Mike is the CEO of Tomorrow, a global consultancy on designing companies for the 21st century. He advises leaders on how to thrive in the current era of disruptive technological change. Mike’s bestselling books include Futuretainment and The Dictionary of Dangerous Ideas. Each week he interviews provocative thinkers, innovators and troublemakers on his weekly podcast, ‘Between Worlds’. A true nomad, Mike travels over 300 days a year worldwide, researching trends, collecting innovation case studies and presenting on the future of business.
Todd Fitzgerald has built and led information security programs for 20 years. He was named 2016–17 Chicago CISO of the Year, ranked a Top 50 Information Security Executive, has authored three books – Information Security Governance Simplified: From the Boardroom to the Keyboard, CISO Leadership: Essential Principles for Success, and E-C Council Certified Chief Information Security Officer Body of Knowledge – and has contributed to a dozen others. He has held senior leadership positions at Northern Trust, Grant Thornton International, Ltd, ManpowerGroup, WellPoint (now Anthem) Blue Cross Blue Shield National Government Services, Zeneca/Syngenta, IMS Health and American Airlines. He earned a BS from the University of Wisconsin–La Crosse and an MBA with highest honors from Oklahoma State University.
We have entered into a new era where understanding privacy is no longer just the domain of the Data Privacy Officer. CISOs, information/cybersecurity leaders, and security professionals alike must understand ‘the language of privacy’ to adequately protect the information assets. Recent events such as social media platform privacy concerns, government officials seeking access to information on our devices, and General Data Protection Regulation (GDPR) impact have accelerated the need to ask the tough questions. This session will equip the security professional an understanding of what this ‘privacy stuff’ is all about.
Lawrence Dietz, is an attorney, information security professional, retired Colonel (US Army) and instructor for American Military University. As such he has addressed privacy, crime and national security from multiple vantage points. Dietz counsels private firms and is a long standing consultant to the Defense Information School. A sought after speaker Dietz is a regular at RSA where his April 2018 presentation was “The GDPR is only for the EU – right?” He is a member of the Bar of the US Supreme Court, California and the District of Columbia and pro bono part time judge in Small Claims Court. COL Dietz has been an instructor at American Military University since 2009 where he teaches intelligence and cyber courses.
The EU’s GDPR and other privacy and breach laws around the world are fueling the conflict between privacy, crime and national security. The use of Social Media by ISIS as a recruiting tool and allegedly by Russia to influence the US Presidential election have brought this conflict to a head. On the one hand governments have a duty to protect their citizens and on the other they must insure national security through intelligence collection and law enforcement. Historically these three areas are thought of as independent universes. In this session you'll learn how they are actually all connected.
Chris Pierson is the Founder and CEO of Binary Sun Cyber Risk Advisors, providing cybersecurity guidance to boards and C-suites. He is a globally recognized Cybersecurity Expert and Entrepreneur with successful exits, and serves on advisory boards. He also serves on DHS’s Data Privacy and Integrity Advisory Committee and Cybersecurity Subcommittee and is a Distinguished Fellow of the Ponemon Institute. Previously, Pierson was a Founding Executive and CISO of FinTech company Viewpost and the first Chief Privacy Officer for the Royal Bank of Scotland’s (RBS) US banking operations. Pierson was also an Attorney for Lewis and Roca where he founded its cybersecurity practice. Pierson is a sought-after keynote Speaker on cyber and Board Advisor for startups, and is frequently quoted by the media.
Everywhere we go, cameras and facial scanning technologies are being implemented. Now it is on our phones. Chris will discuss the benefits and concerns of facial scanning software from a security and privacy perspective. In this session, you will learn where the technology is, the privacy concerns and impacts, security enhancements, and how to mitigate concerns of onward use of this data for other purposes.
Chester Wisniewski has been involved in the information security space since the late 1980s. He is currently a Principal Research Scientist in the Office of the CTO at Sophos. Wisniewski divides his time between research, public speaking, writing and attempting to communicate the complexities of security to the press and public in a way they can understand.
We often hear that malware attacks are characteristic of country Y and nation-state X. Some companies even restrict connections to and from certain countries. Does this work? Chester Wisniewski used the data from SophosLabs to look at where the threats are coming from and whether location matters. This talk will present his findings along with advice on how threat location data can aid security policies.
Don Anderson is the Senior Vice President and Chief Information Officer (CIO) at the Federal Reserve Bank of Boston. In this capacity, he is responsible for the Federal Reserve System’s Internet Cyber and Network Security services and Financial Management Technology services, the Bank’s IT functions, Real Estate Services, and Law Enforcement units. Don is currently a member of the Bank’s Executive Committee and represents the Bank on the System’s CIO committee. In 2017, Don was awarded the Boston CIO of the Year ORBiE award by the Boston CIO Leadership Association. He is a frequent speaker on Cybersecurity, Financial Technology and Digital Transformation.
The amount of data and intelligence being collected on users, customers, and even employees and is growing at a substantial rate and quickly becoming an organizations crown jewels that now must be protected. This session will discuss how this increasing collection of data can be used to improve cyber security outcomes, while still respecting an individual’s privacy.
Masha Sedova is an industry-recognized people-security expert, speaker and trainer focused on engaging people to be key elements of secure organizations. She is the co-founder of Elevate Security delivering a behavioral-science based platform that can measure, motivate, and educate employees on security behaviors that prevent breaches. Before Elevate, Masha was a security executive at Salesforce where she built and led the security engagement team focused on improving the security mindset of employees, partners and customers. In addition, she has been a member of the Board of Directors for the National Cyber Security Alliance and regular presenter at conferences such as Blackhat, RSA, ISSA, Enigma and SANS.
By driving vulnerability reporting through positive incentives and behavioral science, one can enable a “safe to fail” culture with improved results for incident detection and anti-phishing.
Summer is the Technical Director of Cybersecurity Risk & Resilience in the CERT at Carnegie Mellon University, where she is responsible for a research and development portfolio focused on improving the security and resilience of the Nation’s critical infrastructure and assets. She has 18 years of experience in software engineering, cybersecurity, and technical management. Summer currently teaches two graduate level courses on Information Technology Project Management and Cybersecurity Policy at the CMU Heinz School. She is also the Technical Sponsor of the CISO Executive Certificate Program, the lead for Cyburgh, PA and a Cybersecurity Fellow for the Center for Strategic and International Studies.