Tuesday, November 16, 2021 / 10:15 AM - 10:45 AM EST
Sam Olyaei, Director Analyst, Gartner
This session, exclusive to CISO Circle attendees, will give you an overview of the sessions that comprise the program, enabling you to select the sessions that are best suited to you. The CISO Circle is designed to be highly interactive, giving you an opportunity to network and share best practices and experiences with your peers. This session will kick-start that process, enabling you to connect with your fellow CISO Circle members and prepare for these conversations during the Conference.
Tuesday, November 16, 2021 / 12:00 PM - 12:45 PM EST
Tina Nunno, Distinguished VP Analyst, Gartner
Sam Olyaei, Director Analyst, Gartner
Please join us for a fireside chat with Tina Nunno, VP & Distinguished Analyst, Gartner Fellow. Ms. Nunno has decades of experience coaching senior executives globally in leadership and organizational politics, to help them deal with conflict and achieve their career goals. Her sometimes controversial work explores what she refers to as the "light and dark" sides of organizational politics, to find new ways of dealing with the most difficult situations. She is a published author, and some of her most recent research deals with CEO conflict styles, politics of consensus cultures, and those of family-owned companies.
Tuesday, November 16, 2021 / 03:00 PM - 04:00 PM EST
Leigh McMullen, Distinguished VP Analyst, Gartner
In this session, you will learn to recognize and counter more than a dozen forms of resistance that commonly occur in meetings, as well as techniques to handle more advanced political situations such as malevolent actors, as well as the essential tools of persuasion. All of this wrapped in a fun and entertaining exploration of the wisdom of one of Japan's greatest swordsmen.
Wednesday, November 17, 2021 / 12:00 PM - 12:45 PM EST
Tim Callahan, SVP, Global Security; CSO, AFLAC
Join Tim Callahan, Global CISO at AFLAC, as he shares his experience around an identity-first framework, managing permission at scale, and ensuring the right people have access to the right resources. Come prepared to share your opportunities and challenges when it comes to identity-first frameworks and finding the right tools for your business and team.
Wednesday, November 17, 2021 / 03:00 PM - 04:45 PM EST
Christopher Mixter, VP, Research, Gartner
In the last few years, CISOs have been thrust into the ranks of the c-suite as cybersecurity rises in priority for organizations. CISOs struggle to understand what success now looks like and what they need to do to attain it. As a consequence, 60% admit they rarely disconnect from work; 22% are available to their company 24/7. To what end? It's time for CISOs to take a step back and start making hard choices about how to pursue their value proposition.
Thursday, November 18, 2021 / 12:00 PM - 12:45 PM EST
Tammy Klotz, Chief Information Security Officer, Covanta
Sam Olyaei, Director Analyst, Gartner
Disruptive forces continue to generate high demand for cyber-security professionals. Executives must rethink their cyber-security organization, as they face a challenging labor market and an extended ecosystem of risks. This session will host a panel of exclusive CISOs to discuss organizational transformation by leveraging these new challenges.
Thursday, November 18, 2021 / 03:00 PM - 03:45 PM EST
Bill Pray, Practice Vice President, Gartner
Paul Tucker, SVP and Chief Information Security & Privacy Officer, BOK Financial
Join Paul Tucker, CISO at the Bank of Oklahoma, as he shares his experience around the different processes, technology and professional services needed to identify risks coming from internet-facing assets and systems. Come prepared to share your opportunities and challenges that you face on a daily basis while managing the attack surface.
Tuesday, November 16, 2021 / 11:00 AM - 11:45 AM EST
Tina Nunno, Distinguished VP Analyst, Gartner
As a security leader, are you playing defense or offense? Do you as a leader set the terms of engagement, or are they too often set by others? This session will explore how security leaders can ensure they lead from an offensive position, to deliver the best results for themselves and for their enterprises.
Tuesday, November 16, 2021 / 12:00 PM - 12:30 PM EST
Paul Proctor, Distinguished VP Analyst, Gartner
Outcome-driven metrics are operational, cost and business-benefit metrics based on the value proposition of our controls. Risk and security professionals can use ODM to optimize risk, value and cost in a business contexts. The direct line of sight to protection levels enable an organization to answer the key questions: how much security do we want? And how much are we willing to spend for that protection?
Tuesday, November 16, 2021 / 12:00 PM - 12:30 PM EST
Tom Scholtz, Distinguished VP Analyst, Gartner
This presentation will share how behavioral economics can help security and risk leaders understand how to influence user behavior and improve security culture.
Tuesday, November 16, 2021 / 12:00 PM - 12:30 PM EST
Jeffrey Wheatman, VP, Advisory, Gartner
Everyone knows how important strategic planning is for success and yet it is an immense challenge for pretty much everyone. Join us to learn about a simple approach to telling a simple story linking security program activities to business goals and drives better decisions.
1. What makes a good strategy?
2. What kind of narratives work?
3. What does a sample strategy look like?
Tuesday, November 16, 2021 / 12:00 PM - 12:30 PM EST
Jay Heiser, VP Analyst, Gartner
The challenges to security and risk management programs range from governmental/political intervention to digital business adoption to the impact of organizational culture of running a business. Security and Risk Management (SRM) leaders must develop a coherent program based on a clear vision and strategy. This presentation will address:
-What are the major trends affecting the security and risk management leader?
-What are the top challenges affecting the security and risk management leader?
-What actions and best practices should the security and risk management leader initiate?
Tuesday, November 16, 2021 / 12:00 PM - 12:45 PM EST
Belinda Wilson, Sr Director Consulting, Gartner
Facilitated session to obtain participant input on how they are defining "resilience" within their organization and how they plan to implement and measure. Potential abstract: Resilience seems to be a new buzzword in 2020 that isn't really new. Come join this interactive session with your peers to hear how others define, implement, and measure resilience.
Tuesday, November 16, 2021 / 12:00 PM - 12:45 PM EST
Brian Lowans, Sr Director Analyst, Gartner
A data risk assessment is critical to review the growing risks associated with data breaches and deployments across multi-cloud architectures. Use this session to discuss emerging best practices.
Tuesday, November 16, 2021 / 01:30 PM - 02:00 PM EST
Sam Olyaei, Director Analyst, Gartner
Innovation — or at least the desire to innovate — is on the rise among corporate and public sector clients alike. But while desirable, morphing from your existing culture into an innovative one is hard especially while trying to manage cyber risk in your organization. Most who try, fail. This presentation aims to provide attendees with tactical advice on how to get started, with four culture hacks.
Tuesday, November 16, 2021 / 01:30 PM - 02:00 PM EST
Paul Proctor, Distinguished VP Analyst, Gartner
What is the right amount of security? How much should we be spending? How can this all be put in a business context? How do I satisfy the regulators? And how do we create a safer world? Learn about the latest approaches in solving these previously unsolvable problems.
Tuesday, November 16, 2021 / 01:30 PM - 02:00 PM EST
Katell Thielemann, VP Analyst, Gartner
This session presents an overview of current and emerging threats specific to cyber-physical systems (CPS) born either of OT/IT convergence or from IoT, IIoT, or Smart "X" efforts.
Key issues include:
• An overview of CPS and why they matter
• How CPS change an organization’s threat environment
• What emerging threats organizations are probably not thinking about but should
Tuesday, November 16, 2021 / 03:00 PM - 03:30 PM EST
Peter Firstbrook, VP Analyst, Gartner
“Top trends” highlight shifts in the security ecosystem that aren't widely recognized, but are likely to have potential for disruption. This presentation will describe the significant trends in risk management and how organizations are taking advantage of these trends. Key issues include: Top technological improvements in the security product landscape; Trends in creating a top notch security organization; and long-term trends that will influence security strategy
Tuesday, November 16, 2021 / 03:00 PM - 03:30 PM EST
Wam Voster, Sr Director Analyst, Gartner
Organizations need to ensure their Operational Technology (OT) has a framework of People, Process and Technology to increase or at least maintain their OT security posture. Fully aligning to standards like the IEC62443 is for many smaller organizations not feasible. Security & Risk Management Leaders can use these OT Security controls to address the risks in their OT environment.
Tuesday, November 16, 2021 / 03:00 PM - 03:45 PM EST
Belinda Wilson, Sr Director Consulting, Gartner
Although the FBI recommends organizations not pay for ransomware – this type of a decision is typically made internally and collaboratively between security, legal, insurance, and IT. In this facilitated session, we will host an interactive discussion to share perspectives on how this decision may be made within your respective organizations and what some of the key criteria may be to assist with the decision.
