Speaker:
Brian Harrell, Assistant Director for Infrastructure Security, U.S. Cybersecurity and Infrastructure Security Agency

Strong, reliable infrastructure is key to the nation's high standard of living, security, and strong economy. This includes systems like water and power, financial transactions, telecommunications, and so on. In short, critical infrastructure security and resilience is an integral to all of the systems that make our work and lives efficient, convenient and comfortable. Join us as Brian Harrell explores current and emerging threats and vulnerabilities in the critical infrastructure space as the cyber and physical worlds become more interconnected and interdependent, and learn about resources available through CISA to help build resilience to these threats.

Speaker:
Spencer Lichtenstein, Product & Go-to-Market Strategist, RSA

RSA works with thousands of global enterprises to address digital risk transformation challenges and the evolving dynamic workforce. Over the past six months there has been tremendous change in the global workforce and IT environments. Join RSA in this session to hear insights learned from actual customers on the shifting attack surface amidst global business disruption and security insights on rapid enablement of a dynamic workforce. This session will cover:

• Latest trends and threats in the age of a dynamic workforce
• Examples of real-world threats
• Mitigation steps and key threat detection and response components to reduce risks

Speaker:
Gerald Beuchelt, CISO, LogMeIn

As IAM surges as a must-have for security programs and compliance alike, using a risk management approach to understand the inherent and residual risks of these solutions can help to better assess the impact on your organization's overall security posture.

Join Gerald Beuchelt, Chief Information Security Officer at LogMeIn, for insights and risk models of 3 case studies: Password Management, SSO with IDaaS, and SSO with MFA. This session will cover:

• Leveraging risk management as a means to guide security activity and investment
• Applying risk assessments to concrete examples in the IAM space
• How you can benefit from outsourcing your password management to SaaS and enabling MFA and a centralized SSO
• A forward-facing look of IAM technology and their associated risks

Speakers:
Jony Fischbein, CISO, Check Point
Rebecca Wynn, Global CISO & Chief Privacy Officer, [24]7.ai
Stephen Fridakis, Technical Program Manager, Security - M&A, Google

You have deployed the largest remote workforce ever, and your extended enterprise now sits square in the middle of the largest attack surface. How does this change the CISO's approach to breach prevention?

Join this exclusive panel of current and former CISOs for insight on:

• Embracing the zero trust model;
• The value of partnerships;
• How to "mitigate the explosion" of multiple attack surfaces

Speaker:
Randy Trzeciak, Director, CERT Insider Threat Center, CMU

The CERT Insider Threat Center at Carnegie Mellon University is one of the world's leading authorities on preventing, detecting, and responding to insider incidents, and it has released Version 6 of its Best practices to Mitigating Insider Threats. As part of this research, the center addresses how to detect and prevent insider incidents, including cyber breaches, as well as how to map inside threat programs to existing standards such as the NIST Cybersecurity Framework. Attend this session to learn:

• The latest research on insider incidents
• How "accidental insiders" are enabling harm to be realized by organizations
• How to map your insider risk/threat program against industry standards, including the NIST Cybersecurity Framework

Speaker:
Andy Skrei, VP of Worldwide Sales Engineering, Exabeam

Security analysts spend two-thirds of their time on triage and investigation. Why then do most security operations teams only automate response? In this presentation, Andy Skrei will share his experience automating the end-to-end security workflow while leading security investigations at one of the world's largest online retailers and through working with many of the world's leading organizations while at Exabeam. Attendees will learn about:

• The productivity benefits of automating the entire SOC lifecycle
• Ways to reduce the time to answer critical questions
• How automating triage and investigations leads to quick, accurate resolutions

Speaker:
Elvis Chan, Supervisory Special Agent, San Francisco Division, FBI

Speakers:
Randy Sabett, Special Counsel, Cyber/Data/Privacy Practice Group, Cooley LLP
Ronald Raether, Partner, Troutman Sanders

Few business continuity plans were truly prepared for the COVID-19 pandemic and the need to deploy and secure a near fully remote workforce. What other blind spots might there be in your be in your BCP, breach response and tabletop exercises? Join these seasoned cybersecurity attorneys for an interactive discussion of legal trends and potential traps, including:

• What the best plans might overlook
• The need for tabletop exercises - even virtually
• Regulatory expectations that haven't gone away

Speaker:
Brian Harrell, Assistant Director for Infrastructure Security, U.S. Cybersecurity and Infrastructure Security Agency

Strong, reliable infrastructure is key to the nation's high standard of living, security, and strong economy. This includes systems like water and power, financial transactions, telecommunications, and so on. In short, critical infrastructure security and resilience is an integral to all of the systems that make our work and lives efficient, convenient and comfortable. Join us as Brian Harrell explores current and emerging threats and vulnerabilities in the critical infrastructure space as the cyber and physical worlds become more interconnected and interdependent, and learn about resources available through CISA to help build resilience to these threats.

