CISO Boston Summit | Jun 25, 2020 | Digital Event - Real-time Online Conversations,

↓ Agenda Key

Keynote Presentation

Visionary speaker presents to entire audience on key issues, challenges and business opportunities

Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee." title="Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee.

Executive Visions

Panel moderated by Master of Ceremonies and headed by four executives discussing critical business topics

Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members." title="Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members.

Thought Leadership

Solution provider-led session giving high-level overview of opportunities

Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community." title="Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community.

Think Tank

End user-led session in boardroom style, focusing on best practices

Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard." title="Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard.

Roundtable

Interactive session led by a moderator, focused on industry issue

Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done." title="Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done.

Case Study

Overview of recent project successes and failures

Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions." title="Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions.

Focus Group

Discussion of business drivers within a particular industry area

Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions." title="Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions.

Analyst Q&A Session

Moderator-led coverage of the latest industry research

Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst." title="Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst.

Vendor Showcase

Several brief, pointed overviews of the newest solutions and services

Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences." title="Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences.

Executive Exchange

Pre-determined, one-on-one interaction revolving around solutions of interest

Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest." title="Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest.

Open Forum Luncheon

Informal discussions on pre-determined topics

Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch." title="Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch.

Networking Session

Unique activities at once relaxing, enjoyable and productive

Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive." title="Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive.

 

Thursday, June 25, 2020 - CISO Boston Summit

9:15 am - 9:30 am

Welcome Registration & Opening Remarks

 

9:30 am - 10:00 am

Keynote Panel

Steering Cultural Change

An IT executive's role, goals and objectives have drastically changed over the years. Most leaders supervise teams and units beyond their IT department. Due to these changes in responsibilities, their success is measured in greater business metrics. As a result, these roles have become both more attractive and more demanding.  

Takeaways: 

  • What are the significant changes regarding the role of the IT Executive 
  • How to keep up with the changing requirements 
  • How to properly measure an IT executive's success

Moderated by:

Theresa Graziosi, CAO, State Street

 

Panelists:

Esmond Kane, CISO, Steward Health Care System

 

Brian Shield, CIO VP IT, Boston Red Sox View details

 
 

Esmond Kane, CISO, Steward Health Care System

 
 

10:00 am - 10:30 am

Keynote Presentation

Managing Digital Risk Amid Disruption

Digital transformation is not only changing how companies think about business. It is changing how we think about risk. We need to *act* on risk, not worry about it. We need to start and end with the basics. Join RSA as we review several key areas of digital risk management to target as you are challenged to be a key contributor in your organization's digital journey.

Sponsored by:

RSA View details

 
 

Presented by:

Ben Smith, Field Chief Technology Officer (Field CTO - US), RSA View details

 
 
 

10:30 am - 10:50 am

Executive Exchange

 

Think Tank

Bring Your Own . . . Enhancement

Over the next 5 years, it's forecasted that roughly 30% of enterprises will augment BYOD policies to include 'bring your own enhancement' (BYOE) to add focus to augmented staff members. It will be tempting for IT to try and regulate or control human augmentation technology, but the real focus should be to exploit the employee's interest in BYOE to advance the business. We are seeing manufacturing companies currently using wearables to promote worker safety, and companies in both travel and healthcare industries are using these devices to boost productivity. With these technologies constantly evolving, organizations should contemplate how these enhancements can be leveraged in both the personal and professional lives of the workforce. 

Takeaways: 

  •  Impactful examples of BYOE  
  • Technology Strategies to encourage employees to use AI
  • Critical considerations for IT's need to regulate Augmented Technology

Presented by:

Christy Peel, Former Global Information Security Officer & Risk Manager, Novartis

 

Jeffrey Moore, Global Head of Cyber-Security, CISO, Novartis

 
 

10:50 am - 11:10 am

Executive Exchange

 

Executive Boardroom

Bigger, Faster, & Safer: Optimizing Third-Party Risk at Scale

Most vendor risk management programs rely on questionnaires, policy artifacts, and audits to assess the risk of parterining with third-parties. This practice places trust in the vendor where there may have been no prior relationship, can be a drawn out process as vendors attempt to gather information on sometimes hundreds of questions, and puts a heavy burden on the assessing organization as they evaluate the responses and documents received from the prospective vendor. As the 3am informercials say, there's got to be a better way! 

Join our session to find out how data-centric assessments provide an objective metric and move the outcome of TPRM programs from reduction of liability to reduction of risk.

