Greg Genung is the Director of Strategy & Innovation at deepwatch, the Denver, Colorado and Tampa, FL based security services provider powered by its world-class MDR SecOps platform. With over 20+ years of experience across IT, cybersecurity, and startup leadership roles, Genung has a proven track record of providing successful leadership, optimizing security operations, and creating holistic cybersecurity programs. In 2020, Genung was named one of the world’s Top 10 Software Product Executives while heading up Research and Development Product Strategy for deepwatch. Prior to joining deepwatch in 2019, Genung held a leadership role as Senior Manager of Technical Strategy at Rackspace where he was responsible for shaping, building, and executing the long-term Rackspace Managed Security (RMS) product portfolio ($230M), go to market engine, and growth strategies. Genung was also one of the founding members of the Retail-ISAC (R-CISC) as the first employee of the DHS-backed threat intelligence sharing center for the world’s largest retail and hospitality providers. He has held a number of roles at 21CT, Praetorian, and Denim Group as well as currently as an investor in small cybersecurity startups. Ultimately, what drives this industry thought leader is his fascination with building safe and healthy interactions between humans and machines to help companies build a more resilient, secure future.
Throughout the past 15 years, I have acquired a strong appreciation and understanding of how IT organizations operate from end to end. The various roles I have owned within traditional IT as an Infrastructure Architect, Sales Architect, Desktop Support Lead and a Manager has proven to be invaluable to my progression as a Security Professional.
My passion to develop and encourage colleagues and friends has cultivated the person I am today. A father, student, teacher, advisor, and a dedicated advocate for growth in my personal life, and what has become a steadfast and unwavering career path.
Meghan is a passionate GRC evangelist, DIBs champion, and acronym enthusiast with over 15 years supporting audit, governance, security, risk, and compliance activities in highly regulated markets. Prior to joining Reciprocity, she worked with mobile application and SaaS platform developers designing, executing, and managing GRC programs- including the deployment of Reciprocity ZenGRC at multiple companies. Meghan specializes in process improvement and program iteration to resolve issues, drive innovation, and produce sustainable solutions.
As a senior executive and corporate board member with deep experience in energy, manufacturing and high-tech, I am known for visioning and then executing digital global transformations to fuel growth, scale operational performance and enable business resiliency as well as for domain expertise in supply chain transformations; cyber security; and asset performance management.
My career success is attributed to a history of creating world-class teams and organizations, wherein I hire and partner with great people and organizations; institute strong governance processes; and instill a culture with core values of accountability, trust and respect for others. I am recognized for my passion for excellence, negotiating win-win frameworks; forging lasting relationships; mentoring; teaming; and successfully leading change.
Jake Flynn is a solutions engineer at Pentera. He spent the last few years largely focused on defensive technologies. He was able to gain hands-on experience with a wide variety of tools including endpoint protection, EDR, vulnerability management, incident detection & response, SIEM, and cloud security. Jake has had the unique opportunity to see hundreds of networks, and architect solutions to fit specific use cases. Wanting to make a change to the offensive side of security, He joined Pentera where they empower security teams to combine their defensive strategies leveraging an offensive perspective.
With two IPOs & seven acquisitions Brian has helped build some of the most successful security companies in the world. He has over 25 years in the security industry as security company entrepreneur, board advisor, investor, and author. After getting his start with the Defense Information Systems Agency (DISA) and later Bell Labs, Brian began the process of building security startups and taking multiple companies through successful IPOs and acquisitions including: Riptech, ArcSight, Imperva, McAfee, Solera Networks, Cylance, JASK, Verodin, and Mandiant.
Brian has worked in over 50 countries across six continents. He authored the book Enemy at the Water Cooler and he co-authored Physical & Logical Security Convergence with former NSA Deputy Director William Crowell. He was featured in the cyberwar documentary 5 Eyes alongside General Michael Hayden, former NSA and CIA Director. Brian has written for and been interviewed by security and business press and regularly presents at conferences worldwide like Black Hat, RSA, & BSides.
Significant Accomplishments:
• For a large retailer needing to obtain CCPA Compliance quickly, managed the completion of the GAP analysis and assessment and wrote the final report, managed the team that produced the processes for implementation by the client, and worked to define and vet the architecture documents and process flow. Also heavily involved in architecting OneTrust, and in it’s interaction with the data discovery tool.
