Agenda

Building Leadership Connections

Hear from the best of the best: proven security leaders who understand today’s challenges and will help you chart a course for a more protected, aware and results-oriented future.

  • Challenge Security’s Rules: Transform the Threat Surface to Proactive Control

    Robert DeVito, Global Director, Customer & Partner Sales Engineering, Chrome

    With the increase in distributed workforces and the growing adoption of cloud applications, companies face unprecedented levels of IP, data, and identity sprawl beyond the enterprise firewall. Every endpoint is an entry into your business, cybercriminals have more access than ever, and human error is a constant risk. Join us to see how Chrome OS and Chrome Browser embed security into workflow to give proactive protection for users, devices, applications, and data.

    Click here to watch session!

  • Identity Detection and Response (IDR): Are You Ready?

    Carolyn Crandall, Chief Security Advocate, Attivo Networks
    Joseph Salazar, Technical Marketing Engineer, Attivo Networks

    81 percent of breaches use stolen credentials, 40 percent of security professionals say protecting Active Directory is core, and 87 percent of organization are increasing investment in identity protection. Whether motivated by risk avoidance or compliance, identity security is a top concern for CISOs of all industries and company sizes. Gartner has even presented it as a Top 3 priority for 2021. Join us to learn about visibility and detection tools that have emerged to protect credentials, entitlements, and the systems that manage them.

    Click here to watch session!

  • Managed Detection and Response: Trends and Insights for the Threat Landscape

    Eric Payne, Sr. Enterprise Pre-sales Engineer, Kaspersky

    As cyberattacks become more sophisticated, many organizations feel the need for advanced security services that can address growing complexity in real-time, and 24/7. Join us as we share insights and trends discovered during real-life investigations by the Kaspersky Managed Detection and Response team, observations from analyzing incident statistics, and key recommendations.

    Click here to watch session!

  • Insider Risk Management: Trust, Prioritization, and Right-Sized Controls

    Joe Payne, CEO, Code42 Software

    The evolution of work demands more trust, not less. A security analyst’s well-being comes down to one thing: priorities. And today’ collaboration culture requires a tiered response – both technical and educational. Join us as we explore how these concepts deliver short-term dividends and long-term value for the security team and the business.

  • A Proactive Approach to Risk Mitigation

    Dor Dali, Director of Information Security, Vulcan Cyber

    Vulnerabilities are piling up, attack surfaces are growing, and security teams are struggling to maintain SLAs. If security teams are going to get ahead of a flood of security alerts, they can’t take the typical passive approach, where security teams respond when external actors act. Join us to learn how to take a more proactive and intentional approach to risk mitigation.

    Click here to watch session!

  • Demystifying and Implementing Zero Trust

    Jason Ellis, Director of Advisory Services, Integral Partners

    Wondering how to define and implement Zero Trust? This Zero Trust and IAM Essentials Workshop Overview will help you understand how to determine what Zero Trust really means and the best practical approaches to develop an IAM + ZT strategy. From its history and evolution to building blocks and architecture. The insightful workshop also covers the essentials of Identity and Access Management – the terms, technologies, tools, challenges, exercises, roadmapping, and vendor solutions.

    Click here to watch session!

  • Six Steps To Better Data Control

    Yacov Salomon, Founder, Chief Innovation Officer, Ketch

    Is your organization’s data an asset, or a liability? The interplay between the promise of data and the imperative of privacy can often devolve into a zero-sum tradeoff: either your organization captures and uses data and AI to grow, or it complies and suffers the competitive consequences. Join us to learn about six steps you can take to gain better control of your data, and put your most valuable asset to work.

    Click here to watch session!

  • Securing the Hybrid Workforce: How to Establish Trust in a Zero Trust World

    Ryan Terry, Sr. Solutions Product Marketing Manager, Okta

    As companies look for long-term solutions for their hybrid and fully remote workforces, one thing is clear:  identity is the new perimeter for today’s businesses. An identity-first approach to security reduces today’s cybersecurity risks and provides the foundation for a zero trust security strategy. Join us to learn how to enable and secure a hybrid workforce, how identity can lay the foundation for any zero trust security initiative, and the kinds of zero trust projects your peers are thinking about now and into the future.

    Click here to watch session!

  • The Great Data Exfiltration: Protecting Business in a Raging Job Market

    Joe Payne, President and CEO, Code42 Software

    The Great Resignation is upon us, threatening intellectual property in its wake. Nearly 60 percent of employees are now moving to a new company in a similar field, and they’re taking data at alarming rates. Join us to learn how a data security approach rooted in trust, prioritization, and right-sized response to insider risk can create better efficiencies, and pay short-term dividends and long-term value.

    Click here to watch session!

  • XDR and CTI: How they Converge to Improve Security Risk Mitigation

    Alon Arvatz, Chief Product Officer, IntSights

    Security and risk leaders need more context about the threats across their company’s internal and external attack surfaces — and they need the ability to ensure a rapid and complete response. Join us as we explore the intersection of extended detection and response (XDR) and cyber threat intelligence (CTI). We’ll reveal how CTI extends your company’s monitored environment, ways to improve signal-to-noise ratio to better understand your real risk, and the latest technologies for driving a proactive and automated response.