Tuesday, November 16, 2021 / 03:45 PM - 04:15 PM EST
Jose Ramirez, Principal Analyst, Gartner
Neurodiverse individuals bring a unique perspective to the workspace and a skill set that can drive significant competitive advantage. However, entering into a new workplace and team can be particularly challenging and stressful for individuals with neurodiversity. This session covers how to create a neurodiverse welcome environment illustrated with case studies in the field.
Tuesday, November 16, 2021 / 03:45 PM - 04:15 PM EST
Jeffrey Wheatman, VP, Advisory, Gartner
SRM leaders struggle with creating effective metrics. They are too technical, or not technical enough. They resonate with practitioners or business leaders but not both. They are comprised of data with no context. Metrics are important and we don’t do them very well.
(1) What makes a good metric?
(2) How can make your metrics useful?
(3) How can you build metrics that support business goals?
Wednesday, November 17, 2021 / 12:00 PM - 12:30 PM EST
Katell Thielemann, VP Analyst, Gartner
If your company does any work for the department of defense anywhere in the world, security should now be central to your organization's competitive strategy. Hear what your peers are saying and doing to get ready.
Wednesday, November 17, 2021 / 12:00 PM - 12:30 PM EST
Leigh McMullen, Distinguished VP Analyst, Gartner
Whether it's in the board room or the big stage at an event like symposium, having great is just part of the equation. This session is about how to tell your story. How to structure it for different audiences and different formats, and how to make sure your message sticks!
Wednesday, November 17, 2021 / 12:00 PM - 12:45 PM EST
Belinda Wilson, Sr Director Consulting, Gartner
Christopher Thomas, Sr Director Consulting, Gartner
• As ransomware attacks continue to grow, preparedness for protection, response, and recovery highlight the need for security professionals to partner with other key organizations such as general counsel, IT (backup, disaster recovery), cyber-insurance, and crisis management. The focus of this session is on how and who should be involved, including the board and other senior management as required, to ensure effective crisis management takes place, education of employees on the appropriate use of technology to limit vulnerabilities to a cyberattack, and preparedness activities for cyber defense, immutable storage, and response/recovery plans.
Wednesday, November 17, 2021 / 12:00 PM - 12:45 PM EST
Patrick Long, Principal Analyst, Gartner
Many midsize enterprise security teams are having trouble defining what security metrics they should be tracking. What metrics actually drive outcomes? Are your metrics targeting the correct audience? Are your outsourced security services providing you the right metrics? Join us for this MSE-specific session to help get rid of the noise and find what works best for your organization.
Wednesday, November 17, 2021 / 01:30 PM - 02:00 PM EST
Brian Lowans, Sr Director Analyst, Gartner
Data security projects can create negative business impacts without support from the business leaders. It is critical to use data security governance in cooperation with a business sponsor to focus on business outcomes while managing achievable levels of risk mitigation.
Wednesday, November 17, 2021 / 01:30 PM - 02:00 PM EST
Jeffrey Wheatman, VP, Advisory, Gartner
Implementing cybersecurity in a federated environment is challenging. Stakeholders have different goals, maturity and risk appetites. SRM leaders must implement a program that accounts for variance and helps balance risk and opportunity. (1) what are the unique challenges of federated environments? (2) What does governance look like? (3) What are the practical implications of federated security?
Wednesday, November 17, 2021 / 01:30 PM - 02:00 PM EST
Lisa Pierce, VP, Advisory, Gartner
Baby boomers, Gen Xers, millennials and Gen Zers comprise your security function. Do you really understand their different behaviors and expectations? This is a must for security leadership, so that they can create an IT and security culture that leverages strengths and confronts weaknesses so to uncover opportunities and overcome threats into our collaborative future. Change starts with people.
Wednesday, November 17, 2021 / 01:30 PM - 02:15 PM EST
Yanni Karalis, VP Analyst, Gartner
Gartner surveys are showing that more than 30% of technology buying is not happening in the IT department anymore. Business buying is becoming more and more of the norm and with the emergence of digital marketplaces (AWS Marketplace, MS Marketplace, Google and others) buying and consuming SaaS is becoming easier than ever. How can Risk and Security Leaders manage risk without becoming a bottleneck?
Wednesday, November 17, 2021 / 03:00 PM - 03:30 PM EST
Katell Thielemann, VP Analyst, Gartner
Gartner’s annual surveys collect data from thousands CIOs and Board Members on what matters most to them.
Join this session to learn:
• What’s most important to them
• How they are adapting to the fast-changing environment around them
• What they plan on investing in
• Implications for security and risk leaders and what Gartner frameworks can help
Wednesday, November 17, 2021 / 03:00 PM - 03:45 PM EST
Tricia Phillips, Sr Director Analyst, Gartner
Andrew Walls, Group Vice President, Gartner
Khushbu Pratap, Director Analyst, Gartner
We all know that women make up a disproportionately small percentage of cybersecurity teams and leaders when compared to IT as a whole. Why are we not making more progress? How can managers help drive change, how can allies support diversity initiatives, and how can women navigate the challenges of working in a male dominated industry? Bring your questions for our panel of experts.
Wednesday, November 17, 2021 / 03:00 PM - 04:00 PM EST
Moshe Toledano, CISO and Director of Cyber Security, Hydro Quebec
Brian Minick, Chief Information Security Officer, Fifth Third Bank
With an ever-changing threat environment, CISO's are challenged to effectively allocate resources and plan for future investment. This session will explore how CISOs can establish priorities in their security programs to better align their program investments and initiatives to business risk mitigation.
Wednesday, November 17, 2021 / 03:45 PM - 04:15 PM EST
Srinath Sampath, Sr Director Analyst, Gartner
To succeed at digital business, organizations need to make sure their leaders and employees make bold and innovative choices while simultaneously protecting their business outcomes. The culture of the organization — specifically as it relates to risk-taking — is a significant yet underutilized driver. This session will cover how to build a risk culture that powers your digital future.
Wednesday, November 17, 2021 / 03:45 PM - 04:15 PM EST
Dorota Pietruszewska, Director, Advisory, Gartner
Security and risk management leaders can no longer directly facilitate most risk decisions. SRM leaders must expand their focus to improving cyber judgment across the enterprise to help decision makers make informed information risk decisions without their direct involvement. This session will offer practical, fact-based guidance on how to develop cyber judgement within your organization.
Thursday, November 18, 2021 / 12:00 PM - 12:30 PM EST
Abhishek Gupta, Sr Director Consulting, Gartner
Organizations across multiple sectors have made Cybersecurity a board-level priority. CISOs, CIOs, CTOs and CROs are putting in a tremendous amount of effort and investment to manage organization, IT, and cybersecurity risks, and operate an effective and efficient cybersecurity program. However, the BIG question that remains is how is that cybersecurity program working for you?
Thursday, November 18, 2021 / 12:00 PM - 12:30 PM EST
Jonathan Care, Sr Director Analyst, Gartner
This session will cover different types of insider threat scenarios, and how you should incorporate these scenarios in your incident response plan and processes. We will define insider threat personas, how to begin building scenarios for these personas, and discuss some best practices for success.
Thursday, November 18, 2021 / 12:00 PM - 12:30 PM EST
Tom Scholtz, Distinguished VP Analyst, Gartner
CISO’s have a duty to ensure that the enterprise has an effective cybersecurity security program that can prove to all stakeholders (i.e., shareholders, regulators, customers, suppliers and employees) that it is doing all that can be reasonably expected to protect the digital resources against cyber risk. This presentation analyses the characteristics of a defensible program.
Thursday, November 18, 2021 / 12:00 PM - 12:45 PM EST
Jeffrey Wheatman, VP, Advisory, Gartner
Across industry sectors, organizations are being directed to implement – and, in some cases, comply – with a range of new or strengthened government cybersecurity regulations. A key challenge for SRM leaders is being able to –sensitively and sensibly – shape and influence the discussion at senior levels and avoid being sucked into a compliance-driven security agenda. Join this interactive, invitation-only roundtable session with your peers to discuss strategies for delivering an effective cybersecurity program and at the same time meet regulatory cybersecurity obligations.
Thursday, November 18, 2021 / 01:30 PM - 02:00 PM EST
Sam Olyaei, Director Analyst, Gartner
Every year, Gartner produces impactful predictions across all practices. This presentation will compile the top predictions prepared by our cybersecurity experts for the year 2021-2022. Security and risk management leaders should monitor these trends to be successful in the digital era especially as most recognize that global change could potentially be one crisis away.
