
New York CISO Executive Summit
November 12, 2019 | New York Hilton Midtown
November 12, 2019
New York Hilton Midtown
Collaborate with your peers
Get together with your peers to tackle top business challenges through peer-driven content and discussions at the New York CISO Executive Summit.
Join your peers to discuss the most critical issues impacting CISOs today:
Strategies for a risk-aligned, resilient organization
Developing and investing in the security workforce of tomorrow
Creating business value and supporting agile business operations
New York CISO Governing Body
The Governing Body Co-Chairs shape the summit agenda, ensuring that all content is driven by CISOs, for CISOs.
Co-Chairs

Zouhair Guelzim
L'Oreal
VP & CISO

Raymond Lipps
Celgene Corporation
Executive Director & CISO, Global Information Security

Tod Mitchinson
New York Life Insurance
VP & CISO

Michael Palmer
Hearst Corporation
Chief Information Security Officer

Deborah Snyder
New York State
CISO

Kylie Watson
Sumitomo Mitsui Banking Corporation
CISO

Teresa Zielinski
GE Power
Senior VP, Chief Information Security Officer & Product Security
Agenda
November 12, 2019
7:30am - 8:00am Registration & Breakfast
7:45am - 8:00am Opening Comments
8:00am - 9:00am Keynote
On the Edge – The Art of High-Impact Leadership
Hosted by Cybereason
Alison Levine
Author & Thought Leader, "On the Edge"
Alison Levine
Imagine yourself on the highest mountain in the world. You have to deal with the physiological effects of extreme altitude--along with bone-chilling temperatures, battering winds, and a climbing team that's counting on all of its members to make smart decisions. There's simply no room for poor judgment-- one mistake or misstep can result in an "unrecoverable error." In any situation where lives on are the line or the stakes are exceptionally high--there's no better training ground for leaders than settings where people are pushed beyond their perceived limits.
Drawing on her experience as team captain of the first American Women's Everest Expedition, Alison Levine makes a compelling case that the leadership principles that apply in the world of extreme adventure also apply to today's rigorously competitive business environments.
9:00am - 9:20am Networking Break
9:20am - 10:10am Interactive Session
Prepare for a Major Cyber Attack – A Tabletop Exercise
Hosted by BCG

Michael Cena
Vice President, Head of Cyber Security
A+E Networks

Teresa Zielinski
Senior VP, Chief Information Security Officer & Product Security
GE Power
Most CISOs feel comfortable managing the minor security incidents with standardized processes, but what about major incidents that shake the very foundations of your organization? Such crises can be career-changing.
Join this workshop to:
- Learn the basic building blocks of effective cybersecurity crisis response
- Share challenges and best practices in managing major security events
- Benchmark against your peers and identify lessons learned
Attendees must register for this session. Seating is limited to 50 people and priority is given to CISOs.
9:20am - 10:10am Breakout Session
Managing Customer Identity in the Era of CCPA
Hosted by Akamai Technologies, Inc.

Marc Varner
VP & Global CISO
YUM! Brands

Patrick Sullivan
CTO, Advanced Technology Group (Security)
Akamai Technologies, Inc.
As we inch closer to the end of 2019 and into 2020, privacy is top of mind for individuals and businesses alike. Approximately a year and a half after the EU adopted GDPR, California is introducing the California Consumer Privacy Act (CCPA) which will impact how companies do business in California. Join Marc Varner, Corporate VP and Global CISO, Yum! Brands, Inc. and Patrick Sullivan, Senior Director, Security Technology & Strategy at Akamai for a lively discussion where they’ll uncover the challenges and opportunities with managing customer identity in this era of evolving privacy regulations.
9:20am - 10:10am Executive Boardroom
The Next Great Security Challenge — Securing SD-WAN
Hosted by Cisco Umbrella

Chirag Arora
Chief Information Security Officer
Crum & Forster

John Whiting
Global Chief Security Officer
DDB Worldwide
Nada MacKinney
Product Marketing Manager, Cisco Cloud Security
Cisco Umbrella
The market consideration and adoption of software-defined WAN (SD-WAN) represents the largest networking transformation in recent history. Organizations are turning to SD-WAN to improve connectivity, reduce costs, and simplify management at their branch office locations. But what about security?
In this boardroom, you will discuss:
- Embracing change — the pros and cons
- Addressing weaknesses within brand offices and roaming users
- Keeping security top of mind for business leaders
Executive boardrooms are intimate and interactive sessions designed to foster dynamic dialogue around a specific, strategic topic. These private, closed-door discussions encourage attendee participation and are limited to 15 attendees (seating priority is given to CISOs). To reserve your seat, please contact: Brad Campbell at 971-9785-070 or brad.campbell@evanta.com
9:20am - 10:10am Executive Boardroom
Vulnerability Management - Prioritizing Zero-Day Threats
Hosted by Snyk

