Cyber Security Summit

Artificial intelligence (AI) has become a security industry buzzword so broadly applied as to become almost meaningless. When every product boasts AI capabilities, security decision makers may quickly become cynical, even in the face of the most exciting innovation shaping cybersecurity today.  --What is the benefit of a cybersecurity solution powered by Artificial Intelligence and Machine Learning? --Why does the number of generations of AI matter? --How smart is the AI machine? --How does AI provide a predictive advantage to prevent breaches for my organization? --How can a ‘Prevention First’ cybersecurity approach help my business? Speaker: TOM CAMERON Solutions Architect, BlackBerry powered by Cylance AI Tom Cameron spent 15 years in the Intelligence Community as a U.S. Navy Cryptologic Technician and DoD contractor with Northrop Grumman. He was deployed worldwide supporting cryptologic missions during Operations Enduring Freedom/Iraqi Freedom, East Africa, and European theaters. He and his wife, Loretta, met while stationed together in Pearl Harbor, Hawaii, and have two sons both born in Puerto Rico. Tom is from St. Paul, Minnesota, and is a member of InfraGard and ISSA. Tom started his SE career with Symantec, was Mandiant SE of the Year in 2014, and is currently an SE for Blackberry by way of the Cylance acquisition. Moderator: SEAN COSTIGAN Professor, George C. Marshall European Center for Security Studies Sean S. Costigan is the Director of ITL Security and a Professor at the George C. Marshall European Center for Security Studies. He is an expert in emerging security challenges and a sought-after speaker on matters of technology and national security. His current focus is on the nexus of cybersecurity capacity building and new challenges. He is the lead for NATO’s cybersecurity curriculum and is widely published on national security matters relating to information security and hybrid threats. In addition to his work for the Marshall Center, he is presently serving as the Senior Adviser to the NATO/PfPC Emerging Security Challenges Study Group, where he heads cybersecurity education efforts; Publisher of Defense Press; Adviser at Multivariate, and an Associate at the consultancies of Vision Foresight Strategy and i-Intelligence.

Sam Curry explores the reasons behind the sharp rise in ransomware attacks and the difficult questions brought on by this threat. Should an organization ever pay the ransom? What damage is risked from an attack, not only to revenue but to brand, morale, and insurance premiums? And most importantly, what can an organization do to recover from such an attack, or make sure it doesn’t happen in the first place?    Speaker:   SAM CURRY   Chief Security Officer, Cybereason   Sam Curry is CSO at Cybereason. Curry was also CTO and CISO for Arbor Networks (NetScout) and was CSO and SVP R&D at Microstrategy in addition to senior security roles at McAfee and CA. He spent seven years at RSA variously as CSO, CTO and SVP of Product and as Head of RSA Labs. Curry also has over 25 patents in security from his time as a Security Architect, has been a leader in two successful startups and is a board member of the Cybersecurity Coalition, of SSH Communications and of Sequitur Labs (in the IoT security space) in addition to a number of advisorships across the security spectrum. Curry is also a Visiting Fellow at the National Security Institute.    Moderator: SEAN COSTIGAN Professor, George C. Marshall European Center for Security Studies   Sean S. Costigan is the Director of ITL Security and a Professor at the George C. Marshall European Center for Security Studies. He is an expert in emerging security challenges and a sought-after speaker on matters of technology and national security. His current focus is on the nexus of cybersecurity capacity building and new challenges. He is the lead for NATO’s cybersecurity curriculum and is widely published on national security matters relating to information security and hybrid threats. In addition to his work for the Marshall Center, he is presently serving as the Senior Adviser to the NATO/PfPC Emerging Security Challenges Study Group, where he heads cybersecurity education efforts; Publisher of Defense Press; Adviser at Multivariate, and an Associate at the consultancies of Vision Foresight Strategy and i-Intelligence.   A special thanks goes out to Cybereason who helped conceive of this important conversation. Visit Cybereason to learn about its end-to-end cybersecurity solution built to empower defenders.

