What's the single most important component of an effective cyber-security program? Here's a hint: It has nothing to do with technology. Dave Grady, Senior Client Partner from Verizon's Security Solutions group, will discuss the importance of stakeholder engagement in cyber-security. Drawing on his 10 years as a security program manager and a previous 15-year career as an internal communications manager, Grady will explore how better communication between security teams and the business lines, executives and customers they support can make for a more effective security program. Better still, effective stakeholder engagement can reduce security-practitioner burnout and contribute to their professional growth.

Machine learning is a big step forward in combatting cyberattacks but is still no silver bullet. Many traditional cybersecurity solutions available today are causing huge operational challenges as they are not adequately fighting against today’s complex and sophisticated threats. Detection and response-based solutions are no longer sufficient as damage can already be done while waiting for the execution of an attack. Executives and security leaders need to start adopting a preventative approach to cybersecurity, which is made possible through Deep Learning.

Fortunately, AI technologies are advancing, and deep learning is proven to be the most effective cybersecurity solution, resulting in unmatched prevention rates with proven lowest false positive rates. As you evaluate new technologies for your organization, understand the differences and benefits of AI/ML/DL.

This session will cover:

• Introduction to Deep Learning – Differences between AI/ML/DL
• Applying deep learning as a preventative approach to cybersecurity
• Live demonstration of deep learning threat prevention

Ask any analyst, reporter, or financial observer, and they’ll tell you that the security market is ripe for consolidation. For years, security vendors have proliferated, buoyed by high valuations and ever-expanding enterprise security budgets. While this rush to innovate has resulted in better and more sophisticated threat defenses, it has also created a complex web of tools which already overworked, overwhelmed, and understaffed security teams must manage.

This tool sprawl is one reason that so many in and around the security industry believe that an era of consolidation is coming. According to ESG Research, 66 percent of businesses are actively working to consolidate their security portfolio. For many in the security industry, a security platform that essentially puts your “SOC-in-a-box” is an ideal solution to the tool sprawl problem.

But this approach is not without peril. If the security industry consolidates to the point that there are just a few platform solutions, this will not only stifle innovation, it will result in a monoculture – and monocultures are notoriously susceptible to disease. If every organization uses an identical or nearly identical set of security tools, breaking into one means breaking into them all. And once threat actors figure out how to break in once, they’ll have the keys to every organization. Just like the world banana population – itself a monoculture – is currently being wiped out by a fungus to which is has no natural resistance, a single cyber threat could take down a vast number of organizations.

In the case of cybersecurity, heterogeneity of defense systems is itself a defense, so security teams need to approach consolidation differently. In this session, attendees will learn:

• How a data-first approach to security architectures can illuminate natural consolidation points
• How collaboration with other parts of the IT organization can actually improve security posture and reduce tool sprawl.
• How this collaborative approach also creates opportunity to leverage other parts of the organization to improve security posture through smarter processes and practices.

Today 86% of organizations are in the process of building or already have an existing system in place to prevent/defend against insider attacks; if this statistic proves anything it is that more and more business are coming to terms with the hostilities of our world. Expected or unexpected, an employee with access to company-wide systems, no matter their intentions is a great threat to any organization. An employee with malicious intentions is dangerous, but according to a recent IBM survey, 95% of all breaches involved someone making a mistake. The Insider Threat panel at the Cyber Security Summit will show you how your organization is at risk, as well as showing you innovative & necessary steps to take in order to prevent attacks and increasing your defense systems.

The digital enterprise is constantly expanding, with new IoT, cloud, and operational technologies all challenging traditional notions of cyber security. Safeguarding these evolving environments against machine-speed attacks has never been more difficult.

Yet the digital battleground now features its most formidable defender in Cyber AI — a self-learning technology that distinguishes friend from foe in order to thwart threats autonomously. With the Cyber AI Platform protecting your entire infrastructure in real time, it doesn’t matter whether the attack originates on a connected device, an industrial system, or in the cloud. Wherever it strikes, the AI fights back in seconds.

