Menu

RSAC CISO Boot Camp

As a CISO or senior security executive, you’re an organization’s most important gatekeeper—the kind who protects sensitive data. But to do this effectively, you rely on a constant stream of intel. Intel regarding the latest trends and challenges. Or how to implement organization-wide strategies. Even tactics for training your team. With so much to know, wouldn’t it be easier if you could get right down to the heart of today’s issues with the people who know it best—people, like you?  

Introducing RSAC CISO Boot Camp

Tuesday, March 5 through Wednesday, March 6

This one-and-a-half-day program makes the most out of your limited time by offering you and 99 other selected CISOs from some of the world’s most prestigious companies a unique RSAC experience (please see application details below). Designed to spark open and relevant conversations between top security leaders, participants will receive the following special benefits:  

  • Exclusive RSAC CISO Boot Camp sessions and activities on Tuesday and Wednesday
  • A private networking reception on Tuesday evening
  • Access to private meeting room space on Monday and Thursday*
  • Fast track access to Tuesday keynotes
  • Early admittance to the RSAC Early Stage Expo Tuesday afternoon
  • Open and frank discussions with your peers in a closed-door environment (we will adhere to Chatham House Rule throughout the program)

CISO Boot Camp is now at capacity and we are no longer accepting applications. Thank you for your interest in the program. (Be sure to check out our C-Suite View track which features experiences and opinions of CXOs.)

CISO Boot Camp


CISO Boot Camp


CISO Boot Camp

RSAC CISO Boot Camp Program Committee:

  • Tim Callahan, SVP, Global Security-Global Chief Security Officer, Aflac Inc.
  • Dawn Cappelli, VP, Global Security and Chief Information Security Officer, Rockwell Automation
  • Dan Glass, Former CISO, American Airlines
  • Dave Martin, VP, Threat & Incident Management, ADP Global Security Organization
  • Michael Palmer, VP, Chief Information Security Officer, National Football League
  • John Scimone, SVP / CSO, Dell Technologies

RSAC 2019 CISO Boot Camp Schedule**

Tuesday, March 5
1:00 – 1:10 PM

Opening Remarks

Dawn Cappelli, VP, Global Security and Chief Information Security Officer, Rockwell Automation 
- Michael Palmer, VP, Chief Information Security Officer, National Football League

1:10 – 2:00 PM


Strategy and Risk Management
The NIST Cybersecurity Framework provides a comprehensive guidance on how to assess and improve an organization’s ability to prevent, detect, and respond to cyber attacks. How do you use the NIST CSF to create and execute your strategic roadmap for your security program? You also need to apply risk management to prioritize all of the identified opportunities since you can never do everything. In addition, how do you ensure ongoing risk management and adjust your roadmap as needed?

Dawn Cappelli, VP, Global Security and Chief Information Security Officer, Rockwell Automation

2:00 – 3:00 PM


Building the Program (Governance)
Two CISOs from different F1000 organizations share their experiences building out a governance and risk program. Hear their perspectives on the pitfalls to avoid and successes they’ve found.

- Tim Youngblood, Corporate VP, Chief Information Security Officer, McDonald’s
- Michael Palmer, VP, Chief Information Security Officer, National Football League

3:00 – 4:00 PM


Private Preview: RSAC Early Stage Expo
RSAC Early Stage Expo is an innovation expo dedicated to promoting up-and-comers in the industry. With emerging talent at every booth, this is your chance to meet 50 of the industry’s most promising newcomers. Learn about their innovative products and solutions during this private preview.

4:00 – 6:00 PM  Private CISO Boot Camp Reception
Wednesday, March 6
7:00 – 8:00 AM Breakfast
8:00 – 8:05 AM


Introduction to Day 2

- Dan Glass, Former CISO, American Airlines

8:05 – 8:50 AM


Risk & Compliance 
How can legal and information security effectively work together to mitigate risk within your organization? Explore how legal counsel and cybersecurity teams can come together and become bilingual to meet today's complex challenges and build more effective cybersecurity programs.