• For a Global Retailer, managed 3 professionals in a 2 month project the performed a GDPR gap analysis of two web platforms and three mobile apps, identifying approximately 50 gaps and remediation steps, and coordinated remediation efforts with vendors to assist in fixing the issues. Identified the need for Access Certifications in areas where the client had not previously utilized them. Reviewed Data Processing Addendums for processors and recommended controls. Evaluated the controls for a social media processor and made recommendations, and prepared a Summary of GDPR Controls Implemented.
• Led a small Team and Created an Encryption Compliance and Key Management Strategy and Presentation, a support document, and an encryption compliance standards document for a large insurance firm looking for direction in complying with GDPR/NYDFS. This gave them a strategy to enable them to prove to a regulator after a breach that the data stores in question were encrypted, if indeed they were, and that a Centralized Key Management System was in place to ensure that the keys did not go out with the data, if indeed it was.
• Performed, for a business services company, a maturity and risk assessment against NIST CSF using CISv7 for a SOC 2 engagement. Gave them what they needed to improve their security posture, and to support and augment, where needed, their SOC 2 controls.
• Recently BISO, Regional CISO for The Americas, for an Insurance Broker, concentrating on compliance in HIPAA, Privacy Shield, NYDFS, GDPR, and implemented a DLP system. Began implementing the CIS Security Controls Framework. Enabled them to become Privacy Shield compliant within a few months by implementing the needed processes and controls, including Third Party Agreements / Data Protection Addendums.
As an award-winning technology and security executive with an MBA, I offer 20+ years of experience in cross-functional technology roles for startups and Fortune 500 corporations. My background includes success in steering a future-focused vision as well as a risk-averse, business-aligned technology strategy to improve costs, efficiencies and scalability.
A balance of technology, financial and business acumen allows me to seamlessly interface with diverse business stakeholders. One of my greatest strengths is my ability to garner buy-in from executives and business leaders on technology initiatives that produce bottom-line results.
Given the complex nature of IT and information security operations, it’s easy to become wrapped up in the details. However, you must maintain a broader view of operations and align strategies with overall corporate objectives. This is where I excel. I’m counted on to deliver technical insights for business decision making, often presenting and influencing up to the Board.
Unique differentiators:
► Author of The Coming Cyber War: What Executives, The Board, And You Should Know – an Amazon #1 New Release
► 2017 FBI CISO Academy alumnus
► Secret clearance and multiple certifications (current and past) including PCIP, ISA, Security+, C|CISO, PMP, ScrumMaster, TOGAF, CISM and CISA
► Calm, disciplined leadership approach acquired during US Air Force tenure
► Multiple Board appointments including Venture Capital firms, Universities, Optiv Customer Advisory Board, InfraGard Houston Chapter Board and Texas Banker’s Association Technology Committee (former, among others
David Mata served 12 years at the Central Intelligence Agency developing and executing global cyber operations. In his last role as Mission Director, David coordinated and oversaw numerous multi-agency national security operations focusing on deconfliction, tradecraft and execution. In addition to his extensive career in the intelligence community, David served as VP in the Threat Management Center for Goldman Sachs where he specialized in Cyber Intelligence and Insider Threat. David now leads the Global Incident Management team and works across Darktrace to proactively support clients with emerging threats and investigations
Experienced Cybersecurity Expert with a demonstrated history of working in the IT industry. Talented speaker with the ability to synthesize data into easy to understand presentations. Skilled in Intelligence Analysis, Python, Analytical Skills, Government, and Computer Science. Strong engineering professional with a Master of Business Administration (MBA) focused in Technical Management from University of Phoenix.
Houston CyberSecurity Conference
Wednesday, August 24, 2022 CT
Live in Person @ Doubletree Houston Hobby Airport
In Person | Virtual | Hybrid
Earn up to 10 CPE credits
About the Event
FutureCon Events brings high-level Cyber Security Training discovering cutting-edge security approaches, managing risk in the ever-changing threat of the cybersecurity workforce.
Join us as we talk with a panel of C-level executives who have effectively mitigated the risk of Cyber Attacks.
Educating C-suite executives and CISOs (chief information security officers) on the global cybercrime epidemic, and how to build Cyber Resilient organizations.
