RiskSec DIGITAL 2020: Resilient Thinking in an Unpredictable World

Preliminary Agenda (all times EDT) 

Powerful changes have shifted our thinking — about risk, work, business and society. RiskSec DIGITAL will help you understand their implications.
Presented in a fast-paced, conversational format, RiskSec features top leaders and thinkers from cybersecurity and across disciplines. Join us Sept. 16-17 for two mornings that will change your mind. We promise to challenge your assumptions — and have you back to work by 2 PM EDT each day. 

Wednesday, September 16, 2020
8:45 AM - 9:00 AM
Jill Aitoro
9:00 AM - 9:30 AM

To truly be resilient, today’s organizations must do more than maximize the power of their security stack – they must maximize the power of their security team, and of their entire workforce. A mindset shift is required. But how? Let’s examine and learn from one country’s phenomenal and rapid transformation into a security culture in the wake of one of history’s most notorious nation state cyberattacks.

Jill Aitoro Jonatan Vseviov
9:30 AM - 9:45 AM
9:50 AM - 10:20 AM

This year, the working world has had no choice but to rapidly evolve. Navigating uncertainty and complexity has become the norm. Resilience is about more than disaster recovery, business continuity, incident response. What role can cybersecurity leaders play in building and maintaining operating platforms and workforces that bend but don't break. 

Jill Aitoro Geoff Belknap Fredrick "Flee" Lee
10:20 AM - 10:35 AM
Jeff Costlow
10:35 AM - 11:05 AM
11:05 AM - 11:35 AM

With 20 years of fast and far-reaching digital transformation in the rear-view mirror, many industries and organizations are now finally taking stock of what's changed and what hasn't. What does it mean to conduct a post-transformation risk assessment?

Jill Aitoro Lakshmi Hanspal
11:35 AM - 12:05 PM

Sessions include:

How to Balance Productivity and Security in Your Email Environment Hosted by GreatHorn
John P. Keenan, CISO, Memorial Hospital at Gulfport
Kevin O’Brien, CEO & Co-Founder, GreatHorn

When it comes to phishing attacks and the constantly evolving threats targeting organizations, balancing email security and end user productivity is a particular challenge. In this 30-min ask me anything session, CISO John Keenan, will sit with GreatHorn Founder and CEO, Kevin O’Brien, to give you the opportunity to ask questions about how to manage email controls across your security team and end users to most effectively balance risk to your organization.

The Expanded Attack Surface and Your Security Stack: Are You Ready? Hosted by Attivo Networks
Erik Decker, Chief Information Security and Privacy Officer, University of Chicago Medicine
Carolyn Crandall, Chief Deception Officer and CMO, Attivo Networks

The pace at which new technology has been introduced to businesses has evolved drastically in less than a year. This has resulted in an expanded attack surface for most organizations across sectors, posing new challenges for security leaders. As attack surfaces have evolved, so have attack vectors. With so many changes occurring in the threat landscape, what should a modern-day security leader’s tech stack look like? In this lively discussion, Carolyn Crandall, chief deception officer at Attivo Networks, and Erik Decker, chief security and privacy officer at the University of Chicago Medicine, aim to not only answer that question, but take any and all questions from the audience on the topic as well.


Avoiding Common Security & Risk Management Pitfalls Hosted by RSA
Todd Fitzgerald, Executive In Residence, Cybersecurity Collaborative
Ben Smith, Field Chief Technology Officer, RSA

Where do security leaders fail when it comes to their strategy? Where do communication gaps primarily lie? Are security leaders relying too much on security vendors? Join RSA Field Chief Technology Officer Ben Smith as he sits with cybersecurity expert, author and Executive in Residence at the Cybersecurity Collaborative, Todd Fitzgerald, to answer these questions and discuss the common security and risk management pitfalls. Come prepared with questions for this live AMA!


Kevin O’Brien John Keenan Carolyn Crandall Erik Decker Todd Fitzgerald Ben Smith
12:05 PM - 12:35 PM
12:35 PM - 1:10 PM

Achieving your organization's future vision requires re-envisioning cybersecurity as a growth enabler. In this session, we'll discuss what design, development and planning look like when information security comes to the table early, stays there for the duration.

Teri Robinson Merritt Baer Beth Dunphy Nick Percoco
Thursday, September 17, 2020
8:45 AM - 8:50 AM
8:50 AM - 9:45 AM

The cybersecurity industry has been aware of its diversity shortcomings for many years. In a business and discipline whose every aspect revolves around the human element, what does it truly take to build a culture of inclusivity and diversity? 

Parham Efetekhari Edna Conway Jerry Davis Camille Stewart
9:45 AM - 10:00 AM
Brian Robinson
10:00 AM - 10:30 AM
10:30 AM - 11:00 AM

The healthcare industry’s Covid-19 cyber-response bears lessons for us all. Confronting massive spikes in telehealth use and WFH staff, providers saw an unprecedented share of caregiver-patient interactions shift from established, secure and HIPAA-compliant platforms to home computers, public networks and IoT devices. Meanwhile, the fast ramp-up of vital new medical equipment for coronavirus treatment expanded the attack surface. Learn how a critical industry adapted.

Todd Fitzgerald Erik Decker Errol Weiss
11:00 AM - 11:30 AM
11:30 AM - 12:00 PM

Sessions include:

Building Security Resilience into the Cloud Hosted by Perimeter81
Elad Hod, Deputy CISO, AllianceBernstein
Sivan Tehila, Director of Solution Architecture, Perimeter 81 

In the current era of multi-cloud computing, organizations are subject to new threats emerging from opportunistic cyber criminals to misconfigured cloud servers, all of which put their businesses at serious risk. While all attacks cannot be stopped or made ineffective, organizations must establish processes and policies that take their business into consideration and help them create a cyber resilient culture. Join Sivan Tehila, Director of Solution Architecture at Perimeter 81, and Elad Hod, Deputy CISO at AllianceBernstein, as they discuss how you can implement a complete strategy that properly prepares you to address your organization’s cloud security challenges and give you the opportunity to ask questions on the topic throughout the session.

The Role of a CISO in a Post-Pandemic World Hosted by SecurityScorecard
Krista Arndt, Deputy CISO, Customers Bank
Pavi Ramamurthy, CISO, Upstart

Join Krista Arndt, deputy CISO at Customers Bank and Pavi Ramamurthy, CISO at Upstart as they discuss the journey that CISOs have gone through this year, but more importantly, what the road ahead looks like. From an expanded attack surface to managing cyber risk presented by third-party partners, you’ll have the opportunity to drive the conversation with your questions.


Sivan Tehila Elad Hod Krista Arndt Pavi Ramamurthy
12:00 PM - 12:30 PM

Security professionals often see their mission as making not just an individual enterprise but the whole world safer for commerce, communication and community interaction. But cybersecurity’s democratization remains a long way off — and the gap separating those that do and don’t consider it a core function — and those that can and can’t afford strong protection — is wide. Security requires awareness of all participants in the business ecosystem. 

Jonathan Reiber