CISO NY schedule

•    Translating business priorities into actionable cybersecurity strategies.
•    Ensuring executive buy-in and effective communication with the board.
•    Bridging the gap between cybersecurity teams and business units.
Craig Shrader, Chief Information Security Officer & Country Cyber Security Lead – Canada, HSBC
Aaron Katz, Chief Information Security Officer, THE TWC GROUP
Jim Rutt, Chief Information Officer, DANA FOUNDATION

•    How AI-driven threats are evolving and how security teams can harness AI for defense.
•    What post-quantum computing means for encryption, risk management, and regulatory compliance.
•    Strategies to adapt cybersecurity programs to an AI- and quantum-powered world.
Bil Harmer, Operating Partner & Chief Information Security Officer, CRAFT ADVENTURES

Dr Nimrod Kozlovski, CEO & Founder, CYTACTIC

•    Bridging the Gap: Why today’s risk management strategies fall short and how to align security with business transformation.
•    Emerging Threats: The impact of AI, evolving supply chain risks, and post-quantum security challenges.
•    Future-Ready Security: How organizations can redefine their approach to compliance, automation, and proactive defense.
Aaron Katz, Chief Information Security Officer, THE TWC GROUP

Understanding Agentic AI: What distinguishes agentic AI from traditional AI systems, and why does this matter for security?
Security Risks and Threats: Exploring the unique vulnerabilities of agentic AI, including prompt injection and data poisoning.
Governance and Compliance: Strategies for aligning agentic AI deployment with regulatory frameworks like the EU AI Act and implementing effective oversight mechanisms.
Reserved

•    Exploring how AI and machine learning can enhance the efficiency of security teams by automating repetitive tasks and focusing human efforts on complex threats
•    How AI tools can assist in containing and mitigating threats in real-time by analyzing vast amounts of data quickly
•    Using machine learning to identify anomalies in user behavior and detect insider threats or compromised accounts
•    Leveraging machine learning to create dynamic security systems that evolve with new threat patterns and emerging attack vectors
•    Discussing the emerging arms race between AI-powered cybersecurity defenses and AI-driven attack methods
Luis Velandia, CIO/CISO, BEST DOCTORS INSURANCE
Abhishek Sinha, CEO & CIO, NELUMBIUM CAPITAL
Amit Basu, Vice President, Chief Information Security Officer & Chief Information Officer, INTERNATIONAL SEAWAYS, INC
Ellis Wong, Chief Information Security Officer & Head of Infrastructure Engineering, JST DIGITAL

•    How security is changing and how to ideally address it
•    The shift-left reality and how the solution didn't work
•    The cost implications of a wrong security workflow
•    How to make DevSecOps work, strategically 
Thomas Shola, Chief Information Security Officer, NORTHERN BANK (former)

•    Using threat intelligence to anticipate and prepare for attacks.
•    Applying real-time intelligence during active incidents.
•    Sharing threat data to strengthen collaborative defences.
Reserved

•    How AI is evolving from supporting security teams (assistive intelligence) to making autonomous decisions in threat detection, vulnerability management, and remediation.
•    Balancing AI Regulation with Innovation in DevSecOps
•    Will AI replace security engineers, or will it empower them to focus on higher-value tasks?
Mahesh Devalla, Chief Technology Officer, PLAYERS HEALTH

•    Automating vulnerability scans in CI/CD workflows
•    Using tools like Jenkins, GitHub Actions, or GitLab for security checks
•    Eliminating bottlenecks while maintaining security integrity
Reserved

•    Where AI is truly making an impact in security automation.
•    The risks of blindly trusting AI-driven security tools.
•    Balancing human expertise and AI-driven decision-making.
Mahesh Devalla, Chief Technology Officer, PLAYERS HEALTH
Kevin Ruthen, Chief Technology Officer, FORA FINANCIAL
Christopher Lundy, Senior Principal Enterprise Architect, PFIZER
Varun Duggal Principal R&D Solutions Architect, AT&T LABS

A technical demonstration of how SecOps and DevOps teams can use a powerful mix of Azure technologies to monitor their cloud environment and automate remediation actions for suspicious activity
Felipe G, Cyber Security Engineer, HELABA

•    Balancing Speed and Security – How to integrate security into ultra-low-latency trading systems without impacting performance.
•    Automating Threat Detection & Incident Response – Leveraging AI, real-time monitoring, and DevSecOps pipelines to detect and mitigate threats instantly.
•    Protecting Market Data & FIX Protocol Communications – Best practices for securing trade execution, preventing data leaks, and ensuring regulatory compliance.
Carl Gordon, DevOps Engineer/Trade Support/Automation, CREDIT SUISSE

•    Understanding CCPA, state-level privacy regulations, and their impact
•    Applying controls to safeguard personal data in the cloud
•    Mapping compliance requirements to cloud service configurations
Reserved

•    Designing unified security frameworks across AWS, Azure, GCP
•    Implementing centralized visibility and monitoring solutions
•    Harmonizing controls and governance to reduce complexity

•    How can organizations innovate rapidly in the cloud without compromising security or regulatory compliance?
•    How can businesses design cloud infrastructures to withstand disruptions, ransomware attacks, and evolving threat landscapes?
•    What are the best practices for fostering cross-team collaboration and ensuring everyone is invested in secure outcomes?
•    How will emerging technologies like AI-driven security analytics, post-quantum cryptography, and zero trust frameworks shape the next generation of cloud security?
Vinay Venkatesh, Director, Technology – DevSecOps, Cloud – Site Reliability, Observability Engineering, EVELANCE HEALTH
Bijit Ghosh, Chief Technology Officer, Global Head of Cloud Product & Engineering &
AI/ML, DEUTSCHE BANK
Sean Greenberg, Senior Cloud Security Engineer, Practice Lead Cloud Security, CERBERUS CAPITAL MANAGEMENT