“Cybersecurity is no longer just an IT problem”
Gain the latest knowledge you need to enable applications while keeping your computing environment secure from advanced Cyber Threats. Demo the newest technology, and interact with the world’s security leaders and gain other pressing topics of interest to the information security community.
The FutureCon community will keep you updated on the future of the Cyberworld and allow you to interact with your peers and the world’s security leaders.
For sponsorship opportunities email sales@futureconevents.com
Keynote Speaker
"Creating a high-performance culture that features teamwork, collaboration, imagination, inclusion and innovation."
Laura Tibodeau
Global Digital Innovation & Transformation Leader Ascend Performance Materials
As a senior executive and corporate board member with deep experience in energy, manufacturing and high-tech, I am known for visioning and then executing digital global transformations to fuel growth, scale operational performance and enable business resiliency as well as for domain expertise in supply chain transformations; cyber security; and asset performance management.
My career success is attributed to a history of creating world-class teams and organizations, wherein I hire and partner with great people and organizations; institute strong governance processes; and instill a culture with core values of accountability, trust and respect for others. I am recognized for my passion for excellence, negotiating win-win frameworks; forging lasting relationships; mentoring; teaming; and successfully leading change.
CISO/Industry Leader Panel
“Cybersecurity Leaders and Experts on Current Cyberthreats and Practices”
Harvey Nusz
Privacy/Cybersecurity Compliance Expert
Laura Tibodeau
Global Digital Innovation & Transformation Leader
Ascend Performance Materials
Marc Crudgington
Founder, CEO, vCISO
CyberFore Systems Corp.
David Mata
SVP, Global Head of Incident Management
Darktrace
James Morrison
FBI Cyber (Ret), CISSP, MBA, Veteran
National Security Specialist/Security Evangelist at Intelisys
Premier Platinum Sponsors
Darktrace is the world’s leading cyber AI company and the creator of Autonomous Response technology. It provides comprehensive, enterprise-wide cyber defense to over 4,000 organizations worldwide, protecting the cloud, email, IoT, traditional networks, endpoints and industrial systems.
A self-learning technology, Darktrace AI autonomously detects, investigates and responds to advanced cyber-threats, including insider threat, remote working risks, ransomware, data loss and supply chain vulnerabilities.
The company has 1,300 employees and 44 office locations, with headquarters in Cambridge, UK and San Francisco. Every 3 seconds, Darktrace AI fights back against a cyber-threat, preventing it from causing damage.
Platinum Sponsors
Deepwatch helps secure the digital economy by protecting and defending enterprise networks, everywhere, every day. Deepwatch leverages its highly automated cloud-based SOC platform backed by a world class team of experts who monitor, detect, and respond to threats on customers’ digital assets 24/7/365. Deepwatch extends security teams and proactively improves cybersecurity posture via its Squad Delivery and patented Security Maturity Model. Many of the world’s leading brands rely on Deepwatch’s managed detection and response. Visit www.deepwatch.com.
Gold Sponsors
Reciprocity® is pioneering a first-of-its-kind approach to IT risk management that ties an organization’s risk directly to its business strategy. The fully integrated and automated Reciprocity ROAR Platform, which underpins the Reciprocity ZenRisk and ZenComply applications, enables security executives to communicate the direct impact of risk on high-priority business initiatives to key stakeholders, helping them make smarter, more informed decisions. With Reciprocity, InfoSec teams can strategically support their organization and foster company growth by optimizing resources and mitigating expensive data breaches, system failures, lost opportunities and vulnerabilities with their customers’ data.
Pentera is the category leader for Automated Security Validation, allowing every organization to test with ease the integrity of all cybersecurity layers, unfolding true, current security exposures at any moment, at any scale. Thousands of security professionals and service providers around the world use Pentera to guide remediation and close security gaps before they are exploited. For more info visit: pentera.io.
Malwarebytes protects workplace productivity. We make it safe for your employees to connect from anywhere, using all the applications they need. Whether you’re a small business or a large enterprise, have an IT staff of one or a dedicated security team, Malwarebytes keeps your business moving. Our solutions support you with analytics-driven, multi-layer threat protection, industry-leading incident response, and endpoint security orchestration. It’s bold cybersecurity, built for people, by people who give a damn. We keep breaches from becoming catastrophes, avoiding operations downtime. We simplify and strengthen overall cybersecurity, so everyone—security professionals and employees alike—can focus on the important aspects of their work.
