Virtual Summit

NorthEast

Virtual Cybersecurity Summit

Join the NorthEast Virtual Cybersecurity Summit to hear from some of the industry’s leading experts from across the country, with a particular focus on the Northeastern region. In this immersive, virtual environment, you will hear from industry experts on topics vital to keeping up with the ever-changing landscape of cybersecurity.

The live, interactive environment of the NothEast Virtual Cybersecurity Summit will allow you to interact with representatives from some of the world’s top cybersecurity solutions providers, as well as network with fellow cybersecurity professionals. 

Take a look at all Data Connectors has to offer here!

View Video

NorthEast

Date

Wed. Jun 29 — Thu. Jun 30

Registration

Wed. Jun 29 — Thu. Jun 30

Registration for qualified senior cybersecurity professionals. Subject to approval.

I agree to Data Connectors Terms and Conditions *

Price: FREE

ENTER VIP CODE HERE


Event Schedule

Times for this Event are in Eastern Time (EDT/EST).

The Summit will be open from 11:00 AM June 29th to 5PM and 8:30 AM June 30th to 3PM.

  • DAY ONE
  • Welcome / Introductions
  • AI & ML in Cybersecurity: Can We ‘Science the Heck’ Out of Trouble? 9:25 am
    Add to Calendar20220629 9:25 am20220629 9:45 amAmerica/New_YorkAI & ML in Cybersecurity: Can We ‘Science the Heck’ Out of Trouble?

    We get it, Artificial Intelligence (AI) with particular focus on Machine Learning (ML) is one way to overcome advanced threats with particular attention to scale. That said, those terms are thrown at our executives to delight, amaze and confuse them. How do we really discern between them as tools in our kit versus ‘Weapons of Mass Distraction’? 

    .

    We get it, Artificial Intelligence (AI) with particular focus on Machine Learning (ML) is one way to overcome advanced threats with particular attention to scale. That said, those terms are thrown at our executives to delight, amaze and confuse them. How do we really discern between them as tools in our kit versus ‘Weapons of Mass Distraction’? 

    Click to Expand

    Collapse This Item

  • A User-First Approach to MFA 9:45 am
    Add to Calendar20220629 9:45 am20220629 10:05 amAmerica/New_YorkA User-First Approach to MFA

    As a modern-day CISO, your number one priority is to keep your users safe. Achieving this requires you to address the competing needs of security, privacy, and convenience. In the security industry, everybody believed that to be secure; something couldn’t be convenient. Security and convenience functioned only in opposition. Making access hard was the best way to keep info safe. This presentation will explore ways to deliver a secure experience to your customers without compromising the end-user experience by taking a user-first approach to MFA.

    Presented by Auth0

    As a modern-day CISO, your number one priority is to keep your users safe. Achieving this requires you to address the competing needs of security, privacy, and convenience. In the security industry, everybody believed that to be secure; something couldn’t be convenient. Security and convenience functioned only in opposition. Making access hard was the best way to keep info safe. This presentation will explore ways to deliver a secure experience to your customers without compromising the end-user experience by taking a user-first approach to MFA.

    Click to Expand

    Speaker:

    Shiven Ramji
    Shiven Ramji

    Shiven Ramji

    Chief Product Officer at Auth0

    Collapse This Item

  • The Reason Why Ransomware is Really HEATing Up 10:05 am
    Add to Calendar20220629 10:05 am20220629 10:25 amAmerica/New_YorkThe Reason Why Ransomware is Really HEATing Up

    When entire workforces went remote in 2020 because of the global pandemic, organizations pivoted quickly to new business models by migrating apps and services to the cloud to enable the anywhere, everywhere workforce. That’s resulted in business users spending an average of 75% of their workday working in a browser. These same digital enhancements, however, also ushered in widespread transformation that expanded attack surfaces and created new opportunities for cyber miscreants, giving rise to Highly Evasive Adaptive Threats (HEAT), which are used as beachheads for initiating ransomware, data theft, and account takeovers.

