SecureWorld Seattle 2023

Come to the Registration desk in the lobby to check-in and get your badge. SecureWorld staff will be available throughout the day if you have any questions.

Topic(s) and instructor to be announced.

Our PLUS courses provide 6 hours of in-depth training interspersed during the conference. Learn in a small group of your peers from an instructor with subject matter expertise on a critical, timely security issue.

Includes a Conference Pass; earn 18 CPE credits total!

Your opportunity to visit our solution vendor partners, whose sponsorship makes SecureWorld possible! Booths have staff ready to answer your questions. Look for participating Dash For Prizes sponsors to be entered to win prizes.

Participating professional associations and details to be announced.

This roundtable discussion is for our Advisory Council members only.

Visit the Exhibitor Hall for vendor displays or connect with attendees in the Networking Lounge.

Key take-away: 
How to rethink database security controls in a cloud-first world.

For most organizations, data repositories hold our most sensitive, mission critical assets. As enterprises continue their digital transformation journeys, data repositories and the sensitive assets within are more exposed than ever before for several reasons, including a dramatic rise in the:

• Amount of data created, collected, and stored
• Number of repositories storing sensitive data across clouds
• Number of users and applications that need access to data

Over the last few years, the workforce, and the way we work, has entirely shifted focus. Between hybrid work models, attracting and retaining diverse talent, forced digital migrations/transformations, cybersecurity succession planning, and overall mental fatigue, the future of work has dramatically changed. We will discuss how to navigate the “new normal” and lessons learned along the way. This discussion is followed by a Q&A, so come prepared to ask your burning workforce questions!

Session description coming soon.

Visit the Exhibitor Hall for vendor displays or connect with attendees in the Networking Lounge.

A discussion of managing third-party risk and how to manage expectations and contracts with vendors.

Like the main character in the 1981 horror movie, An American Werewolf in London, cybercriminals continue to morph into something evil, lurking in the night (and day) to cause harm to people, organizations, and governments. Cue the Creedence Clearwater Revival song, Bad Moon Rising.

The cybersecurity community is smart and more than capable of thwarting bad actors, fangs and all. They have tools, technologies, partnerships across private and public entities, and solution vendors to help them along the way. Don’t forget about the consultants working hard to stay ahead of those wanting to do harm, as well.

Hear our panelists’ views on the current threat landscape, solutions they have to offer, and ideas they have for turning a bad moon into a harvest moon.

Advisory Council – VIP / INVITE ONLY

Visit the Exhibitor Hall for vendor displays or connect with attendees in the Networking Lounge.

Can you “imagine” if The Beatles, when first starting out, had to deal with having their catalog of music hacked, stolen, and held for ransom simply because it was in an unsecure cloud setting? While it is possible for that to happen with their hit-laden collection of songs today, it’s merely a tiny example of how businesses operate at a minimum in a hybrid cloud environment—many in a cloud-only platform.

With that comes security issues and another major area which cybersecurity professionals must work diligently to protect.

Our panel of experts share the good, the bad, and the ugly of operating in a cloud environment, what it takes to make the move to hybrid or multi-cloud successful, how to protect data from insider and outsider threats, and what it takes to provide the support DevOps teams need.

Visit the Exhibitor Hall for vendor displays or connect with attendees in the Networking Lounge.

As the nation’s cyber defense agency, CISA leads the national effort to understand, manage, and reduce risk to our cyber and physical infrastructure. Since the majority of our nation’s critical infrastructure is privately owned, ensuring the nation’s cybersecurity posture requires continued collaboration between government and the private sector. During this fireside chat, CISA will discuss the current cyber threat landscape, the agency’s latest initiatives to help critical infrastructure owners and operators protect and defend their networks, and the catalog of CISA services available to organizations to become more cyber resilient.

Session description coming soon.

Visit the Exhibitor Hall for vendor displays or connect with attendees in the Networking Lounge.

Topic(s) and instructor to be announced.

Our PLUS courses provide 6 hours of in-depth training interspersed during the conference. Learn in a small group of your peers from an instructor with subject matter expertise on a critical, timely security issue.

Includes a Conference Pass; earn 18 CPE credits total!

Come to the Registration desk in the lobby to check-in and get your badge. SecureWorld staff will be available throughout the day if you have any questions.

