May Virtual Cyber Executive Forum 2021

Welcome

Breakfast talk – SAT is Dead. Long Live SAT

Security Awareness Training (SAT) just isn’t working: for companies, for security teams, for employees. It's expensive, it's boring and, because of its one-size-fits approach, it's not resonating either. So, should we ditch SAT altogether? Absolutely not! But businesses do need a new approach

Break-Network

Managing the Security Unknowns

Donald Rumsfeld, former Secretary of Defense, said in 2002 during a press conference that there are “unknown unknowns—the ones we don't know we don't know.” His statement about unknown information is directly applicable to security professionals. Most CISOs understand that the first step in a security plan is to identify systems, people, assets, data, and capabilities in the organization. After all, you can’t secure what you don’t know about. The discovery process helps to move unknown assets and capabilities to the known category. But what about those items you think you have but cannot find? Or even worse – those you don’t even know to look for? This talk examines this problem in the context of security discovery and how to apply it to the CISO’s job of understanding and managing security risks.

CISO’s Network Security Trends Cheat-Sheet

What every CISO should know about today’s trends in infrastructure security and operations, from the latest WiFi security standards to SASE, SD-WAN, XDR, and more. Learn about the shifts and 3-year outlook that will impact skills requirements, compliance, and risk management in the SOC and NOC.

Lunch and Learn – The Rise of Secure Access Service Edge (SASE)

Secure access service edge (SASE) offerings are cloud-delivered platforms that give consistent security across different applications, devices, web destinations, on-premises resources, and infrastructure. To achieve this, these platforms deliver a variety of functionality from complementary security solutions. As organizations operate in our frenetic business world, SASE becomes imperative.

Executive Roundtables

A Consequence-based Approach to Supply Chain Security

From the White House to Capitol Hill to the research and development community, the term supply chain is quickly becoming in vogue. Most modern machinery has evolved to a point of complexity that no one organization can effectively manufacturer it alone. A global supply chain is required to produce the equipment necessary to own and operate everything from smart homes to power grids. But more than ever, there is a growing recognition that the software and hardware we rely on to perform everything from routine tasks to critical services could be compromised. In the aftermath of the SolarWinds hack, private industry and the federal government are together reexamining their state of awareness and asking, “what exactly is in my equipment?” This presentation will discuss the risk to supply chain security, examine its impact on the nation’s critical infrastructure systems, and discuss ongoing research efforts aimed at curbing this growing threat.

Break Network

Executive Roundtables

The Konami Code

The Secret Code to Power Up your SDLC SecuritAs with the Konami Code, Kevin Johnson of Secure Ideas will explore how we can “power up” the integrations and interactions between security and development. How do we “shift left” and ensure that we are detecting and remediating security issues as early as possible within our SDLC. In this presentation, Kevin will provide the five main items that you should be doing to increase the power of your security programs working within your development teams.

Introduction to Purple Team

Your Cyber Threat Intelligence team identified an adversary that has the capability, internet, and opportunity to attack your organization and provided those adversary behaviors to the red team. The red team emulated those same tactics, techniques, and procedures (TTPs) in your production environment while the Blue Team watched and learned how the attack works. Then the blue team showed everyone how they identify those adversary behaviors and follow their response process to quickly mitigate the threat. All your security teams collaborated and efficiently tested, measured, and improved your people, process, and technology! A month has passed, what happens next? This talk picks up after your first successful Purple Team Exercise is complete and teaches you how to continue maturing and improving your security program by operationalizing the collaboration between your security teams (Cyber Threat Intelligence, Red Team, and Blue Team). You don’t have to wait for the next scheduled, formal exercise to continue testing your people, process, and technology. You can leverage new Cyber Threat Intelligence and collaborate with your team to test new TTPs through a process called Detection Engineering

Closing Remarks