Event Schedule

Times for this Event are in Central Time (CDT/CST).

The Conference will be open from 8:00 AM to 6:30 PM Thursday, May 11th.

• Welcome / Introductions
• The Evolution of the Threat: Hunting, Detection, & Response 8:30 am
  Add to Calendar20230511 8:30 am20230511 8:50 amAmerica/ChicagoThe Evolution of the Threat: Hunting, Detection, & Response

  Nation-State attacks are not always focused on political or military adversaries. Recently, below-military-grade action can create havoc or destabilize adversaries, or manipulate markets.  Hard to trace and even harder to convict, they may affect stock price or even influence the outcome of elections. 

  Attend to talk about the problem, and see what US enterprises are doing to prepare themselves for these situations.

  .

  Nation-State attacks are not always focused on political or military adversaries. Recently, below-military-grade action can create havoc or destabilize adversaries, or manipulate markets.  Hard to trace and even harder to convict, they may affect stock price or even influence the outcome of elections. 

  Attend to talk about the problem, and see what US enterprises are doing to prepare themselves for these situations.

  Click to Expand

  Collapse This Item

• Managing Risk: Seek Forward Accountability and Assume a Stormy Seas 8:50 am
  Add to Calendar20230511 8:50 am20230511 9:10 amAmerica/ChicagoManaging Risk: Seek Forward Accountability and Assume a Stormy Seas

  While managing risk has always been a part of the CISO office, most resources turn to stopping new ransomware threats, managing supply chain attacks and mitigating third-party vulnerabilities. How can CISOs truly move to managing risk? And by extension, how can they clearly communicate risk, and measure the efficacy of mitigation activities? 

  Join this session to learn how to facilitate the risk conversation with non-technical leaders, determine priorities, and counterbalance cybersecurity considerations against business requirements. This session will also address risk quantification, accounting, budgeting and resourcing, and building more resilience rather than taller walls.

  Presented by SecureWorks

  While managing risk has always been a part of the CISO office, most resources turn to stopping new ransomware threats, managing supply chain attacks and mitigating third-party vulnerabilities. How can CISOs truly move to managing risk? And by extension, how can they clearly communicate risk, and measure the efficacy of mitigation activities? 

  Join this session to learn how to facilitate the risk conversation with non-technical leaders, determine priorities, and counterbalance cybersecurity considerations against business requirements. This session will also address risk quantification, accounting, budgeting and resourcing, and building more resilience rather than taller walls.

  Click to Expand

  Collapse This Item

• The Cybersecurity Skills Shortage 9:30 am
  Add to Calendar20230511 9:30 am20230511 9:50 amAmerica/ChicagoThe Cybersecurity Skills Shortage

  There are currently 310,000 unfilled cybersecurity jobs in the United States, and millions around the world. However, there is no shortage of cybersecurity hopefuls – millions of students, career changers, and people from all walks of life hoping to break into cybersecurity. 

  This session will explore the issues around cybersecurity jobs.  Breaking into the field, the relative need for certifications, formal education, on-the-job training and more.  The discussion will explore the supply and demand disconnect that has been created – resulting in both a ton of great candidates looking for roles, and a cybersecurity skills shortage.

  .

  There are currently 310,000 unfilled cybersecurity jobs in the United States, and millions around the world. However, there is no shortage of cybersecurity hopefuls – millions of students, career changers, and people from all walks of life hoping to break into cybersecurity. 

  This session will explore the issues around cybersecurity jobs.  Breaking into the field, the relative need for certifications, formal education, on-the-job training and more.  The discussion will explore the supply and demand disconnect that has been created – resulting in both a ton of great candidates looking for roles, and a cybersecurity skills shortage.

  Click to Expand

  Collapse This Item

• IAM + WFH - Authentication vs Authorization 9:50 am
  Add to Calendar20230511 9:50 am20230511 10:10 amAmerica/ChicagoIAM + WFH - Authentication vs Authorization

  The “perimeter” concept for organizational security… The castles and moats analogy no longer applies… As we all went to Work From Home quickly – we tested the boundaries of identity and authentication.

  Join this session to discuss the concepts and trends shaping identity and authentication, from IAM to passwordless, and PAM to zero-trust. 

  .

