UPCOMING EVENTS

Enterprise Risk / Security Management: Chicago

 

Strategies for reducing risk to the enterprise.

 

October 3, 2018

 

9:00am-5:00pm

 

7 CPE / 0.7 CEU / CISSP / 7 PDU Credits Awarded

 

Conference location: Donald E. Stephens Convention Center Rosemont (O’Hare) Illinois

  


Overview

 

In today’s highly regulatory environment it is essential that you have a clear understanding of risk across the enterprise. A risk management framework can bring visibility to key business and compliance risks and enable a company to make decisions on where to prioritize its limited resources. It is through a risk management framework that real value to the business can be achieved.

With all of these challenges, how do you make this happen?

In this one day conference, attendees will be provided with examples of approaches to managing information and compliance risk through a risk management framework.


What You Will Learn

 

In this one day conference attendees will learn:

  • Risk Reduction: Effective Enterprise Vulnerability Management/Security Incident Response
  • Digital Transformation and CyberSecurity: What CISOs Need to Know
  • CISO Strategy: What Your Board Needs to Know
  • Vendor Risk Management: How to Identify and Decrease Potential Risks When Leveraging 3rd Party Vendors (panel discussion)
  • State of the Threat Landscape, 2018/2019
  • Breaches & Ransomware: How to Handle, How to Respond

 


 

Conference Price: $289.00 per person

 

Each attendee will receive a certificate awarding 7 CPE credits for CISSP continuing education, in addition to 0.7 CEUs and 7 PDUs. CISSP is a registered certification mark of (ISC)², Inc.


Conference Program


8:00am – 9:00am: Registration and Continental Breakfast


9:00am-10:00am: Risk Reduction: Effective Enterprise Vulnerability Management/Security Incident Response

 

Derek Milroy, IS Security Architect, U.S. Cellular Corporation

 

This presentation is a detailed how-to for assessing, implementing, and maintaining a Vulnerability Management Program. It will also touch a bit on patch and configuration management as they are both remediation’s that typically result from running Vulnerability Management efforts. This presentation is not based on theory. It is based on experience in literally dozens of environments, some that were scanning over 90,000 live hosts per month. The presentation will also cover methods for working with systems administrators and application owners to get processes in place that are sustainable and will produce results. In addition, metrics and score-carding will be discussed with a focus on measuring what needs to be done and what work has been done.

 


Milroy


10:00am -10:30am: Refreshment Break


10:30am-11:30am: Digital Transformation and CyberSecurity: What CISOs Need to Know

 

 

During the last few years, most organizations have been accelerating the pace of their digital transformation efforts due to the adoption of cloud/edge computing, Big Data and the Internet of Things (IoT). Organizations are still suffering from security attacks, which are among the most important barriers in the implementation of their digital transformation agendas.

 

In this session, attendees will be provided with a Risk/Security framework to support their digital transformation.

 

 


11:30am-12:30pm: CISO Strategy: What Your Board Needs to Know

 

 

It is now common for a board of directors to require regular reporting on the state of IT risk and information security. CISOs, Risk and security leaders must provide business focused risk analyses.

 

In this session, you will learn:

  • What is the role of the board and what do they need to know?
  • What should you cover?
  • How should you articulate this in business terms?

 


12:30pm – 1:30pm Luncheon


1:30pm-2:30pm: Vendor Risk Management: How to Identify and Decrease Potential Risks When Leveraging 3rd Party Vendors (panel discussion)

 

Moderator:
George Harrison, Named Account Manager, Infoblox
Panelists:
Ricardo Lafosse, CISO, Morningstar, Inc.
Shayla Treadwell, Sr. Manager, Information Security, Corporate Risk Management, Discover Financial Services
Arlene Yetnikoff, Director, Information Security, DePaul University
Mike Wood, Vice President, IT, Wilton Brands, LLC
and other Enterprise CISOs and InfoSec Executives sharing their experiences and lessons learned

 

Topics that will be covered include:

  • Contract outlining the business relationship between your organization and 3rd party vendor
  • How to monitor vendor performance to ensure that contractual obligations are being met
  • Guidelines regarding which party will have access to what information as part of the agreement
  • How to ensure that 3rd party vendors meet regulatory compliance guidelines for your industry

 

     
Yetnikoff     Wood


2:30pm – 3:00pm: Refreshment Break


3:00pm-4:00pm: State of the Threat Landscape, 2018/2019

 

 

Where are we? Have we gotten any better are preventing attacks? When it comes to the threat landscape, it can be challenging to predict what’s coming down the pike and how it will change your reaction.

 

In this session, attendee will learn where are, where we may be headed and how to prepare for the next set of attacks.

 


4:00pm-5:00pm: Breaches & Ransomware: How to Handle, How to Respond

 

 

Moderator:
Dave Klein, Senior Director, Engineering & Architecture, GuardiCore
Panelists:
Mitch Christian, Sr. IT Security Manager, American Hotel Register Company
Riad Amro, CISM, Senior Information Security Officer, SISO, Director of Information Security, Total Administrative Services Corp (TASC)
Peter Van Loon, Senior Manager of Information Security, Discover Financial Services
Gary Patterson, Director, Information Security & IT Infrastructure, VIVIDSEATS
and other Enterprise CISOs and InfoSec Executives sharing their experiences and lessons learned

 

In this session, attendees will learn from CISOs and Security Executives as to how they are working through the challenges of Data Breaches and Ransomware.

 

Attendees will walk away with shared strategies and tactics that other organizations are employing.

 

     
Christian     Amro


Conference Price: $289.00 per person

 

Each attendee will receive a certificate awarding 7 CPE credits for CISSP continuing education, in addition to 0.7 CEUs and 7 PDUs. CISSP is a registered certification mark of (ISC)², Inc.

 

Exhibits

As is always the case at CAMP IT Conferences events, the talks will not include product presentations.  During the continental breakfast, coffee breaks, and the luncheon break you will have the opportunity to informally meet representatives from the following sponsoring companies, who have solutions in the area of the conference.


CONFERENCE CO-SPONSORS