Event Schedule

Times for this Event are in Pacific Time (PDT/PST).

The Conference will be open from 8:00 AM to 6:30 PM Thursday, July 27th.

• Welcome to the Los Angeles Cybersecurity Conference
• Welcome / Introductions
• AI & ML in Cybersecurity: Can We ‘Science the Heck’ Out of Trouble? 8:30 am
  Add to Calendar20230727 8:30 am20230727 8:50 amAmerica/Los_AngelesAI & ML in Cybersecurity: Can We ‘Science the Heck’ Out of Trouble?

  We get it, Artificial Intelligence (AI) with particular focus on Machine Learning (ML) is one way to overcome advanced threats with particular attention to scale. That said, those terms are thrown at our executives to delight, amaze and confuse them. How do we really discern between them as tools in our kit versus ‘Weapons of Mass Distraction’? 

  .

  We get it, Artificial Intelligence (AI) with particular focus on Machine Learning (ML) is one way to overcome advanced threats with particular attention to scale. That said, those terms are thrown at our executives to delight, amaze and confuse them. How do we really discern between them as tools in our kit versus ‘Weapons of Mass Distraction’? 

  Click to Expand

  Collapse This Item

• The Growing Threat of Ransomware: How to Mitigate Your Risk 8:50 am
  Add to Calendar20230727 8:50 am20230727 9:10 amAmerica/Los_AngelesThe Growing Threat of Ransomware: How to Mitigate Your Risk

  Readiness is essential. How will your organization weather the ransomware storm? 

  Nearly half of organizations surveyed experience attempted ransomware attacks on a monthly, weekly, or daily basis. These pervasive attacks are on the rise and impacting organizations every day. As the growing threat of ransomware looms over your business, it’s important to know how you’ll weather the ransomware storm. 

  What you’ll learn: 

  • How to proactively defend against the ever-increasing threat of ransomware
  • Key principles of a mature ransomware strategy
  • What people, process, and technology investments are required for risk mitigation 

  This presentation will be a look into recent research uncovering key focus areas common in the organizations defending effectively against ransomware threats. You’ll learn how those results translate to greater business resilience and how specific ransomware risk mitigation tactics can help you assess and strengthen your organization’s ransomware defense and mitigation strategy.

  Presented by Secureworks

  Readiness is essential. How will your organization weather the ransomware storm? 

  Nearly half of organizations surveyed experience attempted ransomware attacks on a monthly, weekly, or daily basis. These pervasive attacks are on the rise and impacting organizations every day. As the growing threat of ransomware looms over your business, it’s important to know how you’ll weather the ransomware storm. 

  What you’ll learn: 

  • How to proactively defend against the ever-increasing threat of ransomware
  • Key principles of a mature ransomware strategy
  • What people, process, and technology investments are required for risk mitigation 

  This presentation will be a look into recent research uncovering key focus areas common in the organizations defending effectively against ransomware threats. You’ll learn how those results translate to greater business resilience and how specific ransomware risk mitigation tactics can help you assess and strengthen your organization’s ransomware defense and mitigation strategy.

  Click to Expand

  Speaker:

  Mike Zyskowski

  Mike Zyskowski

  Senior Security Engineer at Secureworks

  Collapse This Item

• Beyond SolarWinds: Supply Chain & Third-Party Risk Management for 2023 9:30 am
  Add to Calendar20230727 9:30 am20230727 9:50 amAmerica/Los_AngelesBeyond SolarWinds: Supply Chain & Third-Party Risk Management for 2023

  Even before SolarWinds Orion Code Compromise, Supply Chain Attacks were up over 400% in 2020. As we go through 2023, this attack vector will continue to  receive tremendous attention. Along with third-party risk in general, partner organizations and software systems with unfettered, privileged, deep access to infrastructure create a “perfect storm” threat for modern cyber executives.  

  In this session we will discuss these challenges in detail, as well as the multiple approaches to identify the best means of using supply chains while keeping the third-party risks at a minimum.

