CISO Boston Summit | Nov. 16, 2021 | Westin Boston Waterfront - Boston, MA, USA

agenda

PDF Download Agenda (PDF)

↓ Agenda Key

Keynote Presentation

Visionary speaker presents to entire audience on key issues, challenges and business opportunities

Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee." title="Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee.

Executive Visions

Panel moderated by Master of Ceremonies and headed by four executives discussing critical business topics

Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members." title="Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members.

Thought Leadership

Solution provider-led session giving high-level overview of opportunities

Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community." title="Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community.

Think Tank

End user-led session in boardroom style, focusing on best practices

Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard." title="Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard.

Roundtable

Interactive session led by a moderator, focused on industry issue

Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done." title="Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done.

Case Study

Overview of recent project successes and failures

Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions." title="Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions.

Focus Group

Discussion of business drivers within a particular industry area

Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions." title="Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions.

Analyst Q&A Session

Moderator-led coverage of the latest industry research

Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst." title="Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst.

Vendor Showcase

Several brief, pointed overviews of the newest solutions and services

Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences." title="Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences.

Executive Exchange

Pre-determined, one-on-one interaction revolving around solutions of interest

Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest." title="Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest.

Open Forum Luncheon

Informal discussions on pre-determined topics

Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch." title="Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch.

Networking Session

Unique activities at once relaxing, enjoyable and productive

Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive." title="Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive.

 

Tuesday, November 16, 2021 - CISO Boston Summit

8:40 am - 9:10 am

Registration & Networking Breakfast

 

9:10 am - 9:20 am

Welcome Address

 

9:20 am - 10:00 am

Share:

Keynote Panel

2022 Focus: CIOs and CISOs as Transformation Leaders

Before the Covid-19 pandemic, the remote/in-office working style was probably sitting at around 20/80. As we all know, the pandemic dramatically and rapidly flipped these numbers, with companies across all industries around the world being forced to adapt quickly to a remote environment due to the pandemic lock-downs. With this rise in the proportion of work from home came the term 'hybrid workplace' and its importance in the quickly evolving workplace landscape. Join this session to find out the challenges being faced by our Chief Information and Technology leaders and their transitions from an office environment to a hybrid one, and what this means for 'the future of work'.

Panelists:

John Glennon, CIO, Massachusetts Bay Transportation Authority

 

Natalie Gil, Chief Technology Officer, Chief Architect and Digital Strategist, Auna

 
 

10:05 am - 10:20 am

Share:

Keynote Presentation

Welcome to the Era of Flexibility: Why Agility is the Key to Getting Ahead

There is no doubt that the workplace has undergone an unprecedented transformation in the last few years. As IT leaders prepare for what's next, it's key that they are strategic in determining which technology best supports their employees by keeping them secure and productive. Hear from the Chrome Enterprise team on what's next for work and how leaning into solutions that provide flexibility and agility will future proof your business.

Sponsored by:

Google View details

 
 

Presented by:

Robert DeVito, Global Director, Chrome Customer & Partner Sales Engineering, Google

 
 

10:20 am - 10:30 am

Networking Session

AM Break
 

10:30 am - 10:55 am

Executive Exchange

 

Think Tank

Building Sustainable Software and Data Infrastructures - The Data/Software Ecosystem
In this presentation I will provide a short overview of Boston Children's Hospital and Harvard Medical School initiatives: 
  •  Children's Rare Disease Cohorts (CRDC) genomic analysis program 
  • SBGrid Consortium global software consortium for CryoEM, Crystallography and NMR 
 I will discuss how the two initiatives evolved to support unique needs of scientific communities. Hybrid research computing infrastructures and sustainability models will be reviewed.

Presented by:

Piotr Sliz, Chief Research Information Officer, Boston Children\'s Hospital

 

Think Tank

Breaking Cloud Third-party Risk Assessments Bad

This presentation will focus on how to properly perform third-party risk assessments on your cloud providers and what sort of transparency should and shouldn't be expected.

Presented by:

James Baker, Director of Cloud Security and Operations, PerkinElmer

 
 

11:00 am - 11:25 am

Executive Exchange

 

Executive Boardroom

Automate Third-Party Identity and Risk Processes

Today, organizations provide 'internal' access to more third-party 'outsiders' including vendors, supply chain, partners, and even bots (and 'things') than ever before.  However, most organizations are not able to automate key identity processes like onboarding, auditing, and offboarding for their third-party users.

