CISO New York Summit | February 6, 2018 | Grand Hyatt Hotel - New York, NY, USA

↓ Agenda Key

Keynote Presentation

Visionary speaker presents to entire audience on key issues, challenges and business opportunities

Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee." title="Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee.

Executive Visions

Panel moderated by Master of Ceremonies and headed by four executives discussing critical business topics

Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members." title="Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members.

Thought Leadership

Solution provider-led session giving high-level overview of opportunities

Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community." title="Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community.

Think Tank

End user-led session in boardroom style, focusing on best practices

Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard." title="Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard.

Roundtable

Interactive session led by a moderator, focused on industry issue

Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done." title="Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done.

Case Study

Overview of recent project successes and failures

Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions." title="Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions.

Focus Group

Discussion of business drivers within a particular industry area

Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions." title="Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions.

Analyst Q&A Session

Moderator-led coverage of the latest industry research

Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst." title="Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst.

Vendor Showcase

Several brief, pointed overviews of the newest solutions and services

Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences." title="Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences.

Executive Exchange

Pre-determined, one-on-one interaction revolving around solutions of interest

Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest." title="Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest.

Open Forum Luncheon

Informal discussions on pre-determined topics

Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch." title="Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch.

Networking Session

Unique activities at once relaxing, enjoyable and productive

Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive." title="Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive.

 

Tuesday, February 6, 2018 - CISO New York Summit

7:30 am - 8:10 am

Registration and Networking Breakfast

 

8:15 am - 8:25 am

Welcome Address and Opening Remarks

Moderated by:

Robert Knake, Senior Fellow for Cyber Policy, Council of Foreign Relations View details

 
 
 

8:25 am - 8:55 am

Keynote Presentation

Digital Transformation: A Journey Not a Destination

There are many forces that are driving companies to continue to transform how they do business. Technological advances such as IoT, AI, Machine Learning, Virtual Reality and Augmented Reality are creating demanding expectations from customers, employees and boards. Adding to the complexity of CIOs and CISOs is the increasing threats to the security of the data that is at the heart of digital transformation. This keynote presentation will focus on the realities that this transformation will never end and it is critical to implement both the mindset and processes to treat digital transformation as a journey...not a destination.

Takeaways: 

  1. It is critical to realize that Digital Transformation will never end, but will always be unfolding 
  2. CIOs and CISOs must implement processes to ensure that not only their departments are forward thinking, but that their entire company is aware of what new technologies can bring to bear for customers and employees
 

9:00 am - 9:30 am

Keynote Presentation

Case Studies in Digital Transformation: Learnings Along the Journey

We will explore key learnings from various industries and verticals on the good, the bad and the ugly of digital transformation. We will have an opportunity to not only be exposed to successful use cases, but also ask the hard questions behind those successes.

Takeaways:

  1. One of the best ways to learn is to hear the stories of success (and failure) from companies similar to yours 
  2. Asking questions of HOW the Journey unfolded are just as important as the end result
 

9:35 am - 10:00 am

Solutions Spotlight

Deep dives into the latest and greatest technology solutions to today's business problems.

 

10:05 am - 10:30 am

Executive Exchange

 

Think Tank

Designing a Digital Workplace: Balancing Security with Effectiveness

Employees are consumers of digital technologies such as IoT, AR and VR. The plethora of mobile devices has enabled them to work where they want and when they want which has raised the bar on employee expectations for tools and capabilities from their employers. In order for companies to retain the best and get the most out of their employees, it is vital to design and continually update the digital workplace. We will discuss the current trends as well as share case studies of successful digital workplace implementations including how to deal with the inherent security risks of expanded accessibility to company resources.

