Highlight Topics
- Leveraging AI for Defense
- Balancing Privacy and Compliance
- Secure AI Integration
- Combating Threats With AI
- Diverse Industry AI Applications
August 15, 2024
AI's Double-Edged Sword: Navigating Risks While Unlocking Opportunities
10:00 AM ET - 3:30 PM ET | Virtual Event
On Demand August 16, 2024
Event Overview
The Virtual AI Summit by ISMG delves into a dynamic exploration of the intersection between AI and cybersecurity. Take a deep dive into ethical considerations, LLM security, and the intricate impacts on privacy and intellectual property. Engage directly with industry leaders to uncover the synergy between human intelligence and AI in fortifying cybersecurity, with a special focus on AI-driven threat detection and risk management strategies. This summit equips security professionals with vital AI insights, promoting transparent governance and hands-on application through sessions dedicated to real-world cybersecurity challenges. Expect a day packed with strategic dialogues, invaluable insights, and collaborative exploration at the forefront of AI and cybersecurity.
View our ISMG Event Experience video to see what your peers are saying about their participation.
Robert Costello
Chief Information Officer, CISA
Karen Habercoss
Chief Privacy Officer, UChicago Medicine
Ginger Armbruster
Chief Privacy Officer and IT Division Director, City of Seattle, WA
Tyler Maddry
Partner, Hunton Andrews Kurth LLP
Lisa Sotto
Partner and Chair of Global Privacy and Cybersecurity Practice, Hunton Andrews Kurth LLP
Kenneth Townsend
CISO, Ingredion
E.P. Mathew
Deputy CIO, Defense Intelligence Agency
Imran Ahmad
Partner/Canadian Head of Technology, Norton Rose Fulbright
John Horn
Director, Cybersecurity Practice, Datos Insights
Heather West
Senior Director, Cybersecurity and Privacy Services, Venable
Anahi Santiago
CISO, ChristianaCare
Ray Griffin
CISO and Head of Information Security, Cox Media Group
Speakers
Thought Leaders on Stage Leading Deep-Dive Discussions
ISMG Summits bring the foremost thought leaders and educators in the security space to the stage, interactive workshops and networking events. Learn from the “who’s who” in cybersecurity passionate about the latest tools and technology to defend against threats.
Robert Costello
Chief Information Officer, CISA
A Road Map for New Terrain: Strategic Insights From CISA's CIO Robert Costello
Costello will share insight from CISA’s strategic action plan, which focuses on responsible AI use, securing AI systems and mitigating AI-related threats to critical infrastructure. Additionally, the discussion will highlight the evolving cyber risks and how AI can be leveraged to enhance national security. Attendees will also learn how their organizations can utilize AI to enhance their cybersecurity posture, with insights into CISA’s available resources and collaborative opportunities. This is a unique opportunity for information security practitioners in government to gain valuable insights from one of the leading voices in the field.
Key takeaways:
- Detailed understanding of CISA’s AI road map: Learn the specific steps and timelines in CISA’s comprehensive plan for integrating AI into national cybersecurity efforts, including key initiatives and expected outcomes.
- Best Practices for secure AI system development: Gain in-depth knowledge of CISA’s guidelines for secure AI system development, including specific risk mitigation techniques, compliance requirements, and examples of successful implementation.
- Advanced strategies to protect critical infrastructure: Discover CISA’s latest strategies for using AI to defend against sophisticated threats targeting critical infrastructure, with real-world examples, actionable recommendations, and insights into collaboration with international partners and private sector stakeholders.
- Leveraging AI for enhanced cybersecurity: Explore how organizations can implement AI to improve their cybersecurity posture, utilizing resources and guidance from CISA to stay ahead of emerging threats and enhance overall cyber resilience.
Robert Costello, Chief Information Officer, CISA
Shaked Rotlevi
Technical Product Marketing Manager, Wiz
Accelerate AI Innovation Securely with AI-SPM
Join this session to hear from Wiz why organizations are adopting AI-SPM (AI- Security Posture Management) into their CNAPP strategy and how you can effectively secure AI workloads in the cloud while accelerating AI innovation securely.
Shaked Rotlevi, Technical Product Marketing Manager, Wiz
Tim Gallo
Head of Global Solutions Architects, Google
An In Depth Look at AI & the Evolving Cyber Threat Landscape
Key discussion points:
- Current Threat Landscape: Identifying the most significant attacks and attackers impacting organizations today. Understand the prevalent and dangerous cyber threats that enterprises face.
