Critical Infrastructure Summit
Virtual Summit August 30 - 31, 2022
This virtual summit's agenda will cover Zero Trust, IAM, Ransomware, Privacy, Fraud, Payments, IoT, Cryptocurrency, End Point Protection, Cloud Security and more.
ISMG's agendas provide actionable education and exclusive networking opportunities with your peers and our subject matter expert speakers.
Tom Field
Senior Vice President of Editorial
ISMG
Stephen Dunkle
CISO
Geisinger Health
Cris Ewell
CSO and CPO
NRC Health
Roger Caslow
CISO
HRSD
Roger Caslow has worked in the security field for over 20 years. He has insider threat/counterintelligence, ICS, physical, operational, and cybersecurity expertise. He is proficient at working with cross-functional teams in developing and building technical, governance, compliance, and risk assessment...
Manny Cancel
SVP and CEO
E-ISAC
Cancel became NERC senior vice president and chief executive officer of the Electricity Information Sharing and Analysis Center (E-ISAC) in January 2020. He is responsible for the management and oversight of the E-ISAC and leads security operations and information sharing,...
David Pollino
Former CISO
PNC Bank
Pollino is an experienced security and risk executive with over 25 years of experience in information security, fraud prevention and risk management. He has focused on financial services for 20 years and was the CISO of Bank of the West...
Fred Kwong
VP, Chief Information Security Officer
DeVry University
Kwong is the vice president and chief information security officer at DeVry University. He has been in the information security and technology field for the past 20 years, working in the education, financial, telecommunication, healthcare and insurance sectors. Kwong is...
Anna Delaney
Director of Productions
ISMG
Michael McNeill
SVP, Global CISO
Mckesson
Katie Arrington
CISO
Acquisition and Sustainment, U.S. Department of Defense
Grant Schneider
Senior Director for Cybersecurity Services
Venable LLP
Prior to Venable, Schneider served as the U.S. deputy federal CISO and the U.S. federal CISO and as senior director for cybersecurity policy on the White House National Security Council. Before that, he served for seven years as chief information...
Keri Glitch
VP and CISO
MISO Energy
As vice president and chief information security officer for Midcontinent Independent System Operator, Glitch leads both the security and technology organizations and is responsible for MISO's comprehensive strategy, execution and operations. Previously, she was chief security officer at AVANGRID, where...
Brandon Wales
Acting Director
CISA
Wales was designated by President Trump as the Acting Director of the Cybersecurity and Infrastructure Security Agency (CISA), on November 17, 2020. As Acting Director, Mr. Wales oversees CISA’s efforts to defend civilian networks, manage systemic risk to national critical...
Pat Benoit
VP Global Cyber Governance, Risk and Compliance/BISO
CBRE
Patrick is the Global Head of Cyber Governance, Risk, and Compliance / Business Information Security Officer for CBRE. He was formerly the Deputy CISO for Cheetah Digital. He has been an Executive Business Partner at Experian; a Customer Delivery Executive...
Elvis Chan
Supervisory Special Agent, San Francisco Division
FBI
Angus King
Senator
Maine
Brian Kelley
CTO
Ohio Turnpike and Infrastructure Commission
Brian Kelley is the Chief Technology Officer for the Ohio Turnpike and Infrastructure Commission where he is working on the toll modernization project and future technology on the road – autonomous & connected vehicles, EVs, solar, and smart mobility. Brian...
Carole House
Director of Cybersecurity and Secure Digital Innovation at National Security Council
The White House
House is the Director of Cybersecurity and Secure Digital Innovation for the National Security Council at The White House. House is an experienced cybersecurity and risk management professional with a demonstrated background in U.S. military intelligence within the federal, executive...
Alex Foord
CIO and VP
ISEO
As chief information officer and vice president of information and technology services at IESO, Foord's responsibilities include being accountable for the company's IT solutions and strategies, leading its enterprisewide cybersecurity management program and ensuring oversight of the Smart Metering Entity....
Jim Langevin
Congressman
Rhode Island
Congressman Jim Langevin (LAN'-jih-vin) is a senior member of the House Armed Services Committee, where he is the Chairman of the Cyber, Innovative Technologies, and Information Systems Subcommittee and also serves on the Subcommittees on Seapower and Projection Forces and...
Philipp Amann
Head of Strategy
Europol
Philipp is the Head of Strategy of the European Cybercrime Centre (EC3). EC3 Strategy is responsible for assessing and acting on threats and trends related to cybercrime and cyber-security. e also manages the delivery of cyber- related flagship products such...
View Agenda
FBI on Supply Chain Security and Defending Critical Infrastructure
Elvis Chan, Supervisory Special Agent, San Francisco Division, FBI

