UPCOMING EVENTS

Enterprise Risk / Security Management: Dallas

Conference Chair: Jim Desmond, Chief Security Officer, Elevate


Desmond

 

Strategies and techniques for leading and guiding a business driven risk/security approach during dynamic times.

 

February 1, 2018

 

9:00am-5:00pm

 

7 CPE / 0.7 CEU / CISSP / 7 PDU Credits Awarded

 

Conference location: Crowne Plaza Dallas – Market Center

  

      


Overview

In today’s highly regulatory environment it is essential that you have a clear understanding of risk across the enterprise. A risk management framework can bring visibility to key business and compliance risks and enable a company to make decisions on where to prioritize its limited resources. It is through a risk management framework that real value to the business can be achieved.

With all of these challenges, how do you make this happen?

In this one day conference, attendees will be provided with examples of approaches to managing information and compliance risk through a risk management framework.


What You Will Learn

 

In this one day conference attendees will learn:

 

  • The Nine Cybersecurity Habits
  • Creating an Incident Response Plan and Training Team Members
  • The Connected Worker and the Enterprise of Things: How to Reduce Security Risks
  • Vendor Risk Management: How to Identify and Decrease Potential Risks When Leveraging 3rd Party Vendors (panel discussion)
  • Balancing Act: Ensuring compliance with GDPR and US Regulations
  • User Behavioral Analytics – How to fight the compromised credential – analysis! Welcome to big data folks
  • Breaches & Ransomware: How to Handle, How to Respond

Conference Program


8:00am – 9:00am: Registration and Continental Breakfast


9:00am-9:50am: The Nine Cybersecurity Habits

 

George Finney, Chief Security Officer, Southern Methodist University

 

The most significant risks that businesses today face is Cybersecurity. Security is a people problem, not a technology problem, which is why 95% of breaches are caused by the human element. Cybersecurity is a behavior, not a skill. Yet, we’ve taught cybersecurity awareness for years as though it were a skill to be learned like any other technology. To change behaviors, we need to understand the underlying habits that govern our responses. This presentation will explore nine key cybersecurity habits, and will look at how you can use those habits to focus on changing behaviors in your security training. Join this session to tailor your approach to awareness training and have the greatest impact for all of your employees.

 


Finney


9:50am -10:20am: Refreshment Break


10:20am-11:10am: Creating an Incident Response Plan and Training Team Members

 

Chris McLelland, Security Operations Manager, Elevate 

 

Incident Response Plan creation, Training and Testing. Attendees will be provided with a blueprint for an IR plan that is in alignment with the main standards and regulations that many companies have to meet. Additionally, the approach to create the plan, test it, and train team members is also part of the presentation.

 


McClelland


11:10am-12:00pm: The Connected Worker and the Enterprise of Things: How to Reduce Security Risks

 

Chris Hazelton, Director, Enterprise Product Marketing at BlackBerry

 

The dependency on mobile devices will translate into a majority of enterprise computing outside of traditional PC computing. This will have the greatest impact with on campus (non-office-based) and off campus mobile workers who are becoming increasingly connected by rich real time communications powered by mobile applications running on wearable devices such as smart glasses. The rise of IoT in the enterprise, or the Enterprise of Things, will allow these workers to instantly connect with assets in the field to gain immediate understanding of the situation around them. This session will explore security concerns that come with these new tools and how to best address them.

 


Hazelton


12:00pm – 1:00pm Luncheon


1:00pm – 1:50pm: Vendor Risk Management: How to Identify and Decrease Potential Risks When Leveraging 3rd Party Vendors (panel discussion)

 

Panelists:
John Woods, Vice President, Information Security, PDX-NHIN
Joshua Danielson, CISO, Copart
Mark Nagiel, SVP/CISO, PrimeLending
Daryl Hykel, Manager of Security Assurance, HMS
and other CISOs sharing their experiences and lessons learned

 

Topics that will be covered include:

  • Contract outlining the business relationship between your organization and 3rd party vendor
  • How to monitor vendor performance to ensure that contractual obligations are being met
  • Guidelines regarding which party will have access to what information as part of the agreement
  • How to ensure that 3rd party vendors meet regulatory compliance guidelines for your industry

 

             
Woods      Danielson       Nagiel


1:50pm – 2:40pm; Balancing Act: Ensuring compliance with GDPR and US Regulations

 

GDPR will go into effect in 2018, and will have a significant impact on enterprise cybersecurity and data governance policies and practices beyond the EU. It will significantly impacting global organizations based in the United States that handle data on EU citizens and residents.

Where should you start with this and what kind of plan should you put in place?

 


2:40pm – 3:30pm: User Behavioral Analytics – How to fight the compromised credential – analysis! Welcome to big data folks

 

 

 


3:30pm – 4:00pm: Refreshment Break


4:00pm – 5:00pm: Breaches & Ransomware: How to Handle, How to Respond

 

Panelists:
Andy Sawyer, CISM, C|CISO, Director of Security, Locke Lord
Jerry Tilson, Global Information Security Leader, Mary Kay
Kory Anderson, Manager, Security Operations, HMS
and other CISOs and InfoSec Executives will share their experiences

 

Attendees will walk away with shared strategies and tactics that other organizations are employing.

 

          
Sawyer          Tilson       Anderson

 


Conference Price: $289.00 per person

 

Each attendee will receive a certificate awarding 7 CPE credits for CISSP continuing education, in addition to 0.7 CEUs and 7 PDUs. CISSP is a registered certification mark of (ISC)², Inc.

 

Exhibits

As is always the case at CAMP IT Conferences events, the talks will not include product presentations.  During the continental breakfast, coffee breaks, and the luncheon break you will have the opportunity to informally meet representatives from the following sponsoring companies, who have solutions in the area of the conference.


Conference Co-Sponsors