Visit the Live Sessions Page to join topic-specific Technology Spotlight Sessions.

Sponsor Tabletops & Technology Spotlight Sessions

Sponsor Tabletops & Technology Spotlight Demos 4

Sponsor Tabletops & Technology Spotlight Demos 3

<p>Both small and large security teams need to ensure their bug bounty programs strike the right balance between what&rsquo;s managed in-house and what&rsquo;s outsourced. This session will provide a checklist of questions to keep vendors accountable, including:
</p><div class="hung_list"><ul><li>How to tell if vendors are taking sufficient measures to combat white noise</li><li>How to handle the influx of commodity vulnerabilities vs. real-deal flaws</li><li>Whether or not certain bug bounty vendors do background checks on the researchers they use</li><li>How to handle the people/politics of managing bug bounty programs</li><li>Which elements of a bug bounty program belong in-house and which belong with the vendor</li></ul></div>

Building a Smart Bug Bounty Program

<p>Tanya&nbsp;Janca, also known as SheHacksPurple, is the best-selling author of ‘Alice and Bob Learn Application Security’. She is the Director of Developer Relations and Community at Bright Security, as well as the founder of We Hack Purple, an online learning community that revolves around teaching everyone to create secure software. Tanya has been coding and working in IT for over twenty-five years, won countless awards, and has been everywhere from public service to tech giants, writing software, leading communities, founding companies and ‘securing all the things’. She is an award-winning public speaker, active blogger &amp; streamer and has delivered hundreds of talks on 6 continents. She values diversity, inclusion, and kindness, which shines through in her countless initiatives.</p>

Closing

<p>Security teams are getting better at the technical side of incident response, but crisis management is still a pain point. This session details how to quickly and efficiently manage a crisis when the crush is on. This session explores:</p><div class="hung_list"><ul><li>Tips to help first responders take charge, including the art of speaking in short sentences and keeping a journal </li><li>Case study: What we can learn from the SEAL team approach</li><li>How integrating OODA (observe, orient, decide and act) Loop principals across the culture results in a faster, more effective crisis response</li><li>How agreed-on values and beliefs guide decision-making when pressure is extreme</li><li>How leaders&rsquo; character, substance and style impact those around them</li></ul></div>

Incident Response: Fixing What’s Wrong with Crisis Management

<p>Mike is the Chief Strategy Officer and GM of Techstrong. Formerly Mike served as President of Securosis, an information security research and advisory firm, as well as Co-Founder and President of DisruptOps, a cloud detection and response company. His breadth of experience in the information security space and bold perspectives are invaluable as companies determine effective strategies to grapple with the dynamic security threatscape. Mike started practicing and advising on security topics over 25 years ago, and he’s been trying to get out of the business ever since…to no avail.</p>

<p>Security teams say it&rsquo;s difficult to use alert/response techniques and policy controls consistently across multiple cloud environments and seek guidance to adapt their approach to cover the differences from one cloud to the next. This session will explore how to:
</p><div class="hung_list"><ul><li>Focus on process rather than tools -- how they want to do this as opposed to what they should buy</li><li>Build a consistent monitoring capability across clouds</li><li>Develop key management and encryption approaches that will be better suited for multi-cloud</li><li>Apply consistent policy and controls</li><li>Apply one identity system across clouds</li></ul></div>

Navigate the Multi-Cloud with Fewer Bumps

<p>As Sumo Logic's CSO and SVP of IT, George Gerchow brings over 20 years of information technology and systems management expertise to the application of IT processes and disciplines. His background includes the security, compliance, and cloud computing
    disciplines. Mr. Gerchow has years of practical experience in building agile security, compliance and, IT teams in rapid development organizations. These insights make him a highly regarded speaker, and invited panelist on topics including, cloud
    secure architecture design, compliance and operational security. George has been on the bleeding edge of public cloud security, privacy and modernizing IT systems since being a co-founder of the VMware Center for Policy &amp; Compliance. He is a Faculty
    Member for IANS- Institute of Applied Network Security and sits on several industry advisory boards. Mr. Gerchow
    is also a known philanthropist and CEO of a nonprofit corporation, XFoundation.</p>

Diversity has become a critical issue in infosec, and functional managers can promote inclusivity in how they engage with the team members they supervise. In this &ldquo;Ask Me Anything&rdquo; session, we&rsquo;ll address your questions on tangible ways security managers can promote diversity in various forms, including identifying and addressing implicit bias and eliminating language that can exclude team members from conversations.

