Here’s the secret to creating a board presentation on cybersecurity, according to Victor Shadare, head of cybersecurity at the international publishing giant Condé Nast:
“The board doesn’t have time to look at detail as such. They want something that’s going to punch them in the face,” he said. Metrics that create a narrative and show how the business compares to competitors, the wider industry, and globally against all businesses give a clear picture that allows board members to set strategy.
Shadare, along with Orca Security advisory CISO Andy Ellis and Spire Security Vice President of Research Pete Lindstrom, will share cybersecurity metrics that matter as part of CSO’s Future of Cybersecurity Summit, taking place virtually July 19-20. The event, which focuses on elevating your organization’s protection strategy, will feature CSOs, CISOs, and security leaders and offer vital insights on the most pressing issues in security.
The event kicks off with a conversation with Blackstone CSO Adam Fletcher on confronting assumptions about SaaS security and adopting a shared responsibility model.
Brian Behlendorf, general manager of the Open Source Security Foundation, will explain a new effort backed by Amazon, Google, Microsoft and others to improve the security of open-source software. Later in the day, IDC Senior Research Analyst for DevOps Katie Norton will share tactics and research on incorporating security in the software development lifecycle.
Offering insight into modern cyberwarfare taking place between Russia and Ukraine will be Christopher Painter, former top cyber diplomat for the U.S. and now president of the GFCE Foundation Board, and Christopher Burgess, formerly of the CIA and now a CSO contributor. They will examine the potential effects of the invasion on critical infrastructure and what organizations can do to prepare for the threat.
Increasingly, CISOs are having to protect not only their companies but themselves, too. Legal experts will dissect the cybersecurity liability threats CISOs personally face as well offer practical tips for limiting exposure to litigation. Hear from Simon Fawell, a partner at Signature Litigation; Aravind Swaminathan, a partner at Orrick, Herrington & Sutcliffe; and Jack O’Meara, director and cyber litigation support lead at Guidehouse.
Pick up strategies for a creating a world-class cybersecurity center during an interactive workshop with Kathryn Knerler, MITRE Labs department manager and senior principal cybersecurity architect, and Ingrid Parker, manager of intelligence at Red Canary.
AAA National CISO Richard Latayan will lead a discussion on building resiliency into third-party relationships with Alex Attumalil, global CISO of Under Armour, and Ronald Banks, executive vice president and CISO of Texas Capital Bank.
Wrapping up the day, CN Assistant Vice-President and CISO Vaughn Hazen will share how to optimize investments in information security and the best ways to mitigate risk.
On July 20, the summit begins by tackling an issue facing many security leaders: burnout. Dr. Eva Selhub, an executive coach and resiliency expert, will advise on how to manage adversity and improve performance in the face of chaos. Later, she will answer questions in a live chat with attendees.
The day continues with Doug Fisher, SVP and CSO at Lenovo, who will share his strategies for strong security leadership. Mishu Rahman, head of cyber strategy, business risk, board governance and regulation at BNP Paribas, will discuss building agility to face emerging threats.
Sometimes the threats are close to home. Burgess returns along with Atlassian Chief Trust Officer Adrian Ludwig to examine insider threats and third-party risk.
One risk mitigation strategy is to move away from passwords to more secure protocols. FIDO Alliance Executive Director Andrew Shikiar will look at the passwordless future, including the use of passkeys as a sign-in alternative.
Throughout the summit, sponsors including Interos, LastPass and ManageEngine will offer thought leadership and solutions on subjects such as supply chain resilience, observability and risk; managing access for the modern workplace; and strategic legacy app modernization. Check out the full summit agenda here. The event is free to attend for qualified attendees. Don’t miss out – register today.
Agile Development, Data and Information Security, DevSecOps, IT Strategy, SaaS, Threat and Vulnerability Management