View By:

Agenda / Day

Tuesday, 23 March, 2021 / 08:00 AM - 08:30 AM AEDT

(Monday, 22 March, 2021 / 09:00 PM - 09:30 PM GMT)

Conference Orientation

Get an overview of the conference, including tips and tricks on getting the most out of your experience.

Tuesday, 23 March, 2021 / 11:00 AM - 11:30 AM AEDT

(12:00 AM - 12:30 AM GMT)

Opening Keynote: Top Trends in Security and Risk Management

Peter Firstbrook, VP Analyst, Gartner

"Top trends" highlights ongoing strategic shifts in the security ecosystem that aren't yet widely recognized, but are expected to have broad industry impact and significant potential for disruption. This Keynote will describe the most significant trends in security and risk management and how leading organizations are taking advantage of these trends. Key issues explored will include:
. Top technological improvements in the security product landscape
. Trends in creating a top notch security organization
. Long-term trends that will influence security strategy

Tuesday, 23 March, 2021 / 11:45 AM - 12:15 PM AEDT

(12:45 AM - 01:15 AM GMT)

Outlook for Cloud Security

Tom Croll, Sr Director Analyst, Gartner

Cloud security remains a top priority. This presentation summarizes the problems, recommended processes, and new product types to address three key issues:
. What are the unique risks associated with public cloud service providers, and how can they be controlled?
. What are the unique security challenges of IaaS and how can they be mitigated?
. What are the unique control challenges of SaaS, and how can they be addressed?

Tuesday, 23 March, 2021 / 11:45 AM - 12:15 PM AEDT

(12:45 AM - 01:15 AM GMT)

Outlook for Network Security

Lawrence Orans, VP Analyst, Gartner

The cloud era is forcing network security professionals to adapt on several fronts. Enterprises are spending more on cloud-based security services, as a replacement for physical appliances in private data centers. Also, as enterprises move workloads to IaaS clouds, they are turning to micro-segmentation to secure key assets. This session will deliver key insights into these important trends.

Tuesday, 23 March, 2021 / 11:45 AM - 12:15 PM AEDT

(12:45 AM - 01:15 AM GMT)

Outlook for Risk: Technology, Information, and Resilience

Khushbu Pratap, Director Analyst, Gartner

This session walks through the state of risk management practices across technology and information exposures that influence organizational resilience. The current and future role of risk management leadership will be laid out in this session.

Tuesday, 23 March, 2021 / 11:45 AM - 12:15 PM AEDT

(12:45 AM - 01:15 AM GMT)

Ask the Expert: Security Operations Strategies for a DevOps-y, Cloud-Native World

Anna Belak, Director Analyst, Gartner

The adoption of DevOps, infrastructure-as-code and containers creates new challenges for security operations teams while exacerbating existing ones. Legacy processes and tools simply aren’t sufficient for securing a cloud-native world. How should your organization evolve or reinvent its SecOps capabilities to ensure long-term success?

Tuesday, 23 March, 2021 / 11:45 AM - 12:15 PM AEDT

(12:45 AM - 01:15 AM GMT)

Three Ways to Gain Support for Your Security Awareness Program

Richard Addiscott, Sr Director Analyst, Gartner

Securing investment from executives for a security awareness program depends on persuasive justification and strong negotiation skills. Support for awareness programs can be dismissed or deprioritized as larger projects impacting bottom-line performance compete for attention. This presentation will cover the three ways that you can gain organizational support for your security awareness program.

Tuesday, 23 March, 2021 / 11:45 AM - 12:30 PM AEDT

(12:45 AM - 01:30 AM GMT)

Case Study Roundtable: Implementing a Global Tech Risk Management Framework

Phoram Mehta, APAC CISO, PayPal

While organizations continue their digital transformation roadmaps the constant flurry of cyber incidents and regulatory actions in response require that security risk leaders establish and implement an extensible, standards based measurable framework that aligns with business objectives, enables risk-based decision making and provides and accurate view the organizations risk profile in a timely manner. This session will cover PayPal’s journey towards achieving this vision and provide opportunity for a peer-discussion to share lessons learned, challenges and approaches that work for others in the community.

Tuesday, 23 March, 2021 / 12:30 PM - 12:50 PM AEDT

(01:30 AM - 01:50 AM GMT)

Darktrace: Securing the Future of Work with Cyber AI

The future of work remains unpredictable. More than ever before, business leaders need to remain confident that their operations can continue securely in the face of regional or even global crises, and while sections of the economy remain more uncertain and fragile than ever, cyber-attackers are ramping up their campaigns. Organizations must rethink their approach to security, and rely on new technologies like AI to achieve much-needed adaptability and resilience.
In this session, learn about:
● Emerging threats from the transition to remote work
● How AI has adapted to new patterns of work
● Darktrace’s use of Cyber AI to protect the dynamic workforce
● Defensive Autonomous Response capabilities

Tuesday, 23 March, 2021 / 12:30 PM - 12:50 PM AEDT

(01:30 AM - 01:50 AM GMT)

Symantec: Leading Cloud Transformation with Symantec's Data-Centric SASE

2020 saw SASE adoption accelerate as the workforce transitioned to remote but with this momentum came several implementation challenges. In this session, Symantec will discuss the key obstacles restricting cloud transformation and how to deliver a data-centric approach to SASE, including:
- Securing cloud applications on unmanaged devices
- Commercials for SASE implementation
- Key learnings from Symantec’s digital transformation journey

Tuesday, 23 March, 2021 / 12:30 PM - 12:50 PM AEDT

(01:30 AM - 01:50 AM GMT)

