Finance & Risk

In this informative session, we face down the challenges of establishing priorities within the evolving landscape of cybersecurity threats. We dive deep into the revolutionary impact of Generative AI technologies and their dual role as both a shield and a sword in cybersecurity. The session will also cast a spotlight on the latest SEC regulations, interpreting their profound implications on your cybersecurity strategies. Amidst the high-stakes narrative, we confront the daunting challenge of aligning cutting-edge security measures with stringent budgetary constraints. This session is crafted to empower leaders with foresight and agility in fortifying their defenses and ensuring they are steps ahead in the relentless battle against cyberthreats in 2024. Attendees will gain an understanding of the key priorities for their 2024 cybersecurity agenda along with actionable strategies to enhance their organization’s security posture in an increasingly dangerous digital world.

Exploited vulnerabilities are the most common root cause of the most significant ransomware attacks in the financial services sector. At the same time, nearly half of security professionals say that testing too late in the development cycle remains a major source of frustration. So why are we still failing to catch vulnerabilities earlier? The structure and priorities of development and security teams remain at odds for most organizations. In fact, few “shift left” initiatives have successfully gone to plan. 

Developer productivity is still often measured on speed of deployment, at the expense of security. Failing to catch vulnerabilities before code is released overburdens small security teams, stalls code production, and increases the risk of costly data breaches that erode brand trust.

In this presentation, Alex Rice will demonstrate how we can reframe our thinking, team structures, and culture to recognize that security is a process, not a destination. Security teams must adopt an advisory role for development that embraces how developers work and supports developer-first initiatives to drive secure outcomes. 

Banking’s reliance on cloud tech brings efficiency and cyber risks. Tackle DevOps challenges, evolving threats, and the new SEC cybersecurity regulations. Gain strategies, insights, and real-case studies to secure cloud-native environments effectively, safeguard workloads, and manage compliance demands.

In this session you’ll gain a holistic understanding of AI security including the novel risks of AI technology. We’ll explore new policies, processes, team education and security measures to implement today to effectively safeguard your organization from AI intricacies. You’ll learn how Snyk as an organization protects itself from developers using generative AI during code development – and specifically how to mitigate those issues.

Ransomware attacks on FinTech and the need for Cyber Insurance has rapidly grown in recent years. The reason? Ransomware exploits the best vulnerability there is: human error.

According to the 2022 ENISA Threat Landscape report, ransomware attacks were the highest they’ve ever been, with phising as the leading vector of initial access. Another report found that 55% of financial institutions were hit by ransomware within the last year, a 62% increase. 

Today we will discuss prevention, but ending there is not enough. Companies increasingly need protection after they get hacked, both technologically and financially. Because of this, cyber insurance policies that cover ransomware have become a must-have for most businesses. 

But what does this involve and why does it matter? 

It’s a cloudy and breachy world out there – especially when the threats are hidden from view.

Join former CISO and current CrowdStrike Executive Strategist, Victoriano Casas III, as he discusses the sophisticated threat landscape targeting the Financial sector during 2023. Victoriano will cover the most common attack types used against the Finance industry, the criminals, or “adversaries”, behind these attacks, and most importantly, what tools and resources you need to protect your business and your customers in 2024.

Cybercrime evolves and changes at the same rate of pace as technology. Don’t get caught in the New Year with legacy security systems that can no longer keep up.

As security practitioners, we’re always trying to find ways to get ahead of attackers and mitigate threats before they wreak havoc in our environments. But, traditional defense-in-depth strategies rely more on reactive controls to build walls that we hope will stop attacks from being successful. However, time and again, we see news headlines proving how often and how easily these reactive approaches are defeated.

Today’s attack surface requires a different approach, focusing on preventative risk mitigation strategies that give more visibility and a better mechanism to tie technical risk to business context. While reactive controls are still necessary, the more we can identify areas of risk before the attackers do and close the gaps in our defenses, the fewer attacks will successfully take place and the more effective those reactive controls will be.

Preventative security strategies are driven by making better decisions about how, when and where to best mitigate risks. In this talk, we’ll review new techniques to implement within your security program that will give a better understanding of the technical and business risk across your attack surface, how to identify the areas to focus on first and ways to drive a more meaningful approach to mitigating and, more importantly, communicating risks to the business and executives before cyberattacks exploit your weaknesses.

The cost of data breaches continues to grow—topping $4.5 million on average. But what if breaches could become harmless?