CISO BFSI Summit US | November 2, 2017 | Sofitel New York - New York, NY, USA

↓ Agenda Key

Keynote Presentation

Visionary speaker presents to entire audience on key issues, challenges and business opportunities

Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee." title="Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee.

Executive Visions

Panel moderated by Master of Ceremonies and headed by four executives discussing critical business topics

Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members." title="Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members.

Thought Leadership

Solution provider-led session giving high-level overview of opportunities

Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community." title="Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community.

Think Tank

End user-led session in boardroom style, focusing on best practices

Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard." title="Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard.

Roundtable

Interactive session led by a moderator, focused on industry issue

Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done." title="Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done.

Case Study

Overview of recent project successes and failures

Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions." title="Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions.

Focus Group

Discussion of business drivers within a particular industry area

Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions." title="Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions.

Analyst Q&A Session

Moderator-led coverage of the latest industry research

Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst." title="Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst.

Vendor Showcase

Several brief, pointed overviews of the newest solutions and services

Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences." title="Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences.

Executive Exchange

Pre-determined, one-on-one interaction revolving around solutions of interest

Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest." title="Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest.

Open Forum Luncheon

Informal discussions on pre-determined topics

Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch." title="Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch.

Networking Session

Unique activities at once relaxing, enjoyable and productive

Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive." title="Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive.

 

Thursday, November 2, 2017 - CISO BFSI Summit US

7:30 am - 8:25 am

Registration and Networking Breakfast

 

8:30 am - 8:35 am

Welcome Address and Opening Remarks

 

8:35 am - 9:05 am

Keynote Presentation

IT Infrastructure and Beyond: From On-Prem to the Enterprise Cloud

Virtualization revolutionized IT in a way that cloud services are poised to dramatically change IT again with the promise of lower costs and higher agility.  Public cloud services such as Amazon Web Services and Microsoft Azure are gaining in popularity as enterprises look for ways to make their data center infrastructure invisible. Join this session to review the considerations and criteria for IT infrastructure and beyond, explore the cloud deployment models along with their pros and cons, and their impact on digital transformation.

Presented by:

Justin Hurst, Global Director of Technology, Nutanix View details

 
 

Nutanix View details

 
 
 

9:10 am - 9:35 am

Executive Exchange

 

Vendor Showcase


 

9:40 am - 10:05 am

Executive Exchange

 

Share:

Thought Leadership

Become a Change Agent for Business Transformation

Today's modern CIO is embarking on a digital transformation journey exploring radical hybrid IT strategies and leveraging new technologies like cloud, social, mobile and big data. However, with 'keeping the lights on' legacy IT components costing nearly 90% of a typical IT budget, how can IT make powerful advancements and lead business change? 

Join this interactive session to learn how award-winning CIOs are successfully tipping the balance by liberating people, time and money from costly ongoing maintenance of their ERP systems including SAP and Oracle, to invest in strategic initiatives that create real-world competitive advantage.

Presented by:

Glenn Cahaly, VP, Service Solution Architects, Rimini Street View details

 
 

Rimini Street View details

 
 
 

10:10 am - 10:15 am

Networking Session

Morning Networking Coffee Break
 

10:20 am - 10:45 am

Executive Exchange

 

Thought Leadership

Say Goodbye to Vulnerability Backlogs: Using RASP to Reclaim Control and Reduce Risk

Knowing is half the battle when it comes to protecting applications and their sensitive data. Application security testing tools scan your code to reveal the long lists of known vulnerabilities, but not all are remediated before the next release-even with mature secure software development practices. Enterprises resort to using theoretical levels of criticality - not actual risks-to prioritize which accumulated vulnerabilities to fix and in what order. Many vulnerabilities often undergo an exception process and make it into protocol.

A real-time, embedded solution like Prevoty's runtime application self-protection (RASP) changes the game completely. Prevoty places an automated security mechanism at the front of the line - directly in the application's operating environment - to immediately lower risk and act as a compensating control at runtime.

As such, Prevoty-enabled enterprises see 98%+ of their known vulnerabilities mitigated instantly, reducing backlogs and expediting an otherwise cumbersome release process. Prevoty RASP detects live production attacks and generates real-time security event longs and reports. Security teams can then correlate pre-production vulnerability scan results with Prevoty's runtime attack logs to go back, remediate based on actual risk - not just hypothetical threats. The result? Improved forensics.

Presented by:

Kunal Anand, CTO, Prevoty, Inc. View details

 
 

Prevoty, Inc. View details

 
 
 

10:50 am - 11:15 am

Executive Exchange

 

Think Tank

Next Generation Third-Party Security Management

Your company's security posture is not strictly determined by your company's security program. No company is an island because today's information networks are a patchwork of systems and information shared, exchanged, and acquired from vendors, partners, and M&As. Your company's security posture is a product of the security programs of all the companies in an information ecosystem. Complicating this security environment is the fact that vendor security management processes are all but broken.

Effective, comprehensive due diligence efforts haven't caught up with the speed of business today. Long-form questionnaires burden vendors and clients alike and often produce incomplete, inaccurate, or irrelevant information on which decision makers are expected to rely. All the while, regulators are requiring more frequent monitoring and deeper reviews of service providers as well as their service providers. Information security attacks are increasingly sophisticated. Breaches are more frequent, and no matter the risk climate, business needs to accelerate to remain competitive.

Takeaways: 

It is time for a rationalized approach that leverages core expertise, automation, and machine learning to yield both rapid and accurate information necessary to effectively assess and manage vendor security risk.

