Boston CISO Executive Summit

Governing Body members host this dinner for attendees to launch the event with an evening of peer networking. Come enjoy a special whiskey tasting and customize your own "Old Fashioned" cocktail, alongside live music from a local musician.  

There are many paths leading to zero trust, but careful planning in the initial stages is key to ensuring a smooth journey. Successful digital transformation relies upon cultivating organizational buy-in as well as understanding the best ways to apply zero trust in your environment. Starting off on the right foot can save your business considerable hardship down the road.

Join the session to learn:

• How to win support from peers and the board by framing zero trust in terms of business risk, not security
• Where to first introduce zero trust into your organization; access control, third party management, attack surface reduction, app-level segmentation, etc.
• Identifying and prioritizing risks to avoid scope creep and costly mistakes

The introduction of Chat GPT is bringing a new level of sophistication to chatbots, enabling them to generate human-like responses with high accuracy. As a CISO, you might be wondering how AI and Chat GPT can be leveraged to enhance cybersecurity and other aspects of your business. But you also may be thinking how you are exposing the company to potential threats.

 Join this session to learn:

• What possibilities and limitations these technologies provide
• Why you may be at a disadvantage if you don not embrace the future of AI and Chat GPT
• What risks are involved in using AI and Chat GPT type applications

We live in a world where every thing is hybrid and the blend between personal, corporate, private and public is ever-changing and presents us with a host of new challenges. This has increased and complicated the attack surface and the pressure to converge tools and do “more with less” is at peak levels. We must meet this watershed moment with the right team, plans, and technology.

Join this interactive session to learn:

• How to build an effective plan for change without adding to the chaos 
• What consolidation approaches save money without sacrificing security 
• Use cases that deliver immediate value and efficiency while improving user experience

A new Gartner study put cybersecurity as the #1 spend item on the IT budget, and it remains a board-level concern. But spend does not always equal protection. Tech leaders can make a difference by making sure investments into cybersecurity can create business value.  Now is the time to measure the return on investment and make sure the organization’s goals are aligned.

Join this session to discuss:

• Choosing the right investments that deliver value to the business
• Going beyond the metric of number attacks to outcome-driven metrics such as how fast systems can be patched
• Communicating with the board about cybersecurity through a business perspective

Digital business is driving the continued migration of workloads to the cloud at a greater pace than ever. However, the complexity of securing cloud applications and their development and delivery pipelines across multi-cloud environments are causing many organizations to fall behind or inadvertently introduce security weaknesses. Between misconfigurations, over privileged identities, exposed sensitive data, source code vulnerabilities, and supply chain risks there are a myriad of considerations that have made cloud security humanly challenging to address.

In this cloud transformational session, we will discuss:

• How to get a 360° view of cloud security challenges across the code/build/deploy and run lifecycle
• How to harness the power of data, threat intelligence, and AI to detect and prevent cloud threats
• Ways to foster teamwork between developers, cloud ops, and security teams

In today's ever-evolving work environment, IT professionals and cybersecurity practitioners face immense challenges adapting to shifts in the desired work models employed by users and their organizations. Traditional architectural approaches are quite limited in such areas as BYOD programs, contractor/third-party provisioning, hybrid work, and modernization efforts. However what if solutions to many of these difficult challenges could be solved by reimagining the browser as a core component of enterprise architecture?

Join us for an insightful session that explores the potential of the Enterprise Browser to transform your organization 

• Streamlining BYOD, contractor/third-party, and hybrid work initiatives with innovative architectural approaches
• Implementing novel security measures to safeguard organizational applications and data
• Fostering a productive and flexible employee experience

What will the security industry look like in 2025 — and beyond? Put your future forecasting skills to the test and share where your team stands by playing "CISO Says," a game show-style session powered by the top predictions prepared by Gartner's cybersecurity experts.

Come on down to:

• Compete in a data-driven quiz game with your peers
• Discover more about projected opportunities and challenges
• Share how you're preparing to lead your team through changing market conditions

SaaS data breaches are evolving rapidly, often faster than security teams can keep up. Working towards secure and balanced Saas ecosystems is key. This includes ensuring proper access controls, understanding access rights across third party apps and verifying vendor updates don’t misalign your security settings. Preventing these breaches requires continuous effort to identify and address potential security risks.

Join this Boardroom hosted by AppOmni to discuss:     

• How to identify common misconfigurations and data exposures       
• What are the steps for achieving visibility into data access levels     
• What are the critical components of a comprehensive SaaS security program

Many conversations around trust include the ever-elusive 'zero-trust,' identity management and networking controls. Some even suggest we abdicate responsibility for trust to a third-party service. However, with so many systems capable of manufacturing credentials, shouldn’t trust be earned based on risk? Whether it’s human actors or rapidly evolving systems, CISOs need to properly assess their environmental conditions.

Join this discussion to learn:

• How to assess risk in a rapidly changing environment
• What are the optimal environmental conditions for trust
• Where does third party services fit in to having a secure framework

Connect with like-minded peers in a one-on-one setting through Evanta’s Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

The Most Important Security Tool — People

The threat landscape continues to evolve faster than hiring efforts, CISOs’ and their security teams can’t get left behind. It’s no longer enough to manage your team and hope they stick around. Instead, long-term retention calls for a plan.

Join this conversation to discuss:

• What is principal-based leadership  
• How to create a winning culture
• How to upskill the workforce

Security consistency, performance and visibility across on-premises, hybrid, and multi-cloud environments is the desired end state for enterprise CISOs. However, challenges including siloed security tools, increasing numbers of adversary attacks on cloud, limited runtime protection, and the lack of visibility while trying to enforce compliance can stand in the way of getting there.

Join this session to discuss how to:

• Build attainable goals for a mature and effective cloud security model
• Implement proven strategies to improve cloud security posture
• Minimize risks to help achieve desired business outcomes

IT leaders across the globe are asking themselves that question as ransomware grows increasingly prevalent and as attackers continue to raise their demands. It may seem difficult to prioritize building out your recovery plan when you could spend that time focused on increasing defensive measures but recovering from ransomware is not a process you want to wing.

Join this session to discuss:

• Best practices for ransomware recovery
• Key pitfalls most organizations make when attempting a ransomware recovery and how to avoid them
• How to build a foundation for developing a thorough, practical, and well-documented plan of action and why timing is critical

Research shows that highly diverse teams are more innovative and productive, but it's no secret that IT and cybersecurity positions have a diversity shortage. CISO’s have an opportunity to ignite change and create a space for the neurodiverse community.

 Join this session for an in-depth and candid conversation with Mark Odom to discuss:

• How their neurodiversity program accelerates innovation and business through diversity and inclusion
• What it takes to support, develop, and retain neurodiverse talent
• Setting a vision and architecting the diverse IT workforce of the future