IANS brings you together with your peers and experts from the IANS Faculty. IANS Faculty are industry practitioners that provide the breadth and depth of information to help you tackle your toughest problems. Walk away with new connections and practical solutions.
Two-day events with keynotes, breakout sessions, technology spotlight sessions, and networking breaks.
One-day roundtables designed exclusively for CISOs and senior level InfoSec executives to learn and share insights in a confidential setting.
Half-day, deep-dive explorations of technical and operational information security topics, free of vendor presence.
Hour-long interactive discussions examining hot topics in information security.
Webinar
The manufacturing industry is one of the most targeted sectors for cyberattacks, with some reports enumerating that more than 1 in 4 attacks are aimed at it. Of these, more than 2 out of 3 are a ransomware attack. It’s not hard to see why attackers choose to target manufacturing – they know there’s a direct impact on the revenue of the org when operations are down, and there are many unique challenges defenders face in these environments, including the convergence of IT/OT systems, managing legacy systems/outdated infrastructure, and challenging asset management (just to name a few).
Bill is a Shareholder at LBMC Information Security, where he is responsible for security assessments, incident response, digital forensics, electronic discovery and overall litigation support. He also serves as an expert witness in federal courts and numerous state courts and has conducted digital forensic investigations and electronic discovery services to support litigation efforts. He is also an active member of the International Society for Forensic Computer Examiners and Board Member in East Tennessee’s InfraGard Chapter.
Web Conference
AI is putting legacy data governance processes under a microscope. In response, a number of key frameworks are emerging to provide a foundation for orgs to use as a starting point. This session dives into the strategic and tactical steps to take to improve AI governance, regardless of which framework you choose, and provides a rundown of some of the most prominent AI governance frameworks.
Summer is a three-time CISO in the autonomous vehicle industry currently at Torc Robotics, which specializes in AI software for long-haul trucking. She is also a faculty member at Carnegie Mellon University where she teaches a graduate course in cybersecurity policy and multiple courses on cybersecurity metrics and product cybersecurity for executive education programs. In addition, Summer serves on the board of directors for Brentwood Bank, a regional bank in Pittsburgh, PA. She is also an active board member for the Forte Group, an advocacy and education non-profit focused on amplifying women in technology, cybersecurity, and privacy. Summer is often requested to speak at conferences and events, and she has provided expert testimony on cybersecurity risk in the US Congress.
Prior to her role at Torc Robotics, Summer worked at Motional and Argo AI, both AI companies focused on robo-taxi technology. She also led cybersecurity risk and resilience at Carnegie Mellon University's CERT program and Johns Hopkins University's Applied Physics Lab. Summer started her career as a software engineer at Northrop Grumman Corporation after receiving her MS and BS in Computer Science from the University of Pittsburgh.
There’s myriad reasons the attention around quantum computing continues to grow. The topic is making headlines in major news outlets and NIST released its Post-Quantum Encryption Standards, just to name a couple. In this webinar, we’ll drill down on what you need to know about how quantum computers will impact the cybersecurity industry. We won’t waste time explaining how quantum computing works.
Adrian is the Principal Researcher at The Defenders Initiative, a firm he founded to feature and support decades of cybersecurity research. His foundation spans technical, GRC, and leadership roles with a background as a practitioner, incident responder, penetration tester, and PCI QSA.
As an industry analyst, studying market trends, working with founders and investors brought a deep understanding of the business side of cybersecurity. After Adrian’s own startup was acquired, he spent seven years helping startups grow, market, and sell to their clients. Leaving the startup space, Adrian is once again focused on helping practitioners solve fundamental challenges, with or without the help of industry vendors.
Metrics continue to be a pain point in infosec—both in terms of getting a clear understanding of how the program is functioning and communicating that narrative across lines of business. At the center of this problem is the reality there is no one-size-fits-all solution. The best metrics are specific to your business context. In light of that, this session leans on fundamental best practices to help you pressure test your concepts.
Ryan is the Founder and CEO of Neuvik, a cybersecurity research and development consultancy. He has spent the better part of two decades enhancing cyber programs at the world's largest institutions — from the Department of Defense to some of the most successful private and commercial organizations. He focuses largely on providing advanced capabilities for CISO's, as well as testing for best possible security practices at board of directors' requests.
Ryan’s C-level work experience also includes developing Board level metrics to measure and manage enterprise cyber risk, developing and instructing C-Suite cyber risk management courses, and establishing functional reporting metrics for assessing cyber readiness.