Fresh from securing the 2020 presidential election, the FBI is now focused on deterring nation-state cyber actors and taking down ransomware adversaries. Elvis Chan, assistant special agent in charge of the San Francisco division’s cyber branch, speaks candidly about:

  • Election security
  • Supply chain risks post-SolarWinds
  • Ransomware defense and mitigation
Elvis Chan
  • 09:00 AM
  • 09:29 AM
Biden Administration's Priorities for Critical Infrastructure and Financial Services
Carole House, Director of Cybersecurity and Secure Digital Innovation at National Security Council, The White House

In 2021, the Biden administration issued the most comprehensive cybersecurity executive order in history. How is the order being enforced to protect critical infrastructure and financial services? And how fares the administration's battle against ransomware?

In this exclusive keynote, Carole House, the director of cybersecurity and secure digital innovation within the NSC, discusses:

  • The state of critical infrastructure protection;
  • The war on ransomware;
  • Zero Trust security and the focus on identity.
Carole House
  • 09:30 AM
  • 09:59 AM
Critical Infrastructure Security: Protecting the Electrical Grid
Manny Cancel, SVP and CEO, E-ISAC
Alex Foord, CIO and VP, ISEO
Keri Glitch, VP and CISO, MISO Energy

It's among the critical infrastructures one thinks of first re: a cybersecurity incident. The North American power grid has been described as "the world's largest connected computer." But how does it function, and what are some of the glaring myths and surprising realities about its cybersecurity capabilities and vulnerabilities? This expert panel discusses:

  • The grid's role as a critical infrastructure
  • Top threats and risks
  • The roles of threat intelligence, information sharing and incident response planning in grid security
Manny Cancel
Alex Foord
Keri Glitch
  • 10:00 AM
  • 10:29 AM
Digital Supply Chain Security: It’s a Matter of Trust
Michael McNeill, SVP, Global CISO, Mckesson
Stephen Dunkle, CISO, Geisinger Health

After the SolarWinds attack, how can an entity ever trust that any vendor’s security incident won’t become their own next crisis? Healthcare sector entities in particular deal with a complex digital supply chain that range from critical IT vendors to suppliers of life-saving network-connected patient gear, and all the other players – known and maybe unknown – in-between. Our panel will discuss:

  • Digital supply chain challenges spotlighted during COVID-19;
  • Healthcare sector lessons emerging from the SolarWinds and other major vendor attacks;
  • Lessons from the Urgent/11 IPnet vulnerabilities;
  • Cloud vendors and change management issues;
  • Vetting and trusting third-parties – including their software patches.
Michael McNeill
Stephen  Dunkle
  • 10:30 AM
  • 10:59 AM
U.S. Senator Angus King on US Cybersecurity Defense
Angus King, Senator, Maine

He co-chaired the US Cyberspace Solarium Commission, and he's been one of the nation's most informed and outspoken advocates of improving national cyber defense. In this exclusive interview, U.S. Senator Angus King (I-Maine) discusses:

  • The U.S. 'State of Cybersecurity' – and what's wrong with it
  • What more needs to be done to secure U.S. critical infrastructure
  • The congressional appetite to tackle hot-button issues such as software security and establishing an "NTSB for cybersecurity incidents"
Angus  King
  • 11:00 AM
  • 11:29 AM
Ransomware: Reading Between the Headlines?
David Pollino, Former CISO, PNC Bank

Ransomware – it's been in all the news this year. But what's happening between the lines? What are the stories within the stories, and how should security leaders interpret them? Former banking CISO David Pollino dissects the year's ransomware news with an eye toward:

  • Critical infrastructure disruption
  • How to learn from others' mistakes
  • How to avoid being the next victim
David Pollino
  • 11:30 AM
  • 11:59 AM
First Responders and the Response to Cybersecurity Concerns
Cris Ewell, CSO and CPO, NRC Health

Washington State was the first U.S. epicenter of the COVID-19 pandemic, and as CISO of UW Medicine Cris Ewell was supporting the first responders. How is his security organization most different today than it was a year ago? Hear his approach to:

  • Work from anywhere
  • Supply chain risk
  • Medical device security
Cris Ewell
  • 12:00 PM
  • 12:29 PM
CISA on Ransomware, Bad Practices and Fulfilling the Executive Order
Brandon Wales, Acting Director, CISA

The 2020 presidential election was a major security challenge for the federal Cybersecurity and Infrastructure Security Agency. Yet, it was only a prelude to SolarWinds, Colonial Pipeline, Kaseya and the other major incidents of 2021. In this exclusive session, Brandon Wales, CISA's acting director, discusses:

  • The fight against ransomware
  • Fulfilling President Biden's cybersecurity executive order
  • The role of collective defense in improving critical infrastructure security
Brandon Wales
  • 12:30 PM
  • 12:59 PM
Congressman Jim Langevin on US Cybersecurity Defense
Jim Langevin, Congressman, Rhode Island

He served on the US Cyberspace Solarium Commission, and he co-sponsored the so-called Cyber Diplomacy Act, which would create a new Bureau of International Cyberspace Policy at the State Department. U.S. Rep. Jim Langevin (D-RI) is among the most outspoken congressional leaders on cybersecurity issues, and in this exclusive session he discusses the:

  • Impact of President Biden’s cybersecurity executive order
  • Concerning state of critical infrastructure defense
  • Appetite of the current congress to pass new cybersecurity legislation
Jim Langevin
  • 01:00 PM
  • 01:29 PM
Zero Trust, the Department of Defense ... and You
Katie Arrington, CISO, Acquisition and Sustainment, U.S. Department of Defense

Zero trust, supply chain security and DevSecOps. These are the three 2021 priorities for Katie Arrington, CISO for Acquisition and Sustainment within the U.S. Department of Defense. In this exclusive keynote, she details the Cybersecurity Maturity Model Certification that will forever change the relationship between government agencies and private sector suppliers.

Katie Arrington
  • 01:30 PM
  • 01:59 PM
Insider Risk in the Era of ‘Work from Anywhere'
Fred Kwong, VP, Chief Information Security Officer, DeVry University
Pat Benoit, VP Global Cyber Governance, Risk and Compliance/BISO, CBRE
Brian Kelley, CTO, Ohio Turnpike and Infrastructure Commission

The old risk models no longer work. Today you have employees permanently assigned to home offices, under stress, in conditions that are ripe for malicious insiders who want to cause harm, as well as well-intentioned employees who make costly mistakes. How do you mitigate your new insider risks? Join this panel for a discussion of:

  • Monitoring employee behavior
  • Warning signs of malicious and accidental insider threat
  • Insider risk education that really works
Fred Kwong
Pat Benoit
Brian Kelley
  • 02:00 PM
  • 02:29 PM
Disrupting Emotet: Europol's Lessons Learned for Combating Ransomware
Philipp Amann, Head of Strategy, Europol

Europol recently coordinated the disruption of the notorious Emotet botnet operation and cybercrime service. In the wake of that effort, what lessons might be applied to disrupt the ongoing damage being wrought by ransomware? And are stronger measures required, such as requiring ransom payments to be declared to authorities - or even banned - or hacking gangs’ infrastructure?

Philipp Amann
  • 02:30 PM
  • 02:59 PM
Day 2 Agenda

All content from Day 1 will be available on demand from 9 AM - 5 PM ET on Day 2, Wednesday, August 31st. Don’t miss the chance to log-in and consume any content you may not have had the chance to see at your own convenience.

