New York CISO Executive Summit

Are you a musician? An outdoorsy type? A gamer? Join the New York CISO Governing Body and invited guests for a night of networking, dinner and drinks to discover which members of this executive community share your interests at one of our themed discussion spaces. 

We live in a world where everything is hybrid and the blend between personal, corporate, private and public is ever-changing and presents us with a host of new challenges. This has increased and complicated the attack surface and the pressure to converge tools and do “more with less” is at peak levels. We must meet this watershed moment with the right team, plans, and technology.

Join this interactive session to learn:

• How to build an effective plan for change without adding to the chaos
• What consolidation approaches save money without sacrificing security
• Use cases that deliver immediate value and efficiency while improving user experience

 For more than 10 years, organizations have been shifting their digital footprint to cloud computing. The ability to rapidly scale solutions in a cost-effective manner allows any organization to enhance their agility, improve application release timelines, and leverage additional computing resources on demand. While this has changed the way organizations manage their IT assets, the need for security remains just as strong. Throughout 2023, the Threat Research Unit at Qualys have been gathering data to uncover true cloud misconfigurations, and how to deal with them. 

 In this session, join Jonathan Trull, CISO at Qualys to look through this report and dive deeper on: 

• Various vulnerabilities your organization might not be aware of or prepared for
• 5 Risk Facts learned from cloud threat analytics reporting 
• Best practices in solidifying all aspects of your cloud program

You can't hope a diverse staff into existence. It takes action, effort, interest, attention, and often an open line of communication to those involved in the hiring process. Imagine a CISO reaching across the business and encouraging their colleagues in HR to give every candidate a fair shot. It's not just possible, it's proven. 

Through this true, applicable case study, you'll meet: 

• Diverse applicants nearly lost to faulty hiring practices
• Human Resource leaders working to perfect partnerships across the business
• CISOs called to construct a multicultural cyber workforce

Data is perhaps the most important enterprise asset there is. As organizations continue enabling hybrid workforces and adopting new tools (like generative AI applications), keeping sensitive data from leaking into the wrong hands has become a top priority for security teams and executives. Modern day organizations require an entirely new approach to security by focusing on data.

Join this session to discuss:

• How your peers are enforcing data-protection policies to meet compliance standards
• Best practices for preventing intentional and unintentional data privacy violations
• How a data-first approach can help reduce risk by providing visibility and control

Many organizations are moving too slowly towards addressing the human risk elements of security. At the heart of it, a misunderstanding of the human factor, with many believing the only contributors are knowledge, understanding and security behaviors. Research now suggests there are many more risk factors to investigate.

Join this boardroom to discuss and learn how to:

• Understand key human risk factors in cybersecurity
• Identify, influence and measure specific security behaviors to drive program effectiveness
• Improve the efficiency of security awareness programs at all workforce levels through automation

APIs accelerate digital transformation and are a critical component of every SaaS, web, and mobile application. APIs have proliferated so quickly that most organizations vastly underestimate the number of APIs in use, and existing mitigation solutions such as Web Application Firewalls (WAFs) fall short. As API attack frequency and complexity increases, how can organizations ensure their assets are protected?

Join this interactive discussion to learn:

• How to gain visibility into your entire API landscape
• How to test API security during development and fix issues before runtime
•  How security and development teams can work together around API security

Connect with like-minded peers in a one-on-one setting through Evanta’s Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

The cloud security landscape never stops evolving. Trying to keep pace will only get you so far. You'll need to stay ahead by highlighting risk, compliance, and collaboration strategies.

Join your C-level peers in an interactive discussion and begin:

• Navigating the challenge of prioritization between risk mitigation and compliance
• Evaluating the effectiveness of security tools in complex cloud environments
• Discovering ways to unify security and development teams

Incidents happen all the time, but not always for the same reason. Sometimes bad actors exploit vulnerabilities. Other times, it's your untested response plan slowing things down. It could be your team's tooling is mismanaged, delaying remediation. Work with a room of your peers to consider and solve three incident response scenarios in this highly-interactive, solution-focused session. 

Steve Grossman, CISO, NBA will lead you and your team as you:

• Discuss the leading challenges of incident response
• Consider what you can do to bolster your incident response playbook
• Gain perspective and an advantage on the modern threat landscape

As a CISO you're dealing with an ever-evolving set of threats, and trying your best to lean in on new concepts, new technologies and new cross-functional relationships - to help protect the business. Your plate is full, and that's a lot of new on new. We get it. So, it's time to peel back the curtain and discuss some critical topics that are keeping CISOs up night. 

Join your peers and dive into this open conversation on :

• Making the business case for cloud-delivered access - do you really need it, and who do you trust?
• Aligning with Networking leaders to address end user experience - It ain’t always pretty
• Balancing the need for innovation with the reality of the compliance check box

Recent Advancements in Artificial Intelligence (AI) are creating new ways of working and creating new business opportunities. Leveraging AI/ML in cyber and network security delivers much better outcomes for today’s technology leaders. Join us in this exclusive roundtable to hear about:

• Why a unified SASE approach maximizes the potential of AI
• How AI/ML are delivering better security, network and operational outcomes
• Best practices for delivering business value with SASE

For leaders, there’s nothing new about managing internal expectations on hyped technologies, but the recent advancements in AI have caused an increased and urgent demand for the evaluation and adoption of generative AI models. There is no question that these breakthroughs are just the beginning, but technology executives must temper expectations and ensure a thoughtful approach to building AI models that will add more value than risk.

Join this session to discuss:

• Opportunities and limitations in applying AI to security solutions
• Identifying and aligning a business need and use case for AI implementation
• Using native AI to secure the business amidst a quickly shifting landscape

At the turn of 2023, executives across the globe found themselves challenged, inspired and concerned by the overwhelming possibilities of generative AI. Today, we find ourselves in a new phase of the AI hype cycle. It's time to get real. But it'll take a room full of collaborating CISOs to pull knowledge from the noise.

Gather around a panel of your CISO peers to:

• Hear resonant recounts of AI acclimation
• Chime in with your proven methods for turning AI into a competitive advantage
• Collectively discern what is and isn't helpful for today's cyber leaders