Seattle Marriott Waterfront
According to Verizon’s 2024 Data Breach Investigations Report, ransomware remains the top threat across 92% of industries, with roughly one-third of all breaches involving ransomware or some other extortion technique. In this symposium, we’ll use digital forensics and incident response reports from real-world incidents to walk through the tactics, techniques and procedures of top ransomware gangs and share lessons learned to help you avoid the same fate.
Jake Williams (aka MalwareJake) is a seasoned security researcher with decades of experience in technology and security. Jake is a former startup founder, former senior SANS instructor and course author, and an intelligence community and military veteran. He loves forensics, incident response, cyber threat intelligence and offensive methodologies. Today, Jake is an IANS faculty member, an independent security consultant, and is performing security-focused research to benefit the broader community. He has had the honor of twice winning the DoD Cyber Crime Center (DC3) annual digital forensics challenge. You may also know Jake from one of his many conference talks, webcasts, media appearances or his postings about cybersecurity.
Security architecture teams often face burnout from juggling too much engineering work or being pulled into non-architectural tasks. Misalignment with enterprise architects and challenges in demonstrating value to the organization further compound the problem. This symposium provides actionable insights on elevating your architecture program to improve maturity and focus and enable high-quality results.
J. Wolfgang Goerlich is a CISO in the public sector. Prior to this role, he led IT and IT security in the healthcare, financial services, and tech verticals. Wolfgang has held senior positions at several consulting firms, leading security advisory and assessment practices. He is a strong presence in the security community, contributing to the establishment and organization of multiple groups and events. Wolfgang focuses on strategy, governance, identity and access management, and resilience.
The April Privacy Briefing will feature our IANS Faculty panel, which includes privacy expert Jodi Daniels and artificial intelligence and infosec leader Jason Robbins. This informal discussion will center around how infosec leaders can partner across the organization to support the implementation of critical privacy regulations. We will cover recent law updates and upcoming rulings that impact your privacy strategy.
Jason is a Senior Manager of Data Science & Security Automation Engineering within the healthcare industry. Previously he has worked as both a consultant and on in-house teams across multiple security disciplines. His experience covers federal and private sector, from the Lockheed Martin Skunkworks to Fortune 5 global enterprises. He is also a decorated veteran of the United States Army, where he supported Special Forces teams during deployments with network communications.
Jodi Daniels is a Founder and CEO of Red Clover Advisors, a privacy consultancy, that integrates data privacy strategy and compliance into a flexible, scalable approach that simplifies complex privacy challenges. A Certified Information Privacy Professional, Jodi brings over 25 years of experience in privacy, marketing, strategy, and finance across diverse sectors, working and supporting startups to Fortune 500 companies.
Jodi Daniels is a national keynote speaker, host of the top ranked She Said Privacy/He Said Security Podcast and WSJ best-selling author of Data Reimagined: Building Trust One Byte at a Time, and also has been featured in The Economist, WSJ, Forbes, Inc. and more. Jodi holds an MBA and a BBA from Emory University’s Goizueta Business School.
Attracting and retaining high-performing talent is a key differentiator for successful CISOs. Building a strong team is simple on paper, but when it comes time to navigate corporate pay bands, compete for funding and create a cultural environment conducive to developing top talent, the problems get complex.
Steve is a partner in Artico Search’s cybersecurity practice. He is an expert in security executive recruiting and compensation focused on recruiting best-in-class CISOs and their teams across various industries. He leads strategic partnerships and initiatives including Artico’s annual CISO compensation & budget survey conducted in collaboration with IANS. Prior to Artico, Steve served in Caldwell Partner's cybersecurity practice and at Russell Reynolds associates.
Charlotte City Club
CISO Roundtables are the most exclusive, intimate events offered by IANS. Our in-person roundtables are curated experiences with agendas designed specifically for an organization’s CISOs and senior-most executives. In addition to strategic insights presented by IANS Faculty, facilitated conversations and networking opportunities allow you and your CISO peers to share best practices in a trusted, closed-door environment.
Strategic financial services security leaders strive to be business enablers and move their programs beyond just meeting mandatory regulatory and compliance requirements and reacting to vulnerabilities and threats. To do this, they must incorporate the context of the business within their security strategy. Pulling from examples and lessons learned from successful collaborations across cyber, fraud, product and operational teams, this symposium delves into ways to design your architectures and capabilities to better secure your enterprise, products and customers.
