EVENTCIO Southern California Summit | Mar 5, 2020 | Sheraton Grand - Los Angeles, CA, USA
agenda
Download Agenda (PDF)↓ Agenda Key
Keynote Presentation
Visionary speaker presents to entire audience on key issues, challenges and business opportunities
Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee." title="Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee.
Executive Visions
Panel moderated by Master of Ceremonies and headed by four executives discussing critical business topics
Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members." title="Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members.
Thought Leadership
Solution provider-led session giving high-level overview of opportunities
Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community." title="Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community.
Think Tank
End user-led session in boardroom style, focusing on best practices
Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard." title="Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard.
Roundtable
Interactive session led by a moderator, focused on industry issue
Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done." title="Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done.
Case Study
Overview of recent project successes and failures
Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions." title="Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions.
Focus Group
Discussion of business drivers within a particular industry area
Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions." title="Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions.
Analyst Q&A Session 
Moderator-led coverage of the latest industry research
Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst." title="Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst.
Vendor Showcase
Several brief, pointed overviews of the newest solutions and services
Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences." title="Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences.
Executive Exchange
Pre-determined, one-on-one interaction revolving around solutions of interest
Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest." title="Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest.
Open Forum Luncheon
Informal discussions on pre-determined topics
Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch." title="Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch.
Networking Session
Unique activities at once relaxing, enjoyable and productive
Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive." title="Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive.
Thursday, March 5, 2020 - CIO Southern California Summit
8:00 am - 8:50 am
Registration & Networking Breakfast
8:50 am - 9:05 am
Welcome Address & Opening Remarks 
Presented by:
Will Conaway, Former CIO & VP of Technology at Prime Healthcare, Individual 
9:05 am - 9:55 am
Keynote Panel
Steering Cultural Change
An IT and security executive's role, goals and objectives have drastically changed over the years. Most leaders supervise teams and units beyond their IT and security departments. Due to these changes in responsibilities, their success is measured in greater business metrics. As a result, these roles have become both more attractive and more demanding.
Takeaways:
- What are the significant changes regarding the role of the IT and security Executive
- How to keep up with the changing requirements
- How to properly measure an IT and security executive's success
Moderated by:
Will Conaway, Former CIO & VP of Technology at Prime Healthcare, Individual
Panelists:
Rafael Linares, Chief Information Security Officer, County of Orange
Sarah Richardson, VP IT Change Leadership, Optum
Charles Sims, Director of IT, LA Clippers
Cathy Bindewald, CIO, USC Marshall School of Business, University of Southern California
10:00 am - 10:25 am
Executive Exchange
Thought Leadership
Top Trends in Information Security Risk Management
Organizations around the world are pursuing digital initiatives to deliver more attractive products and services; to gain efficiencies; and save time and money. While digital transformation can significantly benefit an organization, it can also introduce new and changing risk. This session will discuss some of the risks that may emerge from digital transformation and risk management trends being employed by companies to address the challenges.
Sponsored by:
RSA
Presented by:
Marshall Toburen, Risk Management Strategist, RSA
10:25 am - 10:40 am
Morning Networking Coffee Break
10:40 am - 11:05 am
Executive Exchange
Think Tank
Supply and Demand: Closing the Growing Gap in Cybersecurity Skills
At a time when the threat landscape ever expanding, two out of three organizations worldwide claim to have a lack of the IT security staff needed. The need for cybersecurity professionals is at an all-time high. The deficit of qualified individuals has made the need for automated security tools more of a requirement than a desire in order to maintain a strong security foundation. Today's products and technologies can enable even small teams to appropriately secure multiple websites and applications, offering potential answers to the pressing recruitment issues.
Takeaways:
- There is a critical lack of qualified IT specialists
- Staffing deficits increase the need for automated tools
- New products can assist small teams facing big security challenges
Presented by:
Andy Kim, CISO, E-Business, Allstate
Think Tank
Keeping Pace with Innovation, Chronologically and Economically
Today's digital evolution will take major enterprises twice as long and cost twice as much as initially anticipated. Companies will struggle with digital innovation as they realize the associated challenges, and the true cost of modernization. As such, leaders in smaller and more agile organizations have a great opportunity to be first to market, while those in larger organizations suffer through uninspiring, and potentially career limiting, short term results.
Takeaways:
- How to deal with the fact that digital innovation is not cheap or quick
- Strategies for success in implementation planning
- Lessons learned from smaller organizations, where they have an easier time testing out new technology
Presented by:
Will Conaway, Former CIO & VP of Technology at Prime Healthcare, Individual
11:10 am - 11:35 am
Executive Exchange
Executive Boardroom 
Securing Privilege to Stop Attacks with CyberArk
Privileged accounts, credentials and secrets are everywhere - on-premises, in the cloud, on endpoints, and across DevOps environments. From personally identifiable customer information to critical intellectual property, they provide access to your enterprise's most valuable assets. And attackers are after them. Right now.
