Thursday, March 21, 2024
Times subject to change. 

7:30 AM – 8:30 AM

Registration and Continental Breakfast

8:30 AM – 5:30 PM

General Session 
Hahn Auditorium

8:30 AM – 8:35 AM

Welcome Remarks
Robert Rodriguez, Chairman & Founder, SINET
Rick Geritz, Chairman and CEO, My Journey Technologies

8:35 AM – 9:15 AM

Approaches to Building a Secure GenAI Environment
As GenAI continues to advance business objectives, we must ensure that proper governance and controls are in place to allow it to work safely and at speed. In other words, how can we allow the F1 race car to go 200 MPH while ensuring the right controls & governance are on the brakes?

Security becomes increasingly paramount for the enterprise to achieve their objectives by leveraging Generative AI. This cross-industry discussion will explore the pillars of creating an effective GenAI strategy, from development to governance, including the importance of greater visibility and prioritization via enhanced contextualization of what matters most.

Moderator: Gary Hayslip, Chief Security Officer, SoftBank Investment Advisers
Panelists: 
–  Cassio Goldschmidt, CISO, ServiceTitan
–  Erik Naugle, VP Cyber Security, Intuit
–  Mike Ratliff, AVP, Security Engineering & Operations, Providence Health
–  Anmol Misra, Senior Director Infrastructure Security, Autodesk
–  Hemanta Swain, CISO Global Head of Security and Compliance, Lucid Motors

9:15 AM – 9:55 AM

How to Achieve the Greatest ROI When Implementing Your Cybersecurity Technologies
Moderator: Rich Baich, CISO, AT&T
Panelists:
–  Jonathan Chow, CISO, GENESYS
–  Lakshmi Hanspal, Former Global CISO, Devices & Services, Amazon
–  Chester Wisniewski, Global Field CTO, Sophos
–  Upendra Mardikar, CISO, TIAA
–  Paul Montrose, VP Cybersecurity, Risk, & Compliance, Acxiom

9:55 AM – 10:00 AM

SINET Impact Award Announcement
Honoree to be announced. Learn more here.

10:00 AM – 10:20 AM

Break

10:20 AM – 11:00 AM

Innovating Budgets During Austere Times: Qualitative Models to Justify Cybersecurity Expenses
Making Cybersecurity an enabler for business growth is key. There is no one-size-fits-all solution to justifying costs, however taking a risk-based approach to provide a balanced scorecard on how money is spent wisely and inline with risk tolerance — while still partnering with and influencing key stakeholders — can be helpful. Importantly, the motivation and concerns of your board must be understood so that you can influence a win-win that makes Cybersecurity the solution as opposed to another large budget item.

This panel will explore an arsenal of approaches that can be used to become more relevant and aligned with your organization’s goals and objects, moving Cyber from a cost center to
–  Driving Revenue Generation
–  Increasing Products and Services
–  Reducing Costs
–  Reducing Risk

Moderator: Rajeev Chand, Partner and Head of Research, Wing Venture Capital
Panelists:
–  Miles Dolphin, Global Head of Identity and Access Management and Physical Security Technology, Barclays
–  Al Ghous, Advisor, Investor, Former CISO, Snapdocs
–  Monika Nerger, Group Global Chief Information Officer, Mandarin Oriental Hotel Group
–  Rick Patterson, EVP, CISO, CLEAR
–  Anurana Saluja, VP, Global Head of Information Security, Privacy & Business Continuity, Sutherland

11:00 AM – 11:40 AM

New Naval Strategy: The Starfish and the Spyder
As Ori Brafman and Rod Beckstrom describe in their book The Starfish and the Spider, traditional hierarchical command-and-control structures face formidable challenges from decentralized and leaderless organizations. In this analogy, this Starfish represents the adaptability and resilience of decentralized entities in the face of Cyber threats due to their lack of a central point of vulnerability. The spider, on the other hand, embodies the conventional hierarchical structures traditionally dominated by military operations.

Drawing from these concepts, this panel will explore the asymmetrical dynamics shaping the future of Cyber warfare. How do the dynamic, decentralized nature of modern Cyber threats intersect with traditional naval strategy?