    Presented by Menlo Security

    When entire workforces went remote in 2020 because of the global pandemic, organizations pivoted quickly to new business models by migrating apps and services to the cloud to enable the anywhere, everywhere workforce. That’s resulted in business users spending an average of 75% of their workday working in a browser. These same digital enhancements, however, also ushered in widespread transformation that expanded attack surfaces and created new opportunities for cyber miscreants, giving rise to Highly Evasive Adaptive Threats (HEAT), which are used as beachheads for initiating ransomware, data theft, and account takeovers.

    Click to Expand

    Collapse This Item

  • How Leaky Can It Git? How Scanning Public Git Repository Commits Uncovered 2 Million Leaked Secrets in 2020 10:50 am
    Add to Calendar20220629 10:50 am20220629 11:10 amAmerica/New_YorkHow Leaky Can It Git? How Scanning Public Git Repository Commits Uncovered 2 Million Leaked Secrets in 2020

    Leaked secrets like API keys, security certificates and other credentials are a growing security risk for organizations which has led to many high profile security breaches. The biggest source of leaked credentials is without question within public git repositories. GitHub, the largest host of open-source code, had more than 60 million repositories created in a single year. Public code distribution on this scale brings with it a serious security threat, especially when you consider the many leaks that happen on personal repositories outside of organizations control. 

    With such a vast amount of data stored on GitHub, it has been difficult to quantify the extent of this problem, until now. GitGuardian conducted the largest research project to date on leaked secrets in public repositories. The project scanned 2.5 million commits a day and over 1 billion commits throughout the year uncovering over 2 million leaked secrets. This presentation looks at why secrets and other sensitive information are frequently leaked through git including the type of secrets commonly leaked and where. Additionally, the presentation will look at how to prevent Secrets Sprawl from individual developers, security teams and organizations as a whole.

    Presented by GitGuardian

    Leaked secrets like API keys, security certificates and other credentials are a growing security risk for organizations which has led to many high profile security breaches. The biggest source of leaked credentials is without question within public git repositories. GitHub, the largest host of open-source code, had more than 60 million repositories created in a single year. Public code distribution on this scale brings with it a serious security threat, especially when you consider the many leaks that happen on personal repositories outside of organizations control. 

    With such a vast amount of data stored on GitHub, it has been difficult to quantify the extent of this problem, until now. GitGuardian conducted the largest research project to date on leaked secrets in public repositories. The project scanned 2.5 million commits a day and over 1 billion commits throughout the year uncovering over 2 million leaked secrets. This presentation looks at why secrets and other sensitive information are frequently leaked through git including the type of secrets commonly leaked and where. Additionally, the presentation will look at how to prevent Secrets Sprawl from individual developers, security teams and organizations as a whole.

    Click to Expand

    Collapse This Item

  • Disrupting Lateral Movement by Securing Active Directory 11:10 am
    Add to Calendar20220629 11:10 am20220629 11:30 amAmerica/New_YorkDisrupting Lateral Movement by Securing Active Directory

    A common tactic among advanced threat actors and ransomware attacks today involves leveraging Active Directory to move laterally and accomplish their mission. Active Directory data can give attackers credentials, privileges, access, and persistence. Protecting it must be a high priority for any organization. 

    Active Directory security requires time, resources, expertise, and visibility. Typical best practices focus on limiting privileged accounts, conducting audits, and hardening systems, but these no longer suffice to address advanced attacks. 

    Join this session to explore new options that automate defending AD from compromise to prevent lateral movement. 

    Highlights include: 

    • Live detection for attacks targeting Active Directory 
    • Attack surface reduction at both Active Directory and the endpoint 
    • Continuous visibility to AD changes that introduce new exposures 

     

    Presented by Attivo Networks

    A common tactic among advanced threat actors and ransomware attacks today involves leveraging Active Directory to move laterally and accomplish their mission. Active Directory data can give attackers credentials, privileges, access, and persistence. Protecting it must be a high priority for any organization. 

    Active Directory security requires time, resources, expertise, and visibility. Typical best practices focus on limiting privileged accounts, conducting audits, and hardening systems, but these no longer suffice to address advanced attacks. 

    Join this session to explore new options that automate defending AD from compromise to prevent lateral movement. 

