CISO Chicago Summit | October 18, 2018 | Trump Hotel Chicago - Chicago, IL, USA

↓ Agenda Key

Keynote Presentation

Visionary speaker presents to entire audience on key issues, challenges and business opportunities

Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee." title="Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee.

Executive Visions

Panel moderated by Master of Ceremonies and headed by four executives discussing critical business topics

Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members." title="Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members.

Thought Leadership

Solution provider-led session giving high-level overview of opportunities

Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community." title="Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community.

Think Tank

End user-led session in boardroom style, focusing on best practices

Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard." title="Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard.

Roundtable

Interactive session led by a moderator, focused on industry issue

Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done." title="Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done.

Case Study

Overview of recent project successes and failures

Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions." title="Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions.

Focus Group

Discussion of business drivers within a particular industry area

Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions." title="Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions.

Analyst Q&A Session

Moderator-led coverage of the latest industry research

Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst." title="Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst.

Vendor Showcase

Several brief, pointed overviews of the newest solutions and services

Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences." title="Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences.

Executive Exchange

Pre-determined, one-on-one interaction revolving around solutions of interest

Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest." title="Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest.

Open Forum Luncheon

Informal discussions on pre-determined topics

Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch." title="Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch.

Networking Session

Unique activities at once relaxing, enjoyable and productive

Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive." title="Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive.

 

Thursday, October 18, 2018 - CISO Chicago Summit

7:15 am - 8:00 am

Registration and Networking Breakfast

 

8:05 am - 8:15 am

Welcome Address and Opening Remarks

Presented by:

Steve Rubinow, President, Infocology View details

 
 

Jerry Pancini, Former VP Global Application Development and Support at Stericycle, Individual View details

 
 
 

8:15 am - 8:45 am

Keynote Presentation

Digital Transformation: A Journey Not a Destination

There are many forces that are driving companies to continue to transform how they do business. Technological advances such as IoT, AI, machine learning, virtual reality and augmented reality are creating demanding expectations from customers, employees and boards. Adding to the complexity of CIOs and CISOs is the increasing threats to the security of the data that is at the heart of digital transformation. This keynote presentation will focus on the realities that this transformation will never end and it is critical to implement both the mindset and processes to treat digital transformation as a journey...not a destination.

Takeaways: 

  1. It is critical to realize that digital transformation will never end, but will always be unfolding.
  2. CIOs and CISOs must implement processes to ensure that not only their departments are forward thinking, but that their entire company is aware of what new technologies can bring to bear for customers and employees.

Sponsored by:

 

Presented by:

Steve Betts, SVP & CIO, Health Care Service Corp View details

 
 
 

8:50 am - 9:20 am

Share:

Keynote Presentation

What Did Your Data Do Last Night?

91% of organization are not using their data effectively. Are you? Organizations possessing incredible stores of unique data are often not prepared to take advantage of those valuable assets - resulting in negative or reduced ROI from the data, incorrect or biased decision making, risk of potential compliance or security violations, and lost opportunities to gain competitive advantage. Be a part of the 9% that is using their data effectively. Join us to learn the best approach to data that services the needs of the entire organization, enabling a truly data-driven culture that will ensure you can know your data, trust your data, and use your data effectively.

Presented by:

Rob Harris, Chief Data Governance Architect, IBM View details

 
 

IBM View details

 
 
 

9:25 am - 9:50 am

Executive Exchange

 

Share:

Thought Leadership

Knowing Is Half the Battle - Protecting Applications & Their Sensitive Data

Application security testing tools scan your code to reveal the long lists of known vulnerabilities, but not all are remediated before the next release-even with mature secure software development practices. Enterprises resort to using theoretical levels of criticality - not actual risks-to prioritize which accumulated vulnerabilities to fix and in what order. Many vulnerabilities often undergo an exception process and make it into protocol. 

A real-time, embedded solution like Prevoty's runtime application self-protection RASP changes the game completely. Prevoty places an automated security mechanism at the front of the line - directly in the application's operating environment - to immediately lower risk and act as a compensating control at runtime. 

As such, Prevoty-enabled enterprises see 98%+ of their known vulnerabilities mitigated instantly, reducing backlogs and expediting an otherwise cumbersome release process. Prevoty RASP detects live production attacks and generates real-time security event longs and reports. Security teams can then correlate pre production vulnerability scan results with Prevoty's runtime attack logs to go back, remediate based on actual risk - not just hypothetical threats. The result? Improved forensics.

