Austin Cybersecurity Conference

People aren't the weakest link when it comes to cybersecurity in our organizations - they're the only link. And there is a key to helping anyone from an accountant to a doctor to be more cybersecure - habits. 

 In this Masterclass, George Finney, bestselling author of Well Aware and Project Zero Trust will show you how we can use neuroscience and psychology to influence the only thing that really matters in our security awareness training programs: behavior change.

 George will share his innovative approach to cybersecurity awareness to maximize the impact that security training can have on your organization.  Attendees will learn how to:

1. Focus On The Outcomes - what we need from Security Awareness is behavior change. Make real progress by changing one cybersecurity habit one step at a time. 
2. Think Like A Coach - We want to see our employees succeed in our mission to keep our organizations secure by finding their unique strengths and making them even better. 
3. Make It Personal - We’ve reimagined cybersecurity awareness from the ground up based on psychology and neuroscience to deliver highly effective, personalized training.

It all starts with our free cybersecurity personality test that helps individuals discover their unique strengths and we create a personalized training plan for every employee and their specific role within the organization. Take the test free here prior to the start of the course:  https://wellawaresecurity.com/cyber-personality-test/

SaaS based AI/ML solutions often use your users/company data to train themselves posing a serious privacy and data security challenge. Furthermore, AI/ML models trained on public data may get dumber with time. At the same time, your employees need and have access to a wide variety of your users’ data that improves their decision making but can pose massive data exposure challenges. 

A zero trust model enunciates that organizations should always be in complete control of their data. The session describes an approach to strengthen your organizational data security continuously. Your teams can train their AI/ML models on the context-rich data of your business, all within your premises with zero data exfiltration.

Cloud adoption and digital transformation have been driving amazing innovation in the past 20 years. With that, the most commonly overlooked attack surface is the growing number of APIs that subsequently come with the new cloud approach. Not only has Gartner confirmed APIs' rising prevalence as the attack vector of choice for bad actors, but Data Theorem has also been observing this rise in the last 5 years. 

An API security strategy is critical in getting started on the right foot. Join us to uncover the risks associated with this new world and discuss strategies on how to systematically secure these APIs. 

•  Why APIs have risen to the top of the hacker's to-do list
• How hackers are attacking APIs & extracting data
• Top strategies to proactively secure APIs

With the rapid evolution of the digital workplace, companies now face evolving risks from the rise of Shadow IT and Gen AI tools. With three out of five workers using or planning to use generative AI tools like ChatGPT, organizations grapple with mounting compliance and security risks, as users leverage these tools to create content and code that interacts with sensitive data. In this session, we will explore strategies for empowering security leaders to maintain visibility and control in the perimeter-less era and govern access to their applications.

Key points of discussion

• The sprawling SaaS ecosystem creates blindspots for security teams
• Existing solution landscape to manage software
• Uncover shadow IT and gen-AI apps with a 9-step discovery method providing 360-degree visibility into apps, users, entitlements, and usage patterns.
• Restrict unsanctioned apps and AI tools to protect systems and data.
• Monitor security posture (risks & threats) of apps and users
• Enforce access controls through policy-driven workflows that govern who gets access to what app/resource.
• Audit user entitlements and remediate over-permissive access.

The first step in your journey towards becoming secure is believing that you can be successful. Many of us are conditioned to believe we need to be cynical in order to be secure. In George's award-winning book, Well Aware, he demonstrates that the opposite is true...we can hack our own brain's "habit loop" to make being more secure easy. George will provide a roadmap on how to use the science behind habits that can help make security possible for anyone. 

Attendees will be able to: 

• Identify their own top internal and external cybersecurity strengths 
• Understand how habits play a role in helping us become more secure

Gain insights to critical leadership skills with Ben Chappell, CEO of Apona Security, to uncover a deeper understanding of our competing values. He will illustrate how this is woven into the fabric of security at a practical (source code) level, and reveal parallels to Lord of the Rings.

Challenge the Status Quo, Take Risks, People Stock is the Greatest Investment

In the cybersecurity world, Red, Blue, and Purple teams have established their roles in fortifying defenses and improving organizational resiliency. However, the spotlight often bypasses a crucial player—the Yellow Teams—operating at the intersection of development, IT, and the cloud. 

Using the familiar color wheel analogy, this insightful discussion describes the yellow team’s pivotal role in fortifying software and infrastructure by seamlessly integrating Red and Blue techniques – improving tech resiliency. Key topics include: 

• Unveiling the essentials for tech-savvy professionals to integrate security 
• Crafting a vibrant palette: transforming Yellow Teams into dynamic orange and green forces 
• The collective advantage: reducing risk via confident, resilient teams

Book Signing by Keynote Speaker and Author Ed Adams: In See Yourself in Cyber: Security Careers Beyond Hacking, information security strategist and educator Ed Adams delivers a unique and insightful discussion of the many different ways the people in your organization—inhabiting a variety of roles not traditionally associated with cybersecurity—can contribute to improving its cybersecurity backbone. You’ll discover how developers, DevOps professionals, managers, and others can strengthen your cybersecurity. You’ll also find out how improving your firm’s diversity and inclusion can have dramatically positive effects on your team’s talent.