Ransomware as a service (RaaS) has made extortion more critical than ever. If ransomware actors can’t extort ransom payment from victims in “traditional” means, they have to focus on new ways of blackmailing. This doesn’t just mean stealing files and posting them on an extortion site — instead, ransomware actors have created a whole new extortion ecosystem. While the success of RaaS mimics the success of ransomware, a lot of the success of the RaaS model has to do with extortion. The reality is, the creation of the extortion ecosystem has created a symbiotic relationship between RaaS operators, the dark web forums they advertise on, security press, and security researchers. In this session, Dmitry Smilyanets, expert threat intelligence analyst, and Allan Liska, expert ransomware researcher from the intelligence company Recorded Future share insight into how the growth of RaaS offerings has helped accelerate ransomware attacks, and what it means for your organization. Topics covered include: Different RaaS offerings and the tactics, techniques, and procedures (TTPs) employed Current extortion schemes to look out for Why every ransomware attack is a third-party attack RaaS risk reduction best practices Speaker:  ALLAN LISKA Sr. Solutions Architect, Recorded Future Allan Liska is an intelligence analyst and solutions architect at Recorded Future. Allan has more than 15 years’ experience in information security and has worked as both a blue teamer and a red teamer for the intelligence community and the private sector and is one of the organizers of BSides Bordeaux. Allan has helped countless organizations improve their security posture using more effective and integrated intelligence. He is the author of The Practice of Network Security, Building an Intelligence-Led Security Program, and Securing NTP: A Quickstart Guide and the co-author of DNS Security: Defending the Domain Name System and Ransomware: Defending Against Digital Extortion. Speaker:  DMITRY SMILYANETS Expert Threat Intelligence Analyst, Recorded Future Mission-driven Russian-speaking Cyber Threat Intelligence Analyst with type A personality. Twenty years of experience and expertise in cybercrime activity that includes being a former member of an elite Russian-based hacking organization. Moderator: SEAN COSTIGAN Professor, George C. Marshall European Center for Security Studies Bio A special thanks goes out to Recorded Future who helped conceive of this important conversation. Visit Recorded Future to learn how by combining persistent and pervasive automated data collection and analytics with human analysis, Recorded Future delivers intelligence that is timely, accurate, and actionable.

Achieving a baseline configuration that detects attacker activity is one of the most effective defenses against cyber-attacks and data breaches. In fact, according to industry reports in healthcare and payment cards, ineffective logging, monitoring and the inability to correlate event logs to tell a story within and across platforms is the primary reason such attacks are successful.     As a result, statutory and regulatory compliance have strengthened the need for logging, monitoring and retention of event logs. However, many organizations are complying with only minimum requirements, have not implemented their systems effectively, and do not appreciate the enterprise value of systems designed to collect and correlate event logs.   During this hour-long discussion, Mary Frantz – primary technical cyber expert in the Equifax, Yahoo and many other high-profile breaches – provides a product-agnostic look at the capabilities of enterprise SIEMs, what to look for, how to implement and use them effectively, and how they can benefit the entire organization – not just security.   Speaker:  MARY FRANTZ   Chief Information Security Officer, Prescryptive Health, Inc; Founder, Enterprise Knowledge Partners, LLC   Moderator: SEAN COSTIGAN Professor, George C. Marshall European Center for Security Studies

