CISO Summit Europe | May 14-16, 2017 | The Marker Hotel - Grand Canal Square - Dublin, Ireland

↓ Agenda Key

Keynote Presentation

Visionary speaker presents to entire audience on key issues, challenges and business opportunities

Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee." title="Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee.

Executive Visions

Panel moderated by Master of Ceremonies and headed by four executives discussing critical business topics

Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members." title="Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members.

Thought Leadership

Solution provider-led session giving high-level overview of opportunities

Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community." title="Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community.

Think Tank

End user-led session in boardroom style, focusing on best practices

Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard." title="Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard.

Roundtable

Interactive session led by a moderator, focused on industry issue

Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done." title="Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done.

Case Study

Overview of recent project successes and failures

Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions." title="Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions.

Focus Group

Discussion of business drivers within a particular industry area

Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions." title="Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions.

Analyst Q&A Session

Moderator-led coverage of the latest industry research

Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst." title="Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst.

Vendor Showcase

Several brief, pointed overviews of the newest solutions and services

Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences." title="Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences.

Executive Exchange

Pre-determined, one-on-one interaction revolving around solutions of interest

Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest." title="Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest.

Open Forum Luncheon

Informal discussions on pre-determined topics

Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch." title="Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch.

Networking Session

Unique activities at once relaxing, enjoyable and productive

Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive." title="Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive.

 

Sunday, May 14, 2017 - CISO Summit Europe

3:00 pm - 4:30 pm

Registration & Greeting

 

4:30 pm - 6:00 pm

Exclusive CXO Think Tank

 

6:00 pm - 7:00 pm

Networking Cocktail Reception

 

7:00 pm - 8:30 pm

Networking Dinner

 

8:30 pm - 10:00 pm

After Dinner Networking

 

Monday, May 15, 2017 - CISO Summit Europe

7:00 am - 7:55 am

Registration and Networking Breakfast

 

8:00 am - 8:10 am

Welcome Address and Opening Remarks

 

8:10 am - 8:40 am

Keynote Presentation

The Future of the CIO in the Coming Digital Economy

As more businesses undergo a digital transformation, and as those digital transformations become more ingrained into organizational culture, "Digital" becomes not something unique and different from the business, but a core component of every aspect of the business. As this shift occurs, IT itself faces the very real possibility of no longer being something unique from the business, but instead a component of every aspect of the business. In this world, what role then exists for the CIO? Two clear paths are presenting themselves - one leads to a focus on infrastructure and integration, to keeping the lights on for the digital innovators, while the other leads to information and innovation itself. Knowing which path to choose, how to choose it, and how to see it through will be one of the greatest challenges CIOs of this era will face.

Takeaways:

  • Change is, if not already here, certainly coming and CIOs who don't prepare for the change may not like the results when it arrives
  • Digital transformation is all about connecting enterprise systems to information technology to drive productivity and performance improvements
  • Be prepared to tackle the tasks that no-one wants to do, but everyone needs done; establish relevance to cultivate importance

Presented by:

Stephen Reidy, CIO, Three Network

 
 

8:45 am - 9:15 am

Keynote Presentation

Security's Place in Enterprise Risk Management

While Information Security has existed for decades, Enterprise Risk Management (ERM), as a formal and holistic practice, is much newer yet already has taken pre-eminence over its forebear. What is the CISO, who in many ways has toiled in invisibility, infamy, or ignominy to do when faced with the issue of being supplanted by the Chief Risk Officer, just as enterprise demand for and focus on security has reached all-time heights? Savvy CISOs will recognize this new, broader need for holistic visibility into, and management of, overall enterprise risk and will position themselves for success by looking beyond traditional information security boundaries and engaging business partners around all enterprise risk.

Takeaways:

  • Just because information security is an aspect of enterprise risk doesn't mean that the CISO needs to take a back seat position
  • Enterprise risk is defined by the business but needs to be quantified by an expert; CISOs bring risk quantification expertise to the table
  • The end goal is not about fiefdoms and ownership, it is about improving enterprise value and success; maintaining focus is essential
 

9:20 am - 9:45 am

Executive Exchange

 

Thought Leadership

Get IT Moving at the Speed of Digital Business

With the proliferation of smart devices, connected sensors and a constant and insatiable need for data-driven insights, IT has moved from back office functionality to supporting executive strategy. Businesses need to move at the speed of technology and technology needs to run at the pace of digital business. 

