CISO Forum Canada 2021

CISO Forum Canada brought to you by siberX brings speakers, attendees, & sponsors from all over the world together to discuss the everchanging field of executive information security management. Topics focus on leadership, strategic management, innovation, & cutting-edge solutions to the challenges of leading information security programs.

CISO Forum Canada will virtually mobilize leaders from across Canada as speakers & attendees for keynotes, panel discussions, & round-tables followed by an executive virtual reception in our state of the art broadcasting studio!

Abbas Kudrati

Chief Cybersecurity Advisor

Microsoft

Chief Cybersecurity Advisor at Microsoft

Adriana Gliga-Belavic

Partner, Cybersecurity and Privacy Lead

MNP Digital

Partner, Cybersecurity and Privacy Lead at MNP Digital

Alan McDermott

Head of IT, Data and Security

Valeyo

Head of IT, Data and Security at Valeyo

Ali Abbas Hirji

Advisor

siberX

Advisor at siberX

Amy ter Haar

Advisory Board Member

Globalive

Advisory Board Member at Globalive

Andrew Vezina

VP & CISO

Equitable Bank

VP & CISO at Equitable Bank

Anthony Johnson

Managing Partner & CISO

Delve Risk

Managing Partner & CISO at Delve Risk

Azim Boblai

vCISO

Trussinfo

vCISO at Trussinfo

Bil Harmer

Operating Partner & CISO

Craft Ventures

Operating Partner & CISO at Craft Ventures

Cat Coode

Privacy and Data Strategist

Binary Tattoo

Privacy and Data Strategist at Binary Tattoo

Daniel Ehrenreich

Cyber Defense Trainer

Secure Communications and Control Experts

Cyber Defense Trainer at Secure Communications and Control Experts

Daniel Pinsky

CSO

CDW Canada

CSO at CDW Canada

Danny Sutantyo

Director, Information Security, Compliance & IT Operations

Sunwing

Director, Information Security, Compliance & IT Operations at Sunwing

Farooq Naiyer

vCISO

George Al-Koura

CISO

Ruby

CISO at Ruby

Graeme Barrie

President and Founder

Netmechanics

President and Founder at Netmechanics

Helen Oakley

Sr. Product Security Architect

SAP

Sr. Product Security Architect at SAP

Hugh Burley

Director of Information Security

Thompson Rivers University

Director of Information Security at Thompson Rivers University

Ireen Birungi

VP, Information Security & CISO

Interac

VP, Information Security & CISO at Interac

John Pinard

VP, IT Operations, Infrastructure & Cybersecurity

DUCA Financial

VP, IT Operations, Infrastructure & Cybersecurity at DUCA Financial

Juan Valbuena

Director Global Cybersecurity

Yamana Gold

Director Global Cybersecurity at Yamana Gold

Kelley Irwin

Strategic Advisor and Corporate Board Director

Descartes Systems Group

Strategic Advisor and Corporate Board Director at Descartes Systems Group

Ketan Kapadia

CEO & Co-Founder

BlokSec Technologies

CEO & Co-Founder at BlokSec Technologies

Kevin Magee

Chief Security Officer

Microsoft Canada

Chief Security Officer at Microsoft Canada

Kush Sharma

Director

MISA Ontario

Director at MISA Ontario

Larry Cameron

CISO

Anti-Human Trafficking Intelligence Initiative

CISO at Anti-Human Trafficking Intelligence Initiative

Luc Roy

Chief Information Officer

Laurentian University

Chief Information Officer at Laurentian University

Maggie Calle

VP & CISO

Varicent

VP & CISO at Varicent

Mansoor Khan

vCISO

BGIS

vCISO at BGIS

Marc Lijour

VP, Capacity Building and Innovation

ICTC

VP, Capacity Building and Innovation at ICTC

Mark Dillon

Vice President Information Technology

Enova Power Corp

Vice President Information Technology at Enova Power Corp

Mary Konstantinidis

Director Cybersecurity & GRC

Allstate

Director Cybersecurity & GRC at Allstate

Mayuran Kanthasamy

VP Information Security & CISO

Kepler Communications

VP Information Security & CISO at Kepler Communications

Melissa Carvalho

Vice President Enterprise & Customer Identity & Access Management

RBC

Vice President Enterprise & Customer Identity & Access Management at RBC

Michael Castro

Founder & CEO

RiskAware Inc.

