Southern California CISO Executive Summit

Governing Body members host this dinner for attendees to launch the event with an evening of peer networking. 

We are partnering with Together We Rise (https://www.togetherwerise.org/about-us/)

• "Children in foster care transition from home to home with their processions in trash bags.
•  Whether you are an individual, group, or organization looking for a charitable team-building opportunity, you can support children in your community by decorating and assembling Sweet Case duffle bags.
•  Make a difference in the lives of these children and replace trash bags with custom Sweet Case duffle bags."

Cyber risk is often viewed as something for IT departments to worry about, while business risk is a shared concern. Of course, any company that has suffered a serious breach knows cyberattacks can be as devastating as lawsuits, legislative non-compliance, and fraud. This session covers key steps in a phased zero trust transformation journey and offers CISOs advice for winning the support of organizational leadership to cultivate a strong security mindset and unleash the full power of secure digital transformation.

Join this session and learn to

• Identify key phases of zero trust transformation
• Demystify zero trust architecture for business leaders
• Include everyone in conversations on cybersecurity by framing issues in terms of business risk

In this era of constant digital transformation, organizations rely heavily on their third parties, however, third-party relationships come with risks. There is new a push for an industry standard. The White House recently released a cybersecurity strategy pushing manufacturers and software developers to do better. CISOs are concerned because it’s not a one size fits all solution.

Join this session to discuss:

• Why government regulation may not be the fix all
• How can CISOs better collaborate on how to vet suppliers and software
• Who should be on the hook for a breach, where should the responsibility fall

Despite a dynamic threat landscape and constantly changing malicious TTPs, CISOs must prepare their organizations to thrive in growing complexity. From widely distributed infrastructures to high volumes of tools with different levels of control and responsibility, it can be difficult to maintain true visibility across environments. How can shifting from reactive to proactive threat management be incorporated into your security strategy to help achieve this?

Join this session to discuss:

• Identifying blind spots due to information fragmentation
• Understanding your full attack surface and the challenges of lowering risks
• Reducing the noise and stress being fed into threat management systems and pressure on teams

Shift Left? Shift Right? CSPM, CNAPP, CDR, the list of cloud security acronyms can be lengthy, and are often used interchangeably depending upon the prism of the vendor you use. At the end of the day, its crucial security leaders have a clear thought-process on what tool their organization uses, so they don’t get left with one hand tied behind their back.

Join Qualys in this executive boardroom to discuss:

• Identifying cloud tools, what works and does not
• Best practices for a modern organization to defend and monitor cloud infrastructure
• Potential differences in the approach for single vs. multi-cloud

We live in a world where everything is hybrid and the blend between personal, corporate, private and public is ever-changing and presents us with a host of new challenges. This has increased and complicated the attack surface and the pressure to converge tools and do “more with less” is at peak levels. We must meet this watershed moment with the right team, plans, and technology.

Join this interactive session to learn:

• How to build an effective plan for change without adding to the chaos
• What consolidation approaches save money without sacrificing security
• Use cases that deliver immediate value and efficiency while improving user experience

Cyber threats don't take time off. And with varying budgets, staffing and technologies challenges, CISOs find that they must react and adapt accordingly to ensure their SOC is performing effectively. Find out how you can gain deep visibility into assets, access, and network flows, and granular enforcement of security policy.

Join this session to learn:

• How to provide internal visibility as it relates to threat intel and ransomware attacks
• Protect the modern enterprise from vulnerabilities introduced by the cloud and a distributed workforce
• How to set priorities and build a threat-hunting road map.

What will the security industry look like in 2025 — and beyond? Put your future forecasting skills to the test and share where your team stands by playing "CISO Says," a game show-style session powered by the top predictions prepared by Gartner's cybersecurity experts.

Come on down to:

• Compete in a data-driven quiz game with your peers
• Discover more about projected opportunities and challenges
• Share how you're preparing to lead your team through changing market conditions

Security consistency, performance and visibility across on-premises, hybrid, and multi-cloud environments is the desired end state for enterprise CISOs. However, challenges including siloed security tools, increasing numbers of adversary attacks on cloud, limited runtime protection, and the lack of visibility while trying to enforce compliance can stand in the way of getting there.

Join this session to discuss how to:

• Build attainable goals for a mature and effective cloud security model
• Implement proven strategies to improve cloud security posture
• Minimize risks to help achieve desired business outcomes

Many cybersecurity incidents result from well-known vulnerabilities that went unpatched. Delays in remediation can lead to a cascade effect of higher security risks, breaches and attacks. What strategies and tools are CISOs using to identify, prioritize and remediate security vulnerabilities across every computing device?

Join this boardroom to discuss:

• Significantly compressing the time between discovery and remediation
• Better leveraging threat intel to more aggressively reduce vectors of attack
• Efficiently managing the ever-expanding number and types of devices needing protection

Connect with like-minded peers in a one-on-one setting through Evanta’s Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

Getting senior executives to understand what you are trying to communicate can be tricky, daunting and at times frustrating. In this session we will help alleviate the stress as you learn from two top notch CISOs how to design an executive tabletop that produces effective results aimed towards achieving goals which are pre-established from your gap assessments.

Join this session to learn:

• How to create the scenario that is most effective in capturing capabilities and highlighting weaknesses
• Who should be involved in creating the tabletop scenario
• Where your authority matrix is in your organization

Trust is at the center of what we do in cybersecurity. Trust in your team, trust in your tools, and the business’ trust in you. However, security teams face challenges everyday that erode that trust: analysts get burned out and disengage, tools deliver more noise than outcomes, and your security program is more likely to slow down your business rather than help it run at full speed. In this session, we will discuss why this is the case and how to reverse this dynamic.

 Join this executive boardroom to discuss:

• How false positives can erode trust
• Building engineering principles into your SecOps process
• Why a flatter SOC is a better SOC

AI is revolutionizing the way we use technology. In just a few months Generative AI has jumped from the lab rooms and into the hands of anyone with a computer or phone. Technology like Chat GPT is moving so fast most IT teams cannot keep up with the pace. It may be the most powerful force of our time, but it’s also posed to be the most harmful. CISOs and their teams are trying to figure out how to say on the cutting edge of technology but at the same time are being proactively cautious about the risks that may arise.

In this session, you will explore:

• What risks and benefits cybersecurity teams face embracing the new era of AI
• How failing to leverage and adopt Generative AI may cause some enterprises to fail
• Where potential threats and weakness lie

Email is still at the top of the heap when it comes to a great collaboration and productivity tool, but understanding and mitigating the risks of data in mailboxes remains a formidable challenge. Email is a major an attack vector and a store of confidential data, but move to cloud-hosted, API-enabled mailboxes provides new opportunities for protecting mailbox data from threats.

Join this session to discuss:

• Opportunities to understand and mitigate mailbox data storage
• Strategies to protect critical data without hurting productivity
• Methods for flexible and tailored protection

The myth that companies can buy themselves out of risk is false. It doesn’t matter how much money you throw at a risk program, there is never a 100% guarantee that your company is safe from a breach. Keeping security risk to a minimum is the goal, but how do you contain risk when the playing field is constantly changing? CISOs need to look at risk management though a new lens and incorporate actionable steps to drive better frameworks, prioritizations, business alignments and risk tolerance.
 
Join this keynote to discuss:

• Why a solid framework and effective prioritization is critical
• What is your risk tolerance and how to calibrate investments around it
• How to use risk to further discussions on future business alignment and investment