In this workshop two experienced transformation consultants will share examples of how forward thinking organizations are addressing the need to support modern, digital business outcomes whilst defending core markets from digital migrants. Join us to learn how clients have: 

  • Modernised applications to generate $250m+ in sales pipeline within 3 months 
  • Embedded Lean thinking to reduce time to market from 90 to just 7 days 
  • Adopted Cloud delivery models to save up to 26% of IT OpEx budget 
  • Used Hybrid Cloud to save OPEX of ?350M/year 
  • Reduced time, cost & effort of provisioning from 150+ days to just several hours 

We know every business starts in a different place, with its own strengths and weaknesses, and unique opportunities. Nevertheless, there are pragmatic and proven practices that all organizations can use to build the business case for change and to justify investments from board. You will leave this session with plenty of ideas for starting your own project and a few useful frameworks as well.

Sponsored by:

DELL EMC View details

 
 
 

9:50 am - 10:15 am

Executive Exchange

 

Executive Boardroom

Planning for a MultiCloud Future

The promise of the cloud is almost beyond compare; infinite computing resources, unmatched reliability and uptime, instantaneous service availability, simplistic self-service and provisioning, and the low-low prices of a buy by the drink model. These are the reasons behind the rush to the cloud that we are currently experiencing, but the wholesale adoption does bring a downside " as more and more capability is moved to the cloud, more and more cloud providers are utilized since, for the most part, each provider offers only a limited suite of services. The MultiCloud environment that creates a new set of challenges that IT leaders need to overcome, notably resiliency, interoperability/integration, and security and compliance through careful planning and the lessons learned from building complex on premise distributed systems.

Takeaways:

  • As enterprises move to the cloud, MultiCloud environments will increasingly become the norm, not the exception
  • Consistent planning and thoughtful architecture will be essential to efficient and effective cloud deployments
  • IT leaders do not need to be alarmed, they've been down the complex environment path before, but they do need to be careful

Sponsored by:

Dell Boomi

 

Executive Boardroom

The Domain Name System as a Foundation for Proactive Security

Often overlooked in the never-ending race to acquire and deploy advanced security technologies are fundamental infrastructure components that are already in place and ready to help. Leveraging these foundational technologies, such as DNS, can significantly enhance the overall security of an organization, and they don't require a re-architecture of your network or your existing security processes. This roundtable discussion will dive into the current state of DNS and how it can be successfully leveraged to gain visibility into who and what is on your network, what they are using that access for, and how to proactively enforce controls on their activity, regardless of what kind of device they are using or where they happen to be located.

Sponsored by:

BlueCat Networks View details

 
 
 

10:20 am - 10:30 am

Morning Networking Coffee Break

 

10:35 am - 11:00 am

Executive Exchange

 

Think Tank

Defining Data Governance

Data volume, data variety, and data velocity have all grown exponentially over the last few years, the so-called Big Data explosion. And while this increased organizational focus on data, the information it contains, and the insights that can be gleaned from it promises tremendous opportunity, that opportunity isn't achieved without overcoming significant challenges. Whether it be the increased need for better data quality (an issue unresolved from the small data days), more efficient and effective data management, answering questions around data ownership vs. stewardship, or even increased regulatory pressure as a result of data security and data privacy, this increased focus on data has created an increased need for Data Governance. Join our panelists as we discuss the thorny issue of Data Governance: what it is, how it works, why you need it, and who should be responsible for it.

Takeaways:

  • Data management issues have existed as long as data has existed but the Big Data boom has increased these challenges exponentially
  • Resolving data management issues requires a strong data governance program to make rules, resolve issues, and enforce compliance
  • Determining what to about data governance is the easy part, determining how and by whom it should be done will be the real challenge facing IT

Presented by:

Remi Caron, CTO, Intertrust View details

 
 

Think Tank

Global data protection within Vestas Wind Systems - Compliance to EU Privacy Legislation

Learn how Vestas Wind Systems has approached compliance to EU Privacy Legislation. What went well, and where has Vestas learned some valuable lessons. Join the discussion on pit-falls and how to avoid them.

