2018 Chief Information Security Officer (CISO)

Leadership Forum

Tuesday, June 5, 2018 | san Francisco

adminisTraTive noTes

securityPlease wear your name badge at all times during the meeting.

Please do not leave your personal belongings unattended in the meeting rooms.

Argyle Executive Forum will not be responsible for items left in the rooms.

mobile devicesPlease do not allow any mobile device to disrupt the meeting while in session.

All devices should be on silent mode.

conversationPlease use areas outside of the ballroom to converse when the meeting is in session.

smokingPlease note that smoking is not permitted in the meeting venue.

The content of this program and the attendee list remain the sole property of Argyle Executive Forum and may not be rented, sold, or given to any outside party or used to market or promote any other meeting. Any such unauthorized distribution represents theft of property for which Argyle Executive Forum will pursue any and all appropriate legal remedies.

Speaker Materials are available upon request, pending availability.

BETTERRESEARCH THAN ANYONE.

Systematically Improve Your IT Department.

Stop by our booth and ask our Executives about a complimentary data-driven diagnostic program.

events@infotech.com

National Research Partner

INFOTECH.COM

www.trendmicro.com/ransomware-assessment

Will YOU be ready when RANSOMWARE hits your organization?

Take the Ransomware Readiness Assessment to find out.

agenda

2018 Chief Information Security Officer (CISO) Leadership Forum (San Francisco

Tuesday, June 5, 2018 | 8:00am – 5:15pm

8:00am – 9:00am

Breakfast

9:00am – 9:10am

argyle opening remarks FeaTuring argyle HosT

Scott NicholsDirector, Global Product Privacy and SecurityBeckman Coulter

9:10am – 9:45am

keynoTe presenTaTion FeaTuring sTanFord cHildren’s HealTH:

“Automated Response in a resource strapped World “

This presentation will focus on discussing practical use cases wherein automation/scripting has been implemented to respond to realized and potential threats.

Auston DavisCISOStanford Children’s Health

agenda

9:45am – 10:05am

THougHT leadersHip spoTligHT FeaTuring Trendmicro:

“The Ever-Evolving Threat Landscape – Reducing Risk from Cybercrime to Cyber Espionage”

The threat landscape is constantly evolving from global ransomware outbreaks such as WannaCry and Notpetya to international cyberespionage campaigns distilling cyber propaganda such as Pawn Storm/APT28. Learn what makes these attacks successful to better understand how you need to defend your networks, data and users. Only by having a deep understanding of the threats you face and the vulnerabilities you have, can you successfully reduce the risk your organizations face.

Ed CabreraChief Cybersecurity OfficerTrend Micro

10:05am – 10:30am

Networking Break

agenda

10:30am – 11:20am

panel discussion:

“Security Innovation: Unifying Proactive & Reactive”

Session topics include, but are not limited to:

• What are some insider threats that are top of mind for you at your organization?

• How do you pinpoint top weaknesses that increase risk within the company?

• Discuss the importance of implementing both a proactive & reactive strategy within your organization?

• How do you drive innovation while mitigating risk, ensuring continuous compliance & maintaining security?

• How do you leverage tools like the cloud to promote efficiency while maintaining a secure digital environment?

• What are primary threats to the business in the cloud, and what practices & controls are necessary for compliance?

• What’s the best method to plan and prevent insider threats and cyberattacks?

• How do you balance demands that are potential threats to corporate data within your organization

Moderator: Scott NicholsDirector, Global Product Privacy and SecurityBeckman Coulter

Panelists:Stephen FrethemSenior Systems EngineerVaronis

Matt HollcraftChief Cyber Risk Officer, Office of the General CounselMaxim Integrated Products

Shahin PiroozCTODataEndure

Hemanta SwainSr. Director and Information Security OfficerTiVo

agenda

11:20am – 11:40am

THougHT leadersHip spoTligHT FeaTuring service now

Mark DaysonSenior Advisory Solutions Architect ServiceNow

11:40am – 12:00pm

Networking Break

agenda

12:00pm – 12:50pm

panel discussion:

“Hacking the Boardroom”

Session topics will include but are not limited to:

• Top emerging risks stemming from the Cloud

• Methods to proactively understand and manage threats/risks in real time in the Cloud

• Enabling efficiency and productivity through reliable security best-practices

• Compellingly communicating security concepts to the executive team

• Best practices for cross department collaboration and education

• What does it mean when we claim the internet has been “weaponized”

• What are your top 3 predictions for what we should guard against?

• Should I really be concerned about nation state sponsored cyber-attacks?

• It seems cyber-attacks are increasing in frequency, but also in the massive damage they cause. It seems we’re losing the battle. Comments?

• What are the most significant areas for cyber-security vendors to protect?