    Highlights include: 

    • Live detection for attacks targeting Active Directory 
    • Attack surface reduction at both Active Directory and the endpoint 
    • Continuous visibility to AD changes that introduce new exposures 

     

    Click to Expand

    Collapse This Item

  • Mobile Device Security 11:30 am
    Add to Calendar20220629 11:30 am20220629 12:00 pmAmerica/New_YorkMobile Device Security

    Mobile devices are omnipresent for everyone in our society. Providing email, file access, even physical access and authentication has been made easily accessible via our use of these devices. At the same time, users are five times more likely to click on a phishing email on their smartphone versus desktop, file access and authentication can be exposed via a lost device, and a host of other vulnerabilities exist.  Corporate-provided assets could be one answer, but it’s simply not feasible for every organization, and moreover – users are looking to connect whenever and wherever they are (even as they are at home a lot these days). 

    Our expert panel will contemplate several approaches to this challenge.

    .

    Mobile devices are omnipresent for everyone in our society. Providing email, file access, even physical access and authentication has been made easily accessible via our use of these devices. At the same time, users are five times more likely to click on a phishing email on their smartphone versus desktop, file access and authentication can be exposed via a lost device, and a host of other vulnerabilities exist.  Corporate-provided assets could be one answer, but it’s simply not feasible for every organization, and moreover – users are looking to connect whenever and wherever they are (even as they are at home a lot these days). 

    Our expert panel will contemplate several approaches to this challenge.

    Click to Expand

    Collapse This Item

  • Lunch Break
  • Keynote Presentation 12:30 pm
    Add to Calendar20220629 12:30 pm20220629 12:50 pmAmerica/New_YorkKeynote Presentation

    .

    Collapse This Item

  • Compliance & Automation in Cybersecurity 1:15 pm
    Add to Calendar20220629 1:15 pm20220629 1:35 pmAmerica/New_YorkCompliance & Automation in Cybersecurity

    Managing compliance needs as a continuous, organizational process (as opposed to a reactive response), amid the ever-increasing myriad of industry regulations and legislation has become a full time job for most CISOs.  Automation – including artificial intelligence and machine learning will help, and are perhaps more critical than ever. As CRPA comes into play and brings the US closer to GDPR, there are also a number of touchpoints where the CDO and CISO interplay will be crucial over the coming months. 

    This session will discuss the current issues with regard to compliance, monitoring, and reporting.  Policy decisions and regulations that have kept CISOs busy of late, and what we can expect more of in 2022 will also be addressed. 

    .

    Managing compliance needs as a continuous, organizational process (as opposed to a reactive response), amid the ever-increasing myriad of industry regulations and legislation has become a full time job for most CISOs.  Automation – including artificial intelligence and machine learning will help, and are perhaps more critical than ever. As CRPA comes into play and brings the US closer to GDPR, there are also a number of touchpoints where the CDO and CISO interplay will be crucial over the coming months. 

    This session will discuss the current issues with regard to compliance, monitoring, and reporting.  Policy decisions and regulations that have kept CISOs busy of late, and what we can expect more of in 2022 will also be addressed. 

    Click to Expand

    Collapse This Item

  • Managing the Insider Threat 1:35 pm
    Add to Calendar20220629 1:35 pm20220629 1:55 pmAmerica/New_YorkManaging the Insider Threat

    An adversary who attacks an organization from within can prove fatal to the business and is generally impervious to conventional defenses. Social science research has been used to explain why traditional methods fail against these trusted betrayers.  Every company must identify and utilize new management techniques, increase security, and revise workplace strategies for categorizing and defeating insider threats.

    There are key players in positions to either effectively support or undermine the insider threats.  Leadership style can make a difference in the way an institution recognizes and identifies these threats from rethinking background investigations to recognizing deception and using lawful disruption. Join this session to learn about how organizations must circumvent these predators before they jeopardize the workplace and sabotage business operations.

    .

    An adversary who attacks an organization from within can prove fatal to the business and is generally impervious to conventional defenses. Social science research has been used to explain why traditional methods fail against these trusted betrayers.  Every company must identify and utilize new management techniques, increase security, and revise workplace strategies for categorizing and defeating insider threats.