Sponsored by:

BitSight Technologies View details

 
 

Presented by:

Chris Poulin, Principal Consulting Engineer, BitSight Technologies View details

 
 
 

11:10 am - 11:30 am

Executive Exchange

 

Share:

Think Tank

Data 2020, The Duality of Fueling AI and Addressing Data Risk

This year will offer a wake-up call for many, as the overall cost of getting data wrong will be realized. CIOs will be pulled between business growth strategies focusing on AI and the increasing cyber-imperative of addressing the critical data risk issues. As data is sourced from a complex portfolio of applications; successful transformations will need to balance convincing gatekeepers to say yes, the use of intelligent automation to deliver compelling initiatives for data cleansing, integration, and management, and the overall IT support of the exponentially increasing demand for data overall. Successful leaders will need to leverage concepts like technical debt to deliver the budget increases they need to deliver and manage the potential that data represents. 

Takeaways: 

  • A technical debt view รข?" how mishandling data drives financial cost 
  • How AI improves predictability in safeguarding data 
  • IT teams can be more effective at cleaning and organizing data

Presented by:

Srinivasan Sankar, Chief Data Officer, The Hanover Insurance Group View details

 
 
 

11:30 am - 11:50 am

Executive Exchange

 

Executive Boardroom

Deliver Hybrid Cloud Your Way

To Cloud or not to Cloud? This is no longer a binary decision. The better question to ask is, ?Which cloud for which app?? Your ability to build without technology restrictions, hyper- specialized skill requirements, or costly vendor lock-in is a business imperative. You understand that flexibility and choice of technology is critical for allowing you to tailor your cloud approach to exactly what your business needs. You want to pair the speed and agility of public cloud with the performance and security of private cloud without relying on specialized tooling or dealing with vendor lock-in. Join us and learn why 85% of enterprises are choosing hybrid cloud as the ideal IT operating model and how delivering hybrid cloud your way gives you the flexibility to pick the right resources for the right workload and adjust seamlessly as your business grows.

Sponsored by:

Nutanix View details

 
 

Presented by:

EJ Bodnar, Global CXO Leader, Nutanix

 
 

11:50 am - 12:10 pm

Executive Exchange

 

Share:

Think Tank

Automating Cybersecurity

IT security professionals all face one major issue: being asked to do more, with less resources. Automation and integration are a necessity in order to meet the demands of an organization's security needs. Managing risk without diminishing the speed and quality of development is achievable by integrating security into agile processes, like DevOps or CI/CD. Since most security teams are understaffed, automated solutions are becoming a requirement, rather than an option to properly manage the ever-increasing workload. 

Takeaways: 

  1. Automation is required to meet today's security demand 
  2. DevOps can operate more efficiently with CI/CD 
  3. IT security staff are responsible for more than ever

Presented by:

Richard Barretto, Manager, Security Operations, Cimpress (Vistaprint)

 
 

12:10 pm - 12:30 pm

Executive Exchange

 

Thought Leadership

You Need to Know Who Is Accessing Your Data, But Do You Really?

Knowing who is accessing what data is at the heart of security. Today, users and attackers get to your data through a mesh of web applications, APIs, and microservices. Unfortunately, your database logs only report the querying source as an authorized intermediary application without the originating requestor's information. This blind spot causes glaring gaps during audits, slows incident response, and impede breach detection. 

Learn how to apply new ways of continuously linking originating users' information to every database access with cohesive interworking between edge WAF, server RASP, and Data Activity Monitoring tools.

Sponsored by:

Imperva View details

 
 

Presented by:

Tim Chang, VP WW Sales Engineering, Imperva View details

 
 
 

12:30 pm - 12:50 pm

Executive Exchange

 

Executive Boardroom

How Deep Learning is Transforming How Organizations Security Their Environments

Security leaders are under pressure to deliver consistent security across a diverse environment with ever-changing business requirements. Those responsible for securing the business continually looking for new and innovative ways to achieve the expected security levels often without the ability to increase their budget or human capital. 

 Forward leaning leaders are adopting a new approach to security built around the fundamental principles of mathematics and physics called Deep Learning. 

 In this informative session, you will 

  • Learn about deep learning 
  • See how Deep Instinct is applying deep learning 
  • See how the deep learning methodology can drive wholesale shifts in how security leaders allocate their budgets and resources.

Sponsored by:

Deep Instinct View details

 
 

Presented by:

Steve Salinas, Head of Product Marketing, Deep Instinct

 
 

12:50 pm - 1:10 pm

Executive Exchange

 

Think Tank

AI: Friend or Foe?

Advances in artificial intelligence (AI) are introducing new technologies to a wide array of products across every industry, especially cybersecurity. Facial recognition and natural language processing have become a reality thanks to deep learning algorithms, however, there is a dark side to these advancements. Cybercriminals have managed to weaponize AI to create extremely intricate malware and attack methods. This has forced organizations to use advanced heuristic solutions rather than counting on known vulnerability and attack signatures. 

Takeaways: 

  1. Artificial Intelligence products are already being deployed in many industries 
  2. Features like facial recognition and chat bots are common examples 
  3. Cybercriminals can weaponize this technology without proper security measures

 

1:10 pm - 1:15 pm

Closing Remarks