The SINC Canada IT & Security Leaders Forum brings together top leaders for three days of engagement geared specifically towards our IT executives.
Forum speakers and presentations will focus on topics most directly impacting attendee resource challenges, which will in turn drive regional industry growth. Executives and service providers alike will engage through one-on-one engagements and open-discussion group meetings, all while creating valuable networking and community-building opportunities to foster regional development.
JW Marriott The Rosseau Muskoka Resort & Spa
Arrive at the hotel in Muskoka to discover limitless luxury, scenic views of Lake Rosseau, and convenient access to a variety of Muskoka’s celebrated outdoor activities. Enjoy luxury hotel rooms and suites, award-winning on-site restaurants, a signature spa, fitness center and a year-round indoor/outdoor swimming pool.
The hotel’s location is in the heart of Muskoka’s pristine natural beauty and near well-known attractions. Luxury abounds at JW Marriott The Rosseau Muskoka Resort & Spa
Forum Agenda
Agenda may be subject to change. Check back regularly for Updates.
2:00 PM - 5:00 PM MST
FORUM REGISTRATION & APP DEMONSTRATION
Get familiar with SINC Staff and the event layout. Secure your complimentary Swag Bag and learn how to use the Onsite Application for Peer Engagement and win great prizes!
5:30 PM - 7:00 PM MST
SINC WELCOME NETWORKING RECEPTION
Engage your Peers over canapes and cocktails
7:00 PM - 9:00 PM MST
SINC NETWORKING & ENGAGEMENT DINNER
Open seating buffet meal serving 5-star food and great Peer engagement before Day 1 kick’s off
7:00 AM - 7:55 AM MST
SINC IT LEADERS NETWORKING BREAKFAST
Full breakfast and lots of coffee available!
8:00 AM - 8:05 AM MST
SINC OPENING REMARKS
A Thank You from SINC – setting the tone for a great day!
8:05 AM - 8:45 AM MST
MASTER OF CEREMONIES KEYNOTE PANEL - Preparing IT & Cybersecurity Strategies and Budgets for a Volatile 2023
With many economists anticipating a recession in 2023, the impact on IT departments is unclear. One would expect companies to pull back across the board and for those cuts to include IT. But the big surprise is that spending on IT is expected to increase.
Moderator: Info-Tech Research Group
8:55 AM - 9:35 AM MST
CISO PANEL - The Ongoing Shift in Protecting our Networks
Aggressive attacks on Enterprise computer networks are continuing with increased frequency and threatening economic and national security. Actions like vulnerability reduction and passive defenses on their own simply are not cutting it and there needs to be a functional shift in the way we mitigate this substantial threat. Companies can seek to protect their most sensitive data by implementing an environment of actionable intelligence and detection to bring the fight to the adversaries and ensure a proactive approach to securing data. This session will discuss best practices in managing the constant evolution in the security environment.
9:35 - 9:55 AM MST
SINC NETWORKING & REFRESHMENT BREAK
Circle back with your Peers on the content so far while grabbing a coffee and a snack
9:55 - 10:25 AM MST
WORKSHOP 1 - Cultivating Developer Security Adoption
Security programs have undergone major changes in recent years, to adapt to the changes that Agile development, DevOps pipelines, and faster deployments bring. New DevSecOps programs and models have resulted in a significant security ownership shift to the development teams. But in order for development teams to truly take responsibility for security, they need to embrace and adopt the new security practices. This is no easy feat! It introduces many organizational, process, and tooling challenges. In this session, we will discuss how others have successfully achieved this, and talk about tips and best practices on how you can improve the developer adoption of your security needs, as well as common pitfalls or problems to avoid.
Presented by: Snyk
9:55 - 10:25 AM MST
WORKSHOP 2 - In The Know: Coping with Recession Concerns on IT Spending
Concerns of a Recession looms whether there results in one or not. With a war raging across the ocean, a potential European energy crisis this winter, and inflation numbers in the US refusing to subside, the macroeconomic environment has caused enterprise IT leaders to rethink their strategies. Learn how your peers are changing their plans to deal with the recession.