Manufacturing and consumer goods companies are squarely in cyber attackers’ crosshairs, and the financial impact of just one incident is typically significant. With ransomware attacks comprising of more than two-thirds of incidents, appropriately preparing through tabletop exercises and other measures will prove invaluable.
The Whitley Atlanta Buckhead
Many organizations began their zero trust journey focusing on identity, devices and networks. Increasingly, there is broad industry recognition that zero trust initiatives, due to their holistic nature, need to more explicitly include an emphasis on workloads and data.
Jason Garbis is Founder and Principal at Numberline Security LLC, a consulting firm helping enterprises prepare for, define, and execute on effective Zero Trust security strategies. Jason has authored two books on Zero Trust security, is co-chair of the Zero Trust Working Group at the Cloud Security Alliance, and is a frequent contributor to and speaker at industry conferences. Professionally, he has served in both hands-on and executive leadership roles in product management, engineering, marketing, and consulting at security and technology companies.
Renaissance Dallas Richardson Hotel
This one-day event is designed for security practitioners to gain actionable technical solutions and leadership insights focused on current and emerging challenges. Engage with IANS Faculty members and network with peers who are tackling similar challenges.
In today’s climate of economic uncertainty, security leaders face mounting challenges, including budget pressures and spending freezes. This webinar explores strategies for maintaining effectiveness and resilience in resource-constrained environments. The discussion focuses on two critical areas: optimizing your vendor stack to manage costs and maximize value, and fostering employee engagement and development during uncertain times. Join us for a practical and interactive session designed to help security leaders adapt, thrive and lead with confidence.
Gary is the Chief Information Security Officer at AIG where he leads the global cybersecurity risk management program while working closely the Executive Leadership Team to drive information security strategy for the company. Additionally, Gary provides start-up advising as a member of the Forgepoint Capital Cybersecurity Advisory Council, and serves on two non-profit Boards. Prior to AIG, Gary served as a Senior Vice President at USAA and was their first Chief Security Officer where he was responsible for building out a holistic security program spanning Information Security, Fraud Operations, Privacy, Business Continuation, Physical Security, and Corporate Investigations. Gary spent a short time with Deloitte in their federal practice after a 25-year career as an Air Force officer where he served in a variety of leadership and staff positions within the information technology career field including: telecommunications, satellite communications, deployed network operations, and cybersecurity. Most notably, Gary was on the front line of cyberspace operations for the Department of Defense where he supported the establishment and evolution of the Joint Task Force Global Network Operations, the organization that was the focal point for the operation and security of DoD information systems and networks, and pre-cursor to establishment of the US Cyber Command.
The University of Massachusetts Club
Sheraton Centre Toronto Hotel
CISO Roundtables are the most exclusive, intimate events offered by IANS. Our virtual roundtables are curated experiences with agendas designed specifically for an organization’s CISOs and senior-most executives. In addition to strategic insights presented by IANS Faculty, facilitated conversations and networking opportunities allow you and your CISO peers to share best practices in a trusted, closed-door environment.
The complexities of IAM are often referred to as "intractable problems" for a reason -- burdensome and broken processes can overwhelm teams. Traditionally, IAM programs rely on manual processes that are cumbersome, time-consuming and difficult to manage and scale. In this symposium, we explore how to transform key areas of your IAM program to streamline operations and boost team efficiency.
Aaron is a three-decade veteran of the cybersecurity community, having worked on projects covering every aspect of the industry, from helping build security technologies while at Microsoft to his work on offensive cyber projects for the U.S. government. He has spent the last 15 years on a series of cybersecurity startups, building technologies and developing companies to help teams solve some of the toughest cybersecurity problems.
Business teams are racing to use M365 Copilot, putting pressure on security teams to identify potential risks and put guardrails in place to address those risks.
Shannon is the Founder and CEO of ThirdScore. This followed her role as VP, Security at Adobe, where she led Product and Software Security. Shannon is also the Founder of DevSecOps, a non-profit organization committed to uniting security with DevOps and Agile practices via experimentation and education. Shannon is an award-winning security innovator and leader experienced in developing emerging security programs for Fortune 500 companies including Intuit, ServiceNow, Sony, Sempra, Savvis, Cable & Wireless, 99 Cents Only, Exodus, and Bank of America.
Hyatt Regency Minneapolis
Convene
The Westin Charlotte
Hyatt Regency Santa Clara
Atlanta Marriott Buckhead
Omni Boston Hotel at the Seaport
The Westin Dallas Stonebriar