Phosphorus Cybersecurity® is the leading xTended Security of Things™ platform designed to secure the rapidly growing and often unmonitored Things of the enterprise xIoT landscape. We fully automate the remediation of the biggest IoT, OT, and network device vulnerabilities—including unknown and inaccurate asset inventory, default device credentials, out-of-date device firmware, and out-of-date certificates.
Silver Sponsors
Perimeter 81 is a Zero Trust Network as a Service designed to simplify secure network, cloud and application access for the modern and distributed workforce.
Our award-winning, user-centric SaaS solution incorporates the Zero Trust and Software-Defined Perimeter models and offers greater network visibility, seamless onboarding and automatic integration with major cloud providers.
Perimeter 81 ensures unified network security – whether employees are working in or out of the office. We serve a wide range of businesses, from midsize companies to Fortune 500s, and have established partnerships with the world’s foremost integrators, managed service providers and channel resellers.
Built from scratch and based on input from security leaders needing a change from legacy technology, Perimeter 81’s unique API integration and centralized cloud architecture gives companies of all industries and sizes the power to realize the full virtues of the cloud and be truly mobile.
Unlike traditional VPN technology which is costly, hardware-based and both difficult to install and manage, our innovative, Zero Trust Network as a Service platform simply secures access to your local networks, cloud infrastructures, and business applications, with one unified platform.
Facing growing threats and a rapidly expanding attack surface, understaffed and alert-fatigued organizations need more efficient ways to eliminate their exposure to vulnerabilities. Automox is a modern cyber hygiene platform that closes the aperture of attack by more than 80% with just half the effort of traditional solutions. Cloud-based and globally available, Automox enforces OS & third-party patch management, security configurations, and custom scripting across Windows, Mac, and Linux from a single intuitive console. IT and SecOps can quickly gain control and share visibility of on-prem, remote and virtual endpoints without the need to deploy costly infrastructure. Automox dramatically reduces corporate risk while raising operational efficiency to deliver best-in-class security outcomes, faster and with fewer resources.
Cloudflare, Inc (www.cloudflare.com / @cloudflare) is on a mission to help build a better Internet. Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare have all traffic routed through its intelligent global network, which gets smarter with each new site added. As a result, they see significant improvement in performance and a decrease in spam and other attacks. Cloudflare was recognized by the World Economic Forum as a Technology Pioneer, named the Most Innovative Network & Internet Technology Company for two years running by the Wall Street Journal, and ranked among the world’s 50 most innovative companies by Fast Company. Headquartered in San Francisco, CA, Cloudflare has offices in Austin, TX, Champaign, IL, Boston, MA, Washington, DC, London, and Singapore.
Founded in 2015, DNSFilter provides security via DNS that protects over 15,000 organizations and 4M end users from online security threats and undesirable content using artificial intelligence—all while running on the fastest and most reliable network within the DNS security industry. DNSFilter catches threats up to 154 hours faster than competitors, and uniquely identifies more than 76% of domain based threats including zero day threats.
Red Canary stops cyber threats no one else does, so organizations can fearlessly pursue their missions. We do it by delivering managed detection and response (MDR) across enterprise endpoints, cloud workloads, network, identities, and SaaS apps. As a security ally, we define MDR in our own terms with unlimited 24×7 support, deep threat expertise, hands-on remediation, and by doing what’s right for customers and partners.
At Akamai, we make life better for billions of people, billions of times a day. Every day, billions of people around the world connect with their favorite brands to shop online, play the latest video games, log into mobile banking apps, learn remotely, share videos with friends, and so much more. They may not know it, but Akamai is there, powering and protecting life online. Over 20 years ago, we set out to solve the toughest challenge of the early internet: the “World Wide Wait.” And we’ve been solving the internet’s toughest challenges ever since, working toward our vision of a safer and more connected world. With the world’s most distributed compute platform — from cloud to edge — we make it easy for businesses to develop and run applications, while we keep experiences closer to users and threats farther away. That’s why innovative companies worldwide choose Akamai to build, deliver, and secure their digital experiences. Our leading security, compute, and delivery solutions are helping global companies make life better for billions of people, billions of times a day. Devoted, determined problem-solvers who share a passion for technology, we’re always pushing ground-breaking ideas and driving innovation. Want to power and protect life online, by solving the toughest challenges? Be part of an amazing team.
SolCyber, a ForgePoint company, is the first modern MSSP to deliver a curated stack of enterprise strength security tools and services that are streamlined, accessible and affordable for any organization. SolCyber is disrupting the status quo, by providing a new standard of managed security services that work to reduce cyber risk, wastage and complexity. We believe in a secure environment for all. For more information about SolCyber, visit www.solcyber.com or follow us at @SolCyberMss or here on LinkedIn.
We help keep your organization safe by illuminating and eliminating cyber threats before they have time to harm you or your customers. We do this by providing a platform that merges the best of people and software for unparalleled protection for your organization. Overcome your cybersecurity challenges of finding talent and technology to protect your organization with BitLyft today.
For more than 30 years, ESET® has been developing industry-leading IT security software and services to protect businesses, critical infrastructure and consumers worldwide from increasingly sophisticated digital threats. With solutions ranging from endpoint and mobile security to encryption, multi-factor authentication and endpoint detection and response, ESET’s high-performing, easy-to-use products unobtrusively protect and monitor 24/7, updating defenses in real time to keep users safe and businesses running without interruption. Evolving threats require an intelligent IT security company that enables the safe use of technology. This aim is backed by ESET’s R&D centers worldwide, working in support of our shared future. For more information, visit https://www.eset.com/us/ or follow us on LinkedIn, Facebook and Twitter.
Conceal enables organizations to protect users from malware and ransomware at the edge. Our Conceal Platform uses Zero Trust isolation technology to defend against sophisticated cyber threats. Conceal is used by Fortune 500 and government organizations to ensure users and IT operations remain secure, anonymous and isolated from cyber attacks.
More than 1.3 billion users around the world rely on Cyren’s 100% cloud internet security solutions to protect them against cyber attacks and data loss every day. Powered by the world’s largest security cloud delivering very fast time to protection, Cyren arms enterprises with award-winning security-as-a-service for email, sandboxing, and DNS, and embedded threat intelligence solutions for security vendors and service providers. Customers like Google, Microsoft and Check Point are just a few of the businesses that depend on Cyren every day to power their security. Learn more at www.Cyren.com.
Code42 is the leader in Insider Risk Management. Native to the cloud, Code42 Incydr rapidly detects data loss, leak, theft and sabotage as well as speeds incident response – all without lengthy deployments, complex policy management or blocking employee productivity. With Code42, security professionals can protect corporate data and reduce insider threats while fostering an open and collaborative culture for employees. Backed by security best practices and control requirements, Code42’s Insider Risk solution is FedRAMP authorized and can be configured for GDPR, HIPAA, PCI and other regulatory frameworks.
Perception Point is a Prevention-as-a-Service company for the fastest and most accurate next-generation detection and response to all attacks across email, web browsers and cloud collaboration apps. The solution’s integrated incident response service acts as a force multiplier to the SOC team, reducing management overhead, improving user experience and delivering continuous insights for best protection.
Deployed in minutes, the cloud-native and easy-to-use service outperforms legacy systems to prevent phishing, BEC, spam, malware, Zero-days, ATO, and other advanced attacks before they reach end-users. Fortune 500 enterprises and organizations across the globe are protected by Perception Point.
Alert Logic is the only managed detection and response (MDR) provider that delivers comprehensive coverage for public clouds, SaaS, on-premises, and hybrid environments. Since no level of investment prevents or blocks 100% of attacks, you need to continuously identify and address breaches or gaps before they cause real damage. With limited expertise and a cloudcentric strategy, this level of security can seem out of reach. Our cloud-native technology and white-glove team of security experts protect your organization 24/7 and ensure you have the most effective response to resolve whatever threats may come. Founded in 2002, Alert Logic is headquartered in Houston, Texas and has business operations, team members, and channel partners located worldwide. Learn more at alertlogic.com. Alert Logic – unrivaled security for your cloud journey.
