IN-PERSON

Washington, DC CISO Executive Summit

May 22, 2019 | Marriott Marquis, Washington DC

May 22, 2019
Marriott Marquis, Washington DC

Governing Body Agenda Location Partners Contact

Governing Body Co-Chairs

Sam Abbate

Northrop Grumman Corporation
Vice President and Chief Information Officer

Alissa Abdullah

Xerox Corporation
VP & CISO

Ted Colbert

Boeing
CIO & SVP

Jim Connelly

Lockheed Martin
VP & CIO

André Mendes

US Department of Commerce
CIO - ITA

Shamim Mohammad

CarMax
SVP & CIO

Christopher Porter

Fannie Mae
CISO

Terry West

Performance Food Group
SVP, CIO

Agenda

CISO AGENDA CIO AGENDA

May 21, 2019

afternoon

May 22, 2019

mid-afternoon morning afternoon

6:00pm - 8:30pm Governing Body Welcome Reception

Co-Existing with Autonomous Systems — Is it Possible?

Dr. Hans Mumm

Author & Thought Leader on Future of Artificial Intelligence

Open any newspaper or watch any news station — autonomous systems and AI are everywhere. What is your place in the new autonomous world? Are you ready to lead and govern in this uncertain future?

In this keynote, you’ll hear how:

Social normative behaviors are being redefined
New technology impacts opportunities, provocations, and threats on and off Wall Street
Planned change keeps leaders from becoming obsolete

11:40am - 12:50pm Keynote

Network Data – Powering the Modern SOC

John Matthews

CIO

ExtraHop

Two pillars of a successful and proactive SOC are threat hunting and incident response. The use of network traffic analysis can help improve performance in these two areas, if you can trust the data.

In this session, you will learn:

Current attack practices, including abuse of legitimate traffic and encryption
How hunters hide from attackers to avoid counter IR maneuvers
Ways to make analysts faster and more effective at validating and responding to threats
Options for empowering cross-training and on-the-job training to increase analysts' skills
Clarity on how gaining visibility into cloud and encrypted traffic

12:50pm - 1:20pm Networking Break

1:20pm - 2:10pm CISO Featured Session

Help Wanted — The DC Area's Pipeline Puzzle

Randy Marchany

CISO

Virginia Tech

David Raymond, Ph.D

Director, Virginia Cyber Range

Virginia Tech

Executives know they need to focus on the future to solve the IT skills gap. But developing a talent pipeline takes time, and companies must balance long-term strategies with impactful short-term solutions.

In this session, you’ll hear about:

Strategies for reskilling your current talent
Talent pool resources like Virginia Cyber Range
Creative ways to engage new talent and build out the future pipeline

1:20pm - 2:10pm CISO Executive Boardroom

Managing the Convergence of Global Data Regulations

Joseph Dyer

CISO

ICF

Amit Khosla

Business Information Security Officer

U.S. Bank

Joe Sturonas

CTO

PKWARE, Inc.

Information security leaders navigate an increasingly complex matrix of national and foreign data privacy regulations. GDPR caused organizations to scramble to meet data protection directives and reassess risk management through new compliance reporting requirements and potential exposure to financial penalties. Now California has its own Privacy Act set to come into effect, and it’s one of potentially many different pieces of forthcoming regulation and policy. How can organizations create a unified data protection and compliance strategy that meets conflicting requirements?

In this session, discuss:

The current landscape of data privacy regulation around the world
Best practices for managing risk associated with data protection frameworks
Standards and metrics for measuring data protection risk
Data classification strategies to aid compliance, regardless of regulation

Executive boardrooms are intimate and interactive sessions designed to foster dynamic dialogue around a specific, strategic topic. These private, closed-door discussions encourage attendee participation and are limited to 15 attendees (seating priority is given to CISOs). To reserve your seat, please contact Jordan Guess at Jordan.Guess@evanta.com or 971-717-6668.

7:00am - 7:45am Registration & Breakfast

7:45am - 8:30am Keynote

Growing the Talent Pipeline — And Representation

Sam Abbate

Vice President and Chief Information Officer

Northrop Grumman Corporation

Sanjeev Addala

Chief information Digital Officer

AES Corporation

As talent continues to be a key issue for IT executives, organizations are honing strategies to attract, retain and develop high-performing contributors. Northrop Grumman, however, rose to the occasion to push for greater diversity.

In this keynote, you’ll discover how:

Diverse talent aligns with business objectives
Leadership styles and approaches drives engagement
Initiatives move the needle for a diverse talent pipeline

8:30am - 9:00am Networking Break

9:00am - 9:50am CISO Featured Session

The Evolution of Cybersecurity Risk Ratings

Jasson Casey

CTO

SecurityScorecard

Cyber risk ratings have steadily evolved over the last six years, shifting from scoring approaches using off the shelf vulnerability scanners to frameworks built with machine learning. Jasson Casey shares the evolution of developing scores – including initial ideas, setbacks and breakthroughs.

