CISO Cloud Summit | Nov. 17, 2020 CST | Virtual Summit - Real-time Online Conversations

agenda

PDF Download Agenda (PDF)

↓ Agenda Key

Keynote Presentation

Visionary speaker presents to entire audience on key issues, challenges and business opportunities

Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee." title="Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee.

Executive Visions

Panel moderated by Master of Ceremonies and headed by four executives discussing critical business topics

Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members." title="Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members.

Thought Leadership

Solution provider-led session giving high-level overview of opportunities

Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community." title="Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community.

Think Tank

End user-led session in boardroom style, focusing on best practices

Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard." title="Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard.

Roundtable

Interactive session led by a moderator, focused on industry issue

Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done." title="Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done.

Case Study

Overview of recent project successes and failures

Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions." title="Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions.

Focus Group

Discussion of business drivers within a particular industry area

Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions." title="Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions.

Analyst Q&A Session

Moderator-led coverage of the latest industry research

Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst." title="Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst.

Vendor Showcase

Several brief, pointed overviews of the newest solutions and services

Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences." title="Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences.

Executive Exchange

Pre-determined, one-on-one interaction revolving around solutions of interest

Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest." title="Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest.

Open Forum Luncheon

Informal discussions on pre-determined topics

Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch." title="Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch.

Networking Session

Unique activities at once relaxing, enjoyable and productive

Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive." title="Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive.

 

Tuesday, November 17, 2020 - CISO Cloud Summit

9:00 am - 9:10 am

Networking Session

Welcome Registration & Opening Remarks
 

9:10 am - 9:40 am

Share:

Keynote Presentation

Beyond "Workplace": Thriving in a Boundless World with a Distributed Workforce

The future of work came early. The rapid evolution of the workstation from cubicle to open floor plan - and now to remote work - has changed everything about how workforces communicate, collaborate, and stay productive. Join us for this session where you'll learn how to cultivate a distributed workforce by introducing productive and secure work environments, access to tools that inspire connection and collaboration, and the ability for IT to centrally and remotely manage devices.

Sponsored by:

Google View details

 
 

Presented by:

Robert DeVito, Global Director, Chrome Customer & Partner Sales Engineering, Google

 
 

9:40 am - 10:10 am

Share:

Keynote Presentation

Zero Trust: Optimizing Business with a Modern Approach to Security

Digital transformation efforts have taken on new urgency in the last year. At the same time, for many business, digitizing their offerings and operations is entirely reliant on their ability to do so securely. Zero trust has emerged as an ideal approach for protecting the organization from the risks of modern business: disjointed infrastructures, a distributed workforce and consumer demand for a connected experience. In this session, we'll discuss how a security strategy grounded in principles of zero trust helps build a trusted brand by ensuring every connection into the organization is validated for authenticity and need, without introducing friction to daily operations.

Sponsored by:

IBM View details

 
 

Presented by:

Aarti Borkar, Vice President, Offering Management, IBM

 

Jason Keenaghan, Zero Trust Strategy Leader, IBM

 
 

10:10 am - 10:50 am

Share:

Executive Visions

Keynote Panel: Steering Cultural Change

An IT executive's role, goals and objectives have drastically changed over the years. Most leaders supervise teams and units beyond their IT department. Due to these changes in responsibilities, their success is measured in greater business metrics. As a result, these roles have become both more attractive and more demanding.  

Takeaways: 

  • What are the significant changes regarding the role of the IT Executive 
  • How to keep up with the changing requirements 
  • How to properly measure an IT executive's success

Panelists:

Brenda Bjerke, Senior Director, Information Risk Management, Target

 

Chris Leigh, Director & Chief of Cyber Security, Eversource Energy View details

 
 

Marty Ray, Chief Information Security Officer, Fossil Group, Inc.

 
 

10:50 am - 11:10 am

Executive Exchange

 

Share:

Think Tank

Trust in Technology: Embracing Digital Convergence Through Open Standards

Embracing game-changing innovations like conversational commerce, machine vision, AI, blockchain, and IoT requires a renewed focus on collaboration, industry standards, and external data sharing. This session will explore the opportunity to enhance trust in the process of scaling technology through the use of global data standards. The barcode has become a symbol of trust around the world over the past 45 years- the same system of standards that enabled this widespread retail collaboration is similarly providing an objective, consensus-based, and open-source expression of information for the next era of technology application. Examples from various industries including grocery, healthcare, and retail will be covered. 

