Virtual Cybersecurity Summit
The Great Plains Region Virtual Cybersecurity Summit draws upon some of the region’s preeminent experts, headlined by Special Agent in Charge Joe Scargill of the US Secret Service’s Minneapolis Field Office.
The agenda includes an insightful series of live sessions, on topics ranging from ransomware to cloud security — with a local focus, touching on some of the attacks that have affected medical centers across the Great Plains region over the last few months, and the JBS attacks that affected many in this region.
Thu. Jul 15
Special Agent in Charge at USSS - Minneapolis Field Office
Keynote: Cybersecurity “Protective Advance”Matthew Lyons
[Ret] Defense Intelligence Agency Senior Analyst
Guest Keynote: The Dog that Didn't BarkNorman Kromberg
Vice President Information Security/CISO at SouthernCarlson, a...
CISO RoundTableJonathan Kimmitt
CISO at University of Tulsa
CISO RoundTableBill Pulte
CIO at Educational Service Unit 3
CISO RoundTableSteven Ramirez
VP & CISO at Renown
CISO RoundTableMichelle Vercellino
CIO and EVP of Operations & Insights at IMA Financial Group
Times for this Event are in Central Time (CDT/CST)
The Summit will be open from 8AM to 6PM.
- Welcome / Introductions
The Last Line of Defense: Data Protection 9:20 am
With the growth of Ransomware and cybercrime, Data protection is experiencing a resurgence. Organizations are quickly having to modernize their data protection architecture and strategies to meet not only these demands but also the demand that digital transformation is placing upon them; current approaches are designed around a backup centric approach, whereas a new approach centered around restore and getting organizations back up and running as quickly as possible are critical. Join this session to learn about the latest innovations in the data protection space and how they can be implemented to provide a restore centric approach and provide a true last line of defense.
Owning the Endpoint: Identify Tradecraft, Remove Adversaries and Reduce Risk 9:45 am
CrowdStrike’s Incident Response team reported an average Adversary dwell time of 79 days in the year 2020. Simply put: security teams are struggling to quickly detect, triage, contain and eradicate Adversaries that have compromised their environment. Ransomware, extortion, hacktivism and the like are all perpetrated by adversaries targeting data on the endpoint. Attendees will learn how a laser-focused approach to endpoint remediation can reduce adversary dwell time and ultimately reduce the risk of a data breach.
Expert Panel Discussion: Ransomware 10:05 am
100 Ransomware Attacks Since Colonial Pipeline: What have we learned?
Whether you chose to pay the ransomware or not, industry experts tell you to treat your entire network as contaminated. Rebuilding images, devices, re-formatting storage, and all the rest is part of this process. In this panel, our experts will talk about what to do first – and what to avoid, and where the traps may lie.
Panel Participants:James Morrison
CISO at Ntirety
Small Businesses Deserve Big Protection 11:05 am
Small businesses are facing many of the same cybersecurity challenges as larger businesses. 66% of small businesses experienced a cyberattack in 2019, and 63% experienced a data breach. But securing your business doesn’t have to be complicated. Cybersecurity tools should be easy for a team of any size to deploy, use, and manage — letting you focus on more important things (like running your business!) Join Kate MacLean from Cisco to learn more about small business cybersecurity and how cloud-delivered security provides powerful protection against today’s biggest cyberthreats.
Moving Beyond Password to Delight & Secure Users 11:25 am
Passwords have been a constant throughout the internet era. As we’ve moved from desktops to smartphones, from on-premises infrastructure to cloud services, we’ve all relied on passwords to access and safeguard our data and resources across the applications we use on a daily basis.
But in this new digital age where data breaches are rampant, passwords are no longer good enough. Not only are they insecure, they are expensive and offer a poor user experience. Fortunately, there’s a better way to protect your applications and stop account takeover incidents.
In this session, we’ll discuss the benefits of passwordless authentication and explain how eliminating the password can help improve user experience, admin visibility and control, and scalability. We’ll also walk through key considerations and first steps as you embark on your passwordless journey.
- Lunch Break
Keynote: Cybersecurity “Protective Advance” 12:15 pm
A Briefing from the US Secret Service
While best known for their VIP protective mission, the US Secret Service has always been charged with the protection of our nation’s financial infrastructure. Moreover, the Secret Service’s world-wide network of Cyber Fraud Task Forces (CFTF) join together federal, state and local law enforcement, along with private sector partners and academia to combat cyber criminals across the globe.
A “protective advance” is the proactive and preventative work done by Secret Service teams in order to preserve the security of the people they protect. In a related fashion, planning, practice, and exercises represent the good cyber hygiene that can prevent attacks.
SAIC Joseph Scargill, from the US Secret Service Minneapolis Field Office will share the details of his agency’s cyber strategy and the criticality of establishing trusted partnerships before an incident occurs. His talk will cover the authority, capabilities, and cyber strategy of the CFTF network and how the Secret Service strives to build partnerships at all levels and in all critical infrastructure sectors to ensure when a crisis does occur, the phone call to law enforcement will be met with a familiar voice.
As a cybersecurity leader, you should have the Secret Service CFTF team’s number in your mobile phone. In this discussion, SAIC Scargill will talk about tabletop exercises, how to assure senior executives are bought-in on cyber strategy, and share useful resources from the Secret Service and other agencies that stand ready to support organizations in the region.
In this exclusive briefing for the Great Plains Virtual Cybersecurity Summit audience, he will share insights from recent case studies from across the region, and accentuate what it means to you as a cybersecurity leader.
Rise of Secure Access Service Edge (SASE) 1:10 pm
Secure access service edge has quickly emerged as a hot topic in cybersecurity, but what exactly does it mean and why should organizations care? As cloud migration, BYOD adoption, and remote work have skyrocketed in prevalence, it has become increasingly apparent that organizations need to think differently about security. While legacy tools like firewalls are no longer equipped to handle the modern IT ecosystem, SASE platforms like Bitglass are built for this exact moment. In this presentation, you will learn:
- The core components of a SASE platform like Bitglass.
- The functionality you need to secure cloud, web, and remote access use cases.
- Architectural considerations you should keep in mind when comparing SASE vendors
Expert Panel Discussion: Protecting Users 1:55 pm
Protecting Users - Identity, Endpoints and Access Management
The 2000’s view of “perimeter” in terms of security conjures up an analogy about castles and moats… but today, the question is, where is the moat? As we turbo-charged Work From Home this year, and BYOD is just a way of life – have your Identity and Access Management practices kept-up?
Panel Participants:Mark Sangster
Cybersecurity Expert & Author “No Safe Harbor”Patrick Slattery
Managing Director at CanopachMichael Melore
Executive Cyber Security Advisor at IBMTony Cole
Chief Technology Officer at Attivo Networks
Guest Keynote: The Dog that Didn't Bark 2:35 pm
Why Didn't Islamic Terrorists Conduct Large-Scale Cyberattacks?
In the years following 9/11, pundits and Congressional Committees issued dire warnings about Islamic terrorist attacks via the Internet. Billions of dollars were spent evaluating and shoring up vulnerabilities in an increasingly interconnected world. Concerns about terrorism online largely drove the 2009 creation of what became Cyber Command–which just last month retasked its primary counterterrorism unit, Task Force Ares, to focus on China.
The potential threat posed by cyberterrorism has provoked considerable alarm. As most critical infrastructure in the country is networked through computers, the potential threat from cyberterrorism is very real. The internet also remains an important avenue for propaganda and recruitment for Islamic terrorists. However cyberattacks never materialized at a large scale from the terrorist group as expected. Join this talk as we examine the possible reasons why terrorist cyberattacks have been small-scale and scarce and looks to the future to see if the trend will hold.
Expert Panel Discussion: Zero Trust 3:25 pm
Will the Real Zero Trust Please Stand Up?
Beyond the potential, beyond the hype, zero trust is a strategy that organizations of all sectors and sizes are employing today. It is a complex concept that unifies many different facets of cybersecurity. Even the most seasoned cybersecurity professionals can be overwhelmed when attempting to take on Zero Trust architectures. As efforts now shift to the long-term strategic view of the ‘new normal’, organizations are questioning how they will ensure business resiliency in 2021 and act more quickly against new and evolving cyber threats.
Our experts will discuss the various aspects of a zero trust approach including users, identity management, access, and network configuration concepts.
Panel Participants:Joel Hollenbeck
Office of the CTOMichael Riemer
Global Vice President, Office of the CTO at Ivanti
Disrupting Lateral Movement by Securing Active Directory 3:55 pm
A common tactic among advanced threat actors and ransomware attacks today involves leveraging Active Directory to move laterally and accomplish their mission. Active Directory data can give attackers credentials, privileges, access, and persistence. Protecting it must be a high priority for any organization.
Active Directory security requires time, resources, expertise, and visibility. Typical best practices focus on limiting privileged accounts, conducting audits, and hardening systems, but these no longer suffice to address advanced attacks.
Join this session to explore new options that automate defending AD from compromise to prevent lateral movement.
CISO RoundTable 4:25 pm
Submit your bio for consideration to participate on our CISO RoundTable
to [email protected] or fill out our Call for Speakers form here.
Panel Participants:Norman Kromberg
Vice President Information Security/CISO at SouthernCarlson, a Kyocera CompanyJonathan Kimmitt
CISO at University of TulsaBill Pulte
CIO at Educational Service Unit 3Steven Ramirez
VP & CISO at RenownMichelle Vercellino
CIO and EVP of Operations & Insights at IMA Financial Group
- Summit Final Closing Session & Prize Drawing