Event Schedule

Times for this Event are in Eastern Time (EDT/EST).

The Conference will be open from 8:00 AM to 6:30 PM Thursday, October 26th.

• Welcome to the Toronto Cybersecurity Conference
• Welcome / Introductions
• The Cybersecurity Skills Shortage 8:30 am
  Add to Calendar20231026 8:30 am20231026 8:50 amAmerica/New_YorkThe Cybersecurity Skills Shortage

  There are currently 310,000 unfilled cybersecurity jobs in the United States, and millions around the world. However, there is no shortage of cybersecurity hopefuls – millions of students, career changers, and people from all walks of life hoping to break into cybersecurity. 

  This session will explore the issues around cybersecurity jobs.  Breaking into the field, the relative need for certifications, formal education, on-the-job training and more.  The discussion will explore the supply and demand disconnect that has been created – resulting in both a ton of great candidates looking for roles, and a cybersecurity skills shortage.

  .

  There are currently 310,000 unfilled cybersecurity jobs in the United States, and millions around the world. However, there is no shortage of cybersecurity hopefuls – millions of students, career changers, and people from all walks of life hoping to break into cybersecurity. 

  This session will explore the issues around cybersecurity jobs.  Breaking into the field, the relative need for certifications, formal education, on-the-job training and more.  The discussion will explore the supply and demand disconnect that has been created – resulting in both a ton of great candidates looking for roles, and a cybersecurity skills shortage.

  Click to Expand

  Collapse This Item

• The Evolution of the Threat: Hunting, Detection, & Response 8:50 am
  Add to Calendar20231026 8:50 am20231026 9:10 amAmerica/New_YorkThe Evolution of the Threat: Hunting, Detection, & Response

  Nation-State attacks are not always focused on political or military adversaries. Recently, below-military-grade action can create havoc or destabilize adversaries, or manipulate markets.  Hard to trace and even harder to convict, they may affect stock price or even influence the outcome of elections. 

  Attend to talk about the problem, and see what US enterprises are doing to prepare themselves for these situations.

  Presented by Storagepipe

  Nation-State attacks are not always focused on political or military adversaries. Recently, below-military-grade action can create havoc or destabilize adversaries, or manipulate markets.  Hard to trace and even harder to convict, they may affect stock price or even influence the outcome of elections. 

  Attend to talk about the problem, and see what US enterprises are doing to prepare themselves for these situations.

  Click to Expand

  Collapse This Item

• 4G/5G Network Security 9:30 am
  Add to Calendar20231026 9:30 am20231026 9:50 amAmerica/New_York4G/5G Network Security

   Protecting organizational infrastructure, networks, and hardware devices is a never ending pursuit these days. There is a secure network solution that offers a simple to manage alternative to complex VPN infrastructures for securely connecting sites, vehicles, IoT, and remote workers. This session will cover how to secure remote sites with ease, reduce attack surfaces by building undiscoverable network resources, and how to provide any-to-any connectivity. Learn how to unlock operational agility through built-in tunnel orchestration and simplified configuration. It’s all about end-to-end WAN and network security services that tightly integrate with routing and security devices to establish encrypted connections to access applications and resources in the cloud or data center.

  Presented by Cradlepoint

   Protecting organizational infrastructure, networks, and hardware devices is a never ending pursuit these days. There is a secure network solution that offers a simple to manage alternative to complex VPN infrastructures for securely connecting sites, vehicles, IoT, and remote workers. This session will cover how to secure remote sites with ease, reduce attack surfaces by building undiscoverable network resources, and how to provide any-to-any connectivity. Learn how to unlock operational agility through built-in tunnel orchestration and simplified configuration. It’s all about end-to-end WAN and network security services that tightly integrate with routing and security devices to establish encrypted connections to access applications and resources in the cloud or data center.

  Click to Expand

  Speaker:

  Tom Stasko

  Tom Stasko

  North American Engineering Manager at Cradlepoint

  Collapse This Item

• Operational Technology (OT) & Industrial Control Systems (ICS): Cybersecurity Concerns 9:50 am
  Add to Calendar20231026 9:50 am20231026 10:10 amAmerica/New_YorkOperational Technology (OT) & Industrial Control Systems (ICS): Cybersecurity Concerns

  Since the Stuxnet worm was first discovered back in 2010, attacks related to SCADA systems have been of concern. While manufacturing and utility organizations tend to talk about them more, there are wide implications across the cybersecurity landscape that touch on ICS and OT systems of all kinds. 

