Sunday, August 25, 2024
Arrive in Jackson Hole. Dinner on your own.

Day One: Monday, August 26, 2024
Times subject to change.

7:30 AM 

Busses depart from Wyoming Inn for Turpin Meadow Ranch

9:00 AM – 2:10 PM

SINET Risk Executive Workshop
Turpin Meadow Ranch

9:00 AM – 9:10 AM

Setting the Stage
Robert D. Rodriguez, Chairman & Founder, SINET

9:10 AM – 9:50 AM

Attendee Introductions 

9:50 AM – 10:25 AM

Update on the CISA Cybersecurity CSRB Report with Bret Arsenault, CVP, Chief Cybersecurity Advisor, Microsoft

10:25 AM – 11:05 AM

Identity Security Reimagined with Jim Alkove, CEO and Co-Founder, Oleria Security

11:05 AM – 11:15 AM

Break

11:15 AM – 11:55 AM

What Do Today’s Cyber Enforcement and Liability Trends Mean for CISOs & Other Executives? With Aravind Swaminathan, Global Co-Chair Cybersecurity and Data Privacy, Orrick, Herrington & Sutcliffe LLP

The SEC’s enforcement action against Solar Winds and its Chief Information Security Officer Tim Brown is one data point in a trend of regulators putting their sights directly on information security and technology executives. It follows on the DOJ’s prosecution and conviction of Joe Sullivan, Uber’s former Chief Security Officer, and the FTC’s consent decree against Drizly’s Chief Executive Officer James Cory Rellas. The landscape is changing fast – and there’s even more happening behind the scenes. Security professionals need to understand:

– What key regulators are currently focused on and how they are identifying potential targets for further investigations (e.g., sweeps, notice letters, informal inquiries, etc.)
– Regulatory changes by prominent regulatory agencies (e.g., SEC, FTC, NYDFS) and what these represent
– Steps that information security professionals should consider taking now, to stay ahead of the regulators and protect themselves

11:55 AM – 12:25 PM

Update From Tim Brown: Current Situation and Future Outlook with Tim Brown, VP Security and CISO, SolarWinds

Tim will provide an update on status and lead a discussion on lessons learned, limiting our exposure while doing our jobs, and how the community leverages the SECs actions for good.

12:25 PM – 12:55 PM

SINET Hosted Lunch

12:55 PM – 1:30 PM

Breach by Proxy: Supporting a Key Partner While Managing the Risk of a Breach with Kurt John, CIO & CSO, Expedia Group

Navingating a fast paced high pressure risk event: when one of your largest partners has been compromised, you’re the only one that can get them right side up and you need to do it in a way that doesn’t draw the ire and hostility of the attackers. Let’s talk about key decision moments, communicating with the board and other stakeholders and working with the teams on the ground to get to the other side.

1:30 PM – 2:10 PM

A Cyber Risk View From the Boardroom with John Frazzini, CEO and Founder, X-Analytics

2:10 PM

Thought Leadership Presentations Conclude 

2:10 PM

Horseback Riding, Fly Fishing, and UTV Tours at Turpin Meadow Ranch

SINET Hosted Dinner & Reception at Turpin Meadow Ranch
Busses depart for Wyoming Inn following dinner

Day Two: Tuesday, August 27, 2024
Times subject to change.

8:15 AM 

Busses depart from Wyoming Inn for Amangani

9:00 AM – 4:35 PM

SINET Risk Executive Workshop
Amangani

9:00 AM – 9:35 AM

How is AI Changing the Way We Operate Cyber? With Heather Adkins, VP, Security Engineering, Google

9:35 AM – 10:15 AM

SaaS Attack Patterns and IOCs: Best Practices for Securing Your SaaS Estate with Brendan O’Connor, CEO, AppOmni

This interactive discussion will explore practical frameworks and programs for CISOs and Risk Executives to evaluate SaaS risks in terms of their business criticality, vulnerability footprint, and cloud journey.

