IN-PERSON

Denver CISO Executive Summit

June 11, 2019 | The Westin Denver Downtown

June 11, 2019
The Westin Denver Downtown

Governing Body Agenda Location Partners Contact

Governing Body Co-Chairs

Alan Cullop

DaVita Inc.
CIO

Jamie Cutler

QEP Resources, Inc
VP & CIO

Glenn Dally

Molson Coors Brewing Company
CISO

Chuck Fredrick

National CineMedia
CIO

Randall Frietzsche

Denver Health Medical Center
CISO

Mike Kalac

The Western Union Company
Interim Chief Information Officer

Chris Laping

Caribou Coffee & Einstein Bagels and Author, “People Before Things”
Chief Innovation Officer

Sam Masiello

Gates
CISO

Steve Oberg

DaVita Inc.
CISO

Purnima Wagle

DCP Midstream
CIO

Agenda

CISO AGENDA CIO AGENDA

June 10, 2019

afternoon

June 11, 2019

morning mid-afternoon afternoon

6:00pm - 8:30pm Governing Body Welcome Reception

Governing Body Welcome Reception

Governing Body members host this dinner to launch the event with an evening of peer networking.

7:00am - 7:45am Registration & Breakfast

7:45am - 8:30am Keynote

Inspiring Crazy Loyalty

Chris Laping

Chief Innovation Officer

Caribou Coffee & Einstein Bagels and Author, “People Before Things”

Despite recent progress, the idea persists that IT is still somehow not an equal player in the business. In reality, IT and security professionals are the ones who can drive game-changing outcomes and inspire crazy loyalty in the communities they serve. CIOs and CISOs must embrace a fundamental mind shift to evolve not only their roles, but the perception of their roles, build a powerful brand for themselves and become transformative change leaders. In this keynote, Chris Laping will challenge you to consider:

Aligning expectations of IT and security with the overall business strategy
How CIOs and CISOs can rebrand their role to have a seat at the table
Shifting IT and security to be seen not as a function, but as an experience

8:30am - 9:00am Networking Break

9:00am - 9:50am CISO Featured Session

Cross-Organizational Collaboration — A Playbook for CISOs

Randall Frietzsche

CISO

Denver Health Medical Center

Sam Masiello

CISO

Gates

Matt Shufeldt

CISO

Evotek

Unlike the CISO role of just a few years ago – where many could still focus heavily on the bits and bytes – today’s security leaders are also expected to be business leaders. Through real-life examples from a wealth of expertise, panelists discuss the transformation of security leadership and the skills necessary to succeed.

Join this session to hear how:

To think differently and more effectively about security
To become fluent in the languages of risk, finance and strategy
You can get what you need to protect the organization

9:00am - 9:50am CIO & CISO Executive Boardroom

Evolution of an Integrated Cybersecurity Office — A CIO-CISO Perspective

Howard Haile

CISO

SCL Health System

Sue Lapierre

CISO

Prologis

Julie Cullivan

Chief Information Officer and Senior Vice President, Business Operations

ForeScout Technologies, Inc.

The hyper-growth of IoT across the enterprise is forcing leaders to reassess how they secure their networks. Recent Forrester research has unveiled some hidden technical and organizational challenges IT professionals should be aware of when managing their overall security framework. In this interactive session:

Discuss effective strategies for devising information risk and value metrics
Learn and share what organizations can do to better defend IoT-enabled systems from cyberattacks
Find out how to mature the SOC into an Integrated Cybersecurity Fusion Center

Executive boardrooms are intimate and interactive sessions designed to foster dynamic dialogue around a specific, strategic topic. These private, closed-door discussions encourage attendee participation and are limited to 15 attendees (seating priority is given to C-level executives). To reserve your seat, please contact Jacob Higdon at jacob.higdon@evanta.com or 503-972-4442.

9:50am - 10:20am Networking Break

10:20am - 11:10am CISO Featured Session

Mission Impossible — So Many Risks, So Little Time

Ladi Adefala

Senior Security Strategist

Fortinet, Inc.

Emerging risks can be unpredictable and disruptive. Fifth Generation 5G mobile communications, extended reality, smart speakers, drones all offer incredible benefits but they also come with unexpected risks. These are truly the unpredictable unknowns. Anticipating these blind spots can appear impossible in light of the accelerated pace of technology innovations. In this session, you’ll:

Learn about emerging risks
Identify Impact and Implications of these risks
Discover strategies to address them

10:20am - 11:10am CISO Executive Boardroom

Eliminate Vulnerability Overload with Predictive Prioritization

Kip James

VP and CISO

TTEC

Larisa Thomas

CISO

City of Lakewood Colorado

Robert Huber

Chief Security Officer

Tenable

Overcoming the problem of vulnerability overload is critical to reducing cyber risk. During the roundtable we’ll explore how predictive prioritization of vulnerabilities will improve your vulnerability management efforts so you can focus on what matters most to your business to reduce risk and close your Cyber Exposure gap.