Moderator: Auston DavisCISOStanford Children’s Health

Panelists:Eloy AvilaUS CTODarktrace

Gopal BhatVP, Technology Operations and ITEbates

Josh StellaCEOFugue

Selim StitiSVP and Chief Information Security OfficerMechanics Bank

agenda

12:50pm – 1:10pm

THougHT leadersHip spoTligHT FeaTuring inFoTecH:

“Security Scientists: Applying Scientific Mindset to Measuring your Security Program”

Every security professional is being asked “are we secure?” This is an inherently flawed question and not the right question that should be asked. There is immense pressure from Boards, CEOs, regulators, and customers on security leaders to effectively manage, measure and communicate what their security program is doing. In this co-presentation by Info-Tech Research Group and Colorado Springs, you will learn what are things that can be measured and how. In specific the cons, pros and use cases of security assessments, vulnerability assessments, penetration tests, and security audits will be explored. In addition to measurement methodologies, road mapping and communication tactics will be discussed to ensure that once you know where you are you can do something about.

Wesley McPhersonResearch DirectorInfo-Tech Research Group

1:10pm – 2:10pm

Lunch

2:10pm – 2:45pm

keynoTe session FeaTuring sTanFord universiTy:

“Going Passwordless @ Stanford”

In realizing our long-term vision of strong user authentication coupled with endpoint security posture enforcement at Stanford, we are now deploying the final component: client certificates that identify both the user and the device. We’ll explain the underlying systems, while highlighting the lessons we learned along our five year journey. You’ll hear a rare story of dramatically improving security and user experience simultaneously, and will learn how you can replicate this success.

Michael DuffAssociate VP and CISOStanford University

agenda

2:45pm – 3:00pm

Networking Break

3:00pm – 3:35pm

keynoTe presenTaTion FeaTuring Beckman coulTer:

“Taking healthcare apps into the cloud – overcoming concerns about privacy, security, availability…”

In many verticals, the cloud has enabled companies to reduce cost of ownership and increase time to market. In healthcare, however, there are organizational concerns about privacy (PHI), security (data breaches), availability (eg for mission critical devices) and general regulatory compliance. In this talk we will describe some of these concerns, and how we were able to address them using deep voice-of-customer, specific guidance documents from the FDA, and an enhanced privacy and security posture and strategy.

Wido MenhardtVP Clinical InformaticsBeckman Coulter

*Please note, this session will be off the record.

3:35pm – 4:10pm

keynoTe presenTaTion FeaTuring ciTy and counTy oF san Francisco:

“Beyond the Workplace – Cybersecurity Awareness for the City”

Should cybersecurity awareness and cyber-safe practices be reserved only for city workers? Does the mission of the cybersecurity team stop at the doors of City offices? These questions fuel an extension of the mission for San Francisco cybersecurity team. As digital technology transforms the way City residents, visitors and business interact with City services, cyber safety becomes a central issue in people’s daily lives.

In his key note address, Mike Makstman provides an overview of how the City cybersecurity team is extending cybersecurity mission, and how cybersecurity professionals can contribute to ensuring that all people in the City know how to be safe in our new, digital world.

Michael MakstmanCISOCity and County of San Francisco

agenda

4:10pm – 4:15pm

argyle closing remarks FeaTuring argyle HosT

Scott NicholsDirector, Global Product Privacy and SecurityBeckman Coulter

4:15pm – 5:15pm

Closing Reception

__________________________________________________________________________________

*Please note, the agenda is subject to change.

The information, views, and opinions expressed by speakers and other participants at our conferences are those of the individual and do not necessarily reflect the views and opinions of Argyle Executive Forum.

Argyle Executive Forum, its directors and officers, do not guarantee that any information provided by a speaker or other participant is accurate or complete and Argyle Executive Forum does not endorse any opinions that may be presented.

parTners

Thought leadership spotlight & app partners

Info-Tech Research Group is the world’s fastest growing information technology research and advisory company, proudly serving over 30,000 IT professionals. We produce unbiased and highly relevant IT research to help CIOs and IT leaders make strategic, timely and well informed decisions. We partner closely with IT teams to provide everything they need, from actionable tools to analyst guidance, ensuring they deliver measurable results for their organizations.

ServiceNow makes work better across the enterprise. Getting simple stuff done at work can be easy, and getting complex multistep tasks completed can be painless. Our applications automate, predict, digitize and optimize business processes and tasks, across IT, Customer Service, Security Operations and Human Resources, creating a better experience for your employees and customers while transforming your enterprise. ServiceNow (NYSE:NOW) is how work gets done. For more information, visit: www.servicenow.com.

