>> Disruptive Technology Track 

 

Trends in Cloud Computing - Implications for Security and Audit

With the rapid and continuing shift of computing from on-premise or colocation to the public cloud, this session will survey recent interesting cloud trends, and discuss the security and privacy concerns they raise, as well as their impact for auditing. Topics will include Serverless Computing, GDPR and the Data Processing Addendum, Desktop as a Service (DaaS), Privacy and the CLOUD Act, IoT / IoE, and others.

 

Jim Raub, EagleDream Technologies - CISO & VP Engineering

In a career spanning thirty years and four continents, Jim Raub has securely delivered hundreds of IT solutions across dozens of industry sectors, always utilizing a strong customer focus to leverage technology and deliver a positive business impact for his clients. Jim received his B.S. in Computer Science from Syracuse University, and continued his involvement in the educational community by teaching over 20 courses at local colleges and businesses. He holds multiple certifications from ISC2, ISACA, Microsoft, AWS, Cisco, IBM, Toastmasters and other professional organizations. Jim loves playing piano, swimming, and being an amateur actor, but especially enjoys the company of his wife and four children.

 

The Organization's Journey to Security the Breach Today, organizations need to extend their data infrastructure across business units, partners, suppliers, customers, and a growing mobile workforce. The outsider is now an insider. Because of this, governments and organizations must adopt an enterprise data protection strategy in order to effectively protect data from the core to the edge of the enterprise, but how?

A holistic security approach around protecting your data requires a vision, a plan, an understanding of best practices, managed execution, and regular oversight.  This is where most organizations struggle. They know where they want to be, but how to get there is extremely challenging. Realizing the full potential of a data protection strategy requires well thought out business objectives and the involvement of multiple stakeholders across the organization, from business leaders, security officers, IT and Professional services to consultants, end users and even sales.

 

Todd Moore, Gemalto - Senior Vice PresidentTodd Moore is the Senior Vice President of Encryption products at Gemalto, where he has business line ownership for a data protection business.  He is a respected cybersecurity professional with over 20 years of experience helping organizations protect their most sensitive data. Previously, he was the Director of Product Line Management at Harris Corporation.

Mr. Moore holds a Master’s of Science in Electrical Engineering from Rochester Institute of Technology, a Bachelor’s of Science in Computer & Electrical Engineering from Cornell University and a Bachelor’s of Art in Physics & Mathematics from Ithaca College. Todd has received certifications in the Leadership Directions Program from the University of Virginia and in Executive Education from the Massachusetts Institute of Technology.  He is an active in his community and spends much of his free time supporting his two teenagers pursue their soccer and weightlifting passions. https://www.linkedin.com/in/todd-moore-a21a143/

 

The GDPR Odyssey

Navigating the waters between the proverbial “Scylla and Charybdis” when facing GDPR compliance as a US company is a challenge of mythic proportions.  The European laws have a fundamentally different philosophical underpinning than do the US laws.  Complying with the GDPR is really the first time companies have had to confront a tension of this type.  In Europe, the individual has all the control on how their data can be collected and used.  In the US, once the individual agrees to use the service, the company has all the control.  For a company with customers on both sides of the ocean, navigating between these perils is a real challenge.  For companies with existing products and services, the GDPR is disrupting at a fundamental level the way U.S. companies must interact with their customers.  This session will provide both the legal objectives a company must meet to sail between these two laws as well as some concrete examples of how companies have successfully bridged these two worlds from a user experience perspective.

 

Alan Winchester, Harris Beach, PLLC - Partner

Alan is a partner with the law firm of Harris Beach PLLC and leader of the firm’s Cybersecurity Protection and Response Practice Group. Alan assists organizations develop and implement compliance programs and information governance policies for critical information and systems.  His practice offers guidance on legal and regulatory requirements associated with the storage of protected information.  For companies that suffer a data breach he helps develop and implement an information security incident response plan, works with IT professionals to investigate the scope of a data breach and works to represent organizations faced with either government investigations or private actions associated with cybersecurity loss. Alan is a frequent speaker on various legal topics, including cybersecurity and information governance. Alan is also a founder of Caetra.io a newly formed company, wholly owned by Harris Beach, that will soon release its flagship cybersecurity software product, called CyMetric.

 

 

Block Chain - A Brief Overview of Distributed Systems

Navigating the waters between the proverbial “Scylla and Charybdis” when facing GDPR compliance as a US company is a challenge of mythic proportions.  The European laws have a fundamentally different philosophical underpinning than do the US laws.  Complying with the GDPR is really the first time companies have had to confront a tension of this type.  In Europe, the individual has all the control on how their data can be collected and used.  In the US, once the individual agrees to use the service, the company has all the control.  For a company with customers on both sides of the ocean, navigating between these perils is a real challenge.  For companies with existing products and services, the GDPR is disrupting at a fundamental level the way U.S. companies must interact with their customers.  This session will provide both the legal objectives a company must meet to sail between these two laws as well as some concrete examples of how companies have successfully bridged these two worlds from a user experience perspective.

 

Paul Neubecker - Co-Founder of Blockchain Buffalo, Controller at Softbank NY / Z80 Labs

After graduating from Fordham University, I spent six years in the Banking and Capital Markets Group at PwC in NYC with a focus on broker dealers and other SEC registrants. After relocating to Buffalo and leaving public accounting, I began to invest in real estate and joined Softbank NY and Z80 Labs in Buffalo and focused on venture capital in emerging technologies where I discovered Blockchain. Since then, I've spent most of my time thinking about our decentralized future. In 2017, I co-founded Blockchain Buffalo which focuses on education, advocacy and community building in Buffalo around this disruptive technology. The group has expanded to over 400 members in under a year.