  The “perimeter” concept for organizational security… The castles and moats analogy no longer applies… As we all went to Work From Home quickly – we tested the boundaries of identity and authentication.

  Join this session to discuss the concepts and trends shaping identity and authentication, from IAM to passwordless, and PAM to zero-trust. 

  Click to Expand

  Collapse This Item

• Protecting Against Cyber Attacks 10:10 am
  Add to Calendar20230511 10:10 am20230511 10:35 amAmerica/ChicagoProtecting Against Cyber Attacks

  We’ve seen the real-world consequences of cyberattacks – from the shutdown of the Colonial Pipeline to the slowing of care for hospital patients, to major disruptions in the food supply lines. The impact of a single attack can be far-reaching and devastating to all those affected. When paired with unprecedented geopolitical uncertainty, it’s never been more important for organizations to be vigilant against bad actors.

  Learn the latest techniques for developing your security posture with this expert panel discussion. Come prepared with your thoughts and questions and gain an insider’s perspective on the latest threats and most effective security strategies during this thoughtful, interactive session.

  .

  We’ve seen the real-world consequences of cyberattacks – from the shutdown of the Colonial Pipeline to the slowing of care for hospital patients, to major disruptions in the food supply lines. The impact of a single attack can be far-reaching and devastating to all those affected. When paired with unprecedented geopolitical uncertainty, it’s never been more important for organizations to be vigilant against bad actors.

  Learn the latest techniques for developing your security posture with this expert panel discussion. Come prepared with your thoughts and questions and gain an insider’s perspective on the latest threats and most effective security strategies during this thoughtful, interactive session.

  Click to Expand

  Collapse This Item

• AI & ML in Cybersecurity: Can We ‘Science the Heck’ Out of Trouble? 10:55 am
  Add to Calendar20230511 10:55 am20230511 11:15 amAmerica/ChicagoAI & ML in Cybersecurity: Can We ‘Science the Heck’ Out of Trouble?

  We get it, Artificial Intelligence (AI) with particular focus on Machine Learning (ML) is one way to overcome advanced threats with particular attention to scale. That said, those terms are thrown at our executives to delight, amaze and confuse them. How do we really discern between them as tools in our kit versus ‘Weapons of Mass Distraction’?

  .

  We get it, Artificial Intelligence (AI) with particular focus on Machine Learning (ML) is one way to overcome advanced threats with particular attention to scale. That said, those terms are thrown at our executives to delight, amaze and confuse them. How do we really discern between them as tools in our kit versus ‘Weapons of Mass Distraction’?

  Click to Expand

  Collapse This Item

• Compliance & Automation in Cybersecurity 11:15 am
  Add to Calendar20230511 11:15 am20230511 11:35 amAmerica/ChicagoCompliance & Automation in Cybersecurity

  Managing compliance needs as a continuous, organizational process (as opposed to a reactive response), amid the ever-increasing myriad of industry regulations and legislation has become a full time job for most CISOs.  Automation – including artificial intelligence and machine learning will help, and are perhaps more critical than ever. As CRPA comes into play and brings the US closer to GDPR, there are also a number of touchpoints where the CDO and CISO interplay will be crucial over the coming months. 

  This session will discuss the current issues with regard to compliance, monitoring, and reporting.  Policy decisions and regulations that have kept CISOs busy of late, and what we can expect more of in 2023 will also be addressed.

  .

  Managing compliance needs as a continuous, organizational process (as opposed to a reactive response), amid the ever-increasing myriad of industry regulations and legislation has become a full time job for most CISOs.  Automation – including artificial intelligence and machine learning will help, and are perhaps more critical than ever. As CRPA comes into play and brings the US closer to GDPR, there are also a number of touchpoints where the CDO and CISO interplay will be crucial over the coming months. 

  This session will discuss the current issues with regard to compliance, monitoring, and reporting.  Policy decisions and regulations that have kept CISOs busy of late, and what we can expect more of in 2023 will also be addressed.

