- Open Sessions
- Conference Pass
- SecureWorld Plus
- VIP / Exclusive
- Tuesday, April 18, 20179:00 amSecureWorld PLUS Course – Big Data and IoT: Wonderful, Terrible, Inevitable9 a.m. - 3 p.m. - Earn 12 CPEs!President, CISSP, O'Leary Management EducationRegistration Level:
- SecureWorld Plus
9:00 am - 3:00 pmLocation / Room: Parlor CJoin us the day before the conference for 6 additional CPE credits (12 total when attending the PLUS course and the conference).
Big Data and the Internet of Things are revolutionizing virtually every industry. We’re told of pinpoint accurate medical records and diagnostics, all-encompassing analytics, mastery of industrial processes, effortless control of our static and moving environments and complete connectivity and communication with anything and everything we might ever imagine being useful. Wonderful!
But SecureWorld attendees and others who’ve been in IT Security for any appreciable time have an internal red flag that goes up upon hearing “It’s gonna be great!” Then those euphoria-deflating security questions start multiplying and running through our somewhat addled brains. Where is all this Big Data coming from? Where will it reside? Who controls it? Who grants access? On what basis? How do we know it’s accurate, relevant? Is it complete enough for life and death medical decisions? What about analytics system administration; data monitoring and correction procedures; incompatible security architectures? Oh yeah, and privacy?
What kind of security is built into all these Internet-connected devices? How easy is it to control access? Is the data they trade and store encrypted? Who’s liable if they fail or give erroneous signals?
Big Data and IoT are neither fads nor merely trends, they constitute a revolution. There’s no going back. Join us as we look from a security perspective at both the bright and dark sides.
- Wednesday, April 19, 20177:00 amRegistration openRegistration Level:
- Open Sessions
7:00 am - 3:00 pmLocation / Room: Registration DeskCome to the Registration desk in the lobby to check-in and get your badge. SecureWorld staff will be available throughout the day if you have any questions.
8:30 amSurviving the Siege: Medieval Lessons in Modern SecurityDiscover the 2017 SecureWorld ThemePresident, CISSP, O'Leary Management EducationRegistration Level:- Open Sessions
8:30 am - 9:15 amLocation / Room: Galleria 3Warfare and the arts of intrusion have advanced considerably since the Middle Ages, but in many ways the principles of fortification we use today remain the same. The great castles of antiquity were ingeniously designed with multiple layers of physical security to protect their inhabitants from persistent, even advanced enemy threats. Their carefully planned and creative defensive measures provide rich metaphors, both positive and negative, for today’s cyber guardians. On the other hand, clever, daring, sometimes brilliant offensive strategies and tactics have historically breached battlements thought to be unassailable. Come join us as we examine lessons that can be applied to securing our own sophisticated digital fortresses.
8:30 amRESILIENCE: Not Just for Computers, for YOUResilience is a critical skill of a successful pro and you can build it for yourself.Member, Board of Directors, Colorado Technology AssociationRegistration Level:- Conference Pass
8:30 am - 9:15 amLocation / Room: Galleria 1For many, if not most of us, we either fear failure, or we are figuring out how to recover from it. Karen’s own personal crisis as the CISO of Microsoft is what drives her to share radical resilience strategies for pros so you can roll with the punches and find the best path for you health, wealth and relationships.
8:30 amSentinelOne: Next Generation Endpoint ProtectionRegional Director, SentinelOneRegistration Level:- Open Sessions
8:30 am - 9:15 amLocation / Room: Galleria 2In today’s hyper-connected world, user endpoints and servers alike are exposed to an expansive volume of cyber threats. The key to effective endpoint protection lies in the ability to dynamically detect malicious behavior across all attack vectors and respond intelligently at machine speed, all through a single, easy-to-manage platform. Join this session as we discuss the strategies that enterprises are now employing in their quest to reduce the risk of a data breach.
9:00 amExhibitor Hall openRegistration Level:- Open Sessions
9:00 am - 3:00 pmLocation / Room: Exhibitor FloorYour opportunity to visit our solution vendor partners, whose sponsorship makes SecureWorld possible! Booths have staff ready to answer your questions. Look for participating Dash For Prizes sponsors to be entered to win prizes.