Moderator: Nico Sell, Founder, T3MP3ST LABS
Panelists:
–  Tim Brown, VP Security, CISO, SolarWinds
–  Mornay Walters, CISO, VP Cyber Security, AngloGold Ashanti
–  James Meehan, Director, DFIR, RRR and Threat Intelligence, Verizon Threat Research Advisory Center, Verizon
–  Dick Martin, Retired Navy and Sprint Executive
–  M.P. (Mike) Woodward, Novelist and Former Naval Intelligence Officer

11:40 AM – 12:20 PM

Unveiling the Shadows: Identifying Hidden Cyber Risks in Global Supply Chains
This discussion will explore the often-overlooked vulnerabilities within the supply chain ecosystem, focusing on how organizations can better identify and assess hidden cyber risks. Panelists will share insights on innovative methodologies for risk identification, including the use of AI and machine learning, and discuss the importance of comprehensive risk assessments that go beyond first-tier suppliers to uncover deeper supply chain vulnerabilities.

Moderator: Robert Rodriguez, Chairman, SINET & Venture Partner, SYN Ventures 
Panelists:
–  Nima Baiati, Executive Director & GM, Commercial Cybersecurity Solutions, Lenovo
–  Aanchal Gupta, Corporate Vice President, Microsoft
–  Fritz Wetschnig, CISO & Chief Data Privacy Officer, Flex
–  Adam Zoller, CISO, Providence Health
–  Kenneth Ricketts, CISO, Coupa Software

12:20 PM – 1:10 PM

Lunch

1:10 PM – 1:50 PM

Data Extortion: Ransomware’s Intangible Risk
In early ransomware attacks, files and systems would be encrypted, and malicious actors would demand payment in exchange for decryption keys. As defenses improved, attackers introduced data exfiltration into their attacks, demanding payment not just for decryption but also for stolen data. This data exfiltration and double extortion tactic poses increased risks for organizations. This session will share approaches to help mitigate risk and enhance a company’s security posture.

Moderator: Bill Jones, Director of Cybersecurity Architecture and Engineering, Trane Technologies
Panelists:
–  Antony Abraham, Deputy CISO, Hewlett Packard Enterprise (HPE)
–  Manan Kakkar, Cybersecurity, AVP, Providence Health
–  Nikhil Kalani, VP, CISO, The Reynolds and Reynolds Company
–  Jeff Lunglhofer, CISO, Coinbase
–  Jon Miller, CEO + Co-Founder, Halcyon

1:50 PM – 2:30 PM

Models that Help Services Enhance a CISO’s Security Operation
The Cybersecurity services industry continues to experience explosive growth delivered through software vendors or 3rd party Cyber service companies. 60% of a CISO’s budget is allocated towards Cybersecurity services; up to 80% if a company utilizes a MSSP; and 63% of CISOs indicate they have unfilled Cybersecurity positions on their team.

These Risk Executives will share their experiences on what types of Cyber services help provide a strategic advantage and reduce risk to their corporations, including
– Are there positive advantages to outsourcing since turnover can become the responsibility of the service company?
– What are the advantages and disadvantages of contracting service companies?
– How can vendor flexibility be maximized, and what are the benefits? What are downsides?
– Can early-stage innovation solutions be tested in a safer manner through service partnerships?
– How do BODs view partnerships with third party service companies?

Moderator: John Paitaridis, CEO, CyberCX 
Panelists:
–  Michael Baader, Divisional CISO – Retail, Small Business & Commercial Bank, Capital One
–  Troy Wilkinson, CISO, Interpublic Group
–  Swathi Joshi Bhat, VP, SaaS Cloud Security, Oracle
–  Sandip Wadje, Managing Director, Global Head of Emerging Tech Risks, BNP Paribas
–  Amanda Silver, Deputy CISO, Boeing

2:30 PM – 3:10 PM

SEC Cyber Disclosure and What It Means for Risk Executives
Join us for a compelling panel discussion on the implications of the recent SEC cybersecurity rule, effective December 15, 2023. Our esteemed panelists will delve into the intricacies of this mandate, which requires prompt disclosure of material cyber incidents within four business days of identification, with flexibility based on materiality.