   

  .

  Even before SolarWinds Orion Code Compromise, Supply Chain Attacks were up over 400% in 2020. As we go through 2023, this attack vector will continue to  receive tremendous attention. Along with third-party risk in general, partner organizations and software systems with unfettered, privileged, deep access to infrastructure create a “perfect storm” threat for modern cyber executives.  

  In this session we will discuss these challenges in detail, as well as the multiple approaches to identify the best means of using supply chains while keeping the third-party risks at a minimum.

   

  Click to Expand

  Collapse This Item

• Managing the Insider Threat 9:50 am
  Add to Calendar20230727 9:50 am20230727 10:10 amAmerica/Los_AngelesManaging the Insider Threat

  An adversary who attacks an organization from within can prove fatal to the business and is generally impervious to conventional defenses. Social science research has been used to explain why traditional methods fail against these trusted betrayers.  Every company must identify and utilize new management techniques, increase security, and revise workplace strategies for categorizing and defeating insider threats.

  There are key players in positions to either effectively support or undermine the insider threats.  Leadership style can make a difference in the way an institution recognizes and identifies these threats from rethinking background investigations to recognizing deception and using lawful disruption. Join this session to learn about how organizations must circumvent these predators before they jeopardize the workplace and sabotage business operations.

  Presented by Picus Security

  An adversary who attacks an organization from within can prove fatal to the business and is generally impervious to conventional defenses. Social science research has been used to explain why traditional methods fail against these trusted betrayers.  Every company must identify and utilize new management techniques, increase security, and revise workplace strategies for categorizing and defeating insider threats.

  There are key players in positions to either effectively support or undermine the insider threats.  Leadership style can make a difference in the way an institution recognizes and identifies these threats from rethinking background investigations to recognizing deception and using lawful disruption. Join this session to learn about how organizations must circumvent these predators before they jeopardize the workplace and sabotage business operations.

  Click to Expand

  Collapse This Item

• Protecting Against Cyber Attacks 10:10 am
  Add to Calendar20230727 10:10 am20230727 10:35 amAmerica/Los_AngelesProtecting Against Cyber Attacks

   For every new technology that cybersecurity professionals invent, it’s only a matter of time before malicious actors find a way around it. During this panel discussion, you’ll get the inside track on solutions and suggestions for protecting against the constantly evolving threats we’re all facing every day.  Take advantage of the knowledge and expertise of the panelists on this stage to learn the most up-to-date methods of guarding your company against cyber attacks.

  .

   For every new technology that cybersecurity professionals invent, it’s only a matter of time before malicious actors find a way around it. During this panel discussion, you’ll get the inside track on solutions and suggestions for protecting against the constantly evolving threats we’re all facing every day.  Take advantage of the knowledge and expertise of the panelists on this stage to learn the most up-to-date methods of guarding your company against cyber attacks.

  Click to Expand

  Collapse This Item

• Operational Technology (OT) & Industrial Control Systems (ICS): Cybersecurity Concerns 10:55 am
  Add to Calendar20230727 10:55 am20230727 11:15 amAmerica/Los_AngelesOperational Technology (OT) & Industrial Control Systems (ICS): Cybersecurity Concerns

  Since the Stuxnet worm was first discovered back in 2010, attacks related to SCADA systems have been of concern. While manufacturing and utility organizations tend to talk about them more, there are wide implications across the cybersecurity landscape that touch on ICS and OT systems of all kinds. 

  This session will talk about why these types of attacks represent a primary concern, and what state-of-the-art looks like in terms of building protections. 

  .

  Since the Stuxnet worm was first discovered back in 2010, attacks related to SCADA systems have been of concern. While manufacturing and utility organizations tend to talk about them more, there are wide implications across the cybersecurity landscape that touch on ICS and OT systems of all kinds. 

