Registration

Wed. Sep 08 — Thu. Sep 09

Data Connectors events are for IT professionals only. Required fields are marked with an asterisk (*).

Event Schedule

Times for this Event are in Eastern Time (EDT/EST)

The Summit will be open from 8AM to 6PM.

  • DAY ONE
  • Welcome / Introductions
  • Disrupting Lateral Movement by Securing Active Directory 9:45 am

    Presented by Attivo Networks

    Organizations continue to build their security stacks, yet advanced threats and insiders continue to breach networks and extract valuable data. A common tactic among most of these Ransomware and Advanced Threat Actors today involves leveraging Active Directory.  AD contains all of the information that an attacker needs to successfully move laterally and accomplish their mission. 

     In this session, Tom Atkins will explore a new method for securing Active Directory that can (for the first time) actually prevent an attacker from progressing laterally through your enterprise network.  Some key highlights include:

    • How Threat Actors use AD to accomplish their goals
    • Why Monitoring Active Directory is not enough
    • What simple tools you can deploy to dramatically improve your security posture by better securing AD
    Click to Expand

    Panel Participants:

    Tom Atkins
    Tom Atkins

    Tom Atkins

    Regional Vice President

    Collapse This Item

  • Broken Authentication: Fixing one of the most critical web application security risks 10:20 am

    Presented by Auth0

    Broken Authentication: Fixing one of the most critical web application security risks

    Click to Expand

    Panel Participants:

    Andrew Akers
    Andrew Akers

    Andrew Akers

    Senior Manager, Solutions

    Collapse This Item

  • The Risk Management “Balance Sheet” 10:45 am

    Managing risk has always been a part of the CISO responsibility set; however, the ways in which it is managed has no clear definition. With new ransomware threats, supply chain attacks, and third-party risk in the mix – perhaps a new way to budget risk is required.  Is there an effective way to have a “risk balance sheet” – a way in which the CISO could communicate risk to the rest of the C-suite in a consistent language they would understand?

    Click to Expand

    Collapse This Item

  • Expert Panel Discussion: Compliance & Automation in Cybersecurity 11:05 am

    Compliance & Automation in Cybersecurity

    Managing compliance needs as a continuous, organizational process (as opposed to a reactive response), amid the ever-increasing myriad of industry regulations and legislation has become a full time job for most CISOs.  Automation – including artificial intelligence and machine learning will help, and are perhaps more critical than ever. As CRPA comes into play and brings the US closer to GDPR, there are also a number of touchpoints where the CDO and CISO interplay will be crucial over the coming months. 

    In this panel, our experts will discuss the current issues with regard to compliance, monitoring, and reporting.  They’ll also talk about policy decisions and regulations that have kept them busy of late, and what we can expect more of in 2021.  

    Click to Expand

    Collapse This Item

  • Lunch Break
  • Lunch Break Sponser 11:50 am
  • Keynote:Cross-Border Talk on Borderless CyberCrime: SIM Swapping 12:15 pm

    If it hasn’t already, SIM card swapping is comin to a mobile phone near you.  A SIM swap is a low-cost, nontechnical way for attackers to gain control of a victim’s wireless phone account. The majority wireless phone accounts are vulnerable to SIM swaps. For those that hold cryptocurrency, attackers north and south of the border are especially interested to find you.  

    Highlighting recent cross-border cases, this exclusive presentation for the Canada-West Virtual Summit audience will elaborate on recent cases.  It will uniquely be presented by agents from the United States Secret Service, the Toronto Police Service Intelligence Services Coordinated Cyber Centre (C3), and the REACT – the Regional Enforcement Allied Computer Team. 

    Moreover, the agency representatives will talk about how they partner to thwart cybercrime, and stay ahead of the threat actors that prey on organizations in the area, especially those that have a good deal of cross-border trading activity.  Each of them will further explain their agency’s mission, take questions from Community Members, and detail the steps to take before you or your organization are the target of an attack. 

    Click to Expand

    Panel Participants:

    Det. Con. Kenrick Bagnall
    Det. Con. Kenrick Bagnall

    Det. Con. Kenrick Bagnall

    Toronto Police Service Intelligence Services, Coordinated Cyber Centre (C3)

    Sima Racine
    Sima Racine

    Sima Racine

    Investigative Specialist, ` United States Secret Service - Montreal Office

    David Berry
    David Berry

    David Berry

    Criminal Investigator, Santa Clara County Office of the District Attorney

    Collapse This Item

  • Faking It: Stopping Impersonation Attacks with Cyber AI 1:10 pm

    Presented by Darktrace

    Today, 94% of cyber-threats still originate in the inbox. ‘Impersonation attacks’ are on the rise, as artificial intelligence is increasingly being used to automatically generate spear-phishing emails, or ‘digital fakes’, that expertly mimic the writing style of trusted contacts and colleagues. 