  • 09:00 AM
  • 04:59 PM

This virtual summit's agenda will cover Zero Trust, IAM, Ransomware, Privacy, Fraud, Payments, IoT, Cryptocurrency, End Point Protection, Cloud Security and more.
ISMG's agendas provide actionable education and exclusive networking opportunities with your peers and our subject matter expert speakers.

Tom Field
Senior Vice President of Editorial
ISMG
Stephen Dunkle
CISO
Geisinger Health
Cris Ewell
CSO and CPO
NRC Health
Roger Caslow
CISO
HRSD
Roger Caslow has worked in the security field for over 20 years. He has insider threat/counterintelligence, ICS, physical, operational, and cybersecurity expertise. He is proficient at working with cross-functional teams in developing and building technical, governance, compliance, and risk assessment...
Manny Cancel
SVP and CEO
E-ISAC
Cancel became NERC senior vice president and chief executive officer of the Electricity Information Sharing and Analysis Center (E-ISAC) in January 2020. He is responsible for the management and oversight of the E-ISAC and leads security operations and information sharing,...
David Pollino
Former CISO
PNC Bank
Pollino is an experienced security and risk executive with over 25 years of experience in information security, fraud prevention and risk management. He has focused on financial services for 20 years and was the CISO of Bank of the West...
Fred Kwong
VP, Chief Information Security Officer
DeVry University
Kwong is the vice president and chief information security officer at DeVry University. He has been in the information security and technology field for the past 20 years, working in the education, financial, telecommunication, healthcare and insurance sectors. Kwong is...
Anna Delaney
Director of Productions
ISMG
Michael McNeill
SVP, Global CISO
Mckesson
Katie Arrington
CISO
Acquisition and Sustainment, U.S. Department of Defense
Grant Schneider
Senior Director for Cybersecurity Services
Venable LLP
Prior to Venable, Schneider served as the U.S. deputy federal CISO and the U.S. federal CISO and as senior director for cybersecurity policy on the White House National Security Council. Before that, he served for seven years as chief information...
Keri Glitch
VP and CISO
MISO Energy
As vice president and chief information security officer for Midcontinent Independent System Operator, Glitch leads both the security and technology organizations and is responsible for MISO's comprehensive strategy, execution and operations. Previously, she was chief security officer at AVANGRID, where...
Brandon Wales
Acting Director
CISA
Wales was designated by President Trump as the Acting Director of the Cybersecurity and Infrastructure Security Agency (CISA), on November 17, 2020. As Acting Director, Mr. Wales oversees CISA’s efforts to defend civilian networks, manage systemic risk to national critical...
Pat Benoit
VP Global Cyber Governance, Risk and Compliance/BISO
CBRE
Patrick is the Global Head of Cyber Governance, Risk, and Compliance / Business Information Security Officer for CBRE. He was formerly the Deputy CISO for Cheetah Digital. He has been an Executive Business Partner at Experian; a Customer Delivery Executive...
Elvis Chan
Supervisory Special Agent, San Francisco Division
FBI
Angus King
Senator
Maine
Brian Kelley
CTO
Ohio Turnpike and Infrastructure Commission
Brian Kelley is the Chief Technology Officer for the Ohio Turnpike and Infrastructure Commission where he is working on the toll modernization project and future technology on the road – autonomous & connected vehicles, EVs, solar, and smart mobility. Brian...
Carole House
Director of Cybersecurity and Secure Digital Innovation at National Security Council
The White House
House is the Director of Cybersecurity and Secure Digital Innovation for the National Security Council at The White House. House is an experienced cybersecurity and risk management professional with a demonstrated background in U.S. military intelligence within the federal, executive...
Alex Foord
CIO and VP
ISEO
As chief information officer and vice president of information and technology services at IESO, Foord's responsibilities include being accountable for the company's IT solutions and strategies, leading its enterprisewide cybersecurity management program and ensuring oversight of the Smart Metering Entity....
Jim Langevin
Congressman
Rhode Island
Congressman Jim Langevin (LAN'-jih-vin) is a senior member of the House Armed Services Committee, where he is the Chairman of the Cyber, Innovative Technologies, and Information Systems Subcommittee and also serves on the Subcommittees on Seapower and Projection Forces and...
Philipp Amann
Head of Strategy
Europol
Philipp is the Head of Strategy of the European Cybercrime Centre (EC3). EC3 Strategy is responsible for assessing and acting on threats and trends related to cybercrime and cyber-security. e also manages the delivery of cyber- related flagship products such...