    Click here to watch session!

  • Compliance as a Catalyst for Reducing Risk

    Rob Ellis, Senior Vice President of Strategy, Reciprocity Labs

    Compliance is a required part of risk management, but is your compliance tool helping you bridge compliance and risk? Effective compliance is a catalyst for developing a proactive, risk management program by providing effective controls and tools that assess, manage and monitor risk. Join us as we discuss how compliance isn’t just about checking a box, and is instead about proactively protecting your company — and providing assurance so that others trust doing business with you.

    Click here to watch session!

  • Time Off for the Holidays? Cyber Defenses Can’t Afford It

    Tony Lee, Vice President, Global Services Technical Operations, BlackBerry

    Threat actors are launching major attacks during U.S. holidays. This tactic compelled the FBI and CISA to issue a joint warning stating, “Cyber actors have conducted increasingly impactful attacks against U.S. entities on or around holiday weekends over the last several months.” Notable examples include the Colonial Pipeline on Mother’s Day, JBS Foods on Memorial Day weekend, and Kaseya on Independence Day. What went wrong? Join us to find out, and for tips on protecting your organization from holiday hacks.

    Click here to watch session!

Monday. September 19

2:00 pm - 3:30 pm

Roundtable Discussions

Participate in thought-provoking, interactive discussions on today’s hot topics in a small group setting.

4:00 pm - 5:30 pm

Roundtable Discussions

Participate in thought-provoking, interactive discussions on today’s hot topics in a small group setting.

5:30 pm - 6:30 pm

CSO 50 Opening Reception

Meet your peers and celebrate the kick off of the CSO 50.
Tuesday, September 20

9:00 am - 9:10 am

Welcome & Opening Remarks

Bob Bragdon, SVP/Managing Director Worldwide, CSO, IDG Communications, Inc.

9:10 am - 9:40 am

Opening Keynote

9:40 am - 10:10 am

CSO Industry Partner Keynote with IBM

Hear from a technology leader about the future of cybersecurity and trust.

(session in development)

10:10 am - 10:30 am

Fireside Chat

Join us for a conversation with a 2022 CSO Hall of Fame inductee.

Interviewed by: Bob Bragdon, SVP/Managing Director Worldwide, CSO

10:30 am - 10:55 am

Hall of Fame Panel

Our 2022 Hall of Fame inductees on leadership, the changing role of the CISO, fighting today’s threats, and more.

10:55 am - 11:25 am

Break

Now’s the time to refresh your coffee, visit sponsor booths, or set up a quick meeting with other attendees.

11:25am - 11:45 am

Industry Partner Breakout Session

Industry Partner Breakout Session

11:50 am - 12:15 pm

Metrics That Matter: Dashboards, Scorecards and More

Security initiatives generate countless metrics, so selecting the relevant information and presenting it in a useful and elegant way is a challenge. Learn how Adobe, Aflac and Zurich North America devised clear and actionable ways of communicating key security metrics. The results speak for themselves: elevating cyber risk visibility, measuring performance against goals, and closing the information gap between business leaders and security leaders.

Post M&A Security Integration and Other Challenges

Following a merger or acquisition, how do you ensure that each organization continues to stay protected while moving toward full integration of security programs and teams? Two companies who recently went through that process will share their best security practices as they tackled consolidating data centers, application security, and protecting sensitive data.

12:40 pm - 2:00 pm

Lunch

2:00 pm - 2:25 pm

New Approaches to Risk Management

Identifying and managing security risks internally and with clients is a perennial challenge that requires a constant stream of new ideas. This session will explore Avanade’s new standardized, automated approach to managing risk as well as Genpact’s methodology of identifying risk throughout a lifecycle, a model that shifts risk from an InfoSec issue to the appropriate business unit. The result is that you’re not only speaking the language of business risk, but equipping the entire team to take action.

The Heavy Lifting of Zero Trust

Successful zero trust management of enterprise firewalls and other controls will have a ripple effect on the rest of the network. Learn best practices for implementing zero trust in an increasingly sophisticated threat environment, including partnering with business leaders and other security teams within an organization.

2:30 pm - 2:55 pm

Hall of Fame Panel

Our 2022 Hall of Fame inductees on leadership, the changing role of the CISO, fighting today’s threats, and more.

2:55 pm - 3:15 pm

Fireside Chat

Join us for a conversation with a 2022 CSO Hall of Fame inductee.

Interviewed by: Bob Bragdon, SVP/Managing Director Worldwide, CSO

3:20 pm - 3:40 pm

CSO Industry Partner Session

Join us to learn about new cybersecurity strategies for your organization.

(session in development)

CSO Industry Partner Session

Join us to learn about new cybersecurity strategies for your organization.

(session in development)

3:40 pm - 3:55 pm

Break

Now’s the time to refresh your coffee, visit sponsor booths, or set up a quick meeting with other attendees.