    Humans can no longer distinguish real from fake on their own – businesses are increasingly turning to AI to distinguish friend from foe and fight back with autonomous response. 

    In an era when thousands of documents can be encrypted in minutes, ‘immune system’ technology takes action in seconds – stopping cyber-threats before damage is done. 

    Click to Expand

    Panel Participants:

    Mariana Pereira
    Mariana Pereira

    Mariana Pereira

    Director of Email Security Products

    Collapse This Item

  • Rethinking Data Protection in the Age of Ransomware 1:30 pm

    Presented by Zerto

    With the proliferation of data-driven digital business growing at an exponential pace, so is the pace of cyber security threats and attacks, such as ransomware. Cyberattacks can cost a company $1.4 Million on average in recovery when you add in the cost of lost productivity, reputation damage, and service disruption. Are you at risk? Can your backup keep pace with the speed of recovery that’s needed today? Attend this session to find out why traditional backup won’t save you from ransomware attack and how continuous data protection helps you to prepare, respond and recover from an attack.

    Click to Expand

    Panel Participants:

    Andy Fernandez
    Andy Fernandez

    Andy Fernandez

    Senior Technology Evangelist

    Collapse This Item

  • Moving Beyond Password to Delight & Secure Users 2:05 pm

    Presented by Okta

    Passwords have been a constant throughout the internet era. As we’ve moved from desktops to smartphones, from on-premises infrastructure to cloud services, we’ve all relied on passwords to access and safeguard our data and resources across the applications we use on a daily basis.

    But in this new digital age where data breaches are rampant, passwords are no longer good enough. Not only are they insecure, they are expensive and offer a poor user experience. Fortunately, there’s a better way to protect your applications and stop account takeover incidents.

    In this session, we’ll discuss the benefits of passwordless authentication and explain how eliminating the password can help improve user experience, admin visibility and control, and scalability. We’ll also walk through key considerations and first steps as you embark on your passwordless journey.

    Click to Expand

    Panel Participants:

    Michael Patterson
    Michael Patterson

    Michael Patterson

    Solutions Engineer

    Collapse This Item

  • Introduction to Risk-Based Vulnerability Management 2:25 pm

    Presented by Kenna Security

    Organizations have millions of vulnerabilities. And our research has shown that those same organizations, large or small, on average, can only fix one in 10 of those vulnerabilities.

    But as a security executive you still need to keep your organization secure, so how do you do that when you can’t possibly fix all of your vulnerabilities? The answer is to focus on your highest-risk vulnerabilities first.

    Join Kenna Security’s CTO and Co-Founder Ed Bellis as he:

    • Reviews what years of research into vulnerability management data uncovered about the scope of the challenge
    • Details the findings on how risk-based is the way to get ahead in vulnerability management
    • Lays out several factors that drive better remediation performance
    • Provides steps for setting up a successful risk-based vulnerability management program
    Click to Expand

    Panel Participants:

    Ed Bellis
    Ed Bellis

    Ed Bellis

    CTO and Co-Founder

    Collapse This Item

  • Expert Panel Discussion: Cybersecurity in IOT 2:50 pm

    Cybersecurity in IOT

    The Internet of Things (IoT) poses entirely new challenges. With 35 billion IoT devices expected to be in operation by next year – weak passwords, insecure network services and a lack of secure update mechanisms concern every organization. 

    Click to Expand

    Collapse This Item

  • Rise of Secure Access Service Edge (SASE) 3:30 pm

    Presented by Bitglass

    Secure access service edge has quickly emerged as a hot topic in cybersecurity, but what exactly does it mean and why should organizations care? As cloud migration, BYOD adoption, and remote work have skyrocketed in prevalence, it has become increasingly apparent that organizations need to think differently about security. While legacy tools like firewalls are no longer equipped to handle the modern IT ecosystem, SASE platforms like Bitglass are built for this exact moment. In this presentation, you will learn: 

    • The core components of a SASE platform like Bitglass.
    • The functionality you need to secure cloud, web, and remote access use cases.
    • Architectural considerations you should keep in mind when comparing SASE vendors
    Click to Expand

    Panel Participants:

    Kevin Sheu
    Kevin Sheu

    Kevin Sheu

    Senior Vice President

    Collapse This Item

  • Guest Keynote: 4:00 pm

    Session Details Coming Soon

    Click to Expand

    Collapse This Item

  • Day One Closing Session
  • DAY TWO
  • Welcome / Introductions
  • Managing the Insider Threat 9:25 am

    An adversary who attacks an organization from within can prove fatal to the business and is generally impervious to conventional defenses.  Social science research has been used to explain why traditional methods fail against these trusted betrayers.  Every company must identify and utilize new management techniques, increase security, and revise workplace strategies for categorizing and defeating insider threats.