- Evolving Attack Surface: Assessing how the attack surface has changed over the past year and the implications for security strategies. Explore how digital transformation and remote work have expanded vulnerabilities.
- AI in Cybersecurity: Exploring the dual role of AI in both facilitating cyber attacks and bolstering cybersecurity defenses. Discuss how AI is used by adversaries and defenders alike.
- Defensive Adaptations: Reviewing the advancements and shortcomings in security defenses over the past year. Highlight effective measures, existing gaps, and innovative solutions.
Tim Gallo, Head of Global Solutions Architects, Google
Jaimen Hoopes
Vice President of Product Management, Data Security Solutions
Ronan Murphy
Member of the AI Advisory Council, Government of Ireland
How to Simplify Data Security for GenAI
Join Ronan Murphy, a Member of the AI Advisory Council for the Government of Ireland, and Forcepoint’s Vice President of Product Management, Jaimen Hoopes, for an in-depth look at the benefits and risks of popular Generative AI assistants such as ChatGPT, Gemini, Copilot and others and more importantly, a glimpse at a technology designed to secure Generative AI usage.
Learn about the modern security for GenAI tools and the latest tools to minimize risk and maximize productivity and efficiency. In this 30-minute discussion, our panelists will cover:
- A brief history of the benefits of GenAI tools
- Recent security concerns for GenAI tools pulled straight from the headlines
- What AI transformation is and how provisions for securing AI are crucial
- What is ‘AI Mesh’ and how it provides the advantage
- How DSPM and AI Mesh work together to secure GenAI
Jaimen Hoopes, Vice President of Product Management, Data Security
Solutions
Ronan Murphy, Member of the AI Advisory Council, Government of Ireland
Liquian Lim
Senior Product Marketing Manager, Snyk
Building Tomorrow Securely... Securing the Use of AI in App Development
In this session, we will cover:
- The importance of AI-fitness and wellness.
- The risks of not being secure before adoption.
- Surprising survey results on organisational AI readiness.
- Foundational steps to building an AI. protection strategy for your SDLC.
- Key features to look out for in your chosen protection.
Liquian Lim, Senior Product Marketing Manager, Snyk
Imran Ahmad
Partner, Canadian Head of Technology, Norton Rose Fulbright
Ray Griffin
CISO and Head of Information Security, Cox Media Group
John Horn
Director, Cybersecurity Practice, Datos Insights
Shervin Evans
Information Security Officer, Deltec Bank & Trust Limited
Harnessing AI in Cybersecurity: Lessons from the C-Suite
Our panel of leading CISOs will offer an unfiltered glimpse into the strategic deployment of AI by information security practitioners. These industry leaders will share their direct experiences, focusing on the transformative role AI plays in enhancing security measures, the challenges of integrating AI into existing frameworks, and the innovative strategies developed to mitigate associated risks. Attendees will leave with a comprehensive perspective on strategic AI integration, including:
- Real-world deployment: Delve into how top organizations have successfully integrated AI into their security operations, highlighting the decision-making processes, implementation strategies, and adjustments made to align AI initiatives with security goals.
- Navigating challenges: Unpack the hurdles encountered by CISOs in adopting AI, from overcoming data bias and ensuring privacy to securing AI systems against adversarial attacks, and the practical solutions that were employed.
- Mitigating risks: Gain actionable insights into the risk management practices refined through firsthand experiences, including the development of robust frameworks to assess and mitigate the unique risks posed by AI.
- Adapting to an AI-driven security landscape: Learn from the foresight and adaptability of leading security practitioners as they prepare their organizations for the future, ensuring resilience against the evolving threat landscape influenced by AI.
Imran Ahmad, Partner/Canadian Head of Technology, Norton Rose
Fulbright
Ray Griffin, CISO and Head of Information Security, Cox Media Group
John Horn, Director, Cybersecurity Practice, Datos Insights
Shervin Evans, Information Security Officer, Deltec Bank & Trust Limited
Jason Cook
AVP Worldwide Partner Sales Engineering, Rubrik
AI-Driven Cyber Investigations
Couple this with the complexity of navigating your own unique data estate and infrastructure and the constantly evolving nature of attacks. Making mistakes can cost millions along with irreparable brand damage. And if we are talking about critical infrastructure impacted by cyberattacks, such as healthcare and public utilities, human lives could be at stake.
Cook will discuss how IT and security teams, at all levels of cyber expertise, can leverage AI to accelerate cyber investigation and recovery.