Mark Ramsey
CISO, ASSA ABLOY–Americas
ASSA ABLOY

Tomas Maldonado
VP & CISO
International Flavors & Fragrances
Alexei Pivkine
Technical Director
Snyk
Identifying, classifying and mitigating vulnerabilities continues to be a cornerstone of CISOs overarching risk management strategy. But how are you prioritizing and mitigating zero-day vulnerabilities?
Join your peers in this engaging roundtable discussion to learn how to:
- Ensure your open-source components and containers live in an active inventory
- Decrease your time to remediate vulnerabilities by leveraging new approaches, tools and people
- Empower developers to adopt a security mindset and integrate them into the entire process
Executive boardrooms are intimate and interactive sessions designed to foster dynamic dialogue around a specific, strategic topic. These private, closed-door discussions encourage attendee participation and are limited to 15 attendees (seating priority is given to CISOs). To reserve your seat, please contact: Brad Campbell at 971-9785-070 or brad.campbell@evanta.com
10:10am - 10:30am Networking Break
10:30am - 11:20am Breakout Session
Security in the Regulatory Age – How (and When) to Involve Legal
Hosted by Illumio
Kim Peretti
Cyber and Data Security Lawyer
Alston & Bird
Eric Staffin
Managing Director, Chief Information Security Officer
IHS Markit
As the number of compliance regulations increases, so does the complexity of a CISO’s role. The risks are higher for organizations if a compromise occurs. For that reason, CISOs not only have to structure their security strategy in new ways, but learn to effectively integrate legal into their cyber programs.
In this session, you’ll learn:
- The soft skills necessary for working with your legal officer
- The art of cybersecurity preparedness into today’s regulation-heavy world
- The role legal should play during a data breach
10:30am - 11:20am Breakout Session
Defense in Diversification and the Proactive SOC
Hosted by ExtraHop

John Matthews
CIO
ExtraHop
The rush to innovate has resulted in more sophisticated threat defenses, but it has also created a complex web of tools that must be managed by an already overworked and understaffed security team. Heterogeneity of defense systems is itself a defense, so modern security teams need to approach consolidation differently.
In this session, attendees will learn how:
- Data-first approaches to security architectures illuminates natural consolidation points
- Cross-collaboration within the IT organization improves security posture and reduce tool sprawl
- Leveraging other parts of the organization improves security posture through smarter processes and practices
10:30am - 11:20am Executive Boardroom
Cyber-Risk Management–New Approaches for Reducing Your Cyber-Exposure
Hosted by Tenable

Ken Brothers
VP & Director, Information Security Services
Federal Home Loan Bank Of New York

Bryan Chnowski
Senior Director - Information Security
Nuvance Health

Kevin Flynn
Senior Product Manager
Tenable
When it comes to reducing cyber risk, overcoming vulnerability overload is critical. Find out how predictive prioritization will improve your vulnerability management efforts so you can focus on what matters most to your business. During this peer-discussion you will explore:
- How to use threat intelligence to move the most dangerous vulnerabilities up your priority list
- The resources required to effectively assess your environment and prioritize your efforts in a predictive manner
- Practices that will help you take appropriate actions to make your organization more secure
- How to make your staff more efficient by drastically reducing the number of high priority vulnerabilities they need to remediate
Executive boardrooms are intimate and interactive sessions designed to foster dynamic dialogue around a specific, strategic topic. These private, closed-door discussions encourage attendee participation and are limited to 15 attendees (seating priority is given to CISOs). To reserve your seat, please contact: Brad Campbell at 971-9785-070 or brad.campbell@evanta.com
10:30am - 11:20am Executive Boardroom
Digital Risk Explosion — Managing Risk in a Hyper-Outsourcing World
Hosted by RiskRecon

Patrick Park
Director, information Security & CISO
Milbank
Daniel Gorecki
CISO
Aramark
Eric Blatte
President & Co-Founder
RiskRecon
Digital transformation has dramatically transformed the enterprise risk surface, automating a vast array of processes while outsourcing a vast array of systems and services. Through this frenetic reshaping, few organizations truly understand the nature of their new risk reality and how to successfully manage it.
In this interactive discussion we will:
- Explore the true nature of the enterprise cyber risk surface
- Discuss threats and regulations driving organizations to better manage their extended enterprise
- Share insights on how to better manage third-party risk (hint: good data!)
Executive boardrooms are intimate and interactive sessions designed to foster dynamic dialogue around a specific, strategic topic. These private, closed-door discussions encourage attendee participation and are limited to 15 attendees (seating priority is given to CISOs). To reserve your seat, please contact: Brad Campbell at 971-9785-070 or brad.campbell@evanta.com
November 12, 2019
Community Program Manager
For inquiries related to this community, please reach out to your dedicated contact.