October 9-10, 2018 | The Westin Tyson's Corner | Washington, DC

Conference Agenda

Tuesday, October 9

08:00 - 09:00 Registration

09:00 – 10:30 Plenary Keynote Session

Opening Plenary Keynote Presentation (P10b) Matt Goodrich, FedRAMP Director, GSA

Matt Goodrich launched FedRAMP, the first mandatory government policy for the security authorization and use of cloud computing.

Cybersecurity Risk and Compliance: Past, Present and Future (P10c) David Lacey, Managing Director, David Lacey Consulting Ltd

David Lacey is an internationally respected security and technology thought-leader, and the original author of the British Security Standard BS7799.

10:30 - 11:15 Networking Break in Exhibits

11:15 – 12:45 Conference Sessions

Enterprise Compliance Track

11:15 Enterprise Compliance Track Keynote (E11a) Luc Poulin, CEO, Cogentas

11:45 Compliance Overview–The Options and What They Mean (E11b) Ryan Mackie, Principal, ISO Practice Director, Schellman & Company; Scott Zelko, Principal, Schellman & Company

12:15 ISO27001 and SOC 2 Compliance—The Easy Way (E11c) Chris Hall, Director, Business Technology Risk Partners

Cloud Compliance Track

11:15 Security & Compliance: A Driving Force Behind Moving to the Cloud (C11a) Michael South, Principal Business Development, Amazon

11:45 How Do I Get Started with FedRAMP? (C11b) Martin Rieger, Vice President, Cyber Security Services, Emagine IT; Kris Martel, Chief Information Security Officer, Emagine IT

12:15 Assessment and Compliance for the Cloud (C11c) Chris Williams, Chief Cybersecurity Architect, Leidos; Siobhan Moran, Cyber Architect, Principal Consultant, Leidos

12:45 – 13:45 Lunch in Exhibit Area

13:45 – 15:15 Conference Sessions

Enterprise Compliance Track

Cloud Compliance Track

13:45 Taking Compliance to the Cloud (Tools and Techniques Using ISO Standards) (C12a) Tim Weil, Alcohol Monitoring Systems, SecurityFeeds

14:15 Considering a Dramatically Different Paradigm to Ensure Security; How the Dynamic and Abstracted Infrastructure can be More Secure Than Ever (C12b) Robert Ames, Senior Director, National Technology Strategy, VMware

14:45 Presentation TBA (C12c) 

15:15 – 15:45 Networking Break in Exhibits

15:45 – 17:15 Conference Sessions

Enterprise Compliance Track

15:45 Beyond Asset-Based Risk (E13a) Bradi Van Noy Hays, Marketing Innovator Guidepost Solutions and Ron Chandler, VP of Enterprise Security Solutions Guidepost Solutions

16:15 What Third Party Risk Means to your Enterprise Compliance (E13b) Tom Garrubba, Sr. Director/CISO, Santa Fe Group

16:45 GDPR: Beyond the Talk, Let’s Get to Execution (E13c) Michael Powell, Solutions Consultant,  ZL Technologies

Cloud Compliance Track

15:45 Presentation TBA (C13a)

16:15 Cloud Compliance Panel Discussion: Should There be a Standard International Reference Architecture to Make Cloud Compliance Easier? (C13b) Moderator: Martin Rieger, Vice President, Cyber Security Services, Emagine IT

17:15 – 18:45 Welcome Reception in Exhibits

18:45 – 21:15 Dine-Around DC

Wednesday, October 10

08:00 – 09:00 Coffee in Exhibits

09:00 – 10:30 Conference Sessions

Data Privacy Track

9:00 Presentation TBA (D20a)

9:30 Introducing ISO/IEC 27552 Privacy Information Management System (D20b) Alex Li, Principal Standards Analyst, Microsoft

10:00 Data Protection: Security In The Cyber Environment (D20c) Henry Sienkiewicz, Secure Channels

Cross-Compliance Track

9:00 Cross-Compliance Track Keynote Presentation: The Road to Compliance Starts with You(R20a)Erika Voss, Head of Information Security, Risk, and Compliance, Zillow Group

9:30 ISO 27000 Certification Helping Organizations in GDPR Compliance (R20b) Sanjay Basu, Lead Auditor, Oracle Corp; Neelov Kar, Lead Auditor, PM Game

10:00 The ISO 27000 Ecosystem (R20c) Willy Fabritius, Assistant Vice President, BSI 

10:30 – 11:00 Networking Break in Exhibits

11:00 – 12:30 Conference Sessions

Data Privacy Track

12:30 – 13:30 Lunch in Exhibit Area

13:30 – 15:00 Conference Sessions

Data Privacy Track

13:30 Data privacy: GDPR and Beyond (D22a) Christoph Luykx, Chief Privacy Strategist, Senior Director, Global Government Relations, CA Technologies

14:00 Data Privacy Panel Discussion: Data Privacy Compliance Issues Worldwide (D22b) Panelists tba

Cross-Compliance Track

13:30 Blockchain and GDPR – How Do You Forget What Cannot Be Forgotten? (R22a) Joshua Marpet,COO/Founder, Red Lion; Scott Lyons, CEO/Founder, Red Lion

14:00 A Frankenstinean Approach to an Information Security Management System: Implementing ISO 27001 with the CIS CSC (R22b) Walter Williams, Director of information Security, Monotype

14:30 Presentation tba (R22c)

15:00 – 15:30 Networking Break in Exhibits

15:30 – 16:30 Summary Panel Discussion