Sponsored by:

Prevoty, Inc. View details

 
 

Greg Wolford, Solutions Architect, Prevoty, Inc. View details

 
 
 

9:55 am - 10:20 am

Executive Exchange

 

Share:

Thought Leadership

The Connected Worker & the Enterprise of Things

The smartphone is the primary communication and computing device for many of today's consumers. This dependency on mobile devices will translate into a majority of enterprise computing outside of traditional PC computing. This will have the greatest impact with on campus (non-office-based) and off campus mobile workers who are becoming increasingly connected by rich real time communications powered by mobile applications running on wearable devices such as smart glasses. The rise of IoT in the enterprise, or the Enterprise of Things, will allow these workers to instantly connect with assets in the field to gain immediate understanding of the situation around them. 

This session will explore the impact that these connected workers and endpoints will have on your enterprise and its ability to drive growth. Attendees will also learn security concerns that come with these new tools and how to best address them.

Sponsored by:

BlackBerry View details

 
 

Todd Berger, Senior Director, Technical Solutions, BlackBerry View details

 
 
 

10:25 am - 10:50 am

Executive Exchange

 

Think Tank

CISO's Got Talent: Finding, Growing & Retaining the Best People

While new technology and solutions can help CISOs make more, faster and better decisions for an organization, nothing will take the place of a highly talented workforce. CISOs need to be great recruiters of talent but even more importantly growing the skills and capabilities of their team providing engaging and challenging opportunities for people. Competitive compensation is important for retaining great talent but so is a work environment where individual growth and development are front of mind and not an after thought. 

Takeaways: 

  1. Highly skilled employees want an environment where they can grow their skills and feel appropriately challenged  
  2. Finding the best people, inside and outside of your company, and then providing a path to individual excellence is a key responsibility of CIOs

Presented by:

Steve Rubinow, President, Infocology View details

 
 
 

10:55 am - 11:20 am

Executive Exchange

 

Thought Leadership

Enabling a Business-First Network: The Emerging Solution for a Cloud-First Enterprise

As enterprises continue to adopt cloud infrastructure and applications, exploding traffic levels and changing traffic patterns are driving them to re-evaluate their WANs. The WAN is a key enabler in transforming businesses to the new digital economy, but the current WAN infrastructure based on conventional routers was not designed for the cloud. To keep branch offices protected from threats, all web-bound traffic is backhauled to headquarters-based security services, which negatively impacts cloud application performance. As a result, enterprises are faced with architectural complexity, inconsistent application performance, and security challenges for applications and users.

Sponsored by:

Silver Peak Systems View details

 
 
 

11:25 am - 11:50 pm

Executive Exchange

 

Executive Boardroom

Risky Business: The Hidden Threat in Your Organization

Cyber security threats continue to proliferate. When combating these growing risks, most organizations place more trust in technology-based solutions than on training their employees to be more aware of the threat landscape and able to recognize cyber breach attempts.  

Join Erich Kron as he explains the emerging threats, the strengths and weaknesses that users bring to an organization's security culture, and strategies to fortify your last line of defense, your users. 

In this session you will learn:  

  • Current and emerging attack landscape 
  • Right and wrong approaches to changing employee behavior 
  • How to build a successful Security Awareness Training Program

Sponsored by:

KnowBe4, Inc View details

 
 

Presented by:

Erich Kron, Security Awareness Advocate, KnowBe4, Inc View details

 
 

Share:

Executive Boardroom

Finding the Right Security Partner: The Difference Between MSSP and MDR

In today's world of increasing cyber threats, selecting the best security partner for your organization can be challenging. With innovative services such as Managed Detection and Response changing the way organizations respond to threats, it's important to understand the difference between traditional MSSPs and MDR providers. This presentation will focus on the realities of using MSSP technologies versus MDR and provide selection recommendation guidelines for CISOs.

Takeaways: 

  1. Vendors can respond to incidents proactively or reactively 
  2. Not all MDR vendors are the same 
  3. Use a proof of concept to authenticate vendor claims 
  4. Validate the vendors regulatory experience

Sponsored by:

eSentire View details

 
 

Presented by:

Steve Fuller, Senior Solutions Engineer, eSentire View details

 
 
 

11:55 am - 12:20 pm

Executive Exchange

 

Thought Leadership

Transforming Your Business - Turning Process Insights Into Action

For Global 2000 companies, transforming to an intelligent enterprise has become a key strategic priority. For decades this has been a manual, time-consuming and expensive consulting-driven approach that recently got disrupted to jump-start and operationalize change in transformation initiatives. 

