Ben Nicholson has worked at Palo Alto Networks for the past 7 years. In that time he has worked as a Professional Services Engineer, Global Solutions Architect, and is now a Global Practice Leader for Prisma Cloud. He has deployed Prisma Cloud for a multitude of customers and has in-depth working knowledge of many security platforms.
I have years of experience in technical support, presenting IT solutions, and sales in a global IT market. I enjoy traveling, meeting, and interacting with different people all around the world. I am highly customer and service-driven and like to build strong relationships with clients.
Dwight has been in the IT industry for over 20 years, starting his career in the data storage space. Dwight has earned a bachelor’s in Computer Engineering and an MBA, and has utilized the skills and lessons learned there throughout his career. Dwight now brings that experience to IP Pathways, helping customers in the Iowa market achieve their business goals.
Robert LaMagna-Reiter is a leading, trusted Information Security & Risk Management professional. As CISO for Hudl, Robert leads information security strategies and roadmaps; oversees risk management; strategy; architecture and engineering; regulatory compliance, privacy engineering and IT governance. Leveraging more than 18 years of expertise, Robert helps others deliver value through proper security strategy aligned to zero-trust principles. Robert’s experience includes leadership roles in information security for transportation, government communications, retail, e-commerce, managed services & SaaS industries. Robert also serves as Advisory Board President for SOFTwarfare, Zero Trust Initiative Leader for the CyberTheory Institute, and Zero Trust Expert Committee Member for the Cloud Security Alliance.
Madina Saleh is a Solutions Engineer (SE) at Pentera.Before joining Pentera, Madina worked as a Lead Penetration Tester at the Cybersecurity and Infrastructure Security Agency (CISA) within the Department of Homeland Security (DHS) in Washington, DC. While at DHS, she concentrated on both internal and external pentesting.As a part of the Pentera SE team, Madina orchestrates the technical side through all phases of the sales cycle, from understanding customer requirements via technical discoveries, to delivering product demonstrations to address customer needs, to preparing Proof-of-Values (POV), to guiding customers through best-practices in implementing and getting value out of technical solutions.Education and Certifications:Masters of Science DegreeSoftware EngineeringMasters of Science DegreeCybersecurityGIAC Certified Intrusion Analyst (GCIA)Certified Ethical Hacker (CEH)CompTIA Cybersecurity Analyst (CySA+)CompTIA Security+CompTIA Network+
Engineer with 5+ years experience in leading Incident Response and building an effective security program. She graduated from University of Arizona’s NSA designated Center of Academic Excellence in digital forensics and cyber defense.
Rebecca Herold, CDPSE, FIP, CISSP, CIPM, CIPP/US, CIPT, CISM, CISA, FLMI, Ponemon Institute Fellow, has over 25 years of IT, info sec, & privacy experience; CEO & Founder (2004) of Rebecca Herold, LLC, aka The Privacy Professor(R); CEO & Founder (2020) of Privacy & Security Brainiacs; and host of the radio/podcast show “Data Security & Privacy with the Privacy Professor” https://www.voiceamerica.com/show/2733/data-security-and-privacy-with-the-privacy-professor. Founder (2014) & Engineer/Architect, and Owner of all IP for content, specifications and architecture of SIMBUS, LLC and all derivatives thereof.
Rebecca is an entrepreneur, author & was an Adjunct Professor for the Norwich University Master of Science in Information Security & Assurance Program for 9 years where she also created program curriculum. Rebecca led the NIST Smart Grid privacy group for 7 years and is a founding member of the IEEE P1912 Privacy and Security Architecture for Consumer Wireless Devices Working Group (June 2015). Rebecca has received numerous awards and recognitions for her work throughout the course of her career. Rebecca has is currently finishing her 20th published book to date, plus chapters in many books and hundreds of articles. Some of Rebecca’s books include:
* Security & Privacy when Working from Home & Travelling
* The Practical Guide to HIPAA Privacy and Security Compliance (2 editions)
* Data Privacy for the Smart Grid
* The Privacy Papers
* Managing an Information Security and Privacy Awareness and Training Program (2 editions)
Rebecca has a B.S. in Math & Computer Science & an M.A. in Computer Science & Education. Rebecca is a longtime member of ISACA, Infragard, IAPP, ISSA, (ISC)2, IEEE & ACM.