Vectra: Breaking Down Supply Chain Attacks and How to Detect Future Ones

Supply chain attacks are the perfect storm: they are trusted applications that bypass perimeter security and nearly impossible to detect. Nearly. Network detection and response (NDR) will identify threats inside your network, data centre, and cloud environments before impact. Join us in this session to:
- Dissect a recent supply chain attack
- Eliminate blind spots in security monitoring
- Review strategies to detect future infections

Tuesday, 23 March, 2021 / 12:30 PM - 12:50 PM AEDT

(01:30 AM - 01:50 AM GMT)

ServiceNow: Effective Cyber Risk Presentations to the Board - A FAIR Approach

Want ideas on how to effectively present Cyber Risk to business executives and your Board? Please join ServiceNow’s deputy CISO as he walks you through a FAIR approach of combining objective quantifiable and qualitative risk elements while layering subjective and instinctual experience to simple Board reporting.

Tuesday, 23 March, 2021 / 12:30 PM - 01:15 PM AEDT

(01:30 AM - 02:15 AM GMT)

Roundtable: 6 Considerations for your SASE Migration Plan, Moderated by CloudFlare

Today, enterprises need flexibility at every layer of the network and application stack. Users need secure, authenticated
access no matter where they are: at the office, on a mobile device, or working from home.

Join Cloudflare for an interactive discussion what to look for when evaluating a migration to a SASE platform and how to build your roadmap for implementation.

Tuesday, 23 March, 2021 / 12:30 PM - 01:15 PM AEDT

(01:30 AM - 02:15 AM GMT)

Roundtable: Balance Risk, Trust, and Opportunity In An Uncertain World, Moderated by CrowdStrike

Join Michael Sentonas and an intimate group of peers to discuss in depth observed trends in attackers’ ever-evolving tactics, techniques and procedures and offers practical recommendations to protect your organization in the coming year. This session will cover the significant nation-state-based targeted attacks observed from China, IRAN, DPRK, Russia and other.

Tuesday, 23 March, 2021 / 01:15 PM - 01:45 PM AEDT

(02:15 AM - 02:45 AM GMT)

Outlook for Application Security

Dale Gardner, Sr Director Analyst, Gartner

DevOps, new deployment models and technologies pose an existential threat to application security programs. But all is not lost. In this session, we'll show how — by embracing the tenets of DevOps, adopting new approaches to application security, and leveraging evolving security technologies — it's possible to achieve success in DevSecOps, with lessons learned for all development styles.

Tuesday, 23 March, 2021 / 01:15 PM - 01:45 PM AEDT

(02:15 AM - 02:45 AM GMT)

Outlook for Managed Security Services

Pete Shoard, Sr Director Analyst, Gartner

Managed security services are a sensible and efficient choice for many organizations, large and small to enable or augment their security operations. Gartner presents their view on the range of core services available in the market, cutting through the jargon and aligning the needs of consumers with available service types and providing predictions on the future of the market.

Tuesday, 23 March, 2021 / 01:15 PM - 01:45 PM AEDT

(02:15 AM - 02:45 AM GMT)

Outlook for Security Monitoring and Operations

John Collins, Sr Director Analyst, Gartner

Security monitoring and operations are rapidly evolving to keep up with a very dynamic threat landscape. Automation, advanced analytics and machine learning are some of the tools leveraged by security professionals to keep up with threats. This session will address these key issues:
. What trends are affecting security operations?
. What defines best-in-class security operations?
. What is the outlook for security monitoring and operations for the years ahead?

Tuesday, 23 March, 2021 / 01:15 PM - 01:45 PM AEDT

(02:15 AM - 02:45 AM GMT)

Security Leader's Guide to Privileged Access Management

Felix Gaehtgens, VP Analyst, Gartner

An introduction for privileged access management: Why Is PAM Such a Crucial Piece of Any Security Program? How Should You Leverage PAM? How can you raise your security posture by using a just-in-time PAM and Zero Standing Privileges Approach?

Tuesday, 23 March, 2021 / 01:15 PM - 01:45 PM AEDT

(02:15 AM - 02:45 AM GMT)

Ask the Expert: How to Address Risk and Security in SaaS Agreements

Luke Ellery, Sr Director Analyst, Gartner

Jo Liversidge, Sr Director Analyst, Gartner

Risk and security teams struggle to ensure the contractual clauses in SaaS agreements protect their organization or comply with internal policy and external regulation. This session will provide insight to help you identify the key contractual clauses that must be addressed to protect your organization:
● The challenges in negotiating SaaS agreements: What can realistically be achieved?
● What are the key contract clauses and provisions to protect your data and minimize risk?

Tuesday, 23 March, 2021 / 01:15 PM - 01:45 PM AEDT

(02:15 AM - 02:45 AM GMT)

Ask the Expert: How to Measure the Success of Your Security Awareness Program Without Asking

Claude Mandy, Sr Director Analyst, Gartner

Paul Simkiss, VP, Team Manager, Gartner

Security awareness programs are undeniably critical to to reducing risk within organizations, but their effectiveness can be difficult to measure without user input. In this session we'll answer questions about how best to measure the outcomes and behaviors needed for a successful security awareness program.

Tuesday, 23 March, 2021 / 01:15 PM - 02:00 PM AEDT

(02:15 AM - 03:00 AM GMT)

Case Study Roundtable: The Challenge for a Defence CISO in the Age of Information Warfare

Jon Dean, Chief Information Security Officer,

This session will provide an interactive forum to explore the challenges facing Defence CISO in the age of Information Warfare. This session will feature Jon Dean, Chief Information Security Officer at the Department of Defense.

