Agenda
Our Gartner experts, who are at the top of their fields, helped attendees address their most critical challenges. These key topics kickstarted conversations around priorities and initiatives so that attendees could tackle what was most important to them.
Cybersecurity leaders must navigate economic uncertainty, distributed technology decisions, labor shortages and an exponentially expanding attack surface — all while managing risk and supporting business objectives.
This track helped security and risk management leaders increase business resilience through effective threat and exposure visibility, response planning and risk prioritization for your organization.
Both security and IT strategy should move toward the same direction. It is also a security leader’s responsibility to always catch up to and update IT strategy and its trend.
This track provides technical insights into security best practices, methodologies and tools needed to ensure operational success. We discuss how to successfully architect, implement and operate security controls for the hybrid enterprise.
The CISO Circle is an exclusive forum — crafted specifically for CISOs and their peers — providing targeted research, workshops and networking opportunities for peer-to-peer interactions.
Wednesday, 26 July, 2023 / 09:30 AM - 10:15 AM JST
Henrique Teixeira, Sr Director Analyst, Gartner
Jay Heiser, VP Analyst, Gartner
Cybersecurity can generate massive value for our enterprises, but only if we have the courage to challenge the myths that we as cybersecurity professionals tell ourselves. Our self-deceptions lock us into obsolete principles and practices that prevent us from truly aligning with our executive partners and enabling our organizations. This keynote will unpack the biggest myths we must defeat, highlighting the decisions and practical steps cybersecurity leaders must take to deliver the success they deserve.
Wednesday, 26 July, 2023 / 12:30 PM - 01:00 PM JST
Jonathan Nunez, Sr Director Analyst, Gartner
Threat exposure management is a required evolution for CISO and security leaders' approach to managing their readiness against unpredictable threats. This session will provide insights into this important and quickly evolving area, including the impact of new business practices and threats on your security exposure and the state and evolution of threat exposure management.
Wednesday, 26 July, 2023 / 05:05 PM - 05:50 PM JST
Yuichi Isoda, VP Analyst, Gartner
The impact of security breaches at domestic and overseas sites with inadequate security measures is becoming increasingly serious, with the number of cases of damage escalating from there. This session will explore how IT and security leaders, with the support of management, can effectively advance security governance through discussions with participants.
Target Participants: User Companies
Thursday, 27 July, 2023 / 09:15 AM - 10:00 AM JST
Yuichi Isoda, VP Analyst, Gartner
In order to continue to overcome the challenges that arise in a rapidly changing world, we need to change our old style, learn a new style and put it into action. However what lies ahead in this struggle? In this session, we will discuss the key challenges for IT and security leaders and provide recommendations.
Thursday, 27 July, 2023 / 05:05 PM - 05:35 PM JST
Oscar Isaka, Sr Director Analyst, Gartner
Every year, Gartner produces impactful predictions across all practices. This presentation will compile the top predictions prepared by our cybersecurity experts. Security and risk management leaders should monitor these trends to be successful in the digital era, especially as most recognize that global change could potentially be one crisis away.
Friday, 28 July, 2023 / 11:00 AM - 11:30 AM JST
Pete Shoard, VP Analyst, Gartner
As organizations update their IT and security for modern work, they now have to manage a growing attack surface due to their technological environments becoming increasingly complex and dispersed. New technologies and business initiatives, such as SaaS and supply chain pose new threats. Organizations need to invest in a better understanding of the continuous expansion of their attack surface.
Friday, 28 July, 2023 / 03:10 PM - 03:40 PM JST
Henrique Teixeira, Sr Director Analyst, Gartner
“Top trends” highlight shifts in the security ecosystem that aren't widely recognized, but are likely to have potential for disruption. This session will describe the significant trends in risk management and how organizations are taking advantage of these trends. Key issues include technological improvements in the security capability landscape; trends in creating a high-performing security organization; and long-term trends that will influence security strategy.
Friday, 28 July, 2023 / 04:40 PM - 05:10 PM JST
Angela Zhao, Director Analyst, Gartner
Enterprise's attack surface expands and is fragmented across a variety of environments. Security leaders need to implement an exposure management program in an effort to handle this complexity. This session describes how to implement a continuous threat exposure management (CTEM) Program, and explains why it might become the most important initiative to prepare against unpredictable threats.
Friday, 28 July, 2023 / 05:25 PM - 05:55 PM JST
Kaoru Yano, Sr Director Analyst, Gartner
Security leaders should identify, evaluate and respond to the new security risk more quickly as possible to minimize and mitigate current and future threats. This session will cover key initiatives that we have discussed at this summit.
