2019 Charlotte
CISO Roundtable

#IANSCharlotte #IANSEvents

Wednesday, September 25, 2019
Charlotte Convention Center, 501 South College Street, Charlotte, NC

This 1-day roundtable at the Charlotte Information Security Forum is designed exclusively for CISOs and senior level information security executives to learn and share insights in a confidential setting. Join us for these high-level leadership sessions:

Speaking Your Board’s Language: A Security Leader’s Perspective – Hear from Allyn Shaw on how he interacts with the BofA Board, what works and what falls flat.

Leveraging MITRE ATT&CK for Coverage Mapping and Controls Effectiveness – IANS and TrustedSec's Rockie Brockway will set a baseline understanding of ATT&CK and provide insights for leveraging the framework.

Cloud Migration Strategies: Lift and Shift, Don’t Lift and Pray – IANS Faculty member Mike Rothman will discuss some best practices for migrating even the most staid organizations to the cloud without compromising security.

Leading in a Chaotic, Complex Environment: Lessons from a U.S. Special-Ops Officer – Retired Navy SEAL Commander Brendan Leary will introduce techniques for becoming a better leader and more decisive decision maker in chaotic, complex situations. 

Managing the Media During an Incident: A Brunswick Group Workshop – Prepare for the publicly facing role as a CISO and learn recommendations on putting your best foot forward when communicating with the media.

Trends in Hiring and Compensation: A Panel Discussion of CISO Executive Recruiters – Two of the market’s leading CISO executive recruiters will discuss career development, hiring and compensation trends, and negotiation best practices.

Let your colleagues know you're coming!

Register Now

* Required Fields

CISO Roundtable Agenda

9:50 AM - 10:20 AM

CISO Roundtable Opening Remarks and Introductions

allyn-shaw

Allyn Shaw

Global Information Security, Chief Operating Officer, Bank of America

Allyn L. Shaw is the Global Information Security (GIS) Chief Operating Officer at Bank of America. He is responsible for business operations as well as managing risk, strategy, finance, resources, performance and metrics management. Allyn and his team are also responsible for the development and implementation of an integrated GIS workforce strategy that delivers on future-state resource, location and learning goals.

Before moving to GIS, Allyn was the Workspace Services Chief Operating Officer in the Chief Technology Organization. In this role, he was responsible for aligning the technology initiatives of the workforce, marketing, and financial and risk controls. His team enabled the delivery of end-to-end technology and operations, which supported desktop platforms, productivity applications, mobility services, communication and collaboration technologies for the company.

Prior to joining Bank of America in 2004, Allyn led Enterprise Voice Network Services at Countrywide. He managed a team responsible for real-time communications, mobility, interactive response, contact centers, unified communications, trader voice, carrier transport services globally, and voice, web and video conferencing.

Allyn is a passionate advocate for inclusion, sponsorship and the creation of successful diverse teams. He serves on Bank of America’s LGBT Executive Council and the Black Executive Leadership Council. Allyn is the executive sponsor for the Charlotte, NC chapter of the bank’s Black Professional Group, a member of the Global Technology & Operations Diversity & Inclusion Council and a member of the Women in Technology & Operations Global Advisory Board. Within the community, Allyn serves on the board of Out and Equal Workplace Advocates. 

Allyn is a California native, who currently lives with his husband in Charlotte, NC, where they enjoy music, tennis, travel, and spending time with friends and family.  

Phil Gardner

Founder & Chief Executive Officer

Having built IANS’ end-user research offering, Phil now oversees all strategic and operational decisions at IANS. Phil began his career in security with seven years with the U.S. Navy as a Strike Fighter Pilot & Ordnance Requirements Officer. After receiving a Masters in Business Administration from Harvard Business School, he joined Goldman, Sachs & Co. in Mergers & Acquisitions and later became an associate with McKinsey & Company in Boston, MA. In 1996, Phil became one of the founders of Provant, Inc., a publicly traded training company serving the Fortune 1000 and Federal Government. He left Provant in 2000 to launch IANS. He graduated at the top of his class in US Navy Flight School.

10:20 AM - 11:00 AM

Speaking Your Board’s Language: A Security Leader’s Perspective

with Allyn Shaw and Phil Gardner

Board Members privately remark that they too often leave a CISO’s Board presentation more confused than when they started. CISOs often refer to their Board meetings as ‘hostile territory’. Clearly, we need to get better at communicating.