Ask Me Anything: Promoting Inclusivity through Management

AMA: Promoting Inclusivity through Management

The SolarWinds attack illustrated how vulnerable our software supply chains are, and we can expect more such attacks in the future. In this &ldquo;Ask Me Anything,&rdquo; session, we&rsquo;ll answer your questions about how supply chain threats will evolve &ndash; and how to prepare.

Ask Me Anything: The Future of Supply Chain Security

AMA: The Future of Supply Chain Security

Sponsor Tabletops & Technology Spotlight Demos 2

<p>Security teams that have shifted their SOCs to the cloud seek guidance on how to choose and implement the automation/visualization tools now available to them. This session will provide attendees with a path forward, including:
</p><div class="hung_list"><ul><li>A look at the automation/visualization tools being used in the most advanced SOCs</li><li>Case studies from faculty on their own SOC challenges and successes when choosing and implementing tools</li><li>Common mistakes organizations make on the path to better SOC automation/visualization and how to avoid them</li></ul></div>

Optimizing a SOC via Automation and Visualization

The immediate aftermath of an incident puts a strain on teams, and managing the stress is critical in returning to a normal state as effectively as possible. In this &ldquo;Ask Me Anything&rdquo; session, we&rsquo;ll address your questions on setting and adjusting work/life boundaries in the aftermath of an incident, identifying signs of excessive strain among team members and creating processes that position you to take care of your people.

Ask Me Anything: Managing Your Team Through an Incident

AMA: Managing Your Team Through an Incident

<p>Small security teams lack the staff and tools to communicate and enforce application security best practices across the organization. Security champion programs open lines of communication between security and the rest of the organization, leading to
    better support, accelerated alert cycles and stronger business/security alignment. This session will provide the necessary guidance to:
</p><div class="hung_list"><ul><li>Properly identify and recruit champions from each developer, IT and operations team</li><li>Train champions to find and communicate problems quickly and accurately</li><li>Delegate some of the meatier security work to the champions</li><li>Identify, obtain and deploy metrics/KPIs to track the program&rsquo;s effectiveness</li></ul></div>

Building a Better Security Champion Program

<p>Ransomware and phishing attack methods continue to evolve, as do protection techniques. Security teams seek updates on what has changed this past year. This session will explore:
</p><div class="hung_list"><ul><li>Case studies from the news: What victims did wrong and what they did right</li><li>Tools and techniques to use if an initial attack is successful</li><li>A look at how tactics differ for small teams vs. large teams</li><li>How to account for ransomware attacks -- including ransomware denial-of-service -- in your incident response plan</li></ul></div>

Phishing and Ransomware: Defense and Recovery Tactics for 2021

<p>Dave is the Founder and Principal Consultant with Voodoo Security, an 
information security consulting firm with broad expertise. He is also a 
Senior Instructor, Analyst, and Course Author for the SANS Institute and
 a VMware vExpert with extensive experience designing and configuring 
secure virtualized infrastructures. In addition, Dave has served as 
Co-Chair of the Cloud Security Alliance (CSA) Top Threats Working Group 
and founded the CSA Atlanta Chapter. Dave has consulted with hundreds of
 organizations in the areas of security, regulatory compliance, network 
architecture, and engineering. He has also worked as a security 
architect, analyst, and manager for several Fortune 500 companies.
</p>

