IT Security Entrepreneurs' Forum (ITSEF 2012)

Forum Agenda

Frances C. Arrillaga Alumni Center at Stanford University

Democratizing Security Innovation: Connecting Industry, Government & Academia

March 21, 2012 ITSEF Forum (Subject to Change)

7:30 AM - 8:30 AM Registration and Continental Breakfast
Foyer
8:30 AM - 10:15 AM General Session
McCaw Hall
8:35 AM - 8:40 AM Master of Ceremonies
  • Bob Bragdon, Publisher, CSO Magazine
8:40 AM - 8:45 AM Welcome Remarks
  • Professor John Mitchell, Computer Science Department, Stanford University
8:45 AM - 9:00 AM Introductory Remarks
  • Robert D. Rodriguez, Chairman & Managing Principal, Security Innovation Network
9:00 AM - 9:30 AM Opening Keynote
  • Jane Holl Lute, Deputy Secretary of Homeland Security, Department of Homeland Security
9:30 AM - 10:15 AM The Size of Economic Cyber Crime: Legacy Technologies and the Markets for Online Crime

Moderator:
  • Richard Schaeffer, Principal, Security Innovation Network (Former Information Assurance Director, National Security Agency)
Panelists:
  • Dr. Ward A. Hanson, Policy Forum Director & Research Fellow, Stanford Institute for Economic Policy Research
  • A.T. Smith, Assistant Director, United States Secret Service
  • Marc Goodman, Global Security Advisor/Faculty Member, Chair for Policy, Law & Ethics, Singularity University
  • John Vigouroux, Chief Executive Officer, M86 Security
As Thomas Schelling pointed out long ago, economically oriented crime fits into categories based on the criminals' roles. In the Schelling framework, two key functions of economic cybercriminals are organized burglary and extortion. While both of these are present online, in dollar value organized burglary dominates. Some of the most serious cyber weaknesses are due to legacy technologies that lack modern security features. A leading example is the U.S. credit card system. Insecure cards, terminals, and point-of-sale systems create a thriving market in stolen card numbers and active law enforcement crackdowns. Policy measures limiting the liability of consumers and hardware providers reinforce this weakness. Other countries, using more modern encrypted systems, have a much lower incidence of online credit card information theft. The credit card example illustrates a general point, about to become much more serious. Unless legacy systems are properly protected, or replaced with modern enhancements, the approaching "Internet of Things" creates many new markets for cybercrime. In essence, we are about to create an assortment of new legacy weaknesses. Governments at all levels - state, federal, and international - should work to minimize this collateral impact of ubiquitous networking. Chief among these actions are ensuring the proper incentives for the private sector.
10:15 AM - 10:40 AM BREAK
Foyer
10:40 AM - 11:55 AM General Session
McCaw Hall
10:45 AM - 11:05 AM Why Wall Street is Interested in Cyber Security

Presenter: The rise in organized crime and state sponsored cyber attacks has elevated the profile of IT security for both corporations and governments who have increased budgets associated with protecting against these threats. At the same time, capital is flowing to startups who are innovating new technologies to counter these threats. As these companies gain traction in the market and deliver sustained growth and returns, public market investors and large technology systems vendors have taken notice and are providing attractive liquidity opportunities for investors and entrepreneurs. As a result, IT security has become one of the most important sectors in the technology landscape today.
11:05 AM - 11:55 AM Has the Rapid Evolution of the Smart Grid Infrastructure Outpaced Policy, Security Applications and Interoperability Security Standards?

Smart Grid is rapidly advancing throughout North America at a rate that is seeing more IT infrastructure deployed in new and integrated ways than there are standards to establish appropriate security practices to protect this new and vital infrastructure. Traditional meter vendors, as well as new smart grid technology vendors are bringing products to market at a rapid pace that may be too fast to ensure appropriate security-by-design given the complex, interoperable and often public environment where these technologies will reside for many years to come. Industry analysts, security professionals, media and government agency leaders alike are expressing concerns over the pace of deployment and a lack of interoperability standards amongst other key concerns. As smart grid extends the electricity grid, a fundamental component of our critical infrastructure into the front lines of the cyber landscape, what trends relative to risk, threats and vulnerabilities are already evident. Where are solutions in critical infrastructure protection required? What roles do innovation and emerging technologies play in this? Have we already put our social and economic stability at risk by exposing the electricity grid to would-be hackers and foreign terrorists?