    There are key players in positions to either effectively support or undermine the insider threats.  Leadership style can make a difference in the way an institution recognizes and identifies these threats from rethinking background investigations to recognizing deception and using lawful disruption. Most importantly, organizations must circumvent these predators before they jeopardize the workplace and sabotage business operations.

    Click to Expand

    Collapse This Item

  • Beyond SolarWinds: Supply Chain & Third-Party Risk Management for 2021 10:20 am

    Even before SolarWinds Orion Code Compromise, Supply Chain Attacks were up over 400% in 2020.  As 2021 rolls on, this attack vector has received tremendous attention.  Along with third-party risk in general, partner organizations and software systems with unfettered, privileged, deep access to infrastructure create “a perfect storm” threat for modern cyber executives.  

    In this session we will discuss these challenges in detail, as well as the multiple approaches to identify the best means of using supply chains while keeping the third-party risks at a minimum.

    Click to Expand

    Collapse This Item

  • Expert Panel Discussion: DevOps Security and the Cloud 11:05 am

    DevOps enables you to release features and bug fixes faster than ever before. However, traditional security activities can’t seem to keep up with this fast-paced tempo. How can you make sure security doesn’t get left behind? Ignoring security bugs won’t make them go away. Slowing down the DevOps team isn’t an option. How can we make DevOps, and DevSecOps work well in the fast-paced cloud environment we live in? 

    Click to Expand

    Collapse This Item

  • Lunch Break
  • Keynote: 12:15 pm

    Session Details Coming Soon

    Click to Expand

    Collapse This Item

  • Operational Technology (OT) & Industrial Control Systems (ICS): Cybersecurity Concerns 1:10 pm

    Since the Stuxnet worm was first discovered back in 2010, attacks related to SCADA systems have been of concern. While manufacturing and utility organizations tend to talk about them more, there are wide implications across the cybersecurity landscape that touch on ICS and OT systems of all kinds. 

    In this session we will talk about why these types of attacks represent a primary concern, and what state-of-the-art looks like in terms of building protections.

    Click to Expand

    Collapse This Item

  • AI & ML in Cybersecurity: Can we ‘Science the heck’ out of trouble? 1:30 pm

    We get it, Artificial Intelligence (AI) with particular focus on Machine Learning (ML) is one way to overcome advanced threats with particular attention to scale. That said, those terms are thrown at our executives to delight, amaze and confuse them. How do we really discern between them as tools in our kit versus ‘Weapons of Mass Distraction’?

    Click to Expand

    Collapse This Item

  • Expert Panel Discussion: DevSecOps - Testing, Tuning, Containers 2:50 pm

    DevSecOps - Testing, Tuning, Containers

    In this panel, experts around penetration testing, defense-in-depth, and containers will explore the nuances associated with the cybersecurity landscape that impact development teams.  From the early stage components of identity and access management, to congoing releases and discovery of flaws introduced by third-party and open source components, this is an area where security-minded organizations need to pay attention. 

    Click to Expand

    Collapse This Item

  • Compliance & Automation in Cybersecurity 3:30 pm

    Managing compliance needs as a continuous, organizational process (as opposed to a reactive response), amid the ever-increasing myriad of industry regulations and legislation has become a full time job for most CISOs.  Automation – including artificial intelligence and machine learning will help, and are perhaps more critical than ever. As CRPA comes into play and brings the US closer to GDPR, there are also a number of touchpoints where the CDO and CISO interplay will be crucial over the coming months. 

    In this session, we will discuss the current issues with regard to compliance, monitoring, and reporting.  Policy decisions and regulations that have kept CISOs busy of late, and what we can expect more of in 2021 will also be addressed.

    Click to Expand

    Collapse This Item

  • CISO Panel 4:00 pm

    Submit your bio for consideration to participate on our CISO Panel

    to [email protected] or fill out our Call for Speakers form here.

    Click to Expand

    Collapse This Item

  • Summit Final Closing Session
Register