2019 NY Security Summit

The Risky Business of Third Party Risk Management

CISOs, CIOs, CROs are all being asked to measure the effectiveness of their information security programs often overlooking their greatest risk: third party resources. For every company this risk manifests in different forms: third party developed software; vendors/suppliers with access to their data; contractors...

Start this Session

Challenges with Real-time Correlation Hybrid Cloud and Legacy Environments

Devon Bryan - Federal Reserve System • •

As cyber defenders position themselves to support the strategic business directions of their organizations' consumption of cloud technologies, it is critical to have: Appropriate end-to-end visibility and monitoring; Threat detection for anomalous user or entity behaviors; Ability to detect risky configurations,...

Start this Session

The Challenges of Securing Critical Infrastructure in the Private Sector

Brian M. Harrell - U.S. Cybersecurity and Infrastructure Security Agency • •

Strong, reliable infrastructure is key to the nation's high standard of living, security, and strong economy. This includes systems like water and power, financial transactions, telecommunications, and so on. In short, critical infrastructure security and resilience is an integral to all of the systems that make our...

Start this Session

HSBC Whistleblower on Uncovering Fraud

Everett Stern - Tactical Rabbit • •

For at least half a decade, HSBC helped to wash hundreds of billions of dollars for drug mobs, including Mexico's Sinaloa drug cartel, as well as move money for terrorist organizations linked to Al Qaeda and Hezbollah and for Russian gangsters. Furthermore, HSBC helped countries like Iran, the Sudan and North Korea...

Start this Session

Advanced Threats: Raising the Bar on Cyber Defenses

Craig Harber - Fidelis Cybersecurity , Mike Krygier - NYC , Randy Sabett - Cooley LLP • •

From ransomware to infected devices and assaults on the critical infrastructure, organizations are increasingly encroached by advanced threats and threat actors. And security leaders are tasked with taking their traditional cyber defenses to the next level to mitigate the emerging risks. What are the defenses and...

Start this Session

Redefining Mobile Security (and Why it Works)

Eugene Liderman - Google • •

Google's Android is the most popular mobile operating system in the world, powering over 2.5 billion devices. In this exclusive session, Eugene Liderman, Director of Mobile Security Strategy, Google, outlines Android's multi-layered security strategy, which includes hardware and software protections, as well as...

Start this Session

GDPR, CCPA and Security in the New Privacy World

Michael La Marca - Hunton Andrews Kurth , Kristen Mathews - Morrison & Foerster LLP , Andy Roth - Intuit , Randy Sabett - Cooley LLP • •

U.S. organizations were barely GDPR compliant in 2018, when California unveiled its own privacy legislation, the California Consumer Privacy Act, which goes into effect on Jan. 1, 2020. Yet, this is but one of several privacy laws being enacted across the U.S., and it poses many questions about the role of security to...

Start this Session

Evolution of the Threat Landscape

Chris Hallenbeck - Tanium • •

The media continues to report that the threat landscape is evolving. But this is a common cliché that can smokescreen reality. In fact, significant security events tend to share notable commonalities. Regardless of whether the attack is a widely distributed banking Trojan extracted from a phishing email or a targeted...

Start this Session

Teaming-Up to Fight Cybercrime: The Power of Public/Private Partnership

James Bernard - Stifel , Paul Ferrillo - Greenberg Traurig, LLP , Dora Gomez - NY Metro InfraGard and HTCIA , Amit Patel - FBI • •

Teaming-up the public and private sectors to address cybercrime and cooperating with law enforcement is critical in reporting cybercrime to law enforcement agencies. This expert panel of InfraGard Members and FBI Agents will share how they have worked together on cybercrime investigations that affected both...

Start this Session

Ransomware Everywhere

Neal Conlon - AppGuard • •

Little-known before 2014, ransomware is now one of the most popular methods used by hackers to attack corporations. The recent attack on government entities are more publicized but private corporations have been struggling with ransomware for a few years now. Join Neal Colon to learn more about recent attacks, how...

Start this Session

The 3Ps of Third Party Risk: Prevention, Policies, Promises

Mark Sangster - eSentire • •

Independent research revealed that while 60% of firms have formal third party risk policies, nearly half have experienced a significant breach caused by a vendor. Why? Executives don't make vendor risk a priority or are too trusting. Learn from 600 IT and security leaders about top concerns around supply chain and...

Start this Session

Consumers Are Paying More Attention to Their Data - Why a Multi-Layered Security Approach Has Gotten Personal

Tim Horton - First Data • •

In today's digital environment, protecting sensitive information and sales transaction data is of critical importance. Technology and advanced loyalty programs are driving the collection of additional data, causing consumers to pay more attention to the types of data they are willing to share with merchants. In...

Start this Session

Fraud Prevention - How to Correctly Mix AI and Cyber Intelligence for Impact

Shaked Vax - IBM Security • •

Join a behind the scenes tour of the largest anti-fraud provider research operation. We will discuss how to interlace Machine Learning, cyber threat intelligence, and fraud analysis into agile and accurate fraud prevention. Taking a use case approach, we will demo a behavioral biometrics detection technology and...