Moderator & Opening Remarks:
  • Mark Weatherford, Deputy Under Secretary for Cybersecurity, Department of Homeland Security, National Protection and Programs Directorate (NPPD)
Panelists:
  • Doug Powell, Chief Security Officer, BC Hydro
  • Ernie Hayden, Managing Principal - Energy Security, Verizon Global Energy & Utilities
  • James W. Sample, Chief Information Security Office, Pacific Gas & Electric (PG&E)
11:55 AM - 1:15 PM

Networking Lunch/Information Sharing Hour
McCaw Hall Lawn

The ITSEF is providing the opportunity for attendees to sit down in an informal and intimate (8 - 10 per table) setting with security leaders from private industry, Federal Government and venture capital. This optional "Information Sharing Hour" is designed to promote awareness, education and learning opportunities on how solution providers can best shape their vision, roadmap and assess their current path to meet the market needs.

  • Pat Muoio, Chief, Trusted Systems Research, National Security Agency (NSA) - "Virtualization in the Secure Mobility Ecosystem"
  • Mary Ann Davidson, Chief Security Officer, Oracle - "The Turn of the Security Screw: How to Raise the Bar, and When and How to Escalate"
  • Michael Coomes, Director, International Information Assurance, DoD Chief Information Officer - "Building International Relationships: What are other countries' requirements, priorities and potential resources?"
  • Reynold Schweickhardt, Director of Technology Policy for the Committee on House Administration - "Legislative Branch Information Security Requirements and Process"
  • Nick Shevelyov, Chief Security Officer, Silicon Valley Bank - "How to Make the Most Out of Your 30 Minutes Presenting your Solution to a CSO"
  • Armando Castro, Partner, DLA Piper - "IP Protection and Achieving Monetization for New Business Ventures"
  • Keith Tresh, Director and Chief Information Security Officer, California Technology Agency, Office of Information Security - "How to do Business with the State of California"
  • Rick Gordon, Chief Operating Officer, Lookingglass Cyber Solutions - "Supply Chain Risk Management - Continuous Monitoring of Ecosystem Threats"
11:55 PM - 1:15 PM

Private Luncheon for Media Only: Cyber Security Investment Trends for 2012 and Beyond: Whats Hot/ Whats Not
Fisher Conference Center

To learn the latest in cybersecurity investment trends, Security Innovation Network (SINET) invites the media to its second annual private press luncheon during the IT Security Entrepreneurs' Forum (ITSEF) at Stanford University. The venture capitalists who are investing most in security will give you an overview of the most relevant market and deals in the space.

Cyber security has moved to the front pages of American's newspapers, the Halls of Congress, the White House and the Board Rooms of major corporations. These dynamics continue to drive the demand for innovative technologies as electronic threats to computer networks and intellectual property have exploded in recent years. With the stakes high, government and corporate customers are stepping up their investments in defensive technologies and preventative measures to secure their digital frontiers.

Global cybersecurity spending is expected to top $60 billion this year according to the Cyber Security M&A Report by PricewaterhouseCoopers. The 172 US critical infrastructure organizations surveyed in a study by Bloomberg Government and the Ponemon Institute said that they currently spend $5.3 billion on cybersecurity and estimated that they would have to spend $46.6 billion over the next 12 to 18 months to reach a level of security where they could stop 95% of cyberattacks. Additionally, the Homeland Security Department would sharply raise spending for cybersecurity under the White House 2013 budget request to $769 million, up from $459 million this year.

In 2011, there were 150 security-related M&A deals, including Intel's $7.7 billion acquisition of McAfee and Hewlett-Packard's $1.6 billion acquisition of ArcSight, up from 69 deals in 2007. In response to growing customer spending as well as related M&A activity, the venture capital investment community is actively engaged in developing the technologies at the forefront of this battle.