Wednesday, 26 July, 2023 / 12:30 PM - 01:00 PM JST
Dale Gardner, Sr Director Analyst, Gartner
Pervasive, high-profile, high-impact software supply chain attacks — along with increased scrutiny and mandates from regulatory officials — have vaulted software supply chain issues to the top of security and risk management leaders' lists of concerns. In this session, you’ll learn:
-How to establish foundational risk management principles
-The optimal methods to set up security and development teams for success
-How to defend yourself from supply chain attacks.
Wednesday, 26 July, 2023 / 02:00 PM - 02:30 PM JST
Wayne Hankins, Sr Director Analyst, Gartner
As Cybersecurity criminals continue to become better organized, Security Leaders need to follow best practices to minimize the impact to their business. This session will cover the Top 7 critical items that all security and risk management leaders should leverage before an event.
Wednesday, 26 July, 2023 / 04:20 PM - 04:50 PM JST
Angela Zhao, Director Analyst, Gartner
CPS are becoming more prevalent in organizations across the board, whether as a result of OT/IT convergence or the deployment of new connect assets. What security implications do they have? What best practices are emerging? What does the future portend?
Wednesday, 26 July, 2023 / 05:05 PM - 05:35 PM JST
Pete Shoard, VP Analyst, Gartner
This session will address the changes in the SIEM market, the progression toward SaaS platforms, the impact of consolidated solutions such as XDR and the desire for a solution that is able to detect, investigate and respond to threats in an integrated capability that can be effectively used in line with modern infrastructure and modern SOC processes.
Thursday, 27 July, 2023 / 11:05 AM - 11:35 AM JST
Jay Heiser, VP Analyst, Gartner
Cybersecurity risk management is a key investment area of interest for organizations. But for security and risk management leaders, it is an on-going challenge to continuously assess the increasing scope of risks as well as mitigate the ones that can maximize protection and innovation to the business. This session offers an overview of the state of art as well as what the future will hold in cyber-risk management.
Thursday, 27 July, 2023 / 03:25 PM - 03:55 PM JST
Jonathan Nunez, Sr Director Analyst, Gartner
The threat landscape is a moving target. Attack campaigns might hit multiple organizations, but each enterprise should analyze its own threat landscape. Security and risk management leaders should gain baseline knowledge on optimizing prediction and prevention; knowing when detection is required; and preparing to respond when things go wrong.
Thursday, 27 July, 2023 / 05:05 PM - 05:35 PM JST
Jay Heiser, VP Analyst, Gartner
CISOs are key enablers of digital business and are accountable for helping the enterprise balance the associated risks and benefits. This leadership vision will help CISOs in their planning for 2023-2024 and in presentations to leadership, peers and teams.
Friday, 28 July, 2023 / 11:00 AM - 11:30 AM JST
Kaoru Yano, Sr Director Analyst, Gartner
Only a few companies have strong confidence in their incident response capability. The security discussion of CSIRT or SOC operation is expanding toward PSIRT and FSIRT as well in the higher trend of the DX and complicated business ecosystem. In this session, we will cover how to rebuild new CSIRT/PSIRT/FSIRT to respond to future security risks.
Friday, 28 July, 2023 / 11:00 AM - 11:30 AM JST
Oscar Isaka, Sr Director Analyst, Gartner
Third-party risk management is a very broad and potentially complex topic. This session will discuss principles that security and risk management leaders must adopt for more effective management of third-party risk and the common pitfalls to watch out for.
Friday, 28 July, 2023 / 03:10 PM - 03:40 PM JST
Jonathan Nunez, Sr Director Analyst, Gartner
CISOs and their teams have way too many dashboards, suffer from years of diagnostic fatigue and see their attack surface expanding continuously.
This session analyses how organizations can modernize red teaming and blue teaming with new options available to them. Cybersecurity validation techniques result in more actionable outcomes from your exposure management efforts.
Friday, 28 July, 2023 / 03:10 PM - 03:40 PM JST
Dale Gardner, Sr Director Analyst, Gartner
AI teams are perceiving risk differently than security teams. Especially given upcoming regulations and guidelines across the globe, things to not overlook include data and model drift, uncontrolled bias and privacy and security concerns specific to AI model training and deployment. This session will explain Gartner's AI trust, risk and security management (TRiSM) market guide and how to coordinate AI issues collaboratively and consistently.