Trend Micro, a global leader in security software and solutions, strives to make the world safe for exchanging digital information. Trend Micro solutions provide layered content security for mobile devices, endpoints, gateways, servers and the cloud. Leveraging these solutions, organizations can protect their end users, their evolving data center and cloud resources, and their information threatened by sophisticated targeted attacks. All solutions are powered by cloud-based global threat intelligence, the Trend Micro™ Smart Protection Network™.

Darktrace is the world’s leading AI company for cyber security. Created by mathematicians, the Enterprise Immune System uses machine learning and AI algorithms to detect and respond to cy-ber-threats across diverse digital environments, including cloud and virtualized networks, IoT and industrial control systems. The technology is self-learning and requires no set-up, identifying threats in real time, including zero-days, insiders and stealthy, silent attackers. Darktrace is headquartered in San Francisco and Cambridge, UK, and has over 30 offices worldwide. For more information, visit www.darktrace.com

panel partners

parTners

panel partners

DataEndure helps companies build digital resilience so that their critical information assets are protected and available to the right people at the right time.

With access to a complete portfolio of cybersecurity, storage, information management and datacenter infrastructure solutions, DataEndure’s customers are better able to manage their IT risks, respond well when digital assets are threatened, and protect and access their critical company information wherever it resides.

With DataEndure, customers can increase operational efficiency, take advantage of secure and reliable storage, keep operations up and running, and implement an effective data protection strategy.

Fugue is a security and compliance solution that identifies and eliminates cloud risks. Fugue’s patented software automatically remediates unauthorized changes, misconfigurations, and policy violations to the known-good state the moment they occur. With Fugue, cloud resources are always provisioned according to a single source of truth – and stay that way throughout the resources’ lifetime.

1. security and compliance: Continuously enforce security and compliance policies for your cloud infrastructure.

2. devsecops: Add policy-as-code to your DevOps workflows to prevent out-of-compliance infrastructure.

3. cloud desk: Provide a self-service interface to a centrally managed, automated, and compliant cloud service catalog.

parTners

Varonis is a pioneer in data security and analytics, fighting a different battle than conventional cybersecurity companies. Varonis focuses on protecting enterprise data: sensitive files and emails; confidential customer, patient and employee data; financial records; strategic and product plans; and other intellectual property. The Varonis Data Security Platform detects insider threats and cyberattacks by analyzing data, account activity and user behavior; prevents and limits disaster by locking down sensitive and stale data; and efficiently sustains a secure state with automation. With a focus on data security, Varonis serves a variety of use cases including governance, compliance, classification, and threat analytics. Varonis started operations in 2005 and, as of September 30, 2017, had approximately 5,950 customers worldwide — comprised of industry leaders in many sectors including technology, consumer, retail, financial services, healthcare, manufacturing, energy, media, and education.

panel partners

Breakout session partner

Forcepoint safeguards users, data and networks against the most determined adversaries, from accidental or malicious insider threats to outside attackers, across the entire threat lifecycle. Forcepoint protects data everywhere – in the cloud, on the road, in the office – simplifying compliance and enabling better decision-making and more efficient remediation. Forcepoint empowers organizations to concentrate on what’s most important to them while automating routine security tasks. More than 22,000 organizations around the world rely on Forcepoint. Based in Austin, Texas, with worldwide sales, service, security laboratories and product development, Forcepoint is a joint venture of the Raytheon Company and Vista Equity Partners.

parTners

Cloudflare, Inc. (www.cloudflare.com / @cloudflare) is on a mission to help build a better Internet. Today the company runs one of the world’s largest networks that powers more than 10 trillion requests per month, which is nearly 10 percent of all Internet requests for more than 2.8 billion people worldwide. Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties pow-ered by Cloudflare have all traffic routed through its intelligent global network, which gets smarter with each new site added. As a result, they see significant improvement in performance and a decrease in spam and other attacks. Cloudflare was recognized by the World Economic Forum as a Technology Pioneer, named the Most Innovative Network & Internet Technology Company for two years running by the Wall Street Journal, and ranked among the world’s 50 most innova-tive companies by Fast Company. Headquartered in San Francisco, CA, Cloudflare has offices in Austin, TX, Champaign, IL, New York, NY, Washington, DC, London, and Singapore.

senior supporter partners

enSilo comprehensively secures the endpoint pre- and post-infection. enSilo automates and orchestrates detection, prevention and real-time response against advanced malware and ransomware without burdening cybersecurity staff. enSilo’s single lightweight agent includes next generation antivirus (NGAV), application communication control, automated endpoint detec-tion and response (EDR) with real-time blocking, threat hunting, incident response and virtual patching capabilities. Coupled with patented approach that has full system visibility, enSilo’s end-point security solution stops modern malware with a high degree of precision and intuitive user interface. Cybersecurity staff with enSilo can effectively manage malware threats without alert fatigue, excessive dwell time or breach anxiety. enSilo’s cloud management platform is flexible and extensible to meet operational needs that stop malware impact.

parTners

Despite all efforts, it’s difficult to put security details into business context fast enough to determine what impact they have on business continuity, personal data, intellectual property, and reputational damage. Until now. RSA delivers transformational business-driven security solutions helping over 30,000 customers comprehensively and rapidly link security incidents with business context to respond effectively and protect what matters most. With award-winning solutions for rapid detection and response, identity and access assurance, consumer fraud protection, and business risk management, RSA customers can thrive in an uncertain, high-risk world.