Airgap provides an agentless Anti-Ransomware platform to stop the spread of malware in the enterprise network. Airgap is the only vendor that offers an agentless segmentation solution that protects your organization against ransomware threats. Airgap’s “Ransomware Kill Switch” is the most potent ransomware response for the IT organization. And, Airgap’s Zero Trust access controls protect enterprise’s high value assets against cyber threats. Proven and specially designed to protect Manufacturing, Healthcare, and Critical Infrastructure, Airgap Security Platform is the easiest to implement and manage. https://airgap.io
InNet partners with customers to design, deploy, and support a full suite of advanced technology solutions focusing upon enterprise and mid-market IT organizations and assisting in regards to networks, information security, business continuity, storage, cloud migration, virtualization and performance monitoring. As one of the most trusted solution providers in the Central and Eastern USA, InNet brings many years of valuable experience from a myriad of customer perspectives working with leading enterprise and corporate customers to deliver technology that meets business objectives.
Tufin® is the leader in Network Security Policy Orchestration for enterprise cybersecurity. More than half of the top 50 companies in the Forbes Global 2000 turn to Tufin to simplify management of some of the largest, most complex networks in the world, consisting of thousands of firewall and network devices and emerging hybrid cloud infrastructures. Enterprises select the company’s award-winning Tufin Orchestration Suite™ to increase agility in the face of ever-changing business demands while maintaining a robust security posture. The Suite reduces the attack surface and meets the need for greater visibility into secure and reliable application connectivity. Its network security automation enables enterprises to implement changes in minutes with proactive risk analysis and continuous policy compliance. Tufin serves over 2,000 customers spanning all industries and geographies; its products and technologies are patent-protected in the U.S. and other countries. Find out more at www.tufin.com.
NinjaOne is a leading unified IT operations solution that simplifies the way IT teams work. With NinjaOne, MSPs and IT departments can automate, manage, and remediate all their endpoint management tasks within one fast, modern, intuitive platform, improving technician efficiency and user satisfaction. NinjaOne supports over 6,000 customers around the world, and is consistently ranked #1 for its world class customer support. NinjaOne has been recognized as the best rated software in its category on G2 and Gartner Digital Markets for the past 3 years.
Arctic Wolf® is the market leader in security operations. Using the cloud-native Arctic Wolf® Platform, we help organizations end cyber risk by providing security operations as a concierge service. Highly-trained Concierge Security® experts work as an extension of internal teams to provide 24×7 monitoring, detection and response, as well as ongoing risk management to proactively protect organizations while continually strengthening their security posture.
SafeBreach’s mission is to change the way the industry deals with security and risk, and enable companies to use the security technologies they have invested in to the fullest. By validating those technologies against attacks, from the known to the latest emerging threats, they will drive risk down — on a continuous basis. Companies will be able to invest smart and protect more. They will be able to quantify risks to the business and drive a security strategy aligned with the company’s business growth. Changing the mindset of defenders to offensive and proactive will help us build a safer world.
Fluency provides automated awareness for where your people are. Fluency’s network reconstruction technology changes the telemetry data provided by EDR into a network view that is used to fully understand infrastructure events. Data lives in the cloud, remote offices, hotels, coffee houses, and homes making enforcing security by using the network impossible. Fluency X-SIEM is the only solution to regain complete infrastructure awareness. With cross-platform XDR, behavioral analytics, and automated workflows, Fluency’s X-SIEM supplies comprehensive security to the distributed world.
Cavelo helps businesses achieve attack surface management with automated data discovery, classification and reporting. Its cloud compatible cyber asset attack surface management (CAASM) platform continuously scans, identifies, classifies and reports on sensitive data across the organization, simplifying compliance reporting, vulnerability management and risk remediation.
Blumira’s end-to-end platform offers both automated threat detection and response, enabling organizations of any size to more efficiently defend against cybersecurity threats in near real-time. It eases the burden of alert fatigue, complexity of log management and lack of IT visibility. Blumira’s cloud SIEM can be deployed in hours with broad integration coverage across cloud, endpoint protection, firewall and identity providers including Office 365, G Suite, Crowdstrike, Okta, Palo Alto, Cisco FTD and many others.
Carahsoft is the trusted government IT solutions provider, combining technological expertise with a thorough understanding of the government procurement process to help public sector organizations select and implement the best solution at the best possible value. As a top-ranked GSA Schedule Contract holder, Carahsoft is the largest government partner, serving as the master government aggregator for many of its best-of-breed vendors and driving value for an extensive ecosystem of IT manufacturers, resellers, system integrators, and consulting partners. Our dedicated solutions teams support proactive sales, marketing, and delivery of strategic solutions to help improve the efficiency and productivity of government IT.
