Seattle/Bellevue

As we navigate the complexities of digital transformation and hybrid multicloud initiatives, security professionals must stay one step ahead of emerging threats. But what happens when the very technology designed to protect us – artificial intelligence – becomes a vulnerability itself?With AI adoption accelerating in the enterprise landscape, the stakes are higher than ever. A staggering 27.4% of corporate data fed into AI tools in March 2024 contained sensitive information, more than doubling the 10.7% rate from just a year ago. This alarming trend underscores the urgent need for robust security measures to protect AI-driven systems and the sensitive data they process. Furthermore, businesses must also contend with the growing threat of external actors who are increasingly leveraging AI to launch sophisticated attacks, making AI governance and security a top priority. As a result, ensuring the secure authentication and authorization of users accessing these systems is critical, particularly in today’s remote work environment where traditional security perimeters are no longer effective.Join us for a deep dive into how Security and Governance can evolve to meet your organization’s AI needs.Key Takeaways: Understand the latest threats and vulnerabilities specific to AI Learn how to help protect sensitive data and maintain regulatory compliance Discover the importance of security and governance in preventing and mitigating threats Learn how robust identity access management can secure AI-driven systems and data

Join Anthony “TonyP” Pillitiere, Co-Founder of Horizon3.ai, for an engaging session on “Offense-Driven Defense.” TonyP will challenge conventional risk assessment practices and unveil how emphasizing real-world exploitability and impact can revolutionize your security approach. Drawing from over 100,000 autonomous pentests, he’ll share compelling stories and actionable insights that reveal how viewing your cyber terrain through an attacker’s lens can uncover hidden vulnerabilities, optimize resource allocation, and fortify your defenses against advanced threats. Don’t miss this chance to learn from a leading industry trailblazer on why it’s time to “go hack yourself” to build resilience in today’s borderless threat environment.

As artificial intelligence (AI) permeates our lives, it’s crucial to address the cybersecurity challenges it presents. In this dynamic landscape, AI will be utilized by both attackers and defenders. We will explore the opportunities of leveraging AI to enhance your organization and InfoSec defenses while acknowledging the potential risks. AI-powered attacks, opaque AI systems, and a lack of standardized security practices demand proactive measures, rigorous protocols, and transparent designs to ensure a secure AI ecosystem.

Key Topics:

• Building and managing effective incident response plans.
• Detecting and mitigating cyber and physical threats.
• Using real-time data and intelligence for decision-making.

Why It Matters:
Security managers often handle tactical responses. Understanding effective response strategies ensures timely containment and resolution of incidents.

Insider threats are among the hardest cybersecurity challenges to solve. Unlike external attacks, insiders have legitimate credentials, making them nearly invisible to traditional detection methods. But what if you could uncover these threats before they escalate? Join Exabeam’s expert-led webinar to explore how our advanced UEBA technology and AI-driven workflows can surface hidden risks by understanding “normal” user behavior and identifying deviations. Learn why Exabeam’s proven machine-learning approach has made us the leader in behavioral analytics for over a decade—and how our platform can empower your team to detect, investigate, and respond to insider threats faster than ever before.

Threat actors are increasingly targeting development pipelines in order to launch software supply chain attacks that have massive downstream impacts. These attacks are successful — the Snowflake breach of 2024 in which an attacker extorted $2.7 million out of customers is proof they work. Governments across the globe have also taken note of this threat, with SBOM mandates and regulations like the Cyber Resilience Act in Europe aiming to mitigate the risks. Open source malware, another name for a malicious open source package, is proliferating — Sonatype alone has observed more than 778,500 pieces of open source malware since 2019, representing more than 200% growth year-over-year. Attendees will learn about the most prominent types of open source malware including discoveries over the past year, what attributes differentiate open source malware from traditional malware and vulnerabilities, best practices for defending against open source malware, and how the attack vector will evolve in 2025. Join this talk to learn more about: How and why threat actors are focusing efforts on infiltrating software development via open source Differentiating attributes between open source malware and traditional malware The most prominent types of open source malware impacting enterprises today, as well as how enter development pipelines Best practices for SBOM management and securing the software development lifecycle against open source malware.

In the ever-evolving landscape of digital transformation, organizations are facing unprecedented challenges in securing and scaling their cryptographic infrastructure. Yet the need for crypto agility has never been more critical as companies grapple with risks posed by advanced technologies such as AI, emerging threats like Post Quantum Cryptography (PQC), and the complex web of compliance mandates, management hurdles, and technology transformations. Join a lively roundtable discussion with a panel of your peers to gain actionable strategies as we explore: -Reducing IT resource burdens and costs through centralized certificate management -Preventing costly business outages and addressing potential security vulnerabilities -Building private and public trust while eliminating human error Don’t miss this opportunity to learn best practices and elevate your organization’s cryptographic resilience. Be part of the conversation that prepares for a quantum-safe future and shapes the future of secure digital landscapes.

Key Topics:

• Ransomware, phishing, and advanced persistent threats (APTs).
• Optimizing operations and improving security through Orchestration and Automation.
• Understanding the impact of AI and IoT on security vulnerabilities.
•  

Why It Matters:
Staying informed about the latest threats helps leaders anticipate and prepare for risks that can disrupt operations.

The emergence of Generative AI has revolutionized the way we create, process, and consume data, opening up new opportunities for innovation but also introducing unprecedented challenges for security teams. Among these challenges are the rise of shadow AI—unauthorized or unmanaged AI tools—and dark data, the vast, untapped pools of information that often remain unmonitored and unsecured. These developments require organizations to rethink their approach to data security. This session takes a deep dive into how modern data security solutions are evolving to tackle these emerging threats.

Key Topics:

• Evaluating and selecting security technologies that align with organizational goals.
• Best practices for integrating new tools into existing security infrastructures.
• Orchestrating technology solutions to maximize their effectiveness and return on investment.

Why It Matters:
Choosing, using, and integrating the right technologies is vital for building a robust cybersecurity infrastructure, and Effective technology management optimizes security investments and enhances overall protection against evolving threats.

While threat actors constantly adapt and evolve their techniques, the tactics they employ remain limited and unchanging. A CISO with an understanding of modern attack trends can hone their focus on enduring tactics, rather than ever-changing techniques, to reverse the adversarial advantage and enable the business to better anticipate and defend against threat actors. Join this session to examine: Modern attack trends and real-world individual attacks Understanding the motives of threat actors to craft effective security protocols and playbooks Increasing visibility to make better informed decisions.