  This session will talk about why these types of attacks represent a primary concern, and what state-of-the-art looks like in terms of building protections.

  .

  Since the Stuxnet worm was first discovered back in 2010, attacks related to SCADA systems have been of concern. While manufacturing and utility organizations tend to talk about them more, there are wide implications across the cybersecurity landscape that touch on ICS and OT systems of all kinds. 

  This session will talk about why these types of attacks represent a primary concern, and what state-of-the-art looks like in terms of building protections.

  Click to Expand

  Collapse This Item

• Protecting Against Cyber Attacks 10:10 am
  Add to Calendar20231026 10:10 am20231026 10:30 amAmerica/New_YorkProtecting Against Cyber Attacks

   For every new technology that cybersecurity professionals invent, it’s only a matter of time before malicious actors find a way around it. During this panel discussion, you’ll get the inside track on solutions and suggestions for protecting against the constantly evolving threats we’re all facing every day.  Take advantage of the knowledge and expertise of the panelists on this stage to learn the most up-to-date methods of guarding your company against cyber attacks.

  .

   For every new technology that cybersecurity professionals invent, it’s only a matter of time before malicious actors find a way around it. During this panel discussion, you’ll get the inside track on solutions and suggestions for protecting against the constantly evolving threats we’re all facing every day.  Take advantage of the knowledge and expertise of the panelists on this stage to learn the most up-to-date methods of guarding your company against cyber attacks.

  Click to Expand

  Collapse This Item

• Zero Trust, UEBA, and You: The Power of Human Insight in Cybersecurity 10:55 am
  Add to Calendar20231026 10:55 am20231026 11:15 amAmerica/New_YorkZero Trust, UEBA, and You: The Power of Human Insight in Cybersecurity

  In this presentation, we will discuss the synergies between Zero Trust and User and Entity Behavior Analytics (UEBA) in addressing human-related security threats. Zero Trust is an effective approach to securing access to applications and resources, but it still requires a comprehensive strategy to addressing human-related security threats. UEBA uses machine learning algorithms to detect and respond to anomalous behavior in users and devices, providing an additional layer of security to Zero Trust. We will provide practical insights on how to implement Zero Trust and UEBA, including key considerations such as data privacy, compliance, and governance. Attendees will gain an understanding of how these technologies can be used to build a comprehensive and proactive approach to cybersecurity.

   

  Presented by ManageEngine

  In this presentation, we will discuss the synergies between Zero Trust and User and Entity Behavior Analytics (UEBA) in addressing human-related security threats. Zero Trust is an effective approach to securing access to applications and resources, but it still requires a comprehensive strategy to addressing human-related security threats. UEBA uses machine learning algorithms to detect and respond to anomalous behavior in users and devices, providing an additional layer of security to Zero Trust. We will provide practical insights on how to implement Zero Trust and UEBA, including key considerations such as data privacy, compliance, and governance. Attendees will gain an understanding of how these technologies can be used to build a comprehensive and proactive approach to cybersecurity.

   

  Click to Expand

  Speaker:

  Ray Manash

  Ray Manash

  Manager - Customer Success at Manage Engine

  Collapse This Item

• Cyber Ready: Overview on Zero Trust, What Comes Next and What You Can Do Now. 11:15 am
  Add to Calendar20231026 11:15 am20231026 11:30 amAmerica/New_YorkCyber Ready: Overview on Zero Trust, What Comes Next and What You Can Do Now.

  What does it mean to be in a constant state of Cyber Readiness? What is Zero Trust architecture and how do you get there from a state of legacy networks and security? How can Battle-Tested Systems convert your organization from defense to offense?

  The new era of Cyber Security requires an organization to be Cyber Ready, not just passively prepared. We will present what that journey looks like and how it is driven by a Zero Trust framework and Battle-Tested Systems. Continuous improvement is key, and, on too many occasions, organizations believe they are protected and do not try to improve their systems until an actual, potentially catastrophic breach has occurred. This moment of epiphany is entirely avoidable, and we will show you that path to being proactive.