9:30 amOPENING KEYNOTE: Intelligence and Cybersecurity: Toward a More Effective Public / Private PartnershipCNN Military Analyst; U.S. Air Force (Ret.); Chairman, Cedric Leighton Associates, LLCRegistration Level:- Open Sessions
9:30 am - 10:15 amLocation / Room: Keynote TheaterCol. Cedric Leighton’s keynote presentation will cover the following:
– Overview of the Cyber Threat based on publicly available intelligence
– Why current Intelligence Community structure needs to be re-vamped for the Cyber Age
– How intelligence agencies should be working with private companies
– It’s about new legislation AND changing mindsets and cultures
– The new relationship between the US Intelligence Community and US companies in the Cyber Age – a vision for the future10:15 amConference Break / Exhibitor Product DemonstrationRegistration Level:- Open Sessions
10:15 am - 11:15 amLocation / Room: Exhibitor FloorReboot with coffee and infused water while visiting exhibitors on the exhibitor floor.
11:00 amAdvisory Council Roundtable: The Cost and Consequence of Insider Threats (VIP Only)Registration Level:- VIP / Exclusive
11:00 am - 12:00 pmLocation / Room: Parlor B11:15 amMotivating Internal Teams for SecurityCISO, DeserveRegistration Level:- Conference Pass
11:15 am - 12:00 pmLocation / Room: Galleria 1Pursuit of security compliance certifications can be challenging. Actively engaging engineering teams
and enthusiastic participation by all stakeholders is crucial for the success. This talk will focus on
actionable ideas to convince all stakeholders about the importance of efforts for security & compliance.11:15 amWhat’s in Your Enterprise Risk Program – Are Your Assets and Information Safe?Must Have Programs for Your OrganizationDirector Community Institutions & Associations, Financial Services - Information Sharing & Analysis CenterRegistration Level:- Conference Pass
11:15 am - 12:00 pmLocation / Room: Galleria 3Cyber-threats such as DDoS, destructive malware, and ransomware are only a few of the tactics malicious actors use to attack US organizations. Learn how part of your enterprise risk management program should include plans that can limit the damage to your information assets and systems.
11:15 amCylance: Hitchhiker’s Guide to Ransomware – From Genesis to Current MenaceVP, Global Enterprise Solutions, BlackBerryRegistration Level:- Conference Pass
11:15 am - 12:00 pmLocation / Room: Galleria 2This presentation will cover: ransomware, ransomware infection vectors, the history & evolution of ransomware, business model for ransomware and what the best ways to detect and prevent ransomware.
11:15 amAtmosera: Can You Trust the Public Cloud and is it Ready for Secure Workloads?Vice President of Information Security, AtmoseraSenior Vice President of Client Operations, AtmoseraRegistration Level:- Open Sessions
11:15 am - 12:00 pmLocation / Room: Parlor CThere is a lot of hype and concerns about using a public cloud to power mission critical applications and especially those with higher security or compliance requirements. Successfully using a public cloud such as Azure requires careful consideration and expertise to ensure it is properly setup with InfoSec in mind.
12:00 pmAdvisory Council LUNCH Roundtable: Social Engineering – Phish On! (VIP Only)Registration Level:- VIP / Exclusive
12:00 pm - 1:00 pmLocation / Room: Parlor B12:15 pmLUNCH KEYNOTE: Cybersecurity Lessons Learned from Medieval TimesBalancing protection, exposure, and business objectives in an effort to protect the assets.Deputy Cyber Security Director, Portland General ElectricRegistration Level:- Open Sessions
12:15 pm - 1:00 pmLocation / Room: Keynote TheaterHow do today’s companies protect assets, people, and customer information from infiltration? Finding the cracks in the armor, identifying business critical assets, and evaluating risk.
1:15 pmPanel: Hazards on the Horizon - Emerging ThreatsRegistration Level:- Open Sessions
1:15 pm - 2:15 pmLocation / Room: Keynote TheaterCyber threats are changing and evolving at a rapid pace because this is a lucrative business model for organized crime. Malware, botnets, ransomware, and more can be purchased via the dark net. Is awareness training the answer? Better network controls? Cyber Police? Bring your questions to this interactive panel of security professionals and learn what threats to look out for today and the in the near future.
Panelists:
Tom Pace, Principal Consultant, Incident Response & Forensics, Cylance
Craig Schippers, Sr. Sales Engineer, CISSP, Trend Micro
Bryan Burns, VP Threat Research, Proofpoint
Hariom Singh, Director, Policy Compliance & SAQ, Qualys
Bill Lapp, Sr, Director, Sales Engineering, Zscaler
Paul Anderson, Sr. Systems Engineer, ExtraHop Networks
Moderator: Mike Metzler, Sr., Compliance Officer, CenturyLink1:15 pmPanel: Manage the Damage - The Current ThreatscapeRegistration Level:- Open Sessions
1:15 pm - 2:15 pmLocation / Room: Galleria 1Every week we learn about some business, government entity, bank, or healthcare establishment in the news that has been hacked. Often times, the intruders had been sitting collecting information for months before being discovered. Now more than ever it is crucial for organizations to develop, practice and fine tune their incident response plans. When do you get law enforcement involved? What about the legal team or PR? Will your business recover? This panel discussion will tackle these issues as well as your questions on what you need to know to manage the damage.