Friday, 28 July, 2023 / 04:40 PM - 05:10 PM JST
Yuichi Isoda, VP Analyst, Gartner
Security and privacy considerations are becoming more and more important in data analytics. In this session, we will discuss the important trends, basics, and essentials of security and privacy in data utilization.
Friday, 28 July, 2023 / 04:40 PM - 05:10 PM JST
Jay Heiser, VP Analyst, Gartner
Resilience is a goal of every organization and what we consider to be a strategic imperative in today’s complex and turbulent world. But you know when resilience efforts miss the mark or just aren’t there. In this session we will examine four issues: Why is resilience a strategic imperative? How is resilience defined differently? How is the resilience landscape changing? How does an organization achieve operational resilience?
Wednesday, 26 July, 2023 / 02:00 PM - 02:30 PM JST
Hiroko Aoyama, Director Analyst, Gartner
The risks associated with containers require a shift in focus, not only from an infrastructure and application security perspective but also as an update to security mechanisms, including team structure and approach. This session will outline why container security efforts are important (why), what the specific risks are (what) and how enterprises should address them (how).
Wednesday, 26 July, 2023 / 04:20 PM - 04:50 PM JST
Eri Hariu, Director Analyst, Gartner
The expansion of digital workplaces has led to an urgent need to improve the IT literacy of employees. The ability of the general workforce to utilize digital and the associated security literacy has become a priority for companies to address. This session will suggest where IT leaders can start and how they can improve the IT skills of their employees, including security.
Wednesday, 26 July, 2023 / 05:05 PM - 05:35 PM JST
Tadaaki Mataga, Distinguished VP Analyst, Gartner
Metaverse is a "fully digital" world that goes beyond the conventional virtual space and digitizes the real world. From now on, toward 2030, this new world will bring destruction and new creation to all people. In this session, we will recommend how users should prepare for the megatrends occurring in 2030.
Thursday, 27 July, 2023 / 03:25 PM - 03:55 PM JST
Ryuichi Tsuchiya, Sr Director Analyst, Gartner
There has been no end to the security incident cases caused by the vendors in charge of IT system development and operation. Faced with this threat, the question once again for IT organizations is how to effectively "manage vendors" to address. This session will indicate how security leaders should take measures for vendors from the perspective of Gartner's vendor management framework: risk, relationship, contract and evaluation.
Wednesday, 26 July, 2023 / 12:30 PM - 01:00 PM JST
Hiroyuki Suzuki, Sr Principal Analyst, Gartner
Despite EDR being implemented, many companies are facing issues like time-consuming analysis and the number of incidents not decreasing. Intrinsic issues, like the need to improve skills and the selection of contractors, are different and not easily resolved. In the mid of expectations for early detection and early response to threats, we will explain how to maximize the effect of introducing EDR, along with the possibility of XDR.
Wednesday, 26 July, 2023 / 02:00 PM - 02:30 PM JST
Michael Kelley, Sr Director Analyst, Gartner
This session will outline the current state and emerging trends in the market for privileged access management.
Wednesday, 26 July, 2023 / 04:20 PM - 04:50 PM JST
Henrique Teixeira, Sr Director Analyst, Gartner
Preventive mechanisms offered by emerging technologies like CIEM include identity security posture management (ISPM) principles to handle misconfiguration, vulnerabilities, and general exposure of entitlements in cloud infrastructures. ISPM is a must-have complement to run time detection and response disciplines. Join this session to learn how cloud infrastructure entitlement management (CIEM) is paving the way to smarter strategies for identity immune systems of the future.
Wednesday, 26 July, 2023 / 05:05 PM - 05:35 PM JST
Wayne Hankins, Sr Director Analyst, Gartner
Cloud security remains a challenge; we have to protect data when it is out of our control. This session will address the emerging trends in cloud security, what they bring to your organization and how to use them most effectively. Security is seen as an obstruction to cloud adoption; this will show you how to enable without losing protection.
Thursday, 27 July, 2023 / 11:05 AM - 11:35 AM JST
Takeshi Ikeda, VP Analyst, Gartner
Anytime and anywhere trend in business brings networks and their security fundamentally changed. This session will discuss the fundamental changes such as SASE and/or IT/OT convergence in network architecture and also organizational role changes among networking and security over IT and OT.
Thursday, 27 July, 2023 / 11:05 AM - 11:35 AM JST
Oscar Isaka, Sr Director Analyst, Gartner
In the past, data security products were built with the goal to locate and block an attacker. Modern data security is like navigation systems. You need to leverage or share (internally or externally) your data and the security products get you there.