    There are key players in positions to either effectively support or undermine the insider threats.  Leadership style can make a difference in the way an institution recognizes and identifies these threats from rethinking background investigations to recognizing deception and using lawful disruption. Join this session to learn about how organizations must circumvent these predators before they jeopardize the workplace and sabotage business operations.

    Click to Expand

    Collapse This Item

  • Windows 11: Adapt Early or Follow Cautiously? 2:15 pm
    Add to Calendar20220629 2:15 pm20220629 2:35 pmAmerica/New_YorkWindows 11: Adapt Early or Follow Cautiously?

    6 years after the release of Windows 10, Microsoft introduced their new Operating System Windows 11. That fact is causing a lot of IT Departments to evaluate their decision whether it is worth it to make the transition now or not. Especially with a lot of companies still having remote work and older machines in place this decision comes with a few new challenges companies need to be aware of. On the other hand Windows 11 opens up new possibilities with regards to security and efficiency. 

    baramundi will tackle the big questions that IT departments have regarding Windows 11: Should I start planning deployment now or sit tight for a while? How does Microsoft’s latest OS affect endpoint management? And how will it affect endpoint security?

    Presented by baramundi

    6 years after the release of Windows 10, Microsoft introduced their new Operating System Windows 11. That fact is causing a lot of IT Departments to evaluate their decision whether it is worth it to make the transition now or not. Especially with a lot of companies still having remote work and older machines in place this decision comes with a few new challenges companies need to be aware of. On the other hand Windows 11 opens up new possibilities with regards to security and efficiency. 

    baramundi will tackle the big questions that IT departments have regarding Windows 11: Should I start planning deployment now or sit tight for a while? How does Microsoft’s latest OS affect endpoint management? And how will it affect endpoint security?

    Click to Expand

    Collapse This Item

  • The Journey to Security Service Edge: The Killer Feature is Simplicity 2:35 pm
    Add to Calendar20220629 2:35 pm20220629 2:55 pmAmerica/New_YorkThe Journey to Security Service Edge: The Killer Feature is Simplicity

    Organizations have been growing over years and decades, which directly results in more devices and complex networks. Migrating workloads to Cloud Platforms like AWS, Azure and GCP have resulted in amazing elasticity but have further complicated networking. In this talk, Zoltan will discuss how you can use Security Service Edge in a simple way to solve some of the complex network security problems no matter how large your organization.

    Presented by Axis Security

    Organizations have been growing over years and decades, which directly results in more devices and complex networks. Migrating workloads to Cloud Platforms like AWS, Azure and GCP have resulted in amazing elasticity but have further complicated networking. In this talk, Zoltan will discuss how you can use Security Service Edge in a simple way to solve some of the complex network security problems no matter how large your organization.

    Click to Expand

    Collapse This Item

  • Managing Risk in Today's Cybersecurity Landscape 2:55 pm
    Add to Calendar20220629 2:55 pm20220629 3:25 pmAmerica/New_York Managing Risk in Today's Cybersecurity Landscape

    Risk comes from all angles. Users, vendors, partners, systems.  What can security teams improve when attempting to convey ‘risk’ to executive and board level people within an organization?

    In this panel, we will discuss some of the many facets encountered by security leaders in organizations of all sizes, with particular focus on the threat landscape seen across the region. 

    .

    Risk comes from all angles. Users, vendors, partners, systems.  What can security teams improve when attempting to convey ‘risk’ to executive and board level people within an organization?

    In this panel, we will discuss some of the many facets encountered by security leaders in organizations of all sizes, with particular focus on the threat landscape seen across the region. 

    Click to Expand

    Collapse This Item

  • Stopping Ransomware with Autonomous Response 3:50 pm
    Add to Calendar20220629 3:50 pm20220629 4:10 pmAmerica/New_YorkStopping Ransomware with Autonomous Response

    New strains of ransomware are leaving organizations vulnerable – too often, security teams lack the ability to respond proportionately to an attack, leading to cyber disruption across the organization. 

    Join Darktrace as they unpack some of today’s most advanced ransomware threats. Learn how Self-Learning AI understands the organization to reveal every stage of a ransomware attack – and takes targeted, autonomous action to stop the threat in its tracks. 

