08:30 - 09:00
Arrival, registration & breakfast networking
09:00 - 09:15
Introduction from the Network Group & Chairperson
A brief introduction to the event software, SNS — this software, unique to the industry, empowers our attendees to make the most effective use of their time at the event by maximizing networking opportunities. The software designs a personalised agenda & enables attendees to arrange one-to-one meetings with each other. This will be followed by a welcome from the chairperson.
Jeevan Lobo, VP – Security & Governance, Citi
09:15 - 09:45
Designing Information Security Strategies to Suit Business Needs
- Engaging with senior leaders to inform business priorities for information security policies
- Collaborating with staff to improve the usability of cyber security controls as part of working processes
- Guidance on using cyber security measures to create a competitive advantage against competitors
Michael Holcomb, Fellow & Director of Cyber Security, Fluor
09:45 - 10:15
Implementing Company Updates to Meet National Information Security Standards
- Working with all departments to understand changes required to adhere to new SEC regulations
- Tools and resources to increase efficiency in data collection processes as part of improving transparency around cyber security measures
- Regular reviews of information security measures to ensure they meet new national requirements
Richard Mendoza, Senior Director, Privacy & Regulatory Compliance, Anywhere Real Estate
10:15 - 10:45
Addressing Workforce Security Skills Shortages to Ensure Cyber Resilience
- Evaluating team capabilities to identify gaps in cyber security knowledge and inform training schemes
- Adapting security resilience initiatives to tackle human error incidents
- Key tips on securing resources from senior leaders to provide security skills training
Sajed Naseem, CISO, NJ Judiciary
10:45 - 11:00
Coffee break & networking
11:00 - 11:25
Workshop 1
Continuous Threat Exposure Management: A Step Change in Vulnerability Management
Chris Keller, Senior Sales Engineer, XM Cyber
11:25 - 11:50
Networking
11:50 - 12:15
Workshop 2
Hosted by KnowBe4
12:15 - 12:40
Networking
12:40 - 13:05
Workshop 3
Navigating the Impact of DORA: What US Companies should know about the new EU DORA Regulation
Rob Jonson, Senior Manager, MorganFranklin Consulting
11:00 – 13:05
One-to-One meetings
Intelligently matched one-to-one meetings:
- Vulnerability Management
- Security Awareness
- Data Governance & DLP
- Threat Intelligence
- PUM & Authentication
- Cloud Security
- Third Party Risk Management
- GRC
- Malware Protection
- Identity & Access Management
- Application Security
- Mobile Security
- AI Cyber Security
- Zero Trust
13:05 - 14:00
Networking lunch
Stream 1 - Digital Innovation
14:00 - 14:35
Expanding Detection Capabilities to Prevent Cyber Security Threats Escalating into Incidents
- Ensuring all staff understand their responsibilities in identifying and reporting security threats
- Evaluating security incident data to identify emerging trends in cyber threats
- Regular reviews of detection tools to tackle increasingly sophisticated attacks
Mehan Kasinath, VP, Enterprise Information Security, IAC
Stream 2 - Security Workforces
14:00 - 14:35
Adapting Recruitment Strategies to Ensure Diverse Teams & Expand Workforce Capabilities
- Designing recruitment schemes to create teams with a broader range of backgrounds and experiences
- Creating entry points at different levels of seniority to attract more applicants for cyber security roles
- Key tips on using diverse hiring panels to tackle unconscious biases in recruitment processes
Andrew Stravitz, Regional CISO, Veolia
Stream 1 - Digital Innovation
14:35 - 15:10
Zero Trust: It’s a Concept, Not a Product
- Doing good security does not mean buying a security product
- Security needs to be baked in, not added on
- Real security is everyone’s job, not just the security department!
Joel Rosenblatt, Director, Computer & Network Security, Columbia University
Stream 2 - Security Workforces
14:35 - 15:10
Leadership Strategies to Support Talent Development & Retention Policies
- Working with employees to establish professional goals and ensure internal progression opportunities for all staff
- Professional development schemes to expand staff skillsets and reduce employee turnover
- Designing interventions to identify and support employees struggling with their workload
Tamika Bass, Director, Cyber Security, Gannett Fleming
15:10 - 15:25
Coffee break & networking
15:25 - 15:50
Workshop 4
SOC Renovation: 3 principles to adapt to detection & response at the scale of threats
15:50 - 16:15
Networking
16:15 - 16:40
Workshop 5
Defense against the hidden supply chain: Uncovering third-party risk to the Nth tier
16:40 - 17:05
Networking
15:25 – 17:05
One-to-One meetings
Intelligently matched one-to-one meetings:
- Vulnerability Management
- Security Awareness
- Data Governance & DLP
- Threat Intelligence
- PUM & Authentication
- Cloud Security
- Third Party Risk Management
- GRC
- Malware Protection
- Identity & Access Management
- Application Security
- Mobile Security
- AI Cyber Security
- Zero Trust
17:10 - 17:50
Panel Discussion: Developing Response Plans to Manage the Impact of Ransomware Attacks
- Engaging with all staff to recognize and report potential cyber security events
- Embedding joined-up procedures in response to ransomware attacks to recover damaged assets
- Crisis leadership strategies to ensure all employees understand and fulfil their role in tackling ransomware attacks
Amit Basu, VP, CIO & CISO, International Seaways
Steve Rocco, Director, Information Technology Security, Matthews International Corporation
19:00
Networking dinner & drinks reception
08:30 - 09:00
Morning registration & breakfast
09:00 - 10:10
Roundtable discussions
Join group discussions with your peers on some of the most challenging & significant information security topics – please confirm attendance prior to the session. Each host will facilitate the discussion & give a short presentation of key findings in the wrap up session.
