Cyber Threat Mitigation 2023

The US government unveiled its National Cybersecurity Strategy in March 2023, reclassifying ransomware attacks as a national security threat and holding firms responsible for building solutions that will withstand malicious actors. Yet, ransomware attacks continue to rise!

Defending your organization’s data is more critical than ever. As ransomware tactics and techniques continued to evolve, IT leaders must create a company-wide culture of security and a comprehensive playbook that takes into consideration how ransomware operators, affiliates, and initial access brokers run their attacks.

Attend this keynote presentation to learn:

• How to halt the lateral movement of ransomware in your network
• What to include in your organization’s playbook to combat ransomware before an attack
• What should be on your ransomware response checklist and how to build a holistic resilience strategy

Special Agent Lisa Marie Kerr

Private Sector Coordinator

Federal Bureau of Investigation (FBI)

Hacking is the new normal and the threats faced by enterprises are proliferating at an astounding rate.

Attend this practical case-study based presentation to hear how Petri Kuivala, CISO Advisor at Hoxhunt handled a real-life scenario in which a Nation State was able to penetrate the company where he worked.

Petri will delve into the details of the attack with insights including:

• A detailed timeline, and how it happened
• What decisions were taken to manage the case and the direct cost of it
• Key learnings and advice for today’s CISOs
• The secret sauce for successful Human Risk Reduction in today’s threat landscape

Petri Kuivala

CISO Advisor

Hoxhunt

Malicious actors are so persistent and so numerous that the only way to guard against them is to automate key security functions. Automation is a force multiplier against the threats facing your business, but are you taking full advantage of it? What security tasks can automation take off of your plate, and what tasks does your team need to do? Just as importantly, how can you explain these key differences to your leadership in a way that supports thoughtful decision making?

Join our panel of expert information security practitioners to learn the ways that security automation both can and can’t protect your enterprise.

You will also learn:

• Principles for translating security requirements into automated controls
• Ways to ensure that your cloud infrastructure is properly configured
• How to explain the benefits and limits of security automation to non-specialists

Moderator:

Dan Sorensen

Chief Information Security Officer / Cyber Intel Officer

Air National Guard

Panelists:

George Griesler

Sr. Director, Cybersecurity & Security Operations

National Football League (NFL)

Vishal Gupta

Global CTO & CIO, SVP Connected Technology

Lexmark

Nikolai Zlatarev

Vice President, Chief Information Security Officer

Castleton Commodities International

Lookout intelligence has been tracking multiple nation states deploying a “mobile first vector” in order to gain access and valuable information from individuals and organizations.

Attend this session to learn how to protect your enterprise from the latest threats to enterprise mobile devices and achieve a cyber resilient posture.

You will also learn:

• Which threats have emerged out of China this past year
• The latest Lookout analysis of some unique and novel malicious apps
• How these apps and threats tie into to the geopolitical landscape

Jim Coyle

Lookout Security Specialist

Lookout

CISOs across the country are taking an increasingly proactive approach to risk management. Rather than waiting for malicious actors to attack, smart CISOs think about how to reduce the risk of malicious action before it happens. Improved threat intelligence, active configuration management and multi-factor authentication are some of the many tools for reducing risk, but how can CISOs like you find the suite of risk reduction tools that meets their needs?

Join this keynote presentation to learn how to get ahead of the risks that threaten your business.

You will also learn:

• How knowing your data and protecting it can help with meeting various privacy regulations
• The elements of a robust disaster recovery plan in the era of increased dependence on SaaS tools.
• Ways to better manage your third-party risks

Kishore Viswanathan

Senior Technical Program Manager, Cybersecurity and Compliance

Lucid Motors

Cloud security is very different than traditional datacenter or on-premise network security. The architecture is more segmented, you share security responsibilities with the cloud provider, the servers are spinning up and down on a regular basis so the environment is dynamic, and security visibility and logging are anything but straightforward.

Add to these challenges the myriad of variations based on which Cloud provider you use and you have a pefect storm of risks, threats and cybersecurity complexities.

Attend this session to learn how cloud security is different than traditional network security, and:

• The most common threats to cloud, as cataloged by the Cloud Security Alliance (CSA)
• What does a cloud security control stack look like?
• How would the key CIS Critical Security Controls apply to cloud environments?
• How security operations are different in the cloud?

Rick Doten

VP, Information Security/CISO, Healthcare Enterprises

Centene Corporation/Carolina Complete Health