Presented by:

Melanie Nuce, Senior Vice President of Corporate Development, GS1 US

 
 

11:10 am - 11:30 am

Executive Exchange

 

Share:

Thought Leadership

Perimeter and Beyond... A Pervasive versus Perimeter based approach to Email

Attackers continue to find new ways to exploit organizations. By design, traditional secure email gateway technologies on their own are not designed to fuse various forms of telemetry to detect and prevent against sophisticated attacks. We will discuss how a pervasive approach to email security can not only provide better visibility from both "human" and "technical" telemetry but also how if done right, it can enrich your broader cybersecurity ecosystem to help more efficiently and quickly respond to new sophisticated attacks. Examples of new "intersections" of value between the Three Zones. Join our session to gain a better understanding: 

  • How to drive a Pervasive Email Security Strategy 
  • Decrease cyber risks and costs 
  • Simplify administrative overhead

Sponsored by:

Mimecast View details

 
 

Presented by:

Dino DiMarino, Chief Revenue Officer, Mimecast

 
 

11:30 am - 11:50 am

Share:

Think Tank

Integrative Approaches to Coaching and Innovation

Collaboration is the key to success.  Executive leaders know this, yet they don't always know how to create connection and trust with their teams.  Powerful change happens in organizations when individuals rise to embrace their potential, stop managing teams, and instead begin leading their teams with collaborative confidence.  If you want to collaboratively lead your teams to breakthrough innovations, this session is for you.

Presented by:

Sarah Richardson, VP IT Change Leadership, Optum View details

 
 

Think Tank

AI: Friend or Foe?

Advances in artificial intelligence (AI) are introducing new technologies to a wide array of products across every industry, especially cybersecurity. Facial recognition and natural language processing have become a reality thanks to deep learning algorithms, however, there is a dark side to these advancements. Cybercriminals have managed to weaponize AI to create extremely intricate malware and attack methods. This has forced organizations to use advanced heuristic solutions rather than counting on known vulnerability and attack signatures. 

Takeaways: 

  • Artificial Intelligence products are already being deployed in many industries
  • Features like facial recognition and chat bots are common examples
  • Cybercriminals can weaponize this technology without proper security measures


Presented by:

Gunter Ollmann, CSO (Cloud and AI Division), Microsoft Corporation

 
 

11:50 am - 12:20 pm

Executive Exchange

 

Executive Visions

Lunchtime Panel & Networking

Sponsored by:

Panzura View details

 
 
 

12:20 pm - 12:40 pm

Executive Exchange

 

Share:

Thought Leadership

Balance Your Protection by Planning Left and Right of Boom

The noise that no IT team wants to hear, and no exec team wants to talk about, is the Boom associated with a successful breach. Most products focus on either prevention (Left of, or before, Boom) or detection (Right of, or after, Boom), but lack the capability to integrate the two. In order to provide measurable and meaningful value, managed detection and response (MDR) has evolved to provide insight that improves protection in both areas, fulfilling the mission of decreasing both the likelihood and the impacts of successful attacks. 

Join Jack Danahy, Alert Logic's SVP for Strategy and Chief Evangelist as he discusses MDR, and the security outcomes it delivers both Left, and Right, of Boom.

Sponsored by:

Alert Logic View details

 
 

Presented by:

Jack Danahy, SVP for Strategy and Chief Evangelist, Alert Logic

 
 

12:40 pm - 1:00 pm

Share:

Executive Boardroom

How Self-Compliant Endpoints Can Automate Security and Simplify Your Toolset

As more people work from home, cyberattacks of all sorts are taking advantage of new attack vectors, while IT budgets and admin staffs are stretched. If you were asked to continuously patch and prove compliance for all of your endpoints across your enterprise, how many tools would you need and how would you handle those endpoints that are off the corporate network? These issues can be handled smoothly with: 

  • The right tools 
  • The right processes 
  • An automated, self-compliant endpoint environment

Sponsored by:

HCL BigFix View details

 
 

Presented by:

Dan Wolff, Head of Product Management & Marketing, HCL BigFix

 

Share:

Executive Boardroom

Driving Digital Maturity in your Organization

With all businesses going digital, the ability to deliver always-on customer experiences is paramount to success. Issues that lead to downtime or outages are inevitable - but while you can't know when something's going to break, having the processes in place to respond and resolve issues swiftly in real time is what sets digitally mature companies apart from their laggard competition. PagerDuty has taken the learnings from working with our customers over the past ten years and conducted research to create a Digital Operations Maturity Model to better understand how organizations can orchestrate shifting from a firefighting, reactive state to becoming more proactive and automated. 