Presented by: Rimini Street
10:35 AM - 11:05 AM MST
WORKSHOP 1 - Improve Your Security Strategy: Master the 3 Levels of Decision-making
Your security team manages risks that affect business units and functions across your entire organization. Security is threaded through every aspect of your business, and your decisions have never mattered more. On a daily basis, you make decisions that affect day-to-day operations, data and system security, executive-level strategy and direction and quite possibly, the future success of your organization. Security leaders straddle the lines of executive, strategic, and tactical decision making, and must be experts at navigating all three of these levels. We’re wearing many hats, often switching between them from meeting to meeting, and it’s imperative that we can effectively communicate and drive decisions that improve and mature our security efforts across the board.
This session will explore ways to enhance engagement with technical teams, business units and executives alike, while still maturing your security program to be more efficient and effective at managing and mitigating risk. Concepts and topics covered will include:
- The 3 levels of decision making you must navigate on a daily basis and how they impact the rest of the organization
- Applying meaningful metrics to demonstrate value to executives and mature program operations for optimal effectiveness
- Finding program gaps where remediation efforts or SLA compliance is lagging, and taking steps to help affected teams improve and succeed
- How Tenable helps to improve operational efficiency, address threats and vulnerabilities faster, and demonstrate tangible business value at all levels of the organization
Presented by: Tenable
10:35 AM - 11:05 AM MST
WORKSHOP 2 - Building The 'True' Software-Defined Data Centers
The software-defined data center (SDDC) is a concept in which all data center infrastructure is virtualized and delivered as a service. Control is fully automated through software, allowing hardware configuration to be maintained through automated policies. SDDC advances virtualization and cloud computing by supporting both legacy enterprise applications and new cloud computing services. It thus provides a solid base for using public, private, and hybrid clouds. By abstracting applications from hardware, SDDC allows apps to run anywhere and even move from place to place. It also allows for greater automation within a data center and faster, simple orchestration across centers.
11:10 - 12:10 PM MST
ROUNDTABLE & PANEL - Driving The Business Through Technology
It is no secret that technology is changing the fabric of business operations and outcomes, and collaboration between IT and the business is more important than ever before. The conversation is no longer about how to align IT with the business, however in many cases technology is still viewed as a commodity rather than an enabler. So what can we do to successfully change this mindset both within our own organizations and across the industry as a whole? During this session, we will discuss the various challenges IT and digital leaders face when undergoing this cultural shift.
12:10 - 1:00 PM MST
SINC NETWORKING LUNCH
Open seating, Buffet-style lunch. Serving food for all tastes, pallets, and preferences. Vegan, vegetarian, and halal options available
1:10 - 1:40 PM MST
WORKSHOP 1 - Driving Past the Data/Privacy Divide
To ensure relevance and competitiveness in today’s customer centric market, enterprises of all types are investing heavily in customer data capture and customer data analytics capabilities. With data being captured from so many new locations and at a deeper and more personal level than ever before privacy issues become more and more important. Enterprises need to constantly review their data capture and usage to determine value vs. risk and whether the incentive offered to the customer is sufficient to overcome any reticence on their part. This session will address privacy issues, how to balance opt in vs opt out requirements and that Data Privacy certainly isn’t a roadblock to data capture but the customer incentive needs to be sufficient to justify the sharing of personal details.
1:10 - 1:40 PM MST
WORKSHOP 2 - Is Your Roadmap Business-Driven or Vendor Dictated?
Today, the primary CEO priority is growth, with technology as a key enabler. However, vendor policies pose major roadblocks to innovation, growth, and competitive advantage by forcing you to spend limited budget, resources, and time on projects that may not drive your business. Learn how you can take control of your IT roadmap by choosing a Business-Driven Roadmap designed around your business objectives and not the vendor’s. Leverage vendor software, but do it on your terms, on your timetable, and with the flexibility, funding, and freedom to focus on initiatives that support growth and competitive advantage.