<p>Employees and contractors still end up with advanced file access permissions when they shouldn&rsquo;t. Security teams need to know what they&rsquo;re doing wrong in file and email security and what tools/techniques can help them fix this problem. This
    session explores:
</p><div class="hung_list"><ul><li>How to reduce your attack surface more effectively</li><li>How to marry security objectives with compliance/business objectives when setting file access perimeters</li><li>Key considerations for cloud and mobile</li></ul></div>

Email and File Security: Advanced Tools and Techniques

<p>Given the rapidly escalating intensity of ransomware, breaches, and other major cyber attacks, Boards of Directors in many organizations are taking a far more active role in cybersecurity.  Cybersecurity practitioners can be vastly more successful if they communicate effectively with their Boards and senior leadership about how they are prepared to defend against real-world attacks. In this lively session, Ed Skoudis will share specifics about:
</p><div class="hung_list"><ul><li>What Boards of Directors are asking their organizations about cybersecurity.</li><li>Strategies and techniques for ensuring that an organization&rsquo;s cybersecurity practices are in alignment across all levels, from Board to CISO to day-to-day security practitioner.</li><li>Common cybersecurity myths at the Board level and how to counter them with a fresh dose of reality from trenches.</li><li>Techniques and tips security practitioners can use to explain their work effectively to Boards and other senior leaders.</li></ul></div>

From Cybersecurity Practitioner Up to The Board – Gaining Security Alignment Throughout an Organization

<p>Ed Skoudis is the founder of Counter Hack, a company focused on conducting ultra 
high-quality penetration tests and red team engagements to help organizations better 
manage their cyber risks. Ed is a SANS Fellow, author, and instructor who has trained 
over 20,000 cyber security professionals in the art of penetration testing and incident 
response. Ed is an expert witness who is often called in to analyze large-scale breaches.
</p><p></p>

Keynote: From Cybersecurity Practitioner Up to The Board – Gaining Security Alignment Throughout an Organization

Networking Lunch

<p>After a day of topic-driven sessions, join your peers to discuss:
</p><div class="hung_list"><ul><li>The day's news: We'll unwind from the day and have a free-flowing discussion about the security news making headlines this day.</li><li>How today went: What was your favorite faculty session? Your favorite tabletop or vendor spotlight? What could have been better?</li></ul></div>

“Security Hot Topics” Networking Reception

<p>Manually conducting compliance assessment and enforcement procedures in the cloud is time consuming, inaccurate, painful and expensive for security teams, leading to missed problems that often lead to security incidents. This session will provide strategies
    for automation of these tasks and tools to do it with. Specifically, we'll address:
</p><div class="hung_list"><ul><li>How to ID where things can be automated.</li><li>Strategies for automation that take advantage of cloud-based tools that are freely available.</li><li>When to stick with manual procedures and alerts.</li></ul></div>

How to Automate Assessment/Enforcement in the Cloud

Sponsor Tabletops & Technology Spotlight Demos 1

<p>Legal, human resources and privacy teams tend to be risk averse while the business side is usually pro-risk, leaving infosec stuck in the middle and often blamed for workflow hold-ups. Security teams need to master the mediator role and ensure accountability
    is spread out among teams. This session will explore how to:
</p><div class="hung_list"><ul><li>Manage internal and external risks under one team</li><li>Better understand how other organizations quantify vulnerability risk</li><li>Adopt a per-application view of vulnerability management and bundling it into an application risk rating with an umbrella perspective</li></ul></div>

Bringing Business Units and Third Parties into Your Risk Management Orbit

Agenda

2021 Dallas/Houston Virtual Forum

2021 Forum

a13e2160-4385-49af-8378-332206e680e2,e6f66081-257d-41fa-8a15-03bdaa66f657

Attendee Contact

Sponsor Contact

<p class="mb-1">The Dallas/Houston Forum is designed for information security practitioners across all industries to dive deep on specific topics, share insights, and network with peers in a virtual environment. This one-day event incorporates breakouts with IANS Faculty,
    spotlight sessions on emerging technologies, and opportunities to network with your peers. Topics fall into five tracks:</p><div class="hung_list mb-3"><ul><li>Security Operations</li><li>Security Architecture</li><li>Threats and Vulnerabilities</li><li>Governance, Risk Management, and Compliance</li><li>Leadership and Career Development</li></ul></div><p>IANS Forum content is geared toward the entire security function. Attendees include but are not limited to CISOs, VPs and Managing Directors of Information Security, Information Security Architects, and Information Security Engineers.</p>

Register Now

This one-day virtual event is designed for security practitioners to gain actionable technical solutions and leadership insights focused on current and emerging challenges.