Presented by:

Torben Jorgensen, CISO & VP Information Security & Risk, Vestas Wind Systems A-S View details

 
 
 

11:05 am - 11:30 am

Executive Exchange

 

Thought Leadership

Protecting Your Company in the Age of the Breach


Presented by:

Trevor Parks, Principal Solution Architect - Information Security, Masergy View details

 
 

Masergy View details

 
 
 

11:35 am - 12:00 pm

Executive Exchange

 

Share:

Thought Leadership

Become a Change Agent for Business Transformation

Today's modern CIO is embarking on a digital transformation journey exploring radical hybrid IT strategies and leveraging new technologies like Cloud, Social, Mobile and Big Data. However with 'keeping the lights on' legacy IT components costing nearly 90% of a typical IT budget, how can IT make powerful advancements and lead business change? 

Join this interactive session to learn how award-winning CIOs are successfully tipping the balance by liberating people, time and money from costly ongoing maintenance of their ERP systems including SAP and Oracle, to invest in strategic initiatives that create real-world competitive advantage

Presented by:

Hari Candadai, Group Vice President, Product Marketing, Rimini Street View details

 
 
 

12:05 pm - 12:30 pm

Executive Exchange

 

Think Tank

The "D" in GDPR

The 'Data?' in GDPR The European General Data Protection Regulation is a reality and effects any organization with an office in the EU or any organization processing personal data of data subjects residing in the EU. Potential penalties for not complying include fines of up to 4% global annual turnover. To start and build a robust GDPR program, its important to start with Data - Data Quality, Data Governance, Data lineage and Metadata management are key to the GDPR implementation. To build a holistic GDPR capability - People, process, technology and Security have to work around a robust data framework. 

This session looks to explore the following:

  • How to get started with the GDPR implementation? 
  • The GDPR data Roadmap
  • The Data Deliverables around GDPR  
  • Building a data framework in collaboration with People, Process, Technology and Security

Presented by:

Dhivya Venkatachalam, Data Consultant & Former head of Data Governance Practice, Schroders View details

 
 

Think Tank

Security and Regulatory Challenges & Opportunities for Cloud Computing

The challenges and opportunities for securing and enabling the compliant operation of existing Cloud computing architectures including IaaS, PaaS, and SaaS will be reviewed including discussion of security best practices being applied to common use cases. The use cases will also include relevant regulatory requirements including data protection and GxP Inspection Readiness.

Presented by:

John Patterson, CISO & Head of Business Technology Governance, Merck Group View details

 
 
 

12:35 pm - 1:20 pm

Networking Luncheon


 

1:25 pm - 1:50 pm

Executive Exchange

 

Think Tank

Cloud SLAs: Making, Measuring, and Managing

The lifeblood of any cloud relationship is the Service Level Agreement (SLA) upon which it is based " the SLA sets the expectations of both parties and acts as the roadmap for change, whether planned or unplanned. Each SLA has a complex lifecycle that includes three distinct phases " negotiation where the original terms of the agreement are established, measurement where service is actively monitored to ensure agreed upon levels are achieved, and management where deficiencies from and adjustments to initial agreements are acted upon. IT Leaders must take an active role in all phases of the SLA lifecycle to ensure optimal protection for their enterprise.

Takeaways:

  • Without strong SLAs, cloud service level agreements aren't worth the paper they are written on
  • While many cloud vendors offer only a standard SLA, effort should always be invested in attempting to negotiate an appropriate set of terms
  • SLA work does not end with the negotiation of acceptable terms, in fact that is when the real work begins of ensuring SLA compliance

Think Tank

Building Dynamic Security Teams

There's no other way to say it than bluntly; Information Security is a white-hot field within Information Technology as a whole -  over the last dozen years it has gone from after-thought, to scapegoat, to critical enterprise success factor. As a result, the need for capable and qualified Information Security specialists, whether front-line Analysts, mid-level Managers, or top level CISOs is at an all time high, but personnel and skills availability is sinking to an all-time (at least in terms of supply and demand ratio) low. There simply isn't enough expertise in existence to go around, or enough education occurring to create it. In this environment, senior Information Security leaders have to get creative in their pursuit of the people, performance, and passion necessary to address this capability shortfall. 