We will discuss common attacker TTPs, the SaaS threat landscape, and how security leaders can enhance their evaluation of risk towards their organizations and share lessons learned from recent breaches including Snowflake, Okta, Sisense, and GitHub.

We will exchange perspectives on the shared responsibility model for SaaS security and opportunities for collaboration between security teams and business owners to secure the SaaS applications that now power the enterprise. I will also offer an early look at AppOmni’s 2024 State of SaaS Security survey and report with respondents from over 640 global enterprises. In addition, we will review ideas on how zero trust architectures can extend to SaaS applications, and best practices to secure your SaaS estate based on lessons learned from enterprises with hundreds of applications and thousands of internal and external users.

10:15 AM – 10:25 AM

Break

10:25 AM – 11:10 AM

SINET Working Group on Robust Employment Agreements, Personal Liability, Employment Risks, and Technology Risk Governance with Brian Fricke, CISO, City National Bank of Florida and Michael Johnson, CISO, Meta Financial Technologies

11:10 AM – 11:45 AM

Do We Need a National CISO Trade Association? Decode Washington with Emily Coyle, President, Cyber Governance Alliance

CISOs understand the importance of professional networks for information sharing and career development. The changing legislative, regulatory, and litigation landscapes directly impact the cyber profession, yet there is no national CISO trade association. This discussion will explore efforts to formally engage federal policymakers, best practices and how other professions organize themselves to engage policymakers, influence outcomes, and shape the future of industry.

11:45 AM – 12:15 PM

Topic To Be Announced with Michael Baader, VP, Divisional Information Security Officer – Banking & Premium Products, Capital One

12:15 PM – 1:05 PM

SINET Hosted Lunch

1:05 PM – 1:40 PM

Performance and Stress: Practical Tools to Manage the Most Important Part of Your Job, You with Ben Miron, Business Unit CIO, Florida Power & Light

Through a personal journey we will discuss how stress can lead to physical and mental ailments. We will also share lessons and a few practical tools to understand stress and mental focus to improve performance in all aspects of life.

1:40 PM – 2:20 PM

Crypto Security Overview with Jeff Lunglhofer, CISO, Coinbase

2:20 PM – 2:30 PM

Break

2:30 PM – 3:10 PM

Managing Crisis Communications with Christopher Porter, SVP & CISO, Information Security and Integrated Risk Management, Fannie Mae and Meredith Griffanti, Global Head of Cybersecurity & Data Privacy Communications, FTI Consulting

3:10 PM – 3:55 PM

SINET Working Group on Defining Cybersecurity Risk Appetite Within an Interconnected Risk Management Framework with Kirsten Davies, CISO, Unilever and George Smirnoff, MD, Global Information Security, Compliance and Operational Risk Executive, Bank of America

An effective Cybersecurity Risk Appetite is one that is integrated into a cybersecurity risk program that enables the organization to be forward-looking and proactively adjust its risk posture across the cybersecurity risk domain, inclusive of related interconnected risks and business processes, to avoid material breaches.

The SINET Handbook on Defining Cybersecurity Risk Appetite Within an Interconnected Risk Management Framework (currently in draft) will provide an approach based on five core components: (1) Building a foundation based on top-down business objectives and a bottom-up risk and control framework; (2) Differentiating between maintaining the risk profile and proactively managing the risk where it is changing; (3) Managing cybersecurity risk as an interconnect risk across other risk domains; (4) Defining financial and non-financial, quantitative and qualitative measures; and (5) Establishing forward-looking and proactive triggers for management engagement.

3:55 PM – 4:35 PM

Topic To Be Announced with John Carlin, Partner, Paul, Weiss, Rifkind, Wharton & Garrison LLP

4:35 PM

Day Two Concludes

SINET Hosted Dinner & Reception
Spouses and plus ones are welcome for dinner on August 27th. 

Optional Day Three: Wednesday, August 28, 2024
For those interested, SINET will treat you to an additional day of Fly Fishing on the Snake River with your Executive Peers.  Reserve your spot by July 1, 2024.