Cyber Resilience Summit: Dallas

May 14, 2026 | 8:30 AM ET - 5:00 PM ET

Hosted by BankInfoSecurity

Register Now
Overview
Speakers
Agenda
Topics
Register
Sponsorship

Event Overview

ISMG Summits bring together global leaders in cybersecurity, risk management, information technology and digital trust for immersive, knowledge-sharing experiences. These events feature carefully curated agendas with thought-provoking keynotes, expert panel discussions and interactive workshops that address the most pressing challenges facing today’s security landscape – from threat intelligence and zero trust to AI governance, data protection and regulatory compliance.

Designed for senior executives and decision-makers across industries such as finance, healthcare, government and critical infrastructure, ISMG Summits provide valuable insights, practical strategies and opportunities for collaboration. Attendees gain actionable takeaways, forge meaningful connections and stay ahead in an ever-evolving digital threat environment.

Current Attendee Snapshot
ISMG_FinancialCybersecuritySummit_0213
FinancialCybersecuritySummit_0157
ISMG_FinancialCybersecuritySummit_0714

Venue

Conrad New York Downtown

102 N End Avenue, New York, NY 10282

NOTE:  All requests to attend will be reviewed by event staff and approved based on professional qualifications and event capacity.

2025 Speakers

Thought Leaders on Stage Leading Deep-Dive Discussions

ISMG Summits bring the foremost thought leaders and educators in the security space to the stage, interactive workshops and networking events. Learn from the “who’s who” in Cybersecurity passionate about the latest tools and technology to defend against threats 

View Faculty

Dr. Meghan Hollis-Peel

Data Management Officer, Texas Department of Licensing and Regulation

Greg Tatum

CISO, Businessolver

Jessica Bolton

VP, North Texas ISSA

Danielle Jablanski

OT/ICS SME & Strategy Lead, Cybersecurity and Infrastructure Security Agency

Shuchi Agrawal

CDO - Global Head of Data Tooling Adoption, Automation, Data Provisioning, Citi

Todd Pauley

CISO, Texas Education Agency

Bryce Carter

CISO, City of Arlington

Everett Bates

CISO, Crunchyroll

Zechariah Akinpelu

CISO, Unity Bank Plc

Ravikumar Mukkamala

Executive Director, Cloud, JP Morgan

David Ginn

CISO, Johnson Controls

Joseph Berglund

Director of IT Operations & Cybersecurity, USME Services Center

Keynote Speaker

Dr. Suzanne Schwartz, MD.

MBA, Director, Office of Strategic Partnerships & Technology Innovation, Center for Devices & Radiological Health, FDA

Dr. Suzanne Schwartz, MD, MBA, is the director of the U.S. Food and Drug Administration’s Office of Strategic Partnerships and Innovation within the agency’s Center for Devices and Radiological Health, which among other responsibilities, is tasked with formulating the FDA’s medical device cybersecurity policy. She also has served as co-chair of the Government Coordinating Council for the healthcare and public health critical infrastructure sector. 

Keynote Speaker

Moriah Hara

AI Risk & Security Expert, 3x CISO, Board Advisor, Author, CISSP, CISM, AWS Security, PCI QSA

Interpublic Group and Bank of Montreal. She is a Board Advisor to several startups and a Cybersecurity Co-Author for the book, “The Perfect Scorecard: Getting An ‘A’ in Cybersecurity From Your Board Of Directors.”

She was named by Cybercrime Magazine as one of top 100 Fascinating Women Fighting Cyber, and has multiple, industry recognized security certifications such as the CISSP, CISM, CSSLP, PCI QSA and AWS Security and graduated from Harvard’s inaugural executive cybersecurity program.

Keynote Speaker

Hardik Mehta

Global Head of Risk and Regulatory Compliance, JPMorganChase

Expert in building high-performing risk teams, aligning engineering and regulatory goals, and embedding risk into product development. Pioneered the world’s first cloud-native self-service compliance platform on Azure, automating 450+ controls with AI/ML. Skilled in FAIR, SOX, NIST, GDPR, and large-scale program delivery. Known for translating complex risk into actionable frameworks and driving cultural change across global teams.

2025 Agenda

Given the ever-evolving nature of cybersecurity, the agenda will be continually updated to feature the most timely and relevant sessions.

7:30 AM - 8:30 AM ET

Registration & Breakfast

8:30 am - 8:35 am et

Opening Comments

9:00 AM - 9:30 AM CST

The CISO's Critical Role in Nurturing Data Security​

This session provides practical insights into the strategies, frameworks, and technologies essential for building resilient data security programs.