SecZetta believes that security leaders must automate their third-party identity and risk process to:

  • Reduce onboarding cost and time
  • Improve risk mitigation with fewer orphaned accounts, third-party incident response capabilities, and timely offboarding
  • Confirm that users - especially those who are remote, are who they claim to be

Sponsored by:

SecZetta View details

 
 

Presented by:

Jason Hobart, Chief Revenue Officer, SecZetta

 
 

11:30 am - 11:55 am

Executive Exchange

 

Think Tank

Sustainable Digital Transformation

To remain competitive ALL companies must regularly transform an adapt to change. New industry developments and technological advancements have the potential to expand current revenue streams or open doors to new business opportunities. If done poorly or incorrectly companies expose themselves to reputation risk, customer loss and financial downturns. 

Throughout her career, Alina Aronova has successfully led an array of business transformations in diverse functional areas, industries, and organizations. Each transformation brought its own unique obstacles and challenges. Come learn the secrets to Alina's success as she shares stories, insights, and the tools she uses to be an effective change agent of business transformation.

Key Takeaways: 

- How to forge a successful career in business transformation 

- Defining, organizing and leading transformations 

- Lessons learned through success and failure 

- Competitive advantage

Presented by:

Alina Aronova, SVP of Technical Operations, Global Technology, Cengage Learning View details

 
 

Fireside Chat

Evolving The Privacy Landscape (TBC)

As the pandemic built and more and more organizations went hybrid or virtual, privacy became more of a concern than ever before. Protecting data took on a whole new meaning. As such รข?" the role of security executives continues to evolve and the level of privacy individuals had was put under the microscope. Michael Woodson, Director of Info Security and Privacy, Sonestra Hotels joins J.D. Miller for a fireside chat as they dive into the evolving privacy landscape.

Presented by:

Michael Woodson, Director of Information Security and Privacy, Sonesta International Hotels Corporation

 
 

12:00 pm - 12:25 pm

Executive Exchange

 

Executive Boardroom

Innovate Faster & Improve Business Responsiveness with Your Digital Transformation Program

Today's businesses face unprecedented pressures to quickly respond to dynamic market conditions while optimizing costs.  Digital transformation programs can accelerate business agility and innovation while creating 'ecosystems' of knowledge. Join this session to learn 5 digital transformation best practices that bring together IT and the Business in order to drive rapid innovation and deliver tangible business outcomes.


Sponsored by:

Freshworks View details

 
 

Presented by:

Payal Patel, Sr Mgr for Solution Engineering, Freshworks

 
 

12:30 pm - 12:55 pm

Think Tank

Reimagining Business with Data Analytics & AI

How do you scale up digital and data platforms while empowering everyone in the company to drive commercial value through technology? Matt Griffiths shares his experiences of being a forward-thinking technology leader in an ever-changing world.

Presented by:

Matt Griffiths, Vice President, Data-Driven Transformation, Stanley Black & Decker View details

 
 
 

1:00 pm - 1:55 pm

Open Forum Luncheon

Networking Lunch
 

2:00 pm - 2:25 pm

Executive Exchange

 

Fireside Chat

The Audit & IT Journey in Cloud Migration
Migration from legacy data centers and technologies to the cloud presents an opportunity to reset your companies technology and control environment and start with a blank slate. It also presents an opportunity for the Technology organization to deepen an already strong partnership with their Audit organization or reset that partnership and start with a blank slate. In this fireside chat J.D. and Alex will discuss how Liberty's Global Internal Audit departments partnership with Liberty's Technology organization in their ongoing cloud migration can be used as a model by other companies as they start or continue their own migration to the cloud.

Presented by:

Alex Keeler, Vice President & Head of IT Audit, Liberty Mutual Insurance View details

 
 
 

2:30 pm - 2:55 pm

Executive Exchange

 

Thought Leadership

CDM Tech Advocates

Our community has a strong belief that talent is the main ingredient to help an organization pivot quickly in today's environment, and ultimately ensure a successful digital transformation. According to the 2021 Fortune/Deloitte CEO Survey, 94% of responding executives list DEI (diversity, equity, and inclusion) as ?a personal strategic priority/goal? with 90% saying their organization aspires to be an industry leader in this space. Join us for a regional spotlight on how business practices and technology can be designed to meet the needs of an increasingly diverse society

Sponsored by:

Semperis View details

 
 
 

3:00 pm - 3:25 pm

Executive Exchange

 

Think Tank

Leveraging Machine Learning and Artificial Intelligence to Increase Efficiency (Healthcare)

In most hospitals where surgery is performed, there is always a drive to ensure the patients, the physicians and the staff enjoy an efficient and streamlined experience on their day of surgery. To ensure this, the organization needs a way to better predict the surgical case time. 

 Past general guidelines didn't account for the specific needs or the condition of the patient, the specific provider as well as many other factors. As a result, everyone can become frustrated with the surgical experience. 

