In-Person

Toronto CISO Community

Executive Summit

June 25, 2025 | Marriott Downtown at CF Toronto Eaton Centre

June 25, 2025
Marriott Downtown at CF Toronto Eaton Centre

Governing Body Agenda Location Sponsors Contact

Governing Body Co-Chairs

Nagesh Chawla

Foresters Financial
VP, Enterprise Technology and Cybersecurity

Joanne Coles

Onex
Managing Director, Enterprise Technology

Sandra Liepkalns

Choice Properties REIT
VP, Information Security & Data Governance

Mike Melo

LifeLabs
VP, Technology Shared Services & CISO

Ragulan Sinnarajah

Empire Company Limited
VP, CISO

Olivera Zatezalo

Ontario Power Generation
CISO & VP, Cyber and IT Security

What to Expect

Interactive Sessions

Hear from CISO practitioners and thought leaders on how they're solving critical challenges impacting your role today in Keynote sessions, and join smaller, interactive discussions with your peers in Breakout and Boardroom sessions.

Community Networking

Make new connections and catch up with old friends in casual conversations during dedicated time for networking designed to better acquaint you with your Toronto CISO community.

Peer-to-Peer Meetings

Connect with like-minded peers in a private, one-on-one setting through Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

Agenda

June 25, 2025

morning afternoon

8:00am - 8:30am Registration & Breakfast

8:30am - 9:15am Keynote

Building a Powerful, Personal Executive Brand

Sean Barnes

Executive Coach

Host of "The Way of the Wolf" podcast

Every leader has a reputation, but not every leader has a brand. And while both impact your success, an intentionally crafted executive brand not only speaks for you when you're not in the room but puts you in a position to attract, recognize and realize opportunities that further your goals.

Sean Barnes — a CIO and CHRO turned executive coach — shares insights learned from his own journey of discovering and developing a powerful personal brand, highlighting the opportunities and challenges leaders face in doing so. You'll leave this talk inspired and empowered to take control of how the world sees you, with actionable tips for:

Becoming known for the things that matter to you
Crafting an executive brand that is authentically yours
Owning your brand inside and outside your organization

9:15am - 9:40am Networking Break

9:40am - 10:25am Breakout Session

Secure Identity. Secure Everything.

Mike Berthold

Senior Solutions Architect, Office of the Field CTO

Okta

CISOs know identity is the #1 attack vector, with over 80% of breaches stemming from an Identity attack. With identity playing such an integral role in keeping your organization secure, how can you strengthen your identity solution to work for you, not against you?

Join this session to discuss:

Gaining end-to-end visibility and real-time remediation
Identifying, managing, and securing service accounts across the environment
Enforcing security policies and automating lifecycle management

9:40am - 10:25am Executive Boardroom

Employing Cyber Intelligence to Improve Resiliency

Stephen Boyer

Co-Founder & Chief Innovation Officer

Bitsight

Abhay Raman

SVP, CSO

Sun Life

Puroo Maheshwari

CISO, Portfolio Value Creation

CPP Investments

As cyber threats escalate, organizations must build resilience to effectively withstand and recover from attacks. Real-time threat intelligence provides CISOs with crucial insights to understand the company's risk landscape and respond swiftly. Cyber Threat Intelligence (CTI) is essential for fortifying resilience and enhancing communication with the C-suite and Board.

Join this session to discuss:

Leveraging CTI to align cybersecurity strategies with organizational goals
Using evidence-based threat intelligence to boost proactive defense and recovery
Improving communication with executive leadership on risk management strategies

9:40am - 10:25am Executive Boardroom

Generative to Agentic — Is the Risk Worth the Evolution?

Anthony Scarfe

Deputy CISO

Elastic

Nadeem Hussain

CISO, Canada

Doane Grant Thornton

GenAI is changing rapidly, and the next major step is agentic AI — systems that are capable of taking actions without human oversight. This brings a new level of complexity, but there are benefits for security teams as well. Security leaders are now exploring the value and risk of agentic AI to determine how to advance safely.

Join Elastic’s security leadership to explore:

The use of GenAI in security and how it's advanced to meet different team needs
How AI adoption changes your attack surface
The different ways AI augments security teams and workflows

9:40am - 10:25am Executive Boardroom

CISO Role Evolution — How Are You Adapting?