Takeaways: 

  • Learn how to build grass-roots programs that cultivate a farm full of potential security experts through internal and collaborative programs 
  • Find out how to leverage key organizational traits to generate buzz and interest where none existed before 
  • Understand the relevance of certs vs. experience and how to evaluate and validate the value of candidates
 

1:55 pm - 2:20 pm

Executive Exchange

 

Thought Leadership

Shadow IT - To Embrace or Eliminate?

Best practice in most enterprises, at least as far as the CIO and CISO goes, is to squash Shadow IT wherever it is encountered. Shadow IT, the argument goes, leads to a world of data and integration problems for the IT department, and significant amounts of unknown and unquantifiable risk for the information security group. A small but vocal minority however is beginning to advocate for Shadow IT as a catalyst of innovation, citing the increases in productivity and creativity by allowing enterprise staff to find their own out of the box solutions to organizational problems. CISOs can allow their organizations to have their cake (Shadow IT) and eat it too (still be secure) by following a few simple steps that allow them to build in security regardless of user activity.

Takeaways:

  • Shadow IT is not malicious activity; it is simply the Line of Business user community looking to be efficient and effective
  • A well-developed security program can take Shadow IT into account and incorporate protection mechanisms that allow end user flexibility
  • Embracing Shadow IT does not mean no holds barred and end users need to understand the limit of the boundaries and the reason for their existence

Sponsored by:

Workday View details

 
 
 

2:25 pm - 2:50 pm

Executive Exchange

 

Thought Leadership

How to Thrive in the Cyber Security Market Today - Cyber Security as a Business Issue

We live in a world today where connectivity and electronic communications between businesses and clients, as well as other businesses, is an expectation and a foregone conclusion. But this extreme level of connectivity and communication creates an environment that is ripe for exposure and breach. As a result, security incidents are occurring at an ever-increasing rate, and the magnitude and severity of those exposures is increasing. A significant contributing factor to this rising tide of security breaches is the fact that our current security approaches simply aren't business integrated enough, and simply aren't keeping up. All however is not yet lost, though it may seem perilously close, time still exists to invest in a paradigm shift towards a new security approach that will allow businesses to not just survive, but thrive.

Sponsored by:

RelianceACSN View details

 
 
 

2:55 pm - 3:20 pm

Executive Exchange

 

Think Tank

IT Integration in a Distributed IT World

It's no secret - the integration of disparate systems, disparate applications, and disparate data stores has long been one of the biggest challenges faced by the IT department. Simply put, getting everything to talk to everything is no easy task. The rapid adoption of cloud delivered services has compounded this problem almost exponentially - if it was hard to integrate when you controlled the whole stack it has become nearly impossible when you control very little of it. To be efficient and effective IT departments need to adopt a new model of system, application, and data integration. Endless webs of one-off point-to-point integrations simply won't cut it anymore and a purposeful, structured approach is required.

Takeaways:

  • Learn how to build a holistic strategy to integrate systems, applications, and data
  • Understand how to leverage SOA and ESB to streamline app to app communications
  • Discover the power and impact of holistic Master Data Management and other data integration processes

Presented by:

Rui Pedro Silva, Head of Europe IT, Damco International B.V. View details

 
 

Think Tank

The CISO's Role in Adopting Cloud Services

What is the role of the CISO when it comes to Cloud adoption? Is there a board paper the needs to be presented in the context of the business strategy. Is the CISO the broker between IT and the business in terms of articulating risk appetite? Is the role of the CISO to just provide assurance on third party services or work closely with the Architecture function to put in place the architectural principles in terms of policy, standards and patterns for security by design?