Key topics include
–  Understanding the Disclosure Requirements: Our experts will dissect the specifics of what constitutes a material cyber incident and how companies can effectively disclose these incidents within the stipulated timeframe.
–  Impact on Board Composition: We’ll explore how the emphasis on disclosing management or committee expertise in cyber risk management may influence board composition and decision-making processes.
–  Permitted Delays and Exceptional Circumstances: Delve into the nuances of permitted delays of up to 120 days, as determined by the U.S. Attorney General, and the implications for companies’ disclosure timelines.
–  Proactive Cyber Risk Management Strategies: Learn from industry leaders about proactive measures companies can take to manage cyber risks effectively and develop comprehensive disclosure strategies in anticipation of the written rules.

Moderator: Kevin Walker, Chief Security Officer, Procore Technologies
Panelists:
–  Abhi Agarwal, Global Head of Cybersecurity, BioMarin Pharmaceutical
–  Alain Espinosa, Global Director Security Operations, Upbound
–  Ramy Houssaini, Chief Cyber & Technology Risk Officer & Group Privacy Officer, BNP Paribas
–  Rohan Singla, Head of Security, ChargePoint
–  Lorna Banks, AVP, Deputy CISO, Kemper

3:10 PM – 3:30 PM

Break

3:30 PM – 4:10 PM

Enhancing Governance of Risk & Compliance Across IT, Physical & OT Systems
Implementing a robust governance and compliance model that addresses both IT and OT systems can help minimize blame of negligence against CISOs, CSOs, and Risk Executives. What processes can the 21st century CIO, CISO, CSO, and CHRO deliver through a united front against new and sophisticated digital-physical threats? As organizations increasingly intertwine their physical and cyber security postures, this discussion will explore the resurgence of security convergence and its multifaceted impact on enterprise risk management leading to more robust, agile, and cost-effective security frameworks.

Moderator: Brian Tuskan, VP, Chief Security Officer, ServiceNow
Panelists:
–  Casper Eloff, Head of Corporate Security, The Mosaic Company
–  Jasvir Gill, Founder & CEO, AlertEnterprise
–  Nick Tiemann, Director, Global Physical Security Technology & Services, Elevance Health
–  Allen Viner, Sr. Director and Global Head of Physical Security & Security Administration, AIG
–  Aaron Nasi, Sr. Director, Security Operations & Incident Response, Albertsons Companies

4:10 PM – 4:50 PM

Are We There Yet? Moving from a Business Inhibitor To an Enabler
Historically, Cybersecurity has been perceived as a business inhibitor. Today, the narrative has shifted; the sentiment is that Cybersecurity risk is business risk. But do we have buy-in? Is that really the feeling on the ground? This discussion will explore the nuances of the changing dynamics between the security department and other organizational facets, i.e. IT/DevOps, including the implications on startup mergers, the evolving interplay between CISOs and vendors, and the impact of fluctuating budgets on decision-making processes.

Moderator: Yoav Leitersdorf, Managing Partner, YL Ventures
Panelists:
–  Tom Chowanski, SVP, CISO, Kemper
–  Sonia Arista, SVP, CISO, Signify Health
–  Andrew Albrecht, VP, CISO, Domino’s
–  Brian Lozada, Director, GME (Games, Media & Entertainment) Security, Amazon
–  Taher Elgamal, Partner, Evolution Equity Partners

4:50 PM – 5:30 PM

Achieving Operational Resilience
Join us for an expert cybersecurity panel event where industry leaders will share insights on achieving operation resilience. Discover strategies to safeguard your organization against cyber threats and ensure continuous operations. Learn from experts on implementing robust security measures to protect critical assets and data. Gain valuable knowledge on incident response and recovery plans to minimize the impact of security breaches. Don’t miss this opportunity to enhance your cybersecurity posture and enhance operational resilience. Emerge from the panel event with practical tips and best practices to strengthen your organization’s defense against cyber threats.

Moderator: Tyler Tom, Executive Director, RTX Security Architecture & Engineering, RTX
Panelists:
–  James Beeson, Executive Cyber Advisor and Consultant & Former Global CISO, Cigna
–  Andy Stone, Chief Technology Officer – Americas, Pure Storage
–  Deepali Bhoite, CISO, Anaplan
–  Brad Hildreth, CISO and Managing Director, Oppenheimer & Co
–  George Totev, Director, Customer Trust, Snowflake

5:30 PM

Closing Remarks

5:30 PM – 7:00 PM

SINET Signature Reception
Cocktails, Heavy Hors D’oeuvres and Jazz.
Conference attendees only