Craig Newell

VP, Enterprise Information Security

GDI Integrated Facility Services

Alpha Chan

CISO

Toronto Police Service

Being a well-rounded CISO can’t be hacked. It takes consistent reflection and re-invention as the role evolves from a solely technology-focused position to a business-enabling one.

Join this peer-led boardroom to discuss:

Embracing the evolving demands of the CISO role
Building trust and influence amongst C-Suite peers and key stakeholders
Demonstrating your value as a proven leader and business-enabler

10:25am - 11:10am Networking Break

10:35am - 11:00am Peer-to-Peer Meetings

Peer-to-Peer Meetings

Connect with like-minded peers in a one-on-one setting through Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

11:10am - 11:55am Breakout Session

Rethinking the Relationship Between Cybersecurity Teams and the People They Protect

Patrick Joyce

Global Resident CISO

Proofpoint

You’ve heard it all before — the DBIR tells you people are your biggest risk, phishing simulations tell you your users fall for social engineering, and simple security measures you deploy are sometimes met with howls of protest. But what if it didn’t have to be that way?

Join this session for a fresh perspective on:

Moving security alerts from the SOC to where users work
Protecting end users perception of security controls
Transforming security teams interactions with end users

11:10am - 11:55am Executive Boardroom

Fostering a Digital Native Mindset to Cybersecurity

Ian Gallagher

Director of Solution Engineering

Cloudflare

Iain Paterson

CISO

WELL Health

Brian Cullen

CISO & VP, Global Operations

Rakuten Kobo

When you think of "digital native businesses," the assumption is that these are all newer companies that don't have the hurdles traditional or established organizations face when undergoing digital transformation. But becoming "digital native" isn't just about maturity -- it's about embracing innovation as a core part of your company's identity. Blurring the lines between technical and business leader, CISOs are uniquely poised to lead the way in cultivating this mindset shift across the enterprise.

Join this session to discuss:

Defining and cultivating a digital native mindset across the organization
Analyzing organizations that found the right balance of innovation and security for strategic differentiation
Breaking down siloes between security, IT, and business teams

11:10am - 11:55am Executive Boardroom

From Chaos to Clarity ― AI’s Role in Data Security

Kayla Williams

Field CISO

Cyera

Assaf Afek-Levy

CISO

GFL Environmental

Gary Smith

VP, IT Operations

EllisDon

As leaders, you're expected to enable secure, data-driven innovation. That requires a clear understanding of what data you have, where it resides, its risk, who can access it, and how it's used. This interactive discussion will explore how CISOs tackle data visibility and ensure compliance.

Join this session to discuss:

Gaining data visibility as a foundation for data governance
Navigating evolving data security regulations and standards
Enabling compliance through shared responsibility and the right tools

11:10am - 11:55am Executive Boardroom

A New Era of Compliance & Regulation

Gennady Duchovich

Director, Cybersecurity & Information Security Officer

Financeit

Vik Patel

Senior Manager, Cybersecurity and IT Vendor Management

Heart&Stroke

Regulatory bodies are tightening compliance requirements to protect critical infrastructure and digitally enabled products from growing threats. CISOs must re-evaluate their programs to align with these heightened regulatory expectations, ensuring they are prepared for both compliance and a rapid response when new threats emerge.

Join this boardroom session to share your views and discuss:

Preparing your compliance framework to incorporate changing reporting requirements
Best practices for compliance, including the newest risk assessment methodologies and security controls
Streamline resources to create flexibility when acting on a threat and remain compliant

11:55am - 12:30pm Lunch Service

12:30pm - 1:05pm Keynote

Securing Data Flow in the AI-Quantum Era

Steve Riley

VP & Field CTO

Netskope

Sensitive data movement can be risky but restricting it outright can create operational and security challenges. In an era of agentic AI, generative AI, and emerging quantum computing, organizations need security frameworks that protect data while ensuring agility. This session explores how modern security platforms enable secure data flow, adapt to diverse use cases and prepare for the post-quantum encryption (PQE) shift.

