Speaker:
Christopher Krebs, Director of Cybersecurity and Infrastructure Security Agency (CISA), Department of Homeland Security

In terms of election cybersecurity, is the U.S. better off in 2020 than it was in 2016? Christopher Krebs, Director of the Cybersecurity and Infrastructure Security Agency, answers this question and more in an exclusive keynote that tackles:

• The state of election security
• Myths and realities about foreign influence
• What has been done to ensure election resiliency

Speaker:
Randy Trzeciak, Director, CERT Insider Threat Center, CMU

A remote workforce. Economic stress. Pandemic fatigue. These ingredients create a "perfect storm" for insider risk, whether through malicious acts or accident. What can you do to improve monitoring and mitigation of insider risk in these unique conditions?

Randy Trzeciak, director of the CERT Insider Threat Center at Carnegie Mellon University, is one of the world's leading authorities on preventing, detecting, and responding to insider incidents. In this exclusive session, he details:

• The latest research on insider incidents
• Unique risks created within today's remote workforce
• How to mitigate the risks posed by malicious and unintentional insider threats

Speaker:
Patrick Vowles, Team Lead - North America Marketing, IBM Security

As organization adopt new technologies and utilize the cloud for business innovation and growth, security teams are challenged with ensuring that those initiatives and missions are successful. To do that they are faced with creating an effective security program from a fragmented patchwork of solutions and data sources that really don't interoperate very well without a great deal of development work.

Join us to hear how a number of leading vendors are coming together with the intent of creating an open source platform to allow security solutions to communicate over a standard fabric during the entire threat management life cycle, from threat hunting, analytics and detection through to incident response and orchestration.

Speaker:
Ryan Poppa, Director of Product Management at Cisco Cloud Security

How well do you really know your environment, your security practices and policies? Do you know the tools, techniques, and procedures that cyberattackers use to exploit your vulnerabilities?

Join Cisco Umbrella cybersecurity expert Ryan Poppa exposes the inner workings of a crafty cyberattack.

In his presentation, you'll learn:

• Why you have been targeted for attack
• How cybercriminals penetrate environments
• What tactics they use to pivot from system-to-system while escalating privileges along the way
• How they are capable of easily exfiltrating sensitive data out of your organization
• Where your biggest threats may exist

Ryan will also share key insights on how you can protect your organization against these malicious actors and improve your cybersecurity posture with immediate results.

Speakers:
Alex Corstorphine, Lead Security Solutions Engineer, Rapid7
Jeremy Snyder, Senior Director of Business Development and Solutions Engineering, Rapid7

Strong identity and access management (IAM) is one key to preventing data breaches and limiting the blast radius should a security incident occur. But cloud IAM presents a new set of constructs for organizations to build and manage. Is cloud IAM the best identity and access control ever, or yet one more reason to tear your hair out in frustration? Join Jeremy Snyder, Senior Director of Solutions Engineering, and Alex Corstorphine, Senior Solutions Engineer, from DivvyCloud by Rapid7 for an active discussion and debate. Topics will include why managing cloud IAM is so complex, what challenges this creates for IT and cybersecurity professionals, and how leading organizations governing cloud IAM to reduce risk and the chance of a data breach.

Key takeaways include understanding how to:

• Gain visibility to assess, prioritize and remediate improper permission combinations that grant unintended or overly permissive access.
• Reduce access down to least privilege.
• Work to minimize cloud security blast radius.

Speaker:
Dan Fein, Director of Email Security Products, Americas, Darktrace

Today, 94% of cyber-threats still originate in the inbox. 'Impersonation attacks' are on the rise, as artificial intelligence is increasingly being used to automatically generate spear-phishing emails, or 'digital fakes', that expertly mimic the writing style of trusted contacts and colleagues.

Humans can no longer distinguish real from fake on their own - businesses are increasingly turning to AI to distinguish friend from foe and fight back with autonomous response. In an era when thousands of documents can be encrypted in minutes, 'immune system' technology takes action in seconds - stopping cyber-threats before damage is done. Find out how in this session.

Speaker:
Matt Rose, Global Director Application Security Strategy, Checkmarx

Speaker:
Sam Curry, Chief Security Officer, Cybereason

Somewhere out there, in a market crowded by over-qualified workers deluged by job offers, the next generation of CISOs is maturing. But how can CISOs train tomorrow's security executives when today's well-known security talent deficit makes it difficult to fill even the most basic roles?

Retaining cyber professionals isn't just a matter of offering the biggest paycheck - it requires getting creative with cross-training, hands-on experience and developing collaborative solutions with fellow CISOs.

Attend this talk with Sam Curry, Chief Security Officer at Cybereason, to explore strategies for identifying and developing the next generation of CISOs, as well as how to excel in your own role and lay the foundation for a stronger security practice.

Speaker:
Ameya Talwalkar, Co-Founder and Chief Product Officer, Cequence Security

With APIs pervasive across your organization, powering apps, and enabling digital transformation, you need to consider whether your existing infrastructure and security tools can identify security gaps before they become incidents and if they can withstand an industrialized attack. API coding errors and malicious bots are a significant cause of fraud and theft-related revenue losses, infrastructure overspending, poor customer experience, and brand damage.

In this talk, we'll explore several case studies of API attacks and techniques and discuss what's needed to protect your applications and your business from suffering damages.

Key takeaways

How attackers are evolving to bypass detection

How cybercriminals beat traditional approaches

How Machine Learning and AI can provide help detect and defend against malicious bots

Why an end-to-end API security strategy is imperative to making your apps less attractive to criminals

Speaker:
Derek Gabbard, Field CISO, Fortinet

With cloud adoption and changing remote workforce strategies driving network and security teams to consider ways to modernize their infrastructure, many are turning to a Secure Access Service Edge (SASE) as a strategy to deliver consistent security experiences across the enterprise. In this session, we'll look at the top 3 drivers leading these teams to consider and adopt this SASE approach.

Speakers:
Mike Huckaby, VP, Worldwide Sales Engineering, Gigamon
Timothy Rohrbaugh, CISO, JetBlue Airways
Tomas Maldonado, CISO, NFL

2020 has brought seismic change to all sectors, and cybersecurity leaders have been in the driver's seat in helping their enterprises adapt. Join this exclusive panel for unique insight into:

• How to respond when your business faces historic transformation;
• Challenges posed by new threats, endpoint security challenges and expanded reliance on the cloud;
• How to strategize and budget for ongoing challenges in 2021.