•    Verifying every user, device, and service request
•    Using adaptive authentication and continuous verification
•    Minimizing implicit trust zones within the network
Reserved

A technical demonstration of how SecOps and DevOps teams can use a powerful mix of Azure technologies to monitor their cloud environment and automate remediation actions for suspicious activity
Felipe G, Cyber Security Engineer, CHUBB

•    Aligning Cybersecurity with Business Objectives: Exploring how leaders can integrate cybersecurity into the organization’s strategic goals to ensure it is viewed as a growth enabler, not just a cost center
•    The Evolving Role of the CISO: Exploring how CISOs can move from technical specialists to strategic advisors who drive board-level decisions
•    How CISOs can lead the adoption of autonomous AI tools while embedding security and governance from day one — avoiding "shadow agents" that operate outside oversight
•    Leadership in Zero Trust Environments: How leaders can champion the adoption of Zero Trust models to strengthen organizational security
•    How leaders can future-proof their organizations by adopting advanced encryption techniques such as homomorphic encryption to protect sensitive data
Pedro Venancio, Chief Information Officer, PROWER TELCO SERVICES
Dane Fenner, Chief Information Security Officer, FENNER LEGACY HOLDINGS, LLC
Aruneesh Salhotra, Global Head of Application Security, NOMURA

•    Choosing indicators to measure risk management success.
•    Developing dashboards to visualize risk data for stakeholders.
•    Using metrics to support continuous improvement efforts
Reserved

•    Leveraging Data Science for Threat Detection: Using machine learning and predictive analytics to identify vulnerabilities and enhance application security.
•    Automating Security with AI: Implementing AI-driven solutions to streamline security operations and mitigate risks in real-time.
•    Balancing Innovation and Security: Ensuring robust security measures while enabling agile development and scalable cloud solutions.
Ellis Wong, Chief Information Security Officer & Head of Infrastructure Engineering, JST DIGITAL

•    AI-Driven Cyber Threats: Deepfake fraud, model poisoning, data leakage.
•    NIST AI RMF & Cybersecurity: Mapping AI risks to security threats.
•    Financial Sector Risks: Insights from the US Treasury & regulatory concerns.
•    Emerging Defenses: Secure AI development, Zero Trust AI.
•    Case Study: Real-world AI security breach & lessons learned.
Abhishek Sinha, CEO & CIO, NELUMBIUM CAPITAL

•    Shifting from reactive compliance to proactive security.
•    Teaching teams to view security as a competitive advantage.
•    Embedding a security-first philosophy into decision-making processes
Vinay Venkatesh, Director, Technology – DevSecOps, Cloud – Site Reliability, Observability Engineering, EVELANCE HEALTH
Robert LaRosa, Information Security Engineer, GELLER
Imran Khan, Cyber Transformation Lead Security Strategist, BNP PARIBAS

•    Embedding security into business strategy.
•    Measuring security’s impact on business outcomes.
•    Implementing automation and security frameworks that align with business growth.
•    Using DevSecOps practices to ensure agentic AI behaviors stay aligned with strategic goals, enabling innovation without compromising compliance or control
Robert LaRosa, Information Security Engineer, GELLER

•    What is Exploitation Intelligence in Secure Development?
•    How to Apply Exploitation Intelligence in DevSecOps
•    The Business Impact: Reducing Risk While Improving Efficiency
Aman Parmer, Senior Security Engineer – Application Security, HARVARD MEDIAL SCHOOL

•    Leveraging AI for DevSecOps Automation
•    Architecting Secure Multi-Cloud Environments
•    Driving Digital Transformation with DevSecOps
Varun Duggal Principal R&D Solutions Architect, AT&T LABS

•    Collecting and preserving evidence in cloud environments
•    Analyzing root causes to prevent repeat breaches
•    Integrating lessons learned into improved playbooks and policies

•    Consuming global threat feeds and IOCs for proactive defense
•    Correlating threat intel with cloud telemetry data
•    Adjusting controls dynamically based on emerging threats
Reserved

•    Unified Security Posture: Strategies for integrating MDM with cloud security protocols to protect enterprise data.
•    Real-World Applications: Examples of successful MDM implementations enhancing security in diverse industries.
Sean Greenberg, Senior Cloud Security Engineer, Practice Lead Cloud Security, CERBERUS CAPITAL MANAGEMENT

•    Embedding privacy considerations into system and app design
•    Minimizing data collection and applying anonymization techniques
•    Conducting privacy impact assessments for cloud services

In this session, hear from some of the top cybersecurity leaders as they share their personal journeys to becoming a Chief Information Security Officer (CISO). Learn about the challenges they faced, the key decisions that shaped their careers, and the skills that helped them succeed in an ever-evolving security landscape. This discussion will offer insights into leadership, risk management, and the future of the CISO role in a rapidly digitizing world.

Tammy Klotz, Chief Information Security Officer, TRINSEO
Pedro Venancio, Chief Information Officer, PROWER TELCO SERVICES
Sulohita Vaddadi, Chief Information Security Officer, GE
Aaron Katz, Chief Information Security Officer, THE TWC GROUP

•    AI-Powered Threats: The New Attack Landscape
•    How cybercriminals are leveraging AI for advanced phishing, deepfakes, and automated attacks
•    AI for Defense: Strengthening Your Security Posture
•    How AI and machine learning can enhance threat detection, response, and automation
Amit Basu, Vice President, Chief Information Security Officer & Chief Information Officer, INTERNATIONAL SEAWAYS, INC