In this session, learn:

The composition of a cyber security risk rating
How an enterprise IT team’s behavior manifests itself to the outside world
How behavior translates to cyber security risk for the business

9:00am - 9:50am CISO Executive Boardroom

DevSecOps – The Agile Approach to Security

Tunde Oni-Daniel

Global Head of Security Engineering

Deutsche Bank USA

Christopher Porter

CISO

Fannie Mae

Security from the start and better collaboration are the keys to effectively reducing risks posed to an organization. With DevSecOps methods and principles, security controls can help organizations react faster to attacks.

In this session, learn:

How DevSecOps changes the security team mindset
The benefits of a DevSecOps approach
How to implement DevSecOps in your organization

9:50am - 10:20am Networking Break

10:20am - 11:10am CISO Featured Session

Best Cybersecurity Requires Integrated Efforts

Mike Lloyd

CTO

RedSeal

Every organization manages about 20 distinct security technologies, with enough staff to operate five of them well. Hiring isn’t the answer — the talent pool is nearly dry. Instead, we must get all our existing security investments to work. Together.

You’ll see:

How products and vendors are sharing information
Operational benefits from integrations
Improved cybersecurity results – a safer, more resilient company

10:20am - 11:10am CISO Executive Boardroom

Protecting Your VIPs, and Your VAPs (Very Attacked People) Too

Lucia Milica

CISO

Proofpoint

Garrett Smiley

CISO

Serco, Inc

Darren Death

Vice President, Information Security and Chief Information Security Officer

ASRC Federal

For years, we’ve seen attackers target organizations via their people. Now with fewer reliable exploits and more cloud adoption, we’re also seeing a shift toward attacks that exploit people, with threat actors tricking their targets into running their malware for them, handing over their credentials, or simply sending data or money to an impostor. Lucia Milica of Proofpoint will outline strategies for gaining visibility and mitigating risk in a people-centric threat landscape.

Join to learn:

Why nearly all threat actors have shifted away from technical exploits to compromise their targets
How organizations can leverage threat data to understand which people and departments are highly targeted
How to design effective protection for highly attacked, highly vulnerable, and highly privileged users

11:10am - 11:40am Networking Break

2:10pm - 2:30pm Networking Break

2:30pm - 3:20pm CISO Featured Session

Comprehensive Cyber Strategy 2.0 — Lessons Learned

Michael Johnson

CISO

Capital One

Identifying the elements of a comprehensive cyber strategy and putting them into action are very different enterprise initiatives. Join Michael Johnson for a follow-up session about how to implement a cyber strategy to manage cyber risk and handle roadblocks.

In this session, you’ll discover how to:

Design a cyber strategy that’s right for your organization
Communicate risk to key stakeholders, including the board of directors
Navigate the challenges of implementation

2:30pm - 3:20pm CIO & CISO Executive Boardroom

Demystifying Hyperconvergence and Cloud

Anil Katarki

CISO & Director Cyber Security Services

Perspecta

Eric Schuster

Director, Systems Engineers

Nutanix

Vincent Pelly

Director, IT Infrastructure & CTO

Arnold & Porter LLP

Vinit Duggal

CISO

Intelsat

Justin Black

CTO

United States House of Representatives

As enterprises continue to use next-gen tools to facilitate digitalization, they must consider how technologies like the cloud can drive real-world benefits. Is it time to move away from a traditional infrastructure and embrace hyperconvergence?

In this roundtable discussion, explore:

Benefits and risks of using a hyperconverged infrastructure
Strategies for transitioning away from a public cloud infrastructure
How to use the cloud to agilely drive business needs

3:20pm - 3:40pm Networking Break

3:40pm - 4:20pm Keynote

So You’ve Reached the Top — What’s Next?

Phil Fasano

CEO

Bay Advisors, LLC

As executives reach the highest level of their function, they’re forced to ask themselves, what’s next? Discover what the future holds for CIOs and CISOs with Phil Fasano, a former Global CIO himself. After a full career of working as a corporate CIO, Fasano found himself leveraging his experiences as a board member and advisor for 9+ organizations.

In this session, you’ll hear how to:

Transition beyond the C-Suite
Interact effectively with the board of directors
Retain business influence and impact

4:20pm - 5:00pm Closing Reception & Prize Drawing

11:40am - 12:50pm Keynote

Network Data – Powering the Modern SOC

John Matthews

CIO

ExtraHop

Two pillars of a successful and proactive SOC are threat hunting and incident response. The use of network traffic analysis can help improve performance in these two areas, if you can trust the data.

In this session, you will learn:

Current attack practices, including abuse of legitimate traffic and encryption
How hunters hide from attackers to avoid counter IR maneuvers
Ways to make analysts faster and more effective at validating and responding to threats
Options for empowering cross-training and on-the-job training to increase analysts' skills
Clarity on how gaining visibility into cloud and encrypted traffic

12:50pm - 1:20pm Networking Break

1:20pm - 2:10pm CIO Featured Session

Content for the Masses — Enabling Business Processes in the Cloud

Sonny Hashmi

Managing Director, Global Government

Box

Chris Tonjes

Chief Information Officer

Office of the Attorney general for DC

The digitization of content has opened opportunities for enterprises to collaborate internally and drive new experiences for their customers. But outdated architectures are standing in the way of business processes and their evolution in a digital age.