Presented by:

Vince Pillay, CISO, Domestic & General

 
 

3:25 pm - 3:35 pm

Afternoon Networking Coffee Break

 

3:40 pm - 4:05 pm

Executive Exchange

 

Executive Boardroom

Proving the ROI of IoT

We all know that ROI calculations, on the surface, are simple mathematical formulas: compare the cost of investment against the value of the return over a given and agreed upon period. But determining exactly what each side of the equation entails and totals is the challenging part, and nowhere moreso than in burgeoning areas such as IoT adoption where use cases are still not clearly understood, and technology costs are highly variable, and all the components related to cost may not yet be quantifiable. The benefits are there, as a number of enterprises are discovering with early pilot programs, but CIOs must enter this area with their eyes wide open to ensure that early IoT implementations have the ROI necessary to keep more complex projects moving forward.

Takeaways:

  • Costs must be carefully quantified for any IoT project " it's not just the sensors, but networking, data, security, etc. spend must be taken into account
  • Similarly, value must be clearly established both in isolation and in comparison to any more traditional methods that could be used
  • Successful IoT projects will be those that can initially leverage existing spend to mitigate costs with successive project piggybacking on earlier investments

Executive Boardroom

Balancing Reactivity and Proactivity in Enterprise Security

As with all things in life, the focus on how to conduct enterprise security ebbs and flows between varying degrees of reactivity and proactivity. In the old school Security 1.0 world, where the focus was almost completely on network security, efforts were in general proactive in nature with firewalls and anti-malware seeking to prevent threats before they even occurred. This didn't work so well and so Security 2.0 focused on reactivity, wrapping things like encryption around the data so that even if a breach occurred, the loss would be mitigated. Yet breaches, and losses, continue to occur. So if primarily proactive security doesn't work, and if primarily reactive security also doesn't work, how then do we find the right balance between the two to find a security posture that does work?

Takeaways:

  • Proactive security measures, those that prevent a threat from occurring are valuable and necessary but haven't proven effective
  • Reactive security measures, those that mitigate a threat that has occurred are also valuable but complicated a limit enterprise efficiency and efficacy
  • A new approach is needed, but is that one that blends techniques or one that finds new approaches (whether they be reactive, proactive, or both)?
 

4:10 pm - 4:35 pm

Executive Exchange

 

Think Tank

C3 is an abbreviation for CIO Communication Concept. A solution approach to solve the problem between IT experts (on the C level) and non IT experts (on all levels).

Android represents the most common and most popular mobile device operating system and any businesses developing for an external audience absolutely must ensure that Android is a supported platform in the capabilities it offers. However, Android is also the most unsecure platform with as much as 95% of all mobile malware inexistence targeting that platform and so businesses that allow mobility within their organization must very carefully consider that threat before they allow Android devices to connect. Rationalizing that dichotomy of a device that will be common and popular amongst the workforce yet at the same time represents a dire threat to enterprise security is an issue that every CIO and CISO must address.

Takeaways:

  • Android isn't adoption isn't going anywhere but up and enterprise mobility programs must be prepared for almost omnipresent Android devices
  • Android's security issues are legendary however, and in an era of heightened scrutiny on and need for enterprise security, how can IT leaders allow such unsecure devices
  • Balancing user satisfaction and organizational protection is a fine line that IT leaders must constantly walk

Presented by:

Walter Hoelblinger, CIO, Steyr Mannlicher View details

 
 

Think Tank

The evolution of DDoS attacks & the Do's and Don'ts of Mitigation

Recent years have seen the DDoS landscape change and the scale of attacks significantly increase.  Where attacks used to seem unlikely, for some organisations at least, they are now imminent.  Consequently mitigation has moved from being a daunting venture to a daily activity. 

As one of the biggest ecommerce merchants in Europe, Paddy Power Betfair faces down DDoS attacks on a regular basis. We have learned a lot about mitigating these attacks and the key pitfalls to avoid when preparing for them.

The approach to DDoS attack mitigation depends heavily on your organisations technical estate and threat exposure.  With this mind the topics and takeaways to discuss are as follows.