Recognized for establishing the Privileged Access Management category, CyberArk continues to deliver the industry's most complete solution to reduce risk created by privileged credentials and secrets.
CyberArk is the #1 provider in privileged access management, a critical layer of IT security to protect data, infrastructure and assets across the enterprise - on premises, in the cloud, on endpoints, and throughout the DevOps pipeline.
Sponsored by:
CyberArk Software
Presented by:
Matt Oliver, Account Executive, CyberArk Software
Executive Boardroom
Reducing the risk of giving outsiders insider access; Third-party Identity Management
Today, utilization of third-party vendors, contractors freelancers and even bots (and ?things?) has become a regular practice of organizations looking to cost-effectively increase their competitive edge.
However, most organizations are only managing third-party risk at the vendor level without taking into consideration the access needs and risk associated with each individual identity.
SecZetta argues that security leaders must evolve their approach and manage third-party risk at the individual identity level. In this session, SecZetta will overview how to execute risk-based identity access and lifecycle strategies for diverse third-party populations.
Takeaways:
- Utilizing growing numbers of increasingly diverse third-parties has become a massive source of unmeasured risk for most organizations
- Most organizations have no way to centrally track and manage their relationships with this burgeoning number of third-parties and the access to enterprise assets they require.
- In addition to unmeasured risk, organizations need to better understand the hidden costs of third-parties including the man hours needed for provisioning, completing audits, verifying access, and deprovisioning access.
Sponsored by:
SecZetta
Presented by:
Jason Hobart, Senior Vice President and Chief Customer Officer, SecZetta
11:40 am - 12:05 pm
Executive Exchange
Think Tank
Storytelling: Conquering Hearts and Minds to Enable Digital Transformation
Is it possible to drive transformation without imagination? Is it possible to get people to imagine without a story? Quite often what is rather obvious to IT professionals is far from clear to anyone else: jargon, acronyms, buzzwords, technical diagrams. How excited are your IT teams about the revenue potential their work can unleash? How well are they communicating this to their peers and stakeholders? In the age of connectivity, when it has never been so easy to communicate through video, audio, images, text and what have you, it is amazing how hard it is to build good teams, to keep your c-suite informed and engaged and to develop the kind of culture that allows a learning organization to flourish.
Takeaways:
- What's the role of the CIO and how his teams can support him/her?
- How much communication is enough and how do we know it is actually working?
- Can digital transformation be pushed on an organization?
Presented by:
Ragnarok Rocha, Executive Director, Global IS Innovation, Integration & PMO, Ingram Micro Inc.
12:10 pm - 12:35 pm
Thought Leadership
You Need to Know Who Is Accessing Your Data, But Do You Really?
Knowing who is accessing what data is at the heart of security. Today, users and attackers get to your data through a mesh of web applications, APIs, and microservices. Unfortunately, your database logs only report the querying source as an authorized intermediary application without the originating requestor's information. This blind spot causes glaring gaps during audits, slows incident response, and impede breach detection.
Learn how to apply new ways of continuously linking originating users' information to every database access with cohesive interworking between edge WAF, server RASP, and Data Activity Monitoring tools.
Sponsored by:
Imperva
Presented by:
Julien Bellanger, VP Runtime Security, Imperva
Kunal Anand, CTO, Imperva
12:40 pm - 1:10 pm
Networking Lunch
1:10 pm - 1:40 pm
Keynote Luncheon
As your data center goes virtual - your security DEPENDS on Identity!
With the change of habits, use-cases, and needs; new requirements have been brought into the Security World alongside significant challenges. Identity is fundamental to any security regime, but modern identity capabilities are necessary in order to function effectively
Sponsored by:
ForgeRock
Presented by:
Allan Foster, VP Global Partner Success, ForgeRock
1:45 pm - 2:10 pm
Executive Exchange
Executive Boardroom
Keep ALL endpoints continuously patched and compliant with the just released BigFix 10!
Join us to learn why thousands of enterprises use a single solution to simplify patch, compliance and security configuration management of all Windows, UNIX, Linux, MacOS, AWS, Azure, and VMware instances, whether they're on premise or in the cloud. The results? Faster cycles, reduced OPEX and tighter security.
Sponsored by:
HCL BigFix
Presented by:
Dennis Stimpson, Western US Product Specialist Director, HCL BigFix
Executive Boardroom
Still Using Passwords? Forget That Sh*t
The constant barrage of breaches over the last decade has made it clear that usernames and passwords - invented back in 1964 - are simply no longer secure enough. According to the 2019 Verizon Breach Investigations Report, compromised credentials are responsible for over 80% of all breaches.
Despite attempts to make static credentials more secure by adopting two-factor authentication utilizing SMS, OTPs or hardware tokens, these added layers still leave organizations vulnerable to phishing attacks, keylogging, malware and more.
