Update: Our speaker unfortunately was not able to attend at the last minute. World Pass Attendees are able to select other sessions at this time. We apologize for the inconvenience.

------------

This hands-on lab explores the growing threat of Prompt Injection attacks in Generative AI and equips participants with practical strategies for identifying and mitigating these risks.

In this session you will:

• Understand the security challenges and vulnerabilities associated with Prompt Injection attacks
• Learn offensive and defensive techniques using real-world scenarios
• Apply open-source frameworks like NVIDIA NeMo to build actionable defenses

This interactive workshop equips security professionals with the tools and mindset needed to think like attackers—and defend smarter. Through practical exercises in attack simulation, threat hunting, and detection engineering, participants will explore advanced tactics, uncover key indicators of compromise, and build high-fidelity detections. The session also delves into the dual role of AI in both offensive and defensive operations, providing a cutting-edge perspective on modern cybersecurity strategy.

In this session you will:

• Emulate real-world attacker behavior and identify critical indicators of compromise
• Develop and test high-fidelity detections for both network and cloud-based threats
• Leverage AI to enhance both threat emulation and defensive capabilities

This session is exclusive for World Pass Holders only.

Cyber insurance has become a critical component of risk management for today’s CISOs. This session will explore how to strategically evaluate, select, and integrate cyber insurance to strengthen organizational resilience in an evolving threat landscape.

In this session you will:

• Explore key coverage options, policy considerations, and emerging trends in cyber insurance
• Learn how to align cyber insurance with your existing security protocols
• Gain strategies for communicating the value of cyber insurance to executive stakeholders

Cyber risk is increasingly synonymous with workforce risk, as traditional cybersecurity models that separate security operations, risk management, and compliance expose organizations to vulnerabilities. This session addresses the pressing challenges of budget constraints, reliance on outsourced talent, and workforce disruptions that strain cybersecurity operations. Attendees will gain insights into managing cyber workforce risks effectively.

In this session you will:

• Learn to document and optimize talent utilization
• Map and enhance organizational capabilities
• Align career aspirations with workload management for improved retention and security. With actionable strategies, transition from reactive to proactive workforce planning

Stay ahead of evolving compliance requirements with this in-depth workshop on PCI DSS v4.0.1. Tailored for IT professionals, compliance teams, security leaders, and CISOs, this session offers practical guidance on meeting new standards and preparing for successful audits.

In this session you will:

• Break down key updates and new requirements in PCI DSS v4.0.1
• Learn strategies for navigating transition timelines and aligning security practices
• Understand auditor expectations, evidence collection, and common compliance pitfalls to avoid

This workshop offers a comprehensive exploration of attack simulation, threat hunting, and detection engineering for security professionals. Participants will gain insights into attacker tactics and defensive strategies to enhance organizational security.

In this session, you will:

•  Emulate attackers and identify key indicators of compromise
•  Develop high-fidelity detections for network and cloud-based attacks
• Leverage AI for both offensive and defensive security measures

As global tensions escalate and digital perimeters expand, the need to understand the geopolitical forces shaping modern cyber threats has never been greater. This half-day workshop offers a high-impact, intelligence-driven crash course designed to equip cybersecurity leaders with the strategic awareness required to navigate today’s volatile threat landscape.

Participants will gain a clear-eyed view of the latest nation-state campaigns, the growing weaponization of artificial intelligence in offensive operations, and the financial and digital footprint of transnational organized crime. The program will also surface hidden vulnerabilities stemming from unchecked third-party access and supply chain dependencies.

By integrating intelligence, threat detection, and geopolitical analysis, this session empowers security leaders to move beyond reactive defense and build a proactive, informed security posture capable of meeting tomorrow’s challenges with confidence.

You will:

• Learn how to apply geopolitical intelligence to anticipate nation-state tactics, techniques, and procedures before they target your organization.
• Gain practical methods to integrate threat intelligence into enterprise decision-making and incident response.
• Identify hidden third-party and supply chain risks while developing proactive strategies that strengthen resilience across people, processes, and technology.

In today’s evolving regulatory landscape, a strong privacy program is more than a legal requirement— it’s a competitive advantage. This session will break down key privacy regulations, consent management, and the real-world challenges of operationalizing privacy in 2025.

In this session you will:

• Gain insights into current and emerging U.S. and EU privacy regulations
• Learn how to implement and manage effective privacy programs within your organization
• Understand cookie compliance and consent management to strengthen consumer trust

Cybersecurity success depends on more than just technical know-how— it requires clear communication across all levels of an organization. This session offers a practical framework for translating between technical, managerial, and executive perspectives to align security goals with business outcomes.

In this session you will:

• Learn how to tailor cybersecurity messaging to engineers, managers, and executives
• Explore real-world examples of bridging communication gaps to gain traction and funding
• Gain tools to unify security conversations and drive strategic alignment across teams

This workshop explores the practical realities of securing databases using encryption technologies, with a forward-looking focus on emerging threats and solutions.

In this session you will:

• Examine current encryption practices and their real-world applications
• Explore hands-on strategies for Post-Quantum Cryptography (PQC), AI, and vector databases
• Discover actionable, vendor-neutral techniques to future-proof your data security strategy

Discover how AI-driven assistants can enhance security operations for organizations of any size or budget. This session will provide a practical roadmap for implementing cost-effective AI tools to support red and blue team functions, threat intelligence, and compliance efforts.

In this session you will:

• Learn how to select, configure, and integrate open-source, free, and paid AI solutions
• Explore automation pipelines that boost incident response, red team support, and threat intelligence
• Understand how to continuously optimize AI tools to keep pace with evolving cyber threats

As cyber threats continue to evolve, so must the teams tasked with defending against them. This session explores how security leaders can reimagine team structures, processes, and culture to build high-performing cybersecurity operations. Drawing from proven frameworks such as Lean Management, the Four Disciplines of Execution (4DX), and the Five Dysfunctions of a Team (5DoT), attendees will gain practical tools to overcome trust deficits, improve collaboration, and align efforts with organizational goals.

In this session you will:

• Learn how to rethink traditional cybersecurity team models and optimize operations for high performance
• Explore the use of leadership frameworks like Lean, 4DX, and 5DoT to strengthen decision-making and team cohesion
• Discover actionable strategies to build trust, foster accountability, and create a culture of continuous improvement