Discussion points:

How to move the most dangerous vulnerabilities up your priority list using threat intelligence
The resources required to effectively assess your environment and prioritize your efforts in a predictive manner
Practices that help ensure the results of your vulnerability assessments will allow you to take appropriate actions to make your organization more secure
How to make your staff more efficient and free them up for more productive tasks by drastically reducing the number of high priority vulnerabilities they need to remediate.

11:10am - 11:40am Networking Break

11:40am - 12:50pm Executive Networking Reception

Networking Lunch

Join the Governing Body for a lunch and interactive networking.

12:50pm - 1:20pm Networking Break

1:20pm - 2:10pm CISO Featured Session

Protecting Your VIPs, and Your VAPs (Very Attacked People) Too

Lucia Milica

Resident CISO

Proofpoint

For years, we’ve seen attackers target organizations via their people. Now with fewer reliable exploits and more cloud adoption, we’re also seeing a shift toward attacks that exploit people, with threat actors tricking their targets into running their malware for them, handing over their credentials, or simply sending data or money to an impostor. Lucia Milica of Proofpoint will outline strategies for gaining visibility and mitigating risk in a people-centric threat landscape.

Join to learn:

Why nearly all threat actors have shifted away from technical exploits to compromise their targets
How organizations can leverage threat data to understand which people and departments are highly targeted
How to design effective protection for highly attacked, highly vulnerable, and highly privileged users

1:20pm - 2:10pm CISO Executive Boardroom

The Current Privacy Policy Landscape

Glenn Dally

CISO

Molson Coors Brewing Company

Sam Masiello

CISO

Gates

Since the rollout of GDPR, many countries and U.S. states have been developing their own legislation with similar requirements and fines for organizations that fail to meet them. Join this peer-to-peer discussion for an update on how to maintain compliance with recent legislations and what a U.S. federal privacy law could look like.

In this session you will discuss:

The imperative to create trust with the customer about their data
Ways to change key company values in regards to data
How to determine which compliance frameworks to adopt

2:10pm - 2:30pm Networking Break

2:30pm - 3:20pm CISO Featured Session

Securing an Ever Expansive Network of Vendors

Marc Moesse

Vice President, Product Management

SecurityScorecard

Is your organization prepared to handle the additional threat exposure that comes from expanding business networks? Hear from Marc Moesse as he shares how to determine where you stand on third party risk maturity and next steps in increasing your third-party cyber resiliency.

This session will explore:

Finding the right balance between depth and breadth of your third-party risk program
Leveraging all the organization's resources for adoption
Methods to manage your fourth party risk

2:30pm - 3:20pm CISO Executive Boardroom

Phishing Defense — The Art of Human Intuitive Repulsion

Chris McLaughlin

Information Security Officer

Johns Manville

Wayne White

CTO

StarTek

Tonia Dudley

Security Solution Advisor

Cofense, formerly PhishMe

As intuitive human beings we often somehow sense when things aren’t quite right. When a newborn is “too quiet,” a sixth-sense can be more reliable than a baby monitor. What applies to life also applies to cybersecurity. Machine learning and artificial intelligence can weed out some of the threats, but they won't catch everything. Find out why trusting your gut – knowing when to say something when you see something – is a key part of any organization's phishing defense.

In this boardroom discussion:

Discover security trends, threat-actor tactics and defense strategies across the global financial sector
Learn the types of phishing attacks seen in the financial sector
See how attackers evolve their tactics to avoid perimeter controls

3:20pm - 3:40pm Networking Break

3:40pm - 4:20pm Keynote

Opening the Door to a New Kind of Leadership

Suma Nallapati

Chief Digital Officer

DISH Network

As organizations continue their digital journey, a new dimension of collaborative leadership has surfaced, and the heart of it all – you guessed it – is digital. As Dish Network’s first Chief Digital Officer, Suma Nallapati has a unique perspective on the future of IT and sees disruption as an opportunity to not only drive growth, but also radically transform diversity and inclusion in tech. Join Nallapati as she shares the fortitude it takes to be a woman of color in tech and how we can open the door to the next generation of IT leaders.

In this keynote, Nallapati will address:

The impact digital transformation is having on the structure of IT leadership
Opportunities to implement diversity and inclusion efforts in a time of rapid disruption
Advantages of building diverse teams to increase innovation in a digital age

4:20pm - 5:00pm Closing Reception & Prize Drawing