Jason Cook, AVP Worldwide Partner Sales Engineering, Rubrik
Lisa Sotto
Partner and Chair of the Global Privacy and Cybersecurity Practice, Hunton Andrews Kurth LLP
Tyler Maddry
Partner, Hunton Andrews Kurth LLP
IP and Privacy Law Issues in Generative AI for Cyber Leaders
This session, tailored for experienced cybersecurity practitioners, will delve into the critical legal issues surrounding gen AI. The session will provide an overview of the latest gen AI technologies and their implications. It will explore intellectual property law issues, including potential legal risks, IP litigation, indemnification, and practical legal recommendations. Additionally, it will address privacy and cybersecurity law, emphasizing the importance of these principles and the unique risks posed by gen AI. Attendees will gain insights into the U.S. regulatory landscape and the EU AI Act, essential legal considerations for maintaining privacy and cybersecurity, and best practices for AI governance. This comprehensive session aims to equip cybersecurity practitioners with the knowledge and strategies needed to navigate the evolving legal landscape of gen AI effectively.
Key takeaways:
- Understand the latest gen AI technologies and their impact on cybersecurity;
- Identify and mitigate IP risks associated with AI;
- Navigate the complex regulatory landscapes of privacy and cybersecurity law;
- Implement AI governance practices to ensure ethical and compliant use of AI.
Lisa Sotto, Partner and Chair of the Global Privacy and Cybersecurity
Practice, Hunton Andrews Kurth LLP
Tyler Maddry, Partner, Hunton Andrews Kurth LLP
Track A
Securing the Road: Why Vulnerabilities in Electric Logging Devices are Everyone's Problem
Peeyush Patel
CISO, XPO
Jeremy Daily
Associate Professor, Colorado State University
This session, tailored for CISOs and cybersecurity leaders across various industries, will provide crucial insights into these vulnerabilities. While the primary focus is on transportation, the speakers’ insights into IoT vulnerabilities, wireless network security, and firmware integrity will be applicable to many sectors, including manufacturing, healthcare, finance, and critical infrastructure. Learn how ELDs, mandated to track driving hours and log critical vehicle data, can be exploited via Bluetooth or Wi-Fi connections, leading to unauthorized control, data manipulation, and malware propagation. These insights are not just crucial for the transportation sector but resonate across all industries reliant on interconnected and IoT systems.
The final vulnerability, and perhaps the most concerning, is the potential for a self-propagating truck-to-truck worm, which takes advantage of the inherent networked nature of these devices. Such an attack could lead to widespread disruptions in commercial fleets, with severe safety and operational implications.
Key takeaways:
- Understanding the parallels between ELD vulnerabilities and broader IoT security challenges affecting various industries;
- Practical measures to safeguard interconnected systems and prevent widespread operational disruptions;
- The importance of cross-industry collaboration in tackling emerging cybersecurity threats.
Peeyush Patel, CISO, XPO
Jeremy Daily, Associate Professor, Colorado State University
Track B
AI in Healthcare: Addressing Bias and Security Risks
Heather West
Senior Director, Cybersecurity and Privacy Services, Venable
David Anderson
Vice President, Cyber, Woodruff Sawyer
Anahi Santiago
CISO, ChristianaCare
Alex Vitruk
Senior Associate Attorney, BakerHostetler
However, as AI algorithms increasingly influence medical decision-making, concerns about bias and discrimination have become more apparent. These biases can arise from inherent issues in AI datasets, algorithmic design, and implementation, potentially perpetuating disparities in healthcare delivery and outcomes. This session will delve into the ethical, legal, and security implications of healthcare discrimination facilitated by AI, including the erosion of trust, patient harm, and legal challenges. We will explore how AI’s blind spots can inadvertently reinforce existing biases and how representative datasets can help mitigate these challenges.
Join us to examine the following key areas:
- Biases in AI datasets: Understand how biases in training data can lead to unequal healthcare outcomes and discuss the importance of using diverse and representative datasets.
- Algorithmic design, implementation and security: Analyze how design choices and system vulnerabilities can influence the fairness and safety of AI applications.
- Mitigation and protection strategies: Discuss effective strategies to mitigate bias in AI healthcare applications, emphasizing the need for ongoing oversight, ethical standards, and robust security measures to ensure equitable and ethical use of AI in healthcare.