Panelists:
Matt Sherman, Incident Response Specialist, Symantec
Peter Oelschlaeger, Director of Technical Account Management, Tanium
Jared Cheney, SVP of Client Operations, Atmosera
Chris Bates, Principal Architect, SentinelOne
Kellen Christensen, Solutions Architect, Dasher Technologies
Moderator: Dennis Tomlin, ISO, State of Oregon Employment2:15 pmConference Break / Exhibitor Product DemonstrationRegistration Level:- Open Sessions
2:15 pm - 3:00 pmLocation / Room: Exhibitor FloorReboot with coffee and infused water while visiting exhibitors on the exhibitor floor.
2:30 pmNetworking Break — Dash for Prizes and CyberHunt winners announcedRegistration Level:2:30 pm - 2:45 pmLocation / Room: Exhibitor FloorBe sure to have your badge scanned with participating exhibitors throughout the day. Past prizes have included Kindles, Bose wireless headphones, gift cards, iPads, drones, and more! *Must be present to win.
3:00 pmSocial Engineering AutomationSecurity Engineer, AmazonTeleion ConsultingRegistration Level:- Conference Pass
3:00 pm - 3:45 pmLocation / Room: Galleria 1The exponential security and privacy risks when social engineering is scaled via widely available APIs and automation frameworks.
3:00 pmEffective Cybersecurity Staffing – How to “Fill the Gap” Quickly and EfficientlyDoctor & Professor, Information Systems and Technology Management, Mt. Hood Community CollegeRegistration Level:- Conference Pass
3:00 pm - 3:45 pmLocation / Room: Galleria 2With some 400k open CS positions nationwide, BLS projects that by the 2020’s 46% of all Cybersecurity jobs will be unfilled. The resulting supply-and-demand environment makes the cyber professional a very expensive commodity. We discuss a solution which can provide trained cyber technicians that will not break the budget.
3:00 pmZscaler: Transforming IT for a Cloud-Enabled WorldSr. Director, Sales Engineering, ZscalerRegistration Level:- Open Sessions
3:00 pm - 3:45 pmLocation / Room: Galleria 3With an explosion of vendors providing cloud-based services are we ready to move security functions out of our premises as well? We will be exploring the market readiness to (re)move the security perimeter, the extent to which this can be accomplished, while discussing the challenges associated with this transformation.
Audience Takeaway: Key considerations for both security and network transformation as IT teams undertake cloud initiatives (moving infrastructure to AWS/Google, building apps in Azure, deploying Office 365)
Presentation topics: IT transformation, Cloud first, secure direct to internet access, security platform
- Archer Security GroupBooth: 204
Archer is a premier cyber security consulting firm with decades of professional experience delivering exceptional internal security audits, vulnerability assessments, pen testing and security compliance support (HIPPA, Sarbanes-Oxly, NERC CIP, PCI Security, etc.). We also provide system integration for several key security and compliance solutions such as Tripwire, Qualtrax, ProtectWise and many others. Our consultants and service providers are highly skilled security practitioners with hands-on experience in banking, auto manufacturing, electric utilities (we specialize in NERC CIP), gas & oil, food automation and other mission critical environments that rely on information and operation technology.
- HPE Aruba NetworkingBooth: 109
At Aruba, a Hewlett Packard Enterprise company, we believe the most dynamic customer experiences happen at the Edge—an office, a hospital, a school, or at home. It’s anyplace work gets done and data is generated by users, devices, and things across your network. Our mission is to help customers capitalize on these opportunities by providing secure edge-to-cloud networking solutions. We use AI-based machine learning to deliver simpler, faster, and more automated networks that analyze data to help businesses thrive.
- AtmoseraBooth: 105
Atmosera is a leading Microsoft Azure solutions provider leveraging both the Microsoft Cloud Platform System and Azure. We engineer and operate highly scalable Azure cloud environments that support business critical (they can never go down) applications. With over 20 years of industry experience and real-world best practices, Atmosera is a trusted and secure (HIPAA/HITECH, HITRUST, PCI DSS V.3, IRS 1075, and SSAE 16) global cloud partner to SaaS providers, financial institutions, healthcare providers, retailers, government agencies, manufacturers, and other industries of commerce. Interested? Visit www.atmosera.com.
- Blue CoatBooth: 217
Blue Coat is a leader in advanced enterprise security, protecting 15,000 organizations every day. Through the Blue Coat Security Platform, Blue Coat unites network, security and cloud, providing customers with maximum protection against advanced threats, while minimizing impact on network performance and enabling cloud applications and services.
- Crossmatch/DigitalPersonaBooth: 212
Crossmatch is a world leader in biometric identity management solutions. Our technologies and expertise are helping organizations of all sizes achieve new levels of efficiency, expand in new markets and find powerful new ways to protect people, property and profits. Heavy reliance on digital transactions, growing mobile workforces, global demand for e-gov services and the need for enhanced security at borders, in law enforcement and on battlefields all point to a clear need for the confidence and certainty of biometrics. Security-minded organizations in both the public and private realms understand the power and necessity of biometrics — and they are increasingly looking for an established partner to help solve this identity management challenge.
- CylanceBooth: 108
Cylance® is revolutionizing cybersecurity with products and services that proactively prevent, rather than reactively detect the execution of advanced persistent threats and malware. Our technology is deployed on over four million endpoints and protects hundreds of enterprise clients worldwide including Fortune 100 organizations and government institutions.
- CyphortBooth: 209
Cyphort is the next generation APT defense solution for the enterprise. Cyphort provides a single pane of glass across perimeter and laterally moving threats, correlates threat signals before and after an incident while eliminating noise from false alerts and red herrings.
- DarktraceBooth: 216
Darktrace is the world’s leading cyber AI company and the creator of Autonomous Response technology. Its self-learning AI is modeled on the human immune system and used by over 3,500 organizations to protect against threats to the cloud, email, IoT, networks, and industrial systems.
The company has over 1,200 employees and headquarters in San Francisco and Cambridge, UK. Every 3 seconds, Darktrace AI fights back against a cyber-threat, preventing it from causing damage.
- Dasher TechnologiesBooth: 104
Dasher Technologies, Inc. ® is a premier IT solution provider that delivers expert technical resources along with trusted account executives to architect and deliver complete IT solutions and services to help our clients execute their goals, plans and objectives.
- EC-CouncilBooth: TBD
International Council of E-Commerce Consultants, also known as EC-Council, is the world’s largest cyber security technical certification body. We operate in 140 countries globally and we are the owner and developer of the world-famous Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (C|HFI), Certified Security Analyst (ECSA), License Penetration Testing (Practical) programs, among others. We are proud to have trained and certified over 140,000 information security professionals globally that have influenced the cyber security mindset of countless organizations worldwide.
- Electronic Crimes Task ForceBooth: TBD
The role of the U.S. Secret Service has gradually evolved since the agency’s 1865 inception, from its initial mandate — suppressing the counterfeiting of U.S. currency — to protecting the integrity of the nation’s financial payment systems. During this time, as methods of payment have evolved, so has the scope of the Secret Service’s mission. Computers and other chip devices are now the facilitators of criminal activity or the target of such, compelling the involvement of the Secret Service in combating cyber crime. The perpetrators involved in the exploitation of such technology range from traditional fraud artists to violent criminals – all of whom recognize new opportunities to expand and diversify their criminal portfolio.
- ExtraHopBooth: 109
ExtraHop is a force multiplier for IT teams struggling with increasing complexity. With the ExtraHop platform, organizations can regain control over the security and performance of their applications and infrastructure, and capitalize on their data analytics opportunity to improve business operations and results. Learn more at www.extrahop.com
- GigamonBooth: 208
Gigamon offers a deep observability pipeline that harnesses actionable network-level intelligence to amplify the power of observability tools. This powerful combination enables IT organizations to assure security and compliance governance, speed root-cause analysis of performance bottlenecks, and lower operational overhead associated with managing hybrid and multi-cloud IT infrastructures. The result: modern enterprises realize the full transformational promise of the cloud. Gigamon serves more than 4,000 customers worldwide, including over 80 percent of Fortune 100 enterprises, nine of the 10 largest mobile network providers, and hundreds of governments and educational organizations worldwide. To learn more, please visit gigamon.com.
- InfraGardBooth: TBD
InfraGard is an information sharing and analysis effort serving the interests and combining the knowledge base of a wide range of members. At its most basic level, InfraGard is a partnership between the FBI and the private sector. InfraGard is an association of individuals, academic institutions, state and local law enforcement agencies, and other participants dedicated to sharing information and intelligence to prevent hostile acts against the United States. InfraGard Chapters are geographically linked with FBI Field Office territories.
The FBI retained InfraGard as an FBI sponsored program, and will work with DHS in support of its CIP mission, facilitate InfraGard’s continuing role in CIP activities, and further develop InfraGard’s ability to support the FBI’s investigative mission, especially as it pertains to counterterrorism and cyber crimes.
- IntSightsBooth: 213
IntSights is revolutionizing cybersecurity operations with the industry’s only all-in-one external threat protection platform designed to neutralize cyberattacks outside the wire. Our unique cyber reconnaissance capabilities enable continuous monitoring of an enterprise’s external digital profile across the open, deep, and dark web to identify emerging threats and orchestrate proactive response. Tailored threat intelligence that seamlessly integrates with security infrastructure for dynamic defense has made IntSights one of the fastest-growing cybersecurity companies in the world.
- ISC2Booth: TBD
ISC2 is an international nonprofit membership association focused on inspiring a safe and secure cyber world. Best known for the acclaimed Certified Information Systems Security Professional (CISSP) certification, ISC2 offers a portfolio of credentials that are part of a holistic, programmatic approach to security. Our membership, over 123,000 strong, is made up of certified cyber, information, software and infrastructure security professionals who are making a difference and helping to advance the industry. Our vision is supported by our commitment to educate and reach the general public through our charitable foundation, The Center for Cyber Safety and Education™.
- ISACA Willamette ValleyBooth: TBD
The Willamette Valley Chapter of ISACA represents IT Security, Audit and Compliance Professionals in the Oregon/SW Washington region. This chapter is one of more than 180 international chapters. The chapter is represented by a member-elected board of directors as well as volunteer committees formed for special purposes. Members benefit from discounted materials developed by ISACA International, regular continuing professional education, and excellent opportunities to network with professionals in the field. The chapter hosts luncheon programs and coordinates technical seminars designed to provide networking and professional education opportunities, and serves as a conduit for information from the International ISACA organization.
- ISSA PortlandBooth: TBD
The Information Systems Security Association (ISSA)® is a not-for-profit, international organization of information security professionals and practitioners. It provides educational forums, publications, and peer interaction opportunities that enhance the knowledge, skill, and professional growth of its members. The primary goal of the ISSA is to promote management practices that will ensure the confidentiality, integrity, and availability of information resources. The ISSA facilitates interaction and education to create a more successful environment for global information systems security and for the professionals involved. Members include practitioners at all levels of the security field in a broad range of industries such as communications, education, healthcare, manufacturing, financial, and government.
- IvoxyBooth: 100
At IVOXY Consulting, getting a piece of our minds gives you peace of mind. Our mission is to accelerate the understanding and adoption of innovative data center technologies. Our experienced and friendly engineers will provide the knowledge needed to get the most out of your data center environment and personnel.
- OptivBooth: 213
Optiv is a security solutions integrator delivering end-to-end cybersecurity solutions that help clients maximize and communicate the effectiveness of their cybersecurity programs. Optiv starts with core requirement of every enterprise—risk mitigation—and builds out from there with strategy, infrastructure rationalization, operations optimization, and ongoing measurement. Learn more at https://www.optiv.com.
- ProofpointBooth: 120
Proofpoint protects your people, data, and brand from advanced threats and compliance risks with cybersecurity solutions that work. Built on advanced analytics and a cloud architecture, our platform secures the way your people work today—through email, mobile apps, and social media.
Some attacks get through even the best defenses. That’s why our solutions also proactively safeguard the critical information people create. We reduce your attack surface by managing this data and protecting it as you send, store, and archive it. And when things go wrong, we equip security teams with the right intelligence, insight, and tools to respond quickly.
- Qualys, Inc.Booth: 205
Qualys, Inc. (NASDAQ: QLYS) is a pioneer and leading provider of cloud-based security and compliance solutions with over 9,300 customers in more than 120 countries, including a majority of each of the Forbes Global 100 and Fortune 100. Qualys helps organizations streamline and consolidate their security and compliance solutions in a single platform and build security into digital transformation initiatives for greater agility, better business outcomes and substantial cost savings. The Qualys Cloud Platform and its integrated Cloud Apps deliver businesses critical security intelligence continuously, enabling them to automate the full spectrum of auditing, compliance and protection for IT systems and web applications on premises, on endpoints and elastic clouds. Founded in 1999 as one of the first SaaS security companies, Qualys has established strategic partnerships with leading managed service providers and consulting organizations including Accenture, BT, Cognizant Technology Solutions, Deutsche Telekom, Fujitsu, HCL Technologies, HP Enterprise, IBM, Infosys, NTT, Optiv, SecureWorks, Tata Communications, Verizon and Wipro. The company is also a founding member of the Cloud Security Alliance. For more information, please visit www.qualys.com.
- SentinelOneBooth: 116
SentinelOne delivers real-time cloud workload protection, to stop runtime threats targeting VMs, containers and Kubernetes clusters. From endpoints to workloads, to data center and public cloud, innovate quickly knowing SentinelOne has you protected. To learn more, visit www.sentinelone.com or follow us at @SentinelOne, or on LinkedIn and Facebook.
- Shield4ucBooth: 221
For a quarter of a century the veteran industry leaders at Shield have been at the forefront of secure messaging solutions.
Partnering with a select group of elite companies to offer leading-edge tools and solutions, that address the growing cyber-security threats on the world today.
Whether it is compliant industries such as health, insurance, finance, legal, or any company where sensitive data is kept or used.
Shield is there to help companies to communicate and secure data, faster, smarter and easier . - StructuredBooth: 109
Structured is an award-winning solution provider delivering secure, cloud-connected digital infrastructure. For nearly 30 years, we’ve helped clients through all phases of digital transformation by securely bridging people, business and technology.
- SymantecBooth: 217
Symantec is the world’s leading cyber security company. Organizations worldwide look to Symantec for strategic, integrated solutions to defend against sophisticated attacks, and more than 50 million people rely on Symantec’s Norton and LifeLock product suites to protect their digital lives at home. For more information, please visit www.symantec.com.
- SynopsysBooth: 125
Synopsys helps development teams build secure, high-quality software, minimizing risks while maximizing speed and productivity. Synopsys, a recognized leader in static analysis, software composition analysis, and application security testing, is uniquely positioned to apply best practices across proprietary code, open source, and the runtime environment. With a combination of industry-leading tools, services, and expertise, only Synopsys helps organizations maximize security and quality in DevSecOps and throughout the software development life cycle.
- TaniumBooth: 201
Tanium defends every team, endpoint and workflow against the largest attack surface in history by delivering the industry’s first convergence of IT management and security operations with a single platform under a new category, Converged Endpoint Management (XEM).
The integrated offering links IT operations, security and risk teams from a single pane of glass to provide a shared source of truth, a unified set of controls, and a common taxonomy that brings together siloed teams for a shared purpose—to protect critical information and infrastructure.
For more information, visit: https://www.tanium.com.
- TechTargetBooth: TBD
TechTarget (NASDAQ: TTGT) is the online intersection of serious technology buyers, targeted technical content and technology providers worldwide. Our media, powered by TechTarget’s Activity Intelligence platform, redefines how technology buyers are viewed and engaged based on their active projects, specific technical priorities and business needs. With more than 100 technology specific websites, we provide technology marketers innovative media that delivers unmatched reach via custom advertising, branding and lead generation solutions all built on our extensive network of online and social media. TechTarget is based in Boston and has locations in Atlanta, Beijing, Cincinnati, London, Paris, San Francisco, Singapore, and Sydney.
- ThalesBooth: 122
As the global leader in cloud and data protection, we help the most trusted brands and largest organizations in the world protect their most sensitive data and software, secure the cloud and achieve compliance through our industry-leading data encryption, access management, and software licensing solutions.
- Trend MicroBooth: 100
Trend Micro, a global leader in cybersecurity, is passionate about making the world safe for exchanging digital information, today and in the future. Artfully applying our XGen™ security strategy, our innovative solutions for consumers, businesses, and governments deliver connected security for data centers, cloud workloads, networks, and endpoints. www.trendmicro.com.
- ZscalerBooth: 117
Zscaler’s Cloud-delivered security solution provides policy-based secure internet access for any employee, on any device, anywhere. Our proxy and scanning scalability ensures ultra-low latency in a 100% SaaS security solution requiring no hardware, software or desktop all while providing complete control over security, policy and DLP.
- John O'LearyPresident, CISSP, O'Leary Management Education
John O'Leary, CISSP, is President of O'Leary Management Education. His background spans four decades as an active practitioner in information systems, IT Security and contingency planning. He has designed, implemented and managed security and recovery for networks ranging from single site to multinational. John has trained tens of thousands of practitioners, and conducted on-site programs at major corporations and government facilities worldwide. He has also facilitated meetings of Working Peer Groups, where security professionals from diverse corporations share ideas, concerns and techniques. John is the recipient of the 2004 COSAC award, the 2006 EuroSec Prix de Fidelite, and the 2011 ISC2 Lifetime Achievement Award.
- John O'LearyPresident, CISSP, O'Leary Management Education
John O'Leary, CISSP, is President of O'Leary Management Education. His background spans four decades as an active practitioner in information systems, IT Security and contingency planning. He has designed, implemented and managed security and recovery for networks ranging from single site to multinational. John has trained tens of thousands of practitioners, and conducted on-site programs at major corporations and government facilities worldwide. He has also facilitated meetings of Working Peer Groups, where security professionals from diverse corporations share ideas, concerns and techniques. John is the recipient of the 2004 COSAC award, the 2006 EuroSec Prix de Fidelite, and the 2011 ISC2 Lifetime Achievement Award.
- Karen WorstellMember, Board of Directors, Colorado Technology Association
Karen Worstell began her cyber career 30 years ago when her Programming professor in grad school encrypted the final and unique code breaking tools were required to be used in order to decrypt and read each question.
She has provided cybersecurity support for programs like the Advanced Tactical Fighter prototype and B2 Bomber, developed the first computer security manual for the Boeing Company, and led research in secure distributed computing for Boeing’s Research and Technology Division in the 1980s and 90s. From there she had senior and C-level roles in security and IT Risk Management for companies like Union Carbide, SRI Consulting, Bank of America, AT&T Wireless, Microsoft and Russell Investments. She was the CEO for AtomicTangerine, the SRI International spinoff focused on security that served international Fortune 100 companies in security strategy and major technology implementations. She co-chaired major security events for SRI International, Forbes.com, and Georgetown University Law Center.
She held positions at NIST for OSI security architecture, the security subcommittee of the Aerospace Industries Association, US Department of Commerce Security and Privacy Advisory Board, and the security subcommittee of NSTAC and has been a featured speaker at events for SecureWorld, IIA, ISSA, ISACA, AusCERT, Security Conference Israel, and RSA.
She is the author of “Governance and Internal Controls for Cutting Edge IT” published by ITG, the chapter "The Role of the CISO" in the Computer Security Handbook 5th and 6th editions (Wiley) and co-author of "Evaluating the E-Discovery Capabilities of Outside Law Firms” by Pike & Fisher.
Her technical expertise spans Identity and Access Management, Intrusion Detection and Response, and integration of security into IT and business processes for “seamless security.” She is a huge fan of "not putting steel doors on grass shacks.” Today she focuses on changing perceptions about security to reduce the growing gap between emerging technology and security and pursues her passion for matching cyber talent in leadership roles for enterprises who are serious about cyber security.
- Preston PerichRegional Director, SentinelOne
- Col. Cedric LeightonCNN Military Analyst; U.S. Air Force (Ret.); Chairman, Cedric Leighton Associates, LLC
Cedric Leighton is a CNN Military Analyst and a retired United States Air Force Colonel. On CNN, he has provided incisive commentaries on the Israel-Hamas War, the War in Ukraine, the U.S. withdrawal from Afghanistan, and numerous other conflicts around the world. His analysis has been seen by millions of viewers around the world and provided much needed context to some of the most pressing national security issues of our time. As a U.S. Air Force officer, Colonel Leighton served at U.S. Special Operations Command, the Joint Staff, and the National Security Agency, where he helped train the nation's cyber warriors. A Middle East combat veteran, he is the recipient of numerous military awards, including the Defense Superior Service Medal and the Bronze Star. After serving 26 years as a U.S. Air Force Intelligence Officer, Col. Leighton founded a strategic risk consultancy and became the co-founder of CYFORIX, where he advises multinational businesses on developing better cyber strategies designed to reduce risk and unpredictability.
- Shreyas KumarCISO, Deserve
Chief Information Security Officer Shreyas Kumar has spent more than 18 years in cybersecurity related roles. He most recently built the security program at Fintech startup Deserve, from the ground up. This follows previous roles which included securing Uber's global payments and the operational security and compliance of the Adobe Doc Cloud set of products and services. He is a member of the FBI's InfraGard and a partner of the San Francisco Economic Crimes Task Force (ECTF) run by the United States Secret Service. He is also a visiting Professor of Computer Science at San Jose State University. He holds multiple security certifications, an MS degree in Computer Science from Texas A&M University, and a Bachelor's degree from IIT Roorkee. He has spoken in multiple international conferences and has been an invited speaker at universities.
- Jeff KorteDirector Community Institutions & Associations, Financial Services - Information Sharing & Analysis Center
Jeffrey is a former banking security practitioner possessing over 24-years’ experience in the financial services sector and ten security domains. As a BSO and ISO, he specialized in developing cybersecurity and fraud programs. He currently manages a council with FS-ISAC assisting over 3,800 members achieve cyber-security maturity.
- Thomas PaceVP, Global Enterprise Solutions, BlackBerry
Thomas Pace has an extensive background in building incident response programs, policies, procedures and playbooks at multiple top-tier organizations. Thomas has 11 years of security experience in various fields including physical security, intelligence gathering and analysis, sensitive site exploitation, incident response, intrusion analysis, and endpoint and network forensics. Thomas also has extensive experience in conducting assessments against various NIST special publications such as 800-53 and 800-171. Thomas is also currently an Adjunct Professor at Tulane University where he has developed a portion of the Homeland Security Studies program curriculum centered on cybersecurity. Thomas also currently provides guidance and expertise to the New Orleans cloud security community as the Louisiana Cloud Security Alliance Co-Chair.
Thomas served as a Senior Cybersecurity Engineer at Fluor Federal Petroleum Operations, a Department of Energy contractor supporting the Strategic Petroleum Reserve worth billions of dollars. In this role, Thomas was the lead incident response official and was responsible for ensuring all incidents were appropriately identified, contained and remediated in a timely manner and reported to proper authorities if necessary. Additionally, Thomas was responsible for conducting intrusion analysis and threat hunting on a daily basis to ensure the organization was not breached. While conducting a multitude of analyses based on intrusions and incidents, Thomas built a multitude of playbooks and processes so junior technical personnel could also conduct analyses in an efficient manner.
Thomas served in the United States Marine Corps as an infantryman and intelligence specialist. During this time, Thomas deployed to both Iraq and Afghanistan as part of the Marine Corps.
Thomas holds an M.S. in Information Science with a concentration in Information Assurance. Thomas also possesses multiple certifications such as GIAC GCIH, GCFA, GCIA, GICSP and GCWN. Thomas also is a Sourcefire certified professional, CISSP, and possesses CNSS 4011, 4012, 4013, 4014 and 4015.
- Ray EspinozaVice President of Information Security, Atmosera
Ray Espinoza is an expert delivering complex InfoSec capabilities and strategies. He is responsible for all security and compliance initiatives and customer solutions.
- Jared CheneySenior Vice President of Client Operations, Atmosera
Jared Cheney excels at delivering a consistent and outstanding customer experience. He oversees networking, computing, storage, application services, monitoring, and a 24x7x365 Technical Assistance Command Center (TACC).
- Lance HowardDeputy Cyber Security Director, Portland General Electric
Lance Howard has been in the Utility industry for 15 years, beginning in a security operation center and most recently the Manager of Security Assurance of a local Utility company. He has also held positions that have included risk assessments, security architecture and design.
- Alejandro VillegasSecurity Engineer, Amazon
Seasoned security engineer with 15 years of cybersecurity experience working for leading IT companies such as: Amazon, Microsoft, F5 Networks, Hewlett Packard, and cPanel. Education: JD, MS, MBA, BBA. Certifications: CISSP, CEH, CISA, CHFI, LPT, ECSA, MCITP, Lead ISO 27001
- Julie VillegasTeleion Consulting
- Wayne MachucaDoctor & Professor, Information Systems and Technology Management, Mt. Hood Community College
Dr. Machuca is the PI and lead instructor for the AAS / CyberSecurity & Networking degree at Mt. Hood Community College in Gresham, OR. MHCC has the only cyber security Associates degree in Oregon. It was awarded CAE-2Y by DHS and NSA. MHCC will award Cyber 40 graduates in 2017.
- Bill LappSr. Director, Sales Engineering, Zscaler
As the Leader for Solution Engineering and Architecture at Zscaler Bill Lapp is responsible for all pre-sales engineering efforts in North and South America. His primary focus is assisting large enterprises to rethink how they approach network and business transformation through the use of security and policy.
• Create a personalized agenda
• View maps of the venue and Exhibit Hall
• Use secure messaging to network with attendees
• View speaker slides after the conference
• Play CyberHunt, the app game, and compete for prizes