Philadelphia CISO Executive Summit

The Governing Body of Philadelphia CISOs and invited guests are welcome to join us for a fun, interactive spin on the annual Governing Body Welcome Reception. Casino Night at Hilton Philadelphia at Penn's Landing will feature table games, food and drinks to kick off our “By CISOs, For CISOs” executive gathering.

 Research shows that highly diverse teams are more innovative and productive, but it's no secret that IT and cybersecurity positions have a diversity shortage. CISO’s have an opportunity to ignite change and create a space for the neurodiverse community.

 Join this session for an in-depth and candid conversation with Mark Odom, and Dr. Wendy J. Ross to discuss:

• How their neurodiversity program accelerates innovation and business through diversity and inclusion
• What it takes to support, develop, and retain neurodiverse talent
• Setting a vision and architecting the diverse IT workforce of the future

An organization's ability to achieve successful digital transformation is in large part enabled by the security team. Distributed, loosely connected infrastructure and tools, coupled with the demand for almost any-to-any connectivity, complicates the mission. Regularly defined as being delivered by a single "silver bullet" point solution, the term zero trust is now often held in poor regard. It is however, a highly effective conceptual framework, and perhaps even a cultural shift, that many organizations have been working with for several years.

Join this interactive boardroom to discuss:

• The broader definition of what a zero trust framework is
• The foundational control required to build a zero trust program
• Strategies for improving the user experience and proving value to get organization wide acceptance

Artificial Intelligence is a pervasive part of our lives today and cybersecurity teams and adversaries alike have learned to harness the speed and power of machines to strengthen their capabilities. With machine learning becoming one of the most important tools of defense, leaders must balance the overwhelming speed and accuracy advantages of AI with the need for measured and intuitive interactions with a real-world human element. 

Join this session to discuss:

• What these trends mean for the hands-on practitioner
• When the velocity of innovation outpaces the capabilities of human intellect
• The role of automation in the effective practice of securing our digital world

How can CISOs adapt and enable business agility without compromising security? In the wake of widespread cloud adoption and ubiquitous remote workers, traditional network and security systems have failed to keep pace. Patch management and user productivity are two critical gaps CISOs must solve, but with such complexity, solutions can be challenging to find.

Join this discussion to learn how others are taking a Zero Trust approach to:

• Layered and diverse strategies that are critical in today’s market
• The latest landscape for Zero Trust and identity governance best practices and challenges
• Strategic considerations for securing remote work

What's your community's top priority? What do your C-Level peers consider the largest hurdle in when it comes to accomplishing their goals? In this fun, highly-interactive, game-show-style session, we'll put your knowledge to the test. 

Come on down to:

• Compete in a data-driven, community-specific quiz game
• Learn more about the struggles and opportunities reported by members of your governing body
• Share and expand on these reported goals and challenges

Identity is not the new perimeter, but rather identity is a nexus for context and context is the new perimeter. Zero trust principles woven throughout your IAM strategy in today’s work-from-anywhere environments can be the key to protecting the business across people, devices and applications. As context becomes more complex and the perimeter is ever-evolving, how do you build a defense structure capable of protecting users and the business?

In this session, you will explore:

• The role of zero trust in identity and access management
• How to implement IAM tools without negatively impacting the user experience or core business operations
• How to engage other stakeholders and functions on their access needs to move beyond surface-level coordination

As the adoption of enterprise SaaS grows, high-profile SaaS application data breaches are also on the rise. CISOs are ultimately responsible for the security of their organization’s data, including access by third party applications, and must implement appropriate security settings and data governance for their environments. The challenge, the most widely used gateway architecture solutions don’t deliver visibility into the complex, unique characteristics of different SaaS applications.

Join this Boardroom to discuss:

• How to gain immediate visibility into what data can be accessed by all types of users and integrations, including third party applications
• How to build the business case for a comprehensive SaaS security program, including funding sources
• How to integrate security into the Software Development Lifecycle to improve DevSecOps during the product development process

The Cyber insurance application process is taking longer and has become more complicated in the last few years. Premiums are rising. Leaders from organizations big and small are questioning the value of Cyber insurance. 

Join this session for:

• Different perspectives on the changing cyber insurance industry
• A chance to troubleshoot your cyber insurance concerns
• Open conversations about the struggles and benefits of investing in cyber insurance

Connect with like-minded peers in a one-on-one setting through Evanta’s Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

 Cybersecurity no longer exists exclusively to secure things — it's an integral part of an organization's overall strategy and ability to thrive. Today's CISOs must bring both business and security expertise to the table and build innovative programs that support long-term enterprise goals.

During this session you will explore:

• Creating synergy between business and security initiatives to yield mutually beneficial outcomes
• Helping to build a culture of risk awareness across all business units
• Adopting a business mindset when advocating for and communicating security needs

When it comes to security, automation should not be the end goal; it’s simply a means to an end. While security automation is certainly an incredibly valuable tool, it is just that: a tool. So how do you identify which areas of your security operation are the best candidates for automation, and which should stay in the hands of your team (at least for now)?

During this peer-discussion you will explore:

• Creating a framework for evaluating automation use cases
• Whether the “single pane of glass” vision of automation is truly achievable
• Innovative ways other CISOs have used security automation

Sophisticated enterprise risk management strategy is not necessarily the full mitigation of risk. For most information security executives, strategic risk management describes a cross-organizational framework to assess different areas of risk and determine when accepting those risks is in the net interest of the business. In order to inform strategy and accountability for risk management, CISOs must be able to leverage meaningful metrics and messaging.

Join this session to discuss:

• Metrics that work – and don’t work – in describing information security risk
• The role that the CISO plays in setting risk management strategy
• Effective cross-functional partnerships in risk management

Talent and skills shortages, hiring and retention dilemmas, etc. have many at their wit's end. But what happens when you create a culture that keeps them so engaged, they don't want to leave? Listen in and learn how CISOs are leveraging employee satisfaction and engagement to drive growth, increase operational efficiencies and boost productivity.

Join this Keynote to discover:

• Attuning yourself to the needs of employees, teams, and the enterprise- big or small.
• Mentoring a multigenerational workforce – creating operational excellence
• Keeping the right people – thinking beyond retention