Tuesday, 23 March, 2021 / 02:00 PM - 02:20 PM AEDT

(03:00 AM - 03:20 AM GMT)

Fortinet: Balance Risk, Trust and Opportunity

Cornelius Mare, Director of Security Solutions, Fortinet Australia, Fortinet

Building cybersecurity strategies that align with business strategies depends on our former experience that will influence our future choices. This presentation will cover key points to consider, or review, on building strategies where cybersecurity can be a business enabler.

Tuesday, 23 March, 2021 / 02:00 PM - 02:20 PM AEDT

(03:00 AM - 03:20 AM GMT)

LogRhythm: Solarwinds, Ransomware and Zero Trust: Cyber Resilience for a “Work Anywhere” World

James Carder, Chief Information Security Officer, LogRhythm

Hackers compromised Solarwinds’ source code to inject a backdoor, propagating a vast infrastructure attack impacting 18,000 customers. James Carder, CSO & VP of Labs, LogRhythm, discusses honing in on methods used in the breach and preparing for when threat actors strike again – in old or new ways. He also shares top security risks, concerns, and strategies for CISOs and businesses, including what to expect with threats like ransomware.

Tuesday, 23 March, 2021 / 02:00 PM - 02:20 PM AEDT

(03:00 AM - 03:20 AM GMT)

Okta: Establishing Zero Trust Security, One Step at a Time

Sami Laine, Director, Technical Marketing, Okta, Inc.

Last year, the business community was forced to adapt to a new era of distributed work—and cyber threats have adapted right along with them. Between unsecured home WiFi networks and the rise in personal devices accessing company resources, the opportunities for data theft have risen as teams have dispersed. What are the best-practice models for securing it? Why is continuing to rely on traditional approaches courting disaster? What are the steps you must take to implementing Zero Trust across your ecosystem? What are the top trends in Identity Management and how can your organisation leverage these for customer success? In this session, Sami will focus on:
● The full Zero Trust reference architecture and steps to get there
● Why Identity is the foundational layer to build contextual access controls from

Tuesday, 23 March, 2021 / 02:00 PM - 02:20 PM AEDT

(03:00 AM - 03:20 AM GMT)

Cisco: Driving The Revolution of Secure Networking with SASE

Secure networking was easier when users worked out of a main office and the data they needed was in the data center. Now users—and the workloads they access—are more distributed. Networking and security can’t deliver a secure, extensible network by operating in silos. They need to join forces in a SaaS-consumable architecture and deliver services closer to users, in the cloud and at the edge. Hear how you can move toward a SASE architecture.

Tuesday, 23 March, 2021 / 02:00 PM - 02:45 PM AEDT

(03:00 AM - 03:45 AM GMT)

Roundtable: Rushed Digital Transformations Destroy Trust, Moderated by Imperva

Dealing with accelerated pace – how are we managing – where do you see your biggest risks? - Security talent shortfall – what are you looking for from vendors to close gaps - Where are you on DevSecOps journey – automation and tooling - Dealing with Cloud data – challenges etc.

Tuesday, 23 March, 2021 / 02:00 PM - 02:45 PM AEDT

(03:00 AM - 03:45 AM GMT)

Roundtable: Automation for Today's Security Challenges, Moderated by Recorded Future

As threats continue to grow, budgets continue to tighten, and the skills gap crisis reaches epic proportions, companies need to embrace automation to gain a competitive edge. Join us to hear about a case study and discuss how companies can use automation to tackle today’s security challenges, while increasing their security posture at the same time.

Tuesday, 23 March, 2021 / 02:45 PM - 03:15 PM AEDT

(03:45 AM - 04:15 AM GMT)

How Leaders Can Support Women in IT

Christie Struckman, VP Analyst, Gartner

Gender imbalance is stagnating if not getting worse in many IT organizations. The challenge is not just hiring more women, it’s also not losing them. Leaders can support the women in IT by creating, curating and managing a pipeline program. Creating an inclusive environment also means confronting behaviors that marginalize women.

Tuesday, 23 March, 2021 / 02:45 PM - 03:15 PM AEDT

(03:45 AM - 04:15 AM GMT)

Outlook for Identity and Access Management

David Mahdi, VP Analyst, Gartner

IAM encompasses workforce, partner, citizen and customer identities and access, to manage risk and enable desired business outcomes. Decentralized identity, CARTA, fraud management and autonomous governance will drive opportunities and challenges for IAM leaders in 2020 and beyond. Key Issues:
. What does a successful IAM program look like in 2020?
. How can IAM quickly deliver real business value, improve customer retention and support cyber defense against fraud?
. How predictive and autonomous IAM governance will play a role in modern challenges in compliance and privileged access management?
. How will passwordless and decentralized identity disrupt old business models for authentication and access management?

Tuesday, 23 March, 2021 / 02:45 PM - 03:15 PM AEDT

(03:45 AM - 04:15 AM GMT)

Technology Risk and Cybersecurity Metrics for Your Board

Srinath Sampath, Sr Director Analyst, Gartner

Reporting risk and security to your board is challenging for every organization in the Gartner client base. Executives don’t know what they need. We offer these concrete examples that share all the necessary characteristics to satisfy non-IT executives and your board.