Cyber threats arise from numerous sources, including state actors, terrorist groups, criminals, hackers, business competitors, and even trusted insiders. In fact, it’s the threat from trusted insiders that may pose the most significant threats. Whether as a malicious act —the deliberate exfiltration of information or introduction of malware or other harmful code —or inadvertent actions by careless employees, the greatest threat to an organization’s information system is often on the inside. On May 25, NCSC Insider Threat Directorate (ITD) will participate in a CyberWeek webinar to discuss the role of insider threat mitigation in cybersecurity. During this hour-long event, we’ll discuss the current risk environment, including heightened vulnerabilities created by the Global Pandemic; identify potential threats posed by trusted insiders and the adversaries who seek to co-opt or exploit them; and share best practices and resources available to mitigate the risk. Speaker: REBECCA MORGAN Deputy Assistant Director, Insider Threat; Deputy Director, National Insider Threat Task Force; National Intelligence and Security Center Ms. Rebecca Morgan serves as the National Counterintelligence and Security Center (NCSC) Deputy Assistant Director for Insider Threat and as the Deputy Director of the National Insider Threat Task Force (NITTF). NITTF is an interagency task force co-chaired by the Office of the Director of National Intelligence (ODNI) and the Department of Justice. Moderator: SEAN COSTIGAN Professor, George C. Marshall European Center for Security Studies Sean S. Costigan is the Director of ITL Security and a Professor at the George C. Marshall European Center for Security Studies. He is an expert in emerging security challenges and a sought-after speaker on matters of technology and national security. His current focus is on the nexus of cybersecurity capacity building and new challenges. He is the lead for NATO’s cybersecurity curriculum and is widely published on national security matters relating to information security and hybrid threats. In addition to his work for the Marshall Center, he is presently serving as the Senior Adviser to the NATO/PfPC Emerging Security Challenges Study Group, where he heads cybersecurity education efforts; Publisher of Defense Press; Adviser at Multivariate, and an Associate at the consultancies of Vision Foresight Strategy and i-Intelligence. A special thanks goes out to the National Counterintelligence and Security Center (NCSC) who helped conceive this important conversation. Visit NCSC to learn how it is leading the effort to protect our nation against intelligence and security threats.

Once considered an esoteric domain of cybersecurity, Covid-19 has brought supply chain security to the dinner table conversation. The shortages revealed during the pandemic make it clear: Action must be taken to protect and safeguard us. As “National Supply Chain Integrity Month” continues, join us on April 27 as Joyce Corell of the National Counterintelligence and Security Center delineates the threat landscape and discusses provoking implications for future supply chain integrity with Sean Costigan of the George C. Marshall European Center for Security Studies. The conversation will cover the current policy landscape, which includes actions from all branches of government, as well as how thinking on risk has evolved over the past several years. Joyce will touch on the notion of shared risk and how to think through responsibilities for government, the private sector and the consumer. This hour-long discussion will help tee up a national conversation on supply chain security as NCSC, DoD, DHS and the Cyber Security Summit raise awareness throughout the year. Speaker: JOYCE CORELL Assistant Director, Supply Chain and Cyber Directorate, National Counterintelligence and Security Center, Office of the Director of National Intelligence Joyce E. Corell is the Assistant Director of the Supply Chain and Cyber Directorate of the National Counterintelligence and Security Center (NCSC). Prior to this posting, she was the Assistant Director for the Strategic Capabilities Directorate in the Office of the National Counterintelligence Executive (ONCIX.) Corell served at the National Security Agency (NSA) for 23 years. Her last assignment was as the Chief of Technology Policy in the NSA Commercial Solutions Center. She spent a significant portion of her career focused on various aspects of defensive and offensive computer network operations, from capability development of national policy and legislations. Complementing these roles, Corell also led various activities surrounding partnerships with the private sector ranging from technology transfer, export control licensing, and the development of strategical alliances, both domestic and international. Corell graduated from William & Mary with a B.A. in Political Science. She received an M.S. in National Security Strategy from the National War College. Moderator: SEAN COSTIGAN Professor, George C. Marshall European Center for Security Studies Sean S. Costigan is the Director of ITL Security and a Professor at the George C. Marshall European Center for Security Studies. He is an expert in emerging security challenges and a sought-after speaker on matters of technology and national security. His current focus is on the nexus of cybersecurity capacity building and new challenges. He is the lead for NATO’s cybersecurity curriculum and is widely published on national security matters relating to information security and hybrid threats. In addition to his work for the Marshall Center, he is presently serving as the Senior Adviser to the NATO/PfPC Emerging Security Challenges Study Group, where he heads cybersecurity education efforts; Publisher of Defense Press; Adviser at Multivariate, and an Associate at the consultancies of Vision Foresight Strategy and i-Intelligence. Rapporteur: LINDSEY KONERZA IT Business Systems Analyst, ASR-IT and Student, University of Minnesota Technological Leadership Institute – Master of Science in Security Technologies (MSST) program.