Thursday, November 18, 2021 / 01:30 PM - 02:00 PM EST
Tom Scholtz, Distinguished VP Analyst, Gartner
There are multiple approaches for communicating the business value of cybersecurity and none of them offer a single "best" way. All are relevant to different contexts. This presentation will discuss the characteristics of common approaches such as RO(S)I, price-performance analysis, outcome-driven approach, etc., and provide guidance on how to select the appropriate approach based on context.
Thursday, November 18, 2021 / 01:30 PM - 02:00 PM EST
Tricia Phillips, Sr Director Analyst, Gartner
It's no secret: DE&I initiatives in the Security workforce is dismal. This is already proving detrimental to many organizations. The greatest change agents to fix this problem are C-Suite leaders themselves. CIOs and CISOs must take greater notice, as STEM careers starve for diversity, equity, and inclusion. This presentation will provide actionable guidance to CISOs and CIOs on how to change course by looking intentionally within to uncover unconscious biases, and by looking around to uncover blatant gaps in DE&I initiatives within their workforce. The goal is to foster change that will benefit the enterprise in the long-run.
Thursday, November 18, 2021 / 03:00 PM - 03:30 PM EST
Wam Voster, Sr Director Analyst, Gartner
Increasingly, security incidents happen without warning and remain undetected for an extended period. When responding to such an active threat, it is vital that the time between the initial detection and the full mitigation is as short as possible. Security & Risk management Leaders must be prepared for the inevitable by having a proper security incident response process.
Thursday, November 18, 2021 / 03:00 PM - 03:30 PM EST
Sam Olyaei, Director Analyst, Gartner
In a world of change and uncertainty, some are (again) predicting the demise of the centralized CISO role. However, more likely is another functional responsibility split driven by digitalization. Some CISOs will take these “business executive” roles, while others will continue in IT-oriented and operational tasks. What type of CISO are you? Where will you excel? What's next for the role?
Thursday, November 18, 2021 / 03:45 PM - 04:15 PM EST
Belinda Wilson, Sr Director Consulting, Gartner
This session will outline the types of metrics organizations can use to assess the performance and effectiveness of their business continuity and/or disaster recovery program.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Chris Silva, VP Analyst, Gartner
The pandemic has once again highlighted the importance of a robust endpoint security capability. With the market evolving, merging, and expanding, it is an imperative to use the most appropriate vendor or technology to meet its current and future objectives. This session will help the security and risk management leaders understanding the direction and approaches that the vendors take in the market.
Tuesday, November 16, 2021 / 12:00 PM - 12:45 PM EST
Bernard Woo, Sr Director Analyst, Gartner
Bart Willemsen, VP Analyst, Gartner
An increasing number of modern privacy regulations worldwide put strict demands on how data is handled, and by whom, or even where. How do you select and control service providers? What if they suddenly announce a profound change in policy, like WhatsApp did for sharing data with Facebook? Not to mention numerous countries who want data to be nationally processed. Ask the Expert all you want to know in this area. End users only, come prepared with questions.
Tuesday, November 16, 2021 / 01:30 PM - 02:00 PM EST
Claude Mandy, Sr Director Analyst, Gartner
A good security policy is not meant to be a puzzle that end-users must solve. This session will teach you how to apply effective policy writing principles to all of your end-user policies, and how to actually get people to read it.
Tuesday, November 16, 2021 / 03:00 PM - 03:30 PM EST
Bart Willemsen, VP Analyst, Gartner
The future of privacy, is now. Amid an unprecedented set of innovations, driven by a global move to maturing privacy and data protection legislation, consumers' demand for active protection of privacy continues. Looking for minimum compliance leads to risk and opportunity oversight. This session deals with upcoming challenges in privacy, the global state of the landscape, and the tools for a mature, value-creating privacy program.
Tuesday, November 16, 2021 / 03:00 PM - 04:00 PM EST
Paul Proctor, Distinguished VP Analyst, Gartner
Your executives only care about risk, value, and cost. Why would you speak to them about anything else? This workshop will walk through the steps of identifying business processes and outcomes, aligning supporting technology stacks, and creating outcome-driven metrics to put cybersecurity in a business context.
Tuesday, November 16, 2021 / 03:45 PM - 04:15 PM EST
Yanni Karalis, VP Analyst, Gartner
Security and risk leaders are concerned with making sure they assess all risks associated with the purchase of a new solution/service. However, they are often challenged in streamlining the process with sourcing and procurement leaders. In this session, we will present the challenges and the approaches taken by different organizations to improve engagement, guidelines and effectiveness of procurement processes.
Tuesday, November 16, 2021 / 03:45 PM - 04:15 PM EST
Jeremy D'Hoinne, VP Analyst, Gartner
This session covers why everyone speaks about how artificial intelligence might solve security and risk management challenges, but struggle when asked to provide a concrete example. It will show examples of what we call AI today.
Wednesday, November 17, 2021 / 12:00 PM - 12:30 PM EST
Patrick Long, Principal Analyst, Gartner
Midsize enterprise (MSE) IT leaders face significant security challenges when trying to deliver IT services with small IT teams (usually fewer than 30 people) and limited IT budgets (usually less than $20 million). Join us for a discussion of the top trends that MSE IT leaders responsible for security and risk management should prioritize to stay current and proactive in protecting the organization and managing risk effectively.
Wednesday, November 17, 2021 / 03:00 PM - 03:30 PM EST
Stephanie Stoudt-Hansen, VP Analyst, Gartner
Cloud contracting requires due diligence from precontract vetting to monitoring ongoing activities. We will explore creating cloud security guidelines, proactively addressing Procurement and Legal’s concerns and what you can do if you are unable to address security risks in the contract and ongoing vendor risk management.
Wednesday, November 17, 2021 / 03:00 PM - 03:30 PM EST
John A. Wheeler, Sr Director Analyst, Gartner
Integrated risk management (IRM) technology is uniquely suited to address the myriad of risks arising from the current crisis and future COVID-19 recovery. IRM technology product leaders will need to develop IRM capabilities that are capable of addressing the IRM market insights outlined in this presentation.
Wednesday, November 17, 2021 / 03:45 PM - 04:15 PM EST
Khushbu Pratap, Director Analyst, Gartner
72% Board of Directors would change organizational structure to achieve business model agility during the COVID-19 crisis and its aftermath. CIOs, CISO, IT risk leaders and digital innovation champions are witnessing unforeseen changes that have cascading impacts on managing exposures. This session walks through emerging solutions and adjustments in digital environments.
Wednesday, November 17, 2021 / 03:45 PM - 04:30 PM EST
Michael Wodka, VP, Team Manager, Gartner
Are you struggling to hire security talent amidst the challenges of the pandemic, remote work, and diversity considerations? Do you know which emerging security roles and skills you will need to succeed in the digital age? The information security profession is projected to grow 31% between 2019 and 2029. Be prepared by learning new strategies to recruit, develop, and retain top security talent.
Thursday, November 18, 2021 / 12:00 PM - 12:30 PM EST
Bart Willemsen, VP Analyst, Gartner
Can we still transfer data between the EU and the U.S.? Can we use personal data for analytics purposes, and business intelligence? Can we share personal data with others? Is it even possible to use public cloud services in the time of maturing data protection and privacy laws? Likely the answer to all is 'yes. And privacy-enhancing computation techniques may be able to help. This session deals with the 'how to approach' aspects.
Thursday, November 18, 2021 / 12:00 PM - 12:30 PM EST
Paul Proctor, Distinguished VP Analyst, Gartner
Many current approaches to cybersecurity are falling short of their promise to deliver including risk appetite statements, quantification and throwing money at the problem. Treating cybersecurity as a business decision puts it in a business context and engages business decision makers to choose how much protection they want, and how much they want to spend.
Thursday, November 18, 2021 / 01:30 PM - 02:00 PM EST
Roberta Witty, VP Analyst, Gartner
This session highlights the importance of organizational resilience as a strategic imperative in the wake of the COVID-19 pandemic, the changing threat landscape and the pace of digital innovation.
Thursday, November 18, 2021 / 01:30 PM - 02:15 PM EST
Joanne Spencer, Sr Director Analyst, Gartner
Security and risk leaders struggle to effectively assess third-party (including IT vendor) security and risk, leading to unknown risks or security breaches. This roundtable provides you with the opportunity to participate in a facilitated discussion with your peers regarding the most effective assessment practices used today.