Founder & CEO at RiskAware Inc.

Mohsen Azari

Director of Cyber Defence

GoEasy Ltd

Director of Cyber Defence at GoEasy Ltd

Ragulan Sinnarajah

VP, IT Shared Services & Head of Cyber security

Sobeys

VP, IT Shared Services & Head of Cyber security at Sobeys

Rob Davidson

Director of Security Services, CISO

Pacific Blue Cross

Director of Security Services, CISO at Pacific Blue Cross

Salman Ashraf

CISO

Manitoba Public Insurance

CISO at Manitoba Public Insurance

Sarah Qureshi

vCISO

QSI Security Inc.

vCISO at QSI Security Inc.

Shelley Wark-Martyn

Manager - Federal Account North America

SANS

Manager - Federal Account North America at SANS

Sherry Rumbolt

Senior Cybersecurity Strategist

Treasury Board of Canada Secretariat

Senior Cybersecurity Strategist at Treasury Board of Canada Secretariat

Sunil Chand

VP, Security Practice

Centrilogic

VP, Security Practice at Centrilogic

November 8, 2021

9:00 AM - 9:20 AM

Opening Remarks

Join the chairs of CISO FORUM Canada 2021 as they kick off the conference and summarize the three exciting conference days ahead of us. The conference format, schedule and support details will be shared along with a quick tour of our modified hybrid delivery studio!
Speakers:

November 8, 2021

9:30 AM - 10:00 AM

Defining the CISO; is the CISO a Technical, Governance or Compliance Expert?

Join a panel of established CISOs and leaders in the cybersecurity community as they define the expertise of the CISO. Responsible for the overall cybersecurity posture of an organization, the CISO can wear many hats - what are some of these and where do they see this role in the future? An expert exchange of shared experiences, this session can help you chart your own journey as a CISO.
Speakers:

November 8, 2021

10:15 AM - 11:00 AM

Mitigating Ransomware Today and In the Quantum Era

Quantum computing scales computing power to phenomenal, previously unthinkable, levels. As this capacity is made available commercially, what do cybersecurity executives need to prepare for? In constantly mitigating risk, how should today's CISO plan for quantum based attacks and how real is the threat? With leading Quantum computing facilities being established across Canada, how can we prepare for this new reality? Led by IRON CAP, this session brings you insight from experts in quantum and cybersecurity controls.
Speakers:

November 8, 2021

11:30 AM - 12:30 PM

Peering Into the Infosec Crystal Ball: Preparing Today for 2022’s Incidents

Everyday seems like a new normal in the cybersecurity space today. With new modes of service and content delivery, eSentire brings their wealth of experience to unpack the tools, techniques and procedures that will prepare you for future attacks.
Speakers:

November 8, 2021

1:00 PM - 2:00 PM

Known Unknowns and the Challenges of Endpoint Protection

With multiple devices entering the enterprise physical and cloud environments, there comes a challenge of preparing for new threats and attacks. In this session championed by DarkTrace, world leaders in autonmous AI, learn how organizations can proactively prepare and intelligently augment your environments for tomorrow's attacks today!
Speakers:

November 8, 2021

2:30 PM - 3:15 PM

The Automation of Attacks and the Changing DDoS Landscape

The attack landscape has evolved and automation as well as enhanced scripts are delivering dangerous blows to organizations globally. Cloudflare is at the forefront confronting many of these attacks as they hit web applications globally. Managing some of the largest content distribution networks in the world, join us as Cloudflare explores how automation has impacted DDoS attacks and how cyber security leaders can stay one step ahead of these menacing attacks.
Speakers:

