|
Saturday, March 28, 2020 |
| 9:00 AM - 5:00 PM | Container Security Summit | Summits |
| 9:00 AM - 5:00 PM | Workshop 1: Adversarial Attacks & Detections: Improving Your Security Posture with Purple Teams (Two-Day Workshop) (Part 1 of 2) | Workshops |
| 9:00 AM - 5:00 PM | Workshop 2: DevSecOps and Cultural Transformation (Two-Day Workshop) (Part 1 of 2) | Workshops |
|
Sunday, March 29, 2020 |
| 9:00 AM - 5:00 PM | InfoSec Leadership Summit | Summits |
| 9:00 AM - 5:00 PM | Workshop 1: Adversarial Attacks & Detections: Improving Your Security Posture with Purple Teams (Two-Day Workshop) (Part 2 of 2) | Workshops |
| 9:00 AM - 5:00 PM | Workshop 2: DevSecOps and Cultural Transformation (Two-Day Workshop) (Part 2 of 2) | Workshops |
| 9:00 AM - 5:00 PM | Workshop 3: Wireless Workshop: WiFi Security Training in a Virtualized Cyber Range | Workshops |
|
Monday, March 30, 2020 |
| 8:45 AM - 9:30 AM | Opening Keynote: Leaders Needed: Preventing the Next Big Breach | Keynotes |
| 10:00 AM - 10:50 AM | A1 Tales from the Trenches: A First-Hand Look at the Cybersecurity Landscape | Security Strategies |
| 10:00 AM - 10:50 AM | B1 How to Patch "Stupid" | Awareness, Decisions & Devices: The Human Layer of Security |
| 10:00 AM - 10:50 AM | C1 Threat Modeling: Start Early | Secure Design |
| 10:00 AM - 10:50 AM | D1 Faking It: Combatting Email Impersonation with AI | Hackers & Threats |
| 10:00 AM - 10:50 AM | E1 Cyberlaw Year in Review: The Human Element Becomes Critical | Management & Leadership |
| 10:00 AM - 10:50 AM | F1 Cybersecurity Controls: Keeping Enterprise Risk on Track | Privacy & Risk |
| 10:00 AM - 10:50 AM | G1 Increasing Efficiency and Effectiveness with One-Off Tools and Scripts | Infrastructure & Operations |
| 11:00 AM - 11:50 AM | A2 You’ve Been Pwned… But Your Customers are the Target | Security Strategies |
| 11:00 AM - 11:50 AM | B2 Security Awareness How-To’s: Building an Enterprise Security Awareness Program from the Ground Up | Awareness, Decisions & Devices: The Human Layer of Security |
| 11:00 AM - 11:50 AM | C2 Late-Breaking Session | Secure Design |
| 11:00 AM - 11:50 AM | D2 Developing an Effective Insider Threat Program: Automating the Detection of Risk Indicators | Hackers & Threats |
| 11:00 AM - 11:50 AM | E2 How Do I Advance in My Career? Finding the Road to Success! | Management & Leadership |
| 11:00 AM - 11:50 AM | F2 Managing Risk in the Privacy Alphabet Soup | Privacy & Risk |
| 11:00 AM - 11:50 AM | G2 Information Security Frameworks and Control Catalogs: Differences, Selection, Implementation | Infrastructure & Operations |
| 1:45 PM - 2:35 PM | A3 The Assumption of Compromise Paradox: A Focus on Exfiltration Detection & Prevention | Security Strategies |
| 1:45 PM - 2:35 PM | B3 Late-Breaking Session | Awareness, Decisions & Devices: The Human Layer of Security |
| 1:45 PM - 2:35 PM | C3 Great Application Security Requires Mind(set) Over Matter | Secure Design |
| 1:45 PM - 4:55 PM | Capture The Flag 101 - HANDS-ON | Capture the Flag |
| 1:45 PM - 2:35 PM | D3 Beyond the Dark Web: What Will They Think of Next? | Hackers & Threats |
| 1:45 PM - 2:35 PM | E3 Late-Breaking Session | Management & Leadership |
| 1:45 PM - 2:35 PM | F3 Bringing Cybersecurity & Privacy Together through NIST Frameworks | Privacy & Risk |
