2019 CONFERENCE PROGRAM

As the program is developed, we will continue to add information to this page – check back frequently for updates!

Tracks

• Track 1—Emerging Security Tools & Techniques
• Track 2—Cyberthreat Intelligence & Technologies
• Track 3—Cybersecurity Leadership & Development
• Track 4—Security Risk & Compliance
• Track 5—Data Analytics Enhancing Cybersecurity
• Track 6—Industry Trends and Insights

Workshops

All workshops will take place at the Wyndham New Yorker
481 8^th Avenue, New York, NY 10001

2-day Pre-Conference Workshops
Monday, 18 November & Tuesday, 19 November | 9:00AM – 5:00PM

• WS1–Accelerated CSX Cybersecurity Practitioner Certification Workshop SOLD OUT!
• WS2–The Truth About AI, Machine Learning and Cyber Security Revisited

1-day Pre-Conference Workshops
Tuesday, 19 November | 9:00AM – 5:00PM

• WS3–Auditing Microsoft 365 and Azure Cloud Security SOLD OUT!

1-day Post-Conference Workshops
Friday, 22 November | 9:00AM – 5:00PM

• WS4–Penetration Testing in a Cloud Environment

NEW IDEAS

Do you have a topic that you think should be offered at this conference? We want to know! Tell us about it by submitting your idea on Twitter!

Opening Keynote Speaker

Theresa Payton
Former White House CIO & Cybersecurity Authority
More >>

Closing Keynote Speaker

Jamie Bartlett
British Author and Journalist
More >>

Full Conference Pass

$1,550

$1,400

Morning Keynote, ISACA Education tracks, Expo, Networking Lunch, Networking Party, Expo Floor and partner content**

Workshop Only
WS1
WS2
WS3
WS4

Varies by workshop
$1,399
$1,050
$850
$850

Varies by workshop
$1,299
$850
$650
$650

Workshop session only (+Expo both days)

Expo & Keynote

$299 pre-event / $349 at event

$249 pre-event / $299 at event

Expo, Opening & Closing Keynote, Networking Lunch, Networking Party, Expo floor & partner content**

Expo Only

$199 pre-event / $249 at event

$149 pre-event / $199 at event

Expo, Networking Lunch, Networking Party, Expo floor & partner content**

Day Pass

$50

$50

Expo floor & partner content**

Galvanize builds security, risk management, compliance, and audit software for some of the world’s largest organizations. We’re on a mission to unite and strengthen these different teams through the collective HighBond software platform. But we don’t just make technology—we provide tools that strengthen individuals so they can achieve great things and change the world in the process.

For more than 30 years, Vanguard has safeguarded the mission critical data and applications for the United States and other governments and the world’s largest financial, healthcare and retail organizations. Vanguard Integrity Professionals is the largest independent provider of enterprise security software addressing complex security and regulatory compliance challenges. Vanguard continuously drives innovation in security software and technology to stay ahead of evolving regulatory requirements and an ever-changing threatscape. Led by some of the most knowledgeable minds in the cybersecurity industry our security solutions lead the industry.

Making great experiences requires trust. Only Adobe gives everyone — from emerging artists to global brands — everything they need to design and deliver exceptional digital experiences. Learn how we help ensure they are trusted experiences at trust.adobe.com.

A-LIGN is one of three solution providers that can offer a consolidated approach to information technology and information security audits. A-LIGN is a HITRUST CSF Assessor firm, Qualified Security Assessor Company, Accredited ISO 27001 Certification Body, Accredited FedRAMP 3PAO and licensed CPA firm. With the ability to work with small businesses to the largest of enterprises, A-LIGN leverages its industry expertise to guide organizations towards security, compliance and privacy services that will enhance their information security to prevent cyber threats, and reduce risk, turning their security into a competitive edge.

CyberClarity360™ is a sophisticated third-party cyber risk management solution that helps organizations efficiently assess and confidently track the cybersecurity and resilience of their third parties. CyberClarity360 quantifies cyber risk by leveraging a transparent scoring and analysis system designed to deliver compliance assessment against several regulatory frameworks, including NY DFS, GDPR, NIST CSF, and more, enabling informed risk-based decisions and unique insight into often overlooked risk areas not only at control level detail, but also portfolio-wide.

Expanse discovers your unknown Internet assets and what’s talking to them. We continuously discover, track, and monitor the dynamic global Internet edge for the world’s largest organizations. Our platform discovers an organization’s global Internet edge and identifies its IP space, known and unknown assets, and their configurations. We enrich those asset views with global flow data to link a complete picture of edge attack vectors to the communications that indicate a data breach, misconfiguration, or policy violation. F500 organizations like Capital One, CVS, Allergan, and many more trust Expanse to define and secure their global network edge.

With over 12 years’ experience in the Governance Risk and Compliance (GRC) market, MetaCompliance provides an innovative solution for compliance and staff awareness automation. The MyCompliance suite was created to meet customer need for a single solution to manage their ISO27001, compliance and data protection requirements. With a focus on staff awareness and security risk management, customers are able to manage a diverse range of functionality that includes eLearning, simulated phishing alongside policy management, vendor management, risk management and regulatory reporting.