Speaker: Mirza Baig, Director of Cybersecurity, Municipal Property Assessment Corporation
1:50 – 2:20 PM MST
WORKSHOP 1 - The Role of Artificial Intelligence in Growing Cybersecurity Risks
Artificial intelligence (AI) has the potential to revolutionize many aspects of our lives, including how we approach cybersecurity. However, it also presents new risks and challenges that need to be carefully managed. Does a new AI model highlight the opportunities and challenges of using ChatGPT Artificial Intelligence? Are we ready for the upcoming Cybersecurity Threat?
There are hidden risks with using ChatGPT regarding security and privacy. Companies targeted with sophisticated phishing emails are subject to data theft, malware, botnets, etc. We expect the security vendors will be more proactive in implementing behavioural AI-based tools to detect these AI-generated attacks. It will be interesting to see what potential uses, positive and negative, come with ChatGPT.
One thing is for sure: The industry cannot merely wait and watch if it creates a security problem. Threats from AI are not a new problem. It has been around, and it’s just that now ChatGPT is showing distinct examples that look scary. What are the security measures for ChatGPT and the guardrails that should be in place for governance and monitoring?
Speaker: Ferris Adi, Director of Cybersecurity, City of Toronto
1:50 - 2:20 PM MST
WORKSHOP 2 - AI in the Enterprise- Identifying Winning Business Cases
Enterprises have hordes of data and many opportunities to integrate other data sources. But readying data for AI experimentation is expensive and requires an iterative approach.
This session will focus on finding the best opportunities to experiment with AI and on applying agile practices in machine learning initiatives.
2:30 - 3:00 PM MST
WORKSHOP 1
2:30 - 3:00 PM MST
WORKSHOP 2 - Hiring and Retaining top IT & Security Talent
While the pool of talented cybersecurity professionals is increasing daily, there is still a shortage of cybersecurity professionals to go around. This session will discuss how your organization can stand out from the crowd and attract the best.
The session will cover the following topics:
- How being an active CISO and Thought Leader is the best marketing for new talent
- Creative ways to compete and assets that are important outside of salary
- Increase training and access to non-cybersecurity experts that are already excelling at your company and how to determine that talent you already have in house
3:00 - 3:15 PM MST
SINC NETWORKING & REFRESHMENT BREAK
Circle back with your Peers on the content so far while grabbing a coffee and a snack
3:15 - 3:55 PM MST
PRESENTATION - Systems of Experience: The CIO's Role in the Future of Work
The definition of work-life balance has changed, and the nature of work has changed. Life, family, and work are all integrated, we need software solutions that allow us the flexibility to live our lives and attract a diverse talent. Solutions that improve experience locally while allowing us to operate globally removing the friction, increasing productivity improving employee experience and in turn positively impacting the customer experience. Focused on retention and customer satisfaction.
Presented by: RingCentral
4:00 - 5:00 PM MST
ROUNDTABLE & PANEL - Diving into Talent Acquisition, Diversity and Retention
In most markets, there is an abundance of open IT jobs with fewer people able to fill them – and the positions are getting more expensive. Working remotely is the norm, but not optimal (usually). There is less off-shoring and more resources are focused locally or within the same hemisphere.
Additionally, we are still not recruiting enough women and minorities into the rank and file, especially senior IT roles, and we’re losing talent to major tech hubs.
Join us at the roundtable with your peers as we dive into solutions to tackle the following challenges:
- How do you scale staff/team without losing them to major tech hubs?
- How do you create more diversity – not only among race and gender – but diversity of thought Old vs New Thinking?
- How do we mentor universities to implement actionable steps for supplying more IT talent?