In today’s environment, CISOs must address emerging challenges, such as securing vast amounts of data generated by IoT devices and ensuring compliance with regional data sovereignty laws. For example, the rise in ransomware attacks targeting healthcare and financial sectors highlights the urgent need for real-time threat detection and robust incident response strategies. This session equips CISOs with actionable approaches to tackle these pressing issues while safeguarding organizational assets.

Key Points:

  • Orchestrating Comprehensive Data Protection Measures: Implement robust approaches like end-to-end encryption and role-based access control to maintain the confidentiality and integrity of critical information assets.
  • Crafting and Implementing Incident Response and Data Loss Prevention (DLP) Strategies: Utilize advanced threat intelligence and behavior analytics to proactively thwart data breaches and unauthorized disclosures.
  • Evaluating and Integrating Emerging Technologies: Leverage innovations such as AI-powered security analytics and blockchain-based data protection to enhance defenses and stay at the forefront of data security advancements.

Sanjit Ganguli,

VP, CTO in Residence, Zscaler

9:30 AM - 10:00 AM CST

Managing the Expanding Attack Surface in a Hyper-Connected World ​

This session will focus on how CISOs can implement ASM strategies to secure digital assets, drawing on recent case studies like the Sisense incident and the SolarWinds breach. We’ll cover how attackers identified and exploited weak points in external-facing assets and how ASM tools can help preempt similar threats.

Vlad Brodsky,

Chief Information Officer & Chief Information Security Officer, OTC Markets Group Inc.

Steve Lenderman,

Head of Fraud Prevention, iSolved, CyberEdBoard Member

Josh Cigna,

Solutions Architect, Yubico

10:00 AM - 10:30 AM CST

Building a Resilient Data Security Strategy​

CISOs face the challenge of securing information across diverse environments while meeting stringent compliance requirements and maintaining operational continuity.
 
This session will explore how to construct a robust data security framework using advanced detection capabilities, adaptive access controls, and scalable defenses for cloud-native, hybrid, and legacy systems. Attendees will gain insights into the latest innovations in threat detection, data protection, and compliance strategies that reinforce organizational resilience against insider and external risks.
 
Key Takeaways:
 
  • Layered Defenses for Complex Systems: Designing multi-faceted protection strategies that secure the data lifecycle across distributed infrastructures.
  • AI-Powered Anomaly Detection: Applying advanced algorithms to identify unusual activity, prevent breaches, and mitigate evolving threats.
  • Next-Generation Access Controls: Enforcing least-privilege policies with dynamic authentication tailored to hybrid and cloud-native environments.
  • Proactive Compliance Strategies: Meeting evolving mandates like GDPR and HIPAA while building trust with stakeholders and customers.
 

Chris Wysopal,

Chief Security Evangelist, Veracode

10:30 AM - 11:00 AM CST

Data Privacy and Decoupling: Ensuring Compliance and Data Integrity​

Decoupling data—separating sensitive data from less critical information—has emerged as a vital approach to maintaining data privacy while meeting the challenges of modern business operations. This session will focus on how CISOs can implement data decoupling and adjust their data architecture to protect sensitive information, ensure compliance with privacy regulations, and reduce the risk of data breaches.
 
Attendees will gain insights into best practices for safeguarding data while maintaining the flexibility to scale operations and adapt to changing regulatory requirements. The session will also explore real-world case studies where organizations have successfully decoupled data, ensuring data privacy and minimizing exposure.
 
Key Discussion Points:
 
  • Decoupling Data for Privacy: Strategies to separate sensitive data for improved security and regulatory compliance.
  • Adapting to New Privacy Regulations: How businesses can adjust data architecture to stay compliant with global data privacy laws.
  • Minimizing Data Breach Risks: Best practices for protecting sensitive information and reducing data breach impacts.
  • Case Studies on Data Decoupling: Real-world examples of how companies have implemented data decoupling to protect data privacy.
 

Vincent Stoffer,

Field CTO, Corelight, Inc

11:00 AM - 11:30 AM CST

Mobility Without Vulnerability: Removing the Attack Vector​

With BYOD adoption rising, this session explores how to protect sensitive data without compromising user privacy. Learn how virtualized mobile access and zero-trust architectures help eliminate risks – turning today’s most targeted vector into a fortress. 

Chris Young,

Cybersecurity Enterprise Account Executive, OpenText

10:40 AM - 11:05 AM ET

Networking Break

11:55 AM - 12:25 PM CST

Agentic AI and the Future of Autonomy in Security​

Agentic AI introduces autonomous systems capable of executing complex tasks, making decisions, and collaborating with other AI agents—all without human intervention. These systems go beyond prediction and content generation, offering organizations the ability to automate workflows, improve efficiency, and adapt to dynamic challenges with unprecedented agility.
 