Join this session to hear how to:

Approach content as a strategic asset
Discover new content management possibilities
Tackle fragmented content systems and outdated architectures

1:20pm - 2:10pm CIO Executive Boardroom

Building API Strategy for the Smart Enterprise

Benjamin Bergersen

CIO and Senior Agency Official for Information Security Risk Management (SAO-RM)

U.S. Trade and Development Agency

Vish Viswanathan

API Evangelist

Google

APIs and API management have become essential to how enterprises deliver applications in and across clouds. They help build and connect modern applications, increase execution times at scale to optimize costs and use analytics and machine learning to make smarter decisions.

This interactive session explores:

How to build transformation strategies across the business with APIs in mind
How to measure ROI on your API strategy, including tracking early wins and demonstrating value
How your API platform aids innovation and shortens your maturity curve for emerging technologies

Executive boardrooms are intimate and interactive sessions designed to foster dynamic dialogue around a specific, strategic topic. These private, closed-door discussions encourage attendee participation and are limited to 15 attendees (seating priority is given to CIOs). To reserve your seat, please contact Jordan Guess at Jordan.Guess@evanta.com or 971-717-6668.

7:00am - 7:45am Registration & Breakfast

7:45am - 8:30am Keynote

Growing the Talent Pipeline — And Representation

Sam Abbate

Vice President and Chief Information Officer

Northrop Grumman Corporation

Sanjeev Addala

Chief information Digital Officer

AES Corporation

In this keynote, you’ll discover how:

Diverse talent aligns with business objectives
Leadership styles and approaches drives engagement
Initiatives move the needle for a diverse talent pipeline

8:30am - 9:00am Networking Break

9:00am - 9:50am CIO Featured Session

Co-Existing with Autonomous Systems — A Workshop

Dr. Hans Mumm

Author & Thought Leader on Future of Artificial Intelligence

Open any newspaper or watch any news station-Autonomous systems and AI are everywhere. What is your place in the new autonomous world? Are you ready to lead and govern in this uncertain future?

In this workshop, you'll:

Dive into what's possible for autonomous systems
Uncover hidden possibilities for tech
Prepare yourself and your organization for the robotics revolution

9:00am - 9:50am CIO Executive Boardroom

Digital Transformation — What It Means to You

Chris Kimm

Senior Vice President, Americas Operations

Equinix

John Lambeth

CIO

MAXIMUS

Chris Soong

Chief Information Officer

Alion

Digital transformation is a key area of focus for today’s executives as companies, government agencies, educational institutions and non-governmental organizations seeking to adapt and thrive.

Join Equinix in a discussion with your peers on how to:

Keep technology and security aligned with the pace of business
Invest appropriately and demonstrate progress in a transformation journey
Lean into emerging techniques and innovations

Executive boardrooms are intimate and interactive sessions designed to foster dynamic dialogue around a specific, strategic topic. These private, closed-door discussions encourage attendee participation and are limited to 15 attendees (seating priority is given to CIOs). To reserve your seat, please contact Jordan Guess at Jordan.Guess@evanta.com or 971-717-6668.

9:50am - 10:20am Networking Break

10:20am - 11:10am CIO Featured Session

Uncle Sam Wants You....To Collaborate

Catherine Szpindor

CIO

United States House of Representatives

Join this session to discuss among peers how to improve the working relationship between the government and commercial industries.

10:20am - 11:10am CIO Executive Boardroom

Reach Full Potential — A CIO’s Guide to DevOps

Wolf Ruzicka

Chairman of the Board

Eastbanc Technologies

Dennis Pickett

CISO

Westat, Inc.

Benjamin Bergersen

CIO and Senior Agency Official for Information Security Risk Management (SAO-RM)

U.S. Trade and Development Agency

A modern DevOps framework can enable nearly real-time innovation in data science, ML, and AI. These advances have immense capacity to transform business and drive revenue. Where do you begin to implement DevOps? What can these advantages offer the business?

Join EastBanc Technologies and discover how to:

Transform IT business enablement
Accelerate the pace of innovation
Take DevOps to the next level

Executive boardrooms are intimate and interactive sessions designed to foster dynamic dialogue around a specific, strategic topic. These private, closed-door discussions encourage attendee participation and are limited to 15 attendees (seating priority is given to CIOs). To reserve your seat, please contact Jordan Guess at Jordan.Guess@evanta.com or 971-717-6668.

11:10am - 11:40am Networking Break

2:10pm - 2:30pm Networking Break

2:30pm - 3:20pm CIO Featured Session

Doing Good with Blockchain

Nuria Simo

CIO

Inter-American Development Bank

Marcos Allende

IT Consultant/ITE Department

Inter-American Development Bank

Alejandro Pardo

IDBLab Principal Specialist

Inter-American Development Bank

Michelle Leonor Moreno

Senior Specialist, IT

Inter-American Development Bank

Nuria Simo will share how the IDB Group is leveraging blockchain technology to drive and scale social impact in Latin America and the Caribbean (LAC) beyond the hype.

In this session, you will hear the IDB Group’s journey to a regional approach to implement interoperable blockchain solutions responding to development challenges.

Join the session to discover: