Philadelphia

Dr. Ron Ross, a living legend in cybersecurity and one of the most influential architects of our nation’s cyber defense frameworks, joins us in-person for an extraordinary keynote conversation not to be missed. With decades of pioneering work at NIST, including authoring landmark initiatives like the Risk Management Framework and the NIST Systems Security Engineering Guidelines, Dr. Ross brings unmatched insight into the future of cybersecurity. This powerful session—moderated by Parham Eftekhari, EVP at CRA Communities—will explore the most urgent priorities and transformative strategies needed to ignite meaningful change in our cyber posture. Dr. Ross will also share freely available tools and resources designed to empower practitioners across sectors. Don’t miss this rare opportunity to engage with one of cybersecurity’s most visionary leaders.

Join Jay Shah, Senior Sales Engineer at Horizon3.ai, for an engaging session on “Offense-Driven Defense.” Jay will challenge conventional risk assessment practices and unveil how emphasizing real-world exploitability and impact can revolutionize your security approach. Drawing from over 150,000 autonomous pentests, he’ll share compelling stories and actionable insights that reveal how viewing your cyber terrain through an attacker’s lens can uncover hidden vulnerabilities, optimize resource allocation, and fortify your defenses against advanced threats. Don’t miss this chance to learn from a leading industry trailblazer on why it’s time to “go hack yourself” to build resilience in today’s borderless threat environment.

As organizations rapidly adopt generative AI and emerging technologies, security leaders face a critical challenge: enabling innovation while managing risk. Traditional approaches to security and risk management are being tested by AI’s unique characteristics and far-reaching business impact. The solution may not lie in complex new organizational structures like “fusion centers,” but rather in a more fundamental reimagining of how we approach security governance. Enter the Five Cs framework – a pragmatic approach that bridges the gap between innovation and security without creating additional organizational complexity. Join LevelBlue, a global leader in security services, as we share field insights from helping organizations navigate AI adoption. Learn how the Five Cs framework can help you.

In the age of Generative AI (GenAI), data has transcended its role as a valuable asset, it’s now the engine fueling innovation and powering AI models that are reshaping industries. But this new frontier comes with high stakes. Organizations face a dual challenge: preventing accidental data leakage from employees using public GenAI tools, while still empowering the workforce to harness the transformative power of AI. To address this, companies must focus on implementing robust safeguards to ensure sensitive information is protected and doesn’t fall into the wrong hands. Enter Zero Trust & Agentic AI, a transformative approach to security that redefines how we protect and manage critical assets. In this session, we’ll explore how Zero Trust principles apply to modern data protection challenges, including the emerging risks brought about by GenAI technologies. You’ll discover what it takes to defend your data in this AI-powered era, ensuring it remains your most valuable resource, not your greatest vulnerability. What You’ll Gain: Insights into the unique data security risks posed by GenAI, and how attackers leverage AI to amplify the threat landscape. Strategies for implementing Zero Trust controls tailored to protect data in environments increasingly integrated with AI tools and applications. Actionable tactics to prevent sensitive data from being misused, compromised, or exploited to train public AI models. A forward-looking perspective on how AI-powered analytics can enhance Zero Trust enforcement with real-time insights and anomaly detection.

As AI cyber-attacks, zero-day threats, malware, ransomware, and concerns around large language model (LLM) data leakage rise, organizations are facing mounting pressure to secure their AI applications and deployments. At the same time, increasingly complex networks and a flood of security alerts make day-to-day operations more challenging. In this session, we will explore how AI can be leveraged not only to protect AI systems and workloads but also to simplify security operations and accelerate threat response.

Data security has been around for decades, and yet, it still feels like an unsolvable puzzle. Legacy technologies are typically resource-intensive, find just a small portion of companies’ sensitive data, and produce a ton of false positives. The impact to operations is often so significant that businesses never move their DLP out of monitoring mode. Attend our session to learn: • Why traditional approaches to data security have failed • How AI and context are revolutionizing data security • Where to maximize the value of your existing security investments • What you can do to secure your Gen AI rollouts With the right strategy and technology, you can transform your data from a liability to a well-managed asset.

The AI revolution is fundamentally transforming cybersecurity, while the future of networking evolves toward Hybrid Full Mesh—integrating 5G, WiFi, Ethernet, Fiber, and other network infrastructures. This presentation examines how AI is accelerating cyber threats: attack costs are skyrocketing, incidents surging 50% year-over-year, and ransomware development compressed from nine days to mere minutes*. We’ll explore why Hybrid SASE (not cloud-only) forms the core of an effective hybrid full-mesh security architecture and how organizations can respond when the rate of change and complexity outpace their capabilities. Most importantly, we’ll demonstrate why security isn’t just a feature but the essential foundation of operations in this new era of hyperconnected vulnerability.

This session focuses on how organizations can enhance resilience against increasing cyber and physical threats. It will cover why critical systems often lack embedded security and how a continuity mindset, centered on what must never fail, can transform risk management, response, and recovery strategies across the enterprise. By framing cyber risk and disaster recovery within business continuity, the session will highlight the identification of essential functions, prioritization during incident response, and key continuity concepts like RPO, RTO, MTD beyond IT requirements. Additionally, it will explore the day-to-day benefits of a continuity perspective on cyber and other critical operations. The connection between cyber risk management and operational continuity will reveal both immediate and long-term advantages of a continuity-driven approach.

Data resilience is becoming a cornerstone of modern industry, ensuring continuous access to critical information that drives smarter decision-making, automation, and innovation. As digital infrastructures grow more complex and interconnected, the need for robust cybersecurity becomes paramount. AI now throws a whole new point of concern—making it even more critical to ensure your data is secure, as intelligent systems rely heavily on accurate, trusted information. Threats such as ransomware, data corruption, system failures, and malicious attacks underscore the importance of protecting data at every stage—from creation and transmission to storage and recovery. Data resiliency plays a vital role in cybersecurity—because if your data isn’t recoverable, how long would it take your organization to recover, if at all? Ensuring that your infrastructure can restore vital data is essential for maintaining business continuity. Investing in data security and resilient infrastructure is not just a technical requirement—it’s a strategic necessity for sustainable and secure operations.

As cyber threats continue to evolve, traditional passwords have become one of the weakest links in enterprise security – easily guessed, reused, or phished. This presentation explores modern password less authentication solutions that enhance both security and user experience. Focusing on technologies such as Windows Hello for Business, FIDO2 security keys, and web sign-in for password less multi-factor authentication (MFA), We share deployment insights on how organizations can eliminate passwords altogether while maintaining strong, user-friendly access controls. Attendees will gain insight into how these technologies work, and why they are critical in defending against password stuffing, phishing attacks, and other credential-based threats. Join us to learn how going password less is not only possible, but necessary for a more secure and modern digital environment.

Key Topics:

• Ransomware, phishing, and advanced persistent threats (APTs).
• Optimizing operations and improving security through Orchestration and Automation.
• Understanding the impact of AI and IoT on security vulnerabilities.

Why It Matters:
Staying informed about the latest threats helps leaders anticipate and prepare for risks that can disrupt operations.