Thursday, November 18, 2021 / 03:00 PM - 03:30 PM EST
Joerg Fritsch, Sr Director Analyst, Gartner
The building block model for data security has lead to stagnation. Security and risk management leaders must invest in data-centric security platforms to enable simpler, consistent end-to-end data security because this opens up the transformational character of data that organizations have been dreaming of ever since the advent of Big Data.
Thursday, November 18, 2021 / 03:45 PM - 04:15 PM EST
Michael Kelley, Sr Director Analyst, Gartner
Refocus corporate security initiatives and efforts — from a futile effort to prevent breaches to accepting the inevitability of breaches. We will define how to learn from normal accident theory to build a culture of resilience, capable of reducing or eliminating business impacts from security breaches. This culture is built on characteristics and disciplines which we will define in actionable terms.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
James Hoover, Assoc Principal Analyst, Gartner
Electronic signature adoption has accelerated in the context of remote working and digital transformation, with business process requirements driving solution selection. In this session, we will discuss the solution landscape for electronic signature and some best practices for defining use-case focused requirements with an eye on security, legal, compliance and business requirements.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Ravisha Chugh, Principal Analyst, Gartner
The DLP market is mature yet it is struggling with some major disruptions from the vendors side. Gartner is also seeing a shift from enterprise to integrated DLP vendors. This session will give clients an overview of DLP market trends and their impact on data security strategies
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Abhyuday Data, Sr Principal Analyst, Gartner
This session will present the Magic Quadrant and Critical Capabilities for Access Management market, 2020.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Joanne Spencer, Sr Director Analyst, Gartner
Security and risk managers struggle to identify and evaluate the best solutions to effectively manage and monitor third party risks — with many vendors promoting their product as the silver bullet of VRM. In this session, we will provide clarity regarding what type of solutions are available, the typical use cases and which vendors perform what capabilities.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Felix Gaehtgens, VP Analyst, Gartner
Through a selection of relevant Gartner insights and complementary methodologies, we will provide insight into latest updates in the privileged access management market.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Richard Addiscott, Sr Director Analyst, Gartner
The security awareness computer-based training market continues to evolve as incumbents strengthen and expand their offerings and as new players continue to join this already contested market. Join this session to know how the market is shifting, how emerging trends are shaping solution offerings, and how to make security awareness capabilities to reduce the insider-threat for your organization.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
John Watts, Sr Director, Analyst, Gartner
This session will review the evolution of the Magic Quadrants for SWG and CASB through 2020 and provide a deeper dive into the vendors' strengths and cautions. In addition, attendees will discover how the SASE framework trend is influencing these market futures as vendors expand beyond core features to address more use cases.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Mark Horvath, Sr Director Analyst, Gartner
Application security testing has undergone a profound evolution in the post-COVID-19 world, with a drive toward new work styles, new requirements and push toward new technologies. We will recap the changes over the last year and discuss what new security models mean for application testing, and how vendors have risen to that challenge.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
David Gregory, Sr Director Analyst, Gartner
This session will discuss how a BCMP software solution can help to create, develop and mature a business continuity management program.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Dionisio Zumerle, VP Analyst, Gartner
Mobile threat defense (MTD) products counter malicious threats on iOS and Android devices to strengthen mobile security posture and overall security hygiene. This session will present the market dynamics, main vendors and use cases for MTD.
1. What is mobile threat defense?
2. What does the market for MTD look like?
3. How are the main vendors differentiating?
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Chris Silva, VP Analyst, Gartner
Unified endpoint management — bringing together enterprise mobile and nonmobile platform management and security — is one of the hottest topics in enterprise IT. The vendor landscape is changing quickly. We present the 2018 Magic Quadrant and Critical Capabilities in this session.
Tuesday, November 16, 2021 / 12:00 PM - 12:30 PM EST
John Watts, Sr Director, Analyst, Gartner
Last year work-from-home became the new normal. Coupled with the rapid adoption of SaaS applications such as Microsoft’s O365, Salesforce and others, organizations are no longer able to secure end users and devices with inflexible network security architectures. In this session, we will highlight the forces that shape network security today. We will also discuss SASE, the future of network security in the cloud.
Tuesday, November 16, 2021 / 12:00 PM - 12:30 PM EST
Ruggero Contu, Sr Director Analyst, Gartner
This session will highlight some of the most critical emerging technologies in security and risk management and some of the key trends driving such innovation.
Tuesday, November 16, 2021 / 12:30 PM - 01:00 PM EST
Felix Gaehtgens, VP Analyst, Gartner
With many IT assets now outside traditional enterprise perimeters, IT leaders must rethink security. Enter the cybersecurity mesh architecture, a composable and scalable approach to extend security controls to distributed assets by decoupling policy enforcement from the assets being protected.
Tuesday, November 16, 2021 / 01:30 PM - 02:00 PM EST
Mario de Boer, VP Analyst, Gartner
Phishing is a key technique that is used in most widespread and targeted attacks. The scale and sophistication of phishing have reached levels that cannot be dealt with by a single product. Join this session to see examples of advanced phishing attacks, and the five most critical components of any email security architecture.
Tuesday, November 16, 2021 / 01:30 PM - 02:00 PM EST
Jon Amato, Sr Director Analyst, Gartner
Security operations are rapidly evolving to keep up with threat landscape. Tools leveraged by security professionals include automation, advanced analytics and machine learning. This session will address key issues: (1) What threats and trends are affecting security operations? (2) What defines best-in-class security operations of 2021? (3) What is the outlook for security monitoring and operations for the years ahead?
Tuesday, November 16, 2021 / 01:30 PM - 02:00 PM EST
Michael Wodka, VP, Team Manager, Gartner
Security architecture is often perceived as a series of technical diagrams and control frameworks to model how the organization is managing security-related risk. However, these artifacts only tell part of the story. This session will explore how to leverage business architecture techniques, such as capability modeling and value-stream mapping, to holistically analyze your security architecture.
Tuesday, November 16, 2021 / 01:30 PM - 02:15 PM EST
Patrick Long, Principal Analyst, Gartner
Join this discussion on security vendors that midsize enterprises love. Midsize enterprises are defined as organizations between $50 million and $1 billion in annual revenue and fewer than 1,000 employees. This session is a good fit for you if your organization has between five and 50 people in IT and an IT budget between $5 million and $30 million.
Tuesday, November 16, 2021 / 01:30 PM - 02:15 PM EST
Charlie Winckless, Sr Director Analyst, Gartner
Vendors are flooding the "airwaves" with marketing claims about SASE. Feeling overwhelmed? In this session, we'll answer your SASE questions in an interactive format.
Tuesday, November 16, 2021 / 03:00 PM - 03:30 PM EST
Patrick Hevesi, VP Analyst, Gartner
This session will continue on from Introduction to the Cybersecury Mesh Concept and dive deep into how to build the cybersecurity mesh architecture (CSMA). We will discuss the evolution of best-of-breed to the new CSMA along with pros and cons of each approach. Finally, we will discuss the vendor landscape from larger security vendors with full stacks to open source/distributed CSM solutions.
Tuesday, November 16, 2021 / 03:00 PM - 03:30 PM EST
David Mahdi, VP Analyst, Gartner
We've all heard the saying, identity is the new perimeter. But for who, humans? Well that is what the market has been focused on. Machine identity has been left aside, yet machines are all around us. From our mobile devices, IoT, RPA to applications and software, all require identities. Machine identity management is a top security trend that you need to know about!
Tuesday, November 16, 2021 / 03:00 PM - 03:30 PM EST
William Dupre, Sr Director Analyst, Gartner
Organizations have embraced agile development methodologies and DevOps practices, and technical professionals must find ways to integrate application security into this world.
1) What are the ways to modernize secure design practices like threat modeling?
2) How can we perform continuous security testing as part of CI/CD?
3) How do you effectively leverage security controls external to code?
Tuesday, November 16, 2021 / 03:00 PM - 03:30 PM EST
Eric Ahlm, Sr Director Analyst, Gartner
Organizations strive to centralize their security operations functions partially or entirely into a SOC to increase their efficiency and maturity. This session presents a structured approach to plan, establish and efficiently operate a modern SOC.
Tuesday, November 16, 2021 / 03:00 PM - 04:00 PM EST
Mark Horvath, Sr Director Analyst, Gartner
We hear a lot about DevSecOps and other secure software development lifecycle techniques, but what does this mean for your organization? In this workshop, we share and walk through the Gartner DevSecOps framework for mapping security activities, tools and cultural elements on to your software development program. These techniques work for Waterfall, Agile, DevOps, "Wagile" and many other development styles.