  Posture Matters, and in this presentation, we will answer all these questions as well as some of your own. We will show you the why, the how, and what you can do right now to fortify your perimeter against the increasingly sophisticated attacks of today and tomorrow while in any stage of your Zero Trust Journey.

  Presented by Ridge IT Cyber

  What does it mean to be in a constant state of Cyber Readiness? What is Zero Trust architecture and how do you get there from a state of legacy networks and security? How can Battle-Tested Systems convert your organization from defense to offense?

  The new era of Cyber Security requires an organization to be Cyber Ready, not just passively prepared. We will present what that journey looks like and how it is driven by a Zero Trust framework and Battle-Tested Systems. Continuous improvement is key, and, on too many occasions, organizations believe they are protected and do not try to improve their systems until an actual, potentially catastrophic breach has occurred. This moment of epiphany is entirely avoidable, and we will show you that path to being proactive.

  Posture Matters, and in this presentation, we will answer all these questions as well as some of your own. We will show you the why, the how, and what you can do right now to fortify your perimeter against the increasingly sophisticated attacks of today and tomorrow while in any stage of your Zero Trust Journey.

  Click to Expand

  Speaker:

  Chad Koslow

  Chad Koslow

  CEO and Co-Founder at Ridge IT Cyber

  Collapse This Item

• Lunch Break
• Lunch Demo: Sponsored by ColorTokens 12:00 pm
  Add to Calendar20231026 12:00 pm20231026 12:20 pmAmerica/New_YorkLunch Demo: Sponsored by ColorTokens

  Presented by ColorTokens

  Collapse This Item

• Lunch Demo: Sponsored by Storagepipe 12:00 pm
  Add to Calendar20231026 12:00 pm20231026 12:20 pmAmerica/New_YorkLunch Demo: Sponsored by Storagepipe

  Presented by Storagepipe

  Collapse This Item

• Keynote Presentation: Sharee English 12:10 pm
  Add to Calendar20231026 12:10 pm20231026 12:50 pmAmerica/New_YorkKeynote Presentation: Sharee English

  Small to medium-sized business (SMB) owners face a different set of cybersecurity challenges than larger enterprises. The risks are substantial: Almost 60% of small businesses close within six months of a cyberattack, according to the US Department of Labor. 

  SMB’s are under pressure to prevent a cyber-attack rather than respond to one, but often lack the necessary resources or infrastructure to keep up with ever-increasing cybersecurity threats. With just a few strategies, use cases and real examples, SMB’s can implement best practices, understand common threats, and better protect their business against cyberattacks.  

  How to secure your small business in five steps

  Small to medium-sized business (SMB) owners face a different set of cybersecurity challenges than larger enterprises. The risks are substantial: Almost 60% of small businesses close within six months of a cyberattack, according to the US Department of Labor. 

  SMB’s are under pressure to prevent a cyber-attack rather than respond to one, but often lack the necessary resources or infrastructure to keep up with ever-increasing cybersecurity threats. With just a few strategies, use cases and real examples, SMB’s can implement best practices, understand common threats, and better protect their business against cyberattacks.  

  Click to Expand

  Speaker:

  Sharee English

  Sharee English

  Information Security Governance Manager at POWER Engineers

  Collapse This Item

• AI & ML in Cybersecurity: Can We ‘Science the Heck’ Out of Trouble? 1:10 pm
  Add to Calendar20231026 1:10 pm20231026 1:30 pmAmerica/New_YorkAI & ML in Cybersecurity: Can We ‘Science the Heck’ Out of Trouble?

  We get it, Artificial Intelligence (AI) with particular focus on Machine Learning (ML) is one way to overcome advanced threats with particular attention to scale. That said, those terms are thrown at our executives to delight, amaze and confuse them. How do we really discern between them as tools in our kit versus ‘Weapons of Mass Distraction’? 

  .

  We get it, Artificial Intelligence (AI) with particular focus on Machine Learning (ML) is one way to overcome advanced threats with particular attention to scale. That said, those terms are thrown at our executives to delight, amaze and confuse them. How do we really discern between them as tools in our kit versus ‘Weapons of Mass Distraction’? 

