CYBER RISK FORUM

AGENDA

Monday. February 7, 2022

8:15 – 9:00 am PT

Registration and Networking

9:00 – 9:10 am PT

Welcome

9:10 – 9:55 am PT

Ransomware and Hacking 2022: What it Will Take for U.S. Companies to Defend Against Nation-State Threats

Hear perspectives of a military and government insider on how the private and public sectors can work together to combat adversaries’ campaigns to steal intellectual property and personally identifiable information, and how partnerships can limit the potential for havoc and disruption in our financial markets.

9:55 – 10:45 am PT

Executing a Forward-Looking Approach to Emerging Technologies Opportunities and Risks

Blockchain, IoT, 5G and other rapidly changing technologies provide immense opportunities and sometimes immeasurable exposures to their organizations. Adopting new technologies is not optional. But how you prepare for their impact can distinguish you from your competitors. Learn how boards and CIOs/CISOs can work together to see around corners, incorporate risk considerations into their strategic decisions, and use new data to their advantage.

Featured Speakers:

  • Homarai Akbari, Board Member, Banco Santandar
  • Ramy Houssaini, Chief Cyber & Technology RIsk Officer and Group Privacy Officer, BNP Paribas
  • David Koenig, President and Chief Executive Officer, The DCRO Institute; Author, Governance Reimagined and The Board Member’s Guide to Risk

10:45 – 11:00 am PT

Networking Break

11:00 am – Noon PT

Concurrent Breakouts

This breakout will explore how leading organizations are managing third party cyber risks. Discussion topics will include:

  • What are the key metrics that should drive board level conversations on cybersecurity?
  • How should you be thinking about your security posture?
  • How do you quantify security risks?
  • What are the questions that board members should be asking when it comes to cybersecurity discussions related to business partners?

The regulatory landscape surrounding data protection and cybersecurity is ever-changing and fraught with landmines. As their state’s chief legal officer, state attorneys general (AGs) wield broad authority to investigate and take action on virtually any subject and in any industry—notably antitrust, cybersecurity, data privacy and consumer protection. This breakout will help you navigate how states scrutinize data management and breaches. Discussion topics will include:

  • Lessons from Facebook, Dish Network, AT&T and other high-profile data breach investigations
  • How state AGs use their office to assert legal, political, and policy views through litigation and public advocacy
  • How other states are likely to introduce legislation similar to the California Consumer Protection Act—and what it means for your business decisions
  • Advice for companies looking to better protect the sensitive information they submit to government entities in response to an inquiry or investigation

Noon – 1:00 pm PT

Lunch

1:00 – 1:50 pm PT

Before You’re Hacked: Strengthening Your Incident Response Plan

It’s inevitable. Your company will face a cybersecurity incident somewhere along the way.  How your organization responds carries significant reputational, economic and business implications.  This panel will help ensure your team has the most robust (and legally-defensible) incident response plan in place with the right players owning the right details—from the board and CEO down to IT, legal, PR/marketing and customer service.   

1:50 – 2:15 pm PT

“Where was the Board?”: Establishing Your Risk Appetite and the Role of Cyber Insurance

Yahoo’s and Wyndham’s cyber breaches provide just two cautionary tales to all directors—an increase in cyber breaches means an increase in derivative lawsuits, putting directors’ personal liability on the line. This session will help you understand what is and isn’t covered under cyber insurance, and help you establish the appropriate limits for a cyber insurance program based on your organizations specific cyber risks and appetite for risk.

2:15 – 3:00 pm PT

CISOs Speak: Creating a Cyber-Aware Culture

As disruption has become the norm, board conversations have turned from guarding against cyber-attacks to becoming more resilient in the face of them. This session will explore the human factor within organizations to build a cyber-resilient culture – and, in particular, how board oversight can enable this effort. Veteran security executives will share tips to help you define your organization’s cyber risk appetite and ensure the company is organized appropriately to address these risks .

3:00 pm PT

Event Concludes