Allyn Shaw, Managing Director and COO of Global Information Security at Bank of America, will share how he interacts with the BofA Board – what works and what falls flat. The discussion will be specific and address:

  • How do you prepare for a Board session? Who do you pre-brief?
  • How long should your Board presentation be?
  • Should your Board presentation use a risk framework and, if so, which one?
  • When should you use benchmarking data with the Board? When is it a bad idea?
11:00 AM - 11:15 AM

Morning Networking Break

Rockie Brockway

Rockie Brockway

Practice Lead, Office of the CSO, TrustedSec

Rockie is an experienced 25-year veteran of IT/IS and highly technical Information Security Analyst, Design Architect/Assessor specializing in Business Systems/Impact Analysis. Through an understanding of business needs in relation to protecting business critical data (Brand Protection), he assists organizations in achieving their desired business outcomes. He has consulted in nearly every vertical and marries a strong technical background with outstanding creativity, communication skills, leadership, team building/teamwork skills and business acumen.

colin-snow

Collin Snow

Area Vice President, IANS

Collin is an Area Vice President at IANS and currently responsible for overseeing, managing and growing IANS End User Business Practice in the Mid-west, Mid-Atlanta and Southern portions of the U.S. Collin obtained his Bachelor of Science from James Cook University in Australia and holds graduate certificates in Applied Project Management and Business Analysis from Boston University.

11:15 AM - 12:00 AM

Leveraging MITRE ATT&CK for Coverage Mapping and Controls Effectiveness

with Rockie Brockway and Collin Snow

MITRE’s ATT&CK™ is a framework that supports information security teams as they seek to improve their posture. However, many security leaders do not understand how to use the ATT&CK framework to its fullest.

IANS Territory Leader Collin Snow along with Rockie Brockway, Practice Leader at TrustedSec, will co-lead a session to set a baseline understanding of ATT&CK, and provide insights for leveraging the framework to improve:

  • Threat Modeling
  • Threat Hunting
  • Purple Teaming
  • Product Evaluations

Using a client example, Rockie will also discuss leveraging ATT&CK to assess coverage mapping, controls effectiveness, and testing & validation.

You will walk away from the session with detailed examples and practical applications.

mike-rothman

Mike Rothman

IANS Faculty

Mike has been in the information security industry for over 10 years. He is currently President and Analyst at Securosis, a firm exclusively focused on information security and research analysis. He started Security Incite in 2006 to provide the "voice of reason" in what was considered an overhyped, yet underwhelming security industry. After a brief detour as SVP, Strategy and Chief Marketing Officer at eIQNetworks, Mike joined Securosis at the start of 2010 with a "rejuvenated cynicism" about security. In 2007, Mike published "The Pragmatic CSO" to introduce technically oriented security professionals to the nuances of what is required to become a senior security professional.

12:00 PM - 1:00 PM

Lunch & IANS Faculty Briefing: Cloud Migration Strategies: Lift and Shift, Don’t Lift and Pray

with Mike Rothman

As wonderful as cloud-native deployments are, migrating existing resources to the cloud is an often-painful reality and creates serious security challenges. IANS Faculty member Mike Rothman will discuss some best practices for migrating even the most staid organizations to the cloud without compromising security. Mike’s briefing will address:

  • Understanding the big sticking points that inhibit successful migrations
  • Learning how to prioritize security in your cloud migration
  • Evaluating the most successful (and least successful) lift-and-shift patterns
1:00 PM - 2:00 PM

Solution Provider Power Hour

Executives from SentinelOne and two other venture backed vendor companies will deliver 15-minute technical presentation to the assembled CISOs.

Following the briefing, IANS will facilitate a closed door, CISO-only discussion of the value and drawbacks of the vendor offered solutions.

Brendan Leary

Brendan Leary

McChrystal Group, Senior Principal

Brendan Leary is a Senior Principal at McChrystal Group, where he works as part of our Advisory Services team. Brendan has supported companies in several industries and is currently advising an international wealth management company.

Brendan has deep experience in leadership, team building, planning, crisis and deliberate decision-making, and operational execution. He has driven organizational transformation and achieved results at the executive-level in every organization in which he has served. Recently transitioned from the Naval Special Warfare community, Brendan has 21 years of experience leading SEALs and other special operations units. His diverse military career has included counterterrorism, undersea operations, contingency operations in Liberia, combat operations in Afghanistan and Iraq, and counter-insurgency and stability operations in Africa.

Prior to joining McChrystal Group, Brendan was the Deputy Commander of an 1,800-member special operations organization with nine subsidiaries and regional responsibilities on three continents. He has led, mentored and improved high-performing teams to execute sensitive missions, build strategic relationships, and develop effective technical solutions in complex, dynamic, and high-risk environments.

Brendan earned a Bachelor of Science degree from Springfield College and a Master of Science degree in Military Strategic Studies from the Marine Corps University.

2:00 PM - 3:10 PM

Leading in a Chaotic, Complex Environment: Lessons from a U.S. Special-Ops Officer

with Brendan Leary

Retired Navy SEAL Commander Brendan Leary will introduce techniques that help you become a better leader and more decisive decision maker when managing chaotic, complex situations.

Brendan will start the session with a case study from ‘down range’ – how he and a number of Special Operations officers turned the tide on the Iraqi insurgency in 2009-2011. Drawing from their lessons, this session will offer a blueprint for how to lead in a muddled, fast-changing environment with incomplete, often contradictory, data.

3:10 PM - 3:20 PM

Afternoon Networking Break

3:20 PM - 4:20 PM

Managing the Media During an Incident: A Brunswick Group Workshop

CISOs are increasingly public-facing executives – often in post-breach media briefings or other high-stakes situations. This Brunswick Group's workshop starts with an analysis of post-breach video clips and then pivots to recommendations on putting your best foot forward in working with the media. Topics include:

  • The CISO’s new dual external and internal role
  • Telling your story and honing your message
  • Dealing with traps and left-field questions
  • How to stay on message and avoid being sidetracked
Matt Comyns

Matt Comyns

Managing Partner, Caldwell Partners

Matt Comyns is managing partner of Caldwell Partners' Cyber Security Practice and a member of the Stamford office. His focus is on recruiting chief information security officers and next-level-down top lieutenants in information security for large global corporations and fast-growing private companies, as well as cyber security consultants for leading professional services firms and top executives for cyber security technology companies.

Matt previously co-led Russell Reynolds Associates’ Global Cyber Security Practice, within the firm’s Technology Sector. Prior to joining the executive search industry, he served as CEO of Pacific Epoch, a consulting firm that specializes in market intelligence and research for U.S.-based companies seeking to invest in and expand into China—until the completion of the firm’s sale. Prior to that, he was a founding partner of BlackInc Ventures, a strategic advisory firm providing clients in the digital media sector with leading outsourced solutions for business, sales, and corporate development.

Before launching BlackInc Ventures in 2004, Matt worked with CNET Networks Inc. for nearly seven years, holding various positions including senior vice president/publisher of News.com, vice president of business development, and director of business development at Snap.com. He has also served as a sales manager for Dow Jones Interactive in Asia and as a founding board member of The Online Publishers’ Association.

Matt holds a BA in political science from Bucknell University and is conversational in Mandarin. He previously served as a member of the Board of Directors for Music National Service, a national nonprofit organization and movement that supports music as a strategy for public good.

Phil Gardner

Founder & Chief Executive Officer

Having built IANS’ end-user research offering, Phil now oversees all strategic and operational decisions at IANS. Phil began his career in security with seven years with the U.S. Navy as a Strike Fighter Pilot & Ordnance Requirements Officer. After receiving a Masters in Business Administration from Harvard Business School, he joined Goldman, Sachs & Co. in Mergers & Acquisitions and later became an associate with McKinsey & Company in Boston, MA. In 1996, Phil became one of the founders of Provant, Inc., a publicly traded training company serving the Fortune 1000 and Federal Government. He left Provant in 2000 to launch IANS. He graduated at the top of his class in US Navy Flight School.

4:20 PM - 5:00 PM

Trends in Hiring and Compensation: A Panel Discussion of CISO Executive Recruiters

with Matt Comyns and Phil Gardner

In our final session, IANS CEO Phil Gardner will moderate a discussion with two of the security industry's leading CISO executive recruiters. The session will focus first on career development and then move toward hiring, compensation trends and negotiation best practices. We'll discuss:

  • What traits do recruiters look for in high performing CISOs?
  • What does it take to advance to the Fortune 500 ranks?
  • Has my compensation kept up with the market?
  • What three negotiation tips should I use for my next position?
5:00 PM - 6:00 PM

Networking Reception

After spending a day sharing ideas with your peers, join us for a networking reception to unwind and share insights from the day.

