Houston / San Antonio 2021

The SolarWinds SUNBURST attack was a rude awakening for many security teams, and it won’t be the last time Security leaders face tough questions about how an adversary evaded defenses and stayed hidden. With threats persisting inside the network for months, security teams need a new plan. In this session, CISO Jeff Costlow discusses strategies, including revising existing mental models and incident response processes, to build resilience in the fight against advanced threats.

With the Passwordless Decade well underway, more and more organizations are asking the question: Why is now the right time to move beyond passwords?

George Avetisov, CEO of HYPR, will discuss the rise of organizations moving to the cloud, how the perimeter fades and the attack surface gets larger. Modern tools such as SNIPR and Modlishka make it easier for hackers to launch large-scale automated attacks, bringing credential re-use and two-factor-authentication attacks to record highs. 

How did we get here, and will mainstream adoption of passwordless security have an impact? We will explore how the rise of virtual desktop infrastructure and a remote workforce has affected workstation login and review how the evolution of authentication has impacted organizations’ identity and access management systems.

In this session, you’ll learn:

Over the past few years, the number of organizations that have adopted cloud-based systems has grown exponentially, largely due to the COVID-19 pandemic. In turn, cloud security has become a critical issue for IT security executives and their teams. McAffee reported an increase of 630% in attacks by external actors targeting cloud services between January and April of 2020. This uptick in cloud security breaches is projected to persist even after the pandemic as many companies continue to utilize the cloud and leverage its benefits.

While migrating to the cloud offers numerous advantages, it also poses certain threats and challenges. In a recent report by Oracle & KPMG, over 90% of IT Professionals felt their organization had a cloud security readiness gap. A significant concern for many who are adapting to a cloud-based workforce is misconfigurations and gaps in cloud security programs. Additionally, cloud-based infrastructure requires adopting new security policies and processes. Many companies believe their existing security teams lack the necessary skillsets and knowledge that the cloud environment requires, especially as organizations turn to multi-cloud, hybrid cloud, and distributed cloud models.

This panel will highlight the areas where cloud systems can leave enterprises vulnerable, ways to minimize common misconfiguration errors, and other best practices to mitigate threats when migrating to the cloud. Our lineup of Industry Experts will provide their expertise on developing a robust cloud security strategy that addresses these issues and insight on how to stay secure in the future of cloud security.

As each organization implements a layered security program, across a distributed infrastructure and shared responsibility with their service providers, how can they gain visibility into malicious activity and orchestrate effective, business-wide responses to attacks?

Implementing great tools for IAM, PAM, Network, Data and Application security address many of the layers of controls required. Deploying solutions such as SIEM, SOAR, EDR, NDR, MDR and XDR provide varying levels of visibility and detection and response, however these silos need to be far better connected for maximum effectiveness and return on your investment.

Join IBM Security to hear how we see this all coming together while keeping the solutions that are already working well for you.

If you’re a growing modern business, you likely have an appetite for the secure access service edge (SASE). We hate to break it to you, but there’s no “secret sauce” when it comes to successfully implementing the SASE framework. Every organization is different, with variying priorities for protecting their employees, customers, data, devices, and applications. It’s best to look at SASE as a themed menu of converged technologies that allows you to choose ones that will deliver the maximum business impact. During this discussion featuring Menlo Security’s Senior Director of Cybersecurity Strategy, Mark Guntrip, he invites you to take a seat at the SASE table to learn about the deployment menu you can build for your organization. Attendees can expect to learn:

• Why Zero Trust and SASE are the perfect pairings
• How SASE enables organizations to taste productivity gains
• How organizations can create a mix of satisfying integrated controls

In an ever-expanding multi-cloud world, how do CIOs manage growing security complexity while still delivering business results? The key is to maximize the effectiveness of your human capital while building a complementary partner ecosystem to fill in the gaps. But this can be expensive, overwhelming and prone to failure if not done right. In this session, we will discuss how to align cybersecurity threat scenarios (ransomware and beyond) with corporate goals, identify core security competencies to keep in-house, and effectively develop a partner strategy to complement your team’s competencies. Further, we will explore how best to leverage partner tools and services to maximize business value while keeping your multi-cloud environments secure.