Heather West, Senior Director, Cybersecurity and Privacy Services, Venable
David Anderson, Vice President, Cyber, Woodruff Sawyer
Anahi Santiago, CISO, ChristianaCare
Alex Vitruk, Senior Associate Attorney, BakerHostetler
John Banghart
Senior Director for Cybersecurity Services, Venable LLP
David Anderson
Vice President, Cyber, Woodruff Sawyer
Anahi Santiago
CISO, ChristianaCare
AI in Healthcare: Addressing Bias and Security Risks
This session will delve into the ethical, legal, and security implications of healthcare discrimination facilitated by AI, including the erosion of trust, patient harm, and legal challenges. We will explore how AI’s blind spots can inadvertently reinforce existing biases and how representative datasets can help mitigate these challenges.
Join us to examine the following key areas:
- Biases in AI Datasets: Understand how biases in training data can lead to unequal healthcare outcomes and discuss the importance of using diverse and representative datasets.
- Algorithmic Design, Implementation, and Security: Analyze how design choices and system vulnerabilities can influence the fairness and safety of AI applications.
- Mitigation and Protection Strategies: Discuss effective strategies to mitigate bias in AI healthcare applications, emphasizing the need for ongoing oversight, ethical standards, and robust security measures to ensure equitable and ethical use of AI in healthcare.
John Banghart, Senior Director for Cybersecurity Services, Venable LLP
David Anderson, Vice President, Cyber, Woodruff Sawyer
Anahi Santiago, CISO, ChristianaCare
Ginger Armbruster
Chief Privacy Officer and IT Division Director, City of Seattle, Washington
Karen Habercoss
Chief Privacy Officer, UChicago Medicine
Privacy & Compliance in the Age of AI
As organizations harness the power of AI to fortify their cybersecurity posture, a pivotal challenge emerges: striking the delicate balance between robust threat prevention and the protection of individual and organizational privacy.
This session will address the need to safeguard data privacy, along with the governance and compliance considerations necessitated by the proliferation of AI utilization. Beyond simply identifying challenges, this session will serve as a practical guide, offering actionable strategies for the ethical implementation of AI in cybersecurity operations.
Tailored for CISOs, IT professionals, data scientists, and all stakeholders intrigued by the intricate interplay of AI, ethics, and security, the discussion aims to shape a responsible and privacy-conscious approach to AI deployment.
Key discussion points:
- Privacy-preserving AI techniques: Explore cutting-edge techniques and technologies designed to enable the use of AI without compromising individual privacy, including federated learning, homomorphic encryption, and other approaches that allow AI models to be trained without accessing raw, sensitive data.
- Consent and data governance: Examine the role of informed consent in the context of AI applications, best practices for transparently obtaining user consent, and strategies for effective data governance in compliance with evolving privacy regulations.
- Accountability and transparency in AI practices: Discuss the importance of implementing accountability measures and ensuring transparency in AI operations to build trust and enable verification. Examine frameworks for auditing AI systems, the role of explainable AI in understanding decision-making processes, and policies for addressing biases and errors that impact privacy and data security.
Ginger Armbruster, Chief Privacy Officer and IT Division Director
Karen Habercoss, Chief Privacy Officer, UChicago Medicine
Bill Foster
U.S. Representative, Illinois 11th Congressional District
US Rep. Bill Foster on AI's Regulatory Future
Join us for a thought-provoking discussion that explores the intersection of technology, governance, and the expanding use of artificial intelligence across public and private sectors alike.
U.S. Rep. Foster will discuss:
- How Congress, through bipartisan collaboration, is navigating the promises and complexities of AI’s transformative use cases;
- The strategic initiatives outlined by the Task Force, including guiding principles and forward-looking recommendations;
- Bipartisan policy proposals developed in consultation with key committees of jurisdiction.
Bill Foster, U.S. Representative, Illinois 11th Congressional District
Track A
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Culture Change: How to Instill a Mindset of Responsible Defense
They will take a deep dive into the absolute must-have skills and experiences that today’s CISOs need to succeed, in a landscape where business risk and security decisions are more closely intertwined than ever before. You will also gain invaluable insights into:
- API security: If ‘API is the new endpoint,’ how do we get a handle on inventory, vulnerabilities and defense?
- Third-Party Risk: What happens when your greatest vulnerabilities are through the doors of your most strategic service providers?
- ChatGPT: What are the potential use cases for the defender as well as the adversary?
Track B
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Culture Change: How to Instill a Mindset of Responsible Defense
They will take a deep dive into the absolute must-have skills and experiences that today’s CISOs need to succeed, in a landscape where business risk and security decisions are more closely intertwined than ever before. You will also gain invaluable insights into:
- API security: If ‘API is the new endpoint,’ how do we get a handle on inventory, vulnerabilities and defense?