Start this Session

Modern Identity: Unifying Access & Authentication

John Bennett - LastPass by LogMeIn • •

An overwhelming 92% of businesses are experiencing identity challenges, from lack of resources to lack of security experience. The biggest challenge? Balancing ease of use for employees with increased security for the business. These two goals are critical, yet always at odds. How can IT securely manage users - their...

Start this Session

State of the CISO

Stephen R. Katz, CISSP - Merrill Lynch and Citi , William Hugh Murray - Information Assurance Trainer • •

Given current, turbulent conversations around physical and cybersecurity, it's hard to get an exact pulse on the state of the industry and where to start shoring up corporate processes to protect information. But with business and personal safety on the line, it's become increasingly important to be able to identify...

Start this Session

Session Contributors

Ajoy Kumar

Executive Director, Depository Trust & Clearing Corporation

Read Bio

Amit Patel

Special Agent, FBI

Read Bio

Andy Roth

Chief Privacy Officer, Intuit

Read Bio

Brian M. Harrell

Assistant Director for Infrastructure Security, U.S. Cybersecurity and Infrastructure Security Agency

Read Bio

Chris Hallenbeck

CISO, Americas, Tanium

Read Bio

Christopher R. Hetner

Managing Director, Cyber-Risk Consulting, Marsh

Read Bio

Craig Harber

CTO, Fidelis Cybersecurity

Read Bio

Dena Bauckman

VP of Product Management, ZixCorp

Read Bio

Devon Bryan

Executive Vice President & CISO, Federal Reserve System

Read Bio

Diana Kelley

Cybersecurity Field CTO, Microsoft

Read Bio

Don Gray

Chief Technology Officer, PacketViper

Read Bio

Dora Gomez

Board Director, NY Metro InfraGard and HTCIA

Read Bio

Eugene Liderman

Director of Mobile Security Strategy, Google

Read Bio

Everett Stern

CEO & Intelligence Director, Tactical Rabbit

Read Bio

F. Ward Holloway III

Senior Director of Global Strategic Alliances, ForeScout

Read Bio

Franklyn Jones

Chief Marketing Officer, Cequence

Read Bio

James Bernard

Vice President/Investments, Stifel

Read Bio

Janet Scott

Executive Director of Cybersecurity Engineering, Merck

Read Bio

Jaret Osborne

Lead Solutions Engineer, Duo Security

Read Bio

Jeffrey Dant

Managing Director, Fraud Operations and Intelligence - Financial Crimes Unit, BMO Financial Group

Read Bio

John Bennett

GM of Identity & Access Management at LastPass by LogMeIn

Read Bio

Joyce Brocaglia

Founder, Executive Women's Forum

Read Bio

Julie Conroy

Research Director, Aite Group

Read Bio

Ken Suh

Media and Technology Lead, Cyber & Executive Risk (CyEx) Claims Team, Beazley

Read Bio

Kristen Mathews

Partner, Morrison & Foerster LLP

Read Bio

Kristin Judge

CEO, Cybercrime Support Network

Read Bio

Malcolm (M.K.) Palmore

VP, Field CSO, Palo Alto Networks

Read Bio

Mark Sangster

Vice President and Industry Security Strategist, eSentire

Read Bio

Markku Rossi

Chief Technology Officer, SSH Communications Security

Read Bio

Matt Cauthorn

VP of Security, ExtraHop

Read Bio

Michael La Marca

Associate, Hunton Andrews Kurth

Read Bio

Mike Krygier

NYC Deputy Chief Information Security Officer

Read Bio

Moriah Hara

CISO Board Advisor, Clearsky

Read Bio

Moshe Ishai

Co-Founder & General Manager, HolistiCyber

Read Bio

Nashira Layade

SVP, CISO, Realogy

Read Bio

Neal Conlon

Senior Vice President of Business Development, AppGuard

Read Bio

Paul Ferrillo

Partner and Shareholder, Greenberg Traurig, LLP

Read Bio

PJ Maloney

Senior Sales Executive, DXC Technology

Read Bio

Randy Sabett

Special Counsel, Cyber/Data/Privacy Practice Group, Cooley LLP

Read Bio

Randy Trzeciak

Director, CERT Insider Threat Center, CMU

Read Bio

Rocco Grillo

Managing Director, Alvarez & Marsal

Read Bio

Ronald Raether

Partner, Troutman Sanders

Read Bio

Ryan Davis

CISO, Veracode

Read Bio

Shaked Vax

Trusteer Products Strategist, IBM Security

Read Bio

Stephen R. Katz, CISSP

Former CISO, Merrill Lynch and Citi

Read Bio

Ted Augustinos

Partner, Locke Lord LLP

Read Bio

Tim Horton

VP, Global Merchant Security and Compliance Solutions, First Data

Read Bio

Tony Cole

Chief Technology Officer, Attivo

Read Bio

William 'Buck' Houston

Director, WW Business Development, Micro Focus Global Alliances

Read Bio

William Hugh Murray

Management Consultant and Information Assurance Trainer

Read Bio