Join this keynote to learn:

How to choose the right secure access method for each use case
Why security must be adaptive to risk, user behavior and AI-driven interactions
How to prepare for post-quantum encryption and its enterprise security impact

1:05pm - 1:30pm Break

1:30pm - 2:15pm Breakout Session

Going on the Offensive – The Art of Testing in Cyber Warfare

Kees Pouw

CISO

Questrade

We’re all familiar with the idea that “the best defense is a good offense.” But for cybersecurity – where the mandate has always been “defend and protect” – how do CISOs truly go on the offensive? For Kees Pouw, CISO at Questrade, the answer lies in a high-fidelity cyber testing strategy.

In this session, Kees shares how he built out an offensive security team that helped propel Questrade’s cybersecurity program, covering:

Challenges preventing CISOs from doing enough testing to build confidence in controls
Strategies and resources for building an offensive security strategy, whether inhouse or outsourced
Considerations on the use of GenAI by inhouse cybersecurity office team

1:30pm - 2:15pm Executive Boardroom

Beyond the Noise – Real-World Threat Intel Strategies

Michal Jankech

Global VP of Enterprise, SMB & MSP

ESET

Ben Blakely

VP, Information Security & CISO

Maple Leaf Foods

Shakeel Sagarwala

AVP, CISO

Canadian Tire Bank

Canadian CISOs aren’t just battling malware—they’re managing analyst burnout, navigating U.S.-Canada political friction, and rethinking trust in their tech stacks. Add in adversarial AI, alert fatigue, and the eternal skills shortage, and you've got a landscape where threat intel can feel more like background noise than actionable signal. Meanwhile, AI is becoming the double-edged sword of our time—accelerating detection on one hand, fueling smarter phishing and deepfake attacks on the other.

Join this closed-door discussion to hear and discuss concrete insights for improving your threat intel program, including:

Making your threat intelligence program actually usable across strategic, tactical, and technical layers
Where to focus your limited people, money, and time without inducing a mutiny
What shifting global alliances and data politics mean for vendor selection, compliance, and resilience

1:30pm - 2:15pm Executive Boardroom

Transitioning to Post-Quantum Cryptography is a Marathon, Not a Sprint

Agnelo Dias

VP, Information Security & IT Risk

IGM Financial

Vaughn Hazen

CISO

Quantum computing could make traditional cryptography unsafe within five years and break current encryption methods within ten years. Malicious actors are saving encrypted data now to decrypt it later when quantum computers are powerful enough. To protect against these future threats, governments and organizations are developing post-quantum cryptography (PQC) standards. As CISOs, it's important to stay updated with regulations and vendor capabilities for compliance and trust.

Join this roundtable session to:

Enhance your understanding of the post-quantum cryptography landscape/timeline
Connect with peers on how they are navigating quantum-readiness conversations
Delve into essential considerations for leading security teams in a post-quantum era

2:15pm - 3:00pm Networking Break

2:25pm - 2:50pm Peer-to-Peer Meetings

Peer-to-Peer Meetings

Connect with like-minded peers in a one-on-one setting through Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

3:00pm - 3:45pm Breakout Session

Workshop Your Personal Brand & Executive Presence

Sean Barnes

Executive Coach

Host of "The Way of the Wolf" podcast

Do you know how you are currently being perceived? In a world where reputation can shape your career, it's critical to take the time to understand how and if what you're known for aligns with what truly matters to you.

Sean Barnes, our opening keynote speaker, returns to facilitate an interactive session that allows participants to get more strategic coaching and actionable tips on how to take control of not only how the world sees you, but how you see and understand your own personal executive brand, diving deeper into topics like:

Discovering strategies to showcase your unique value and stand out in the cybersecurity industry
Learning techniques to project confidence, credibility and influence in every professional interaction
Identifying and seizing meaningful opportunities to build your brand and empower your growth as a leader

3:00pm - 3:45pm Executive Boardroom

Are Security Operating Models Evolving with the Pace of Business?

Nicole Galang

Senior Director, Information Security (CISO)

BGIS

Brenda McCulloch

VP CISO

Purolator Inc.

As enterprises rapidly accelerate their digital initiatives, CISOs are tasked with striking a delicate balance between implementing the right structures and strategies to safeguard organizational assets and delivering services and applications faster than ever before. How are CISOs updating their operating models and team structures to keep pace with the changing nature of business priorities and the changing technology landscape?