Tuesday, 23 March, 2021 / 02:45 PM - 03:15 PM AEDT

(03:45 AM - 04:15 AM GMT)

Ask the Expert: Communicating Effectively with Your Board About Cyber Security

Richard Addiscott, Sr Director Analyst, Gartner

One of the key challenges Gartner speaks to its clients about is how to engage effectively with your Board to help ensure they receive the information they need to support risk-informed cybersecurity decision making. We often see Board reports that are either too tactical or don’t provide the actionable insights the Board needs to help support the CISO’s agenda. Join this Ask the Analyst session to hear how you can deliver the cyber security reporting that delivers upon this objective.

Tuesday, 23 March, 2021 / 02:45 PM - 03:15 PM AEDT

(03:45 AM - 04:15 AM GMT)

Ask the Expert: XDR Is Getting a Lot of Attention, Let's Talk About Its Implications for You

Craig Lawson, VP Analyst, Gartner

XDR, like SASE, has garnered a lot of interest. This is an ask the expert session on the implications of XDR.

Tuesday, 23 March, 2021 / 02:45 PM - 03:15 PM AEDT

(03:45 AM - 04:15 AM GMT)

When Worlds Collide, Converge, and Evolve: IT Security, OT Security and the Rise of Cyber-Physical Systems (CPS) Security

Katell Thielemann, VP Analyst, Gartner

A wave of cyber-physical systems with unique security considerations is emerging as a result of IT/OT convergence, IoT, IIoT, and smart infrastructure efforts alike. What should SRM leaders know and how should they prepare for a post IT-centric security world?

Tuesday, 23 March, 2021 / 03:30 PM - 04:00 PM AEDT

(04:30 AM - 05:00 AM GMT)

Building an Information Security Workforce Strategy

Beth Schumaecker, Sr Director, Advisory, Gartner

Supporting the business during the digital era requires that Information Security staff possess a much more diverse set of skills than in the past. This Information Security Strategic Workforce Planning session will focus on building out the inputs we need to orient our planning around the skills and competencies essential for success.

Tuesday, 23 March, 2021 / 03:30 PM - 04:00 PM AEDT

(04:30 AM - 05:00 AM GMT)

Moving From 0 to 1: A Midsize Guide on How to Create a Formal Cybersecurity Program

Paul Furtado, Sr Director Analyst, Gartner

A midsize guide to starting a formal cybersecurity program within your business. This session is tailored for midsize organizations who are starting or have immature security programs. It is a series of pragmatic advice that can be implemented to improve security awareness and a better security posture throughout the business.

Tuesday, 23 March, 2021 / 03:30 PM - 04:00 PM AEDT

(04:30 AM - 05:00 AM GMT)

Outlook for Endpoint and Mobile Security

Rob Smith, Sr Director Analyst, Gartner

Endpoints security challenges are rising to new levels of complexity as the definition blurs across clouds, BYO, workstations, mobile, wearable, “things” and pure software. This session will address:
. The evolution of device security to a single Unified Endpoint Security (UES) solution
. The evolution of network security from on-premise to cloud based since devices are frequently accessing cloud based services.
. The evolution of modern data protection for devices including VDI, encryption, and DRM

Tuesday, 23 March, 2021 / 03:30 PM - 04:00 PM AEDT

(04:30 AM - 05:00 AM GMT)

Vendor Risk Management Is Now a Must-Have Discipline

Edward Weinstein, Sr Director Analyst, Gartner

Vendor risk management isn’t just required in highly regulated industries, it's good practice in all industries. Today’s approaches are mired in lengthy and complex assessment surveys that span a variety of threats and risks. This session will discuss how to improve and enhance your model for managing vendor risks.

Tuesday, 23 March, 2021 / 03:30 PM - 04:00 PM AEDT

(04:30 AM - 05:00 AM GMT)

Ask the Expert: How to Manage a Successful PAM Program

Abhyuday Data, Sr Principal Analyst, Gartner

Success with a PAM program is a mixed bag for most companies, finding PAM a challenging implementation. Before you even purchase a tool, fundamental tasks must be taken on to ensure success later in the process. This session gives you an opportunity to ask questions about initiating and running an effective PAM program along with PAM technologies, implementations, new approaches, and strategies needed to make your PAM efforts successful. Attendees should come prepared to ask questions.

Tuesday, 23 March, 2021 / 03:30 PM - 04:15 PM AEDT

(04:30 AM - 05:15 AM GMT)

Case Study Roundtable: Striking the Balance Between "The Centre" and "The Business"

Fred Thiele, Group CISO, Transport for NSW

Our enterprises are moving away from a fully centralised IT delivery model into one led by divisional CIOs. As such, a hybrid model emerges where The Centre is accountable for setting policy and standards, and The Business is accountable to execute to those mandates. This presents unique challenges with technology stacks being developed in a more agile method on top of cloud platforms and SaaS services. This topic will explore where we draw the line between The Centre and The Business, the advantages, and disadvantages of the options, with a particular focus on security.

Wednesday, 24 March, 2021 / 10:00 AM - 10:45 AM AEDT

(Tuesday, 23 March, 2021 / 11:00 PM - 11:45 PM GMT)

Roundtable: Drowning Out the Noise - Avoiding Compliance-Driven Security Agendas

Richard Addiscott, Sr Director Analyst, Gartner

Niall Prendeville, Leadership Partner, Gartner

Across the Australian and State government regulatory landscape, organisations are being directed to implement, and in some cases, comply with ASD’s Essential 8 in pursuit of a more resilient and secure digital landscape across government. Consequently we have seen an increase in requests from Commonwealth and State government SRM leaders seeking advice on how to shape and influence the discussion at senior levels about what to, and how to, implement the Essential 8 inside their organisations. This is a key challenge for Australian Government security leaders that needs addressing in a pragmatic, politically-sensitive way given the volume of noise about the Essential 8 from senior stakeholders. To add to the complexity, the road to full implementation of the Essential 8 is not an easy path, and nor should it be considered the cybersecurity panacea it gets marketed as. Join this interactive roundtable session with your Government peers to discuss strategies for ensuring government organisations are able to deliver high-performing security capabilities and at the same time meet their State or Commonwealth cybersecurity obligations.