Other activities include:
IANS Research Faculty member
NIST IoT Cybersecurity Development SME team member since January, 2020. Supporting development of the NIST 8259 family of controls capabilities documents.
Specialties: Global privacy & security governance & compliance programs; IoT; AI; privacy laws; data flow analysis; privacy impact assessments (PIAs), performing and teaching classes since 2005 for how to perform; data subject access requests (DSARs); incident & breach response; vendor security & privacy management; security & privacy awareness & training; information security & privacy risk assessments; data & systems security engineering
Des Moines Cybersecurity Conference
Thursday, September 21, 2023
Live in Person @ Des Moines Marriott Downtown
Earn up to 10 CPE credits
About the Event
FutureCon Events brings high-level Cyber Security Training discovering cutting-edge security approaches, managing risk in the ever-changing threat of the cybersecurity workforce.
Join us as we talk with a panel of C-level executives who have effectively mitigated the risk of Cyber Attacks.
Educating C-suite executives and CISOs (chief information security officers) on the global cybercrime epidemic, and how to build Cyber Resilient organizations.
“Cybersecurity is no longer just an IT problem”
Gain the latest knowledge you need to enable applications while keeping your computing environment secure from advanced Cyber Threats. Demo the newest technology, and interact with the world’s security leaders and gain other pressing topics of interest to the information security community.
The FutureCon community will keep you updated on the future of the Cyberworld and allow you to interact with your peers and the world’s security leaders.
For sponsorship opportunities email [email protected]
Keynote Speaker
"Groundhogs & Rainbows: Rethinking Your Grand Strategy"
Robert LaMagna-Reiter
VP, Chief Information Security Officer Hudl
Robert LaMagna-Reiter is a leading, trusted Information Security & Risk Management professional. As CISO for Hudl, Robert leads information security strategies and roadmaps; oversees risk management; strategy; architecture and engineering; regulatory compliance, privacy engineering and IT governance. Leveraging more than 18 years of expertise, Robert helps others deliver value through proper security strategy aligned to zero-trust principles. Robert’s experience includes leadership roles in information security for transportation, government communications, retail, e-commerce, managed services & SaaS industries. Robert also serves as Advisory Board President for SOFTwarfare, Zero Trust Initiative Leader for the CyberTheory Institute, and Zero Trust Expert Committee Member for the Cloud Security Alliance.
CISO/Industry Leader Panel
“Cybersecurity Leaders and Experts on Current Cyberthreats and Practices”
Marc Johnson
Sr. Advisor / vCISO / vCIO
Impact Advisors
Steven L. Baccam
Director, Information Technology and Information Security Officer
VisionBank
Bill Kim
SVP/Chief Information Security Officer
Security Bank of Kansas City
Rebecca Herold
The Privacy Professor
CEO, Privacy & Security Brainiacs | Expert Witness & Author
Robert LaMagna-Reiter
VP, Chief Information Security Officer
Hudl
Premier Platinum Sponsors
Palo Alto Networks, the global cybersecurity leader, is shaping the cloud-centric future with technology that is transforming the way people and organizations operate. Our mission is to be the cybersecurity partner of choice, protecting our digital way of life. We help address the world’s greatest security challenges with continuous innovation that seizes the latest breakthroughs in artificial intelligence, analytics, automation, and orchestration. By delivering an integrated platform and empowering a growing ecosystem of partners, we are at the forefront of protecting tens of thousands of organizations across clouds, networks, and mobile devices. Our vision is a world where each day is safer and more secure than the one before. For more information, visit www.paloaltonetworks.com.