- Third-Party Risk: What happens when your greatest vulnerabilities are through the doors of your most strategic service providers?
- ChatGPT: What are the potential use cases for the defender as well as the adversary?
Track A
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Culture Change: How to Instill a Mindset of Responsible Defense
They will take a deep dive into the absolute must-have skills and experiences that today’s CISOs need to succeed, in a landscape where business risk and security decisions are more closely intertwined than ever before. You will also gain invaluable insights into:
- API security: If ‘API is the new endpoint,’ how do we get a handle on inventory, vulnerabilities and defense?
- Third-Party Risk: What happens when your greatest vulnerabilities are through the doors of your most strategic service providers?
- ChatGPT: What are the potential use cases for the defender as well as the adversary?
Track B
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Culture Change: How to Instill a Mindset of Responsible Defense
They will take a deep dive into the absolute must-have skills and experiences that today’s CISOs need to succeed, in a landscape where business risk and security decisions are more closely intertwined than ever before. You will also gain invaluable insights into:
- API security: If ‘API is the new endpoint,’ how do we get a handle on inventory, vulnerabilities and defense?
- Third-Party Risk: What happens when your greatest vulnerabilities are through the doors of your most strategic service providers?
- ChatGPT: What are the potential use cases for the defender as well as the adversary?
Track A
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Culture Change: How to Instill a Mindset of Responsible Defense
They will take a deep dive into the absolute must-have skills and experiences that today’s CISOs need to succeed, in a landscape where business risk and security decisions are more closely intertwined than ever before. You will also gain invaluable insights into:
- API security: If ‘API is the new endpoint,’ how do we get a handle on inventory, vulnerabilities and defense?
- Third-Party Risk: What happens when your greatest vulnerabilities are through the doors of your most strategic service providers?
- ChatGPT: What are the potential use cases for the defender as well as the adversary?
Track B
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Culture Change: How to Instill a Mindset of Responsible Defense
They will take a deep dive into the absolute must-have skills and experiences that today’s CISOs need to succeed, in a landscape where business risk and security decisions are more closely intertwined than ever before. You will also gain invaluable insights into:
- API security: If ‘API is the new endpoint,’ how do we get a handle on inventory, vulnerabilities and defense?
- Third-Party Risk: What happens when your greatest vulnerabilities are through the doors of your most strategic service providers?
- ChatGPT: What are the potential use cases for the defender as well as the adversary?
Track A
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Culture Change: How to Instill a Mindset of Responsible Defense
They will take a deep dive into the absolute must-have skills and experiences that today’s CISOs need to succeed, in a landscape where business risk and security decisions are more closely intertwined than ever before. You will also gain invaluable insights into:
- API security: If ‘API is the new endpoint,’ how do we get a handle on inventory, vulnerabilities and defense?
- Third-Party Risk: What happens when your greatest vulnerabilities are through the doors of your most strategic service providers?
- ChatGPT: What are the potential use cases for the defender as well as the adversary?
Track B
Rob Knoblauch
Deputy CISO and VP Global Security Services , Scotiabank
Culture Change: How to Instill a Mindset of Responsible Defense
They will take a deep dive into the absolute must-have skills and experiences that today’s CISOs need to succeed, in a landscape where business risk and security decisions are more closely intertwined than ever before. You will also gain invaluable insights into:
- API security: If ‘API is the new endpoint,’ how do we get a handle on inventory, vulnerabilities and defense?
- Third-Party Risk: What happens when your greatest vulnerabilities are through the doors of your most strategic service providers?
- ChatGPT: What are the potential use cases for the defender as well as the adversary?
Don’t miss your chance to attend this dynamic impactful event
#ISMGSummit
@ISMG_News
Sponsors
The Summit Experience
Previous
Next
Previous
Next
CPE Credits
ISMG Summits offer Continuing Education Credits. Learn informative and engaging content created specifically for security professionals.
Future Events
September 24, 2024
The Elastic and Google Cloud GenAI Roadshow San Francisco: Explore the Next Generation of AI-Driven Search and Insight
Katie Jenkins
EVP & CISO , Liberty Mutual Insurance
Threat Intelligence and the Dark Web
In this session, a banking security leader and an FBI agent detail:
- What the dark web is – and is not;
- How to gain useful and complete information and apply it;
- The pros and cons of going solo vs. hiring a service.