Tuesday, November 16, 2021 / 03:45 PM - 04:15 PM EST
Joerg Fritsch, Sr Director Analyst, Gartner
This session covers current trends and emerging topics in the area of data security. From databases to cloud applications, threats are rapidly evolving and countermeasures slowly follow. Planning a data-centric roadmap for security governance and security architecture is a critical component of any security and risk management program.
Tuesday, November 16, 2021 / 03:45 PM - 04:15 PM EST
Eric Ahlm, Sr Director Analyst, Gartner
Implementing strong security monitoring requires an effective combination of technologies and knowledge of which threats exist, and the techniques being used by attackers to exploit them. Aligning your threat-oriented security monitoring use cases with the MITRE ATT&CK framework is an effective approach to extend your security monitoring coverage.
Tuesday, November 16, 2021 / 03:45 PM - 04:15 PM EST
Richard Bartley, Sr Director Analyst, Gartner
Moving to SASE aims to simplify orchestration of network and security capabilities to help connect users in multiple contextual situations with internal organization applications and cloud services. How do you start with your SASE approach? This session presents some common kickoff points and steps to evolve towards SASE.
Wednesday, November 17, 2021 / 12:00 PM - 12:30 PM EST
Neil MacDonald, Distinguished VP Analyst, Gartner
Information security is frequently cited as a top obstacle to the adoption of cloud computing, yet improved security is cited as a top driver for adoption of cloud computing. This session will explore the current and future state of cloud security spanning infrastructure, platform and software as a service offerings, including hybrid cloud security and emerging distributed cloud and edge computing security issues.
Wednesday, November 17, 2021 / 12:00 PM - 12:30 PM EST
Jon Amato, Sr Director Analyst, Gartner
Ransomware attacks continue to increase globally and the criminals responsible for those attacks have become increasingly sophisticated in their methods. In this session, we will examine the life cycle of a ransomware attack and discuss the defense techniques your organization should use to protect themselves against this threat.
Wednesday, November 17, 2021 / 12:00 PM - 12:30 PM EST
Patrick Hevesi, VP Analyst, Gartner
This session will discuss the evolution of Office 365 into Microsoft 365 and the security, identity and compliance features that all organizations must implement. We will discuss 3rd party options as well as the built in native Microsoft features along with strengths and weaknesses of each.
Wednesday, November 17, 2021 / 12:00 PM - 12:30 PM EST
Dale Gardner, Sr Director Analyst, Gartner
There are millions of open-source software projects in the world. Which ones are in your software? And what security and legal risks do they pose? Getting control requires both process changes and automation, and in this session, we'll examine the structural changes you should consider, along with the tools that can help.
Wednesday, November 17, 2021 / 12:00 PM - 12:45 PM EST
Michael Kelley, Sr Director Analyst, Gartner
Customer Identity and Access Management (CIAM) is key to enabling your digital transformation and the foundation of your customers' digital experiences. This session gives you an opportunity to ask questions about CIAM features, vendors and best practices. Attendees should come prepared to ask questions about IAM for external identities (including customers, partners, patients and citizens).
Wednesday, November 17, 2021 / 01:30 PM - 02:00 PM EST
Patrick Hevesi, VP Analyst, Gartner
Come learn about the beauty of the cloud while applying the right "science" to securing your multiple cloud services. We will discuss the journey to the cloud and how security tools like CASB, CSPM, CWPP, SMP, SSPM, SASE and CSMA all work together to build a unified cloud security strategy work of art.
Wednesday, November 17, 2021 / 01:30 PM - 02:00 PM EST
Mitchell Schneider, Principal Analyst, Gartner
Vulnerability management is still not a standard practice for many organizations, even though it should be a foundational practice of good security hygiene. This can be a bigger issue for resource-challenged organizations. This session will help participants understand what has worked and not worked for their peers, across people, processes and technologies, when implementing a vulnerability management program.
Wednesday, November 17, 2021 / 01:30 PM - 02:00 PM EST
Charlie Winckless, Sr Director Analyst, Gartner
2020 was a year of change and few things have been impacted more than application security! Trends to new technology, new platforms and new tools have all been accelerated, achieving several years worth of growth in a short time. In this session we cover the current state of application security and explore some of the current, fast-moving trends.
Wednesday, November 17, 2021 / 01:30 PM - 02:00 PM EST
Thomas Lintemuth, Sr Director Analyst, Gartner
Organizations of all types are having to allow work from home, some for the first time. Find out how enterprise controls, cloud controls and the home office controls come together to secure the remote user experience.
Wednesday, November 17, 2021 / 01:30 PM - 02:15 PM EST
Charlie Winckless, Sr Director Analyst, Gartner
Share your SASE journey with your peers in this roundtable. Learn from each other as you discuss your success stories and your setbacks on the road to SASE.
Wednesday, November 17, 2021 / 01:30 PM - 02:15 PM EST
Jon Amato, Sr Director Analyst, Gartner
A facilitated discussion covering all ATT&CK frameworks including latest cloud and container branches and how to use them. Identify the best tools and resources that leverage ATT&CK, and which vendors excelled in 2020 Phase 3 MITRE evaluations. Hear from your peers on how they are leveraging MITRE ATT&CK and get expert guidance from the Gartner experts present.
Wednesday, November 17, 2021 / 03:00 PM - 03:30 PM EST
Jeremy D'Hoinne, VP Analyst, Gartner
Enterprises increasingly face difficult purchase decisions choices and need to prioritize. Breach and attack simulation (BAS) tools promise to safely and automatically test the enterprises' security controls and attack surface. This session will explain :
- how breach and attack simulation work
- what to expect from the technology
- How to evaluate and select providers
Wednesday, November 17, 2021 / 03:00 PM - 03:30 PM EST
Nader Henein, VP Analyst, Gartner
Dive into the three top trends in privacy and privacy tech. What are leading organizations focused on, what are the best capabilities to develop and what should you expect from your tech. We'll cover use cases, vendors and cost — enough to provide you with clear next steps to take to your teams.
Wednesday, November 17, 2021 / 03:00 PM - 03:30 PM EST
Nat Smith, Sr Director Analyst, Gartner
SASE is one of the fastest growing security markets, but what do you need to know to win in this market? This session examines current buyer needs and reasons for their preferences. It will outline 5 steps vendors need to embrace to succeed in this market long term.
Wednesday, November 17, 2021 / 03:00 PM - 03:30 PM EST
Patrick Hevesi, VP Analyst, Gartner
Endpoints continue to multiply and connect from anywhere. Security teams have had to scramble and protect both managed and now more unmanaged devices than ever. This session will discuss the trends of attack, new hardware and software security solutions, and how to build a strong defense on the device, in the enterprise and the cloud to protect the endpoints.
Wednesday, November 17, 2021 / 03:45 PM - 04:15 PM EST
Dale Gardner, Sr Director Analyst, Gartner
Software supply chain attacks aren't new -- but the increasing impact and involvement of more sophisticated attackers reveal a high-risk attack vector. Eliminating attacks is difficult, but security leaders can undertake a variety of actions to help manage the risk, and prevent their organizations from becoming unwitting pawns in an attack.
Wednesday, November 17, 2021 / 03:45 PM - 04:15 PM EST
Andrew Bales, Assoc Principal Analyst, Gartner
Protecting sensitive data in Office365 is crucial for most of the organizations. However, clients are often not sure what data protection capabilities they are getting with their license or by just upgrading to an add-on what advance capabilities they may get. This session will help clients to know more about Office365 data protection capabilities including DLP, data classification, rights management and lot more.
Wednesday, November 17, 2021 / 03:45 PM - 04:15 PM EST
Lawrence Orans, VP Analyst, Gartner
Vendors are adopting the term SASE to encompass their cloud security offerings, but not all SASE vendors are equal. Security and risk management leaders can take steps now to adopt the SASE framework and prepare for the future. This session will:
- Clearly define the SASE framework
- Address the strategy for SASE framework adoption
- Provide practical steps to implement SASE frameworks this year
Thursday, November 18, 2021 / 12:00 PM - 12:30 PM EST
Incident response services are a critical element for an organizations' incident response capability. This session will cover what incident response and breach response services, and how to procure them.