  This session will talk about why these types of attacks represent a primary concern, and what state-of-the-art looks like in terms of building protections. 

  Click to Expand

  Collapse This Item

• Supply Chain & Third Party Risk Management 11:15 am
  Add to Calendar20230727 11:15 am20230727 11:35 amAmerica/Los_AngelesSupply Chain & Third Party Risk Management

  A supply chain encompasses the entire network of all the individuals, organizations, resources, activities and technology involved in the creation and sale of a product.  The ultimate goal of an effective supply chain is lower costs of doing business thus resulting in higher profits and improved customer satisfaction.  The process of bringing in a third party involves identifying, assessing and controlling all the various risks that can develop over the entire lifecycle of such relationships. 

  Join this session to drive into how sophisticated attackers can live quietly inside even organizations with significant expertise and mature security processes. 

  .

  A supply chain encompasses the entire network of all the individuals, organizations, resources, activities and technology involved in the creation and sale of a product.  The ultimate goal of an effective supply chain is lower costs of doing business thus resulting in higher profits and improved customer satisfaction.  The process of bringing in a third party involves identifying, assessing and controlling all the various risks that can develop over the entire lifecycle of such relationships. 

  Join this session to drive into how sophisticated attackers can live quietly inside even organizations with significant expertise and mature security processes. 

  Click to Expand

  Collapse This Item

• Lunch Break
• Lunch Demo: Sponsored by ColorTokens / Zero Trust- Does Not Have to be Hard 12:00 pm
  Add to Calendar20230727 12:00 pm20230727 12:20 pmAmerica/Los_AngelesLunch Demo: Sponsored by ColorTokens / Zero Trust- Does Not Have to be Hard

  Learn about the who, what, and how in zero trust.

  Presented by ColorTokens

  Learn about the who, what, and how in zero trust.

  Click to Expand

  Speaker:

  Blaine Deutsch

  Blaine Deutsch

  Senior SE at ColorTokens

  Collapse This Item

• Keynote Presentation: Ira Winkler 12:10 pm
  Add to Calendar20230727 12:10 pm20230727 12:50 pmAmerica/Los_AngelesKeynote Presentation: Ira Winkler

  Cybersecurity budgets are typically determined by a percentage of the IT budget, which is irrelevant to actual organizational risk. This presentation presents a methodology to use risk to determine return on investment for countermeasures to justify the needed program.

  Deserving the Budget You Need

  Cybersecurity budgets are typically determined by a percentage of the IT budget, which is irrelevant to actual organizational risk. This presentation presents a methodology to use risk to determine return on investment for countermeasures to justify the needed program.

  Click to Expand

  Speaker:

  Ira Winkler

  Ira Winkler

  Field CISO and Vice President at CYE Security

  Collapse This Item

• Signed Books by Keynote Speaker Ira Winkler 12:50 pm
  Add to Calendar20230727 12:50 pm20230727 1:10 pmAmerica/Los_AngelesSigned Books by Keynote Speaker Ira Winkler

  .

  About the Book:

  You CAN Stop Stupid

  You CAN Stop Stupid

  You CAN Stop Stupid: Stopping Losses from Accidental and Malicious Actions by Ira Winkler

  Collapse This Item

• The Risk Management “Balance Sheet” 1:10 pm
  Add to Calendar20230727 1:10 pm20230727 1:30 pmAmerica/Los_AngelesThe Risk Management “Balance Sheet”

  Managing risk has always been a part of the CISO responsibility set; however, the ways in which it is managed has no clear definition. With new ransomware threats, supply chain attacks, and third-party risk in the mix – perhaps a new way to budget risk is required.  Is there an effective way to have a “risk balance sheet” – a way in which the CISO could communicate risk to the rest of the C-suite in a consistent language they would understand? 

  Attend this session to get these questions answered and more.

   

  .