In this session, you’ll discover:

• Why only Autonomous Response can counter today’s machine-speed attacks
• Where advanced threat-actors exploit vulnerabilities in the cloud and IoT
• What achieving 100% visibility can reveal about your organization’s risk profile
• How the Cyber AI Analyst reduces the time spent triaging threats by 92%

Organizations process and store huge volumes of sensitive information that belong to their customers and employees – from financial information to medical records to personal identifiers, like social security numbers and birthdates. Inadequate controls in IAM processes and technology can lead to breach, involuntary exposure of this data, and non-compliance issues.

But you cannot correct what you don't know, so the first step in any IAM program is assessment.

IDMWORKS CEO & Chief Strategist, Todd Rossin, will address the most common questions around IAM Assessments & Roadmaps - Why Should We Assess? What Should We Assess? and When Should We Reassess?

Every organization manages about 20 distinct security technologies, with enough staff to operate five of them well. Hiring isn’t the answer — the talent pool is nearly dry. Instead, we must get all our existing security investments to work. Together.

You’ll see:

• How products and vendors are sharing information
• Operational benefits from integrations
• Improved cybersecurity results – a safer, more resilient company

For many organizations they are looking at over half of their IT spending being related to cloud, whether infrastructure, services or other tools in the near future. As a CISO, this movement to the cloud can fill you with dread. Furthermore, one of the risks corporate boards understand best is third party risk, and now your entire network is in someone else’s hands. This transition is the subject of a lot of concern and a lot of mixed signals. It doesn’t have to be that way though, especially as moving to the cloud can be a security improvement, if managed appropriately. This panel will talk about the security issues CISO’s and IT leaders need to be aware of as they move further and further over to the cloud, what best practices and services they should consider or utilize, and how they can fully leverage the cloud resources to bring their organization to the next level of security.

Bad actors are using sophisticated attack management tools, a constantly refreshed trove of stolen credentials and a rapidly growing class of infrastructure providers called Bulletproof Proxies to mask their identity and location while launching automated attacks on public facing applications. These new tools have taken the concepts of anonymity and availability found in Bulletproof Hosting and extended them to the delivery infrastructure by using large networks of Residential Proxies, designed to help attackers automate the attack.

With the ultimate goal of committing fraud or stealing the account contents through account take overs, credential stuffing and fake account creation, Bulletproof Proxies enable the attacks that appear to be legitimate transactions to appear as if they are coming from real user locations, making prevention even more difficult. In this session, Will Glazier, Head of the CQ Prime

Threat Research team will cover the following topics:

• The rise of Bulletproof Proxies – how they came to exist
• The balancing act between legitimate and malicious use
• Techniques used to mask their identity and location
• Details on large scale attacks targeting financial services and retail sector

Digital transformation initiatives often begin with adopting cloud-based applications. But remote sites have historically been connected to the internet through centralized hubs using slow, expensive links such as MPLS that can’t keep up with modern loads. New networking technologies such as SD-WAN provide the performance and cost savings needed for using cloud apps but break traditional gateway-based security architectures. Keeping internet-connected sites and users productive and safe requires a new approach. Gartner’s new Secure Access Service Edge (SASE) model of cloud security brings together a wide variety of security and networking stacks in the cloud that securely deliver the speed needed for cloud apps like Microsoft Office 365 while reducing the hardware footprint at branch locations to boost productivity, cut infrastructure costs, and simplify operations.

A common phrase in information security is: “It is a matter of when you will be breached, not if.” As the headlines provide real-life examples from Marriot, to Equifax, to FedEx, this seems more true than ever before. But what should you do to prepare, respond and recover from it? What tools and tactics will make it easier to detect a breach (either as it happens or after the fact), what do you say to key stake holders about what is happening and how do you pivot from “How did this happen” to “How can we make sure it doesn’t happen again”. Few things in IT can be as high visibility and high stakes as a breach and this panel will equip the audience with what they need to know to better handle when a breach happens.