5:30 - 7:00 PM MST
SINC NETWORKING RECEPTION
Engage your Peers over canapés and cocktails
7:00 - 9:00 PM MST
SINC NETWORKING & ENGAGEMENT DINNER
Open seating buffet meal serving 5-star food and great Peer engagement before Day 1 kick’s off
8:00 AM - 8:55 AM MST
SINC IT LEADERS NETWORKING BREAKFAST
Full Breakfast and lots of coffee available!
9:00 AM - 9:40 AM MST
PRESENTATION - Low Hanging Fruit – Improving AD Security for the Easy Win
Threat actors, Red-Teams, and Ransomware have been abusing Active Directory for years. In fact, attackers have compromised or leveraged AD in 100% of the successful ransomware attacks over the last 3 years.
This discussion will discuss new technologies to help you visualize the risk in your AD and add a layer of security around this very important part of enterprise infrastructure.
9:50 - 10:20 AM MST
WORKSHOP 1 - Cybersecurity from the Lens of the Internal Audit Function
The ongoing battle to effectively manage cyber threats and risks is only going to get fiercer and complex. As part of its efforts to fight the cybersecurity battle, a number of organizations are acknowledging the need to build and strengthen their third line of defense i.e. an independent review of cybersecurity measures and conduct by the internal audit function. The Internal audit function plays a critical role in identifying and evaluating prospects to bolster the enterprise security posture. Concurrently, the internal audit function has a responsibility to report to the audit committee and the board on whether controls to protect and defend against cybersecurity threats are designed and operating effectively.
Speaker: Zain Haq, Director- Cybersecurity Audit, Manulife
9:50 - 10:20 AM MST
WORKSHOP 2 - From On-Prem to the Cloud: Protect Your Apps and APIs
The result of digital transformation: It’s easier to do business with your customers and partners. But with new architectures, web apps and APIs now deployed from on-prem servers to the cloud, it is harder than ever to get a holistic view of all of these potentially vulnerable assets – never mind defend them.
What are your biggest challenges today in defending these diverse assets? What are the known gaps in your current defenses? What are you seeking in the future to defend your apps and APIs?
Topics covered will include:
- How are adversaries preying upon unprotected web apps and APIs?
- How are traditional web application firewalls deployed, and what are they missing?
- What does the future look like with unified web app and API security solutions?
10:20 - 10:35 AM MST
SINC NETWORKING & REFRESHMENT BREAK
Circle back with your Peers on the content so far while grabbing a coffee and a snack
10:40 - 11:10 MST
WORKSHOP - Maximizing Value Vs Minimizing Cost- Building a more Valuable IT Department
To meet the speed and agility demands of digital business, CIOs are transforming their IT departments and shifting a growing share of IT work from projects to products. At the same time, growth in business-led IT has expanded the span of employees across the enterprise who are responsible for technology initiatives.
This session will explore a cost management model and discuss how evolving IT cost management efforts to focus on value over pure cost will reduce (and even eliminate) reactive calls to cut IT costs. This session will provide a model and tactics to elevate the maturity of IT to focus on value over costs, while still meeting the business directives.
11:15 - 12:00 PM MST
FIRESIDE CHAT - 90-DAY PLAN IN YOUR NEW ROLE
You’ve just stepped into your new IT leadership role. Your first 90 days in a new IT leadership role should be focused on learning. Investing this time will help you understand the current state, appreciate the culture and inform your strategy. Prioritize these steps to kickstart improvement:
- Understand your job. Learn the organization and industry you are in
- Define and revise measurements for success
- Articulate your vision and strategy
- Organize people for success
- Build culture
- Revise processes for success & delivery, and suitable for the environment and the times
- Upgrade technologies
12:00 - 1:00 PM MST
SINC NETWORKING LUNCH
Open seating, Buffet-style lunch. Serving food for all tastes, pallets, and preferences. Vegan, vegetarian, and halal options available. Serving to-go boxes for those in a hurry!
Canada Executive Advisory Council
Derek Cullen
CIO
Stikeman Elliott
Geoffrey Ren
CIO
Canadian Red Cross
Alexander Popov
VP, IT
Sonepar Canada
Alexandre Lupien
CIO
Bibliothèque et Archives Nationales du Québec
Anju Bissessur
Vice President, CIO
IPEX Management, Inc.
