What's the single most important component of an effective cyber-security program? Here's a hint: It has nothing to do with technology. Dave Grady, Senior Client Partner from Verizon's Security Solutions group, will discuss the importance of stakeholder engagement in cyber-security. Drawing on his 10 years as a security program manager and a previous 15-year career as an internal communications manager, Grady will explore how better communication between security teams and the business lines, executives and customers they support can make for a more effective security program. Better still, effective stakeholder engagement can reduce security-practitioner burnout and contribute to their professional growth.

Today 86% of organizations are in the process of building or already have an existing system in place to prevent/defend against insider attacks; if this statistic proves anything it is that more and more business are coming to terms with the hostilities of our world. Expected or unexpected, an employee with access to company-wide systems, no matter their intentions is a great threat to any organization. An employee with malicious intentions is dangerous, but according to a recent IBM survey, 95% of all breaches involved someone making a mistake. The Insider Threat panel at the Cyber Security Summit will show you how your organization is at risk, as well as showing you innovative & necessary steps to take in order to prevent attacks and increasing your defense systems.

In this session, Dan Allen will talk about how modern malware continues to circumvent even the most advanced enterprise perimeter and endpoint security tools. Even AI and Machine Learning-based technologies can’t seem to keep up with the most sophisticated and well-funded hackers.

Join us to discuss new strategies today’s enterprises can employ to protect endpoints against ransomware, polymorphic malware, and threats that lurk inside email attachments, phishing links, file downloads and malicious websites.

Do you ever wonder what your Cloud Service Provider is doing to protect your sensitive information that is stored in the cloud? Do you fully understand your Customer Responsibilities for securing your data in the cloud? Join us in an interactive discussion on how one of the industry’s leading Cloud Service Providers leverages its automation solutions to protect its customer data to meet stringent security and regulatory requirements, while also protecting against the latest emerging threats in the cloud.

Organizations have moved critical front office operations like customer service, selling, marketing, collaboration, recruiting, and advertising to social media. Nation states and actors are now exploiting social media to infiltrate governments and private enterprises to mine data and steal IP. CTO Otavio Freire will cover how companies and governments can protect their digital sovereignty, how APT risks have evolved, how social infiltration works, and how it can be stopped with new digital endpoint technology for social and digital channels to protect against data loss, insider threats, VIP exposure, and brand damage.

For many organizations they are looking at over half of their IT spending being related to cloud, whether infrastructure, services or other tools in the near future. As a CISO, this movement to the cloud can fill you with dread. Furthermore, one of the risks corporate boards understand best is third party risk, and now your entire network is in someone else’s hands. This transition is the subject of a lot of concern and a lot of mixed signals. It doesn’t have to be that way though, especially as moving to the cloud can be a security improvement, if managed appropriately. This panel will talk about the security issues CISO’s and IT leaders need to be aware of as they move further and further over to the cloud, what best practices and services they should consider or utilize, and how they can fully leverage the cloud resources to bring their organization to the next level of security.

Organizations process and store huge volumes of sensitive information that belong to their customers and employees – from financial information to medical records to personal identifiers, like social security numbers and birthdates. Inadequate controls in IAM processes and technology can lead to breach, involuntary exposure of this data, and non-compliance issues.

But you cannot correct what you don't know, so the first step in any IAM program is assessment.

IDMWORKS CEO & Chief Strategist, Todd Rossin, will address the most common questions around IAM Assessments & Roadmaps - Why Should We Assess? What Should We Assess? and When Should We Reassess?

A common phrase in information security is: “It is a matter of when you will be breached, not if.” As the headlines provide real-life examples from Marriot, to Equifax, to FedEx, this seems more true than ever before. But what should you do to prepare, respond and recover from it? What tools and tactics will make it easier to detect a breach (either as it happens or after the fact), what do you say to key stake holders about what is happening and how do you pivot from “How did this happen” to “How can we make sure it doesn’t happen again”. Few things in IT can be as high visibility and high stakes as a breach and this panel will equip the audience with what they need to know to better handle when a breach happens.