| 1:45 PM - 2:35 PM | G3 Hacking Firmware: The Unprotected Attack Surface of the Enterprise | Infrastructure & Operations |
| 2:45 PM - 3:35 PM | A4 Late-Breaking Session | Security Strategies |
| 2:45 PM - 3:35 PM | B4 Training Your Employees on Safeguarding Your Organization | Awareness, Decisions & Devices: The Human Layer of Security |
| 2:45 PM - 3:35 PM | C4 Managing Cybersecurity and Privacy Risks in IoT | Secure Design |
| 2:45 PM - 3:35 PM | D4 Digital Certificates 101 | Hackers & Threats |
| 2:45 PM - 3:35 PM | E4 Cybersecurity... Past, Present, and Future… | Management & Leadership |
| 2:45 PM - 3:35 PM | F4 Cracking the Cyber Liability Code | Privacy & Risk |
| 2:45 PM - 3:35 PM | G4 Late-Breaking Session | Infrastructure & Operations |
| 3:55 PM - 4:10 PM | A5.1 Turn on a Dime: Keep Cybersecurity Staff Trained and Engaged on Changing Technology | Security Strategies |
| 3:55 PM - 4:55 PM | B5 Zero to Sixty: Making Security Programmatic and Cultural | Awareness, Decisions & Devices: The Human Layer of Security |
| 3:55 PM - 4:55 PM | C5 Gathering of the Vulnerability Wranglers 2.0 (PANEL) | Secure Design |
| 3:55 PM - 4:55 PM | D5 An Anatomy of a Targeted Persistent Attack (TPA) on Commercial Routers and Means to Mitigate | Hackers & Threats |
| 3:55 PM - 4:55 PM | E5 How Our Boards Measure Our Security Programs | Management & Leadership |
| 3:55 PM - 4:55 PM | F5 Risk Exchanges: The Key to Vendor Risk Management Efficiency Presented by OneTrust | Privacy & Risk |
| 3:55 PM - 4:55 PM | G5 How PKI and SHAKEN/STIR Will Fix the Robocall Problem | Infrastructure & Operations |
| 4:15 PM - 4:30 PM | A5.2 Security Orchestration Is Not About Tools | Security Strategies |
| 4:35 PM - 4:50 PM | A5.3 Cybersecurity and Privacy Risks: The Consumers Perspective | Security Strategies |
|
Tuesday, March 31, 2020 |
| 8:45 AM - 9:30 AM | Keynote: Beyond the Curve: Visualizing Tomorrow | Keynotes |
| 9:40 AM - 10:30 AM | A6 All Your Passwords Are Belong to Us: Changing the Group-Think on Password Security | Security Strategies |
| 9:40 AM - 10:30 AM | B6 Can We Really Change Security Culture? | Awareness, Decisions & Devices: The Human Layer of Security |
| 9:40 AM - 10:30 AM | C6 Colliding Worlds: Strategies for IT, OT, and IoT Convergence | Secure Design |
| 9:40 AM - 10:30 AM | D6 Late-Breaking Session Presented by Sophos | Hackers & Threats |
| 9:40 AM - 10:30 AM | E6 Everything You Wanted to Know About Security Evangelism But Were Afraid to Ask | Management & Leadership |
| 9:40 AM - 10:30 AM | F6 Mergers and Acquisitions: How to Transfer Your Cyber Risk | Privacy & Risk |
| 9:40 AM - 10:30 AM | G6 Exposing Speculative Execution Side Channel Methods: What You Should Know and What You Should Do | Infrastructure & Operations |
| 10:40 AM - 11:30 AM | A7 Malware and Machine Learning: A Dangerous Combination? | Security Strategies |
| 10:40 AM - 11:30 AM | B7 The Psychology of Social Engineering – The “Soft” Side of Cybercrime | Awareness, Decisions & Devices: The Human Layer of Security |
| 10:40 AM - 11:30 AM | C7 Late-Breaking Session | Secure Design |
| 10:40 AM - 11:30 AM | D7 The Modus Operandi of EV Certificate Fraudsters: Findings from the Field | Hackers & Threats |
