No Rest for the Weary: The Continued Convergence of Privacy and Security

Registration and Breakfast

Opening Comments and Welcome Address

Intersection of Privacy & Security

Trevor Hughes will kick off the day’s event by providing a “30,000 foot view” of the intersection of privacy and security—what the differences are but how the similarities make having knowledge of privacy a crucial requirement for InfoSec pros. The constantly shifting landscape of US state privacy regimes make this an even more complex environment to negotiate. Buckle up!

Networking Break

Third Party Risk: Lions & Tigers & Bears…Oh My!

Diana Kelley leads a fireside chat with Edna Conway about the looming risk of our growing digital third party ecosystem. They will have a frank discussion on exactly what a value chain is and who is in the third party ecosystem that comprises it. Diana will explore Edna’s views on the key security threats and impacts for the information and communications technology (ICT) value chain, practical approaches and technologies to address those threats and impacts, and public-private efforts on cyber supply chain risk management.

Machine Learning: Addressing the Disillusionment to Bring Actual Business Benefit

‘Machine learning’ is one of those cringy phrases, almost (if not already) taboo in the world of high-tech SaaS. Applying true machine learning to an organization’s product(s), however, can have real benefit for the business, their clients, and the industry as a whole. From credit card fraud investigations to the way that a car is built, machine learning has permeated our everyday life without a common understanding of what it is and how to implement it.

Lunch

Embracing AI for Cyber Defense

Online crime cost the world more than half a trillion dollars in 2018, recent data breaches and attacks have managed to influence elections, and even our energy grids face the threat of cyber-attack. This troubling state of affairs is the product of several fundamental weaknesses with the traditional approach to cyber defense, which relies on predefining what threats look like at a time when criminals launch never-before-seen attacks on a daily basis. These attacks increasingly strike at machine-speed, preventing security professionals from responding before their damage is done.

Security is About Breach; Privacy is About Creepy

Omer Tene will give a privacy expert’s view on the fundamental differences between privacy and security, and how the Venn Diagram between these two disciplines has shifted towards more commonality. As privacy laws take security explicitly into mind, security practitioners will need to know more.

Networking Break

Discovering Synergies Between the CISO & CPO – Exploring the Relationship Between Privacy and Cybersecurity

Sponsor Prize Drawing

Opening Reception & Dinner: Instituting a Data Privacy and Data Protection Program from Scratch

The steps needed to institute an effective data privacy and protection program will be discussed. Understanding regulations, privacy acts, HIPAA, GDPR, discovery of what you have, where it is, Shadow IT, where is it, how to control it. Classifying the data, what you need to protect, Access Control who has access to it, Restricting Access, Stopping it from leaving, Cloud Access Security Brokers (CASB), Splunk, and Data Loss Prevention (DLP).

Closing Reception