Takeaways:

  1. Highly skilled employees will demand a mobile and efficient workplace.  
  2. Keeping these skilled employees fully engaged and passionate about your company is critical to achieving the desired Digital Transformation

Presented by:

Carl Eyler, Head of Information Security (CISO of the Americas), Schroders View details

 
 
 

10:30 am - 10:45 am

Morning Networking Coffee Break

 

10:45 am - 11:10 am

Executive Exchange

 

Share:

Thought Leadership

The Connected Worker and the Enterprise of Things

The smartphone is the primary communication and computing device for many of today's consumers. This dependency on mobile devices will translate into a majority of enterprise computing outside of traditional PC computing. This will have the greatest impact with on campus (non-office-based) and off campus mobile workers who are becoming increasingly connected by rich real time communications powered by mobile applications running on wearable devices such as smart glasses. The rise of IoT in the enterprise, or the Enterprise of Things, will allow these workers to instantly connect with assets in the field to gain immediate understanding of the situation around them. 

This session will explore the impact that these connected workers and endpoints will have on your enterprise and its ability to drive growth. Attendees will also learn security concerns that come with these new tools and how to best address them.

Sponsored by:

BlackBerry View details

 
 
 

11:15 am - 11:40 am

Executive Exchange

 

Thought Leadership

Knowing is Half the Battle When it Comes to Protecting Applications and their Sensitive Data.

Application security testing tools scan your code to reveal the long lists of known vulnerabilities, but not all are remediated before the next release-even with mature secure software development practices. Enterprises resort to using theoretical levels of criticality - not actual risks-to prioritize which accumulated vulnerabilities to fix and in what order. Many vulnerabilities often undergo an exception process and make it into protocol.

A real-time, embedded solution like Prevoty's runtime application self-protection RASP changes the game completely. Prevoty places an automated security mechanism at the front of the line - directly in the application's operating environment - to immediately lower risk and act as a compensating control at runtime.

As such, Prevoty-enabled enterprises see 98%+ of their known vulnerabilities mitigated instantly, reducing backlogs and expediting an otherwise cumbersome release process. Prevoty RASP detects live production attacks and generates real-time security event longs and reports. Security teams can then correlate pre production vulnerability scan results with Prevoty's runtime attack logs to go back, remediate based on actual risk - not just hypothetical threats. The result? Improved forensics.

Presented by:

Kunal Anand, CTO, Prevoty, Inc. View details

 
 

Prevoty, Inc. View details

 
 
 

11:45 am - 12:10 pm

Executive Exchange

 

Executive Boardroom

Where Are We on Our Journey? Effective Dashboards for Security Decision Making

How fast are we going? Are we going in the right direction? How much fuel do we have in the tank? These are common questions for those on the move. Companies on a Digital Transformation Journey need effective dashboards to help them understand the myriad data sources screaming for attention. We will discuss best practices for the various types of dashboards that can be used to make the most important decisions for your company.

Takeaways:

  1. Digital Transformation is providing an increasing amount of data to be understood and analyzed in order to make the right decisions
  2. Effective dashboards are a key tenet of consuming this onslaught of data

Sponsored by:

Cybereason View details

 
 

Executive Boardroom

Navigating Security and Risk In a Changing IT Landscape

Agile, DevOps, containers, microservices, the cloud are all seeing increased adoption across the enterprise. But, while there are valid business reasons to embrace these new models, there is potential risk in implementation. Is this change necessary? If so, how can this change be accommodated effectively, safely? This session will cover some common elements of the risk of change - and of not changing - and suggest approaches to minimize risk as you adopt these new technologies.

Takeaways:

  1. The IT Landscape will continue to change leading to new processes, new technologies and new "standard" ways of doing IT business
  2. This changing Landscape will present security challenges where you will need to balance the "pain of same" vs the "pain of change"

 

12:15 pm - 1:25 pm

Working Lunch and Panel

CIOs/CISOs as the Consummate Communicator

It is also changing the role of the CIO and CISO to be a business leader and internal sales leader for transformation. CIOs are now responsible for communicating strategies and recommendations to CxOs, boards and key stakeholders within a company. Join us, during lunch, for a passionate panel discussion with your peers as they share how they are successfully communicating internally to accomplish the company's goals.

