CISO Calgary Summit | September 26, 2019 | Calgary Marriott Downtown - Calgary, AB, Canada

↓ Agenda Key

Keynote Presentation

Visionary speaker presents to entire audience on key issues, challenges and business opportunities

Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee." title="Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee.

Executive Visions

Panel moderated by Master of Ceremonies and headed by four executives discussing critical business topics

Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members." title="Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members.

Thought Leadership

Solution provider-led session giving high-level overview of opportunities

Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community." title="Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community.

Think Tank

End user-led session in boardroom style, focusing on best practices

Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard." title="Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard.

Roundtable

Interactive session led by a moderator, focused on industry issue

Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done." title="Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done.

Case Study

Overview of recent project successes and failures

Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions." title="Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions.

Focus Group

Discussion of business drivers within a particular industry area

Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions." title="Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions.

Analyst Q&A Session

Moderator-led coverage of the latest industry research

Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst." title="Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst.

Vendor Showcase

Several brief, pointed overviews of the newest solutions and services

Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences." title="Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences.

Executive Exchange

Pre-determined, one-on-one interaction revolving around solutions of interest

Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest." title="Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest.

Open Forum Luncheon

Informal discussions on pre-determined topics

Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch." title="Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch.

Networking Session

Unique activities at once relaxing, enjoyable and productive

Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive." title="Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive.

 

Thursday, September 26, 2019 - CISO Calgary Summit

8:30 am - 9:15 am

Registration & Networking Breakfast

 

9:20 am - 9:30 am

Welcome Address & Opening Remarks

Presented by:

Darrel Popowich, Former VP IT (Master of Ceremonies), H & R Block Canada View details

 
 
 

9:35 am - 10:05 am

Share:

Keynote Presentation

IBM OT Security POV

This presentation provides IBM's insight into the critical elements of a comprehensive OT (Operational Technology) security program.

Sponsored by:

IBM View details

 
 

Presented by:

Rob Dyson, IBM Global Security Services Global OT Security Services Business Leader, IBM View details

 
 
 

10:10 am - 10:35 am

Executive Exchange

 

Share:

Think Tank

Disrupting the Disrupted: Emergency Services Digital Transformation

Leading a digital transformation of service delivery for society's most vulnerable citizens, Helen has innovated a unique approach to provide improved services for people experiencing homelessness. Learn about the challenges of delivering on technical innovation in the nonprofit sector, and the opportunities to improve service delivery for Calgary's most vulnerable citizens. Discuss new ideas to provide a real-time view of end-to-end service use within the city-wide system of care, and the challenges of developing the systems to advocate for the right supports to end chronic homelessness.  

Takeaways: 

  1. How to build a case for transformation when there is no budget 
  2. How to apply information technology for health and safety insights 
  3. How to federate disparate agencies with blockchain

Presented by:

Helen Knight, Chief Information Officer, Calgary Drop-In & Rehab Centre Society View details

 
 
 

10:40 am - 10:50 am

Morning Networking Coffee Break

 

10:55 am - 11:20 am

Executive Exchange

 

Executive Boardroom

BigFix sets the standard for endpoint management and security compliance.

IT security and operations teams struggle to keep Unix, Linux, Mac and Windows servers and end user devices continuously patched and compliant with security and regulatory mandates. They also strive for faster time-to-remediation during incidents. Using HCL BigFix, IT operations and security teams can instantly report to executives, board members and high-value supply chain partners that all systems are continuously patched and compliant, resulting in increased productivity and cost savings.

Sponsored by:

HCL BigFix View details

 
 
 

11:25 am - 11:50 am

Executive Exchange

 

Share:

Think Tank

Structuring & Funding Your Digital Transformation

CIOs straddle the world of strategic vision and operational excellence. Technology initiatives require significant investment, organizational engagement and adequate resourcing. Successful projects see IT organizations partnering throughout the organization to build a compelling technology plan, enabling customer experiences and services. 

Takeaways: 

  1. A structured approach to uncovering organizational needs to develop a multi-year technology roadmap 
  2. Unpacking the hidden costs of 'doing nothing': how avoiding investments can paralyze organizations 
  3. How to quantify opportunities and quantify value of long-term initiatives, securing funding

Presented by:

Jen Pearson, VP IT, Purdys Chocolatier View details

 
 
 

11:55 am - 12:20 pm

Executive Exchange

 

Executive Boardroom

THE 1/10/60 MINUTE CHALLENGE: A FRAMEWORK FOR STOPPING BREACHES FASTER

"Breakout time" is the average time it takes an intruder to compromise a system and move laterally through a network. This concept is emerging as a critical window to stop a breach, and on average it takes one hour and 58 minutes. Best practices dictate that preventing/detecting is less than 1 minute, analyzing is less than 10 minutes, and responding in less than 60 minutes to stop these adversaries. Is your department or organization up to the challenge? 

Join CrowdStrike for an important, in-depth discussion of the common hurdles Canadian organizations face in developing and executing an effective incident response framework. We will discuss ?outcome-driven metrics? that can spell the difference between an organization stopping a breach or experiencing catastrophic data loss: 

  • First is Time to Detection â?" organizations should set a goal of allowing only one minute to detect an incident or intrusion (automated). 
  • Second is Time to Investigation â?" the length of time it takes to find out if the incident is legitimate and determine next steps (containment, remediation, etc.). The best organizations do this within 10 minutes. 
  • Third, and most important, is Time to Remediation â?" the period of time needed to eject the intruder and clean up your network, which may involve coordination with the business owner of that asset. The best organizations try to do this within 60 minutes.

