Jacksonville

Whether a startup or a midmarket company, these controls will build, or repair, the foundational security program necessary to provide a strategic advantage in protecting the brand and revenue. 

As a startup, security leaders are asked to move quickly while balancing productivity and security, erring on the side of productivity. As the company grows and becomes an enterprise, the concerns and challenges are similar yet more complex. As complexity grows leaders may overcomplicate security solutions as their budget grows. Certainly the implementation and maturity of controls requires additional effort the larger the organization, yet these 12 controls remain foundational to a truly affective security program. 

Working on multiple cybersecurity insurance applications have provided a consistent set of minimum security controls insurance underwriters are looking for before considering writing a policy. The level of maturity of the implementation of those controls affects coverage levels provided as well as premium costs. Building on a basic set of 8 security controls provided by the insurance industry, I have created a set of custom set of the 12 essential cybersecurity controls every business should adopt to maximize their ability to mitigate cyber threats and significantly reduce business risks. This set of controls has been used multiple times in the last few years as I have led the implementation of security programs for an SEC-regulated investment firm and five healthcare service organizations. We need to stop chasing the next shiny object when it comes to new security tools and make sure these 12 controls are rock solid.

Cloud computing solves many problems like flexibility, cost-efficiency & scalability, so it’s no surprise that use of the cloud is consistently growing. 

That said, it also means organizations step into unknown areas where gaps are easy to miss and hackers are quick to exploit. 

Today we will discuss all things cloud so you know what works best for your organization.

Our experts will look at hybrid and multi-cloud environments, adopting the concept of cybersecurity mesh & Zero Trust, the Secure Access Service Edge (SASE) framework, cloud-native tools & platforms, as well as why the future of network security is in the Cloud. 

Artificial Intelligence (AI) introduces novel security challenges, including adversarial attacks and model vulnerabilities. Also, there is the issue of whether you can trust the AI you have. This session will cover six different types of AI attacks in order to provide a better understanding of the threatscape along with some suggestions for securing the data, the model, the usage and the infrastructure. Also, a glimpse into the future of how generative AI can be leveraged to improve cybersecurity will be discussed.

What are the biggest threats to your business? What’s changing in the current threat landscape that you need to know about? Is ransomware still the biggest threat or is AI taking the spotlight?

On this panel our lineup of industry experts will discuss the most dangerous and emerging threats to your organization as well as the solutions that go beyond anti-malware/anti-virus to include endpoint security, vulnerability management, Active Directory monitoring, credential protection, DNS security tools, SIEM, DLP and encryption.

When looking at how to best protect your business, cybersecurity readiness should be top priority, but what is it?

Cybersecurity readiness is the ability to identify, prevent, and respond to cyber threats. Can proper data governance, risk management (including managing 3rd party risk and supply chain risk) and compliance provide a framework to always being ready?

Let’s discuss GRC & the best steps to take when quantifying cyber risk, developing your incident response plan, creating a data security policy & more.