Cloud Security Strategies: Chicago (Rosemont/O’Hare), Illinois
A framework for developing a robust cloud security strategy.
May 18, 2023
9:00am-5:00pm
7 CPE / 0.7 CEU / CISSP / 7 PDU Credits Awarded
Conference location: Donald E. Stephens Convention Center Rosemont (O’Hare) Illinois
Overview
Independent analysts show that through 2022, 93% of cloud security failures will be the fault of the end-user customer.
In this one day conference, attendees will learn tips, strategies and tactics for developing a robust cloud security strategy.
What You Will Learn
In this one day conference attendees will learn:
- Cloud IT Blind Spots – How to Close Visibility Gaps in Multicloud Environments
- Building Blocks for a Cloud Native Security and DR Strategy
- Cloud Security Posture Questions CISOs Should Answer
- Reducing Security Risks Associated with 3rd Party Actors
- How to Evaluate Security as a Service Providers
- Managing Security Vulnerabilities: Enterprise to Cloud
- The Golden Thread: Detect Threats in the Arc of Productivity
- Cloud Security in a Hybrid Work World – How Security Leaders are Adjusting (Panel Discussion)
Conference Price: $299.00 per person
Each attendee will receive a certificate awarding 7 CPE credits for CISSP continuing education, in addition to 0.7 CEUs and 7 PDUs. CISSP is a registered certification mark of (ISC)², Inc.
CONFERENCE AGENDA
8:00am – 9:00am: Registration and Continental Breakfast
9:00am – 9:50am: How to Evaluate Security as a Service Providers
Trent Ridgway, Head of Cloud Infrastructure & Security, Anning-Johnson Company
Ridgway
9:50am – 10:20am: Refreshment and Exhibit Break
10:20am – 11:10am: Cloud IT Blind Spots – Overlooked Architecture for Cloud Security and Resilience
Ken Wisniewski, Sr. Cybersecurity Security Architect, Sayers
Matthew Berrey, Enterprise System Engineer, Veeam
This session will explore the business challenges and issues related to security and resilience through various solutions. It will provide an analysis and architecture for incorporating different schemes, techniques and protocols for cloud computing, with a focus on hybrid IaaS and PaaS systems and how to achieve security and resilience for successful adoption.
Wisniewski Berrey
11:10am – 12:00pm: The Golden Thread: Detect Threats in the Arc of Productivity
Sudarsan Kannan, Director, Cloud Security, Uptycs
The Golden Thread ties rich security data across your developer laptops, source code repositories, identity providers, and into your cloud infrastructure. This correlation across attack surfaces serves as an early warning system to protect your environment before it’s too late.
When a threat actor compromises a laptop or source code repository as an entry point, reducing time to detection is vital to carving out malicious files and blocking further lateral movement.
Learn how to weave the golden thread throughout your environment and identify malicious activity early.
Kannan
12:00pm – 12:40pm: Lunch and Exhibit Break
12:40pm – 1:30pm: Managing Security Vulnerabilities: Enterprise to Cloud
Daniel Ryken, Senior Systems Engineer, Secureworks
Managing vulnerabilities in any organization can be overwhelming. Enterprise environments add scale and diversity that overwhelm many IT security and operations organizations. Cloud adoption as well as and the increasing speed with which all organizations must deliver systems, applications, and features to both their internal and external customers, can make security seem unachievable.
In this session, attendees will learn how to:
- Manage assets successfully and analyze and prioritize vulnerabilities
- Determine which reports are most effective
- Mature your program and think differently about vulnerability management
Ryken
1:30pm – 2:20pm: Don’t Just Shift Left, Shift Up! Building a Modern Cyber Defense Program, In the Cloud, For the Cloud
Chas Clawson, Field CTO, Security Solutions, Sumo Logic
Securing modern applications and cloud workloads is becoming increasingly complex. The “shift-left” approach has helped by incorporating security into applications and operations at the earliest stages, but is that enough? In this talk we will review the three major disciplines of Development, Design & Detection as they are used within the modern enterprise to secure critical assets. Each of these can level-up with automation as we move into an “everything as code” world.
Topics include:
- Security Minded Development: DevSecOps, Observability & OpenTelemetry
- Secure Architectural Design: Using Security Reference Architectures, ZeroTrust & Infrastructure as Code
- Modern Detection & Response: Playbooks and Security Orchestration Automation and Response (SOAR)
Clawson
2:20pm – 3:00pm: Strongpoint Defense for Your Cloud
Micki Boland, Global Cybersecurity Architect and Check Point Evangelist, Check Point Software Technologies, Ltd.
Leveraging Strongpoint Defense principles you will take and hold the high ground, remove your organization’s cloud assets from the adversary’s target list, use proactive defense to predict, plan, deter, defend, interdict, and contain attacks against your cloud strongpoints.
Boland
3:00pm – 3:30pm: Refreshment and Exhibit Break
3:30pm – 4:10pm: Building Blocks for a Cloud Native Security and DR Strategy
Prakash Sinha, Sr. Director & Technology Evangelist, Application Security & Delivery, Radware
To develop a cloud-native security and disaster recovery (DR) strategy, organizations need to consider several essential components. These include a zero-trust approach to access, as well as network, infrastructure, and application protection against cybersecurity threats. Additionally, the strategy must ensure high availability and rapid recovery in case of outages or disasters. By integrating these building blocks, organizations can create a secure and resilient cloud environment that is well-protected against potential threats and can quickly recover from any disaster.
Attendees will gain a better understanding of the key considerations for building a secure and resilient cloud-native environment, including the critical role of disaster recovery planning.
Key topics covered include:
- Overview of cloud-native environments and the need for a robust security and disaster recovery (DR) strategy
- Common use cases and building blocks for security and availability
- Best practices to harden your network, infrastructure, and application security and availability posture
Sinha
4:10pm – 5:00pm: Cloud Security and Cloud Disaster Recovery – How Security Leaders are Responding to Sophisticated Cyber Attacks (Panel Discussion)
Moderated by: Annur Sumar, Chief Technology Officer, Cloud Unity
Panelists include:
- Patrick Kinard, Senior Server Enterprise Operations Manager, Chicago Public Schools
- Nathan Borg, Enterprise Architect, Joliet Junior College
- Armando D’Onorio, Senior Consultant & CISO, Higher Ed
- Nicos Digrindakis, Disaster Recovery Manager, University of Chicago
- IT Executives sharing strategies, tactics, and lessons learned
Sumar Kinard Borg D’Onorio Digrindakis
Conference Price: $299.00 per person
Each attendee will receive a certificate awarding 7 CPE credits for CISSP continuing education, in addition to 0.7 CEUs and 7 PDUs. CISSP is a registered certification mark of (ISC)², Inc.
Exhibits
As is always the case at CAMP IT Conferences events, the talks will not include product presentations. During the continental breakfast, coffee breaks, and the luncheon break you will have the opportunity to informally meet representatives from the following sponsoring companies, who have solutions in the area of the conference.
CONFERENCE SPONSORS