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed. Aqua customers are among the world’s largest enterprises in financial services, software, media, manufacturing and retail, with implementations across a broad range of cloud providers and modern technology stacks spanning containers, serverless functions, and cloud VMs.

Aqua Security

Code42 is the leader in insider risk detection and response. Native to the cloud, Code42 rapidly detects data loss, leak, theft and sabotage as well as speeds incident response – all without lengthy deployments, complex policy management or blocking employee productivity. With Code42, security professionals can protect corporate data and reduce insider risk while fostering an open and collaborative culture for employees.<p></p><p></p>

Code42

Cybereason gives the advantage back to the defender through a completely new approach to cybersecurity: the Cybereason Defense Platform. Cybereason offers managed, as-a-service, and on-premise prevention, detection and response solutions. Cybereason technology delivers multi-layer endpoint prevention by leveraging signature and signatureless techniques to prevent known and unknown threats in conjunction with behavioral and deception techniques to prevent ransomware and fileless attacks. Cybereason is privately held and is headquartered in Boston, MA with offices around the globe.

Cybereason

Gigamon is the first company to deliver complete network visibility and 
analytics on all information-in-motion, from raw packets to apps, across
 physical, virtual and cloud infrastructure. We aggregate, transform and
 analyze network traffic to solve for critical performance and security 
needs, including rapid threat detection and response, freeing your 
organization to drive digital innovation. In short, we enable you to run
 fast, stay secure and innovate. 

Gigamon

Illumio, the pioneer and market leader of Zero Trust Segmentation, stops breaches from becoming cyber disasters. Illumio Core and Illumio Edge automate policy enforcement to stop cyberattacks and ransomware from spreading across applications, containers, clouds, data centers, and endpoints. By combining intelligent visibility to detect threats with security enforcement achieved in minutes, Illumio enables the world’s leading organizations to strengthen their cyber resiliency and reduce risk.&nbsp; &nbsp;

Illumio

Okta is the leading independent identity provider. The Okta Identity Cloud enables organizations to securely connect the right people to the right technologies at the right time. With more than 7,000 pre-built integrations to applications and infrastructure providers, Okta provides simple and secure access to people and organizations everywhere, giving them the confidence to reach their full potential. Learn more: www.okta.com

Okta

Palo Alto Networks, the global cybersecurity leader, is shaping the cloud-centric future with technology that is transforming the way people and organizations operate. Our mission is to be the cybersecurity partner of choice, protecting our digital way of life. We help address the world's greatest security challenges with continuous innovation that seizes the latest breakthroughs in artificial intelligence, analytics, automation, and orchestration. By delivering an integrated platform and empowering a growing ecosystem of partners, we are at the forefront of protecting tens of thousands of organizations across clouds, networks, and mobile devices. Our vision is a world where each day is safer and more secure than the one before. For more information, visit www.paloaltonetworks.com.

Palo Alto Networks

Recorded Future is the world’s largest intelligence company. Its platform provides the most complete coverage across adversaries, infrastructure, and targets. Combining persistent and pervasive automated data collection and analytics with human analysis, Recorded Future provides visibility into the vast digital landscape, empowering clients to take proactive action to disrupt adversaries.&nbsp;

Recorded Future

RiskRecon, a Mastercard company, delivers the world’s easiest path to understanding and acting on third-party cyber risk. RiskRecon provides security and risk teams with AI-powered, continuous monitoring capabilities so companies of any size can know their cybersecurity posture through automated risk assessments that are custom-tuned to match an organization's risk appetite. 