General Forum Opening

7:30 AM - 8:30 AM

Registration & Breakfast

Come check in to receive your program and CPEs while enjoying a complimentary continental breakfast.
8:30 AM - 8:45 AM

IANS Welcome & State of the Industry

Come join us as we welcome you to the Forum.
allyn-shaw

Allyn Shaw

Global Information Security, Chief Operating Officer, Bank of America

Allyn L. Shaw is the Global Information Security (GIS) Chief Operating Officer at Bank of America. He is responsible for business operations as well as managing risk, strategy, finance, resources, performance and metrics management. Allyn and his team are also responsible for the development and implementation of an integrated GIS workforce strategy that delivers on future-state resource, location and learning goals.

Before moving to GIS, Allyn was the Workspace Services Chief Operating Officer in the Chief Technology Organization. In this role, he was responsible for aligning the technology initiatives of the workforce, marketing, and financial and risk controls. His team enabled the delivery of end-to-end technology and operations, which supported desktop platforms, productivity applications, mobility services, communication and collaboration technologies for the company.

Prior to joining Bank of America in 2004, Allyn led Enterprise Voice Network Services at Countrywide. He managed a team responsible for real-time communications, mobility, interactive response, contact centers, unified communications, trader voice, carrier transport services globally, and voice, web and video conferencing.

Allyn is a passionate advocate for inclusion, sponsorship and the creation of successful diverse teams. He serves on Bank of America’s LGBT Executive Council and the Black Executive Leadership Council. Allyn is the executive sponsor for the Charlotte, NC chapter of the bank’s Black Professional Group, a member of the Global Technology & Operations Diversity & Inclusion Council and a member of the Women in Technology & Operations Global Advisory Board. Within the community, Allyn serves on the board of Out and Equal Workplace Advocates. 

Allyn is a California native, who currently lives with his husband in Charlotte, NC, where they enjoy music, tennis, travel, and spending time with friends and family.  

Phil Gardner

Founder & Chief Executive Officer

Having built IANS’ end-user research offering, Phil now oversees all strategic and operational decisions at IANS. Phil began his career in security with seven years with the U.S. Navy as a Strike Fighter Pilot & Ordnance Requirements Officer. After receiving a Masters in Business Administration from Harvard Business School, he joined Goldman, Sachs & Co. in Mergers & Acquisitions and later became an associate with McKinsey & Company in Boston, MA. In 1996, Phil became one of the founders of Provant, Inc., a publicly traded training company serving the Fortune 1000 and Federal Government. He left Provant in 2000 to launch IANS. He graduated at the top of his class in US Navy Flight School.

8:45 AM - 9:30 AM

Building a Diverse, Global InfoSec Team: A Fireside Chat with BofA’s Allyn Shaw

with Allyn Shaw and Phil Gardner Bank of America’s Global Information Security (GIS) is cutting edge and diverse with over 2,500 professionals working to protect the bank and its clients. Join Allyn Shaw, BofA’s GIS Chief Operating Officer, and Phil Gardner, IANS’ Founder & CEO, for a fireside chat where Allyn will discuss how he architected this global team; where and how they found extraordinary talent; and how diversity, equity and inclusion became a competitive differentiator for BofA.
9:30 AM - 9:50 AM

Networking Break

Join your peers and transition to the CISO Roundtable for a day of closed-door, high-level sessions.

2019 Charlotte Facilitators

Phil Gardner

IANS Founder & Chief Executive Officer

Having built IANS’ end-user research offering, Phil now oversees all strategic and operational decisions at IANS. Phil began his career in security with seven years with the U.S. Navy as a Strike Fighter Pilot & Ordnance Requirements Officer. After receiving a Masters in Business Administration from Harvard Business School, he joined Goldman, Sachs & Co. in Mergers & Acquisitions and later became an associate with McKinsey & Company in Boston, MA. In 1996, Phil became one of the founders of Provant, Inc., a publicly traded training company serving the Fortune 1000 and Federal Government. He left Provant in 2000 to launch IANS. He graduated at the top of his class in US Navy Flight School.

Event: Charlotte Convention Center

501 South College Street, Charlotte, NC 28202

Hotel: The Westin Charlotte

601 S College St, Charlotte, NC 28202

Room Rate:

$289

per night plus tax

Attendee Contact

ians@iansresearch.com

Check out IANS other upcoming events