On the eve of “Supply Chain Security Month” as designated by DHS, the Cyber Security Summit examines the catastrophic attack that occurred last December on SolarWinds, a major U.S.-based provider of cybersecurity tools. The devastating impact rippled across thousands of organizations and gave our industry a moment of pause. In this one-hour webinar, our expert panelists revisit the attack and discuss how supply chain risk management needs to evolve to counter threats moving forward. Panel: CHRIS HALLENBECK is CISO for the Americas at Tanium. Chris provides security leadership and operational insight gained from over 20 years in both public and private sector.  His focus is on helping Tanium customers ensure that the technology powering their business can adapt to disruption. SEAN S. COSTIGAN is the Director of ITL Security and a Professor at the George C. Marshall European Center for Security Studies. He is an expert in emerging security challenges and a sought-after speaker on matters of technology and national security.  His current focus is on the nexus of cybersecurity capacity building and new challenges. He is the lead for NATO’s cybersecurity curriculum and is widely published on national security matters relating to information security and hybrid threats. MARK RITCHIE is President of Global Minnesota and as the Civilian Aide to the Secretary of the Army and is Minnesota’s former Secretary of State Over the past decade Mark led the public-private partnership working to bring the 2027 World Expo to Minnesota. Mark’s public service has included serving on the State Board of Investment, Minnesota’s Executive Council, the federal Election Assistance Commission Advisory Board and on the Board of the Minnesota Historical Society. For additional insight into the topic, we encourage you to read Sean Costigan’s think piece for Diplomatic Courier published earlier this year. A special thanks goes out to Tanium who helped conceive this important conversation. Visit Tanium to learn how it’s giving the world’s largest enterprises and government organizations the unique power to secure, control, and manage millions of endpoints across the enterprise within seconds.

Governmental experts have offered the world 11 norms to achieve international cybersecurity. Are these recommendations indeed likely to resolve cyber conflict? Are states following their own advice? What will change in international cybersecurity when the experts’ recommendations are put into practice? Speaker: DR. ENEKEN TIKK Executive Producer at the Cyber Policy Institute

During this this 1-hour webinar, Major General Mari K. Eder (U.S. Army Ret.) will speak on the issue of personal privacy versus need to know – how public institutions can regulate, encourage, and demand more transparency and accountability in data collection and what individuals can do to protect personal their personal privacy and manage their data and how it is accessed, shared or sold. Speaker: MAJOR GENERAL MARI K. EDER (USA Ret.)

Disinformation techniques are rapidly evolving in quality and quantity, while the governmental and private sectors are admiring the problem. The fast-paced progress from non-digital means of spreading disinformation, that were adopted for the digital age, caught our societies completely unprepared. Add the social media platforms, irresponsible usage, business interests and the lack of understanding and capacities on the governmental levels and you have a perfect storm. From Soviet concepts of active measures to the digital age and microtargeting, this webinar will address the nexus of cybersecurity and disinformation. Speaker: DANIEL BAGGE Cyber Attaché of the Czech Republic to the U.S. and Canada, National Cyber and Information Security Agency Moderator: SEAN COSTIGAN Director and Co-Founder ITL Security

Finding the right balance between privacy and public health interests is critical and will directly contribute to the long-term shaping of a successful digital society. In this hour-long session, Christel Cao-Delebarre (Global Privacy Officer, CWT) explores the privacy issues raised by the accelerated use of full-scale digital solutions involving large volumes of personal data processing in our global fight against COVID-19. Speaker: CHRISTEL CAO-DELEBARRE Global Privacy Officer CWT, London Office Moderator: SEAN COSTIGAN Director and Co-Founder ITL Security