New York CISO Community
Executive Summit

Executives, speakers and supporting partners of the New York CISO Executive Summit are invited to an informal reception hosted by the members of the community's Governing Body for an evening of drinks and peer networking to connect before the summit.

Today’s CISOs are tasked with securing the cloud, digital transformation, and now, AI. So how will CISOs guide with a secure AI culture across their company, fostering a culture of safe AI adoption and secure use of corporate data?

Join this keynote to discuss: 

• As more and more companies adopt generative AI, how CISOs reduce the risks of AI-generated code
• How CISO can secure their sensitive data from being captured and shared by AI
• Setting the tone and the culture for the organization to be more secure when using AI

Let’s face it: Not all AI is created equal. But when used properly, data science and AI can turn the tables on cyberattacks in favor of defenders. Unveil how AI can transform the SOC from manual and mundane tasks and empower analysts to stay ahead of the evolving landscape.

Join Hitesh Sheth, Chief Executive Officer at Vectra AI, to discover:

• Navigating the merits of AI methodologies
• Understanding how integrated signals reduce alert noise and surfaces real threats
• Empowering humans to move at the speed of hybrid and multi-cloud attackers

CISOs spend a considerable amount of time and energy quantifying and qualifying security posture in an effort to engage and align with board members/executive leadership. But how effective are those efforts in communicating the full story of cyber risk?

This fireside chat-style session brings together CISOs across multiple industries to share their insights on ensuring board briefings not only resonate but inspire action, as well as facilitate an open and interactive conversation about:

• Balancing education and translation with providing critical information/updates
• Adapting your style to the "personality" of your audience
• Dealing with the inevitable curveballs that will come up

Security not only protects an organization’s valuable assets but serves as a catalyst for innovation, fostering trust, and enabling new business models. Simultaneously, cloud technology offers flexibility, scalability, and cost-effectiveness, shaping how businesses operate, grow, and innovate. However, navigating these areas effectively requires an understanding of the benefits, challenges, and the trends that are driving their evolution if they're going to drive real business outcomes.

Join this session to discuss:

• Research-backed viewpoints on the relationship between security and innovation
• Establishing an aligned vision and culture that recognizes the strategic significance of security
• Navigating cloud security options to unite practitioners and leadership for better results

It’s an all-too-familiar scenario: Thousands of vulnerabilities are identified across your hybrid ecosystem. How do you identify and prioritize remediation for the vulnerabilities most likely to exploit your cloud and on-prem environments?

Join this session to discuss:

• Prioritizing actively exploited vulnerabilities
• Measuring the value of a vulnerability to an attacker
• Communicating risk posture cross-functionally

Generative AI swept into the business world like few technologies in recent years, and CISO’s are increasingly on the front lines to ensure that their organizations can leverage GenAI capabilities without exposing the organization to heightened levels of cyber risk.

In this session, Gartner Executive Partner Pierre Gourdon will lead a discussion on how CISOs can effectively manage the implementation of these technologies into their enterprises while also preparing for a rapidly evolving cyber threat landscape, addressing pressing questions such as:

• What approaches are CISOs taking to balance enabling teams to experiment and innovate with generative AI tools while safeguarding the business?
• What use cases are CISOs exploring to leverage Generative AI within their security programs?  
• How are CISOs preparing for/protecting against AI-powered attacks?

Seating priority during this executive boardroom is given to Gartner clients and Governing Body members. To inquire on reserving a seat, please contact Jess Bucca, Sr. Content Manager, at jess.bucca@evanta.com.

Connect with like-minded peers in a one-on-one setting through Evanta’s Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

You’ve likely seen the recent zero trust guidance from the NSA – they advise segmentation to stop lateral movement but also position micro-segmentation as exclusive to mature, "advanced” organizations. This is due to its historical complexity, extensive implementations, and cost. The NSA is wrong on this point however: micro-segmentation is now accessible to organizations of any size and maturity level and can be deployed easily and effectively without breaking anything. 

Chris Turek, CIO of Evercore, joins Benny Lakunishok, CEO and Co-Founder of Zero Networks, to share his experience deploying micro-segmentation to halt lateral movement and effectively defend against ransomware, and have an open conversation about implementing an actionable segmentation strategy, including:  

• The key steps to achieve automated segmentation (full IT + OT) in just 30 days  
• How you can restrict traffic to essential assets without breaking anything
• The latest in just-in-time MFA that can be applied to anything – and blocks ransomware in its tracks

The path to cloud security is complex and dictated by a whole host of variables unique to each organization. Even though we've been talking about securing the cloud for many years now, achieving maturity here still feels like a moving target. Cloud-first, cloud-native, multi-cloud, hybrid cloud -- whatever the organization's strategy is, the CISO holds the responsibility for driving a culture that continues to put security at the center of cloud transformation.

This will be an interactive session designed to spark conversation and collaboration among peers on cloud security topics, including:

• Enhancing security and cost-effectiveness across diverse cloud environments
• Implementing – and then elevating – cloud security initiatives across a global footprint
• Solving for the continued shortage of high-level cloud security skills

The explosion of data, and continued adoption of hybrid work, multi-cloud, and SaaS have eroded away the classic silos that once existed between Security and Networking teams. As data remains at the epicenter of innovation, CISO and Infrastructure leaders are working more closely together than ever to allow for fast, secure access to IT.  Technologies like Secure Access Service Edge (SASE) have skyrocketed in popularity, creating a future where the fates of both teams are more intertwined than we know.

How can CISOs foster trust and collaboration between these two dynamic groups - with a mind towards enabling the business?

Join this session to discuss:

• How the changing dynamic is forcing CISOs to have to think differently
• Company initiatives where CISOs should take lead, and those where Networking should take lead
• Emerging technologies that serve as a win-win for both teams and success stories of security and networking winning together

Shadow AI introduced a new layer of risk in a time when security leaders are already grappling with the formidable challenges of managing hidden technical debt and uncovering shadow IT. Today’s digital landscape requires a new approach to risk and governance – one that identifies the shadows already existing in your organization and stops future shadows emerging as you harness the power of emerging technologies.

Join this session to discuss:

• Uncovering existing hidden technical debts and shadow IT that inhibit agility, innovation and security
• Establishing centralized risk frameworks and governance that are enforceable and scalable
• Involving the C-suite and end users in establishing and understanding protections to deter rogue IT and AI

With the sensitivity of privileged accounts, unpatched vulnerabilities and an extensive remote workforce, robust and automated identify security is essential to securing your most critical systems and data. Implementing this is a journey, not a quick fix.

Join this interactive boardroom to:

• Discuss the difference between strong identity solutions and simple password management
• Address different approaches to solving Privilege Access Management
• Gain executive buy in from legal, HR and IT on effective solutions

Join us for an informal networking break for women in cybersecurity leadership and their allies to connect and build relationships with like-minded leaders in the greater New York area who are making an impact in their organizations and communities. Come prepared to share ideas, inspire and be inspired, and forge new connections that can help empower each other to achieve your goals and broaden your perspectives.

This session is intended for women in the New York CISO community leading the cybersecurity function at their organizations (CISO/equivalent) and women reporting directly to the CISO/equivalent. 

When explaining the role of the CISO and security teams, you'll often hear analogies likening them to the brakes on a car, or a doctor offering diagnoses. And while these comparisons certainly can be true at times, are they really driving business outcomes?

In this thought-provoking closing keynote session, Nick Vigier, CISO at Oscar Health Insurance, will bring the New York CISO community together to challenge the ways they think and talk about their roles in an effort to shift from diagnosing to health and resilience.