Silicon Valley

Join Snehal Antani, CEO of Horizon3.ai, for an eye-opening session where he’ll discuss real-world examples of what NodeZero discovered in networks just like yours. You’ll hear about how fast and easy it is to compromise some of the largest networks in the world – with full domain takeover – often in minutes, and sometimes, without even exploiting a CVE.
During this session, you’ll learn how attackers:
• Use OSINT and password spraying to takeover systems without ever targeting CVEs.
• Land and expand with legitimate credentials, then poison assets to take over domains.
• Find cloud credentials and use them to compromise cloud services.

As cyber threats evolve at unprecedented speed, the need for robust community-focused cybersecurity education has never been greater. In this session, Chirag Shah, Global Information Security Officer & DPO at Model N, will explore how organizations and individuals can leverage the ERA (Education, Resilience, Awareness) framework to strengthen community cybersecurity. Attendees will learn practical strategies for fostering knowledge-sharing, empowering local networks, and building sustainable programs that enhance digital safety beyond the corporate perimeter. This session highlights the critical role of education in creating resilient, informed communities that can collectively respond to emerging threats.

• Emerging vectors of third-party risk, including AI models, algorithmic supply chains, and cloud-native platforms
• The shift from static assessments to continuous monitoring and adaptive risk models
• How regulation, privacy demands, and geopolitical forces are reshaping liability and contracts
• Practical steps organizations can take to strengthen third-party governance without slowing innovation

Key Topics:

• Building and managing effective incident response plans.
• Detecting and mitigating cyber and physical threats.
• Using real-time data and intelligence for decision-making.

Why It Matters:
Security managers often handle tactical responses. Understanding effective response strategies ensures timely containment and resolution of incidents.

Artificial Intelligence is revolutionizing the world at an unprecedented pace—reshaping industries, redefining possibilities, and occasionally, delivering laugh-out-loud failures. But how safe is this brave new world of AI? And what does it mean for businesses, individuals, and society at large? We’ll explore the evolution and proliferation of APIs, the unsung heroes powering mobile apps, supply chain optimization, and the Internet of Things, and the role they play in the future of the internet. Billions of bots silently execute tasks, but at what cost? We’ll dive into the hidden, obvious, and subtle expenses of this automation boom, from operational efficiencies to unforeseen vulnerabilities. And just when you thought DDoS attacks were a thing of the past, we’ll debunk the myth: DDoS isn’t dead—it’s evolving. We’ll discuss why volume still reigns supreme, the rise of sophisticated Layer 7 attacks, and how to stay ahead in this ever-changing landscape. Finally, we’ll look to the future, guided by three principles: Futurize, Unite, Simplify. Join us for an engaging, insightful, and occasionally humorous journey through the cutting-edge technologies shaping tomorrow’s world.

In this session, we’ll explore how a converged SASE platform combined with AI and machine learning (ML) enables real-time threat detection and mitigation, transforming network security from a reactive to a proactive model. The focus will be on how AI-driven solutions within the SASE framework can identify, analyze, and neutralize security threats in real-time across distributed environments.

Bridging the AI Talent & Skills Gap in Cybersecurity Teams 

As AI becomes an integral part of cybersecurity operations, the demand for AI-literate security professionals is growing. However, many teams struggle to find and develop talent with the right mix of cybersecurity expertise and AI proficiency. This discussion will explore strategies for addressing the AI skills gap, including upskilling existing security teams, partnering with educational institutions, and leveraging AI-driven security tools effectively. Attendees will share best practices, challenges, and innovative approaches to building a future-ready cybersecurity workforce. 

Managing Third-Party & Supply Chain Cyber Risks 

Recent high-profile breaches have underscored the vulnerabilities in third-party and supply chain ecosystems. With organizations increasingly dependent on external vendors, ensuring security across the supply chain is more critical than ever.  

This discussion will focus on how organizations can enhance vendor risk management, implement effective due diligence strategies, and improve visibility into third-party security practices. Attendees will examine real-world challenges, regulatory considerations, and practical solutions to strengthen resilience against supply chain threats.

Key Topics:

• Ransomware, phishing, and advanced persistent threats (APTs).
• Optimizing operations and improving security through Orchestration and Automation.
• Understanding the impact of AI and IoT on security vulnerabilities.

Why It Matters:
Staying informed about the latest threats helps leaders anticipate and prepare for risks that can disrupt operations.

Enterprises have spent decades wrestling with brittle DLP tools, noisy alerts, and checkbox data security policies. Now AI has introduced new blind spots — from Shadow AI sprawl to sensitive data leaks — that legacy approaches can’t contain. Governance gaps, unenforceable policies, and outdated controls aren’t enough to securely enable AI adoption. In this session, Rick Holland (Data & AI Security Officer at Cyera and former Forrester Research analyst) shares scars, humor, and practical steps to reboot data security for the AI age. Attendees will leave with quick wins they can apply immediately, plus a clear roadmap to move beyond checkboxes and protect both data and AI without slowing innovation.

While generative AI has captured headlines, the real breakthrough for GRC professionals lies in multi-agent systems that coordinate specialized reasoning engines behind the scenes. In this session, discover how Trustero’s multi-agent AI architecture transforms weeks of manual compliance analysis into minutes of automated precision. Watch live as our AI extracts requirements from complex regulatory frameworks, converts them into actionable policy questions, and delivers comprehensive gap analysis with full source attribution. Learn how leading organizations are reclaiming thousands of hours per audit cycle—and cutting down on mistakes—while shifting their teams from tedious analysis to strategic risk management. We’ll explore the technical architecture that makes this possible, demonstrate real-world use cases across security and privacy compliance, and share early customer results showing reductions in external consultant dependencies. Whether you’re drowning in manual compliance work or looking to transform your GRC operations, this session reveals how multi-agent AI is reshaping what’s possible in governance, risk, and compliance.

Hear from the women shaping the future of cybersecurity. This executive panel features trailblazing female cybersecurity leaders who are not only securing global enterprises and critical infrastructure, but also redefining what leadership looks like in the industry. In a candid, high-impact discussion, panelists will share lessons from the front lines—navigating complex threats, building high-performing teams, and breaking barriers in a traditionally male-dominated field. Attendees will gain executive-level insights into how diverse leadership drives stronger outcomes, how to build more inclusive cultures from the top down, and why supporting women in cyber isn’t just good optics—it’s smart strategy.

• How cybersecurity leaders can align security strategy with core business goals to drive value, not just compliance
• The skills and mindsets that separate effective leaders: adaptability, communication, influence, and cross-functional leadership
• Lessons learned from leading security teams through crisis, transformation, and scaling
• Strategies for staying ahead of emerging threats while navigating regulatory, geopolitical, and resource constraints
• The future of the CISO and security executive: how roles, responsibilities, and expectations will continue to evolve