    This presentation will discuss: 

    -Recent ransomware threat trends, including double extortion and RDP attacks 

    -How Autonomous Response takes action to contain an emerging attack, even when security teams are out of office 

    -Real-world examples of ransomware detected by Darktrace AI – including a zero-day and an attack initiated on Christmas Day

    Presented by Darktrace

    New strains of ransomware are leaving organizations vulnerable – too often, security teams lack the ability to respond proportionately to an attack, leading to cyber disruption across the organization. 

    Join Darktrace as they unpack some of today’s most advanced ransomware threats. Learn how Self-Learning AI understands the organization to reveal every stage of a ransomware attack – and takes targeted, autonomous action to stop the threat in its tracks. 

    This presentation will discuss: 

    -Recent ransomware threat trends, including double extortion and RDP attacks 

    -How Autonomous Response takes action to contain an emerging attack, even when security teams are out of office 

    -Real-world examples of ransomware detected by Darktrace AI – including a zero-day and an attack initiated on Christmas Day

    Click to Expand

    Collapse This Item

  • Guest Keynote 4:15 pm
    Add to Calendar20220629 4:15 pm20220629 4:35 pmAmerica/New_YorkGuest Keynote

    A supply chain encompasses the entire network of all the individuals, organizations, resources, activities and technology involved in the creation and sale of a product.  The ultimate goal of an effective supply chain is lower costs of doing business thus resulting in higher profits and improved customer satisfaction.  The process of bringing in a third party involves identifying, assessing and controlling all the various risks that can develop over the entire lifecycle of such relationships. 

    Join this session to drive into how sophisticated attackers can live quietly inside even organizations with significant expertise and mature security processes.

    .

    A supply chain encompasses the entire network of all the individuals, organizations, resources, activities and technology involved in the creation and sale of a product.  The ultimate goal of an effective supply chain is lower costs of doing business thus resulting in higher profits and improved customer satisfaction.  The process of bringing in a third party involves identifying, assessing and controlling all the various risks that can develop over the entire lifecycle of such relationships. 

    Join this session to drive into how sophisticated attackers can live quietly inside even organizations with significant expertise and mature security processes.

    Click to Expand

    Collapse This Item

  • Day One Closing Session 4:30 pm
    Add to Calendar20220629 4:30 pm20220629 4:40 pmAmerica/New_YorkDay One Closing Session

    .

    Collapse This Item

  • DAY TWO
  • Welcome / Introductions
  • The Risk Management “Balance Sheet” 9:25 am
    Add to Calendar20220629 9:25 am20220629 9:45 amAmerica/New_YorkThe Risk Management “Balance Sheet”

    Managing risk has always been a part of the CISO responsibility set; however, the ways in which it is managed has no clear definition. With new ransomware threats, supply chain attacks, and third-party risk in the mix – perhaps a new way to budget risk is required.  Is there an effective way to have a “risk balance sheet” – a way in which the CISO could communicate risk to the rest of the C-suite in a consistent language they would understand? 

    Attend this session to get these questions answered and more.

    .

    Managing risk has always been a part of the CISO responsibility set; however, the ways in which it is managed has no clear definition. With new ransomware threats, supply chain attacks, and third-party risk in the mix – perhaps a new way to budget risk is required.  Is there an effective way to have a “risk balance sheet” – a way in which the CISO could communicate risk to the rest of the C-suite in a consistent language they would understand? 

    Attend this session to get these questions answered and more.

    Click to Expand

    Collapse This Item

  • Cloud Clarity in 2022: Strategy, Execution & Alignment 9:45 am
    Add to Calendar20220630 9:45 am20220630 10:05 amAmerica/New_YorkCloud Clarity in 2022: Strategy, Execution & Alignment

    Securely optimizing the cloud for better business outcomes is the product of clear communication of terms and expectations, alignment with business processes and functions, and partnerships among multiple internal and external stakeholders. “Activity” does not equal “progress.”  In this session, attendees will hear about creating definitional clarity, building adaptability, and creating cross-functional, business-wide alignment. 

    .

    Securely optimizing the cloud for better business outcomes is the product of clear communication of terms and expectations, alignment with business processes and functions, and partnerships among multiple internal and external stakeholders. “Activity” does not equal “progress.”  In this session, attendees will hear about creating definitional clarity, building adaptability, and creating cross-functional, business-wide alignment. 