Takeaways:

  • DDoS for hire- Technical and costs barriers for attackers no longer exist
  • Cloud Services mitigation
  • On-premise mitigation
  • Preparation and some simple mitigation techniques

Presented by:

Stephen Breen, Head of Security Application and Infrastructure, Paddy Power Betfair View details

 
 
 

4:40 pm - 5:20 pm

Executive Visions

MSSP (Managed Security Service Providers)

Presented by:

Trevor Parks, Principal Solution Architect - Information Security, Masergy View details

 
 

Presented by:

Torben Jorgensen, CISO & VP Information Security & Risk, Vestas Wind Systems A-S View details

 
 

Stephen Breen, Head of Security Application and Infrastructure, Paddy Power Betfair View details

 
 
 

5:20 pm - 6:30 pm

Cocktail Reception

 

6:30 pm - 8:00 pm

Networking Dinner

 

8:00 pm - 10:00 pm

After Dinner Networking

 

Tuesday, May 16, 2017 - CISO Summit Europe

7:00 am - 8:00 am

Networking Breakfast

 

8:10 am - 8:40 am

Keynote Presentation

Leadership Considerations in a Multi-Generational World

Executives are currently facing a difficult challenge in terms of personnel management because they are dealing with three very different generational groups of workers " Baby Boomers, Gen Xers, and Millennials. These three groups all have very different outlooks on the world and on work, and all have very different work styles and capabilities. These differences lead to lack of understanding and conflict in a lot of cases, conflict that leaders must learn how to overcome. Smart leaders know that they need to leverage the differences between generations rather than expecting, and trying to force, everyone to be the same, and that building an integrated workforce, with complimentary skills and abilities, is the key to long-term workforce stability.

Takeaways:

  • Boomers (1946 to 1964), Gen Xers (1965 to 1980), and Millennials (1981-2000) have had different life experiences which has given them different outlooks
  • Each group has specific and unique strengths that can and should be brought to bear to improve the enterprise
  • Building an integrated team that recognizes and rewards differences yields greater success than trying to homogenize everyone to the same standard
 

8:45 am - 9:15 am

Keynote Presentation

Addressing Privacy on a Global Scale

Of all the risk management issues that present themselves to the modern-day CISO, perhaps the most difficult to address is that of privacy. In and of itself, privacy is no different a challenge than protecting any other sensitive information, however the multi-jurisdictional impacts of the issue due to wildly differing laws between the US and European countries (as well as Canada, another country with strong privacy laws) make this an issue that is often times overwhelming to address. CISOs must work diligently to ensure that their privacy efforts conform with the standards of any jurisdiction with which they might work, where their data might be held and this is an almost overwhelming task.

Takeaways:

  • Privacy is one of the most challenging issues for any business and CISO to address
  • The difference in regulations between and among European countries (both those in and out of the EU itself) and North American ones means traversing a fraught landscape
  • A strong approach to privacy that addresses global differences is essential to being a stable and viable global business
 

9:20 am - 9:45 am

Executive Exchange

 

Thought Leadership

Applying Big Data Principles to Security Paradigms

Volume, variety, velocity, veracity; all four of the hallmarks of Big Data have a clear fit in the world of security as the number of threats grows, their natures diverge, the speed with they are encountered (and subsequently have to be dealt with) accelerates, and the need to be ever more accurate enhances. As enterprises have made significant investments in Big Data programs and analytics platforms, they are beginning to reap real benefits in terms of business efficiency and innovation. The time then has come to begin applying those same principles and platforms to the security challenges facing enterprises to allow for faster, more effective overall security.

Takeaways:

  • The nature of the enterprise security challenge closely mimics many of the Big Data challenges business are beginning to learn how to solve
  • Just as Big Data challenges required different tools to address for Line of Business and general IT issues, so they will for information security challenges
  • Security must become the next focus for analytics capabilities, and analytics the next focus for security professionals
 

9:50 am - 10:15 am

Executive Exchange

 

Executive Boardroom

Cloud Adoption Challenges on a Macro Level

The hype around the cloud is pervasive and can be potentially overwhelming but numerous studies have shown that tangible benefits can be had, whether in cost savings, efficiency improvements, or flexibility enhancements. That said numerous impediments exist to not just realizing that value, but even considering adoption; regulatory issues, integration challenges, business process revamp, and a dozen other challenges can halt cloud projects in their tracks before they get off the ground. In this group discussion we'll explore those inhibitors, understanding which challenges prevent adoption and what can be done to overcome them.

Takeaways:

  • The cloud presents a significant opportunity to organizations and while most have adopted in some form or other, wholesale adoption still lags
  • To realize benefits enterprises must deal with a variety of challenges each one requiring different solutions
  • Industry by industry adoption is constrained for different reasons but do common solutions exist that can resolve issues across the board?