Thursday, November 18, 2021 / 12:00 PM - 12:30 PM EST
Jeremy D'Hoinne, VP Analyst, Gartner
The threat landscape is a moving target. Attack campaigns might hit multiple organizations, but each enterprise should analyze its own threat landscape. Security and risk management leaders should gain baseline knowledge on how the threat landscape evolves:
1. IT Security and real-world become more intertwined
2. Traditional attacks still outpace existing defenses
3. The “silver bullet” mindset damages enterprises’ security program
Thursday, November 18, 2021 / 12:00 PM - 12:45 PM EST
Mark Horvath, Sr Director Analyst, Gartner
Moving from DevOps (or any development style) to a security-focused SDLC is more than just buying some tools and hoping for the best. In this session, we will share some of the most effective ways we've seen in speaking with thousands of clients to get security into a development culture without massive resistance.
Thursday, November 18, 2021 / 01:30 PM - 02:00 PM EST
Michael Hoeck, Sr Director Analyst, Gartner
Ransomware taking aim at backup solutions to prevent recovery could have significant consequences. IT leaders must ensure that best practices are followed to ensure backup copies are protected and ready for recovery in timeframes that meet recovery objectives.
Thursday, November 18, 2021 / 01:30 PM - 02:00 PM EST
Mark Horvath, Sr Director Analyst, Gartner
The retirement of the RSA and ECC algorithms in the next few years will be a seismic shift in data security we have not seen in a generation. This session covers not just the retirement of these and other algorithms impacted by quantum computing, but will show you how to take advantage of Quantum Safe algorithms to open new business opportunities for your organization.
Thursday, November 18, 2021 / 01:30 PM - 02:00 PM EST
Peter Firstbrook, VP Analyst, Gartner
The SolarWinds supply chain attackers utilized the most advanced tool tactics and techniques to achieve their goals. Security and risk management leaders should understand how the attackers were able to evade detection to improve their defenses. This session will explore;
What was different about the SolarWinds attack
What can you do to improve your defensive posture
What is the future of supply chain attacks?
Thursday, November 18, 2021 / 01:30 PM - 02:15 PM EST
John Watts, Sr Director, Analyst, Gartner
Share your zero trust journey with your peers in this roundtable. Learn from each other as you discuss your success stories and your setbacks on the road to a zero trust network.
Thursday, November 18, 2021 / 01:30 PM - 02:15 PM EST
Pete Shoard, VP Analyst, Gartner
This Ask the Expert session will focus on security operations centers (SOCs). From building to outsourcing to operating and evolving, this session addresses all attendees' questions on SOC.
Thursday, November 18, 2021 / 03:00 PM - 03:30 PM EST
Dionisio Zumerle, VP Analyst, Gartner
With cloud native applications, the lines between infrastructure and applications are increasingly blurry, while with DevOps development and operations are also increasingly overlapping. Using data from a recent Gartner survey, this session will present recommendations to arrange people, process and technologies to protect application assets without slowing down the CI/CD pipeline.
Thursday, November 18, 2021 / 03:00 PM - 03:30 PM EST
Patrick Long, Principal Analyst, Gartner
Organizations of all sizes are still approaching vulnerability management from a critical- and high-vulnerability first perspective, leading to wasted resources and no intentional reduction of risk. Stop boiling the ocean and start prioritizing to make the most out of your vulnerability management program!
Thursday, November 18, 2021 / 03:00 PM - 03:30 PM EST
Mario de Boer, VP Analyst, Gartner
In this session, we introduce an example machine learning application. We execute real attacks on the example application to illustrate different attack techniques on general ML/AI applications. For each of the attacks, we provide advice for mitigations.
Thursday, November 18, 2021 / 03:00 PM - 03:30 PM EST
Tricia Phillips, Sr Director Analyst, Gartner
Identity and access management has reached a tipping point with the distribution of workforce and application access. The decentralization of objects and assets demands a flexible and centralized response with a reliance on flexible orchestration, and policy enforcement which supports a low-friction, zero trust approach.
Thursday, November 18, 2021 / 03:45 PM - 04:15 PM EST
Neil MacDonald, Distinguished VP Analyst, Gartner
Cloud-native applications are not inherently unsecure, but are being deployed insecurely, driven by developers and with a need for agility in service development and deployment. Security and risk management leaders must address container and Kubernetes security issues around vulnerabilities, visibility, compromise and compliance.
Thursday, November 18, 2021 / 03:45 PM - 04:15 PM EST
Mark Wah, Sr Director Analyst, Gartner
Small and midsize enterprises do not have IT security budgets to afford a large diverse security product landscape. Managed security services providers (MSSPs) helped bridge the gap but not all security products are meeting the unique requirements of MSSPs. These top 3 MSSP requirements will help grow the reach to underserved markets in small and midsize enterprises and increase revenue.
Thursday, November 18, 2021 / 03:45 PM - 04:15 PM EST
Chris Silva, VP Analyst, Gartner
This session will cover best practices to enable users' access to corporate resources, for both times of crisis and under normal circumstances. We will examine why always-on VPN is often the wrong choice while determining what is the right one such as ZTNA, CASB, with the evolution to SASE.
Thursday, November 18, 2021 / 03:45 PM - 04:15 PM EST
Thomas Lintemuth, Sr Director Analyst, Gartner
Remote access is a previously "nice to have" service that has become business critical. VPN is the old school technology for remote access, while ZTNA is all the vendors talk about. We will review the strengths and weaknesses of each. You may be surprised which one comes out on top.
Tuesday, November 16, 2021 / 12:00 PM - 12:30 PM EST
John Watts, Sr Director, Analyst, Gartner
Last year work-from-home became the new normal. Coupled with the rapid adoption of SaaS applications such as Microsoft’s O365, Salesforce and others, organizations are no longer able to secure end users and devices with inflexible network security architectures. In this session, we will highlight the forces that shape network security today. We will also discuss SASE, the future of network security in the cloud.
Tuesday, November 16, 2021 / 01:30 PM - 02:00 PM EST
Mario de Boer, VP Analyst, Gartner
Phishing is a key technique that is used in most widespread and targeted attacks. The scale and sophistication of phishing have reached levels that cannot be dealt with by a single product. Join this session to see examples of advanced phishing attacks, and the five most critical components of any email security architecture.
Tuesday, November 16, 2021 / 01:30 PM - 02:00 PM EST
Jon Amato, Sr Director Analyst, Gartner
Security operations are rapidly evolving to keep up with threat landscape. Tools leveraged by security professionals include automation, advanced analytics and machine learning. This session will address key issues: (1) What threats and trends are affecting security operations? (2) What defines best-in-class security operations of 2021? (3) What is the outlook for security monitoring and operations for the years ahead?
Tuesday, November 16, 2021 / 03:00 PM - 03:30 PM EST
David Mahdi, VP Analyst, Gartner
We've all heard the saying, identity is the new perimeter. But for who, humans? Well that is what the market has been focused on. Machine identity has been left aside, yet machines are all around us. From our mobile devices, IoT, RPA to applications and software, all require identities. Machine identity management is a top security trend that you need to know about!
Tuesday, November 16, 2021 / 03:45 PM - 04:15 PM EST
Joerg Fritsch, Sr Director Analyst, Gartner
This session covers current trends and emerging topics in the area of data security. From databases to cloud applications, threats are rapidly evolving and countermeasures slowly follow. Planning a data-centric roadmap for security governance and security architecture is a critical component of any security and risk management program.
Wednesday, November 17, 2021 / 12:00 PM - 12:30 PM EST
Neil MacDonald, Distinguished VP Analyst, Gartner
Information security is frequently cited as a top obstacle to the adoption of cloud computing, yet improved security is cited as a top driver for adoption of cloud computing. This session will explore the current and future state of cloud security spanning infrastructure, platform and software as a service offerings, including hybrid cloud security and emerging distributed cloud and edge computing security issues.
Wednesday, November 17, 2021 / 01:30 PM - 02:00 PM EST
Mitchell Schneider, Principal Analyst, Gartner
Vulnerability management is still not a standard practice for many organizations, even though it should be a foundational practice of good security hygiene. This can be a bigger issue for resource-challenged organizations. This session will help participants understand what has worked and not worked for their peers, across people, processes and technologies, when implementing a vulnerability management program.
Wednesday, November 17, 2021 / 01:30 PM - 02:15 PM EST
Charlie Winckless, Sr Director Analyst, Gartner
Share your SASE journey with your peers in this roundtable. Learn from each other as you discuss your success stories and your setbacks on the road to SASE.
