Agenda 2024

Join us for an engaging and insightful journey through the evolution of AI, from the pioneering days of Turing to today's cutting-edge generative models. In "Not Your Grandparent's AI: New Age of Cybersecurity and IT Management," we explore how AI is revolutionizing IT operations and cybersecurity, transforming our approaches to data analysis, threat detection, and endpoint management. We'll delve into:

• the emotional rollercoaster of technology adoption
• the new risks posed by generative AI
• how to balance the need for speed and real-time data with security imperatives  

This discussion will equip you with a deeper understanding of the current landscape and future trajectory of AI in our industry. Come discover how to harness AI's potential while navigating its challenges.

What's the number one challenge organizations face today in managing cybersecurity threats in the cloud? Is it the rapid evolution of malware and zero-day threats, or is it the way we're structured to handle these issues? At Palo Alto Networks, we’ve developed a best practices framework specifically for cloud environments. This approach allows us to move past the common pitfalls that may have carried over into the cloud and to establish policies and procedures that can effectively address these challenges. Join this session to explore:

• What’s gone wrong in cloud security, particularly with organizational silos and outdated policies/procedures
• The best practices to overcome these issues
• How to realistically implement meaningful change

With an evolving threat landscape, the art of threat hunting has also advanced. In this session, we’ll dive into the art of threat hunting, anomaly detection, forensic investigations, and more, presenting a comprehensive approach to bolstering security operations. Explore the concept of amplifying security operations by harnessing the power of high-definition data analysis. Key strategies highlighted include innovative concepts such as Chained Detections and multi-directional hunts, all powered by AI. This methodology involves connecting seemingly unrelated artifacts and events to unveil hidden patterns, identify potential threats, and proactively mitigate risks before they escalate. Join us as we explore the forefront of cybersecurity operations and discover how the art of hunting in high definition can amplify your security operations.

As the threat landscape continues to intensify, relying on traditional models to secure identities is a losing proposition. It’s time to challenge conventional thinking and apply new security models to defend against identity-based cyberattacks. In today's world, characterized by the proliferation of identities and the double-edged sword of AI, every organization must embrace a set of new paradigms to secure every user - human and machine.

Third-Party Risk Management (TPRM) jobs like onboarding, continuous monitoring, or 4th party risk evaluation require a lot of data that many organizations struggle to obtain. Until now. ProcessUnity’s Global Risk Exchange delivers the industry’s most advanced third-party risk data for you to harness for increased efficiency and effectiveness, ushering in a completely new way of tackling common TPRM challenges. Join us for an in-depth look at ProcessUnity’s Global Risk Exchange. In this session we’ll explore how the Global Risk Exchange leverages real-time data, advanced analytics, and Artificial Intelligence to deliver a more efficient, effective, and proactive TPRM process. Discover the key benefits of adopting a data-first strategy and how it can position your organization for success in an increasingly complex risk landscape. Key Takeaways:

• Tips to identify and overcome the greatest challenges in managing third-party risk assessments.
• Unique ways to embed third-party risk data into procurement due diligence, onboarding, ongoing monitoring, and emerging threat scenarios.
• Introduction to the Exchange model for TPRM.

Today, most cyber threats target your people with potentially disastrous consequences. Join Immersive Labs as we discuss how to implement an effective cyber and micro drills program to prepare your organization for the latest attacks. Our experts will share best practices for giving your teams the knowledge, skills, and judgment they need to prevent and respond to cyber threats.

In this session, Brad Linch, Director of Enterprise Strategy at Veeam, will go through what CISA's stop ransomware Guidelines are, and how organizations can better prepare against cyberattacks. Successful cyberattacks are a result of a series of compounding failures. Simply being better prepared can go a long way.

Translate security concepts into business language and nail your next board presentation. Learn from experienced security leaders who have successfully earned their seat at the boardroom table. You’ll gain actionable insights on how to effectively communicate your security strategy in ways that resonate with the board and hear candid advice from seasoned CISOs. We’ll explore:

• Aligning with Board Expectations: Where CISOs should focus their time and attention during board meetings. Learn how to tailor your messaging for maximum impact.

• Simplifying Technical Concepts: Learn strategies to break down complex security topics into digestible, business-focused narratives that resonate with non-technical board members.
• Understanding how board members think: Uncover how to work with the board and senior leadership to align on risk tolerance and prepare for worst-case scenarios, ensuring the business is resilient in the face of security incidents.
• Positioning security as a Business Enabler: Gain practical tips for demonstrating the ROI of security initiatives.

This is your opportunity to elevate your boardroom strategy.

Generative AI, LLMs, and open source machine learning models provide a competitive edge for development teams and enterprises at large. Gartner has predicted that by 2025, 70% of enterprises will have operationalized AI architectures. However, with this adoption comes novel threat vectors within the software supply chain, affecting both software producers and enterprise software buyers. In this presentation, we will outline considerations that organizations must take when integrating AI into the software they build and buy, along with how to safeguard against threats that can be exploited by AI. This session will cover:

• The adoption of developer AI copilots and open source ML models and how they can be a vehicle for malware, tampering, and malicious behaviors
• How to remove the barriers to adopting advanced AI/ML capabilities without sacrificing due diligence
• How to minimize your exposure to AI-powered software exploits

This session will be based on my takeaways from advising private equity investors and corporate sellers on cybersecurity risks and preservation of valuations in over 250+ M&A deals. I will share 5 most useful strategies CISO’s can use when going through mergers, acquisitions, and divestitures. Including the right time to get involved, how to conduct/prepare for cybersecurity due diligence, limitations of technical tests, challenges, and more.

TBD

TBD

Please visit our sponsors in the Exhibit Hall and explore their resources. They're standing by to answer you questions.

With the rapid growth of AI-driven innovation, many organizations are feeling the pressure to give developers free rein in AI development. However, this can lead to dangerous security blind spots. In this session, we'll explore the critical pitfalls and emerging security risks that are already impacting AI projects today. You'll gain insights into the top attack vectors targeting AI systems and we'll explore best practices and strategies to safeguard your AI development process without stifling innovation. Join us to ensure your AI initiatives remain secure in a rapidly evolving threat landscape.

Addressing threats across different attack surfaces is a huge challenge for organizations. The existence of data silos and disconnected tools result in analysts conducting manual investigations without complete visibility and context. To better safeguard organizations, security teams need comprehensive protection across the entire enterprise. The SentinelOne Singularity™ Platform is the first AI security platform to provide enterprise- wide visibility and protection, bringing all enterprise data together in a unified data lake to reduce risk and help protect businesses. In this real-world scenario, experience how the unified Singularity Platform enables security teams to seamlessly detect, triage, investigate, and remediate cybersecurity attacks with AI-driven techniques and automation

Software represents the largest under-addressed attack surface in the world, and classic AppSec tools cannot address the full scope of threats impacting the software supply chain. ReversingLabs Spectra Assure rapidly deconstructs large, complex software packages and detects threats and exposures that lead to sophisticated, widespread, and costly attacks. Have more trust in your software by empowering software producers and buyers to eliminate coverage gaps, prioritize alerts, enforce custom policies, streamline remediation, and validate build integrity.

Build a More Cyber Resilient Organization from Store Room to Board Room With one Platform

ProcessUnity for Third-Party Risk Management (TPRM) protects companies and their brands by reducing risk from third parties, vendors and suppliers. TPRM expands the scope of risk management to encompass any external party that could pose a risk to an organization, including vendors, contractors, partners and suppliers.