3:55 pm - 4:20 pm

Hall of Fame Panel

Our 2022 Hall of Fame inductees on leadership, the changing role of the CISO, fighting today’s threats, and more.

4:25 pm - 4:50 pm

Phish Fight: Strategies to Reduce Digital Harm

Protecting the enterprise is everyone’s job, and it’s maddening how something as simple as clicking a malicious link can cause so much harm. Phishing threats evolve, and employees – including executives – can become complacent. Find out how TIAA revitalized its phishing awareness to raise the bar on KPI thresholds, hold associates accountable for poor performance, and invigorated a stagnated program, as well as how Cummins created the CyberSMART initiative to teach employees how to recognize the signs of potential phishing emails, how to respond to an active attack, and the proper handling of information and company assets.

IT Solutions for Consumer Education

A vital aspect of security is empowering the public on how to protect themselves against vulnerabilities. Using techniques such as paswordless technology, consumer education campaigns, and in-product privacy notifications, these companies all boosted security and privacy while improving the user experience.

4:55 pm - 5:20 pm

Lightning Insights

Join us for a lively series of five-minute market insights geared to solving your biggest challenges. Refreshments will be served!
Wednesday, September 21

9:00 am - 9:05 am

Welcome & Opening Remarks

Bob Bragdon, SVP/Managing Director Worldwide, CSO, IDG Communications, Inc.

9:05 am - 9:35 am

What to Do When Things Go Wrong

Frank Supovitz, President & Chief Experience Officer, Fast Traffic Events

9:35 am - 9:55 am

CSO Industry Partner Keynote

Hear from a technology leader about the future of cybersecurity and trust.

(session in development)

9:55 am - 10:15 am

Fireside Chat

Join us for a conversation with a 2022 CSO Hall of Fame inductee.

Interviewed by: Bob Bragdon, SVP/Managing Director Worldwide, CSO

10:15 am - 10:40 am

Hall of Fame Panel

Our 2022 Hall of Fame inductees on leadership, the changing role of the CISO, fighting today’s threats, and more.

10:40 am - 11:10 am

Break

Now’s the time to refresh your coffee, visit sponsor booths, or set up a quick meeting with other attendees.

11:10 am - 11:30 am

CSO Industry Partner Session

Join us to learn about new cybersecurity strategies for your organization.

(session in development)

CSO Industry Partner Session

Join us to learn about new cybersecurity strategies for your organization.

(session in development)

11:35 am - 12:00 pm

Bringing Adversary Engagement to Your Organization

Hear from MITRE cyber experts on how to use cyber denial, deception, and adversary engagement to protect your organization. Using the MITRE Engage framework, find out the small steps you can take to quickly level up your cyber defense. Plus, learn how to connect with a whole community to support your efforts.

Industry Spotlight: Healthcare, Medical, Pharmaceutical & Bio-Tech

Explore security initiatives that meet the unique security and compliance needs of healthcare and related fields. Learn from award-winning projects that sought to secure sensitive R&D data, automate processes to ensure software versions met regulatory compliance, reduce complexity – all without slowing or stopping the flow of data and innovation.

12:05 pm - 12:25 pm

CSO Industry Partner Session

Join us to learn about new cybersecurity strategies for your organization.

(session in development)

CSO Industry Partner Session

Join us to learn about new cybersecurity strategies for your organization.

(session in development)

12:25 pm - 2:00 pm

Lunch

2:00 pm - 2:20 pm

Fireside Chat

Join us for a conversation with a 2022 CSO Hall of Fame inductee.

Interviewed by: Bob Bragdon, SVP/Managing Director Worldwide, CSO

2:25 pm - 2:50 pm

Modernizing Legacy Systems

Transforming legacy technology infrastructure is no small management task. Hear from organizations that figured out better ways to migrate legacy systems that were achieved on time and under budget and produced a more secure environment that immediately showed results.

Automating Security for Greater Efficiency

Forward-thinking companies are finding value in using AI as a vital part of the security toolbox that also saves expert resources for higher-priority work. Learn about projects – one to automate, orchestrate and scale app testing and another to automate triage and scoring of suspicious emails – that overcame implementation challenges to achieve meaningful results at scale.

2:55 pm - 3:15 pm

CSO Industry Partner Session

Join us to learn about new cybersecurity strategies for your organization.

(session in development)

CSO Industry Partner Session

Join us to learn about new cybersecurity strategies for your organization.

(session in development)

3:20 pm - 3:55 pm

Empowering Security Champions

A motivated and well-trained workforce is an essential component of any successful security awareness program. Find out how Carrier, Code42 and the National Cybersecurity Alliance built engaging programs using competitions, training, social media, automation, and other creative methods to mitigate insider risk.

3:50 pm - 4:15 pm

Lightning Insights

Join us for a lively series of five-minute market insights geared to solving your biggest challenges. Refreshments will be served!

6:30 pm - 9:00 pm

CSO 50 and CSO Hall of Fame Awards Ceremony

Join us for this very special awards ceremony where we’ll recognize 50 organizations that won a CSO50 award for 2022, along with our 2022 class of CSO Hall of Fame winners who’ll share their insights and career advice.