SecurityScorecard helps enterprises gain operational command of their security posture and the security posture of their third-parties through continuous, non-intrusive monitoring. The company’s approach to security focuses on identifying vulnerabilities from an outside perspective, the same way a hacker would. SecurityScorecard’s proprietary SaaS platform offers an unmatched breadth and depth of critical data points including a broad range of risk categories such as Application Security, Malware, Patching Cadence, Network Security, Hacker Chatter, Social Engineering, and Leaked Information. For more information, please visit www.securityscorecard.com

Cequence Security is a venture-backed cybersecurity software company. Its mission is to transform application security by consolidating multiple innovative security functions within an open, AI-powered software platform that protects customers web, mobile, and API-based applications – and supports today’s cloud-native, container-based application architectures. The company’s led by industry veterans that previously held leadership positions at Palo Alto Networks and Symantec. Customers include F500 organizations across multiple vertical markets, and the solution has earned multiple industry accolades.

Cyber Observer is a powerful, comprehensive and easy-to-use management solution that enables CISOs, Chief Compliance Officers and IT executives to effectively secure their organizations against cyber-threats. Cyber Observer uses a patented core engine and Critical Security Controls measurements to present a clear picture of enterprise-wide cybersecurity ecosystem status and preparedness at any given moment, alerting to breaches and threats as they arise and actions to be taken to secure critical infrastructures across the security environment.

Neverfail is the leading provider of continuous compliance and high availability solutions, trusted by 4,000 customers in over 60 countries. Neverfail automates evidence collection, control monitoring, and remediation management for organizations burdened by SOC 2, NIST, GDPR, and FedRamp requirements.

Your technology challenges never stop changing, so neither do we. Whether it’s data explosion, cloud expansion, security threats or something new, we’ll work with you to help you solve your toughest IT challenges. Since 1987, we’ve provided software solutions for the fast paced world of enterprise IT.

Resecurity is a cybersecurity company headquartered in Los Angeles, California. The company provides next-generation endpoint protection and intelligence-driven cybersecurity solutions to leading Fortune 500 corporations and governments worldwide.

Specialized Security Services, Inc. (S3) develops and maintains custom-tailored cyber security programs, so you can elevate security to where it belongs—top of mind and top down. We are a women-owned, global cyber security firm with headquarters in both Dallas, TX and Europe. For over two decades, our expert team has successfully assisted organizations with the implementation and oversight of their information security, privacy and regulatory compliance programs. S3 bridges the gap between your business goals, cyber security needs and compliance requirements to become your trusted and valued security partner for life.

Code42 is the leader in data loss protection, visibility and recovery solutions. Native to the cloud, the Code42 Data Loss Protection solution rapidly detects insider threats, helps satisfy regulatory compliance requirements and speeds incident response — all without lengthy deployments, complex policy management or blocks on user productivity. For more information, visit code42.com.

Passwords represent the greatest security risk to businesses today. With Keeper, your employees have on-demand access to encrypted passwords, websites and applications increasing their productivity while protected with best-in-class security.

Lockpath is an enterprise software company that helps organizations understand and manage their risk. The company’s line of integrated risk management solutions provides companies with the means to efficiently and effectively identify, manage, and monitor risks, for a more agile and resilient business. Lockpath serves a client base of global organizations ranging from small and midsize companies to Fortune 10 enterprises in more than 15 industries.

OneTrust is the #1 most widely used privacy, security and third-party risk technology platform trusted by 3,000 companies to comply with the CCPA, GDPR, ISO27001 and hundreds of the world’s privacy and security laws. OneTrust’s three primary offerings include OneTrust Privacy, OneTrust PreferenceChoice^™ and OneTrust Vendorpedia^™. For more, visit OneTrust.com.

Building on Purdue's mission to provide greater access to affordable, high-quality education, Purdue University Global is a public, nonprofit institution that offers a world-class education online. Purdue Global delivers personalized online education tailored to the unique needs of adults who have work or life experience beyond the classroom.

Qualys, Inc. is a pioneer and leading provider of cloud-based security and compliance solutions that help organizations streamline and consolidate their security and compliance solutions and build security into digital transformation. The Qualys Cloud Platform and its integrated Cloud Apps deliver businesses critical security intelligence continuously across global IT assets. 

ShiftLeft combines next-generation static code analysis (to quickly and accurately identify vulnerabilities) with a micro agent (to protect the application and confirm reachability), in an automated workflow. ShiftLeft’s code analysis is typically 10-40X faster and 3X more accurate than traditional SAST vendors.

Tala Security protects modern websites and web applications from critical and growing threats, such as cross-site scripting (XSS), Magecart, website supply-chain attacks, clickjacking and others. Tala prevents attacks by automating the deployment and dynamic adjustment of standards-based security controls such as Content Security Policy (CSP), Subresource Integrity (SRI), HTTP Strict Transport Security (HSTS) and other web security standards.

Tenable, Inc., is the Cyber Exposure company. Over 27,000 organizations around the globe rely on Tenable to understand and reduce cyber risk.

Tevora is a specialized management consultancy focused on cyber security, risk and compliance services. From our offices in California and New York, we service national and international companies, institutions and governments.

Venafi is the cybersecurity market leader of machine identity protection, securing machine-to-machine connections and communications by orchestrating cryptographic keys and digital certificates for SSL/TLS, code signing, mobile and SSH. Venafi provides global visibility of machine identities and associated risks for the extended enterprise—on premises, mobile, virtual, cloud and IoT.