Start your day off with a VIP Breakfast: 

• Scrambled Eggs
• Crispy bacon
• Chicken sausage
• Crisp fried breakfast potatoes
• Whole wheat croissants, lemon poppy seed loaf and banana bread
• Fruit preserves, honey and butter
• Assorted individual yogurts
• Fresh sliced fruit and berries
• Fresh juices, coffee, and assorted teas

Join the conference chairs and local officials as they kick off the conference and set the stage for two power-packed days of thought leadership, networking, and specialized experiences.  

Wendel Clark is a former professional ice hockey player and current team executive. He is best known for his time with the Toronto Maple Leafs, where he captained the team and became a fan favorite for his physical style of play. Throughout his career, Clark was known as a leader on and off the ice, and his passion and dedication to the game made him a role model for aspiring players. Today, Clark serves as an executive for the Leafs and continues to inspire fans with his wisdom and experience. As a keynote speaker, he is sure to motivate and inspire audiences with his stories from the rink and his insights on leadership and teamwork.

Once a breach is confirmed, an organization must activate a crisis communications plan. From authorizing spokespersons to disclosing details, each step must be carefully considered and measured against reducing further risk to the organization. In this session, our experts present their thoughts on post-breach communications and discuss how these impact the integrity and availability of their services post breach.

Take a refreshing break with warm treats:

Fresh baked chocolate chip, macadamia white chocolate chip, oatmeal and raisin cookies with mini biscotti, accompanied by soft drinks, fresh coffee and assorted teas. 

Re-energize with a warm lunch:

• Baby spinach salad with Ravine Farms mushrooms, herbs, and maple mustard vinaigrette
• Red beet salad with Vidalia onions and house vinaigrette
• Grilled supreme of chicken with herbs
• Creamy mashed potatoes
• Seasonal Holland Marsh vegetable medley
• Apple and pear crumble with whipped cream
• Soft drinks, fresh juices, coffee, and assorted teas

All broader public sector (BPS) organizations should not only have a cyber security incident response plan in place, but those in cyber security roles should fully understand and be able to fulfill their responsibilities in incident detection and response. This workshop is targeted to IT professionals within BPS organizations that have or could be responsible for cyber security incident response activities. A non-technical course with an emphasis on preparations and security operations processes, the goal is to provide BPS IT professionals with knowledge, skills and tools needed to better prepare themselves and their teams for cyber security incident detection and response.

When faced with an ever-increasing number of cyber-attacks and security breaches, many organizations turn to their insurance providers as an additional layer of protection to cover their potential losses. However, not all organizations feel confident that their policies are providing adequate protections. To stay ahead of these growing concerns, Arctic Wolf has conducted research into the current state of the cyber insurance market and found what trends policy holders are faced with. This session will cover current cyber insurance trends from the policy holder perspective and recommendations for those organizations seeking to obtain or renew their coverage.

Everybody thinks they are brilliant at communicating with business stakeholders. While some people are right ... we can always be better. When technologists speak about technology, business audiences hear the adults from the old Charlie Brown cartoons, who all sound the same - 'waah, waah, waah, waah.'  Technology leaders want to share everything they know, but business leaders only want the Cliff Notes. Most people assume their audience has the same context and frame of reference as they themselves have and they are frequently mistaken. This results in miscommunication, which leads in turn to poor decision making. Attendees will learn:

1 - Common mistakes made by IT and security leaders when communicating with their less technical audiences 

2 - Tips for creating messages that will resonate with business colleagues and leaders

3 - How we can deliver the message clearly, concisely, effectively and without boring our audience to tears.

After identifying and confirming the legitimacy of a threat, SOCs must activate an immediate response to secure and protect mission critical systems. While many challenges can emerge through this, availability of service remains of utmost importance. In this session, we will learn how CISOs keep systems moving in the face of an active and ongoing threat.

Take a refreshing break with warm treats:

Fresh warm mini doughnuts with chocolate filling, and strawberry filling accompanied by soft drinks, fresh coffee and assorted teas. 

Identifying users on a network has moved way beyond single checkpoints - IAM has multiple process and techniques to validate and secure users. With multiple tools and programs to choose from, industry analysts can be the most vital key to a CISO unlocking the ideal program.

Hosted by industry leaders from across multiple sectors in Canada, the round table sessions are by registration only and are open exclusively to security practitioners.  The roundtables are in-person (no virtual option available) and will examine practical use cases and best practices will be shared. The Chatham House Rule will be strictly enforced. Its guiding spirit is: share the information you receive, but do not reveal the identity of who said it.  Participants can freely and openly share their experiences, and remarks made by any participant or speaker cannot be publicly or privately attributed to them.

• Growth, Leadership & Development; The Changing Role of Todays CISO's | George Al-Koura, Jayson Phelps
• Talent Shortages: How to Fill and Retain the Talent Pipeline | Vaughn Hazen
• Cybersecurity Technology Stack Consolidation - What You Can and Can’t Consolidate | Tushar Singh
• The View From the Top - Board Readiness & Corporate Leadership | Kelley Irwin
• Overall Negotiation / Exit Packages | David Mahdi
• Get in Where You Fit In - Cybersecurity Domains and Shifting Into the Industry | Octavia Howell
• Cyber Insurance; The Landscape | Manas Giri
• It Doesn’t Matter What the CEO Says....Do the Right Thing? (How to Protect Yourself but Also Do the Right Thing) | Bil Harmer
• Enabling Zero Trust Framework Around Data Protection Strategy and Securing Digital Identity (PHIPA) | Ali Shahidi
• Building Indigenous Capacity in Cybersecurity | Ryan Healey-Ogden

Get ready for an evening of networking at the CISO Forum Canada cocktail reception! This is your chance to mix and mingle with your fellow attendees over cocktails and delicious hors d'oeuvres. This is the perfect opportunity to expand your professional network and make new connections, all while unwinding after a full day of learning and engaging with industry leaders.