  Click to Expand

  Collapse This Item

• Supply Chain & Third Party Risk Management 1:30 pm
  Add to Calendar20231026 1:30 pm20231026 1:50 pmAmerica/New_YorkSupply Chain & Third Party Risk Management

  A supply chain encompasses the entire network of all the individuals, organizations, resources, activities and technology involved in the creation and sale of a product.  The ultimate goal of an effective supply chain is lower costs of doing business thus resulting in higher profits and improved customer satisfaction.  The process of bringing in a third party involves identifying, assessing and controlling all the various risks that can develop over the entire lifecycle of such relationships. 

  Join this session to drive into how sophisticated attackers can live quietly inside even organizations with significant expertise and mature security processes. 

  .

  A supply chain encompasses the entire network of all the individuals, organizations, resources, activities and technology involved in the creation and sale of a product.  The ultimate goal of an effective supply chain is lower costs of doing business thus resulting in higher profits and improved customer satisfaction.  The process of bringing in a third party involves identifying, assessing and controlling all the various risks that can develop over the entire lifecycle of such relationships. 

  Join this session to drive into how sophisticated attackers can live quietly inside even organizations with significant expertise and mature security processes. 

  Click to Expand

  Collapse This Item

• 2023 Trends & Directions in Cybersecurity 1:50 pm
  Add to Calendar20231026 1:50 pm20231026 2:15 pmAmerica/New_York2023 Trends & Directions in Cybersecurity

  As we’re getting closer to the halfway point of 2023, it’s clear that cybercriminals are still coming up with new, more complex ways to cash in.  During this panel discussion, you’ll get insights on the latest trends from these experts who live on the leading edge of cybersecurity technology. You’ll hear about some of the newest tactics for defending against unprecedented attacks. 

  .

  As we’re getting closer to the halfway point of 2023, it’s clear that cybercriminals are still coming up with new, more complex ways to cash in.  During this panel discussion, you’ll get insights on the latest trends from these experts who live on the leading edge of cybersecurity technology. You’ll hear about some of the newest tactics for defending against unprecedented attacks. 

  Click to Expand

  Collapse This Item

• Cloud Clarity in 2023: Strategy, Execution & Alignment 2:35 pm
  Add to Calendar20231026 2:35 pm20231026 2:55 pmAmerica/New_YorkCloud Clarity in 2023: Strategy, Execution & Alignment

  Securely optimizing the cloud for better business outcomes is the product of clear communication of terms and expectations, alignment with business processes and functions, and partnerships among multiple internal and external stakeholders. “Activity” does not equal “progress.”  In this session, attendees will hear about creating definitional clarity, building adaptability, and creating cross-functional, business-wide alignment. 

  .

  Securely optimizing the cloud for better business outcomes is the product of clear communication of terms and expectations, alignment with business processes and functions, and partnerships among multiple internal and external stakeholders. “Activity” does not equal “progress.”  In this session, attendees will hear about creating definitional clarity, building adaptability, and creating cross-functional, business-wide alignment. 

  Click to Expand

  Collapse This Item

• Managing Risk: Seek Forward Accountability and Assume a Stormy Seas 2:55 pm
  Add to Calendar20231026 2:55 pm20231026 3:15 pmAmerica/New_YorkManaging Risk: Seek Forward Accountability and Assume a Stormy Seas

  While managing risk has always been a part of the CISO office, most resources turn to stopping new ransomware threats, managing supply chain attacks and mitigating third-party vulnerabilities. How can CISOs truly move to managing risk? And by extension, how can they clearly communicate risk, and measure the efficacy of mitigation activities? 

  Join this session to learn how to facilitate the risk conversation with non-technical leaders, determine priorities, and counterbalance cybersecurity considerations against business requirements. This session will also address risk quantification, accounting, budgeting and resourcing, and building more resilience rather than taller walls.

  .

  While managing risk has always been a part of the CISO office, most resources turn to stopping new ransomware threats, managing supply chain attacks and mitigating third-party vulnerabilities. How can CISOs truly move to managing risk? And by extension, how can they clearly communicate risk, and measure the efficacy of mitigation activities? 

  Join this session to learn how to facilitate the risk conversation with non-technical leaders, determine priorities, and counterbalance cybersecurity considerations against business requirements. This session will also address risk quantification, accounting, budgeting and resourcing, and building more resilience rather than taller walls.