Hadi Tchekiken
COO & CIO
Canada Direct
Helen Knight
Founder & CEO
Helen Knight Consulting
Gerry Dimnik
Vice President & CIO
Mount Sinai Health System
Pradeep Nair
Managing Director, Advancement Services
University of British Columbia
Forum Speakers
Zain Haq
Director - Cybersecurity Audit
Manulife
Ferris Adi
Director of Cybersecurity
City of Toronto
Mirza Baig
Director of Cybersecurity
Municipal Property Assessment Corporation
Interested in speaking? Please submit a request.
Submit RequestInterested in sponsoring? Please submit a request. Submit Request
Submit RequestForum Sponsors
- platinum Sponsor
- gold Sponsor
- silver Sponsor
platinum
RingCentral
RingCentral, Inc. (NYSE: RNG) is a leading provider of business cloud communications and contact center solutions based on its powerful Message Video Phone (MVP ) global platform. More flexible and cost-effective than legacy on-premises PBX and video conferencing systems that it replaces, RingCentral empowers modern mobile and distributed workforces to communicate, collaborate, and connect via any mode, any device, and any location.
RingCentral offers three key products in its portfolio including RingCentral MVP , a Unified Communications as a Service (UCaaS) platform including team messaging, video meetings, and cloud phone system; RingCentral Video , the company’s video meetings solution with team messaging that enables Smart Video Meetings; and RingCentral Cloud Contact Center solutions. RingCentral’s open platform integrates with leading third-party business applications and enables customers to easily customize business workflows. RingCentral is headquartered in Belmont, California, and has offices around the world.
gold
Tenable
Tenable®, Inc. is the Cyber Exposure company. Over 30,000 organizations around the globe rely on Tenable to understand and reduce cyber risk. As the creator of Nessus®, Tenable extended its expertise in vulnerabilities to deliver the world’s first platform to see and secure any digital asset on any computing platform. Tenable customers include more than 50 percent of the Fortune 500, more than 30 percent of the Global 2000 and large government agencies.
Learn More
gold
Snyk
Snyk is the leader in developer security. They empower the world’s developers to build secure applications and equip security teams to meet the demands of the digital world. Their developer-first approach ensures organizations can secure all of the critical components of their applications from code to cloud, leading to increased developer productivity, revenue growth, customer satisfaction, cost savings and an overall improved security posture. Snyk’s Developer Security Platform automatically integrates with a developer’s workflow and is purpose-built for security teams to collaborate with their development teams. Snyk is used by 1,200 customers worldwide today, including industry leaders such as Asurion, Google, Intuit, MongoDB, New Relic, Revolut and Salesforce.
Learn More
gold
Riverbed
Riverbed is the only company with the collective richness of telemetry from network to app to end user, that illuminates and then accelerates every interaction, so organizations can deliver a seamless digital experience and drive enterprise performance. Riverbed offers two industry-leading portfolios: Alluvio by Riverbed, a differentiated Unified Observability portfolio that unifies data, insights, and actions across IT, so customers can deliver seamless, secure digital experiences; and Riverbed Acceleration, providing fast, agile, secure acceleration of any app, over any network, to users anywhere. Together with our thousands of partners, and market-leading customers globally – including 95% of the FORTUNE 100 –, we empower every click, every digital experience. Riverbed. Empower the Experience.
Learn More
gold
Rimini Street
More than 4,900 Fortune 500, Fortune Global 100, midmarket, public sector and other organizations from a broad range of industries have relied on Rimini Street as their trusted application enterprise software products and services provider. To learn more, please visit www.riministreet.com.
Learn More
silver
Tanium
See, control and protect every endpoint, everywhere, with the only Converged Endpoint Management (XEM) platform. It’s time for a convergence: https://www.tanium.com/converged-endpoint
Learn More