RiskRecon

<p>VMware software powers the world’s complex digital infrastructure. The company’s cloud, app modernization, networking, security, and digital workspace offerings help customers deliver any application on any cloud across any device. Headquartered in Palo Alto, California, VMware is committed to being a force for good, from its breakthrough technology innovations to its global impact. For more information, please visit <a href="https://www.vmware.com/company.html" target="blank">https://www.vmware.com/company.html</a>.</p>

VMware

XM Cyber is the global leader in cyber attack path management. Our unique approach uses the attackers perspective to identify and close the cyber attack paths that exist across hybrid environments. The XM Cyber platform enables companies to rapidly respond to cyber risks affecting their business-sensitive systems by continuously finding new exposures, including exploitable vulnerabilities and credentials, misconfigurations, and user activities. The XM Cyber platform runs continuous, comprehensive and safe attack simulations across the entire hybrid environment identifying the risks as they open up. XM Cyber enables the creation of a single and comprehensive process that controls the attack surface while simultaneously fusing the attackers perspective across the operational security ecosystem embedded as part of a next generation security architecture. XM Cyber was founded by top executives from the Israeli cyber intelligence community and has offices in North America, Europe, and Israel.

XM Cyber

<p>ZeroFox, the leader in external cybersecurity, provides enterprises external threat intelligence and protection to disrupt threats to brands, people, assets and data across the public attack surface in one, comprehensive platform. With complete global coverage across the surface, deep and dark web and an artificial intelligence-based analysis engine, the ZeroFox Platform identifies and remediates targeted phishing attacks, credential compromise, data exfiltration, brand hijacking, executive and location threats and more. The patented ZeroFox Platform technology processes and protects millions of posts, messages and accounts daily across the social and digital landscape, spanning LinkedIn, Facebook, Slack, Instagram, Pastebin, YouTube, mobile app stores, domains, cloud-based email and more.</p>

ZeroFox

Gold Sponsors

<p>Guardicore is the segmentation company disrupting the legacy firewall market. Our software-only approach is decoupled from the physical network, providing a faster alternative to firewalls. Built for the agile enterprise, Guardicore offers greater security
    and visibility in the cloud, data-center and endpoint. For more information, please visit <a data-sf-ec-immutable="" href="https://www.guardicore.com/" target="_blank">www.guardicore.com</a> or go to <a data-sf-ec-immutable="" href="https://twitter.com/guardicore" target="_blank">Twitter</a> or
    <a data-sf-ec-immutable="" href="https://www.linkedin.com/company/guardicore/" target="_blank">LinkedIn</a>.</p>

Guardicore

<div>Infoblox leads the way to next-level DDI with its Secure Cloud-Managed Network Services with 8,000 customers including 350 of the Fortune 500. Infoblox brings next-level security, reliability and automation to cloud and hybrid systems, setting customers on a path to a single pane of glass for network management. Next-level security helps protect against the rising flood of cyberattacks, leveraging 14 billion threat indicators and 30 plus API security integrations. Next-level reliability provides a Tier 1 foundation with five nines availability, delivered as software-defined services. Next-level automation reduces manual tasks by 70% and annual costs by more than $1 million. Please visit infoblox.com.</div><div>&nbsp;</div>

Infoblox

Thales is a worldwide leader in data protection, providing everything an organization needs to protect and manage its data, identities and intellectual property – through encryption, advanced key management, tokenization, authentication and access management. Whether it’s securing the cloud, digital payments, or the Internet of Things. Security professionals rely on Thales to confidently accelerate their organization’s digital transformation. Thales Cloud Protection &amp; Licensing is part of Thales Group.<p></p><p><a data-sf-ec-immutable="" href="http://www.thalesgroup.com" target="blank"></a></p>

Thales

Silver Sponsors

Information Security Forum

This one-day event is designed for security practitioners to gain actionable technical solutions and leadership insights focused on current and emerging challenges. Engage virtually with IANS Faculty members and network with peers who are tackling similar challenges.

2021 Dallas/Houston Virtual

Information Security Forum

Contact us at:

Contact us at: