CISO & Security Leaders Forum
A New Paradigm for Managing Third-Party Risk
Presented by:
Tess Smichenko, Alliance Lead, Dataminr
In the past 12 months, 87% of F1000 businesses were affected by significant cyber incidents as a result of a third-party. And yet, most rely on ‘snapshot in time’ questionnaires. While necessary, snapshots are insufficient by themselves, and must be augmented with continuous monitoring in support of ongoing security operations. This requires a different approach, that includes external threat detection capabilities by using AI across Public Data.
-
The Public Data opportunity: collect, process, alert across multiple languages / modalities
-
Real-time external threat detection on a rapidly evolving threat landscape
-
The most advanced AI techniques for automating the collection, processing, delivery, and initial analysis of millions of public data sources
Redefining Product Security in the Age of AI and Quantum
Presented by:
Jacob Combs, CISO, Tandem Diabetes
Artificial Intelligence and Quantum Computing are not just disruptive forces—they are redefining the very foundation of product security. AI is accelerating the speed of both innovation and cyberattacks, while quantum computing threatens to break today’s cryptographic defenses entirely.
In this forward-looking session, senior cybersecurity executives will explore how these technologies are impacting product design, development, and security at the deepest levels. We’ll discuss the urgent need to rethink security architectures, prepare for post-quantum threats, and leverage AI responsibly to defend the next generation of products.
The Evolving Role of the CISO: From Shadowy Technician to Strategic Business Leader
Presented by:
Amit Basu, VP, CIO & CISO, International Seaways
The CISO role, created as a purely technical function 30 years ago, has evolved into a critical strategic leadership position. Today’s CISOs shape enterprise strategy, foster operational resilience, and navigate complex regulatory and personal liability risks. This session explores how CISOs are redefining leadership to protect both their organizations and their own professional standing.
Security Is Everyone’s Job: Making Cyber Risk a Company-Wide Priority
Presented by:
Darrel Raynor, Cybersecurity Director, LCRA
Cybersecurity isn’t just a tech challenge—it’s a people-driven challenge. Without a company culture heavy on security, even the best tools and policies will not be enough. In a world where a single click can trigger a crisis, every employee, vendor, customer, partner and executive must understand they are part of the security equation.
This high-impact session challenges senior cybersecurity leaders to rethink how they drive behavior change across their organizations. Learn how to embed cybersecurity into daily habits, leadership mindsets and company values—not just annual trainings. Discover how to transform security from “someone else’s job” into a core part of how your business operates and succeeds.
Key takeaways include:
-
Why traditional awareness programs are not enough—and what actually works
-
Strategies to make cybersecurity ownership part of every role, from intern to CEO
-
Leveraging internal influencers and business units to drive culture change faster
-
Communicating the “why” behind security in a way that sticks
-
Building a culture where secure behavior is the default, not the exception
If you think cybersecurity tools are enough, think again. Culture is your true first line of defense—and the time to build it is now.
Building a Resilient Risk Management Program: Strategies for Success
Presented by:
Nish Majmudar, Former CISO, Mathematica
In an era of mounting digital threats and regulatory pressures, effective risk management is more critical—and more complex—than ever. Yet for many organizations, risk frameworks become bloated, theoretical, and disconnected from daily decision-making.
This executive session cuts through the noise, offering cybersecurity leaders a practical, actionable blueprint for building and sustaining a risk management program that drives real resilience. Attendees will learn how to simplify risk identification, prioritize threats based on business impact, and implement mitigation strategies that are both scalable and operationally feasible.
Key takeaways include:
-
Translating risk management from theory into clear, repeatable processes
-
Identifying and assessing risks in fast-moving, complex environments
-
Communicating risk in business terms executives and boards can act on
-
Building a dynamic, adaptable risk management framework that grows with your organization
-
Using risk insights to drive better security investments and strategic decisions
If you think cybersecurity tools are enough, think again. Culture is your true first line of defense—and the time to build it is now.