Topic(s) and instructor to be announced.

Our PLUS courses provide 6 hours of in-depth training interspersed during the conference. Learn in a small group of your peers from an instructor with subject matter expertise on a critical, timely security issue.

Includes a Conference Pass; earn 18 CPE credits total!

Your opportunity to visit our solution vendor partners, whose sponsorship makes SecureWorld possible! Booths have staff ready to answer your questions. Look for participating Dash For Prizes sponsors to be entered to win prizes.

Participating professional associations and details to be announced.

This roundtable discussion is for our Advisory Council members only.

Visit the Exhibitor Hall for vendor displays or connect with attendees in the Networking Lounge.

New CISOs and experienced CISOs new to organizations face the challenge of building out new, or building upon existing, cybersecurity programs. This peer exchange among CISOs will dive into their approach to building foundational cybersecurity strategies.

Cyber insurance is no longer a “do I need it?” but a must-have for organizations. This conversation among cybersecurity peers will discusse how to properly assess insurance programs, including a candid look into how the organization should drive what is and is not covered, not the insurance provider.

Session description to come.

Visit the Exhibitor Hall for vendor displays or connect with attendees in the Networking Lounge.

When a data breach or other cyber incident happens, having a plan in place can mean the difference between a quick recovery and unwanted headlines and irreparable harm to stakeholder trust.

Savvy would-be customers be research companies and typically prefer to do business with those who have good cyber hygiene. How can a strong security posture be a business driver for your organization?

Session description coming soon.

Advisory Council – VIP / INVITE ONLY

Visit the Exhibitor Hall for vendor displays or connect with attendees in the Networking Lounge.

Security Awareness programs have gone from an afterthought to a critical component of Information Security programs. Most large organizations now have one or more full-time employees dedicated to awareness and managing human risks. This presentation defines a common framework for building a broad awareness program using the Train, Reinforce, Assess, and Manage (TRAM) model. The presentation will also provide logical maturity steps that map out the progression for maturing an awareness program using a Awareness Program Maturity Model (APMM).

Zero Trust is considered by many to be a marketing buzzword, but what it really alludes to is having good, basic cybersecurity hygiene. It’s what any cybersecurity professional worth their salt has been doing, and does, daily. Ransomware, phishing, and BEC grab the headlines, but your run-of-the-mill cyberattacks can’t be ignored because of the shiny new thing garnering all the attention.

The CISO is like a musical conductor that must pay attention to all the resources at his or her disposal—be it people, tools, technologies, systems, and more. How is the organization handling security awareness training? What about staffing shortages affecting the organization, or even the vendors with which CISOs and their teams work?

Join our expert panel as they provide insights and takeaways on the state of the information security profession today, including tips for seeing clearly and staying ahead of threats.

Visit the Exhibitor Hall for vendor displays or connect with attendees in the Networking Lounge.

Key take-away:
The audience will learn how to measure the benefits and costs of its cybersecurity program.

For years, enterprises have recognized the need for a cybersecurity program, but it can be very difficult to measure its value. Implementing “best practices” is often an exercise in futility, compliance audits are too general and subjective, and everybody seems to have their own notion of what works. Using data from the audience, this session will review the ways an organization can benchmark its security program to gain deeper insight into its functional costs and benefits.

Presentation Level:
GENERAL (InfoSec best practices, trends, solutions, etc.)

A new attack vector (or two or eight) is identified daily, and who knows what is coming down the pike from those with nefarious intentions. How do cybersecurity professionals keep up and strike the right note in their symphony of defenses? Cybersecurity teams must have solid Incident Response (IR) plans in place to mitigate these attacks.

Our panel of experts reveals the instruments—tools, technologies, and systems—they have to offer so that cybersecurity band members are all playing the same tune on behalf of their organizations. They’ll identify current threats and solutions for each so public and private entities have an IR plan that balances defense and offense, creating a beautiful song.

Visit the solution sponsor booths in the Exhibitor Hall and connect with other attendees.

Participating sponsors will announce their Dash for Prizes winners. Must be present to win.

Topic(s) and instructor to be announced.

Our PLUS courses provide 6 hours of in-depth training interspersed during the conference. Learn in a small group of your peers from an instructor with subject matter expertise on a critical, timely security issue.

Includes a Conference Pass; earn 18 CPE credits total!