    Click to Expand

    Collapse This Item

  • IAM + WFH - Authentication vs Authorization 10:05 am
    Add to Calendar20220630 10:05 am20220630 10:25 amAmerica/New_YorkIAM + WFH - Authentication vs Authorization

    The “perimeter” concept for organizational security… The castles and moats analogy no longer applies… As we all went to Work From Home quickly – we tested the boundaries of identity and authentication.

    Join this session to discuss the concepts and trends shaping identity and authentication, from IAM to passwordless, and PAM to zero-trust. 

    .

    The “perimeter” concept for organizational security… The castles and moats analogy no longer applies… As we all went to Work From Home quickly – we tested the boundaries of identity and authentication.

    Join this session to discuss the concepts and trends shaping identity and authentication, from IAM to passwordless, and PAM to zero-trust. 

    Click to Expand

    Collapse This Item

  • A Realistic Take on Zero Trust 10:50 am
    Add to Calendar20220630 10:50 am20220630 11:10 amAmerica/New_YorkA Realistic Take on Zero Trust

    Learn about how you can take a pragmatic approach to securing your multiple cloud apps and services. We will discuss the journey to the cloud and how security tools all work together to build a unified cloud security strategy that is effective and scalable for modern enterprises.

    Presented by Lookout

    Learn about how you can take a pragmatic approach to securing your multiple cloud apps and services. We will discuss the journey to the cloud and how security tools all work together to build a unified cloud security strategy that is effective and scalable for modern enterprises.

    Click to Expand

    Collapse This Item

  • Rethink Your Third-Party Risk Strategy in an Uncertain World 11:10 am
    Add to Calendar20220630 11:10 am20220630 11:30 amAmerica/New_YorkRethink Your Third-Party Risk Strategy in an Uncertain World

    As organizations begin to recover from the pandemic, third-party risk management (TPRM) is more important than ever before. Faced with supply chain disruption and cyber threats, businesses are re-assessing their dependence on partners and taking a closer look at the risk they introduce. According to a recent study by KPMG, third-party risk management is a strategic priority for 85 percent of businesses.

    How you identify and manage the risks of working with third parties is critical because your compliance, revenue, and company reputation are dependent on all parties fulfilling their contractual, security and privacy obligations. Yet, managing the risk associated with your partners is increasingly challenging.

    Join Reciprocity experts as we share and discuss with you: 

    • Market Dynamics driving the risk vs. opportunity balance
    • 5 key considerations to better identify, manage and mitigate third party risk
    • Real world examples of improving TPRM visibility and efficiency

    Presented by Reciprocity

    As organizations begin to recover from the pandemic, third-party risk management (TPRM) is more important than ever before. Faced with supply chain disruption and cyber threats, businesses are re-assessing their dependence on partners and taking a closer look at the risk they introduce. According to a recent study by KPMG, third-party risk management is a strategic priority for 85 percent of businesses.

    How you identify and manage the risks of working with third parties is critical because your compliance, revenue, and company reputation are dependent on all parties fulfilling their contractual, security and privacy obligations. Yet, managing the risk associated with your partners is increasingly challenging.

    Join Reciprocity experts as we share and discuss with you: 

    • Market Dynamics driving the risk vs. opportunity balance
    • 5 key considerations to better identify, manage and mitigate third party risk
    • Real world examples of improving TPRM visibility and efficiency
    Click to Expand

    Speaker:

    Rob Ellis
    Rob Ellis

    Rob Ellis

    Senior Vice President of Strategy at Reciprocity

    Collapse This Item

  • Cybersecurity in IOT 11:30 am
    Add to Calendar20220630 11:30 am20220630 12:00 pmAmerica/New_YorkCybersecurity in IOT

    The Internet of Things (IoT) poses entirely new challenges. With 35 billion IoT devices expected to be in operation over the next year – weak passwords, insecure network services and a lack of secure update mechanisms concern every organization.

    In this panel discussion industry experts will dive into why is IoT Security so often overlooked, how the pandemic changed the way we look at IoT security, how additional security can add issues in terms of connectivity or updates and how to overcome and so much more.