View Agenda
FBI on Supply Chain Security and Defending Critical Infrastructure
Elvis Chan, Supervisory Special Agent, San Francisco Division, FBI

Fresh from securing the 2020 presidential election, the FBI is now focused on deterring nation-state cyber actors and taking down ransomware adversaries. Elvis Chan, assistant special agent in charge of the San Francisco division’s cyber branch, speaks candidly about:

  • Election security
  • Supply chain risks post-SolarWinds
  • Ransomware defense and mitigation
Elvis Chan
  • 09:00 AM
  • 09:29 AM
Biden Administration's Priorities for Critical Infrastructure and Financial Services
Carole House, Director of Cybersecurity and Secure Digital Innovation at National Security Council, The White House

In 2021, the Biden administration issued the most comprehensive cybersecurity executive order in history. How is the order being enforced to protect critical infrastructure and financial services? And how fares the administration's battle against ransomware?

In this exclusive keynote, Carole House, the director of cybersecurity and secure digital innovation within the NSC, discusses:

  • The state of critical infrastructure protection;
  • The war on ransomware;
  • Zero Trust security and the focus on identity.
Carole House
  • 09:30 AM
  • 09:59 AM
Critical Infrastructure Security: Protecting the Electrical Grid
Manny Cancel, SVP and CEO, E-ISAC
Alex Foord, CIO and VP, ISEO
Keri Glitch, VP and CISO, MISO Energy

It's among the critical infrastructures one thinks of first re: a cybersecurity incident. The North American power grid has been described as "the world's largest connected computer." But how does it function, and what are some of the glaring myths and surprising realities about its cybersecurity capabilities and vulnerabilities? This expert panel discusses:

  • The grid's role as a critical infrastructure
  • Top threats and risks
  • The roles of threat intelligence, information sharing and incident response planning in grid security
Manny Cancel
Alex Foord
Keri Glitch
  • 10:00 AM
  • 10:29 AM
Digital Supply Chain Security: It’s a Matter of Trust
Michael McNeill, SVP, Global CISO, Mckesson
Stephen Dunkle, CISO, Geisinger Health

After the SolarWinds attack, how can an entity ever trust that any vendor’s security incident won’t become their own next crisis? Healthcare sector entities in particular deal with a complex digital supply chain that range from critical IT vendors to suppliers of life-saving network-connected patient gear, and all the other players – known and maybe unknown – in-between. Our panel will discuss:

  • Digital supply chain challenges spotlighted during COVID-19;
  • Healthcare sector lessons emerging from the SolarWinds and other major vendor attacks;
  • Lessons from the Urgent/11 IPnet vulnerabilities;
  • Cloud vendors and change management issues;
  • Vetting and trusting third-parties – including their software patches.
Michael McNeill
Stephen  Dunkle
  • 10:30 AM
  • 10:59 AM
U.S. Senator Angus King on US Cybersecurity Defense
Angus King, Senator, Maine

He co-chaired the US Cyberspace Solarium Commission, and he's been one of the nation's most informed and outspoken advocates of improving national cyber defense. In this exclusive interview, U.S. Senator Angus King (I-Maine) discusses:

  • The U.S. 'State of Cybersecurity' – and what's wrong with it
  • What more needs to be done to secure U.S. critical infrastructure
  • The congressional appetite to tackle hot-button issues such as software security and establishing an "NTSB for cybersecurity incidents"
Angus  King
  • 11:00 AM
  • 11:29 AM
Ransomware: Reading Between the Headlines?
David Pollino, Former CISO, PNC Bank

Ransomware – it's been in all the news this year. But what's happening between the lines? What are the stories within the stories, and how should security leaders interpret them? Former banking CISO David Pollino dissects the year's ransomware news with an eye toward:

  • Critical infrastructure disruption
  • How to learn from others' mistakes
  • How to avoid being the next victim
David Pollino
  • 11:30 AM
  • 11:59 AM
First Responders and the Response to Cybersecurity Concerns
Cris Ewell, CSO and CPO, NRC Health

Washington State was the first U.S. epicenter of the COVID-19 pandemic, and as CISO of UW Medicine Cris Ewell was supporting the first responders. How is his security organization most different today than it was a year ago? Hear his approach to:

  • Work from anywhere
  • Supply chain risk
  • Medical device security
Cris Ewell
  • 12:00 PM
  • 12:29 PM
CISA on Ransomware, Bad Practices and Fulfilling the Executive Order
Brandon Wales, Acting Director, CISA

The 2020 presidential election was a major security challenge for the federal Cybersecurity and Infrastructure Security Agency. Yet, it was only a prelude to SolarWinds, Colonial Pipeline, Kaseya and the other major incidents of 2021. In this exclusive session, Brandon Wales, CISA's acting director, discusses:

  • The fight against ransomware
  • Fulfilling President Biden's cybersecurity executive order
  • The role of collective defense in improving critical infrastructure security
Brandon Wales
  • 12:30 PM
  • 12:59 PM
Congressman Jim Langevin on US Cybersecurity Defense
Jim Langevin, Congressman, Rhode Island

He served on the US Cyberspace Solarium Commission, and he co-sponsored the so-called Cyber Diplomacy Act, which would create a new Bureau of International Cyberspace Policy at the State Department. U.S. Rep. Jim Langevin (D-RI) is among the most outspoken congressional leaders on cybersecurity issues, and in this exclusive session he discusses the:

  • Impact of President Biden’s cybersecurity executive order
  • Concerning state of critical infrastructure defense
  • Appetite of the current congress to pass new cybersecurity legislation
Jim Langevin
  • 01:00 PM
  • 01:29 PM
Zero Trust, the Department of Defense ... and You
Katie Arrington, CISO, Acquisition and Sustainment, U.S. Department of Defense

Zero trust, supply chain security and DevSecOps. These are the three 2021 priorities for Katie Arrington, CISO for Acquisition and Sustainment within the U.S. Department of Defense. In this exclusive keynote, she details the Cybersecurity Maturity Model Certification that will forever change the relationship between government agencies and private sector suppliers.

Katie Arrington
  • 01:30 PM
  • 01:59 PM
Insider Risk in the Era of ‘Work from Anywhere'
Fred Kwong, VP, Chief Information Security Officer, DeVry University
Pat Benoit, VP Global Cyber Governance, Risk and Compliance/BISO, CBRE
Brian Kelley, CTO, Ohio Turnpike and Infrastructure Commission

The old risk models no longer work. Today you have employees permanently assigned to home offices, under stress, in conditions that are ripe for malicious insiders who want to cause harm, as well as well-intentioned employees who make costly mistakes. How do you mitigate your new insider risks? Join this panel for a discussion of:

  • Monitoring employee behavior
  • Warning signs of malicious and accidental insider threat
  • Insider risk education that really works
Fred Kwong
Pat Benoit
Brian Kelley
  • 02:00 PM
  • 02:29 PM
Disrupting Emotet: Europol's Lessons Learned for Combating Ransomware
Philipp Amann, Head of Strategy, Europol

Europol recently coordinated the disruption of the notorious Emotet botnet operation and cybercrime service. In the wake of that effort, what lessons might be applied to disrupt the ongoing damage being wrought by ransomware? And are stronger measures required, such as requiring ransom payments to be declared to authorities - or even banned - or hacking gangs’ infrastructure?

Philipp Amann
  • 02:30 PM
  • 02:59 PM
Day 2 Agenda

All content from Day 1 will be available on demand from 9 AM - 5 PM ET on Day 2, Wednesday, August 31st. Don’t miss the chance to log-in and consume any content you may not have had the chance to see at your own convenience.

  • 09:00 AM
  • 04:59 PM

Speaker Interviews

August 30 - 31, 2022

Critical Infrastructure Summit