While the potential benefits of agentic AI are vast, its rise also introduces new risks. As autonomous agents take on critical roles across industries, questions around security, accountability, and ethical governance come to the forefront. How can organizations ensure these systems operate safely within established parameters? What vulnerabilities might emerge as agentic AI becomes a target for exploitation?
 
This session will examine the dual impact of agentic AI on business innovation and security resilience, offering practical insights for leveraging its power while safeguarding against misuse.
 
Key Takeaways:
  • Understand how agentic AI differs from previous waves of AI and its implications for business operations and security.
  • Explore strategies for securely integrating autonomous agents into critical workflows.
  • Identify emerging vulnerabilities posed by agentic AI and how to mitigate them effectively.
  • Discuss ethical and regulatory considerations essential for the responsible deployment of agentic AI.
 
 

Kristopher Schroeder,

Founder & CEO, Replica Cyber

12:25 PM - 12:55 PM CST

A New Era of Data Privacy Compliance in Texas​

Texas has created a rigorous data protection environment, driving cybersecurity to prioritize ongoing, proactive protection and compliance. In 2025 and beyond, the TDPSA will reshape cybersecurity strategy, making collaboration, transparency, and resilient security the cornerstones of modern data privacy. Compliance is now an ongoing commitment, reshaping how organizations protect data in Texas and setting a new standard for privacy across the nation.
 
Key Takeaways:
  • Texans can now access, correct, delete, and opt out of personal data use. Cybersecurity must implement secure, user-friendly systems that make it easy to fulfil these rights, ensuring smooth compliance.
  • “Reasonable” security measures under TDPSA are now a must. This means implementing solid auditing, rapid breach responses, and comprehensive access controls to keep data secure.
  • Businesses must provide clear, accessible disclosures about data use. Cybersecurity needs to work hand-in-hand with legal and data teams to ensure transparency in privacy policies and consent practices, keeping them compliant and understandable.
 

Tim Hill

VP, Software Engineering, Rocket Software

12:55 PM - 1:25 PM CST

Navigating the AI Frontier: Security, Privacy, and Governance in the Age of LLMs

Protecting sensitive data, intellectual property, and ensuring compliance with increasingly stringent privacy laws and regulations has become a critical imperative. This session addresses the daunting endeavor of securing data in a landscape where both internal and external threats, whether malicious or unintentional, are amplified. We will explore the critical need for a comprehensive data governance strategy, emphasizing the importance of securing high-quality data throughout its lifecycle. Participants will gain insights into how data lineage plays a pivotal role in building robust governance frameworks and learn actionable strategies for CISOs to establish secure, modern governance architectures.

Key takeaways include:

  • Strategies for safeguarding sensitive data and intellectual property in the age of AI.
  • Understanding the role of data lineage in effective data governance.
  • Developing a modern, secure governance framework to mitigate risks and ensure compliance.
  • Addressing the unique challenges posed by LLMs and Generative AI across diverse industries.

Sandeep Bhide

VP Product Management, ProcessUnity

1:25 PM - 2:10 PM CST

Lunch

2:10 PM - 2:40 PM CST

Safeguarding Data Across the Oil and Gas Value Chain - From Wellhead to Wallet

From exploration and production to transportation and refining, the sector handles massive amounts of sensitive data, ranging from seismic surveys to pipeline monitoring systems. Cybercriminals and state-sponsored actors continue to exploit vulnerabilities at every stage of the value chain, often targeting operational technology (OT) systems that were not originally designed with cybersecurity in mind. As incidents like ransomware attacks on pipelines demonstrate, breaches in this sector can have devastating operational, environmental, and economic consequences.

This session will provide a comprehensive exploration of the cybersecurity challenges facing the oil and gas industry. Attendees will learn about vulnerabilities specific to upstream, midstream, and downstream operations, with real-world examples of recent attacks and lessons learned. The panel will discuss strategies for integrating IT and OT security, leveraging advanced threat detection technologies, and protecting the proprietary and operational data that fuels the energy sector.

Discussion Points:

  • Key vulnerabilities across upstream, midstream, and downstream oil and gas operations.
  • Real-world case studies of cyberattacks on the energy sector and lessons learned.
  • Strategies for securing operational technology (OT) systems and bridging IT/OT gaps.
  • Best practices for enhancing resilience against nation-state and criminal cyber threats. 