    .

    The Internet of Things (IoT) poses entirely new challenges. With 35 billion IoT devices expected to be in operation over the next year – weak passwords, insecure network services and a lack of secure update mechanisms concern every organization.

    In this panel discussion industry experts will dive into why is IoT Security so often overlooked, how the pandemic changed the way we look at IoT security, how additional security can add issues in terms of connectivity or updates and how to overcome and so much more.

    Click to Expand

    Collapse This Item

  • Lunch Break
    Add to Calendar20220630 20220630 12:20 amAmerica/New_YorkLunch Break

    .

    Collapse This Item

  • Keynote Presentation 12:30 pm
    Add to Calendar20220630 12:30 pm20220630 1:15 pmAmerica/New_YorkKeynote Presentation

    .

    Collapse This Item

  • The Evolution of the Threat: Hunting, Detection, & Response 1:15 pm
    Add to Calendar20220630 1:15 pm20220630 1:35 pmAmerica/New_YorkThe Evolution of the Threat: Hunting, Detection, & Response

    Nation-State attacks are not always focused on political or military adversaries. Recently, below-military-grade action can create havoc or destabilize adversaries, or manipulate markets.  Hard to trace and even harder to convict, they may affect stock price or even influence the outcome of elections. 

    Attend to talk about the problem, and see what US enterprises are doing to prepare themselves for these situations.

    .

    Nation-State attacks are not always focused on political or military adversaries. Recently, below-military-grade action can create havoc or destabilize adversaries, or manipulate markets.  Hard to trace and even harder to convict, they may affect stock price or even influence the outcome of elections. 

    Attend to talk about the problem, and see what US enterprises are doing to prepare themselves for these situations.

    Click to Expand

    Collapse This Item

  • Managing Risk: Seek Forward Accountability and Assume a Stormy Seas 1:35 pm
    Add to Calendar20220630 1:35 pm20220630 1:55 pmAmerica/New_YorkManaging Risk: Seek Forward Accountability and Assume a Stormy Seas

    While managing risk has always been a part of the CISO office, most resources turn to stopping new ransomware threats, managing supply chain attacks and mitigating third-party vulnerabilities. How can CISOs truly move to managing risk? And by extension, how can they clearly communicate risk, and measure the efficacy of mitigation activities? 

    Join this session to learn how to facilitate the risk conversation with non-technical leaders, determine priorities, and counterbalance cybersecurity considerations against business requirements. This session will also address risk quantification, accounting, budgeting and resourcing, and building more resilience rather than taller walls.

    .

    While managing risk has always been a part of the CISO office, most resources turn to stopping new ransomware threats, managing supply chain attacks and mitigating third-party vulnerabilities. How can CISOs truly move to managing risk? And by extension, how can they clearly communicate risk, and measure the efficacy of mitigation activities? 

    Join this session to learn how to facilitate the risk conversation with non-technical leaders, determine priorities, and counterbalance cybersecurity considerations against business requirements. This session will also address risk quantification, accounting, budgeting and resourcing, and building more resilience rather than taller walls.

    Click to Expand

    Collapse This Item

  • The Cybersecurity Skills Shortage 2:15 pm
    Add to Calendar20220630 2:15 pm20220630 2:35 pmAmerica/New_YorkThe Cybersecurity Skills Shortage

    There are currently 310,000 unfilled cybersecurity jobs in the United States, and millions around the world. However, there is no shortage of cybersecurity hopefuls – millions of students, career changers, and people from all walks of life hoping to break into cybersecurity. 

    This session will explore the issues around cybersecurity jobs.  Breaking into the field, the relative need for certifications, formal education, on-the-job training and more.  The discussion will explore the supply and demand disconnect that has been created – resulting in both a ton of great candidates looking for roles, and a cybersecurity skills shortage.

    .

    There are currently 310,000 unfilled cybersecurity jobs in the United States, and millions around the world. However, there is no shortage of cybersecurity hopefuls – millions of students, career changers, and people from all walks of life hoping to break into cybersecurity. 

