Identity is the new control plane, but complex cloud environments and hybrid work have fractured the perimeter. This session provides a practical roadmap for achieving Zero Trust access by governing identity effectively. Panelists will examine how to unify directories, implement adaptive authentication, and enforce granular privileged access controls (PAM) and just-in-time access to minimize standing privilege and risk. The conversation will focus on actionable rollout strategies, leveraging risk-based session management to reduce the burden of MFA fatigue on users, while maximizing security assurance for every access decision.
REGISTER ME

When it comes to potential targets for cyberattacks, easier to breach means more likely to fall victim. While you might not be able to influence your perceived value, there are changes that can eliminate your organization from being seen as an easy target. We’ll explore practical tactics to reduce your surface area of attack and controls to prevent lateral movement should a breach occur.
REGISTER ME

The modern enterprise is built on hundreds of SaaS applications – many of them adopted by employees outside of IT oversight – leading to dangerous SaaS sprawl and a blurred shared responsibility model. This session looks at securing your decentralized cloud environment without sacrificing productivity, including essential strategies for Shadow IT discovery and effective risk scoring, building policy that enables employees while safeguarding data, cloud governance, and more to close gaps across your entire SaaS and multi-cloud footprint. Learn to unify visibility, enforce security across the sprawl, and align your posture with compliance needs.
REGISTER ME

REGISTER ME

The enterprise data perimeter is gone; sensitive data sprawl across on-premises, cloud, and SaaS environments introduces intolerable risk. This session offers a view into cybersecurity planning, execution and scope through a compliance lens. We will explore the lifecycle of data protection, from continuous discovery and classification to the strategic application of controls to avoid compliance drift. Panelists will discuss how to implement effective data flow mapping, create, validate and enforce policies, and maintain appropriate evidence and proof points necessary for ongoing audit success. Learn how to ensure cybersecurity practices are integrated and kept current across the entire enterprise landscape while supporting modern business demands. The enterprise data perimeter is gone; sensitive data sprawl across on-premises, cloud, and SaaS environments introduces intolerable risk. This session offers a strategic blueprint for implementing Data Security by Design. We will explore unifying the lifecycle of data protection, from continuous discovery and classification to the strategic application of controls like labeling, tokenization, and encryption. Panelists will discuss how to implement effective data flow mapping and embed developer guardrails directly into pipelines, ensuring protection is automated. Learn how to achieve a critical balance that maximizes security assurance but enabling the essential analytics and business velocity the modern business demands.
REGISTER ME

The greatest barrier to efficient detection is often not a lack of data, but a crippling degree of agent sprawl and fragmented telemetry. Security teams are drowning in low-context alerts and facing severe agent fatigue from disparate EDR, NDR, and log sources. This session moves past simple collection to focus on strategic security architecture, considering the core debate: Full consolidation via a unified XDR platform vs. a federated, best-of-breed approach leveraged through a modern SIEM or data lake. Panelists will share practical guidance for success strategies that refine signal-to-noise ratio, reduce operational sprawl, enhance threat context, and maximize the demonstrable value of security technology investments.
REGISTER ME

AI is the future of the SOC but, for many, it's just another source of noise and complexity. Security leaders must move beyond the hype to pinpoint where AI delivers measurable, reliable gains. This session cuts through unproven claims to analyze where automated detections and investigation assist genuinely accelerate workflows, and where they introduce unacceptable risk. This expert panel will offer candid guidance on implementing necessary guardrails for accuracy, privacy, and accountability, and consider practical operational issues like validating model drift, defining actionable metrics, and establishing effective human-in-the-loop design to ensure AI enhances, not hinders, the human analyst.
REGISTER ME

Most organizations, including both enterprises and MSPs, have deployed robust Secure Email Gateways (SEGs) and Secure Web Gateways (SWGs), yet they and their clients continue to fall victim to credential theft and business email compromise. Why? Because the threat landscape has shifted from malicious attachments to sophisticated Adversary-in-the-Middle (AiTM) attacks that bypass URL filters and MFA completely. This session dissects the anatomy of these modern bypass techniques and introduces the missing layer of defense needed to secure the "last mile"—the browser itself—ensuring your clients remain protected even when the gateway is evaded.
REGISTER ME

Breaches no longer start at the perimeter; they target the trust and integrity of your external partners and your internal software development pipeline. This session moves beyond outdated vendor questionnaires and manual spreadsheets to explore the holistic strategy needed to secure the modern supply chain, grounded in NIST's Cybersecurity Framework (CSF) and Secure Software Development Framework (SSDF).
REGISTER ME

Today’s biggest risk isn't just a data breach; it’s the inability to move fast. When security is an afterthought, it acts as a digital handbrake on innovation. This session reframes cybersecurity as a business accelerant, exploring how cyber-first thinking allows organizations to enter new markets more quickly, build deeper relationships and customer trust, and outmaneuver less-resilient competitors. Moving beyond "bits and bytes," this conversation focuses on risk-informed decision-making; how to integrate cyber-thinking into your business priorities and due diligence, your supply chain management, and your digital transformation initiatives; and why moving security out of the server room and into the strategy room will unlock true business velocity driven by build a culture where every employee takes ownership of the company’s bottom-line resilience.
REGISTER ME

The question isn’t whether you’re prepared, but how prepared you are. This session assumes a security event will happen – because that’s the reality – and discuss how to best prepare your organization for the inevitable. From containment strategies to incident response to recovery capabilities, speakers will explore best practices for ensuring business continuity in the wake of a security breach, including the tools and technology and communication plans that will reduce recovery time and put your business back into full operational capacity.
REGISTER ME

While large enterprises spend millions on cybersecurity, they are often plagued by the same basic web misconfigurations that impact small businesses. This session presents the findings of a massive metadata research project: a non-intrusive scan and fingerprinting of the world's 50 largest companies (the S&P 50). Using industry-standard discovery tools like Nikto, OpenVAS, and WhatWeb, this study identifies the most prevalent vulnerabilities currently exposed on the public internet by these high-value targets. Attendees will go under the hood of "Hacker Analytics" to understand how attackers use automated fingerprinting to map a corporate attack surface in minutes. The presentation will categorize common failures—from missing security headers and outdated server banners to exposed staging environments and API leaks—and show the statistical likelihood of these flaws existing even in heavily regulated sectors. Attendees will leave with an understanding of point of failure, as well as ways to fix them.
REGISTER ME

As enterprises rapidly adopt AI, security often struggles to keep pace, creating critical governance gaps. This session provides a practical framework for securing this new frontier of code and data. Panelists will dissect the unique risks introduced by LLMs, including prompt injection, data poisoning, and sensitive data leakage. We'll outline how to secure the entire AI/Model Supply Chain, implement robust prompt/data protections, and establish granular telemetry for AI services. Expect actionable guidance on secure integration patterns, the strategic decision of "build vs. buy," and rigorous methods for validating vendor security claims to ensure your AI adoption is both fast and safe.
REGISTER ME