Gold Sponsors
Cloudflare, Inc (www.cloudflare.com / @cloudflare) is on a mission to help build a better Internet. Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare have all traffic routed through its intelligent global network, which gets smarter with each new site added. As a result, they see significant improvement in performance and a decrease in spam and other attacks. Cloudflare was recognized by the World Economic Forum as a Technology Pioneer, named the Most Innovative Network & Internet Technology Company for two years running by the Wall Street Journal, and ranked among the world’s 50 most innovative companies by Fast Company. Headquartered in San Francisco, CA, Cloudflare has offices in Austin, TX, Champaign, IL, Boston, MA, Washington, DC, London, and Singapore.
Pentera is the category leader for Automated Security Validation, allowing every organization to test with ease the integrity of all cybersecurity layers, unfolding true, current security exposures at any moment, at any scale. Thousands of security professionals and service providers around the world use Pentera to guide remediation and close security gaps before they are exploited. For more info visit: pentera.io.
Information Technology has become a vital part of today’s business. Technology enables you to operate in ways that were impossible a generation ago. Modern technology does more than keep your business running smoothly, it connects customers, employees, suppliers and partners to communicate better, plus enables business leaders to manage costs more efficiently, and sell products and services in new and different ways.
IP Pathways believes capital investments in technology should help businesses grow revenue, increase customer satisfaction, drive efficiencies, lower costs and create a competitive advantage. At IP Pathways, our mission is to be an expert provider of hybrid IT solutions by delivering world-class engineering services supported by high-touch customer service.
We were founded on a simple philosophy—do whatever it takes for the customer. We do this using a simple formula—deliver best-in-class technology and focus on the customer.
IP Pathways provides IT hardware and software, data center, cloud, professional and managed services, and hybrid IT solutions to small, medium-sized and enterprise customers throughout the Midwest. Our award-winning engineering team architects, implements, monitors, supports and manages private and hybrid cloud solutions for your data center, our data center or any data center. Named by CRN Magazine in 2015 as one of the 250 most certified, 500 largest and 100 fastest growing IT service providers in North America, IP Pathways helps IT move at the speed of business.
The main ambition of our software company tenfold is to discover and provide simpler ways for businesses to meet the growing demands of permission management. With our innovative software solution, “tenfold“, we have successfully revolutionized the way IT users and IT permissions are dealt with – never before has it been so easy to control and automate all important processes involved in the life-cycles of IT users, while always keeping an up-to-date, company-wide overview of who has what permissions. Together with our partners, we support medium-sized and major companies from different industries. More than 1.000 notable businesses have adopted tenfold as their .choice of user and permission management tool so far.
Recorded Future delivers the world’s most advanced security intelligence to disrupt adversaries, empower defenders, and protect organizations. With proactive and predictive intelligence, Recorded Future’s platform provides elite, context-rich, actionable intelligence in real time that’s ready for integration across the security ecosystem.
BullWall is a cybersecurity solution provider with a dedicated focus on protecting data and critical IT infrastructure during active ransomware attacks. We are able to contain both known and zero-day ransomware variants in seconds, preventing both data encryption and exfiltration. BullWall is your last line of defense for active attacks.
Silver Sponsors
ZeroFox delivers proactive external cybersecurity to outfox the adversary and disrupt, identify, and dismantle threats outside the traditional corporate perimeter. The ZeroFox Platform combines advanced AI-driven analysis to detect complex threats on the surface, Deep, and Dark Web with fully managed threat intelligence services and threat analysts who become an extension of your team – all while providing automated remediation to effectively disrupt threats.
AuditBoard is the leading cloud-based platform transforming audit, risk, and compliance management. More than 30% of the Fortune 500 leverage AuditBoard to move their businesses forward with greater clarity and agility. AuditBoard is top-rated by customers on G2 and Gartner Peer Insights, and was recently ranked for the third year in a row as one of the fastest-growing technology companies in North America by Deloitte. To learn more, visit: AuditBoard.com.
trackd.com is a modern patch management platform with a unique twist. Our solution records the experience of vulnerability remediation practitioners after they’ve applied a given patch (i.e. did it break something?), anonymizes that data, and then shares it in real-time with all other trackd platform users. The data enables remediation teams to identify the small percentage of patches that are likely to break something, as well as those with little or no history of disruption that can be considered strong candidates for auto-patching.
