Speaker:
Brett Johnson, Former Most Wanted and "The Original Internet Godfather"

Brett Johnson, referred to by the United States Secret Service as "The Original Internet Godfather" has been a central figure in the cybercrime world for almost 20 years. He founded and was the leader of Counterfeitlibrary.com and Shadowcrew.com. Working alongside the top cyber criminals of our time, he helped design, implement, and refine modern Identity Theft, ATO fraud, Card Not Present fraud, IRS Tax Fraud and countless other social engineering attacks, breaches and hacking operations.

Join Johnson as he discusses:

• His involvement in online crime;
• The current state of cybercrime, the crooks and the crimes they commit;
• How to avoid being a cybercrime victim.

Speaker:
Chris Eng, Vice President of Research, CA Veracode

Open source and third-party components help developers build and deploy applications faster. But with increased speed comes greater risk. Vulnerabilities in components are a hidden cost of free software. And their widespread use creates opportunities for attackers looking to exploit the most possible victims by breaching a single vulnerability, which could lead to later incidents of breach. To reduce these risks, development and security teams need strategies to tackle the challenge of securing their applications from vulnerabilities in third-party and open source components.

What you will learn:

• Why development teams use components and how components ultimately create greater risk of breach
• How to reduce risk through strategies including component inventories and developer education
• How software composition analysis technologies can help you keep track of your component use and be ready when a vulnerability hits the news

Speaker:
Peter Beardmore, Director of Digital Risk Management Solutions, RSA

Digital Risk is the greatest facet of risk most organizations now face, driven by global acceleration of digitization. It's an issue that has risen well-above the security group, and is forcing executives and boards to think beyond the core competency of their organization; because in many cases, they've transformed into a digital business.

Meanwhile, the security functions in most organizations are struggling just to keep up, while they're incapable of answering broader, business-level questions such as "How is this effecting our overall exposure?" or simply "Are we doing enough?"

To manage digital risk, organizations need a unified, structured and phased approach to align all stakeholders. And they need visibility, insight, and response capabilities that stretch across the organization, enabling each function to participate fully in transforming digital risk into reward.

Speaker:
Jade Catalano, Sr. Product Manager, Splunk

Organizations and people's security hygiene can be poor, and criminals know it. Fraudulent activity costs are in the billions worldwide across industries, and over 16 million consumers in the US were victims of identity theft or fraud in 2016. Learning to analyze data at the speed of the business will ensure your fraud and security teams can detect and investigate data to quickly find anomalies and reduce loss of resources, reputation and organizational efficiencies.

In this session we will discuss:

• How to recognize and approach fraudulent activities in your environment;
• How to get started detecting fraudulent patterns and securing your infrastructure;
• How to use machine data, machine learning and analytics-driven security platform to help you onboard new data at the speed of the business to ensure that your fraud and security teams can detect and investigate quickly.

Speaker:
Dan Larson, Vice President of Product Marketing, CrowdStrike

This exclusive session delves into details of some of CrowdStrike's most eye-opening breach investigations of the past year, and their implications for organizations of all sizes, regardless of their industry or country of origin. Also: New research on "breakout time" -the time from initial intrusion to the first signs of lateral movement that precede a breach -and what defenders must do to respond before adversaries can press their attack.

Speaker:
Gary Sockrider, Principal Security Technologist, NETSCOUT Arbor

Explore the state of DDoS attacks as observed by network and security professionals directly responsible for operating and securing global networks. This session covers a range of issues from threat detection and IR to managed services and staffing . Hear about the daily operational challenges, as well as strategies adopted to address and mitigate them, including the latest attack techniques and current best practices for defense.

• Gain insight on how IoT botnets are built and weaponized;
• Understand the newest threat to enterprise networks;
• Learn how to defend your network from these attacks.