Agenda

Date and TimeTitle
Oct 25, 2023
11:00am - 11:45am (Eastern)
[Opening Keynote] Lessons from a CISO: Increasing Your Cybersecurity Footprint Despite Worn Soles

Your opportunity to visit our solution vendor partners, whose sponsorship makes SecureWorld possible! Booths have staff ready to answer your questions. Look for participating Dash For Prizes sponsors to be entered to win prizes.

Oct 25, 2023
12:00pm - 12:51pm (Eastern)
Threat Intelligence: Industrialization of Cyber Fraud and AI

The presentation will cover the Secret Service’s view on current cybercrime trends to include the emergence of AI/ML in the cybercrime world. Investigator Dougherty will frame it in the lens of BEC (Business Email Compromise) and discuss the new and emerging advancements cyber criminals are using to victimize businesses in 2023 and beyond. Investigator Dougherty may even share a a deepfake of himself.

Oct 25, 2023
12:00pm - 12:43pm (Eastern)
Making Cybersecurity Your Career

Cybersecurity is a field that has more jobs than the workforce to fill them. Despite that fact, to enter the cybersecurity field is not trivial and when you finally enter, it is hard to know what is next.

This session will give advice and best practices for how to enter the cybersecurity work space. Additionally, we will discuss how to move from entry level in your career. Lastly, we will discuss how employers can intake new employees without a cybersecurity background to fulfill these open roles.

Oct 25, 2023
12:00pm - 12:46pm (Eastern)
How the Private Sector Can Get Involved in the New Biden National Cybersecurity Strategy
Oct 25, 2023
1:00pm - 1:45pm (Eastern)
Transforming Your Policy Stack

This session explores lessons from the planning, missteps, and pivot points of a security policy stack transformation. Attendees will journey through the pain-points of an outdated, patchwork policy stack developed with little attention to industry standard. They will learn tactics to engage their community.. Attendees will learn: - How to identify industry frameworks to inform policy development. - How to structure and conduct a policy review working group to validate content. - How to coordinate document vetting at all staging of community and governance review. - How to use the policy stack to transition their organization to a risk-aware mindset.

Oct 25, 2023
1:00pm - 1:40pm (Eastern)
Secure by Default: Evolving Security Expectations

CISA recently released their paper on “Secure by Design, Secure by Default” software that has support from seven major governments. It is meant to make significant, achievable improvements in software security. We will discuss the Secure by Default concept, why it is important, and what customers and vendors can do about it today.

Oct 25, 2023
1:00pm - 1:45pm (Eastern)
Why We Are Losing the Cyberwar
We are not losing the cyberwar due to a lack of technical skills or a lack of frameworks. We are losing the cyberwar due to a lack of people skills (low EQ) with our highly rationally intelligent (high IQ) cybersecurity staff. Most cybersecurity staff want to feel significant by being “smarter” than others. This inhibits communication and collaboration. I offer a seven-step methodology to fix this challenge, as discussed in my book “The Smartest Person in the Room: The Root Cause and New Solution for Cybersecurity” (https://www.amazon.com/Smartest-Person-Room-Solution-Cybersecurity/dp/1544516215), which is based on my 30 years’ experience in cybersecurity, including my own journey with the first cybersecurity company (Alpine Security) that I built and sold in 2020.
Oct 25, 2023
2:00pm - 2:46pm (Eastern)
A Whole Lotta BS (Behavioral Science) About Cybersecurity

Let’s be honest: people can frustrate us. They don’t always do the things we’d like, and they often do some things we’d rather they didn’t. New research from the National Cybersecurity Alliance reveals insights about the public’s attitudes and beliefs about security.  We’ll explore the 2022 “Oh Behave! Cybersecurity Attitudes and Behaviors Report,” and some of the findings may surprise you! We’ll also give you practical, actionable advice on how you can better communicate to influence the behavior change you want to see.

Oct 25, 2023
2:00pm - 2:56pm (Eastern)
Cyber Threats, CISA Tools, and Services for Your Consideration

As the nation’s cyber defense agency, CISA leads the national effort to understand, manage, and reduce risk to our cyber and physical infrastructure. Since the majority of our nation’s critical infrastructure is privately owned, ensuring the nation’s cybersecurity posture requires continued collaboration between government and the private sector. During this fireside chat, CISA will discuss the current cyber threat landscape, the agency’s latest initiatives to help critical infrastructure owners and operators protect and defend their networks, and the catalog of CISA services available to organizations to become more cyber resilient.

Oct 25, 2023
2:00pm - 2:43pm (Eastern)
The State of the State of U.S. Privacy Laws: Requirements and Enforcement

With new U.S. state privacy laws coming into effect, evolving federal guidance from the Federal Trade Commission (FTC), and increasingly active EU data regulators, businesses are required to continually evolve and mature their privacy and information security strategies to meet changing requirements. Join Constangy partners Allison Prout and Sarah Rugnetta as they provide updates on key developments both within the U.S. and internationally in data privacy law.

This presentation will detail:

  • Strategies for businesses to leverage the remaining months in 2023 to continue to develop their privacy regulatory compliance,
  • Creating solutions that can be used to meet new and forthcoming legislative requirements, and
  • Insights into practical privacy and information security solutions when required to meet multiple different regulatory requirements.
Oct 25, 2023
3:00pm - 3:55pm (Eastern)
[Closing Keynote] Cyber Briefing: Government