The Explosion of API Security

CISO Dinner

May 3, 2022 - Los Angeles, CA

Speakers

Manny Khan (1) A+E Television Networks
Manny Khan

Senior Manager, Cyber Defense & Security Operations

A+E Television Networks

Dinner

➤ Blockchain Security – Cybersecurity Operations – Product Security – Application Security ➤ Specializing in the Entertainment, Media, Gaming, Marketing, and Advertising Industry ➤ Facilitated IPO readiness | Led Digital Transformation ➤ Chaired board discussions on the ISMS program at Sony ➤ Headed the committee to reform IT policy and address operational and regulatory risks at WPP ➣ I deliver the most thorough application of security, blended it into every touchpoint while balancing business goals. ➣ At a critical point of the cybersecurity evolution, I am poised to address growing need for next generation cyber protection, while stepping up to the challenge of developing solutions that combine technology, intelligence, and operations that prevent fast-moving, next generation, attacks in real-time and potentially even mitigate them before they occur. ➣ As a senior cybersecurity leader, I prepare SMBs and multinational organizations against next-generation cyber-attacks. Currently, as the Senior Manager, Cyber Defense and Security Operations at A+E Networks, I optimized the entire security incident life cycle utilizing Palo Alto Networks Cortex XSOAR (Security Orchestration Automation Response). Previously, at SCA, I improved event detection by changing security program from reactive to proactive. ➣ Earlier at SCA, I co-authored Sony’s Information Security Contract Rider with Sony Chief Privacy Officer and Chief Legal Counsel. Furthermore, I am credited with reviving the dormant Information Security & GRC program from ground up, while modernizing security operations center. Here, I minimized risk exposure and led Red Team performing vulnerability assessment and performance testing for Sony-owned websites and mobile applications. ➣ At WPP (NY), I strengthened cyber crisis & incident response across NA sites, leading IT staff’s recovery activities after a global cyberattack. Furthermore, I back-tracked and mainstreamed impaired 5K end-user devices and 12K servers. As a Global Incident Commander, I minimized business disruption down to 4 hours in each incident. ➣ Contributing to technology security awareness, I orchestrated trainings to ensure that executives and contractors understood response requirements for suspicious cyber activity. I also chaired board discussions on the Information Security Management System program as to how cyber resilience was being enhanced.

Peter Dentico Omnicom Media Group
Peter Dentico

CISO

Omnicom Media Group

Dinner

Passionate and innovative Information Security leader. Continuous learner and pragmatic strategist, always seeking to balance security with practicality and business process.

Don Nguyen (2) Legend Biotech
Don Nguyen

Global Information Security Data Privacy Office

Legend Biotech

Dinner

Your Cybersecurity & Data Privacy Navigator! I see challenges as mutual Win-Win opportunities for growth, and I'm your trusted partner and hands-on navigator for your toughest cybersecurity, data privacy roadmap, and business risk challenge. Let's team up! I shape security risk compliance program, provide Win-Win IT solution, audit IT cyber framework, integrate mobile & cloud security automation, direct data privacy program, and create multiple award-winning teams that deliver! I am a visionary global tech leader 16+ yrs global experience: Chief Information Security Officer, VP Information Security, CTO, SOC & IT Director, Professor, Sr. Program Project Manager, Data Privacy Lead, Entrepreneur, Board Member, Panel Speaker, MBA, and US Air Force Lt. Colonel (Retired) Director Level Cyber Strategic Operations Officer with previous TS/SCI clearance. I'm your rocks-steady fixed point in an unstable and changing environment. I'm a smart expeditious decision-maker with entrepreneur mindset and expertise problem-solver with high-quality project management methodologies. I value exceptional customer relationship and servant leadership.

Upcoming events

Agenda

All times Pacific Time

6:00 PM-9:00 PM

The Explosion of API Security

How do CISOs get the most out of APIs while limiting the risk? 20 years ago the motives for hackers were website defacement and getting your name on all those defacements. That was the point of hacking. Now, it’s all about monetizing the data you can steal.

Just as cloud computing initially seeped into organizations under the cloak of shadow IT, application programming interface (API) adoption has often followed an organic, inexact, and unaudited path. IT leaders know they are benefiting from APIs, internal, via third parties, and often outwardly exposed. They just don’t know where they are, how much they support key services, and how they’re being used, or abused!

In this session we will discuss if APIs are meant to be exposed, and discuss if the startups API software companies are ready for the explosion.


In Partnership With