November 8, 2021

3:45 PM - 4:30 PM

The Future of Identity Access Management

In today's world, the number of machines far exceeds the number of humans. Powered by Venafi, this session explores the future state of managing identities : with hyper automation, increasing machine driven activities and new realities of the metaverse, how can the enterprise keep pace with the changing patterns of user access and management? Join us for peek into the future of identity access management.
Speakers:

November 8, 2021

4:45 PM - 5:30 PM

Striking the Balance Between Technical and Operational Skills in Cybersecurity

Cybersecurity leaders do not only find themselves in the throes of technical challenges - a series of operational matters, administrative topics and strategic decisions is all at the table. What skills should CISOs possess and how should they prepare to distribute their focus? What support systems do CISOs have and what is driving the evolution of this role? Learn from practising experts and leading industry trainers on this evolving subject!
Speakers:

November 8, 2021

5:45 PM - 6:30 PM

Proactive Incident Response

Forewarned is forearmed and this panel explains exactly why. Hosted by RSM, this session will engage you on a clear vision and strategy with preparing your incident response plan. Along with assessing risk, understanding your options and developing a playbook, RSM will look at best practices around incident response plans that are well prepared for - this is an opportunity to advance your leadership and bring your teams to respond proactively and effectively.
Speakers:

November 8, 2021

7:00 PM - 8:00 PM

Developing Cyber Talent From Diverse Fields

As cybersecurity leaders, you are encouraged to look beyond prescriptive job requirements. You must look for talent and capacity to learn and innovate. But how can leaders do such assessments and work to introduce talented folks from diverse fields into their cybersecurity practices ? What are some playbooks, if any, to follow and how can such practices scale. Join us as we bring the best ideas to the table.
Speakers:

November 9, 2021

9:00 AM - 9:30 AM

Human-Machine Intelligence in Cybersecurity

We invest resources in capturing logs from our network and analyzing these for patterns and trends. As this data improves our response times and controls, the team at Penfield takes the data game in cybersecurity to another level.

Penfield is the industry’s first human-machine intelligence platform, modelling Cybersecurity Analysts actions and processes in real time. What does your SOC team's behaviour tell you about the tools and techniques at their disposal? Join us for a riveting keynote on human-machine intelligence.
Speakers:
- Tahseen Shabab
  Penfield.ai

November 9, 2021

10:00 AM - 11:00 AM

Industry Insights of Security for Digital Transformation

The demands of rapid, enterprise wide digital transformation raise critical security considerations. In this session, we bring insight from various industries and understand how Zscaler's leading industry technologies have protected organizations in multiple industries against a new wave of threats and challenges.
Speakers:

November 9, 2021

11:30 AM - 12:30 PM

User Authentication and the Menace of Credential Sharing

With strict budget controls, shifting work positions and novel behaviours, credential sharing happens more often than we think of. What drives some of this behaviour and how can authentication tools and policies protect against vulnerabilities?

Join us as some of the leading cybersecurity professionals in Canada provide their perspective from the field!
Speakers:

November 9, 2021

1:00 PM - 2:00 PM

Establishing Robust IAM Practices Through Technology and Policy

IAM best practices are not just a matter of technology alone. It must be accompanied by policy. In this session , we explore how these practices intersect and provide insight into developing your IAM practices in a concentrated manner that ensures adoption and buy in from the enterprise at large. Join us and learn from the field!
Speakers:

November 9, 2021

2:30 PM - 3:15 PM

Put a SOC in it

There is no one soc fits all solution. So how do you determine what type of soc is best for your work? Hitting straight to the point, this discussion reviews the evolution of the SOC and compares multiple ways to successfully deploy your SOC and integrate it within your wider service offering.
Speakers:

November 9, 2021

3:45 PM - 4:30 PM

A User-First Approach to MFA

As a modern-day CISO, your number one priority is to keep your users safe. Achieving this requires you to address the competing needs of security, privacy, and convenience. In the security industry, everybody believed that to be secure; something couldn’t be convenient. Security and convenience functioned only in opposition. Making access hard was the best way to keep info safe. This presentation will explore ways to deliver a secure experience to your customers without compromising the end-user experience by taking a user-first approach to MFA.
Speakers:
- Shiven Ramji
  Auth0