Wednesday, November 17, 2021 / 03:00 PM - 03:30 PM EST
Jeremy D'Hoinne, VP Analyst, Gartner
Enterprises increasingly face difficult purchase decisions choices and need to prioritize. Breach and attack simulation (BAS) tools promise to safely and automatically test the enterprises' security controls and attack surface. This session will explain :
- how breach and attack simulation work
- what to expect from the technology
- How to evaluate and select providers
Wednesday, November 17, 2021 / 03:00 PM - 03:30 PM EST
Patrick Hevesi, VP Analyst, Gartner
Endpoints continue to multiply and connect from anywhere. Security teams have had to scramble and protect both managed and now more unmanaged devices than ever. This session will discuss the trends of attack, new hardware and software security solutions, and how to build a strong defense on the device, in the enterprise and the cloud to protect the endpoints.
Wednesday, November 17, 2021 / 03:45 PM - 04:15 PM EST
Lawrence Orans, VP Analyst, Gartner
Vendors are adopting the term SASE to encompass their cloud security offerings, but not all SASE vendors are equal. Security and risk management leaders can take steps now to adopt the SASE framework and prepare for the future. This session will:
- Clearly define the SASE framework
- Address the strategy for SASE framework adoption
- Provide practical steps to implement SASE frameworks this year
Thursday, November 18, 2021 / 12:00 PM - 12:30 PM EST
Jeremy D'Hoinne, VP Analyst, Gartner
The threat landscape is a moving target. Attack campaigns might hit multiple organizations, but each enterprise should analyze its own threat landscape. Security and risk management leaders should gain baseline knowledge on how the threat landscape evolves:
1. IT Security and real-world become more intertwined
2. Traditional attacks still outpace existing defenses
3. The “silver bullet” mindset damages enterprises’ security program
Thursday, November 18, 2021 / 01:30 PM - 02:00 PM EST
Michael Hoeck, Sr Director Analyst, Gartner
Ransomware taking aim at backup solutions to prevent recovery could have significant consequences. IT leaders must ensure that best practices are followed to ensure backup copies are protected and ready for recovery in timeframes that meet recovery objectives.
Thursday, November 18, 2021 / 01:30 PM - 02:00 PM EST
Peter Firstbrook, VP Analyst, Gartner
The SolarWinds supply chain attackers utilized the most advanced tool tactics and techniques to achieve their goals. Security and risk management leaders should understand how the attackers were able to evade detection to improve their defenses. This session will explore;
What was different about the SolarWinds attack
What can you do to improve your defensive posture
What is the future of supply chain attacks?
Thursday, November 18, 2021 / 01:30 PM - 02:15 PM EST
John Watts, Sr Director, Analyst, Gartner
Share your zero trust journey with your peers in this roundtable. Learn from each other as you discuss your success stories and your setbacks on the road to a zero trust network.
Thursday, November 18, 2021 / 01:30 PM - 02:15 PM EST
Pete Shoard, VP Analyst, Gartner
This Ask the Expert session will focus on security operations centers (SOCs). From building to outsourcing to operating and evolving, this session addresses all attendees' questions on SOC.
Thursday, November 18, 2021 / 03:00 PM - 03:30 PM EST
Dionisio Zumerle, VP Analyst, Gartner
With cloud native applications, the lines between infrastructure and applications are increasingly blurry, while with DevOps development and operations are also increasingly overlapping. Using data from a recent Gartner survey, this session will present recommendations to arrange people, process and technologies to protect application assets without slowing down the CI/CD pipeline.
Thursday, November 18, 2021 / 03:45 PM - 04:15 PM EST
Neil MacDonald, Distinguished VP Analyst, Gartner
Cloud-native applications are not inherently unsecure, but are being deployed insecurely, driven by developers and with a need for agility in service development and deployment. Security and risk management leaders must address container and Kubernetes security issues around vulnerabilities, visibility, compromise and compliance.
Thursday, November 18, 2021 / 03:45 PM - 04:15 PM EST
Thomas Lintemuth, Sr Director Analyst, Gartner
Remote access is a previously "nice to have" service that has become business critical. VPN is the old school technology for remote access, while ZTNA is all the vendors talk about. We will review the strengths and weaknesses of each. You may be surprised which one comes out on top.
Tuesday, November 16, 2021 / 01:30 PM - 02:00 PM EST
Michael Wodka, VP, Team Manager, Gartner
Security architecture is often perceived as a series of technical diagrams and control frameworks to model how the organization is managing security-related risk. However, these artifacts only tell part of the story. This session will explore how to leverage business architecture techniques, such as capability modeling and value-stream mapping, to holistically analyze your security architecture.
Tuesday, November 16, 2021 / 03:00 PM - 03:30 PM EST
Patrick Hevesi, VP Analyst, Gartner
This session will continue on from Introduction to the Cybersecury Mesh Concept and dive deep into how to build the cybersecurity mesh architecture (CSMA). We will discuss the evolution of best-of-breed to the new CSMA along with pros and cons of each approach. Finally, we will discuss the vendor landscape from larger security vendors with full stacks to open source/distributed CSM solutions.
Tuesday, November 16, 2021 / 03:00 PM - 04:00 PM EST
Mark Horvath, Sr Director Analyst, Gartner
We hear a lot about DevSecOps and other secure software development lifecycle techniques, but what does this mean for your organization? In this workshop, we share and walk through the Gartner DevSecOps framework for mapping security activities, tools and cultural elements on to your software development program. These techniques work for Waterfall, Agile, DevOps, "Wagile" and many other development styles.
Wednesday, November 17, 2021 / 12:00 PM - 12:30 PM EST
Dale Gardner, Sr Director Analyst, Gartner
There are millions of open-source software projects in the world. Which ones are in your software? And what security and legal risks do they pose? Getting control requires both process changes and automation, and in this session, we'll examine the structural changes you should consider, along with the tools that can help.
Wednesday, November 17, 2021 / 12:00 PM - 12:45 PM EST
Michael Kelley, Sr Director Analyst, Gartner
Customer Identity and Access Management (CIAM) is key to enabling your digital transformation and the foundation of your customers' digital experiences. This session gives you an opportunity to ask questions about CIAM features, vendors and best practices. Attendees should come prepared to ask questions about IAM for external identities (including customers, partners, patients and citizens).
Wednesday, November 17, 2021 / 01:30 PM - 02:00 PM EST
Charlie Winckless, Sr Director Analyst, Gartner
2020 was a year of change and few things have been impacted more than application security! Trends to new technology, new platforms and new tools have all been accelerated, achieving several years worth of growth in a short time. In this session we cover the current state of application security and explore some of the current, fast-moving trends.
Wednesday, November 17, 2021 / 03:00 PM - 03:30 PM EST
Nader Henein, VP Analyst, Gartner
Dive into the three top trends in privacy and privacy tech. What are leading organizations focused on, what are the best capabilities to develop and what should you expect from your tech. We'll cover use cases, vendors and cost — enough to provide you with clear next steps to take to your teams.
Wednesday, November 17, 2021 / 03:45 PM - 04:15 PM EST
Dale Gardner, Sr Director Analyst, Gartner
Software supply chain attacks aren't new -- but the increasing impact and involvement of more sophisticated attackers reveal a high-risk attack vector. Eliminating attacks is difficult, but security leaders can undertake a variety of actions to help manage the risk, and prevent their organizations from becoming unwitting pawns in an attack.
Wednesday, November 17, 2021 / 03:45 PM - 04:15 PM EST
Andrew Bales, Assoc Principal Analyst, Gartner
Protecting sensitive data in Office365 is crucial for most of the organizations. However, clients are often not sure what data protection capabilities they are getting with their license or by just upgrading to an add-on what advance capabilities they may get. This session will help clients to know more about Office365 data protection capabilities including DLP, data classification, rights management and lot more.
Thursday, November 18, 2021 / 12:00 PM - 12:30 PM EST
Incident response services are a critical element for an organizations' incident response capability. This session will cover what incident response and breach response services, and how to procure them.
Thursday, November 18, 2021 / 12:00 PM - 12:45 PM EST
Mark Horvath, Sr Director Analyst, Gartner
Moving from DevOps (or any development style) to a security-focused SDLC is more than just buying some tools and hoping for the best. In this session, we will share some of the most effective ways we've seen in speaking with thousands of clients to get security into a development culture without massive resistance.