Sponsored by:

PagerDuty View details

 
 
 

1:00 pm - 1:20 pm

Share:

Think Tank

Your old sh** doesn't work anymore

When is the last time you took a look at yourself and thought, "my tennis shoes still look good, so they must be functioning fine", or "my car starts every day, so I won't change the oil"?? As Security professionals, we all tend to work in "reactive" mode. We talk about planning and strategy, but in reality, the first thing you probably did today was check email to see if anything was broken (if you didn't already get a text). 

Takeaways: 

  • A discussion on the effectiveness of your "old" Security (People/Processes/Technology).
  • How effective we can be as Leaders.  
  • A look at some practices that we have been told to follow, but never challenged or understood *why*.

Presented by:

Scot Miller, Chief Information Security Officer, Mr. Cooper

 

Share:

Think Tank

The Elephant in the Room, Data Breaches

In 2019, data breaches endured yet again as the largest security threat noted by organizations and IT security professionals alike. If data remains as a high valued commodity, ensuring data privacy and securing personal data will continue to be at the top of the list of an organization's concerns. The increases in privacy legislation, such as GDPR and CCPA, and the understanding of the ramifications stemming from a breach have allowed these concerns to remain heavily in the spotlight. Web application flaws have been identified as the top cause of data breaches. As such, establishing and maintaining web application security has developed into a high priority for all organizations.  

Takeaways: 

  • Data breaches are the biggest security concern 
  • Data continues to be a high value asset but the need to protect it is even higher 
  • New laws like GDPR and CCPA enforce consequences for failing to secure data

Presented by:

Garrett Smiley, CISO & CRO, Serco View details

 
 
 

1:20 pm - 1:40 pm

Executive Exchange

 

Share:

Thought Leadership

You Need to Know Who Is Accessing Your Data, But Do You Really?

Knowing who is accessing what data is at the heart of security. Today, users and attackers get to your data through a mesh of web applications, APIs, and microservices. Unfortunately, your database logs only report the querying source as an authorized intermediary application without the originating requestor's information. This blind spot causes glaring gaps during audits, slows incident response, and impede breach detection. 

Learn how to apply new ways of continuously linking originating users' information to every database access with cohesive interworking between edge WAF, server RASP, and Data Activity Monitoring tools.

Sponsored by:

Imperva View details

 
 

Presented by:

Jose Gomez, Sales Engineering Manager, Imperva

 
 

1:40 pm - 2:00 pm

Executive Exchange

 

Share:

Executive Boardroom

Zero Trust And Data Security: Artificial Intelligence Meets Denise In Accounting

Zero trust data security aspirations are tough to achieve when security policy makers are everyday employees. When they overshare files, users like Denise in Accounting can put business critical data in jeopardy. Zero trust security for unstructured data is essential - and very hard to accomplish. 

Spotting risk with rules, regular expressions or end-user classification doesn't work. Those approaches are complex, hard to manage and unreliable. Fortunately, emerging solutions based on artificial intelligence can help.  

New deep learning solutions can identify business-critical data and crowd source correct security policies. Effective, actionable security for unstructured data that doesn't burden IT staff - or depend on Denise to make the right decision - is within reach.  


Join us to learn: 

  • How can artificial intelligence and deep learning autonomously discover and categorize the millions of files your end users create and manage every day? 
  • What is Risk Distance TM analysis, and how does it work to crowd-source security policies? 
  • Who's using these techniques today and what are their use cases?

Sponsored by:

Concentric AI View details

 
 

Presented by:

Karthik Krishnan, CEO and Founder, Concentric AI

 
 

2:00 pm - 2:10 pm

Keynote Presentation

Closing Remarks