Takeaways:

  1. CIOs must be great communicators, not only with their teams, but the rest of the organization
  2. CIOs must learn the best ways to communicate clarity and urgency with Boards and CXOs

Panelists:

Carl Eyler, Head of Information Security (CISO of the Americas), Schroders View details

 
 

Thien La, CISO, Wellmark Blue Cross Blue Shield View details

 
 

Paul Wilner, CIO, Pall Corporation View details

 
 
 

1:30 pm - 1:55 pm

Solutions Spotlight

Deep dives into the latest and greatest technology solutions to today's business problems.

 

2:00 pm - 2:25 pm

Executive Exchange

 

Think Tank

Shifting left: Accelerating your business goals with DevSecOps

Gone are the days of siloed security and development teams. Innovation today is instead being driven by the bridge between these two teams, intersecting at the new model of DevSecOps. 
    
In this talk, I will describe how businesses can accelerate their goals, drive results, and fuel innovation by moving to a culture of DevSecOps. I will discuss the pressing need for security and operation team collaboration, how to outline a strategic framework for your organization, and how a continuous, integrated approach to application security allows companies to easily move forward with their digital transformations. 
    
Antiquated models that perpetuate contentious, manual, and reactive approaches to application security must be left in the past. Organizations today must ?shift left,? integrating security into the development lifecycle as early as possible. With unified visibility and reporting across these internal teams, CISOs can effectively and confidently answer, ?How secure are we?? 


Presented by:

Mike Kail, CTO, CYBRIC View details

 
 
 

2:30 pm - 2:55 pm

Executive Exchange

 

Thought Leadership

Can Technology Alone Prevent Phishing Attacks and Breaches?

In a world where we are talking about trusting self driving cars, will we totally trust self "threat assessing and action taking" cybersecurity systems? Is technology enough? What is the human role in both preventing and responding to attacks.

Takeaways:

  1. Employees continue to be one of the leading, if not the leading, entry point for security breaches
  2. Training about cyber attack approaches such as Phishing is important but using technology can help employees more consistently identify outside forces attempting to harm your company

 

3:00 pm - 3:25 pm

Executive Exchange

 

Think Tank

Machine Learning, Blockchain and IoT: What are they and why should CISO's care

New technology and solutions are providing both opportunities and challenges for CISOs.   We will explore some of these game changing technologies including Machine Learning, Blockchain and Internet of Things.  A quick review of what they are and why you should care.  

Takeaways:

  1. New technologies provide both opportunities and challenges for CISOs
  2. Why should a CISO care about Machine Learning, Blockchain and Internet of Things

Presented by:

Karl Schoen-Rene, Director of IT Security (Acting CISO), Knights of Columbus View details

 
 
 

3:25 pm - 3:40 pm

Afternoon Networking Coffee Break

 

3:40 pm - 4:05 pm

Executive Exchange

 

Think Tank

Disrupt or Be Disrupted: The Digital Transformation Journey Has No Parking Lots

The seemingly ever expanding cadre of technological tools available to incumbent industry leaders are also available to myriad start-ups. Start-ups are using these new technologies to disrupt industries of all types, changing how customers think about tried and true industries. Disruption is found on every corner and it is critical for CIOs to lead their organizations in a way that make them as nimble as their competitors.

Takeaways:

  1. Technology enables companies, especially start-ups with no legacy infrastructure, to disrupt industries overnight
  2. CIOs need to lead their companies in ways that disrupt before they are disrupted by others

Presented by:

Thien La, CISO, Wellmark Blue Cross Blue Shield View details

 
 
 

4:10 pm - 4:35 pm

Executive Exchange

 

Innovation Partners Showcase

A brief, but compelling review of three new innovative technologies supporting digital transformation.

 

4:40 pm - 5:00 pm

What's the Next Stop On the Transformation Journey?

Our Governing Board will summarize the learnings from the day and discuss the path forward for building an ongoing community of CIOs where common issues can be addressed and success stories can be shared.

Takeaways:

  1. Building an ongoing community with your peers can be an invaluable resource for tackling the Digital Transformation projects ahead of you
  2. Sharing stories of success (and failures) is not reserved to a one day CIO Summit but should be shared on a regular basis with your peers

 

5:00 pm - 6:30 pm

Summit Happy Hour