Scott Tenenbaum

Head of Claims, North America, Resilience

David Anderson

CIPP/US, Vice President, Cyber, Woodruff Sawyer - A Gallagher Company

Kimberly Pack

Counsel, Thompson Hine LLP

2:40 pm - 3:10 pm cst

Building Intelligent Data Infrastructure: Unlocking Cross-Industry Potential ​

From healthcare to financial services, companies must rethink their data management strategies to drive efficiency, security, and innovation. A modern data infrastructure can transform raw data into a powerful resource, optimizing performance and enabling smarter decision-making while safeguarding sensitive information. Whether you’re looking to modernize your data strategy or protect critical assets, this session offers practical insights to help you build a data infrastructure designed to meet the challenges and opportunities ahead.

This session will explore the components of a resilient, secure, and scalable data infrastructure, highlighting how intelligent systems can deliver actionable insights, automate workflows, and meet the growing needs of diverse sectors.

Key topics include:

  • Leveraging AI for Efficiency: How intelligent systems can streamline operations and generate insights that lead to better business outcomes.
  • Enhancing Security: Approaches for embedding strong security measures directly into your data infrastructure to protect against emerging threats.
  • Scalability for the Future: Developing a flexible and adaptable infrastructure capable of evolving with your business needs and handling increasingly complex workloads.

Vincent Stoffer,

Field CTO, Corelight, Inc

3:10 pm - 4:10 pm cst

Trust Undermined: An Immersive Simulation of AI-Augmented Insider Threats

This expertly designed session challenges participants to respond to cascading disruptions across IT and operational systems, unraveling the role of AI-augmented tactics in exploiting insider vulnerabilities. With a multi-phase simulation highlighting the cross-industry impact of AI-augmented insider threats on IT and operational systems, attendees will collaborate to develop actionable strategies for containment, detection, and long-term defense.
 
What You Will Gain From This Experience:
  • Precision Threat Response: Master techniques for isolating compromised systems, analyzing hybrid network activity, and mitigating cascading disruptions caused by insider-enabled AI attacks.
  • Real-World Scenario Insights: Understand how AI-driven insider threats exploit IT-OT vulnerabilities, with lessons applicable to sectors reliant on interconnected systems.
  • Actionable Defense Playbook: Design advanced countermeasures, including micro-segmentation, AI-based anomaly detection, and evidence preservation for incident response and regulatory requirements.
 

Seth Rose,

Supervisory Special Agent Group 06, U.S. Department of the Treasury/Cyber Investigations Unit

Imran Khan

VP Cyber Security Transformation Lead, BNP Paribas

4:35 PM - 5:05 PM CST

Uncovering Insider Threats with Behavioral Analytics​

Behavioral analytics offers a powerful tool for identifying subtle activity changes that could indicate malicious actions or unintentional risks before they evolve into serious breaches.
 
This session will dive into advanced methods for applying behavioral analytics to insider threat detection, including leveraging machine learning, anomaly detection algorithms, and seamless integration with existing security tools. Through real-world examples, CISOs will explore how this technology can uncover suspicious access patterns and unusual data transfers, delivering proactive defenses against insider threats.
 
Key Technical Takeaways:
  • Machine Learning for Behavioral Insights: How to train models that pinpoint deviations in user activity across diverse systems.
  • Real-Time Detection: Implementing anomaly detection techniques to identify irregularities as they occur.
  • Integration with SIEM and SOAR: Using behavioral data to enhance automation and incident response workflows.
  • Case Studies: Technical analysis of successful behavioral analytics implementations, emphasizing reduced false positives and operational gains.
 

Aaron Jensen,

Director of Solutions Engineering, Delphix

5:05 PM ET

Closing Comments

Don’t miss your chance to attend this dynamic impactful event

Linkedin X-twitter

@ ISMG_News    #ISMGSummits

Register

Summit Sponsors

Become a Sponsor

Register

CPE Credits

ISMG Summits offer Continuing Professional Education Credits. Learn informative and engaging content created specifically for security professionals.

Claim Credits

The Summit Experience

Upcoming ISMG Events

South Asia

December 4 - 5, 2025 | Virtual
See Event

CS4CA ANZ

February 10 - 11, 2026
See Event

EspanaSec

February 10 - 11, 2026
See Event

Implications of AI

February 24, 2026 | Virtual
See Event

Nullcon GOA

February 25 - March 1, 2026
See Event

Upcoming ISMG Events

South Asia

December 4 - 5, 2025 | Virtual
See Event

CS4CA ANZ

February 10 - 11, 2026
See Event

EspanaSec

February 10 - 11, 2026
See Event
1:25 PM - 2:10 PM CST

Lunch

5:05 PM ET

Closing Comments