    This session will explore the issues around cybersecurity jobs.  Breaking into the field, the relative need for certifications, formal education, on-the-job training and more.  The discussion will explore the supply and demand disconnect that has been created – resulting in both a ton of great candidates looking for roles, and a cybersecurity skills shortage.

    Click to Expand

    Collapse This Item

  • Supply Chain & Third Party Risk Management 2:35 pm
    Add to Calendar20220630 2:35 pm20220630 2:55 pmAmerica/New_YorkSupply Chain & Third Party Risk Management

    A supply chain encompasses the entire network of all the individuals, organizations, resources, activities and technology involved in the creation and sale of a product.  The ultimate goal of an effective supply chain is lower costs of doing business thus resulting in higher profits and improved customer satisfaction.  The process of bringing in a third party involves identifying, assessing and controlling all the various risks that can develop over the entire lifecycle of such relationships. 

    Join this session to drive into how sophisticated attackers can live quietly inside even organizations with significant expertise and mature security processes. 

    .

    A supply chain encompasses the entire network of all the individuals, organizations, resources, activities and technology involved in the creation and sale of a product.  The ultimate goal of an effective supply chain is lower costs of doing business thus resulting in higher profits and improved customer satisfaction.  The process of bringing in a third party involves identifying, assessing and controlling all the various risks that can develop over the entire lifecycle of such relationships. 

    Join this session to drive into how sophisticated attackers can live quietly inside even organizations with significant expertise and mature security processes. 

    Click to Expand

    Collapse This Item

  • Ransomware: Prevention & Preparation 2:55 pm
    Add to Calendar20220630 2:55 pm20220630 3:25 pmAmerica/New_YorkRansomware: Prevention & Preparation

    Unless you’ve been under a rock, you’ve seen some big ransomware headlines. Moreover, ransomware-as-a-service changes the way many cyber leaders think about this topic, and changes some of the economics related to it. In this panel, our experts will talk about best practices, tactics and tricks for prevention and preparation. Sensitive data is put at risk, huge sums of money are in the balance, and organizations must struggle between expediency and the bottom line. 

    .

    Unless you’ve been under a rock, you’ve seen some big ransomware headlines. Moreover, ransomware-as-a-service changes the way many cyber leaders think about this topic, and changes some of the economics related to it. In this panel, our experts will talk about best practices, tactics and tricks for prevention and preparation. Sensitive data is put at risk, huge sums of money are in the balance, and organizations must struggle between expediency and the bottom line. 

    Click to Expand

    Collapse This Item

  • Operational Technology (OT) & Industrial Control Systems (ICS): Cybersecurity Concerns 3:40 pm
    Add to Calendar20220630 3:40 pm20220630 4:00 pmAmerica/New_YorkOperational Technology (OT) & Industrial Control Systems (ICS): Cybersecurity Concerns

    Since the Stuxnet worm was first discovered back in 2010, attacks related to SCADA systems have been of concern. While manufacturing and utility organizations tend to talk about them more, there are wide implications across the cybersecurity landscape that touch on ICS and OT systems of all kinds. 

    This session will talk about why these types of attacks represent a primary concern, and what state-of-the-art looks like in terms of building protections. 

    .

    Since the Stuxnet worm was first discovered back in 2010, attacks related to SCADA systems have been of concern. While manufacturing and utility organizations tend to talk about them more, there are wide implications across the cybersecurity landscape that touch on ICS and OT systems of all kinds. 

    This session will talk about why these types of attacks represent a primary concern, and what state-of-the-art looks like in terms of building protections. 

    Click to Expand

    Collapse This Item

  • Cyber Executive Panel 4:00 pm
    Add to Calendar20220630 4:00 pm20220630 4:20 pmAmerica/New_YorkCyber Executive Panel

    Submit your bio for consideration to participate on our 

    Cyber Executive Panel to [email protected] or fill out our Call for Speakers form here.

    .

    Submit your bio for consideration to participate on our 

    Cyber Executive Panel to [email protected] or fill out our Call for Speakers form here.

    Click to Expand

    Collapse This Item

  • Summit Closing Session 4:45 pm
    Add to Calendar20220630 4:45 pm20220630 5:05 pmAmerica/New_YorkSummit Closing Session

    .

    Collapse This Item

Partners Register