Executive Boardroom

Security in an Outsourced World

Building security into your enterprise processes, and integrating it with your existing technology investments has never been more critical or complicated than it is in this era of decentralized computing, and ever-tightening compliance requirements. Furthering this complication is the impact that partnering deals can have since infrastructure, applications, and even data may now longer be under your direct control. To be able to ensure efficient and effective security capabilities you need to understand the nature of the threats that exist today, the impact a sourcing relationship can have on these threats, and the mitigation strategies and tools key industry leaders are using to address the challenge.

Takeaways:

  • Social, Mobile, Cloud, and Analytics is already having a significant impact on enterprise security, sourcing potentially adds another layer of complexity
  • Beyond simple security however there are also issues such as privacy and compliance that also need to be considered
  • Investing in the right tools and practices is essential to weather the storm without breaking the bank
 

10:20 am - 10:30 am

Morning Networking Coffee Break

 

10:35 am - 11:00 am

Executive Exchange

 

Innovation Showcase

An exclusive opportunity to be exposed to the hottest new solutions providers in a quick-hit format designed to whet the appetite and spark immediate interest.
 

11:05 am - 11:30 am

Executive Exchange

 

Think Tank

Disrupting Markets with Disruptive Technologies

While the combination of Social, Mobile, Analytics, and Cloud have been present and disrupting IT departments and enterprises as a whole for over two years now, in many ways organizations have still not fully embraced them, have still not fully leveraged them. These new platforms allow organizations radically new ways to go to market, allowing for broad scale deployment of systems of engagement that create dynamic relationships with clients and prospects. Finding the resources, wherewithal, and ability to fully commit to these technologies and the capabilities they create has proven to be a struggle for many, but a struggle that can be overcome by leveraging the right partners that bring the right skills and experiences to bear.

Takeaways:

  • Social, Mobile, Analytics, and Cloud are all here to stay; each one adds value to enterprises but collectively that value increases exponentially
  • The manner in which these technologies are implemented, operated, and utilized is different than the foregoing systems of record we are used to
  • Unique skills and capabilities are required to leverage the power and value of these platforms, skills and capabilities that can be in short supply

Think Tank

Security and Compliance; Chicken and Egg or Chalk and Cheese?

Since regulatory (and industry) compliance became a notable thing in the early-mid 2000's it has been intimately linked with information security and often times has been the lever (or hammer) by which enterprises made necessary investments in security. But being compliant and being secure aren't the same thing, and in too many cases enterprises that were perfectly compliant have been perfectly breached. A new focus is needed; one that respects that while security and compliance are not the same thing, they are working towards the same goal (a reduction in overall enterprise risk exposure) and sees that compliance flows from security.

Takeaways:

  • While a secure company is likely a compliant company, the same cannot be said of the reverse situation
  • Just because compliance has loosened the purse strings doesn't mean it takes a pre-eminent position on security investments
  • Reducing enterprise risk is the goal of both practices but without appropriate focus on both is a goal that will never be achieved
 

11:35 am - 12:15 pm

Executive Visions

Diversity in IT

The importance technology plays within an enterprise will only continue to gain momentum as more developers, engineers, and programmers enter the workforce. As these segments continue to grow, so does the diversity of the workforce within the technology field. For a field that is severely constrained by a talent and skills gap, this influx of bodies can only be a good thing. Beyond the basic ability to deliver of identified capabilities a diverse workforce, whether cultural or gender influenced offers a whole that is more than the sum of the parts. Finding ways to drive and increase diversity in IT then should be a key focus for every IT executive.

Takeaways:

  • Identify the importance behind diversity in technology, opportunities, and capabilities
  • Discuss the importance of cultivating diversity at the grass-roots level and building post-secondary programs that drive awareness of and interest in IT
  • Understand the hurdles that exist that limit the prevalence of diversity in IT, and what steps must be taken to lower, if not eliminate, them
 

12:15 pm - 12:25 pm

Thank You Address and Closing Remarks

 

12:30 pm - 1:20 pm

Grab and Go Luncheon