Presented by:

Paul Valente, CISO, Lending Club View details

 
 
 

11:20 am - 11:45 am

Executive Exchange

 

Vendor Showcase


 

11:50 am - 12:40 pm

Networking Luncheon

 

12:45 pm - 1:10 pm

Executive Exchange

 

Executive Boardroom

Case Studies in Deception: Three Examples of How You Can Get Ahead of APTs

Financial service networks have become so complex that it's virtually impossible to keep attackers out. Instead, innovative approaches must be taken to protect the organization's services, assets, and customers by preventing attackers from being successful once they've made their way in. This presentation will provide a more clear understanding of how deception works by showing how it can be used to mitigate cyber risks associated with wire transfers, with legacy and custom applications, and with M&A transitions.

Presented by:

Ofer Israeli, Founder and CEO, Illusive Networks View details

 
 

Illusive Networks View details

 
 
 

1:15 pm - 1:40 pm

Executive Exchange

 

Thought Leadership

Customer Identity and Access Management (CIAM) can present enterprises with unique identity management challenges: the scale is larger, the data may be more sensitive, business risk is heightened, and a whole new category of attack-based vectors can potentially unfold a true identity crisis can emerge. How can companies ensure customers are who they say they are? Can employing risk-based authentication help resolve identity dissonance?

Sponsored by:

IBM View details

 
 

Presented by:

Shaked Vax, Identity and Anti-Fraud Solutions Strategist, IBM View details

 
 
 

1:45 pm - 2:10 pm

Executive Exchange

 

Thought Leadership

Digital Transformation - Architecting Your Digital Platform at the Edge

The digital economy is forcing enterprises to transform how they connect customers, partners, employees and operations. Today's market leaders credit their speed and business advantages to their digital platform. Equinix will discuss how an Interconnection Oriented Architecture (IOATM) with a step-by-step playbook can redefine the edge - which is where to localize delivery of cloud-supported services to your customers, employees and partners - and architect your digital platform.

Presented by:

Dan Eline, Head of Vertical Marketing, East Region, Equinix View details

 
 

Equinix View details

 
 
 

2:15 pm - 2:40 pm

Executive Exchange

 

Think Tank

TBC


Sponsored by:

Nutanix View details

 
 
 

2:45 pm - 2:50 pm

Networking Session

Afternoon Networking Coffee Break
 

2:55 pm - 3:20 pm

Executive Exchange

 

Executive Boardroom

Data Threats in Financial Services - The Big Disconnect

When 451 Research surveyed 100 Financial Services IT security professionals in the U.S. (and 90 internationally) for the 2017 Thales Data Threat Report it was no surprise to find that today's threat environment is have a deep impact on operations and data security. But in 451 Analyst Garrett Bekker's view - we also found a big disconnect around what Financial Services organizations are doing to protect their data, and best practices for preventing data breaches.  

Takeaways: 
  • How IT security spending for Financial Services is being prioritized today - and why that can be a problem.
  • Perceived barriers to use of data security tools, and whether these are still relevant - or relics of past experiences. 
  • How adoption of cloud, containers, big data, IoT and other technologies complicate the data security picture - and what your peers would like to see to make this adoption safer 
  • Simple best practice recommendations that can enable you to evaluate your current stance, and improve it.

Presented by:

Andy Kicklighter, Director, Product Strategy, Thales, e-Security View details

 
 

Thales, e-Security View details

 
 
 

3:25 pm - 3:50 pm

Executive Exchange

 

Executive Boardroom

Do You Know How to Optimize Your Security Budget

For organizations to protect their critical assets, they need to develop an intelligence-led approach to prevention, detection and response. However, what is not clear is how organizations should allocate their spending across these fundamental capabilities. Join the conversation about how finite budgets, an ever increasing number of security tools/services, and an ever evolving threat landscape can easily become a conversation about risk to drive budget decisions. What risk is your business willing or able to accept? What assets generate value in your business that you can't risk?

Takeaways:

  • Discuss how to strike a balance between prevention, detection and response measures.
  • Learn why it is critical to understand which assets generate value. 
  • Discover ways to reduce costs, but increase capabilities. 

Presented by:

Colin McKinty, VP of Cyber Security Strategy, Americas , BAE Systems Applied Intelligence View details

 
 

BAE Systems Applied Intelligence View details

 
 
 

3:55 pm - 4:20 pm

Executive Exchange

 

Thought Leadership

TBC


Sponsored by:

Open Text View details

 
 
 

4:25 pm - 4:50 pm

Keynote Presentation

Introducing Security based Chaos Testing- Security is Chaotic- Drive out failure and build software that is truly rugged with Security Chaos Engineering

ChaoSlingr is a Security Chaos Engineering tool focused primarily on the experimentation on AWS Infrastructure to bring system security weaknesses to the forefront. The industry has traditionally put emphasis on the importance of preventative security control measures and defense-in-depth where-as our mission is to drive new knowledge and perspective into the attack surface by delivering proactively through detective experimentation. With so much focus on the preventative mechanisms, we never attempt beyond one-time or annual pen testing requirements to actually validate whether or not those controls actually are performing as designed.  

Takeaways: 

  • Address security weaknesses proactively.
  • Going beyond the reactive processes that currently dominate traditional security models.

Presented by:

Aaron Rinehart, Chief Enterprise Security Architect, UnitedHealth Group

 
 

4:55 pm - 5:00 pm

Thank You Address and Closing Remarks

 

5:00 pm - 6:30 pm

Cocktail Reception