  Managing risk has always been a part of the CISO responsibility set; however, the ways in which it is managed has no clear definition. With new ransomware threats, supply chain attacks, and third-party risk in the mix – perhaps a new way to budget risk is required.  Is there an effective way to have a “risk balance sheet” – a way in which the CISO could communicate risk to the rest of the C-suite in a consistent language they would understand? 

  Attend this session to get these questions answered and more.

   

  Click to Expand

  Collapse This Item

• Cloud Clarity in 2023: Strategy, Execution & Alignment 1:30 pm
  Add to Calendar20230727 1:30 pm20230727 1:40 pmAmerica/Los_AngelesCloud Clarity in 2023: Strategy, Execution & Alignment

  Securely optimizing the cloud for better business outcomes is the product of clear communication of terms and expectations, alignment with business processes and functions, and partnerships among multiple internal and external stakeholders. “Activity” does not equal “progress.”  In this session, attendees will hear about creating definitional clarity, building adaptability, and creating cross-functional, business-wide alignment. 

  .

  Securely optimizing the cloud for better business outcomes is the product of clear communication of terms and expectations, alignment with business processes and functions, and partnerships among multiple internal and external stakeholders. “Activity” does not equal “progress.”  In this session, attendees will hear about creating definitional clarity, building adaptability, and creating cross-functional, business-wide alignment. 

  Click to Expand

  Collapse This Item

• 2023 Trends & Directions 1:50 pm
  Add to Calendar20230727 1:50 pm20230727 2:20 pmAmerica/Los_Angeles2023 Trends & Directions

  As we’re getting closer to the halfway point of 2023, it’s clear that cybercriminals are still coming up with new, more complex ways to cash in.  During this panel discussion, you’ll get insights on the latest trends from these experts who live on the leading edge of cybersecurity technology. You’ll hear about some of the newest tactics for defending against unprecedented attacks. 

  .

  As we’re getting closer to the halfway point of 2023, it’s clear that cybercriminals are still coming up with new, more complex ways to cash in.  During this panel discussion, you’ll get insights on the latest trends from these experts who live on the leading edge of cybersecurity technology. You’ll hear about some of the newest tactics for defending against unprecedented attacks. 

  Click to Expand

  Collapse This Item

• The Evolution of the Threat: Hunting, Detection, & Response 2:35 pm
  Add to Calendar20230727 2:35 pm20230727 2:55 pmAmerica/Los_AngelesThe Evolution of the Threat: Hunting, Detection, & Response

  Nation-State attacks are not always focused on political or military adversaries. Recently, below-military-grade action can create havoc or destabilize adversaries, or manipulate markets.  Hard to trace and even harder to convict, they may affect stock price or even influence the outcome of elections. 

  Attend to talk about the problem, and see what US enterprises are doing to prepare themselves for these situations.

   

  .

  Nation-State attacks are not always focused on political or military adversaries. Recently, below-military-grade action can create havoc or destabilize adversaries, or manipulate markets.  Hard to trace and even harder to convict, they may affect stock price or even influence the outcome of elections. 

  Attend to talk about the problem, and see what US enterprises are doing to prepare themselves for these situations.

   

  Click to Expand

  Collapse This Item

• Managing Risk: Seek Forward Accountability and Assume a Stormy Seas 2:55 pm
  Add to Calendar20230727 2:55 pm20230727 3:15 pmAmerica/Los_AngelesManaging Risk: Seek Forward Accountability and Assume a Stormy Seas

  While managing risk has always been a part of the CISO office, most resources turn to stopping new ransomware threats, managing supply chain attacks and mitigating third-party vulnerabilities. How can CISOs truly move to managing risk? And by extension, how can they clearly communicate risk, and measure the efficacy of mitigation activities? 

  Join this session to learn how to facilitate the risk conversation with non-technical leaders, determine priorities, and counterbalance cybersecurity considerations against business requirements. This session will also address risk quantification, accounting, budgeting and resourcing, and building more resilience rather than taller walls.

  .