Built on its process mining technology, The Celonis Intelligent Business Cloud provides visibility into existing process flows, a detailed analysis of process metrics, and an intelligent framework for process improvements across all operational systems. Engaging everyone in the enterprise in transformation initiatives is the difference between successfully driving change and failure. The new Action Engine recognizes process improvement opportunities in real-time and produces signals when processes can be optimized so everyone in an organization can contribute to business transformation success. 

Companies around the world including Siemens, GM, 3M, Airbus and Vodafone rely on Celonis technology to guide action and drive change to business processes, resulting in millions of dollars saved and an improved experience for their customers.

Sponsored by:

Celonis View details

 
 

Steven Trafficanta, Enterprise Account Executive, Celonis View details

 
 
 

12:25 pm - 1:25 pm

Working Lunch & Innovation Showcase

A brief, but compelling review of four new innovative technologies supporting digital transformation.

Sponsored by:

NetMotion Wireless View details

 
 

Comodo View details

 
 

Datalink, a division of Insight View details

 
 

GTT Communications View details

 
 
 

1:30 pm - 1:55 pm

Executive Exchange

 

Share:

Thought Leadership

Digital Transformation - Architecting Your Digital Platform at the Edge

The digital economy is forcing enterprises to transform how they connect customers, partners, employees and operations. Today's market leaders credit their speed and business advantages to their digital platform. Equinix will discuss how an Interconnection Oriented Architecture (IOATM) with a step-by-step playbook can redefine the edge - which is where to localize delivery of cloud-supported services to your customers, employees and partners - and architect your digital platform.

Sponsored by:

Equinix View details

 
 

John Luciana, Senior Sales Director, Equinix View details

 
 

Olu Rowaiye, Solutions Architect, Equinix View details

 
 
 

2:00 pm - 2:25 pm

Executive Exchange

 

Share:

Thought Leadership

CA Corporate Strategy Modern Software Factory

The Modern Software Factory is a blueprint for combining agility, automation, insights, and security to transform your digital business - so you can compete to win in the application economy. CA Technologies provides best practices, guidance, and compelling products to help your organization deliver the trust, value, speed and reliability your customers demand.

Sponsored by:

CA Technologies View details

 
 

Sanjay Tailor, Advisor, Enterprise Solutions, CA Technologies View details

 
 
 

2:30 pm - 2:55 pm

Executive Exchange

 

Share:

Executive Boardroom

Knowing Your Network: Tracking Your Assets in the Age of Machine-Speed Attacks

In this talk, we'll discuss how attackers have begun conducting internet-scale attacks at machine speed by leveraging new scanning technologies. Qadium will present examples of how new classes of perimeter exposures are creating new risks and data on global internet trends.

Sponsored by:

Expanse View details

 
 

Presented by:

Marshall Kuypers, Director of Cyber Risk, Expanse View details

 
 

Share:

Executive Boardroom

Making Zero Trust A Reality

Implementing a zero trust security strategy involves two bodies of work. One is preparing your applications and data for access on the public internet as well as segmenting your internal network to stop traverse attack and is often described as the companies digital transformation. The second is enabling and controlling access to those resources based on a level of trust, starting at zero, ascribed to the endpoints attempting to access them. Many organizations have made significant progress on their digital transformation, but continue to use legacy approaches to endpoint management that undermine the zero trust model. This session will examine modern approaches to establishing and continuously monitoring endpoint trust.

Presented by:

Praveen Mamnani, Principal Product Manager, Lookout View details

 
 

Lookout View details

 
 
 

3:00 pm - 3:25 pm

Executive Exchange

 

Share:

Executive Boardroom

Preventing Unknown Cyberattacks Instantaneously & Effortlessly

Cyber criminals use advanced threat technology that bypasses today's endpoint defenses. IT is challenged to simplify and focus on business goals. Morphisec lets IT both combat advanced threats and simplify. Advanced threats have a strength that is also their weakness. They execute in memory, where AV cannot detect them, but if they can not find the specific DLL they must target in memory, the attack is terminated. Period. 