Sponsored by:

Crowdstrike View details

 
 
 

12:25 pm - 12:50 pm

Executive Exchange

 

Think Tank

Can Technology Alone Prevent Phishing Attacks & Breaches?

In a world where we are talking about trusting self-driving cars, will we totally trust self "threat assessing and action taking" cybersecurity systems? Is technology enough? What is the human role in both preventing and responding to attacks?

Takeaways:

  1. Employees continue to be one of the leading, if not the leading, entry point for security breaches
  2. Training about cyber-attack approaches such as Phishing is important but using technology can help employees more consistently identify outside forces attempting to harm your company

Presented by:

Suresh Durairaj, Senior Manager, Cybersecurity Office, TC Energy View details

 
 
 

12:50 pm - 2:00 pm

Working Lunch & Panel

The Revitalizing Change in the Role of the CXO

A CXO's role, goals and objectives have drastically changed over the years as most CXOs supervise teams and units beyond their IT's security. Because of these changes in responsibilities, a CXO's success is measured in greater business metrics. As a result, the role of a CXO has become both more attractive and more demanding.

Takeaways:

  1. What are the significant changes regarding the role of the CXO
  2. How to keep up with the changing requirements
  3. How to properly measure a CXO's success

Moderated by:

Darrel Popowich, Former VP IT (Master of Ceremonies), H & R Block Canada View details

 
 

Panelists:

Hani Mansi, Chief Information Security Officer, City of Edmonton

 
 

2:05 pm - 2:30 pm

Executive Exchange

 

Executive Boardroom

Zero Trust in Practice: Why Identity Drives Next-Gen Access

Zero Trust is quickly becoming the dominant security model for the cloud, shifting the perimeter from the network to the people and devices that make up a modern workforce. As a model with many moving parts, the immediate question is where to start? 

This session will focus on: 

  • The full Zero Trust reference architecture and steps to get there 
  • Why Identity is the foundational layer to build contextual access controls from

Sponsored by:

OKTA View details

 
 
 

2:35 pm - 3:00 pm

Executive Exchange

 

Think Tank

Machine Learning Is Here to Help, Not Replace

Over the next few years, machine learning (ML) will be a regular security practice and will offset skills and staffing shortfalls. Today though, ML is better at addressing smaller, more specific problems. Technology leaders have to understand that humans and machines complement each other and work better together than alone, as ML can assist humans in addressing uncertainty by presenting relevant information.

Takeaways:

  1. Discuss the ways machine learning can assist teams and organizations
  2. How to make the right machine learning choices for your organization
  3. The future of machine learning
 

3:05 pm - 3:30 pm

Executive Exchange

 

Executive Boardroom

The Importance of Engaging CISOs in Digital Transformation

The digital transformation challenge is significant for all, but CIOs need to understand the importance of engaging their CISO as well. Capturing IoT data from capital assets is a challenge on its own; however, many also struggle with the workforce's preference for entrenched processes as well as the executive team's expertise for managing physical assets, which is contrasted by their discomfort with digital transformation.

 

3:35 pm - 3:45 pm

Afternoon Networking Coffee Break

 

3:50 pm - 4:15 pm

Executive Exchange

 

Think Tank

The Geopolitical Landscape's Effects on Organizations

The recent U.S. government bans against Russian-based security products and Chinese smartphones are the latest results of suspicion and distrust of competing world powers. Organizations working with government entities must be aware of the geopolitical stipulations regarding their business relationships. Even with the geopolitical landscape, the buying decisions of security products are still based on trust in the supplier. It is important for CISOs and security leaders to incorporate geopolitical risk in all business-critical software, hardware and services purchasing decisions - even if that means considering local alternatives.

Takeaways:

  1. Review the geopolitical landscape and how it has effected industries and organizations
  2. What to be aware of with your buying decisions
  3. What to anticipate and prepare for in the coming years
 

4:20 pm - 4:45 pm

Executive Exchange

 

Think Tank

Becoming More Decentralized

Today, increased centralization has put the power and trust into the hands of the few big players. This, of course, raises many security concerns. The risk of disruptions and undesirable outcomes increases as centralization opens the door to exclusive possession or control of commodities and services. As a result, technologies like Blockchain implemented to create decentralized alternatives as they move computing resources away from centralized servers. 

Takeaways:

  1. Evaluating the risks of centralization on availability, confidentiality and resiliency
  2. Exploring decentralized technologies like Blockchain and edge computing that offer visibility as well as enhanced security for your organization
  3. Understand the fact or fictionalization of developing AI strategies and the cause for concern for decentralized AI models
 

4:50 pm - 5:00 pm

What's the Next Stop On the Transformation Journey?

Our Governing Board will summarize the learnings from the day and discuss the path forward for building an ongoing community of CISOs where common issues can be addressed and success stories can be shared.

Takeaways:

  1. Building an ongoing community with your peers can be an invaluable resource for tackling the digital transformation projects ahead of you
  2. Sharing stories of success (and failures) is not reserved to a one-day CISO Summit, but should be shared on a regular basis with your peers

Presented by:

Darrel Popowich, Former VP IT (Master of Ceremonies), H & R Block Canada View details

 
 
 

5:00 pm - 6:30 pm

Summit Happy Hour