2021 Minneapolis Virtual CISO Roundtable

Agenda

Agenda

8:55 AM - 9:15 AM

IANS Opening Remarks and Introductions

Aaron Charfoos

Partner, Litigation Department, Privacy and Cybersecurity Practice

Aaron Charfoos is an accomplished privacy and data protection trial lawyer. He regularly guides clients through high profile incident response, privacy litigation, regulatory enforcement actions, coordinates crisis communications and advises on Coordinated Vulnerability Disclosures. Aaron litigated his first privacy case in 2010, building on a decade of experience in patent and technology cases. Aaron also translates this experience into pre-breach preparation and consultation.

Behnam Dayanim

Global Chair, Privacy and Cybersecurity Practice

Behnam Dayanim is based in Paul Hastings’ Washington, DC, office where he serves as global chair of the firm’s Privacy and Cybersecurity practice, chairs its Advertising & Gaming practice, and is a member of the firm’s Fintech & Payments and National Security practices. His work in cybersecurity and privacy includes regulatory counseling and compliance and breach and regulatory investigations. He regularly practices before the Federal Trade Commission, state attorneys general and financial services regulators on cybersecurity matters.

9:15 AM - 10:00 AM

The Changing Landscape in Cybersecurity, Privacy, and Risk Management

with and

Behnam Dayanim and Aaron Charfoos, Partners in the Privacy & Cybersecurity Practice for Paul Hastings in DC, will discuss the business and privacy implications of today’s cyber headlines. Dayanim and Charfoos will speak from their work handling cases for dozens of Fortune 500 companies to provide a look at how regulators and courts are applying privacy law in real-world settings. They’ll discuss:

The privacy and legal implications of software supply chain attacks.
The post-breach mistakes CISOs make that cause legal problems for the company and get them fired.
Changes to U.S. federal & state privacy laws – both new legislation and shifts in enforcement – and guidance on how CISOs can keep pace with frequent regulatory updates.

10:00 AM - 10:10 AM

Solution Provider Case Study #1

Dr Nashater Deu Solheim

CEO, Progressing Minds

Dr. Nashater Deu Solheim is CEO of Progressing Minds and author of “The Leadership PIN Code- Unlocking the Key to Willing and Winning Relationships”, which debuted on the 2020 Forbes list of 8 books “..that will change the way you handle relationships”. She is an HBR contributor, executive coach on leadership influence, and a keynote speaker on her experience as a psychologist working with psychopaths, the serving military and with leaders in business settings. She is an accomplished moderator on the international stage. Nashater has over 25 years of practical business experience across diverse sectors for governments, global corporate, SMEs and with entrepreneurs. Nashater has held executive leadership positions within strategy, and leadership development in international corporations and SMEs. She holds a doctorate in Psychology from the UK and trained as an Expert Negotiator at Harvard Law School.

10:10 AM - 10:55 AM

Influencing Beyond Your Direct Reports – Psychology Lessons from Work with Criminals, the Military and the C-Suite

with

The CISO job demands the ability to influence stakeholders across lines of business. In this session, Dr. Nashater Deu Solheim will tap into her experience practicing psychology with dangerous criminals, serving in the defense industry and working as an executive in the oil and gas sector to outline a repeatable methodology for influencing others during conversations. She’ll:

Demonstrate real-world examples of how influencing and negotiation skills affect a wide range of business interactions.
Present a framework for consistently asserting influence in conversations with individuals who are not direct reports.
Provide opportunities to practice the framework with peers through role-playing and workshopping during the session.

11:00 AM - 11:10 AM

Solution Provider Case Study #2

Dave Kennedy

IANS Faculty

Dave is the Founder and Owner of TrustedSec, an information security consulting firm, and Binary Defense, a Managed Security Service Provider (MSSP) that detects attackers early to prevent large-scale invasions. In addition to creating several widely popular open-source tools, including 'The Social-Engineer Toolkit' (SET), PenTesters Framework (PTF), and Artillery. David has also released security advisories, including zero-days, with a focus on security research.

Prior to his work in the private sector, Dave served in the United States Marine Corps (USMC), focusing on cyber warfare and forensics analysis activities, including two tours to Iraq. He also served on the board of directors for (ISC)2, which is one of the largest security collectives and offers certifications such as the CISSP.

11:10 AM - 11:40 AM

Building Defenses That Last

with

Major incidents are becoming a regular occurrence in the cybersecurity space. The constant shifts in the threat landscape are throwing programs into disarray. In this session, IANS Faculty member Dave Kennedy will dive into the most recent wave of attacks and discuss methods for creating the kind of resiliency needed to withstand attacks and minimize dwell time attackers have on our infrastructure. Kennedy will:

Address the TTPs of the most recent series of attacks, exploits and critical advisories.
Compare these attacks looking for commonalities between them.
Show how easy it is to bypass/circumvent today’s technologies.
Provide guidance on designing your program to be successful in withstanding sophisticated attacks.

You can expect to walk away with a list of key issues to prioritize in your environment and resiliency tactics that are easy to implement.

11:40 AM - 11:50 AM

Solution Provider Case Study #3

11:50 AM - 12:00 PM

Vendor Feedback Session

Throughout the roundtable, three vendors will provide short case studies showcasing how they believe their solutions can deliver value. The feedback session is a discussion of those case studies and solutions without the vendor present. It’s an opportunity to get inside intelligence on vendors you may be considering for your environment.

Nick Mankovich

IANS Faculty

Nick is the CEO of CyberRisk Consulting, providing risk management advisory services for corporate boards and executive leadership. Trained in biological science, Nick worked extensively in R&D and has a long history of transformational leadership in R&D, product security, enterprise security and privacy, culminating in executive CISO roles in two Fortune 500 companies.

12:00 PM - 12:35 PM

Career Development Panel Discussion – CISO Competencies

with

IANS is developing a CISO Competency Framework tracking the skills and competencies CISOs need to succeed as they mature in the role, both today and over the next 36 months. During this session, IANS Faculty member Nick Mankovich will discuss:

Highlights of the competency research.
Practical actions CISOs can take to develop new skills on the job and mature in the role.
How the marketplace values various competencies for different types of CISO roles.

The session will conclude with an open question and answer time with Mankovich.

2021 Minneapolis Virtual Facilitators

Tim Bernard

Area Vice President, IANS

Tim Bernard is the Area VP for IANS. He’s responsible for new client acquisition as well as customer success and retention in the North. Since joining IANS in 2009, Tim has played a role in growing the business from 50 customers in 2009 to over 300 to start 2020. It’s a true up-and-comer story, starting with his boyhood adoration for the perpetually woeful NY Mets, his Business Economics degree from Providence College, his unrequited love for PC’s Friar Basketball, and decade+ helping CISOs to elevate their missions. There’s never a dull moment in this industry, and he loves the challenge because the mission matters. Tim is married and has 2 kids under 10 years old. Whatever he’s doing, he would probably rather be skiing.

Web Conference

Registrants will receive a logistics email with web conference meeting information one day prior to the event.

Attendee Contact

ians@iansresearch.com

Learn More

October

5

Philadelphia, PA Virtual

Coming Soon