Start your day off with a VIP Breakfast: 

• Scrambled Eggs
• Crispy bacon
• Chicken sausage
• Crisp fried breakfast potatoes
• Whole wheat croissants, lemon poppy seed loaf and banana bread
• Fruit preserves, honey and butter
• Assorted individual yogurts
• Fresh sliced fruit and berries
• Fresh juices, coffee, and assorted teas

Join local officials as they kick us off and set the stage for Day 2 - a continuation of thought leadership, networking, and specialized experiences.

Join Kelly Bissel, Corporate VP of Microsoft Security Services, to talk about the future of ransomware attacks. How can organizations battle nation-state threats? What are the best practices that can be put in place to recover from an attack? And what does the future of these attacks look like. 

Take a refreshing break with warm treats:

Fresh baked chocolate chip, macadamia white chocolate chip, oatmeal and raisin cookies with mini biscotti, accompanied by soft drinks, fresh coffee and assorted teas. 

ELCH will be hosting their final presentations for their inaugural hackathon LIVE at CISO Forum Canada 2023. During the break, come watch emerging leaders present their final solutions to real-world scenarios common within the industry. Join us in Grand York Ballroom B to watch the final presentations live and provide your feedback to the judges before they decide the final winner!

Re-energize with a warm lunch:

• Baby spinach salad with tomatoes, cucumbers and apple cider vinaigrette
• Potato salad
• Smoked bacon wrapped AAA Ontario beef tenderloin medallions with
• Ravine Farms mushrooms and natural juices
• Roasted new potatoes
• Seasonal Holland Marsh vegetable medley
• Caramel bread pudding with dried Bala cranberries
• Soft drinks, fresh juices, coffee, and assorted teas

*Registration is Required- In-Person Only*

In Cyber42 Vulnerability Management you will play to win! In this 90-minute game day you will play individually to improve the state of a fictional organization and more effectively handle the vulnerability management. During the game, as developed for MGT516: Building and Leading Vulnerability Management Programs, you will see that the actions you choose can have uncertain outcomes and even unintended consequences!

This interactive simulation puts you in real-world scenarios that spur discussion, critical thinking of situations, and melding of different points of view and personalities that you likely will encounter at work. The decisions you make will impact your organization’s vulnerability management program, leveraging and impacting the available budget, time, and vulnerability management maturity.

Winning the game is simple. You need to have the highest score, which represents how well you have adapted and implemented the vulnerability management program. It’s not just about implementing security controls, it’s about changing behaviors and culture to create lasting improvements.

System Requirements: The Cyber42 game is hosted on Amazon Web Services (AWS). Players must have a computer that does not restrict access to AWS services. Corporate machines may have a VPN, intercepting proxy, or egress firewall filter which can cause connection issues communicating with AWS. Players must be able to configure or disable these services to be able to access the Cyber42 game. The Cyber42 app is *not mobile friendly*. 

All broader public sector (BPS) organizations should not only have a cyber security incident response plan in place, but those in cyber security roles should fully understand and be able to fulfill their responsibilities in incident detection and response. This workshop is targeted to IT professionals within BPS organizations that have or could be responsible for cyber security incident response activities. A non-technical course with an emphasis on preparations and security operations processes, the goal is to provide BPS IT professionals with knowledge, skills and tools needed to better prepare themselves and their teams for cyber security incident detection and response.

Blue is the world’s most popular color.

But this was not always the case. Originally, it was little used in art and clothing, and in turn had little symbolic cultural value. In the course of a few key decades, however, blue overcame obstacles of sourcing and production, and its popularity exploded—rising to represent some of the highest values of society. Subsequently, a wave of innovation democratized the color, placing it in the hands of “normal people” and cementing its cultural legacy.

Identity finds itself on a similar path. After a period of relative obscurity, identity has begun its rise over the past decade. Identity is becoming “popular” in security strategy and front of mind for organizations. And like the color blue, identity is rising as it becomes ubiquitous, automatic, and easy to use.

We’ll discuss the impact of identity from a CISO’s perspective in each of these key areas, extract lessons from the trajectory of the world’s most popular hue, apply them to the arc of identity.

The color of the world is changing once more.

Beyond the silos of dev and prod, software developers have now moved into a new era of development  and are embedded security as part of their process. There are tools, products and techniques to empower developers and this session explores the multiple security practices organizations can infuse into their DevOps and technical stacks.

Take a refreshing break with warm treats:

Fresh warm mini doughnuts with chocolate filling, and strawberry filling accompanied by soft drinks, fresh coffee and assorted teas. 

According to Gartner's latest research, by 2025, 45% of organizations worldwide will have experienced attacks on their software supply chains, a three-fold increase from 2021.  How is your company addressing the inherent risks in your open source software supply chain.  The US has issued Executive Order 14028 to address this risk. Germany and Japan will be follow suit, what is the private sector doing to address these risks?  Join our panel of experts to hear their recommendation and practices around software supply chain risk.

Come for the intimate networking and stay for the fantastic food and live music. Taking place on Day 2 of CISO Forum Canada, this is a night you won’t want to miss! 

Come and join hundreds of cybersecurity professionals across Canada, and speak to leaders in the industry!

#WeAreCyber