Insider Threat has become increasingly problematic to businesses as the frequency and cost of these threats have risen over the last several years. In a global study conducted by Ponemon Institute in September of 2019, there was a 31% increase in overall cost of Insider Threat and a 47% increase in the total number of Insider Incidents from 2018.

Today, Insider Threat poses an even greater risk to businesses in the wake of the COVID-19 pandemic. Forrester Research, Inc. reported that in 2020, a quarter of all security breaches were caused by an insider and estimates that in 2021, Insider Threats will account for 33% of security breaches.

This panel will discuss the various factors that contribute to this increase in Insider breaches, how remote work has impacted the malicious & non-malicious Insider Threats facing businesses, and the implications this has on enterprises today. Our lineup of Industry Experts will offer their insight & provide best-practices on how businesses and their IT Security Teams should address these risks and adapt in order to defend against Insider Threats.

Data is the lifeblood of business and other organizations in this digital age. Yet that data and the applications running the business are under constant attack. Nation states create cyber weapons that lock up data centers, sophisticated criminals employ the latest capabilities to gain access and encrypt data for ransom while destroying backups, and the threat of insiders becomes more critical as the stakes grow higher.

In this session, learn the details about how sophisticated cyber attacks occur; why cyber insurance isn’t enough and why paying a ransom has to be the option of last resort; and techniques and capabilities that can ensure your businesses’ ability to recover safely and efficiently from even a sophisticated cyber disaster.

In 2020, there was an unprecedented growth in ransomware attacks and this trend shows no signs of slowing down. Rather, these attacks are evolving and becoming more harmful as cyber criminals become more organized and effective. It is predicted that in 2021, businesses will fall victim to a ransomware attack every 11 seconds with an estimated cost of over $20 billion – 57 times more than in 2015, making ransomware the fastest growing type of cybercrime.

As a result, companies are transitioning from the traditional “trust but verify” method and implementing a Zero Trust model, requiring all users to be authenticated and continually authorized in order to be granted access and maintain access to company data and applications. By leveraging various technologies & techniques such as multifactor authentication, IAM, least privilege access, and microsegmentation, the Zero Trust model reduces the risk of a ransomware attack and minimizes the potential damage from a breach.

This panel will highlight where enterprises are most vulnerable to becoming a victim of ransomware and how utilizing a Zero Trust model minimizes this risk. Industry experts will discuss best practices to avoid a ransomware attack including adapting the Zero Trust model, what to do if your company is being held for ransom, ways to mitigate the damage caused by an attack, and how to recover afterwards.

In this deep-dive discussion, Synack Solutions Architect and Red Team Expert, Jeremiah Roe takes a practical approach to the attacker lifecycle. He walks through each of the 7 steps of the kill chain, from Reconnaissance to Actions on Objectives, providing live demonstrations and tools. Security practitioners will come away with a deeper understanding of the adversarial mindset and ways to apply an intelligence-driven defense model to identify, detect and prevent intrusions by threat actors. You’ll learn:

-How the adversary applies the kill chain

-New exploits (and how to defend against them)

-How to add rigor to your pentesting

Often we hear about ransomware targeted at organisations who are specifically targeted by gangs to make a profit, pipelines or organisations at the top of the supply chain. However, ransomware is a threat that all businesses face, even SMEs, and often these organisations struggle the most in protecting, responding and recovering from ransomware incidents. This is a true story from my first week at my first job after finishing my degree, and how we got hit by ransomware and the difficult decisions some of the most junior members of staff had to make. While we had backups, how do you make the case to shut down the entire business for a day while they are running over just paying the ransom? Overall, it’s the story of how our security culture failed and how we could have prevented the attack in the first place by following some simple pieces of advice and how other SMEs can do the same.

Zero Trust is a concept and goal for keeping your organization malware and ransomware free. Join Sean Brehm from CrowdPoint as he applies Military Science to Data Science and the Blockchain to build an effective Cyber Defense In Depth.

Prior to defending an organization against a determined attacker, their techniques must be understood. This presentation provides an adversarial viewpoint to inform network defense leaders how the attackers see their organizations and are able to be successful with their objectives, even when well defended. The presenter will draw upon over 17 years of personal experience as a Red Team operator and leader to illustrate how your organizations are viewed, through the eyes of an adversary.