Sophos evolves to meet every new challenge, protecting more than 400,000 organizations of all sizes in more than 150 countries from today’s most advanced cyber threats. Powered by SophosLabs, our cloud-native and AI-enhanced solutions are able to adapt and evolve to secure endpoints and networks against never-before-seen cybercriminal tactics and techniques. Managed through our award-winning, cloud-based platform, Sophos Central, our best-of-breed products work together through our unique Synchronized Security system to share threat intelligence and respond to evolving threats. The Sophos suite of products secures networks and endpoints against automated and active-adversary breaches, ransomware, malware, exploits, data exfiltration, phishing, and more.
Cybereason is the champion for today’s cyber defenders providing future-ready attack protection that unifies security from the endpoint, to the enterprise, to everywhere the battle moves. The Cybereason Defense Platform combines the industry’s top-rated detection and response (EDR and XDR), next-gen anti-virus (NGAV), and proactive threat hunting to deliver context-rich analysis of every element of a Malop (malicious operation). The result: defenders can end cyber attacks from endpoints to everywhere. Cybereason is a privately held, international company headquartered in Boston with customers in more than 40 countries.
The Akeyless Vault Platform is SOC2 certified and operates across a highly distributed environment, delivering Just-in-Time secrets and access to humans and machines (i.e., applications, microservices) efficiently and at infinite scale. To learn more, or schedule a demo, visit www.akeyless.io.
Partners
A global association of 140,000 professionals in 180 countries, ISACA® (www.isaca.org) helps business and IT leaders maximize value and manage risk related to information and technology. Founded in 1969, the nonprofit, independent ISACA is an advocate for professionals involved in information security, assurance, risk management and governance. These professionals rely on ISACA as the trusted source for information and technology knowledge, community, standards and certification. The association, which has more than 200 chapters worldwide, advances and validates business-critical skills and knowledge through the globally respected Certified Information Systems Auditor® (CISA®), Certified Information Security Manager® (CISM®), Certified in the Governance of Enterprise IT® (CGEIT®) and Certified in Risk and Information Systems Control™ (CRISC™) credentials. ISACA also developed and continually updates COBIT®, a business framework that helps enterprises in all industries and geographies govern and manage their information and technology.
The Pan Asian American Business Council (“PAABC”) is a non-profit organization consisting of Asian American businesses that would like to promote and grow their own and other Asian American businesses.
To enable Asian American owned businesses to develop and grow.
Founded in 2012, the Women’s Society of Cyberjutsu (WSC) is a National 501(c)3 non-profit community, focused on empowering women to succeed in the cybersecurity industry. WSC’s mission is to advance women in cybersecurity careers by providing programs and partnerships that promote hands-on training, networking, education, mentoring, resource-sharing and other professional opportunities.
WSC serves thousands of women across the globe by bringing awareness to, and advancing careers in, cybersecurity. The WSC community includes information security professionals, IT professionals, programmers, computer scientists and engineers, as well as women wanting to explore and join the field. Recognizing the importance of encouraging girls to embrace a future in STEM-related professions through its Cyberjutsu Girls Academy, WSC provides a unique hands-on curriculum focused on securing information technology. For more information, visit http://www.womenscyberjutsu.org.
We put our heart and soul into this Cybersecurity Conference directory.
Way back in 2013 we had another website called “Concise Courses” which used to market and sell InfoSec training courses. We published a blog post listing all the upcoming InfoSec Conferences of that year, and Google loved the resource and put us right to the top of the search engines. That ‘accidental’ occurrence spawned this directory which is maintained by a small team comprising of Henry Dalziel and Charles Villaneuva and a bunch of freelance programmers.
What We Do:
We list, literally, every single Information Security conference, event and seminar within every niche in Cybersecurity.
We have a dedicated team that maintains our in-house tech stack, directory, and data curation.
Agenda
Times are subject to change
Opening Introductions | Check In | Networking
Presentation
SecOps Maturity Metrics for the Boardroom
You can’t improve what you don’t measure. To mature your security operations program, you need to evaluate its effectiveness. But this is a task many organizations still struggle with when it comes to collection, detection, and response.
