San Francisco CISO Executive Summit

Becoming a truly resilient organization requires strategic planning around how security and risk challenges are addressed at all levels of the organization today, while continuing to look to the future. How are next-gen CISOs ensuring their organization stays resilient and adaptable when technology and third parties fail?

Join this session to hear how Eddie Borrero, VP & CISO at Blue Shield of California is:

• Articulating cyber risk posture, controls, and mitigation strategies across the org
• Leveraging security’s role as a business leader and enabler before, during and after disruptions 
• Building third party relationships to ensure future growth and success, together

Managing identity risk is critical, but the challenge is building identity security that is both continuous and scalable. As companies grow, securing identities becomes more complex. While concepts like continuous identity security are familiar, implementing them to reduce risk and scale effectively is difficult.

In this session, we’ll explore:

• How to design a scalable IAM framework that integrates continuous security principles
• Leveraging AI to enhance your identity access, enabling real-time and scalable solutions
• How businesses are building identity for trust and maturity while minimizing risk

You’ve heard it all before: the DBIR tells you people are your biggest risk, phishing simulations tell you your users fall for social engineering, and simple security measures you deploy are sometimes met with howls of protest. But what if it didn’t have to be that way?

Join this session for a fresh perspective on:

• Moving security alerts from the SOC to where users work
• Protecting end users perception of security controls
• Transforming security teams’ interactions with end users 

Maturing your security posture requires knowing how to objectively assess your organization, use industry best practices and frameworks, and select the right tools to advance your business. This complex, time-intensive process often takes a backseat to defending yourself against ever-evolving threats. Getting started can be overwhelming, so finding time to assess and improve your security maturity is a tall task.

Join this session to discuss:

• Benchmarking SOC performance using common assessment frameworks and tools
• Determining your security maturity level, and how to fill gaps you’ve identified
• Analyzing the impact of data and AI on your security posture

Connect with like-minded peers in a one-on-one setting through Evanta’s Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

CISOs need to know how to present complex security issues to the board in a way that resonates with non-technical stakeholders, aligning cybersecurity initiatives with business goals. By focusing on risk, compliance, and measurable outcomes, CISOs can ensure their board presentations drive informed decision-making and secure necessary investments in cybersecurity. 

Join this session to discuss: 

• Framing cybersecurity issues in a business context, focusing on risk, cost, and ROI
• Aligning cybersecurity strategies with broader business goals to secure board buy-in
• Using metrics and KPIs to demonstrate the impact of security initiatives and investments on business operations

Intelligence-driven decisions and actions are often deeply embedded into the enterprise security fabric, with defenses against malware, malicious sites, and application attacks dynamically updated based on rapid deployment of intelligence-based rules. In contrast, most third-party risk management programs are deeply rooted in episodic, questionnaire-based assessments which, according to RiskRecon surveys, are trusted by less than 20% of third-party risk teams.

Join this session to discuss:

• Gaining full visibility into risks across the entire supply chain using advanced analytics and AI
• Effective strategies for utilizing intelligence to manage and monitor business partners
• Actionable steps to overcome resource challenges and scale your risk management efforts

Establishing trust between security and developers is crucial for successful outcomes, especially as modern development quickly embraces AI. How does the future of innovation hinge on achieving this open trust and communication?

Join this boardroom conversation with Snyk to delve into:

• How to build a culture of security ownership across teams
• What strategies and approaches to building trust are working
• Where AI can speed up and secure application security 

Female, non-binary and allied cyber leaders are invited to eat lunch in our reserved networking space. Hosted by a member of the San Francisco CISO community, those in attendance can freely discuss best practices, key challenges, and mission-critical priorities before heading over to the midday keynote.