Wednesday, 24 March, 2021 / 11:00 AM - 11:30 AM AEDT

(12:00 AM - 12:30 AM GMT)

Guest Keynote: Intentional Leadership: Leading To Win in Challenging Times

Carla Harris, Vice Chairman, Managing Director and Senior Client Advisor, Morgan Stanley

In past decades, particularly in “producer cultures” professionals were given positions of leadership and authority because they were great “producers”. The top trader, the banker that posted the most revenues or the lawyer that had the most billable hours were compensated with money, an elevated title and positions of leadership without much thought as to whether the person was the kind of individual that could motivate and inspire others to perform beyond their own expectations. Yet, today, we find ourselves in an environment where a growing majority of the professional workforce are Millennials and Generation Zers and they demand motivation and inspiration as table stakes for their performance in any environment. So the question is, “what does it take to be an outstanding leader in today’s environment?”. Carla Harris asserts that if anyone chooses to take on the leadership seat, then one must be INTENTIONAL about 8 things in order to be a powerful, impactful, influential leader in today’s environment. Hear her make the case for: Authenticity, Building Trust, Clarity, Creating other Leaders, Diversity, Innovation, Inclusivity, and Voice as essential components of being a Powerful Leader today.

Wednesday, 24 March, 2021 / 11:45 AM - 12:15 PM AEDT

(12:45 AM - 01:15 AM GMT)

Money Talks — How to Create a Defensible Data Security Strategy

Brian Lowans, Sr Director Analyst, Gartner

Any organisation that creates, stores or processes data must identify, prioritize and mitigate business and financial risks that result. Security and risk management leaders must focus on mitigating the business risks that match the risk appetite of the organisation. A data risk assessment can then demonstrate the risk mitigation effectiveness, leading to a defensible data security strategy.

Wednesday, 24 March, 2021 / 11:45 AM - 12:15 PM AEDT

(12:45 AM - 01:15 AM GMT)

Security Organization Dynamics

Tom Scholtz, Distinguished VP Analyst, Gartner

There is no such thing as a perfect, universally appropriate model for security organizations. Every enterprise must develop its own model, taking into consideration basic principles, practical realities and the challenges of digital transformation. This presentation will address the following key issues:
. What are the trends and challenges in security organization design?
. What are the factors that influence security organization?
. What are the current best practices and contemporary conceptual design models for security organization?

Wednesday, 24 March, 2021 / 11:45 AM - 12:15 PM AEDT

(12:45 AM - 01:15 AM GMT)

The Future of Network Security Is in the Cloud: Introducing the Secure Access Service Edge

Neil MacDonald, Distinguished VP Analyst, Gartner

Digital business is turning organizations inside out. More users, data, systems and applications will be outside of the enterprise than inside. This drives a need for cloud-based delivery of networking (notably SD-WAN) and security capabilities (notably SWG) to get closer to the users that need access to the internet and their data, systems and applications that are pretty much everywhere but a central office. Here, we introduce the secure access service edge where SD-WAN, FWaaS, SWG, CASB, WAF, DNS protection and ZTNA converge over the next several years creating significant disruption in the vendor landscape and opportunities for every organization.

Wednesday, 24 March, 2021 / 11:45 AM - 12:15 PM AEDT

(12:45 AM - 01:15 AM GMT)

Five Cultural Elements for Successful DevSecOps

Mark Horvath, Sr Director Analyst, Gartner

Tools play a crucial role in DevSecOps, but even the best tool is no good if no one uses it. This session goes over five cultural practices the most successful teams use to move from DevOps to DevSecOps, without slowing everything down.

Wednesday, 24 March, 2021 / 11:45 AM - 12:15 PM AEDT

(12:45 AM - 01:15 AM GMT)

Ask the Expert: Mobile Security Strategy

Patrick Hevesi, VP Analyst, Gartner

Come ask the Mobile Security Analyst questions about mobile OSs, unified endpoint management (UEM), mobile threat defense (MTD), and unified endpoint security. Do you have the right mix of mobile security solutions to protect your BYOD and your corporate owned devices in this work from home era?

Wednesday, 24 March, 2021 / 12:30 PM - 12:50 PM AEDT

(01:30 AM - 01:50 AM GMT)

Cloudflare: Succeeding with Secure Access Service Edge (SASE)

With the emergence of SASE, network and security professionals are struggling to build a migration plan for this new platform that adapts to the distributed nature of users and data. Join Cloudflare's session to understand the considerations when building your SASE migration roadmap 3, 6 and 12 months out and find out what to look for in order to maximise your benefits as you work towards implementing a SASE architecture.

Wednesday, 24 March, 2021 / 12:30 PM - 12:50 PM AEDT

(01:30 AM - 01:50 AM GMT)

Recorded Future: Navigating the Threats Landscape with the Security Intelligence Graph

Staffan Truvé, CTO & Co-founder, Recorded Future

Monitoring and alerting on unusual or potentially malicious activity inside your organization is a great strategy - but it’s not enough. You won't succeed If you continue to rely on internal monitoring and alerting. We show you how the security intelligence graph is the representation of the world, and how this information is available at the fingertips of all security analysts to help them work faster and better.

Wednesday, 24 March, 2021 / 12:30 PM - 12:50 PM AEDT

(01:30 AM - 01:50 AM GMT)

Venafi: From Collisions to Collaboration - The Busy Intersection of Digital Transformation, Machine Identities, and Zero Trust

Michael Thelander, Director of Product Marketing, Venafi

Michael Thelander, Director of Product Marketing, Venafi

The year 2021 arrived as two massive, fast-moving convoys approach each other at a busy intersection:
● Down one road comes the rapid adoption of Zero Trust security principles that assume a “default deny” posture, are risk-aware, and deliver “just in time” permissions
● Speeding down the other is the announcement by Gartner of a new IAM category – “machine identity management” -- that seeks to secure the devices, containers, applications and services being continuously deployed
The intersection where they’re converging is a chaotic place called “Digital Transformation Square,” and it’s the place every organization wants to get to. In this session we’ll unpack both trends and show how their convergence promises to either swamp infosec teams … or make them more effective than ever.
In this session attendees will learn how the use of mesh architectures and microservices creates enviable velocity ... while also creating exponentially increasing attack surfaces. They’ll understand how a new security category – what Gartner calls “Machine Identity Management” -- offers the strategies and tactics needed to secure these machines at scale and speed. And finally, they’ll learn how Zero Trust principles, when married to Machine Identity Management practices, provide robust and dynamic security solutions that not only keep up with rapidly transforming DevOps and App teams, but actually make them go faster
Attendees to this session will receive complimentary copies of Gartner research as well as industry-developed blueprints that can guide security, cloud and application architects through this busy intersection.

Wednesday, 24 March, 2021 / 12:30 PM - 12:50 PM AEDT

(01:30 AM - 01:50 AM GMT)

Imperva: If You Can Answer These Questions, Your Data Security is Better Than Most

Most IT professionals perceive securing data as complex & it may seems almost impossible, especially with cloud transformative directions today. The rapid adoption of cloud capabilities, yet the continued reliance on legacy & on premise data systems increase the risk of exposure. This session will highlight the growing global data security, compliance & privacy challenges & offer questions you should ask to gauge your organizational preparedness.

Wednesday, 24 March, 2021 / 12:30 PM - 01:15 PM AEDT

(01:30 AM - 02:15 AM GMT)

Roundtable: Proactively Manage Risk, Security, & Cost, Moderated by ServiceNow

Brian Spring, Security & Risk Sales Leader, ServiceNow

Join ServiceNow in this round table to discuss how to manage risk and security while reducing operational costs. Topics to be discussed with participants on the round table include:
o How organizations and agencies can satisfy regulatory and executive scrutiny as it relates to managing risk
o Promoting collaboration across security, IT and risk teams to effectively respond to digital risk
o Leveraging automation across your entire enterprise to reduce operational costs and improve operational efficiency.

Wednesday, 24 March, 2021 / 12:30 PM - 01:15 PM AEDT

(01:30 AM - 02:15 AM GMT)

Roundtable: Solarwinds and Managing Third-party Risk, Moderated by LogRhythm

Simon Howe, VP of Sales, APAC, LogRhythm

James Carder, Chief Information Security Officer, LogRhythm

This must-attend roundtable is opened to security practitioners keen on discussing what is unique and game-changing about the Solarwinds compromise, experiences in mitigating related third-party risk, and what poses the biggest threats to enterprises. We will discuss CSO priorities and top concerns in 2021 and beyond, and how security teams can address these risks towards cyber resilience.

Wednesday, 24 March, 2021 / 01:15 PM - 01:45 PM AEDT

(02:15 AM - 02:45 AM GMT)

Gartner's Strategic Vision for Vulnerability Management

Craig Lawson, VP Analyst, Gartner

Gartner has been evolving its guidance on how to better run vulnerability management, which is a foundational security process. This presentation will go over this new way of doing vulnerability more effectively.
. Why we made some significant changes to our guidance on this critical process?
. What does the new RBVM actually look like?
. How to bring this to life inside your own security programs?

Wednesday, 24 March, 2021 / 01:15 PM - 01:45 PM AEDT

(02:15 AM - 02:45 AM GMT)

Outlook for Data Security

Ramon Krikken, Distinguished VP Analyst, Gartner

This session covers current trends and emerging topics in the area of data security. From databases to files, threats are rapidly evolving and countermeasures slowly follow. Planning a data-centric roadmap for security governance and security architecture is a critical component of any security and risk management program.

Wednesday, 24 March, 2021 / 01:15 PM - 01:45 PM AEDT

(02:15 AM - 02:45 AM GMT)

Solving the Challenges of Modern Remote Access in a Post-COVID-19 World

Rob Smith, Sr Director Analyst, Gartner

This session will discuss the challenges of enabling users to access corporate resources in a post-COVID-19 world. Is always-on VPN still the right access choice or should new technologies such as ZTNA and CASB be used instead? And what about policies?

Wednesday, 24 March, 2021 / 01:15 PM - 01:45 PM AEDT

(02:15 AM - 02:45 AM GMT)

The State of the IoT Network Landscape

Tim Zimmerman, VP Analyst, Gartner

Organizations must recognize the differing networking requirements for IoT use cases in order to deploy the correct network and security architecture and ecosystem, otherwise they will fail. This presentation reviews different market segments and analyzes usage scenarios to identify the network strategy needed to properly implement IoT solutions.