BARAMUNDI IS YOUR PROVIDER FOR RELIABLE UNIFIED ENDPOINT MANAGEMENT
Security requirements are constantly growing as professionally managed IT infrastructures become increasingly complex. The work of IT administrators in a company, and the performance of the IT department as a whole, are therefore becoming a key success factor within their organization, in business and in the marke. We have been the experts in unified endpoint management for the past 20 years. With the baramundi Management Suite, we can provide you with a versatile tool to help you achieve your full IT potential. Maintain control and maximize your productivity by automating routine tasks. The baramundi Management Suite is ideal for your client lifecycle management and helps to reliably manage and protect all of your devices. It is quick to install and implement, intuitive to operate, and has a modular design, thereby offering a high level of usability and transparency. Start now and benefit from the long-term advantages for your IT.
ForgeRock®, the leader in digital identity, delivers modern and comprehensive Identity and Access Management solutions for consumers, employees and things to simply and safely access the connected world. Using ForgeRock, more than a thousand global customer organizations orchestrate, manage, and secure the complete lifecycle of identities from dynamic access controls, governance, APIs, and storing authoritative data – consumable in any cloud or hybrid environment. The company is privately held, and headquartered in San Francisco, California, with offices around the world. For more information and free downloads, visit www.forgerock.com or follow ForgeRock on social media.
C1 is transforming the industry by creating connected experiences that make a lasting impact on customers, colleagues and communities. Over 10,000 customers use C1 every day to help them build meaningful connections through remarkably innovative and secure experiences. Our 2021 NPS of 80, placing us in the World Class category for the fourth consecutive year, is a testament to our ability to provide customers with the highest level of customer satisfaction, responsiveness and deep domain expertise. C1 has partnerships with key global industry partners, delivering solutions with a total lifecycle approach. C1 holds more than 5,600 technical certifications across thousands of engineers throughout North America, including three Customer Success Centers.
Arctic Wolf® is the market leader in security operations. Using the cloud-native Arctic Wolf® Platform, we help organizations end cyber risk by providing security operations as a concierge service. Highly-trained Concierge Security® experts work as an extension of internal teams to provide 24×7 monitoring, detection and response, as well as ongoing risk management to proactively protect organizations while continually strengthening their security posture.
Optiv is a security solutions integrator – “one-stop” trusted partner with a singular focus on cybersecurity. Our end-to-end cybersecurity capabilities span risk management and transformation, cyber digital transformation, threat management, security operations, identity and data management, and integration and innovation, helping organizations realize stronger, simpler and more cost-efficient cybersecurity programs that support business requirements and outcomes. At Optiv, we are modernizing cybersecurity to enable clients to innovate their consumption models, integrate infrastructure and technology to maximize value, achieve measurable outcomes, and realize complete solutions and business alignment. For more information about Optiv, please visit us at www.optiv.com.
Partners
(ISC)² is an international nonprofit membership association focused on inspiring a safe and secure cyber world. Best known for the acclaimed Certified Information Systems Security Professional (CISSP®) certification, (ISC)² offers a portfolio of credentials that are part of a holistic, pragmatic approach to security. Our membership, more than 168,000 strong, is made up of certified cyber, information, software and infrastructure security professionals who are making a difference and helping to advance the industry.
Founded in 2012, the Women’s Society of Cyberjutsu (WSC) is a National 501(c)3 non-profit community, focused on empowering women to succeed in the cybersecurity industry. WSC’s mission is to advance women in cybersecurity careers by providing programs and partnerships that promote hands-on training, networking, education, mentoring, resource-sharing and other professional opportunities.
WSC serves thousands of women across the globe by bringing awareness to, and advancing careers in, cybersecurity. The WSC community includes information security professionals, IT professionals, programmers, computer scientists and engineers, as well as women wanting to explore and join the field. Recognizing the importance of encouraging girls to embrace a future in STEM-related professions through its Cyberjutsu Girls Academy, WSC provides a unique hands-on curriculum focused on securing information technology. For more information, visit http://www.womenscyberjutsu.org.
The Pan Asian American Business Council (“PAABC”) is a non-profit organization consisting of Asian American businesses that would like to promote and grow their own and other Asian American businesses.