  Click to Expand

  Collapse This Item

• Lunch Break
• Keynote Presentation: Christopher Salgado 12:10 pm
  Add to Calendar20230511 12:10 pm20230511 12:50 pmAmerica/ChicagoKeynote Presentation: Christopher Salgado

  Reinforce what modern experts and industry statistics are calling the weakest link in your layered security apparatus: the human involvement (employees). Social engineering is known to have been successfully deployed in >95% of cyberattacks. Avoid throwing away your security investments with untrained employees who can be victimized by the next well-crafted social engineering plot, including pretexting, vishing, smishing, phishing, water hole attacks, whaling and tailgating. Social engineering is no longer reserved for the banking industries and is one of the easiest channels for bad actors to gain access to your sensitive data. As such, it is reported to have increased by significantly and especially targeting remote workers where security infrastructure may be much less enforced. Inform your employees to question everyone. Escalate awareness into action on behalf of your company’s safety and their own.

  Social Engineering: The Dangerous Nexus between the Cyber and Physical Worlds

  Reinforce what modern experts and industry statistics are calling the weakest link in your layered security apparatus: the human involvement (employees). Social engineering is known to have been successfully deployed in >95% of cyberattacks. Avoid throwing away your security investments with untrained employees who can be victimized by the next well-crafted social engineering plot, including pretexting, vishing, smishing, phishing, water hole attacks, whaling and tailgating. Social engineering is no longer reserved for the banking industries and is one of the easiest channels for bad actors to gain access to your sensitive data. As such, it is reported to have increased by significantly and especially targeting remote workers where security infrastructure may be much less enforced. Inform your employees to question everyone. Escalate awareness into action on behalf of your company’s safety and their own.

  Click to Expand

  Panel Participants:

  Christopher Salgado

  Christopher Salgado

  Former Facebook Investigator and CEO at All Points Investigations, LLC.

  Collapse This Item

• Operational Technology (OT) & Industrial Control Systems (ICS): Cybersecurity Concerns 1:10 pm
  Add to Calendar20230511 1:10 pm20230511 1:30 pmAmerica/ChicagoOperational Technology (OT) & Industrial Control Systems (ICS): Cybersecurity Concerns

  Since the Stuxnet worm was first discovered back in 2010, attacks related to SCADA systems have been of concern. While manufacturing and utility organizations tend to talk about them more, there are wide implications across the cybersecurity landscape that touch on ICS and OT systems of all kinds. 

  This session will talk about why these types of attacks represent a primary concern, and what state-of-the-art looks like in terms of building protections. 

  .

  Since the Stuxnet worm was first discovered back in 2010, attacks related to SCADA systems have been of concern. While manufacturing and utility organizations tend to talk about them more, there are wide implications across the cybersecurity landscape that touch on ICS and OT systems of all kinds. 

  This session will talk about why these types of attacks represent a primary concern, and what state-of-the-art looks like in terms of building protections. 

  Click to Expand

  Collapse This Item

• The Risk Management “Balance Sheet” 1:30 pm
  Add to Calendar20230511 1:30 pm20230511 1:50 pmAmerica/ChicagoThe Risk Management “Balance Sheet”

  Managing risk has always been a part of the CISO responsibility set; however, the ways in which it is managed has no clear definition. With new ransomware threats, supply chain attacks, and third-party risk in the mix – perhaps a new way to budget risk is required.  Is there an effective way to have a “risk balance sheet” – a way in which the CISO could communicate risk to the rest of the C-suite in a consistent language they would understand? 

  Attend this session to get these questions answered and more.

  .

  Managing risk has always been a part of the CISO responsibility set; however, the ways in which it is managed has no clear definition. With new ransomware threats, supply chain attacks, and third-party risk in the mix – perhaps a new way to budget risk is required.  Is there an effective way to have a “risk balance sheet” – a way in which the CISO could communicate risk to the rest of the C-suite in a consistent language they would understand? 

  Attend this session to get these questions answered and more.

  Click to Expand

  Collapse This Item

• 2023 Trends & Directions 1:50 pm
  Add to Calendar20230511 1:50 pm20230511 2:15 pmAmerica/Chicago2023 Trends & Directions

  If 2022 taught us anything, it’s that cybercriminals are still coming up with new ways to cash in. But with a new year upon us, what can we anticipate for 2023? 

  Get insights on the latest in security from experts who live on the leading edge of cybersecurity technology. You’ll hear from industry luminaries on some of the newest tactics for defending against unprecedented attacks. Get a better sense of how your organization can spend the rest of 2023 with a security strategy that will set you up for success during this insightful discussion. 

  .