Roundtable 1: Security Partnerships
Ajith Edakandi, Director, Managed Security Services of Product Management, Hughes Network Systems
Roundtable 2: Security Compliance
Alex Bermudez, CISO & Product Security Officer, Fisker
Roundtable 3: Incident Response
Michael Holcomb, Fellow and Director of Cyber Security, Fluor
Roundtable 4: AI & ML
Jajati Samal, Director, Cyber Security, Bristol-Myers Squibb
Roundtable 5: Risk Management
Kwadwo Buachie, Director, Information Security, Inova
Roundtable 6: Maintaining Privacy
10:15 - 10:45
Roundtable wrap-up by the Chairperson
Each host gives a short overview of key findings from their discussion & creates an ideas board to be distributed post event with the presentations.
10:45 - 11:00
Coffee break & networking
11:00 - 11:25
Workshop 6
Overcoming the disconnect between what you see & what attackers see
11:25 - 11:50
Networking
11:50 - 12:15
Workshop 7
Best practices for effectively addressing third-party security risk
12:15 - 12:40
Networking
12:40 - 13:05
Workshop 8
Advanced endpoint protection
11:00 – 13:05
One-to-One meetings
Intelligently matched one-to-one meetings:
- Vulnerability Management
- Security Awareness
- Data Governance & DLP
- Threat Intelligence
- PUM & Authentication
- Cloud Security
- Third Party Risk Management
- GRC
- Malware Protection
- Identity & Access Management
- Application Security
- Mobile Security
- AI Cyber Security
- Zero Trust
13:05 - 14:00
Networking lunch
Stream 1 - Collaborative Cyber Security
14:00 - 14:35
Working Across All Departments to Strengthen Organization-Wide Security
- Guidance on sharing security information to identify gaps in company-wide defenses
- Implementing joined-up processes for all staff to appropriately raise concerns about security risks
- Engaging with senior leaders to secure resources for strengthening security measures
James Kim, Director of Strategy & Programs, City National Bank
Stream 2 - Security & Technology
14:00 - 14:35
Embedding New Security Technology to Improve Operational Resilience
- Evaluating security technology options to ensure new software contributes towards cyber resilience objectives
- Engaging with teams to incorporate new technology into working processes
- Key advice on utilizing new software to tackle risks with user authentication in working systems
Ramachandra Hegde, CISO, Genpact
Stream 1 - Collaborative Cyber Security
14:35 - 15:10
Using AI to Tackle Cyber Risk within Supply Chains
- Utilizing risk management measures as part of procurement processes for new suppliers
- Incorporating data sharing agreements into supplier contracts to tackle cyber risks in partnerships
- Supporting venders to evaluate their security measures and improve cyber resilience within supply chains
Keith Dempsey, CISO, Aris Global
Stream 2 - Security & Technology
14:35 - 15:10
Establishing Benchmarks to Monitor the Performance of Security Controls
- Adapting security benchmarks to suit the size and priorities of an organization
- Tools to collect benchmark data and monitor trends in the performance of security measures
- Evaluating the performance of security controls to inform future benchmarks
Jajati Samal, Director, Cyber Security, Bristol-Myers Squibb
15:10 - 15:55
Panel Discussion: Developing Governance & Accountability Policies to Strengthen Organization-Wide Cyber Resilience
- Embedding information security into decision-making processes to develop cyber resilient working practices
- Aligning security governance strategies to support other company objectives and priorities
- Implementing accountability frameworks to determine the impact and responsibility of risk decisions made by senior leaders
Raj Sharma, VP, Head, Information Security, Northern Bank
Atif Butt, Associate VP, Cyber Security, NBA
Edward Bezerra, VP, Infrastructure Operations (I & O, Enterprise Architecture & Cyber Security), K. Hovnanian
15:55 - 16:00
Closing remarks from the Chairperson