  Click to Expand

  Collapse This Item

• Guest Keynote Presentation: Kenrick Bagnall 3:15 pm
  Add to Calendar20231026 3:15 pm20231026 3:45 pmAmerica/New_YorkGuest Keynote Presentation: Kenrick Bagnall

  When determining overall cyber risk, we must examine all aspects of Threat Accessibility. This forces us to not only reconcile the convergence of physical and cyber security, but it also forces us to embrace it and succeed. Moving beyond mainstream IoT, this presentation looks at the challenges presented by technologically advanced end points used in physical security and discusses opportunities to embrace these advancements to harden the infrastructure and reduce the overall attack surface.

  Thriving at the crossroads of Physical and Cyber Security – A must win situation.

  When determining overall cyber risk, we must examine all aspects of Threat Accessibility. This forces us to not only reconcile the convergence of physical and cyber security, but it also forces us to embrace it and succeed. Moving beyond mainstream IoT, this presentation looks at the challenges presented by technologically advanced end points used in physical security and discusses opportunities to embrace these advancements to harden the infrastructure and reduce the overall attack surface.

  Click to Expand

  Speaker:

  Kenrick Bagnall

  Kenrick Bagnall

  Executive Board Member & CISO at Cyber Security Global Alliance (CSGA)

  Collapse This Item

• Cyber Inter-Agency Collaboration Panel 3:45 pm
  Add to Calendar20231026 3:45 pm20231026 4:30 pmAmerica/New_YorkCyber Inter-Agency Collaboration Panel

  We hear it all the time – cybersecurity is everyone’s responsibility. That’s why it’s so important for officials from all levels and sectors of government to collaborate in their approach, which is why they’re with us today.  In this panel, representatives from local and federal agencies are here to talk about what their organizations are doing to support the advancement of cybersecurity preparedness in the region, nationally, and worldwide.

   

   

  Submit your bio for consideration to participate in one of our Cyber Executive Panels

  to [email protected] or fill out our Call for Speakers form here.

  .

  We hear it all the time – cybersecurity is everyone’s responsibility. That’s why it’s so important for officials from all levels and sectors of government to collaborate in their approach, which is why they’re with us today.  In this panel, representatives from local and federal agencies are here to talk about what their organizations are doing to support the advancement of cybersecurity preparedness in the region, nationally, and worldwide.

   

   

  Submit your bio for consideration to participate in one of our Cyber Executive Panels

  to [email protected] or fill out our Call for Speakers form here.

  Click to Expand

  Panel Participants:

  Collapse This Item

• Cyber Executive Roundtable 4:35 pm
  Add to Calendar20231026 4:35 pm20231026 4:55 pmAmerica/New_YorkCyber Executive Roundtable

  Our cybersecurity executive roundtable discussion is always a big highlight of our conferences and is usually a lot of fun!  It’s your opportunity to get unbiased opinions and experiences from executive cybersecurity leaders in this region.  We’re very honored they took the time to be here with us today so let’s make good use of their time and ask them some of those burning questions you have for them.

   

   

  Submit your bio for consideration to participate in one of our Cyber Executive Panels

  to [email protected] or fill out our Call for Speakers form here.

  .

  Our cybersecurity executive roundtable discussion is always a big highlight of our conferences and is usually a lot of fun!  It’s your opportunity to get unbiased opinions and experiences from executive cybersecurity leaders in this region.  We’re very honored they took the time to be here with us today so let’s make good use of their time and ask them some of those burning questions you have for them.

   

   

  Submit your bio for consideration to participate in one of our Cyber Executive Panels

  to [email protected] or fill out our Call for Speakers form here.

  Click to Expand

  Panel Participants:

  Zubair Alexander

  Zubair Alexander

  Senior Information Security GRC Analyst at POWER Engineers, Incorporated

  Collapse This Item

• Conference Closing Session 5:20 pm
  Add to Calendar20231026 5:20 pm20231026 5:30 pmAmerica/New_YorkConference Closing Session

  .

  Collapse This Item

• Networking Reception and Happy Hour 5:30 pm
  Add to Calendar20231026 5:30 pm20231026 6:30 pmAmerica/New_YorkNetworking Reception and Happy Hour

  .

  Collapse This Item