If showing the effectiveness of your security operations is a challenge, it might be time to re-evaluate your KPls and your ability to measure them in order to communicate to your board the metrics that drive programmatic gains in your sec ops practices.
Presentation
Stopping Attacks, Not Your Business: AI & Autonomous Response
With cyber-attackers continuously searching for new ways to outpace security teams, it can lead to a struggle to fight back without disrupting business operations. Join Austin in this session where he explores the benefits of Autonomous Response as a must-have that goes beyond ‘defense’. Includes real-world threat finds and attack scenarios.
Presentation
Key Considerations for Choosing the Right Email Security Platform
Email is both a necessary communication medium, and the most vulnerable area for an attack. Year after year, adversaries find success in abusing email to gain a foothold into an organization—deploying malware, leaking valuable data, or stealing millions of dollars.
Unfortunately, email threats are only growing in number. Business email compromise accounts for 44% of all losses to cybercrime, and the 2021 Verizon DBIR holds that phishing remains the top entry point for breaches—a position it has held for years.
Does that mean email is doomed, and we should give up? Quite the opposite—instead, we should look to newer technologies and an integrated security strategy that provides a modernized approach to email defense.
It Takes More than Automated Compliance to Get Ahead of Threats
In a 2021 survey of CIOs, respondents cited limited resources, new or changing regulations and tracking and maintaining compliance as the top three challenges keeping them up at night. With teams stretched thin trying to keep up with compliance requirements and growing numbers of threats and stakeholder demands, manual processes can no longer keep up.
Automation is a strong first step in reducing manual work and freeing up your team’s workload. However, it is insufficient if it doesn’t help your InfoSec leaders clearly communicate the risk associated with the organization’s business priorities so they can make informed, data-driven investment decisions.
The ability to focus on strategic business priorities helps optimize the talents of small InfoSec teams. When you automate the more tactical and routine work, a more reliable and comprehensive approach to GRC is created while optimizing your teams’ talent by freeing them from manual work.
Join us as we discuss how taking a strategic approach to risk management combined with automation can ensure that businesses stay ahead of the threats they face every day.
Attend this webinar and learn how to:
- Focus your planning efforts around your organization’s strategic business priorities
- Be more proactive by automating evidence collection, risk scoring and monitoring
- Gain actionable insights to help you clearly communicate with key stakeholders
Keynote
"Creating a high-performance culture that features teamwork, collaboration, imagination, inclusion and innovation."
Presentation
Is Your Defensive Stack Ready For A Targeted Attack?
Understanding the potential risks in a security program leads to a healthy security program. Penetration testing allows for this identification of risk, but frequent or continuous testing is not widely adopted across the industry. Automated Security Validation (ASV) allows organizations to identify and close any gaps by continually putting existing tools and controls to the test, and focusing on impact-based remediation vs. generic severity to make decisions. We will discuss in depth how taking an offensive approach, through Automated Security Validation, enhances a team’s current defensive strategies.
Presentation
Ransomware: Prevent what you can and mitigate the rest
Practical and non-vendor specific steps to prevention and mitigation.
Presentation
Cameras, CACs & Clocks: Enterprise IoT Security Sucks - A Story of Two Million Interrogated Devices
Enterprise Internet of Things (IoT) security today is analogous to IT security in the mid 1990s. It was a time when security awareness was limited, countermeasures and best practices weren’t broadly applied, and attackers explored, compromised, controlled, and exfiltrated data from systems with minimal resistance. In short, enterprise IoT security sucks as bad today as that unpatched Windows NT 3.51 server with an RS-232 connected modem that IT forgot about.
Working globally with Fortune 500 enterprises and government agencies for the past six years, we’ve interrogated over two million production IoT devices. Across these two million devices we’ve identified threats and trends, compiled statistics, summarized compelling cases, and evaluated common offenders. We’ve also assembled tactics that organizations can employ to recognize value from their IoT devices while minimizing risk and ensuring that devices that are secure today will stay secure tomorrow.
Future-proof Security: Myth or Reality?
There is no magic bullet in security. Yet there are many best practices adopted by enterprises across the globe that have proven to allow organizations to mitigate risk and mature their security posture. During this session you will learn about common trends and challenges in cybersecurity and what organizations are doing to keep up and be ready for the future.
Panel Discussion
“Cybersecurity Leaders and Experts on Current Cyberthreats and Practices”