By removing the past reliance on usernames and passwords, you can enhance your organization's security by significantly reducing your overall attack surface and virtually eliminating the risk of compromised credentials.
Takeaways:
1. Learn how usernames and passwords are leaving your organization at risk.
2. See how how passwordless authentication removes major threat vectors.
3. Provide users a fast, simple and consistent authentication experience across any channel.
Sponsored by:
Trusona, Inc.
Presented by:
Ken Granger, Sales Engineer, Trusona, Inc.
2:15 pm - 2:40 pm
Executive Exchange
Think Tank
Board Reports
Nowadays a CISO has to stand in front of a board and present that state of security. The challenge being that board may not have any knowledge about this topic but they recognize its importance. How do you present Information Security properly and appropriately. Instead of talking through methods and concepts come join and be a member of the board during one CISO's presentation. Will discuss not only the presentation, but the state of mind a board is in as you present. Questions, gotchas along the way, and feedback from others who have been in the hot seat are welcome.
Takeaways
- An actual (sanitized) presentation made to a 1B+ Enterprise presented
- Awareness on what the board is thinking, and how to address
- A risk approach to security for consideration
Presented by:
Ira Ham, Vice President Global Chief Information Security Officer, Orora
2:45 pm - 3:10 pm
Executive Exchange
Thought Leadership
Looking at Cybersecurity Through the Eyes of an Attacker
We've entered a new decade of the cybersecurity battle yet many of the same challenges remain. Threats continue to come from all angles as organizations try to overcome visibility and automation challenges, overburdened security teams, as well as bloated and inefficient security stacks. Attackers look for gaps across your entire environment and use sophisticated techniques and automation to evade defenses, disrupt business operations and steal sensitive data. When it comes to cybersecurity, every second counts, with average cyber dwell time measured in months and the financial impact of a data breach in the millions.
To improve cybersecurity outcomes, organizations must look across the entire environment (network, cloud, endpoints, enterprise IoT), see and correlate what threats are doing, how they're moving, what they're using to evade defenses, and what they're targeting. Join us for a webinar where we will examine how to think like an attacker and gain continuous understanding of the environment and anomalous behavior. We'll explore:
- Where to focus your efforts based on the latest cybersecurity trends and challenges
- The importance of gaining actionable insights into adversary techniques, tactics, and procedures
- How to engage the attacker prior to impact with predictive analytics
- Automating cybersecurity operations to make decisions and act faster than the attacker
- Shaping the attacker's perspective of your cyber terrain and slowing them down
Sponsored by:
Fidelis Cybersecurity
Presented by:
Craig Harber, CTO, Fidelis Cybersecurity
3:10 pm - 3:25 pm
Afternoon Networking Coffee Break
3:25 pm - 3:50 pm
Executive Exchange
Think Tank
Using Predictive Analytics: Social Determinants of Health
In recent years, health care stakeholders have come to realize that focusing solely on reducing medical risk through preventive and chronic care management will not produce desired population-level results. Predictive analytics involves sorting and weighing various types of data using an algorithmic model to forecast future outcomes. Health plans have traditionally used claims data to stratify members and identify higher-risk members in need of case management, such as those who frequently visit the emergency department (ED) or use a lot of other high-cost resources.
Takeaways:
- Social Determinants of Health are key factors that can augment Predictive Analytics
- Environmental Determinants of Health are also as important as social determinants
- Combined these can be quite powerful in helping with prevention as well as outcomes.
Presented by:
Neil Bahroos, Chief Informatics Officer, USC Keck Medicine
Think Tank
Combating the Rise in Cloud-based Threats
As the cloud migration continues, securing data and critical infrastructure is going to require new approaches. Organizations have struggled to maintain control of critical data and ensure real-time threat intelligence, giving cloudbased threats the ability to multiply. Data buckets being misconfigured, or inadequately secured increases the risk of a breach. Being able to manually manage security for large web application infrastructures has become a thing of the past. As such, organizations are being pushed to reevaluate their approach to web application security.
Takeaways:
- The rise of cloud migration means security will need to adapt
- Many organizations have struggled to secure data
- Cybersecurity threats will only increase and become more complex
Presented by:
A.J. Soria, Director of Information Security (CISO - Head of Information Security), Age of Learning Inc.-ABCMouse.com
3:55 pm - 4:20 am
Executive Exchange
Think Tank
2020 Focus: The People
Successful IT executives focus on the people. It's important for IT executives to partner with UX, HR and employee experience teams to aid with the shift in workforce dynamics, bringing emerging technologies or AI interactions to high-value business engagement.
Takeaways:
- Strategies for success through focus on the business software user
- How employee training contributes to software success
- Case studies for success building business engagement in the IT team
Presented by:
James Reckon, Director, Enterprise Program Management & Transformation Management, Prime Healthcare
4:25 pm - 4:50 pm
Executive Exchange
4:50 pm - 4:55 pm
Closing Remarks
4:55 pm - 6:30 pm