Wednesday, 24 March, 2021 / 01:15 PM - 01:45 PM AEDT

(02:15 AM - 02:45 AM GMT)

Ask the Expert: How to Build a Security Program and Roadmap that is Able to Keep Pace with the Business

Richard Addiscott, Sr Director Analyst, Gartner

As we come out of the pandemic, Gartner surveys tell us that 69% of organisations have accelerated their digital business initiatives and 60% have increased focus on improving operational effectiveness through digital business. We are often asked, ‘how do we keep pace with the business and what steps can we take to ensure we can support their strategic direction and continue to protect them from harm?' Join this ATA to hear how Gartner advises its clients on how to best achieve this objective without simply following the mantra of ‘do more with less’…

Wednesday, 24 March, 2021 / 01:15 PM - 02:00 PM AEDT

(02:15 AM - 03:00 AM GMT)

Case Study Roundtable: Common Pitfalls for Cyber Strategy and Risk Management in Government

Jamie Norton, Former CISO, Australian Taxation Office

This session will provide an interactive forum for the discussion of Cyber Strategy and Risk Management in Government and explore opportunities to share best practice and highlight common pitfalls. This session will feature Jamie Norton, the Chief Information Security Officer at the Australian Taxation Office (ATO). He has overall responsibility for information and cyber security, which provides a foundation for community trust and confidence in the tax and superannuation ecosystems.

Wednesday, 24 March, 2021 / 02:00 PM - 02:20 PM AEDT

(03:00 AM - 03:20 AM GMT)

LastPass by LogMeIn: Identity and Access Management in a Post Pandemic World

Lloyd Evans, ANZ Sales Manager, LOGMEIN AUS PTY LTD.

For the past decade, we’ve been discussing the rise of cloud app technology, constant connectivity, and mobile devices. Now it’s not just easy to work from anywhere - employees expect it. As a result, IT is more challenged than ever to manage and protect a distributed workforce.

Join this session to learn key insights and strategies to fortify the cyber security posture across all sectors of the economy in a work-from-anywhere world.

Wednesday, 24 March, 2021 / 02:00 PM - 02:20 PM AEDT

(03:00 AM - 03:20 AM GMT)

CrowdStrike: Balance Risk, Trust, and Opportunity In An Uncertain World

Join Michael Sentonas as he uncovers real-world scenarios and observed trends in attackers’ ever-evolving tactics, techniques and procedures and offers practical recommendations you can take to proactively protect your organization in the coming year. Mike will also provide insights into frictionless zero trust security with real-time threat prevention and IT policy enforcement using identity, behavioral, and risk analytics.

Wednesday, 24 March, 2021 / 02:00 PM - 02:20 PM AEDT

(03:00 AM - 03:20 AM GMT)

Dataminr: Building Organisational Confidence by Rethinking Risk Preparedness

ILSA SHAW, HEAD OF SALES, DATAMINR

Risk and security professionals must be committed to protecting their people, assets, information and brand in an era of increasingly sophisticated and interconnected threats. Join us to learn how real-time alerts strengthen an organisations awareness of their emerging risks, how enterprise risk managers are anticipating, planning for and responding to crises using real-time information and the key considerations of a converged security model.

Wednesday, 24 March, 2021 / 02:00 PM - 02:20 PM AEDT

(03:00 AM - 03:20 AM GMT)

ForgeRock: Digital Identity as a Foundation of Zero Trust

Simon Moffatt, Product Management, ForgeRock

Businesses are operating under the threat of constant disruption, whilst the never-ending march of the “Dark Army” threatens security & privacy more than ever. The need to deliver richer & more powerful services, whilst embracing modern approaches to cybersecurity & trust? As traditional barriers to security dissolve, digital identity is the constant foundation delivering the appropriate level of access, at the right time. Learn to say yes, more.

Wednesday, 24 March, 2021 / 02:00 PM - 02:45 PM AEDT

(03:00 AM - 03:45 AM GMT)

Roundtable: Driving the Revolution of Secure Networking with SASE, Moderated by Cisco

Wade Goudie, Head of Product Growth APJC Cloud Securi, Cisco

Secure networking was easier when users worked out of the main office and the data they needed was in the data centre. Now users—and the workloads they access—are more distributed. Networking and security can’t deliver a secure, extensible network by operating in silos. They need to join forces in a SaaS-consumable architecture and deliver services closer to users, in the cloud and at the edge. Hear how you can move toward a SASE architecture.

Wednesday, 24 March, 2021 / 02:00 PM - 02:45 PM AEDT

(03:00 AM - 03:45 AM GMT)

Roundtable: Exploring the Future of Cloud Transformation: What Lies Next? Moderated by Symantec

Manoj Sharma, Global Head, Security Strategy, Broadcom

Join Manoj Sharma, Head of Security Strategy, Symantec for an in-depth discussion on the future of cloud transformation and the challenges restricting cloud transformation today. Key discussion areas include how to secure cloud applications on unmanaged devices, commercials for SASE implementation and key learnings from Symantec’s digital transformation journey. The session will also explore how to deliver a data-centric approach to SASE.

Wednesday, 24 March, 2021 / 02:45 PM - 03:15 PM AEDT

(03:45 AM - 04:15 AM GMT)

A Pragmatic Approach to Implementing a Zero Trust Security Architecture

Neil MacDonald, Distinguished VP Analyst, Gartner

Changes in the threat landscape and ineffectiveness of current security architectures has driven an explosion of interest in zero trust security architectures. This presentation will build on the concepts of zero-trust networking and extend to operating systems, applications (including development), users and data. Topics will include the new NIST draft standard for zero trust as well as technologies and vendors providing solutions.