| 10:40 AM - 11:30 AM | E7 ISSA/ESG’s 4th Annual Research Survey on the Cybersecurity Profession – Is It Getting Better? | Management & Leadership |
| 10:40 AM - 11:30 AM | F7 An Offensive Approach to Managing Your Third-Party Risk | Privacy & Risk |
| 10:40 AM - 11:30 AM | G7 Getting the Most Out of Your Covert Physical Security Assessment: A Client’s Guide | Infrastructure & Operations |
| 3:00 PM - 3:50 PM | A8 Cyber + Traditional Security Program Integration | Security Strategies |
| 3:00 PM - 3:50 PM | B8 Late-Breaking Session | Awareness, Decisions & Devices: The Human Layer of Security |
| 3:00 PM - 3:50 PM | C8 Tales of AppSec: Common and Crazy Things You Should Address | Secure Design |
| 3:00 PM - 3:50 PM | D8 Challenging Insider Threats: Cyberspace Insider Threat Triage (CITT) Plan | Hackers & Threats |
| 3:00 PM - 3:50 PM | E8 Five Things That Matter | Management & Leadership |
| 3:00 PM - 3:50 PM | F8 Case Study: Performing a Global IT Risk Assessment | Privacy & Risk |
| 3:00 PM - 3:50 PM | G8 Late-Breaking Session | Infrastructure & Operations |
| 4:00 PM - 4:50 PM | A9 Late-Breaking Session | Security Strategies |
| 4:00 PM - 4:50 PM | B9 Security Awareness and the Landscape of Emerging Threats | Awareness, Decisions & Devices: The Human Layer of Security |
| 4:00 PM - 4:50 PM | C9 Mitigating at Design Time | Secure Design |
| 4:00 PM - 4:50 PM | D9 Feed the Beast! Threat Hunt Use-Cases from the Front Lines | Hackers & Threats |
| 4:00 PM - 4:50 PM | E9 Level Up! Business Communications Strategies to Advance and Lead Projects with Precision | Management & Leadership |
| 4:00 PM - 4:50 PM | F9 Late-Breaking Session | Privacy & Risk |
| 4:00 PM - 4:50 PM | G9 Protect Your Data and the Air Gapped Network | Infrastructure & Operations |
|
Wednesday, April 1, 2020 |
| 10:30 AM - 11:20 AM | A10 East vs West: How the Coasts Approach Information Security Differently | Security Strategies |
| 10:30 AM - 11:20 AM | B10 People are the Perimeter: Understanding How All of Us Affect Cyber Risk | Awareness, Decisions & Devices: The Human Layer of Security |
| 10:30 AM - 11:20 AM | C10 DevSecOps in the Real World | Secure Design |
| 10:30 AM - 11:20 AM | D10 Agile Security Patching | Hackers & Threats |
| 10:30 AM - 11:20 AM | E10 The vCISO Journey: So You Want to be a vCISO? | Management & Leadership |
| 10:30 AM - 11:20 AM | F10 Risky Business: Is Your Cybersecurity on Cruise Control | Privacy & Risk |
| 10:30 AM - 11:20 AM | G10 How to Implement the “Triangle” of Network Security Management | Infrastructure & Operations |
| 11:30 AM - 12:15 PM | Keynote: The Fight for Our Cyber Soul: Technology, Profits, and Prioritizing Cybersecurity | Keynotes |
| 1:00 PM - 5:00 PM | Workshop 4: Accelerating Cybersecurity with Artificial Intelligence | Workshops |
| 1:00 PM - 5:00 PM | Workshop 5: Benchmarking LIVE!: Endpoint Security | Workshops |
| 1:00 PM - 5:00 PM | Workshop 6: Culture Lab: Making 'Me' Matter | Workshops |
| 1:00 PM - 5:00 PM | Workshop 7: Your NIST CSF Readiness Assessment | Workshops |
|
Thursday, April 2, 2020 |
| 9:00 AM - 5:00 PM | Cloud Security Summit | Summits |
| 9:00 AM - 5:00 PM | Workshop 8: Building an AppSec Program with OWASP | Workshops |
| 9:00 AM - 5:00 PM | Workshop 9: Why the Cyber Technician Needs to Become an Enterprise Leader (and How!) | Workshops |