New York CISO Executive Summit

Today's relentless pursuit of success can lead to profound dissatisfaction and dramatically affect mental health. Accomplishments lack satisfaction, work is ceaseless, sleep and self-care are sacrificed. Recognizing this, leaders can play a pivotal role in breaking this cycle and nurturing a healthier and more fulfilled life for themselves and their teams.

Join this keynote from a mental health educator and former lawyer to learn:

• How time, efficiency, and productivity challenges individual and community health
• Why mental health of individuals and teams drives performance (and not vice versa)
• What specific steps leaders can take, for themselves and others, to shift away from the paradox and towards a healthier relationship with work

Sensitive data movement can be risky but restricting it outright can create operational and security challenges. In an era of agentic AI, generative AI, and emerging quantum computing, organizations need security frameworks that protect data while ensuring agility. This session explores how modern security platforms enable secure data flow, adapt to diverse use cases and prepare for the post-quantum encryption (PQE) shift.

Join this keynote to learn:

• How to choose the right secure access method for each use case
• Why security must be adaptive to risk, user behavior and AI-driven interactions
• How to prepare for post-quantum encryption and its enterprise security impact

No matter the industry, CISOs are paying closer attention at the connections between cyber and physical securities. Threat detection in the cyber space is one thing but using that information to enhance security or even stop crimes in the physical world — is next level. Being able to quickly mobilize after finding risks could prevent damages or loss to an organization — or maybe even save lives.

Join this session to explore:

• Expanding your risk lens to see the connection between cyber and physical threat detection
• Communicating the scale and gravity of information uncovered across the organization
• Reporting structures of cyber and physical security teams

For many tenured CISOs, their careers started at a time when many companies didn’t even have a CISO. While the world has changed, now might be the time for you to also make a change. Is your next career move becoming a CISO at a larger (or start-up) organization, a board member, a CIO, a professor or maybe something totally unexpected? Let’s explore career options with panelists who have done it themselves.

Join this session to ask panelists:

• How did you explore career options that aligned with life goals
• When did you know the time was right for a new move
• What skills and experiences did you need to prepare

Fostering true cyber resiliency requires balancing preparation across the organization with what actually unfolds during a major event. Hear the behind-the-scenes stories of events highlighted in the news from the CISOs who led their teams through them. Because we all know, it’s not if it’s going to happen… but when.

Come with your questions to join this dynamic session focused on:

• Stories of detection and recovery – what went right and what fell short
• Best practices for organizational communication – before, during and after an incident
• Mutual threat defense – the critical role of collaboration in the cybersecurity community

Security continues to find its way into the boardroom and even into headlines.  CISOs are feeling the heat to foster and explain strategic value, opportunities, and implications of key priorities and new innovations. In this workshop, you'll have the chance to pick topics that most interest you and have a dynamic dialogue about them with your peers.

Join this interactive session to:

• Engage with like-minded CISO peers on top-of-mind priorities
• Validate strategies and look at topics from new perspectives
• Share key lessons learned and proven best practices

Table Themes Include: Quantum Computing; AI vs. Talent; Personal Liability; Leading Through M&A; Next-Gen Technology; Passwordless Authentication; Building Your Brand; Life After CISO/Board Membership; Succession Planning

Cyber threats are increasingly sophisticated and pervasive, making conventional TPRM approaches like questionnaires inadequate. AI/ML and threat intelligence have the potential to transform TPRM, as well as extending into 4th, 5th parties and beyond. Leveraging key insights can help CISOs stay ahead of evolving risks and enhance security programs, even with limited resources.

Join this session to discuss:

• Practical strategies for leveraging threat intelligence in TPRM
• Critical alignment of people and process elements with advanced technologies
• Acting on useful insights and data to manage supply chain risk

The rise of Agentic AI is increasing risks and complexities for Non-Human Identities (NHIs) in cloud environments. AI agents need extensive NHI access, posing new challenges in identity governance and security.

Join this roundtable to discuss:

• Exponential NHI growth impacting security
• Management of AI access models and permissions
• Complex AI interactions affecting identity management

Cybersecurity measures are adept at detecting and responding to incidents across various layers, but the application layer often remains vulnerable. Many organizations have a massive vulnerability backlog that demands timely and effective defense.

Join us to explore:

• Understanding the scale of the backlog and strategies to prevent exploitation
• The intricacies of application and API protection within the security operations ecosystem
• Benefits of having a comprehensive blueprint that reveals attack surfaces, defenses, dangers, and connections 

With high volumes of sensitive data now flowing through web browsers, three in five organizations say data leakage is likely given current IT and security infrastructures. Stop playing catch-up. Discover new approaches to enterprise operations to reduce risk while simplifying operations.

Join this roundtable to discover:

• How disparate IT and security solutions create technical debt
• What challenges impact internal and end user stakeholders
• How simplifying IT can strengthen security, and boost productivity

Navigating today’s complex regulatory environment is a challenge for even the most resourceful enterprises. From PCI DSS to DORA and HIPAA, businesses must adopt smarter strategies to meet evolving compliance requirements while maintaining operational efficiency.

Join this session to:

• Discover how to narrow compliance scope with micro segmentation
• Learn strategies to reduce the cost and complexity of audits
• Build a compliance program that supports operational excellence and trust

 SaaS adoption has skyrocketed but so have the risks — from shadow SaaS to evolving identity threats. Static security measures won’t cut it. Organizations need a flexible, real-time approach to securing SaaS environments while maintaining agility.

Join this discussion to dive into:

• Dynamically managing SaaS security through vendor and identity controls
• Detecting and mitigating shadow SaaS risks before they escalate
• Making proactive, data-driven security decisions in an unpredictable landscape

AI makes creating and consuming data easier than ever, with shadow AI and dark data presenting new challenges to security teams. As the tactics for protecting data evolve, security leaders must adopt a risk-based strategy to protect mission-critical data and safeguard innovation.

Join this session to discover:

• Effective practices for ongoing monitoring to identify risks
• Rapid investigation and response techniques for insider threats
• Strategies for evolving your data protection approach

Security awareness programs have long been driven by dogma rather than data, often leading to ineffective and misaligned outcomes. With industry shifts and emerging trends, the modern CISO must adopt a smarter, data-driven approach to managing human cyber risk. Security leaders are moving beyond traditional training and using metrics that matter to prove the real impact of their efforts.

Join your peers to discuss:

• Identifying, targeting, and influencing long-term security behaviors
• Quantifying your human cyber risk
• Orchestrating an impactful plan of action with measurable outcomes

Security leaders face unprecedented challenges as evolving threats, including those posed by generative AI, rapidly increase enterprise risk. While new technologies offer defenses, they also introduce vulnerabilities. A cyber-ready workforce is crucial for organizational resilience, but how do you equip your organization to face the future of threats with confidence?

Join this interactive boardroom to discuss:

• Acting decisively under pressure to manage and mitigate threats
• Maintaining stakeholder confidence and protecting reputation during disruptions
• Sharing threat intelligence and preparing for long-term attack consequences

Connect with like-minded peers in a one-on-one setting through Evanta’s Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

Finish the day sharing lessons learned with your peers over light fare and drinks at this closing reception hosted by your Governing Body members.

You are invited to bring your favorite leadership books for a Book Swap at the Executive Summit throughout the day. Which books have influenced you as a leader? Bring a book with your notes in the margins or a fresh copy to leave, and then swap for a book one of your fellow executives has brought. This idea was inspired by a Governing Body Member!