  If 2022 taught us anything, it’s that cybercriminals are still coming up with new ways to cash in. But with a new year upon us, what can we anticipate for 2023? 

  Get insights on the latest in security from experts who live on the leading edge of cybersecurity technology. You’ll hear from industry luminaries on some of the newest tactics for defending against unprecedented attacks. Get a better sense of how your organization can spend the rest of 2023 with a security strategy that will set you up for success during this insightful discussion. 

  Click to Expand

  Panel Participants:

  Pete Newman

  Pete Newman

  Director, Glasswall

  Collapse This Item

• Cloud Clarity in 2023: Strategy, Execution & Alignment 2:35 pm
  Add to Calendar20230511 2:35 pm20230511 2:55 pmAmerica/ChicagoCloud Clarity in 2023: Strategy, Execution & Alignment

  Securely optimizing the cloud for better business outcomes is the product of clear communication of terms and expectations, alignment with business processes and functions, and partnerships among multiple internal and external stakeholders. “Activity” does not equal “progress.”  In this session, attendees will hear about creating definitional clarity, building adaptability, and creating cross-functional, business-wide alignment. 

  .

  Securely optimizing the cloud for better business outcomes is the product of clear communication of terms and expectations, alignment with business processes and functions, and partnerships among multiple internal and external stakeholders. “Activity” does not equal “progress.”  In this session, attendees will hear about creating definitional clarity, building adaptability, and creating cross-functional, business-wide alignment. 

  Click to Expand

  Collapse This Item

• Supply Chain & Third Party Risk Management 2:55 pm
  Add to Calendar20230511 2:55 pm20230511 3:15 pmAmerica/ChicagoSupply Chain & Third Party Risk Management

  A supply chain encompasses the entire network of all the individuals, organizations, resources, activities and technology involved in the creation and sale of a product.  The ultimate goal of an effective supply chain is lower costs of doing business thus resulting in higher profits and improved customer satisfaction.  The process of bringing in a third party involves identifying, assessing and controlling all the various risks that can develop over the entire lifecycle of such relationships. 

  Join this session to drive into how sophisticated attackers can live quietly inside even organizations with significant expertise and mature security processes. 

  .

  A supply chain encompasses the entire network of all the individuals, organizations, resources, activities and technology involved in the creation and sale of a product.  The ultimate goal of an effective supply chain is lower costs of doing business thus resulting in higher profits and improved customer satisfaction.  The process of bringing in a third party involves identifying, assessing and controlling all the various risks that can develop over the entire lifecycle of such relationships. 

  Join this session to drive into how sophisticated attackers can live quietly inside even organizations with significant expertise and mature security processes. 

  Click to Expand

  Collapse This Item

• Guest Keynote Presentation: 3:15 pm
  Add to Calendar20230511 3:15 pm20230511 4:00 pmAmerica/ChicagoGuest Keynote Presentation:

  .

  Panel Participants:

  Collapse This Item

• Cyber Inter-Agency Collaboration Panel 3:45 pm
  Add to Calendar20230511 3:45 pm20230511 4:15 pmAmerica/ChicagoCyber Inter-Agency Collaboration Panel

  Submit your bio for consideration to participate in one of our Cyber Executive Panels

  to [email protected] or fill out our Call for Speakers form here.

  .

  Submit your bio for consideration to participate in one of our Cyber Executive Panels

  to [email protected] or fill out our Call for Speakers form here.

  Click to Expand

  Collapse This Item

• Cyber Executive Panel 4:35 pm
  Add to Calendar20230511 4:35 pm20230511 5:20 pmAmerica/ChicagoCyber Executive Panel

  Submit your bio for consideration to participate in one of our Cyber Executive Panels

  to [email protected] or fill out our Call for Speakers form here.

  .

  Submit your bio for consideration to participate in one of our Cyber Executive Panels

  to [email protected] or fill out our Call for Speakers form here.

  Click to Expand

  Collapse This Item

• Conference Closing Session 5:20 pm
  Add to Calendar20230511 5:20 pm20230511 5:30 pmAmerica/ChicagoConference Closing Session

  .

  Collapse This Item

• Happy Hour Networking Reception 5:30 pm
  Add to Calendar20230511 5:30 pm20230511 6:30 pmAmerica/ChicagoHappy Hour Networking Reception

  .

  Collapse This Item