Thursday, 27 July, 2023 / 03:20 PM - 04:05 PM JST
Hiroyuki Suzuki, Sr Principal Analyst, Gartner
Companies that implement/operate EDR products need to consider the appropriate implementation for the purpose of EDR operation in order to maximize its effectiveness. In this session, analysts will answer questions from participants and explore the operation and future direction of EDR to maximize its effects.
Thursday, 27 July, 2023 / 03:25 PM - 03:55 PM JST
Michael Kelley, Sr Director Analyst, Gartner
Digital identity requirements and importance are growing as organizations migrate their infrastructure and apps to the cloud. Enterprises anticipate innovations to enable continuous, dynamic and intelligent IAM controls while bracing for emerging decentralized identity impact and potential Web3 business model disruption. This session discusses key trends and the IAM outlook in the coming years.
Thursday, 27 July, 2023 / 05:05 PM - 05:35 PM JST
Wayne Hankins, Sr Director Analyst, Gartner
A number of consolidation trends, such as SASE and XDR, and also CNAPP and DSP, are beneficial to reduce enterprise security complexity. We discuss recent findings and how to successfully run consolidation projects.
Thursday, 27 July, 2023 / 05:05 PM - 05:50 PM JST
Takeshi Ikeda, VP Analyst, Gartner
This is a Q&A session for the audience of "Q&A for Rethinking and Restructuring Toward the Secure-First Networking." This session will discuss the fundamental changes such as SASE and/or IT/OT convergence in network architecture and also organizational role changes among networking and security over IT and OT.
Wednesday, 26 July, 2023 / 03:25 PM - 04:55 PM JST
Kazunori Kumakura, Sr Executive Partner, Gartner
Most organizations have two conflicting missions, developers that want to add more features, and a security team tasked with protecting the enterprise. Enforcement of security standards can be overbearing and often met with frustration. We’ll learn how to fix this paradox by co-creating security standards, teaching secure coding practices and automating security scans inside the developer’s native environment.
Wednesday, 26 July, 2023 / 05:05 PM - 05:50 PM JST
Toshio Fujisawa, Sr Managing Partner, Gartner
Takashi Watanabe, Director Consulting, Gartner
As the era of "new normal" is becoming more realistic, it is no longer possible for companies to keep a traditional security measures and to evolve to a next generation security measures when creating their future business strategies utilizing new technologies. With actual CISOs participating to this roundtable, it will be articulated that capabilities and responsibilities of CISO required to support business driving digitalization and encourage appropriate executive decisions.
*Limited to CISO Circle member and End-Users only
Thursday, 27 July, 2023 / 03:20 PM - 04:05 PM JST
Kaoru Yano, Sr Director Analyst, Gartner
Security leaders should identify security risks in the new business quickly and appropriately. In this session, we will invite Midori Inaba, an Associate Professor at the Institute of Information Security, and our Guest Keynote speaker to discuss what CISOs need to know about cybersecurity risk management.
Thursday, 27 July, 2023 / 05:05 PM - 05:50 PM JST
Toshio Fujisawa, Sr Managing Partner, Gartner
Tomokazu Ando, Sr Director Consulting, Gartner
As many companies accelerate their digital business initiatives, the business impact of cyberattacks has continued to increase. From a management perspective, it is crucial to implement the appropriate security measures alongside business transformation.
In an ever-changing business environment, company executives must have a clear understanding of the security risks facing their organization, how to reduce those risks, and what actions they must take as leaders.
*Limited to CISO Circle member and End-Users only.
Friday, 28 July, 2023 / 11:00 AM - 11:30 AM JST
Takashi Watanabe, Director Consulting, Gartner
The conventional passive detection and response measures are no longer sufficient for protecting the security of modern organizations.
While it is not possible to predict all unknown cyberthreats, organizations can prepare for future attacks by actively analyzing attackers, and learning from past incidents.
We will explain the methods for proactively identifying threats and minimizing risks in response to cyber threats.
Friday, 28 July, 2023 / 02:15 PM - 03:45 PM JST
Toru Asada, VP Service Delivery, Gartner
As cyber threats become more complex, many companies are beginning to see moves to strengthen the active involvement of employees in security. However, traditional security education programs are not enough, and many companies are looking for new ways to do it. In this workshop, we will consider what CISOs can do to improve the security literacy of employees.