- Michelle Beistle, Counsel and Chief Compliance Officer, Privacy and Ethics, Unisys
- Mathew Newfield, CISO, Unisys

8:50 – 9:35 AM  

Communications
What is the ecosystem of stakeholders that affect your role as CISO? How do you build and leverage those relationships for day-to-day operations and to reach the next level? What are effective strategies to get the work done? This session will delve into communication strategies for stakeholders inside and outside the company to get the job done and to ready yourself for the next step in your career.

Meg Anderson, VP – Chief Information Security Officer, Principal Financial Group

9:35 – 10:00 AM Break 
10:00 – 10:45 AM


Operations
How do you keep an organization constantly barraged by requests to keep an eye on the strategy prize while dealing with the bumps? If a breach happens, do you know how to act in an emergency? In this session you will learn to operate in times of peace but prepare for and execute in crisis. You’ll understand how to develop strategies around budget, resource management and maintaining momentum in a turbulent environment.

You will also learn to identify, collect and build metrics that work – ensuring your metrics are actionable. Go beyond the numbers and learn strategies to weaponize them to get work done. Then bring it all together to create a CISO dashboard to understand the full resource and technology portfolio including its efficacy and value.

Dave Martin, VP, Threat & Incident Management, ADP Global Security Organization

10:45 – 11:30 AM


Workforce
This session will cover the full workforce lifecycle – how to get the right people, retaining talent, and bringing and maintaining diversity in your team including your leadership group. What is the motivation towards accomplishing that?

We will also discuss organizational structures for your team. What are the organizational models to consider? Pros and cons for different models and reporting paths. Is a converged or cyber only model better?

John Scimone, SVP / CSO, Dell Technologies

11:30 AM – 1:00 PM Lunch 
1:00 – 1:45 PM


Crisis Management
A crisis is a defining moment for a CISO – gaining you a seat at the table or guaranteeing you a space on the island of misfit toys. History has shown that even large companies with significant cybersecurity budgets cannot prevent a breach. Learn how to take the emotions and guesswork out of leading through a crisis and focus on a well-structured crisis management plan. Ensure you have a strategy in place – people and process – in the event technology fails. In this session you will learn about the tactics and process a resilient organization should have in place before and after a crisis.

Ria C. Aiken, Director of Emergency Preparedness, Office of the Mayor, City of Atlanta


1:45 – 2:15 PM
Intro/Groups

2:15 – 3:05 PM
Discussion

3:05 – 3:20 PM 
Break

3:20 – 3:45 PM 
Discussion

3:45 – 4:15 PM
Learnings


Capstone Experience

CISO Boot Camp culminates with an interactive tabletop exercise, putting your learnings to the test. Attendees will be assigned groups and roles or profiles. The groups will be taken through a multi-stage incident response exercise, being challenged to manage communications, allocate resources, review roles & responsibilities, and authorize decision making. The incident will roll out rapidly and the working groups will be challenged to confer as a team in prioritizing and executing responses, ultimately helping participants to sharpen their own preparedness for an actual cyber incident. 

Tim Callahan, SVP, Global Security-Global Chief Security Officer, Aflac Inc.
John Scimone, SVP / CSO, Dell Technologies
Sloane Englert Menkes, Principal, PwC

4:15 – 4:30 PM

Closing Remarks 

Dave Martin, VP, Threat & Incident Management, ADP Global Security Organization

Your RSAC CISO Boot Camp Pass also provides you with Full Conference access to the rest of Conference including: 

  • All Keynotes
  • Expo Halls & Briefing Center Sessions
  • All Sessions and Learning Labs
  • RSAC Innovation Sandbox Contest
  • RSAC Sandbox
  • All Seminars
  • Welcome Reception & RSAC After Hours (Previously known as RSAC Bash)

* Meeting room scheduling will be first come-first served.
**Schedule is subject to change. 

This document was retrieved from http://www.rsaconference.com/events/us19/agenda/ciso-boot-camp on Sun, 19 May 2019 02:53:27 -0400.