  While managing risk has always been a part of the CISO office, most resources turn to stopping new ransomware threats, managing supply chain attacks and mitigating third-party vulnerabilities. How can CISOs truly move to managing risk? And by extension, how can they clearly communicate risk, and measure the efficacy of mitigation activities? 

  Join this session to learn how to facilitate the risk conversation with non-technical leaders, determine priorities, and counterbalance cybersecurity considerations against business requirements. This session will also address risk quantification, accounting, budgeting and resourcing, and building more resilience rather than taller walls.

  Click to Expand

  Collapse This Item

• Guest Keynote Presentation 3:15 pm
  Add to Calendar20230727 3:15 pm20230727 3:45 pmAmerica/Los_AngelesGuest Keynote Presentation

  .

  Collapse This Item

• Cyber Inter-Agency Collaboration Panel 3:45 pm
  Add to Calendar20230727 3:45 pm20230727 4:15 pmAmerica/Los_AngelesCyber Inter-Agency Collaboration Panel

  We hear it all the time – cybersecurity is everyone’s responsibility. That’s why it’s so important for officials from all levels and sectors of government to collaborate in their approach, which is why they’re with us today.  In this panel, representatives from local and federal agencies are here to talk about what their organizations are doing to support the advancement of cybersecurity preparedness in the region, nationally, and worldwide.

   

  Submit your bio for consideration to participate in one of our Cyber Executive Panels

  to [email protected] or fill out our Call for Speakers form here.

  .

  We hear it all the time – cybersecurity is everyone’s responsibility. That’s why it’s so important for officials from all levels and sectors of government to collaborate in their approach, which is why they’re with us today.  In this panel, representatives from local and federal agencies are here to talk about what their organizations are doing to support the advancement of cybersecurity preparedness in the region, nationally, and worldwide.

   

  Submit your bio for consideration to participate in one of our Cyber Executive Panels

  to [email protected] or fill out our Call for Speakers form here.

  Click to Expand

  Collapse This Item

• Cyber Executive Roundtable 4:35 pm
  Add to Calendar20230727 4:35 pm20230727 4:55 pmAmerica/Los_AngelesCyber Executive Roundtable

  Our cybersecurity executive roundtable discussion is always a big highlight of our conferences and is usually a lot of fun!  It’s your opportunity to get unbiased opinions and experiences from executive cybersecurity leaders in this region.  We’re very honored they took the time to be here with us today so let’s make good use of their time and ask them some of those burning questions you have for them.

   

  Submit your bio for consideration to participate in one of our Cyber Executive Panels

  to [email protected] or fill out our Call for Speakers form here.

  .

  Our cybersecurity executive roundtable discussion is always a big highlight of our conferences and is usually a lot of fun!  It’s your opportunity to get unbiased opinions and experiences from executive cybersecurity leaders in this region.  We’re very honored they took the time to be here with us today so let’s make good use of their time and ask them some of those burning questions you have for them.

   

  Submit your bio for consideration to participate in one of our Cyber Executive Panels

  to [email protected] or fill out our Call for Speakers form here.

  Click to Expand

  Panel Participants:

  Nelson Estrada

  Nelson Estrada

  IT Director, GoodFarms

  E.J. Hilbert

  E.J. Hilbert

  Former FBI Cyber Agent, CISO & Founder at KCECyber

  Collapse This Item

• Conference Closing Session 5:20 pm
  Add to Calendar20230727 5:20 pm20230727 5:30 pmAmerica/Los_AngelesConference Closing Session

  .

  Collapse This Item

• Happy Hour Networking Reception 5:30 pm
  Add to Calendar20230727 5:30 pm20230727 6:30 pmAmerica/Los_AngelesHappy Hour Networking Reception

  .

  Collapse This Item

• Community Partner Dinner 6:45 pm
  Add to Calendar20230727 6:45 pm20230727 7:05 pmAmerica/Los_AngelesCommunity Partner Dinner

  .

  Collapse This Item