Join this conversation to hear how your peers are:

Evolving security operating models to deliver better speed, agility and security while optimizing cost savings
Assessing how their business units may evolve in line with new technological innovations
Positioning their team as security advocates and demonstrating business value

3:00pm - 3:45pm Executive Boardroom

Cyber Resilience in Times of Geopolitical Conflict

Craig Peppard

VP & CISO

ivari

Mark Pryce

Manager Cybersecurity

Toromont

As global tensions rise, coordinated cyber-attacks are impacting organizations globally. Cyber-conflict isn’t just a security problem, it’s a business problem that requires a strategic partnership between CISOs and leaders across the enterprise.

Join this peer-led conversation to discuss:

Gauging the business’ appetite for risk amidst geopolitical unrest
Engaging leadership to make informed cybersecurity risk decisions
Identifying and responding to politically charged TTPs

3:00pm - 3:45pm Executive Boardroom

The Present and Future State of IAM

Deyves Fonseca

Acting CISO

University of Toronto

Teodor Pana

Director, Cyber Security

SE Health

Ask 15 CISOs what it would take to feel truly confident in their identity access policies and you might get 15 different answers. It’s not news that the number of human and machine identities seeking access to data and critical business systems has grown exponentially, in turn increasing the threat landscape and challenging traditional IAM paradigms. So how are security leaders keep a pulse on IAM governance, tools and capabilities to keep their organization’s identities secure?

In conversation with your CISO peers, you'll address:

What your biggest challenges are in terms of identity governance
Processes, policies and tools that add value to your IAM program
Where, in light of major threat advancements, your IAM strategies need upgrading

3:45pm - 4:00pm Networking Break

4:00pm - 4:40pm Gartner Keynote

Articulating Your Cybersecurity Program’s Business Value

Adam Evans

SVP & CISO

Royal Bank of Canada

Linda Dietrich

Executive Partner - CIO Advisory Practice

Gartner

There is no one-size-fits-all method for articulating cybersecurity business value to the board and other stakeholders, often making it a challenge for CISOs to compete for continued investment and buy-in. How can cybersecurity leaders translate the strategic benefits of their programs into business value when quantitative data is limited, unavailable or difficult to defend?

This session leverages the latest insights from the Gartner Research team to facilitate an interactive discussion on:

Expressing the value of a cybersecurity in terms that relate to the board
Evaluating the capabilities of your security and risk management program
Developing a roadmap to balance risk management with facilitating business outcomes

4:40pm - 4:45pm Closing Comments and Prize Drawing

4:45pm - 6:00pm Governing Body Reception

Governing Body Reception

Finish the day sharing lessons learned with your peers over light fare and drinks at this closing reception hosted by the Toronto CISO Governing Body.

June 25, 2025

morning afternoon

Apply to Participate

Already a Member? Sign In

Apply to participate in the Toronto CISO Community Executive Summit.

Gartner facilitates exclusive, C-level communities by personally qualifying and understanding the priorities, challenges and interests of each member.

Our selective approach maintains the high quality of the network and ensures top-level discussions with peers from the world’s leading organizations.

Each application will be reviewed, and once your participation is confirmed, you will have access to year-round community programs.

Community Member Criteria

To ensure peer connections and conversations at the highest level, members must meet the following criteria:

- C-level or senior most executive for respective function

- Organization revenue of $500M+

Exceptions are considered.

I meet the criteria above

I would still like to be considered

My contact information is….

First Name*

Last Name*

Organization*

Title*

Corporate Email Address*

Best Contact Number*

Organization Revenue *

You agree to our Privacy Policy and T&Cs, which includes sharing your contact details with your peers and sponsors.

Form contains errors, please review the above

Step

We look forward to seeing you at an upcoming in-person gathering

Gartner cares about the health and safety of our community. If you are feeling unwell, please refrain from attending the conference. At this time, Gartner does not have any health-related requirements in place for attendance. Should this change, we will follow up with updated guidance.

Location

Venue & Accommodation

Marriott Downtown at CF Toronto Eaton Centre

More Information

A block of rooms has been reserved at the Marriott Downtown at CF Toronto Eaton Centre at a reduced conference rate. Reservations should be made online or by calling 416-597-9200. Please mention Gartner Executive Summit to ensure the appropriate room rate.

Deadline to book using the discounted room rate of $403 CAD (plus tax) is June 2, 2025.

Reserve Room