Wednesday, 24 March, 2021 / 02:45 PM - 03:15 PM AEDT

(03:45 AM - 04:15 AM GMT)

Applying CARTA to Access Management

Michael Kelley, Sr Director Analyst, Gartner

As a security framework, all elements of CARTA can be applied to any technology. For access management, this includes concepts like continuous authentication and continuous authorization, applying dynamic (always being evaluated) approaches to access management. In this approach, adaptive and contextual authentication, as well as leveraging session management as a control plane, and UEBA as for visibility, will allow a near-real-time response to a variety of AM issues, including credential theft, session hijacking and others.

Wednesday, 24 March, 2021 / 02:45 PM - 03:15 PM AEDT

(03:45 AM - 04:15 AM GMT)

Outlook for Privacy 2021

Nader Henein, VP Analyst, Gartner

Privacy is not slowing! Consumers continue to demand that their privacy be protected, not just respected and legislators continue to react by enacting data protection laws. It is not sufficient (or efficient) to focus on baseline compliance. This session describes the latest developments in the landscape and steps to evolve the privacy management program from focusing on compliance only to value creation in the business.

Wednesday, 24 March, 2021 / 02:45 PM - 03:15 PM AEDT

(03:45 AM - 04:15 AM GMT)

The Key Drivers for CISO Effectiveness

Sam Olyaei, Director Analyst, Gartner

Security and risk management leaders are often treated as scapegoats in cases of breach. By the same token, digital business has propelled security and risk to become a boardroom issue, business units have increased their expectations (and demand) of their leadership, and regulatory demands are often challenging. This session will shed light on the leadership traits that aide in a successful and balanced approach between the demands of the business and the effectiveness of the leader.

Wednesday, 24 March, 2021 / 02:45 PM - 03:15 PM AEDT

(03:45 AM - 04:15 AM GMT)

Ask the Expert: SASE Is Going to Be Big, but Does That Matter to You

Craig Lawson, VP Analyst, Gartner

Patrick Hevesi, VP Analyst, Gartner

This is an ask the expert session on the emerging SASE market.

Wednesday, 24 March, 2021 / 02:45 PM - 03:15 PM AEDT

(03:45 AM - 04:15 AM GMT)

Ask the Expert: How to Develop a Security Strategy That Your Business Cares About

Claude Mandy, Sr Director Analyst, Gartner

Strategic planning for security programs is simple in theory, but challenged by insufficient benchmarking, lack of business alignment and inconsistent assessment. Join your peers in conversation to share best practices in developing a security strategy that your business cares about.

Wednesday, 24 March, 2021 / 03:30 PM - 04:00 PM AEDT

(04:30 AM - 05:00 AM GMT)

Five Cost Optimization Techniques That CIOs Must Use for Cybersecurity

Sam Olyaei, Director Analyst, Gartner

Looking past the immediate implications of the current health and economic crisis, organizations are ill prepared to confront the impact on their services and goals. As economic uncertainty settles in and working environments become more difficult, leaders must create a cost-optimization plan to aid their organizations in navigating past this challenging turn, especially as it relates to security and risk management. This session will equip leaders with the information necessary to make a decision on where the balance between running the business and protecting the business shall be.

Wednesday, 24 March, 2021 / 03:30 PM - 04:00 PM AEDT

(04:30 AM - 05:00 AM GMT)

Cut Through the "Zero Trust" Vendor Hype

John Watts, Sr Director, Analyst, Gartner

"Zero trust" has emerged as a popular buzzword for the security industry in 2020. Security and risk management leaders need help cutting through the vendor hype for practical advice on how to succeed including:
- Practical implementations of zero trust.
- What problems it solves, but more importantly, what it doesn't.
- Real-world implementation feedback from clients.

Wednesday, 24 March, 2021 / 03:30 PM - 04:00 PM AEDT

(04:30 AM - 05:00 AM GMT)

Outlook for Security Talent, Careers, and People

David Gregory, Sr Director Analyst, Gartner

The information security profession is growing at a rate of 37% through 2022. Organizations need to ensure that they recruit, develop and retain the right talent to keep up with this demand. This presentation explores how organizations will need to extend diversity, flex recruitment strategies and create the right organizational culture to recruit, grow and retain the best talent.

Wednesday, 24 March, 2021 / 03:30 PM - 04:00 PM AEDT

(04:30 AM - 05:00 AM GMT)

You’ve Got Cloud Security All Wrong — Why Identity and Data Security Are Paramount in a Cloud World

David Mahdi, VP Analyst, Gartner

In a world of cloud, does infrastructure security matter? As organizations move more services to the cloud, the problem shifts to managing user access and data. Attend this session to learn about emerging trends on the convergence of cloud, identity and data security, as well as best practices regarding cloud security, that you can leverage now.

Wednesday, 24 March, 2021 / 03:30 PM - 04:00 PM AEDT

(04:30 AM - 05:00 AM GMT)

Ask the Expert: DevSecOps — What Does Success Look Like?

Manjunath Bhat, VP Analyst, Gartner

DevSecOps promises to at last deliver effective application security — but lasting, tied to testing-oriented and gateway-focused approaches, guarantees failure. The urgent question then, is what does "success" look like? In this session we'll answer questions around the organizational process and the tool changes needed to help ensure a successful DevSecOps program and robust application security.

Want to stay informed?

Get conference email updates.
Contact Information

All fields are required.

  • Step 2 of 2