BCP and Disaster Recovery Plans; coordination of failover testing and documentation of IT plans. On firm BCP Steering Committee providing technical vision as well as facilitation of Enterprise plan and assistance with Management Crisis plan. From June 2004 to July 2009 (5 years 2 months) Director of Engineering Services & Chief Technology Officer @ Worked with team to design and build initial technology infrastructure for firm November 1998 for business start-up. Responsible for design, implementation, and maintenance of server infrastructure. Responsible for managing Engineering and Operations teams and personnel including Network, Server, desktop/laptop systems, Identity and access management group, training group, and Help Desk. Work with business lines to understand and document needs, identify appropriate technologies and processes, and work with Information Technology to bring together technology solutions with highest priority business technology needs. From June 1999 to June 2004 (5 years 1 month) Consultant @ Consultant working at Montgomery Securities in Engineering and Infrastructure group with expertise in Microsoft Exchange system implementation and support. Led integration and conversion during merger with NationsBank to Bank of America. Written communications (E-Mail) Regulatory requirements and project implementation and monitoring. From 1996 to October 1998 (2 years) Project Manager @ Project Manager for various projects for County of Alameda, Microsoft Partner services, and Applied Materials. Projects included Windows design and implementation, Novell design and implementations, Microsoft Exchange first look program, Microsoft Exchange early adopter projects, and Microsoft Exchange design and implementation projects. From 1995 to 1996 (1 year) IT Manager @ IT Manager responsible for IT operations for Insurance Broker including Server infrastructure and operations, telecommunications, and technical support for central office and 12 remote offices throughout soutwest and midwest. From June 1991 to April 1995 (3 years 11 months)

General Securities Principal, Series 24 - General Securities Principal @ Series 24 - FINRA Industry Certification From 2006 to 2006 Series 63 - Industry Certification @ Series 63 - FINRA Industry Certification From 2006 to 2006 CISSP, Information Security @ CISSP - Industry Certification From 2005 to 2005 General Securities Representative @ Series 7 - FINRA Industry Certification From 2005 to 2005 BS Computer Information Systems, Computer Information Systems @ DeVry University From 1988 to 1991 Beth Cannon is skilled in: Sarbanes-Oxley Act, Data Center, Security, Cloud Computing, CISSP, PCI DSS, SaaS, Information Security, Information Security Management, SDLC, Business Continuity, IT Operations, Application Security, Integration, ITIL