November 9, 2021

4:45 PM - 5:30 PM

Neurodiverse Talent and Cybersecurity Skills

We need diversity of thought and skill to combat the evolving field of cybersecurity. What does neurodiversity lend to this need and how can cybersecurity leaders better understand its applications? In the first of its kind discussion ever at CISO Forum Canada, join us for a panel which brings neuroscience to the cybersecurity discussion table!
Speakers:

November 9, 2021

5:45 PM - 6:30 PM

True End-To-End Encryption for Ransomware Protection

How are insider threats created and what factors, internal and external, contribute to it? In this session, we explore the human element of what drives insider threats and discuss procedural strategies to combat them.
Speakers:
- Andrew Cheung
  01 Communique
- Joseph Steinberg

November 9, 2021

7:00 PM - 8:00 PM

How to Build your Cybersecurity Network as a Leader

It is not just what you know but who you know. We get it. But how do today's cybersecurity leaders build their network amidst the heavy demands. From acting as mentors to shadowing a coach, growing opportunities to shaping the next talent, where do you get started in Canada and craft your own path? Let's peer into some lived experiences and get perspective and tips from the field.
Speakers:

November 10, 2021

9:00 AM - 10:00 AM

Unemployed but Not Unpaid: Understanding Ransomware Gangs Through Criminology

The lucractive "dark" side of the web holds strong appeal to many technically proficient individuals and groups. In this session, we peer into the motivations of these gangs and bring a criminology perspective to the table. Join us for another novel discussion as we bring you to think about cybersecurity in a way you proabably have not before.
Speakers:

November 10, 2021

10:15 AM - 11:00 AM

Rise of the Robots and Security Automation

Can cybersecurity be entirely automated? Aren't we already there in some regards? Lets hear from cybersecurity leaders on their views around automation and how it is influencing critical decisions in monitoring and response practices.
Speakers:

November 10, 2021

11:30 AM - 12:30 PM

Biometrics, Privacy and the Embodied Internet

As more unique identifiers make their way into autentication protocols, the privacy eye cannot look away. There are questions around data transfer, storage and exchange which are being asked globally. Let's hear the Canadian perspective from leading individuals in the field!
Speakers:

November 10, 2021

1:00 PM - 2:00 PM

True Tales of Certificate Outages: How to Avoid Disruption, Distraction and Downtime

Certificate-related outages, whether from expired or misconfigured or unknown TLS certificates, are the bane of digital transformation. Perfectly functioning applications and services can be rendered inoperable. Worse still the security controls you rely on, from traffic inspection devices to web application firewalls, can’t protect you when a certificate-related outage shuts them down. In this session, we’ll share real-world examples of outages and the approaches that Venafi customers have taken to eliminate them in their organizations for good.
Speakers:
- Diane Garey
  Venafi

November 10, 2021

2:30 PM - 3:15 PM

Lessons from Future Cyber Leaders

CISOs must lead their teams of today and prepare the teams of tomorrow. Join us for an inagural session at CISO Forum Canada with young, aspiring cybersecurity leaders and hear what they have to say to today's CISOs.
Speakers:

November 10, 2021

3:45 PM - 4:30 PM

Password Elimination. Paving the road to Frictionless, Decentralized Zero Trust Security

There are more ways than one to prove your identity and the shift away from passwords is proof of this. However, how do you make the transition into a passwordless world? What are some of the considerations and best practices? Learn more from industry experts
Speakers:

November 10, 2021

4:45 PM - 5:30 PM

Tabletop Game

Cybersecurity can also be learnt through play and games. Join us for a digitzed table top exercise that gives special powers to a select few as they face a common, dangerously strong adversary!
Speakers:

November 10, 2021

5:45 PM - 6:30 PM

Award Ceremony & Closing

Speakers: