Speaker:
Alissa Abdullah, SVP, Deputy CSO, Mastercard

She was the Deputy CIO for the White House, and now she is SVP and Deputy CSO of payment card giant Mastercard. Alissa (Dr. Jay) Abdullah has some strong insights on what it takes to be a cybersecurity leader today - and even stronger opinions on what the job will require in 2021 and beyond. In this exclusive session, Dr. Jay discusses:

• Lessons learned from her public and private sector experiences
• How business and technology trends from 2020 will reshape leadership expectations in 2021
• How to attract more top-notch talent to the field and train it for leadership roles

Speaker:
Matt Ashburn, National Security Engagement Lead, Authentic8

Global spending on cybersecurity is approaching $200 billion per year with no upper limit in sight, yet adversaries remain successful at compromising even well-resourced organizations. One of the root causes of this problem lies in an architecture from 30 years ago: the web browser. By externalizing and isolating users' internet access via the cloud, CIOs and CISOs can:

• Nearly eliminate their internet risk surface
• Provide users with the tools and access they need
• Free up incident response to focus on more advanced threats

Speakers:
Fredrik Forslund, Vice President, Enterprise & Cloud Erasure Solutions, Blancco
General Gregory Touhill, Retired, First US CISO & Director, CERT Division at the Software Engineering Institute
Kelvin Coleman, Executive Partner at IBM & former Executive Director, National Cyber Security Alliance

You've deployed your largest-ever remote workforce and - with your employees' myriad of endpoint devices - created your largest-ever attack surface. What more can you do to reduce your actual data attack surface?

This expert panel will share insights and strategies, including:

• Mistakes large enterprises are making with their data
• Risks of storing ROT (redundant, obsolete, trivial) data
• Framework guidelines and best practices

Speaker:
Randy Trzeciak, Director, CERT Insider Threat Center, CMU

A remote workforce. Economic stress. Pandemic fatigue. These ingredients create a "perfect storm" for insider risk, whether through malicious acts or accident. What can you do to improve monitoring and mitigation of insider risk in these unique conditions?

Randy Trzeciak, director of the CERT Insider Threat Center at Carnegie Mellon University, is one of the world's leading authorities on preventing, detecting, and responding to insider incidents. In this exclusive session, he details:

• The latest research on insider incidents
• Unique risks created within today's remote workforce
• How to mitigate the risks posed by malicious and unintentional insider threats

Speaker:
Dr Shane Shook, Fmr. Managing Director, PwC; Venture Consultant, ForgePoint Capital

As we approach 2021, the global pandemic brings a laser-focus to both risk and user experience. Digital transformation and demand for flexible, secure access drives our need for machine-scale, frictionless authentication and continuous authorization to prove digital identities match the humans behind them. Dr. Shook considers growing use of biometric modalities and how behavioral biometrics may offer us a better balancing-act between security, privacy, compliance, and user experience.

Speaker:
Bobby Ford, CSO, Hewlett Packard Enterprise & former Global CISO, Unilever

As global CISO of one of the world's oldest and largest consumer goods enterprises, Bobby Ford sees not only the accelerated journey cybersecurity leaders have experienced in 2020, but also where the trip may be headed in 2021. In this exclusive keynote interview, Ford discusses the challenges of the current year and the promise of the new one, with emphasis on:

• The CISO's shift from security to business risk management
• The challenge of prioritizing multiple needs with limited resources
• How to rationalize the technology stack

Speakers:
Mike Huckaby, VP, Worldwide Sales Engineering, Gigamon
Timothy Rohrbaugh, CISO, JetBlue Airways
Tomas Maldonado, CISO, NFL

2020 has brought seismic change to all sectors, and cybersecurity leaders have been in the driver's seat in helping their enterprises adapt. Join this exclusive panel for unique insight into:

• How to respond when your business faces historic transformation;
• Challenges posed by new threats, endpoint security challenges and expanded reliance on the cloud;
• How to strategize and budget for ongoing challenges in 2021.

Speakers:
Kristin Judge, CEO, Cybercrime Support Network
Randy Sabett, Special Counsel, Cyber/Data/Privacy Practice Group, Cooley LLP
Sadia Mirza, Attorney, Cybersecurity, Information Governance and Privacy Practice Group, Troutman Pepper

At the start of 2020, the legal and compliance communities were focused on the enactment of CCPA and other global privacy initiatives. As we come closer to the year's end, what are the legal experts focused on now? Which regulatory challenges should security leaders and businesses be mindful of in 2021? Join this exclusive panel for unique insight into:

• Incident response and ransomware trends;
• How CCPA has impacted organizations and the significance of CPRA on the November 2020 ballot;
• Updates on information sharing and international collaboration with law enforcement, and how public and private entities can work better together.

Speaker:
Ron Ross, Fellow, National Institute of Standards and Technology (NIST)

NIST fellow Ron Ross has long been affiliated with risk management and frameworks in support of federal government mandates. Now he's shifting his focus to the future - specifically to what he describes as "the game-changing benefits of DevSecOps." In this session, Ross discusses:

• DevOps vulnerabilities
• The role and function of security in development
• The prospect of new guidance to address DevSecOps

Speaker:
Mike Burr, Lead Android Enterprise Security Evangelist, Google

Google's Android is the most popular mobile operating system in the world, powering over 2.5 billion devices.

In this exclusive session, Mike Burr of Google outlines Android's multi-layered security strategy, which includes hardware and software protections, as well as utilizing the power of machine-learning that helps protect devices at the application layer.

Learn how Android has proved that open doesn't mean unsecure, with third party validation determining that the Android platform provides the most robust security features available to enterprise.

Speaker:
Jeremy Grant, former Sr. Executive Advisor NIST; Managing Director, Technology Business Strategy, Venable

Jeremy Grant, who led the public/private National Strategy for Trusted Identities in Cyberspace during the Obama administration, has spent more than two decades championing the cause of secure identity systems. Enter the COVID-19 pandemic, which created a remote workforce of unprecedented scale seemingly overnight. Are current approaches to securing the identity management and attestation practice up to the challenge?

In this exclusive session, Grant discusses:

• The state of digital identity security;
• Progress toward replacing passwords;
• Fundamental recommendations from the Better Identity Coalition.