Thursday, November 18, 2021 / 01:30 PM - 02:00 PM EST
Mark Horvath, Sr Director Analyst, Gartner
The retirement of the RSA and ECC algorithms in the next few years will be a seismic shift in data security we have not seen in a generation. This session covers not just the retirement of these and other algorithms impacted by quantum computing, but will show you how to take advantage of Quantum Safe algorithms to open new business opportunities for your organization.
Thursday, November 18, 2021 / 03:00 PM - 03:30 PM EST
Tricia Phillips, Sr Director Analyst, Gartner
Identity and access management has reached a tipping point with the distribution of workforce and application access. The decentralization of objects and assets demands a flexible and centralized response with a reliance on flexible orchestration, and policy enforcement which supports a low-friction, zero trust approach.
Thursday, November 18, 2021 / 03:45 PM - 04:15 PM EST
Chris Silva, VP Analyst, Gartner
This session will cover best practices to enable users' access to corporate resources, for both times of crisis and under normal circumstances. We will examine why always-on VPN is often the wrong choice while determining what is the right one such as ZTNA, CASB, with the evolution to SASE.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
James Hoover, Assoc Principal Analyst, Gartner
Electronic signature adoption has accelerated in the context of remote working and digital transformation, with business process requirements driving solution selection. In this session, we will discuss the solution landscape for electronic signature and some best practices for defining use-case focused requirements with an eye on security, legal, compliance and business requirements.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Ravisha Chugh, Principal Analyst, Gartner
The DLP market is mature yet it is struggling with some major disruptions from the vendors side. Gartner is also seeing a shift from enterprise to integrated DLP vendors. This session will give clients an overview of DLP market trends and their impact on data security strategies
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Abhyuday Data, Sr Principal Analyst, Gartner
This session will present the Magic Quadrant and Critical Capabilities for Access Management market, 2020.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Joanne Spencer, Sr Director Analyst, Gartner
Security and risk managers struggle to identify and evaluate the best solutions to effectively manage and monitor third party risks — with many vendors promoting their product as the silver bullet of VRM. In this session, we will provide clarity regarding what type of solutions are available, the typical use cases and which vendors perform what capabilities.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Felix Gaehtgens, VP Analyst, Gartner
Through a selection of relevant Gartner insights and complementary methodologies, we will provide insight into latest updates in the privileged access management market.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Richard Addiscott, Sr Director Analyst, Gartner
The security awareness computer-based training market continues to evolve as incumbents strengthen and expand their offerings and as new players continue to join this already contested market. Join this session to know how the market is shifting, how emerging trends are shaping solution offerings, and how to make security awareness capabilities to reduce the insider-threat for your organization.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
John Watts, Sr Director, Analyst, Gartner
This session will review the evolution of the Magic Quadrants for SWG and CASB through 2020 and provide a deeper dive into the vendors' strengths and cautions. In addition, attendees will discover how the SASE framework trend is influencing these market futures as vendors expand beyond core features to address more use cases.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Mark Horvath, Sr Director Analyst, Gartner
Application security testing has undergone a profound evolution in the post-COVID-19 world, with a drive toward new work styles, new requirements and push toward new technologies. We will recap the changes over the last year and discuss what new security models mean for application testing, and how vendors have risen to that challenge.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
David Gregory, Sr Director Analyst, Gartner
This session will discuss how a BCMP software solution can help to create, develop and mature a business continuity management program.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Dionisio Zumerle, VP Analyst, Gartner
Mobile threat defense (MTD) products counter malicious threats on iOS and Android devices to strengthen mobile security posture and overall security hygiene. This session will present the market dynamics, main vendors and use cases for MTD.
1. What is mobile threat defense?
2. What does the market for MTD look like?
3. How are the main vendors differentiating?
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Chris Silva, VP Analyst, Gartner
Unified endpoint management — bringing together enterprise mobile and nonmobile platform management and security — is one of the hottest topics in enterprise IT. The vendor landscape is changing quickly. We present the 2018 Magic Quadrant and Critical Capabilities in this session.
Tuesday, November 16, 2021 / 10:00 AM - 10:30 AM EST
Chris Silva, VP Analyst, Gartner
The pandemic has once again highlighted the importance of a robust endpoint security capability. With the market evolving, merging, and expanding, it is an imperative to use the most appropriate vendor or technology to meet its current and future objectives. This session will help the security and risk management leaders understanding the direction and approaches that the vendors take in the market.
Tuesday, November 16, 2021 / 12:00 PM - 12:30 PM EST
Ruggero Contu, Sr Director Analyst, Gartner
This session will highlight some of the most critical emerging technologies in security and risk management and some of the key trends driving such innovation.
Thursday, November 18, 2021 / 03:45 PM - 04:15 PM EST
Mark Wah, Sr Director Analyst, Gartner
Small and midsize enterprises do not have IT security budgets to afford a large diverse security product landscape. Managed security services providers (MSSPs) helped bridge the gap but not all security products are meeting the unique requirements of MSSPs. These top 3 MSSP requirements will help grow the reach to underserved markets in small and midsize enterprises and increase revenue.
Tuesday, November 16, 2021 / 01:30 PM - 02:15 PM EST
Patrick Long, Principal Analyst, Gartner
Join this discussion on security vendors that midsize enterprises love. Midsize enterprises are defined as organizations between $50 million and $1 billion in annual revenue and fewer than 1,000 employees. This session is a good fit for you if your organization has between five and 50 people in IT and an IT budget between $5 million and $30 million.
Wednesday, November 17, 2021 / 12:00 PM - 12:30 PM EST
Patrick Long, Principal Analyst, Gartner
Midsize enterprise (MSE) IT leaders face significant security challenges when trying to deliver IT services with small IT teams (usually fewer than 30 people) and limited IT budgets (usually less than $20 million). Join us for a discussion of the top trends that MSE IT leaders responsible for security and risk management should prioritize to stay current and proactive in protecting the organization and managing risk effectively.
Wednesday, November 17, 2021 / 12:00 PM - 12:45 PM EST
Patrick Long, Principal Analyst, Gartner
Many midsize enterprise security teams are having trouble defining what security metrics they should be tracking. What metrics actually drive outcomes? Are your metrics targeting the correct audience? Are your outsourced security services providing you the right metrics? Join us for this MSE-specific session to help get rid of the noise and find what works best for your organization.
Thursday, November 18, 2021 / 03:00 PM - 03:30 PM EST
Patrick Long, Principal Analyst, Gartner
Organizations of all sizes are still approaching vulnerability management from a critical- and high-vulnerability first perspective, leading to wasted resources and no intentional reduction of risk. Stop boiling the ocean and start prioritizing to make the most out of your vulnerability management program!
Tuesday, November 16, 2021 / 03:45 PM - 04:15 PM EST
Jose Ramirez, Principal Analyst, Gartner
Neurodiverse individuals bring a unique perspective to the workspace and a skill set that can drive significant competitive advantage. However, entering into a new workplace and team can be particularly challenging and stressful for individuals with neurodiversity. This session covers how to create a neurodiverse welcome environment illustrated with case studies in the field.
Wednesday, November 17, 2021 / 01:30 PM - 02:00 PM EST
Lisa Pierce, VP, Advisory, Gartner
Baby boomers, Gen Xers, millennials and Gen Zers comprise your security function. Do you really understand their different behaviors and expectations? This is a must for security leadership, so that they can create an IT and security culture that leverages strengths and confronts weaknesses so to uncover opportunities and overcome threats into our collaborative future. Change starts with people.
Wednesday, November 17, 2021 / 03:00 PM - 03:45 PM EST
Tricia Phillips, Sr Director Analyst, Gartner
Andrew Walls, Group Vice President, Gartner
Khushbu Pratap, Director Analyst, Gartner
We all know that women make up a disproportionately small percentage of cybersecurity teams and leaders when compared to IT as a whole. Why are we not making more progress? How can managers help drive change, how can allies support diversity initiatives, and how can women navigate the challenges of working in a male dominated industry? Bring your questions for our panel of experts.
Thursday, November 18, 2021 / 01:30 PM - 02:00 PM EST
Tricia Phillips, Sr Director Analyst, Gartner
It's no secret: DE&I initiatives in the Security workforce is dismal. This is already proving detrimental to many organizations. The greatest change agents to fix this problem are C-Suite leaders themselves. CIOs and CISOs must take greater notice, as STEM careers starve for diversity, equity, and inclusion. This presentation will provide actionable guidance to CISOs and CIOs on how to change course by looking intentionally within to uncover unconscious biases, and by looking around to uncover blatant gaps in DE&I initiatives within their workforce. The goal is to foster change that will benefit the enterprise in the long-run.