CIO Think Tank

Building trust and reliance across technology and security teams is key to defending the enterprise.  As security stacks incorporate Security Service Edge (SSE) to sustain the SASE journey, the partnership between CIOs, CISOs, and their teams is more important than ever.

Join this panel to learn about:

• Best practices for IT and security collaboration
• Communicating the importance of SSE to your CEO and Board
• Improving internal stakeholder relationships to fuel business outcomes

The combination of rogue insiders and external attackers makes SaaS application detection a massive pain point for enterprises, particularly within core business applications. External attackers leverage stolen credentials to impersonate an insider and connect to applications, while at the same time insiders are not sufficiently monitored. Such examples could include a fraudster’s takeover via social engineering, or incorrect implementation by an employee, or a doctor accessing celebrity patient medical data, or a salesperson downloading a report of all customers before switching to work for a competitor. Even after the enterprise receives a complaint or is otherwise suspicious, detection of these breaches usually consists of manual sifting through tons of log data from multiple sources. RevealSecurity’s CRO, Mark Fullbrook, will explore the growing challenge of SaaS application detection, explain why current detection solutions are usually ineffective, and share solutions using real customer examples.

Given the rise in attacks, the growing sophistication of these incidents and the potential financial impact, morale and burnout of Cybersecurity Teams is increasing. According to Gartner, a key stressor of the work is that often teams are playing a game they can’t win. But there are opportunities for teams to be recognized for putting “points on the board” rather than just blocking opponents. Cyber Resilience Jiu-JitCISO Leadership is the way to get there.

The industry is spending record amounts on cybersecurity tooling, but somehow CISOs still are at times left scrambling to respond to the vulnerabilities like Log4j. Assuming that these types of critical and far-reaching events are inevitable, how can CISOs further improve their organization’s preparedness for future cyberattacks?

This panel will discuss potential strategies for determining the critical security controls - both technology and behavioral - that can minimize cyber-risks and give the organization the competitive advantage to grow and innovate. We will explore frameworks for measuring the efficacy of cybersecurity investments, and KPIs that show the board the investment is safeguarding the company's digital infrastructure for the long term.

IT and security leaders struggle filling roles and finding the right skills in today’s market, while burnout pushes more workers out of critical fields. A core challenge for these teams is dealing with the onslaught of data. Observability data pipelines reduce the effort needed to onboard new data sources, extract the signal from the noise in high volume sources, and break down data silos.

Bridging the gap between business and technology is not easy and requires discipline and balance between technology, people, and the business. For so many organizations today, technology is the business. Technology needs to be understood as a critical enabler in every part of the organization from the front line to the back office. It creates new value by crunching data to deliver new insights, it spurs innovation, and it disrupts traditional business models.

For business and technology leaders alike, new actions and behavioral changes can help their organizations make this shift. CIOs must take responsibility for problems, they should convey that when technology fails, many people typically share responsibility.