 By leveraging machine learning, we can now better predict a case duration and schedule the surgical day accordingly.

 Takeaways: 

  • Gain a better understanding of machine learning models 
  • Avoid pitfalls when choosing the data to include in a model 
  • Best practices for structuring and preparing the data for a model 
  • Operationalizing is the key to success

Presented by:

Michael Ricci, Chief Information Officer, Massachusetts Eye & Ear

 

Think Tank

Understanding Cyberattack Risk in Your Organization: Time to Re-evaluate the Fundamentals?

The rapid change in the threat landscape and the increase in the sophistication of the attacks requires the CISO to have razor-sharp focus on cyber battlefield. Even with a razor-sharp focus this could be an overwhelming task. What happens if the CISO is dragged into Priority wars, Budget wars, Resource wars, etc with the other leaders like CIO, CTO?

  • Can organization survive the cyber war front by being divided? 
  • How CISOs can unite the leaders in the organization to take a unite stand in this cyber war?  
Come join us in learning how HMH has transformed and takes a united stand in the cyber war.

Presented by:

Selva Mahimaidas, Chief Information Security Officer, Houghton Mifflin Harcourt

 
 

3:30 pm - 3:55 pm

Executive Exchange

 

Executive Boardroom

Rise of Next-Gen Software Supply Chain Attacks

Legacy software supply chain "exploits", such as the infamous Struts incident at Equifax, prey on publicly disclosed open source vulnerabilities that are left unpatched in the wild. Conversely, next-generation software supply chain "attacks" are far more sinister because bad actors are no longer waiting for public vulnerability disclosures. Instead, they are actively injecting malicious code into open source projects that feed the global supply chain.

Join in this session led by Brian Fox, CTO and Co-founder at Sonatype to:

  • Understand software supply chain attacks and their impact on the open source ecosystem
  • Deep dive into prominent real-world examples of typosquatting and brandjacking malware
  • Learn how your organization can proactively protect itself against software supply chain attacks


Sponsored by:

Sonatype View details

 
 

Presented by:

Brian Fox, CTO and Co-founder, Sonatype

 
 

4:00 pm - 4:25 pm

Executive Exchange

 

Thought Leadership

CIO Checklist: Enterprise Architecture for FDIC-Supervised Firms

Enterprise architecture is an area of growing interest for the Federal Financial Institutions Examination Council. The latest FFIEC IT Examination Handbook, released on June 30, 2021, focuses specifically on architecture, infrastructure, and operations (AIO), and its combination with DevOps. The FFIEC IT Examination Handbook essentially is setting regulatory guidelines and expectations for AIO. 

This presentation explains the changing role of enterprise architecture and how the practice delivers value to firms supervised by the Federal Deposit Insurance Corporation (FDIC). The presentation also outlines an architecture best practice checklist that will allow chief architects and their chief technology officers to continue to deploy the latest technology in ways that keep regulators happy. 

Takeaways: 

  • Scope of the new June 30, 2021, FDIC Examination Standards as they impact architecture 
  • Checklist that examines the approaches CIOs, CTOs, and chief architects can take to align architecture to the new guidelines
  • Implications on architecture best practices, funding, and organization

Sponsored by:

Aite-Novarica View details

 
 

Presented by:

Mitch Wein, Head of Financial Services Executive Partner Service, Aite-Novarica

 
 

4:30 pm - 5:00 pm

Keynote Presentation

The CIO vs CISO
Believe it or not, tech and security leaders aren't always aligned. The last couple of years put unique stresses and strains on both leaders. It wasn't long ago that CIOs moved from being technologists to having a much larger role as key strategists for their organisations. Many CISOs found themselves in similar situations going through the pandemic as workers across the globe got thrust into a work-from-home world. Keeping organisations safe and secure moved from a line-item on an agenda to the main initiative at the top of every meeting. CISOs are having a seat at the table more than ever before. Companies had to find a way to work remotely and secure with minimal lead time. For many industries that created tension between the CIO and the CISO. But as our panel will point out, there doesn't have to be a turf war and a well-planned alignment between the two executives can overcome roadblocks to success and lead organisations to a brighter future. Join this session to find out how an environment that features give-and-take between smart, motivated, and innovative executives can help drive optimal business outcomes.

Presented by:

Michael Ricci, Chief Information Officer, Massachusetts Eye & Ear

 

Selva Mahimaidas, Chief Information Security Officer, Houghton Mifflin Harcourt

 
 

5:05 pm - 5:15 pm

Closing Remarks

 

5:20 pm - 6:30 pm

Summit Happy Hour