RSA solutions hold leadership positions in four Gartner Magic Quadrants and protect over 50 million identities and over a billion consumers worldwide. With over 700 dedicated security practitioners and a global ecosystem of over 400 partners, RSA delivers unified capabilities in the essential areas of an effective, business-driven security strategy.

RSA solution and benefits include:• rsa netwitness suite triples the impact of security teams by providing essential visibility to

detect advanced threats and deliver the right response in minutes not months. • rsa securid suite enables organizations of all sizes to ensure the right individuals have the

right access, from anywhere on any device leveraging risk analytics and context-based awareness.

• rsa archer suite is the industry’s leading business risk management suite, proven to help customers confidently advance their command of risk and understand what risks are worth taking.

• rsa Fraud & risk intelligence suite gives organizations transforming their digital, multi- channel strategy, the ability to both protect consumers against fraud and improve the user experience by reducing transaction friction.

• rsa risk & cyber security practice provides essential consulting, support and incident response expertise so that you can take command of your evolving security posture.

It’s time to thrive in an uncertain, high-risk world. It’s time for Business-Driven Security.

senior supporter partners

parTners

senior supporter partners

Tufin® is the leader in Network Security Policy Orchestration, serving more than half of the top 50 companies in the Forbes Global 2000. Tufin simplifies management of some of the largest, most complex networks in the world, consisting of thousands of firewall and network devices and emerging hybrid cloud infrastructures. Enterprises select the award-winning Tufin Orchestration Suite™ to increase agility in the face of ever-changing business demands while maintaining a ro-bust security posture. Tufin reduces the attack surface and meets the need for greater visibility into secure and reliable application connectivity. Its network security automation enables enterprises to implement changes in minutes with proactive risk analysis and continuous policy compliance. Tufin serves over 2,000 customers spanning all industries and geographies; its products and tech-nologies are patent-protected in the U.S. and other countries. Find out more at www.tufin.com.

supporter partners

Area 1 Security stops targeted phishing, the #1 cyber attack vector to organizations large and small. Area 1 Horizon™, the industry’s first and only preemptive cybersecurity solution, identifies and stops phishing attacks before they can cause damage. By focusing on the early stages of developing attacks, beyond the enterprise edge, Area 1 Horizon is able to preemptively intercept, disrupt, and disable attacks from 5 to 363 days before it is actually launched.

HID Global is the trusted leader in end to end authentication and identity management. Our comprehensive security platform is built around the creation, management, and use of secure identities. Our served markets include converged access control; IT security, strong authentication, credential management, threat detection, certificates and analytics.

© 2018 Cloudflare Inc. All rights reserved I www.cloudflare.com

We don’t just follow authentication best practices.

We create authentication best practices.

HID Global is the trusted leader in end to end multi-factor authentication and identity management. Our comprehensive security platform is built around the creation, management, and use of secure identities. Our served markets include converged access control; IT security, strong authentication, credential management, digital certificates threat detection, and analytics. Find your trusted solution at hidglobal.com/iam

You’ll call it the evolution of security. We call it, powering trusted identities.

Powering Trusted Identities | Visit us at hidglobal.com

© 2018 HID Global Corporation/ASSA ABLOY AB. All rights reserved. HID, HID Global, the HID Blue Brick logo, and the Chain Design are trademarks or registered trademarks of HID Global or its licensor(s)/supplier(s) in the US and other countries and may not be used without permission.

Find your trusted solution at hidglobal.com/iam or visit us at Booth 4127 North Expo.

hid-pti-ad-rsa-2018b.indd 1 3/23/18 2:47 PM

conTenT neuTraliTy policy

if you are interested in recommending a speaker for

a future forum, please email:

speakers@argyleforum.com

• argyle is proud and protective of our high standards in ensuring the value of all content presented at our events.

• strict guidelines are in place to ensure that all content presented is balanced and vendor neutral.

• all topics that are covered at our member events are thought leadership-focused and in line with the expectations of our members.

• argyle seeks to prevent overt sales pitches or unbalanced vendor references.

• argyle provides all speakers with content presentation guidelines at the behest of our executive membership.

we ask that all speakers, members and sponsors respect argyle’s

content neutrality guidelines. we thank you for your continued support

for this policy as a way of protecting the high content standards and

trust that argyle has established with its members.