To enable Asian American owned businesses to develop and grow.
We put our heart and soul into this Cybersecurity Conference directory.
Way back in 2013 we had another website called “Concise Courses” which used to market and sell InfoSec training courses. We published a blog post listing all the upcoming InfoSec Conferences of that year, and Google loved the resource and put us right to the top of the search engines. That ‘accidental’ occurrence spawned this directory which is maintained by a small team comprising of Henry Dalziel and Charles Villaneuva and a bunch of freelance programmers.
What We Do:
We list, literally, every single Information Security conference, event and seminar within every niche in Cybersecurity.
We have a dedicated team that maintains our in-house tech stack, directory, and data curation.
Agenda
Times are subject to change
Opening Introductions | Check In | Networking
Presentation
Breaches - how to prepare and manage vulnerabilities in the cloud
Presentation
Behind the Scenes of Teams and OneDrive: The Secret Life of Shared Files
With the accelerated use of Microsoft 365, we are shooting more sensitive and confidential data into the cloud than we are aware of. Keeping track of what files users are sharing among each other in Teams and OneDrive and knowing who else has access to seems an impossible task. What can you do about it? Find out in this talk.
Topics covered include:
– What goes on in the background when we share data in Teams & OneDrive.
– Why more people have access to shared files than we think.
– How tenfold helps you keep track of permissions and shared files once and for all
Sponsor Networking Time
Presentation
How To Respond When Defensive Lines Fail: Restoring Business Operations with a Planned and Tested Recovery Plan
In an increasingly connected world, securing your infrastructure from bad actors is paramount to continuing business operations. In this session, we will discuss the topic of Disaster Recovery, and what to do when all lines of defense fail. With new exploits being found every day, IT departments of all sizes need to plan for the next attack. While securing your environment is important for preventing most breaches, having a successfully tested disaster recovery plan is the last line of defense for restoring business operations after a successful attack breaks through.
Presentation
New capabilities to defend against Zero Day phishing attacks
Sponsor Networking Time
Lunch
Keynote
"Groundhogs & Rainbows: Rethinking Your Grand Strategy"
Sponsor Networking Time
Presentation
Security Validation as the Heart of Exposure Management
To increase security readiness given today’s dynamic attack surfaces and diverse cyberthreats, security professionals need to move away from traditional vulnerability-centric methods to a new approach that identifies exploitable security exposures in their live IT environments.
Gartner describes Exposure Management (EM) as a new framework that incorporates the adversary’s view to continuously uncover exploitable security gaps, and prioritize remediation accordingly. One of the pillars of EM is security validation, which provides evidence of attackers’ possible achievements in the context of an organization’s deployed assets, configurations, and security controls.
During this session, we will present a pragmatic approach to implementing an Exposure Management strategy, focusing on automated security validation.
Presentation
DevSecOps Alchemy: Communications, Processes and Visibility
Sponsor Networking Time
Presentation
Terabytes from Tehran: The Opening Day that ALMOST didn't happen
Ransomware in my ballpark? It’s more likely than you’d think. Opening Day 2019 was a win for both the Milwaukee Brewers and their security team who battled the St. Louis Cardinals, AND Iranian ransomware groups. The security team will explain the timeline of what occurred and why third-party vendors can be the biggest threat to your organization.
Presentation
Even the most well-protected organizations fall victim to ransomware - what do you do when this happens?
Most organizations have already invested and implemented strong layers of security but are still vulnerable to ransomware. Cybercriminals are constantly outsmarting even the most robust security solutions; evolving methods and behaviors make it impossible for traditional security vendors to prevent them. Endpoint protection is no longer enough. This session is essential if you wish to stay ahead of the ransomware threat. It will provide you with the following knowledge:
- What is ransomware containment and how will it change my approach to stopping attacks?
- How does a containment solution complement and enhance the investment I’ve already made in my security infrastructure?
- How will containment make ransomware attacks an inconvenience rather than a major security operation?
Sponsor Networking Time
Panel Discussion
“Cybersecurity Leaders and Experts on Current Cyberthreats and Practices”