Morphisec dynamically scrambles the run-time environment, making it impossible for an attack to find its DLL. The implications for simplicity are profound. Morphisec has no run time component and no CPU utilization. It prevents attacks so early in the kill chain, there is nothing to analyze or investigate. There are no signatures, rules, or databases to update. It works with all other security tools. It silently and relentlessly prevents advanced threats, with no impact on end users or IT.

Sponsored by:

Morphisec Inc. View details

 
 

Presented by:

Arthur Braunstein, VP US Sales, Morphisec Inc. View details

 
 
 

3:30 pm - 3:40 pm

Afternoon Networking Coffee Break

 

3:45 pm - 4:10 pm

Executive Exchange

 

Think Tank

Digital Transformation - More Than Technology

Most organizations would indicate that they are focusing on "digital transformation". This broadly used term is often translated to mean very different things, but is always focused on improvement to advance an organization's strategy or mission. This discussion will help identify key aspects of digital transformation that go beyond the technology and how to effectuate more lasting change.

Takeaways: 

  1. Digital transformation is more than technology 
  2. Organizational transformation will help establish continual digital improvement.

Presented by:

Kirk Lonbom, Chief Information Officer, State of Illinois View details

 
 

Think Tank

Achieving Visibility Across the Enterprise as a First Step Toward Automation and Orchestration

Motorola Mobility is one of the world's fastest growing smartphone providers. As their network grew, they needed to build a security architecture that scaled to cover it. This case study shows how Motorola Mobility has increased its visibility into the activity taking place across the network and will give you a recipe that you can substitute, change or scale to create your version of the Security Ecosystem. 

Takeaways:

  1. How using deep packet inspection, endpoint protection, and threat intel was used for in-depth detection and response and automation 
  2. How to select the right detection tools for your environment
  3. Easy wins for Orchestration and Response 
  4. Results so far and lessons learned

Presented by:

Richard Rushing, CISO, Motorola Mobility View details

 
 
 

4:15 pm - 4:40 pm

Executive Exchange

 

Think Tank

Big Data, Little Data. Secure Data, Lost Data.

If digital transformation is a journey, then data is the fuel that will transport your company from here to there. What data do you have access to? How can you make sense out of the data and thus make decisions from it? How does a company use data to be a disruptor and not a victim? And how do you secure that data to ensure that the digital transformation journey does not end prematurely?

Takeaways:

  1. Digital transformation without constant access to usable and reliable data will be a slow and arduous journey.
  2. Digital transformation exposes increasing amounts of data potentially vulnerable to cyber attacks and must be addressed.

Presented by:

Nalini Polavarapu, Head of Digital Innovations, Bayer CropScience

 

Think Tank

Which "Friends" Do I Trust? Realities of 3rd Party Risk

It is not a matter of if, but a matter of when. Organizations, more and more, and are outsourcing business activities to 3rd-parties because of cost-savings, revenue opportunities, expertise, etc. Thus collaborating with our business partners early to select the right 3rd-party vendor(s) with the appropriate security posture is essential, especially for vendors hosting, processing and/or transmitting sensitive/regulatory information, or having access to our IT assets. 

Takeaways: 

  1. Regardless of the reasons, outsourcing some business functions to a 3rd party seems inevitable in today's world 
  2. It is critical to have a proper vetting procedure of 3rd parties before engaging them as business partners who have access to company systems and data

Presented by:

Joe Rickard, CTO, CISO, Incapital View details

 
 
 

4:45 pm - 5:15 pm

CIOs/CISOs as the Consummate Communicator

Digital transformation is changing how you equip your employees and how your company interacts with customers. It is also changing the role of the CIO and CISO to be a business leader and internal sales leader for transformation. CIOs are now responsible for communicating strategies and recommendations to CxOs, boards and key stakeholders within a company. Join us, during lunch, for a passionate panel discussion with your peers as they share how they are successfully communicating internally to accomplish the company's goals. 

Takeaways:

  1. CIOs must be great communicators, not only with their teams, but the rest of the organization
  2. CIOs must learn the best ways to communicate clarity and urgency with Boards and CXOs

Moderated by:

Steve Rubinow, President, Infocology View details

 
 

Panelists:

Paige Adams, Group CISO, Zurich Insurance Group View details

 
 

Danny Trivedi, SVP Information Security, Head of Data Security, Wintrust Financial Corporation View details

 
 

Carla Wheeler, Global CIO/CISO, Heartland Alliance View details

 
 
 

5:15 pm - 6:30 pm

Summit Happy Hour