Minneapolis CISO Executive Summit

Join the Minneapolis CISO Governing Body and invited guests for dinner and drinks as we kick off the executive summit. Along with a night of peer networking, we’re partnering with the non-profit "Foster Love" to pack STEM Boxes that will be delivered to local children in foster care. The interactive kits allow kids to experience projects centered around science, technology, engineering and math.

There are many paths leading to zero trust, but careful planning in the initial stages is key to ensuring a smooth journey. Successful digital transformation relies upon cultivating organizational buy-in as well as understanding the best ways to apply zero trust in your environment. Starting off on the right foot can save your business considerable hardship down the road.

Join the session to learn:

• How to win support from peers and the board by framing zero trust in terms of business risk, not security
• Where to first introduce zero trust into your organization; access control, third party management, attack surface reduction, app-level segmentation, etc.
• Identifying and prioritizing risks to avoid scope creep and costly mistakes

We've been hearing about — and living through the reality of — the security talent shortage for a decade now. Internship programs can produce a talent pipeline to fill gaps in security programs when executed intentionally. Hear from DigiKey's Cybersecurity Team as they discuss their journey of refining internships for the better.

Join this panel to explore:

• An overview of their internship program — key strategies and lessons learned.
• Making the duration of the internship meaningful for all parties.
• How to stay engaged and connected throughout the entire process.

Not every insider risk turns into an insider threat, but every insider threat began as an insider risk. Security leaders need an insider risk mitigation program that encompasses people, processes and technology for successful early intervention, detection and mitigation of insider threats. How can executives build out these robust defenses and strengthen internal cross-functional partnerships to tackle insider risk as a team?

Join this session to discuss:

• Managing insider threats and risks in your organization
• Contextualizing insider risk mitigation strategies within the framework of the larger corporate risk framework
• Leveraging behavioral change, analytical insights and precise interventions to reduce human risk

APIs fuel digital transformation and are core to every SaaS, web and mobile application. As API use attacks are becoming more frequent and complex, how can CISOs ensure protection for sensitive data, applications, and customers?

Join this boardroom to discuss:

• How to gain visibility to understand exposure and risk
• Ways to answer the “so what” for API security, including OWASP API Top 10 impacts
• How security and development teams can find balance

One of the most widely deployed applications in the Enterprise has also become one of the most strategic – yet it was an application that was never built or designed for the Enterprise? The browser has changed the way we work in the modern era, however it is unapologetically based on consumer needs and preferences.  What if the browser was designed for the enterprise? What could that do for security, productivity and work itself? Join us to see how this technology is transforming the way companies do business.  

 In this session, we will share details on:

• Innovative features and possibilities for critical application protection
• Creating an employee experience centered on productivity and flexibility
• Reimagining how IT leaders can enable users while creating unique business value

 Generative Ai, Cyber Insurance, Talent & Culture — oh my! As these and other trending topics make their way to the boardroom and dinner table alike, it’s up to CISO leaders to determine which are more hype and which they need to focus on NOW.

Join this session to discuss and debate with your peers:

• Hot topics surfacing across industries
• Business impacts of emerging trends
• Key strategies for communicating new trends to stakeholders

Today’s business leaders find themselves squaring up against a two-headed monster: more attack surfaces and threats to cover than ever before and macroeconomic challenges loom. Cybersecurity isn’t something that orgs can afford to “cut down on,” so increasingly, leaders are asked to achieve even greater outcomes with the same or fewer resources — from budgets to tech to headcount. How can CISOs evaluate spend without compromising on risk?

Join this session to discuss:

• Ways organizations are improving return on investment (ROI) on existing security investments
• How leaders can translate risk into business outcomes for leadership and boards, enabled by security investment
• How to overcome challenges security leaders face as they work to scale, grow, and innovate without sacrificing security

With cloud adoption accelerating and the emergence of permanent hybrid workforces, traditional network security constructs are pushed to their breaking point. As remote work has become the new normal, users, applications and data are now everywhere, challenging traditional notions of security and performance. CISOs need a new security architecture designed to protect our ever-expanding perimeters from ever-evolving threats without sacrificing performance. 

Join this session to discuss: 

• Why a unified approach to SASE is critical for leveraging AI
• How AI/ML can deliver better security, networking and operational outcomes
• Best practices to adopt SASE that sets you up for success

Connect with like-minded peers in a one-on-one setting through Evanta’s Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

 In recent years, organizations have faced significant challenges in adapting to a digital-first environment and managing cybersecurity threats, while also relying more on vendors for critical business functions. Successful Vendor Security programs require seamless alignment between security professionals, relationship managers, and vendor contacts to meet expectations throughout the vendor lifecycle. In this session, learn how enabling a strong collaboration between cyber risk and cyber threat intelligence creates meaningful, ongoing conversations about risk.

Join this session to explore:

• Prioritization decisions driven by data and risk strategies
• Enhancing your program by infusing threat intelligence
• Centering partnerships to improve practices and insights

Phishing and social engineering remain the top methods used by cybercriminals to infiltrate organizations. It is fundamental for CISOs to implement strong technical solutions as well as cultivate effective training programs to consistently educate employees and increase awareness of potential threats.

Join this boardroom to discuss:

• The latest trends in social engineering attacks, including spear phishing, pretexting, baiting, and tailgating and methods to identify and respond effectively
• Leveraging data to better understand your adversaries
• Best practices to build a resilient security culture and raise employee awareness of social engineering threats

There's no denying the power and popularity of generative AI programs like ChatGPT. For good or for evil, its uses seem endless. Predicting exactly how this advanced AI will impact the future of cyber security is impossible. But through collaboration with your C-level peers, you might be able to prepare.

Join this interactive session to:

• Share your thoughts on enterprise use cases for generative AI
• Gauge the impact this tech advancement is having across industries
• Unpack concerns around developing policies, loss of IP, etc.

Grab a drink at the bar and join us in the main ballroom for Closing Comments, Reception, and Prize Drawing!