Cloud Security & Governance

Digital transformation of business operations creates an enormous amount of change. What has not changed is the need for enterprises to keep their data consistent, secure and auditable. Migration to the cloud has put leaders under pressure to prioritize usability at the expense of consistency and security.

Join us for a timely presentation on how to position your business for future success by understanding an approach to embed security into your global supply chain to provide a consistent, auditable approach to data management.

You will learn:

• How to organize your supply chain to comply with ever-changing information security requirements
• How to assess potential gaps, provide feedback and benchmark partners to aid in continual development
• How to use tooling to classify and secure data across your global network

Lalit Panda

Managing Director, Supply Chain Technology

Altria

Data governance formalizes the control of data assets by taking into account the full spectrum of data security. Finding the right balance between accessibility and security is a challenge faced by most cybersecurity leaders.

Without frequent, clear communication of data governance practices, procedures and philosophies, data governance will become a serious pain point.

Join this panel discussion for a lively review of data governance best practices and how to communicate those best practices to your stakeholders.

You will learn:

• Techniques to explain data governance clearly and persuasively
• How to communicate and document changes to your data governance
• Ways to build support across your enterprise for maintaining data quality
• How to handle and track the changing privacy laws and regulations

Moderator:

Scott T. Lashway

Partner, Co-Chair Privacy and Cybersecurity Practice

Mintz, Levin, Cohn, Ferris, Glovsky and Popeo, P.C

Panelists:

Flavia Mitri

Privacy & Cybersecurity Legal Director

Uber

Peter Rosario

Chief Information Security Officer

USI Insurance Services

Sarveshi Shukla

Fmr. Global Vice President, IT Enterprise & Consumer Products (CPG)

Claire's

Elizabeth Smith

Senior Director, Data Privacy and Associate General Counsel

Seagen

Hacking is the new normal and the threats faced by enterprises are proliferating at an astounding rate.

Attend this practical case-study based presentation to hear how Petri Kuivala, CISO Advisor at Hoxhunt handled a real-life scenario in which a Nation State was able to penetrate the company where he worked.

Petri will delve into the details of the attack with insights including:

• A detailed timeline, and how it happened
• What decisions were taken to manage the case and the direct cost of it
• Key learnings and advice for today’s CISOs
• The secret sauce for successful Human Risk Reduction in today’s threat landscape

Petri Kuivala

CISO Advisor

Hoxhunt

From shedding employees, to budget reductions, the IT sector has been riding an economic storm in recent months. While continuing to drive innovation and create new revenue opportunities, IT leaders must factor in potential economic disruptors to assure operational resiliency.

Attend this keynote session to hear the latest insight into economic trends, and predictions and how these factors are expected to affect the technology sector.

You will also learn:

• What key economic indicators are showing for the technology sector
• A look at short and long-term strategies to lead you and your team to success during uncertain times

Dara Meath

Senior Vice President, Chief Technology Officer

Build-A-Bear Workshop

A lack of awareness of where data is in the cloud, too many exposed digital keys, widespread encrypted information, unpatched web services, a maze of misconfigurations, and a serious shortage of cloud skills.

These all rank among the biggest cybersecurity conundrums as more organizations continue to move larger amounts of their data to cloud computing networks. Recent research and insights crystallize the magnitude of these vexing problems:

• a Thales Group survey finds only 19% of respondents know where all of their data gets stored; only 11% say 81-100% of their data becomes encrypted.
• 36% of organizations have an unpatched web service exposed to the Internet in their cloud environment, making the service vulnerable to cyberattacks, reports Orca Security
• and the top concern impeding use of cloud is a lack of qualified staff, according to Fortinet. This is consistent with an ISC² study that finds the most important cybersecurity skills needed now are cloud infrastructure professionals

In this presentation by Upendra Mardikar, TIAA’s Chief Information Security Officer will share timely insights and trend data about cybersecurity challenges and how to overcome them. You’ll gain actionable insights on:

• How to keep better track of your data and plan for consistent patching of web services
• How to develop more people with cloud infrastructure skills and address overburdened cloud cybersecurity professionals
• Where to store digital keys in the cloud and how to fix cloud misconfigurations
• How to close vulnerabilities in multi-cloud frameworks and best practices for acquiring cloud-based applications
• And how and why you can accomplish all this by embracing the mindset that cloud cybersecurity is a community sport

Upendra Mardikar

EVP, Chief Information Security Officer

TIAA