Moderator:
  • Bob Ackerman, Founder and Managing Director, Allegis Capital
Panelists:
  • Ted Schlein, Managing Partner, Kleiner Perkins Caufield Byers
  • Asheem Chandna, Partner, Greylock Partners
  • Alberto Ypez, Managing Director,Trident Capital
1:15 PM - 2:50 PM General Session
McCaw Hall
1:15 PM - 2:05 PM What Technologies Don't Exist Today that can Help us Tomorrow

The dynamics of our IT, privacy & social environment is constantly changing and at warp speed. Our challenges to provide a trusted, safe and secure operating platform continue to become increasingly more difficult. What technologies are paramount in order to secure a trusted network for our employees, customers & adequately address our national security needs? What are the solutions needed to address tomorrow' most critical requirements? It is clear that innovation is one of many answers to meet our task at hand. What areas can the early stage (the innovators) and large companies best help the industry and government with their most challenging Cybersecurity problems. One of SINET's goals is to provide a forum so both large and small solution providers can better understand the user's concerns and priorities.

Moderator:
  • Rob Mancini, Chief Technology Officer, Government of the District of Columbia
Panelists:
  • Richard Hale, Deputy Chief Information Officer for Identity and Information Assurance, Department of Defense (DoD)
  • Debora A. Plunkett, Information Assurance Director, National Security Agency (NSA)
  • Joe Sullivan, Chief Security Officer, Facebook
2:05 PM - 2:50 PM Emerging Social Media Risks

What is next to come and what types of behavior, risks and change should we be anticipating? As the online community grows from 6 billion to an estimated 10 billion users within the next ten years, what are the security, privacy and social implications of this new reality? How will R&D, legal, regulatory and cultural differences influence the ebb and flow of domestic & international information exchange? Is the anonymity of us all at risk?

Moderator:
  • Patrick Heim, Senior Vice President, Chief Trust Officer, Salesforce.com
Panelists:
  • Professor Tino Cuellar, Co-Director, Center for International Security & Cooperation, Stanford University
  • Christopher Morace, Senior Vice President, Strategy, Jive Software
  • Sujata Millick, Visiting Researcher, HP Labs
2:50 PM - 3:15 PM BREAK
Foyer
3:15 PM - 5:30 PM General Session
McCaw Hall
3:20 PM - 4:10 PM What are the Key Attributes that Lead to Successful Technology Transfer

Moderator:
  • Professor John Mitchell, Computer Science Department, Stanford University
Panelists:
  • Dr. Douglas Maughan,Division Director, Cyber Security Division, Department of Homeland Security, Science & Technology Directorate
  • Mendel Rosenblum, Associate Professor, Computer Science and Electrical Engineering Computer Science Departments, Stanford University
  • Ted Schlein, Managing Partner, Kleiner Perkins Caufield Byers
Abstract: Successful technology transfer requires vision and the conviction to seize an opportunity and take action. Our panelists have a strong record of accomplishment, from three different perspectives: government research funding, academic research-based spin-offs, and venture funding. Dr. Douglas Maughan has managed funding programs that produced successful science and successful spinoffs. As a professor of computer science at Stanford, Mendle Rosenblum founded VMWare, the leading virtualization company. Ted Schlein and Kleiner Perkins have helped build a long list of successful companies. Together, these panelists will help us understand the factors that they believe are most important for success.
4:10 PM - 5:00 PM How the Intelligence Community is Integrating All Levels of Technology Readiness with Opening Remarks by Dawn Meyerriecks

"Innovating with the United States Government"(USG) Just as there are a variety of venture capital models, the USG has a number of ways to interact with innovators. This panel will bring together representatives from the National Science Foundation, In-Q-Tel, IARPA and a "consumer" of USG interactions to discuss how some of the Government's innovation engagement models, answer questions and collect solution providers feedback that leads to quicker integration of needed innovative technologies.

Moderator:
  • Dawn Meyerriecks, Assistant Director of National Intelligence for Acquisition, Technology & Facilities, Office of the Director of National Intelligence (DNI)
Panelists:
  • Dr. Lisa Porter, IARPA Director, Office of the Director of National Intelligence
  • Dr. Farnam Jahanian, Assistant Director, National Science Foundation, Computer Information Science & Engineering Directorate
  • Steve Bowsher, Managing Partner & Executive Vice President, In-Q-Tel, Strategic Investment Strategy
  • Adrian Turner, Chief Executive Officer, Mocana
5:00 PM - 5:30 PM Closing Keynote
  • Robert Carey, Principal Deputy Chief Information Officer, US Department of Defense
5:30 PM Closing Remarks
  • Robert D. Rodriguez, Chairman & Managing Principal, Security Innovation Network
5:30 PM - 7:30 PM Networking Reception
Arrillaga Patio