Roundtable topics include:
- Your Supply Chain: Do Your Vendor Contracts Adequately Address Security Needs?
Moderated by Michelle Stewart
Discussion around vendor security and how enterprise security teams can work in tandem with third parties to locate vulnerabilities and risks; ensure the entire supply chain is continuously protected; and what steps to take if vendor security is lacking.
- How to Protect Your Customers’ Information
Moderated by Max Garcia
Discussion about the type of customer information your industry and enterprises protects, what regulations you must follow, and what lessons the latest data breaches are equipping your security teams with to prepare for attack.
- Cyber M&A: Due Diligence
Moderated by Stacy Hughes
Discussion surrounding the merger and acquisition process and how cyber teams on both sides can prepare for the business and cultural shift, perform cyber due diligence, and adapt to new ways of conducting cybersecurity with the new company.
- GDPR: Lessons Learned in the First Year and Implications for U.S. Privacy Law Regime
Moderated by Andy Droke
Discussion around initial implementation of GDPR and acts and the various Data Protection Authorities and Company reactions. This group will also discuss GDPR implications for U.S. privacy laws. Does voluntarily complying with GDPR-like standards in the U.S. confer a competitive advantage with customers?
- Around the Country: Nevada Law Comes First
Discussion about the creation of Nevada’s Privacy Law, Senate Bill 220; how it is inspired by CCPA and how it deviates; and what this new state law signifies for the U.S. at large.
- Myth vs. Reality: Calling Law Enforcement After a Security Breach
Moderated by Kevin Walsh
This discussion will cover the Who, What, When, Why and How to call law enforcement with regards to cyber incidents. It will take you through the steps of each part of the process, from the initial call, to the investigation, and finally discuss the benefits of reaching out to Law Enforcement. We will also address the concerns companies may have when deciding to involve law Enforcement as well as the benefits of establishing a relationship before an incident.