Speaker:
Spencer Lichtenstein, Product & Go-to-Market Strategist, RSA

RSA works with thousands of global enterprises to address digital risk transformation challenges and the evolving dynamic workforce. Over the past six months there has been tremendous change in the global workforce and IT environments. Join RSA in this session to hear insights learned from actual customers on the shifting attack surface amidst global business disruption and security insights on rapid enablement of a dynamic workforce. This session will cover:

• Latest trends and threats in the age of a dynamic workforce
• Examples of real-world threats
• Mitigation steps and key threat detection and response components to reduce risks

Speaker:
Gerald Beuchelt, CISO, LogMeIn

As IAM surges as a must-have for security programs and compliance alike, using a risk management approach to understand the inherent and residual risks of these solutions can help to better assess the impact on your organization's overall security posture.

Join Gerald Beuchelt, Chief Information Security Officer at LogMeIn, for insights and risk models of 3 case studies: Password Management, SSO with IDaaS, and SSO with MFA. This session will cover:

• Leveraging risk management as a means to guide security activity and investment
• Applying risk assessments to concrete examples in the IAM space
• How you can benefit from outsourcing your password management to SaaS and enabling MFA and a centralized SSO
• A forward-facing look of IAM technology and their associated risks

Speakers:
Jony Fischbein, CISO, Check Point
Rebecca Wynn, Global CISO & Chief Privacy Officer, [24]7.ai
Stephen Fridakis, Technical Program Manager, Security - M&A, Google

You have deployed the largest remote workforce ever, and your extended enterprise now sits square in the middle of the largest attack surface. How does this change the CISO's approach to breach prevention?

Join this exclusive panel of current and former CISOs for insight on:

• Embracing the zero trust model;
• The value of partnerships;
• How to "mitigate the explosion" of multiple attack surfaces

Speaker:
Randy Trzeciak, Director, CERT Insider Threat Center, CMU

The CERT Insider Threat Center at Carnegie Mellon University is one of the world's leading authorities on preventing, detecting, and responding to insider incidents, and it has released Version 6 of its Best practices to Mitigating Insider Threats. As part of this research, the center addresses how to detect and prevent insider incidents, including cyber breaches, as well as how to map inside threat programs to existing standards such as the NIST Cybersecurity Framework. Attend this session to learn:

• The latest research on insider incidents
• How "accidental insiders" are enabling harm to be realized by organizations
• How to map your insider risk/threat program against industry standards, including the NIST Cybersecurity Framework

Speaker:
Andy Skrei, VP of Worldwide Sales Engineering, Exabeam

Security analysts spend two-thirds of their time on triage and investigation. Why then do most security operations teams only automate response? In this presentation, Andy Skrei will share his experience automating the end-to-end security workflow while leading security investigations at one of the world's largest online retailers and through working with many of the world's leading organizations while at Exabeam. Attendees will learn about:

• The productivity benefits of automating the entire SOC lifecycle
• Ways to reduce the time to answer critical questions
• How automating triage and investigations leads to quick, accurate resolutions

Speaker:
Elvis Chan, Supervisory Special Agent, San Francisco Division, FBI

Speakers:
Randy Sabett, Special Counsel, Cyber/Data/Privacy Practice Group, Cooley LLP
Ronald Raether, Partner, Troutman Sanders

Few business continuity plans were truly prepared for the COVID-19 pandemic and the need to deploy and secure a near fully remote workforce. What other blind spots might there be in your be in your BCP, breach response and tabletop exercises? Join these seasoned cybersecurity attorneys for an interactive discussion of legal trends and potential traps, including:

• What the best plans might overlook
• The need for tabletop exercises - even virtually
• Regulatory expectations that haven't gone away