Wednesday, March 11, 2026

• 9:00 AM 5:00 PM

• Hotel NoMa ,1 Radisson PlazaNew Rochelle, NY, 10801United States (map)

9-9:30AM EST (30min)

Welcome, Networking Breakfast & Partner Tables - Sponsored by 360Advanced

9:30 -9:45AM EST (15min)

Kickoff and Agenda

Featured Speakers: Gina Fideli, P3 Transformation Founder - HOST

Set the tone, expectations & session logistics and Introductions

9:45-10:30AM EST (45min)

Opening Keynote: “Reasonable Security in the Era of Agentic AI”

Featured Speakers: Curtis Dukes, Executive Vice President & General Manager, Center for Internet Security (CIS) & Chirag Arora, Global Ambassador, Center for Internet Security; Chair, Global CISO Leadership Foundation.

This keynote will examine what “reasonable security” means as enterprises adopt agentic AI systems capable of autonomous decision-making. The session will explore governance expectations, evolving definitions of due care, and practical frameworks organizations can adopt today.

10:30-11:15AM EST (45min)

Roadmap to Closing Your Organization’s External Security Gaps: Managing External Exposure, Brand Risk, and Dark Web Threats in a Rapidly Expanding Attack Surface

Presenter: Chirag Arora, Global Security Leader

Session Overview

As organizations rapidly expand their digital footprint across cloud, SaaS, AI integrations, and third-party ecosystems, external exposure has become the fastest-growing source of cyber risk. Traditional internal security controls alone are no longer sufficient to detect, prioritize, or prevent real-world breaches.

This session provides a practical, board-level roadmap for identifying and closing security gaps across external attack surface, brand abuse, and dark web intelligence, using real-world threat patterns and exposure data.

11:15-12:00PM EST (45min)

Security vs. Compliance: Why “Checking the Box” Keeps Failing CISOs: A Think Tank on Bridging Real Risk Reduction and Regulatory Expectations

Format: Think Tank Discussion

Facilitator: Oscar Jones, CISO, CyberSecOp

Session Framing

Security and compliance are often treated as interchangeable—but in practice, they frequently work against each other. Organizations pass audits yet still get breached. CISOs invest heavily in frameworks, assessments, and controls, while attackers continue to exploit gaps that compliance programs never surface.

This think tank brings security leaders together to challenge conventional thinking, examine real-world failures, and explore how CISOs can move beyond checkbox compliance toward measurable risk reduction—without breaking regulatory alignment.

12-12:15PM (15min)

Properly Sizing Cyber Insurance

Speaker: Imani Barnes, Associate Director, RiskStrategies

Session Overview

Cybersecurity can lower your risk, but it can’t protect you from every weak link in your digital ecosystem.  With cyber incidents and business interruption ranked as the top global risks, organizations must prepare for the ripple effects of third‑party failures. That’s why cyber insurance, especially contingent business interruption coverage, has become an essential safety net for the threats you can’t control.

12:15-12:45PM Sponsored by RiskStrategies

Lunch, Networking Break

12:45-1:30PM (45min)

Operationalizing Zero Trust at the Browser Layer: Real-World Use Cases Enabled

Speaker: MacKenzie Miller, CAM of Island.io

Session Overview

As work increasingly happens inside the browser—across SaaS, cloud consoles, AI tools, and legacy web apps—the browser has become the new control plane for enterprise security, data protection, and compliance.

This session shows how Island’s Enterprise Browser Console modules enable organizations to secure access, prevent data loss, and reduce attack surface without agents, VPNs, or virtual desktops—while preserving user experience.

1:30-2:15PM EST (45min)

Legal Deep Dive: “AI Agents, Liability & the Courts: Lessons from Perplexity v. Amazon”

Speaker: Antony Haynes, Professor of Law, Albany Law School; Group Head, Cybersecurity, Data Privacy & AI Practice, Dorf Nelson & Zauderer LLP

A forward-looking analysis of the emerging legal landscape for both developers of agentic systems and organizations deploying agents as users. Using Perplexity v. Amazon as the anchor case, this session will cover IP liability, contractual risk allocation, tort exposure, and what corporate counsel must anticipate as AI autonomy increases.

2:15-2:45 EST (30min)

Operationalizing Cyber Resilience: Turning GRC from Compliance Burden into Business Capability: How Modern GRC Enables Measurable Resilience Across Security, Risk, and Operations

Speakers: Shareth Ben, VP of Sales & Strategy, Apptega & Tom Guadagno, CISO of CyberSecOp

Session Overview

Most organizations invest heavily in Governance, Risk, and Compliance (GRC), yet struggle to translate frameworks, assessments, and policies into day-to-day operational resilience. GRC is often perceived as documentation-heavy and reactive—disconnected from how security teams actually manage risk.

This session explores how modern GRC programs can be operationalized to drive real resilience by aligning security operations, risk management, and compliance into a single, actionable system of record.

2:45-3:15PM EST (30min)

How Unified Audits Reduce Cost, Fatigue and Improve Security Program Maturity

Speakers: Jim Brennan, Sr. Compliance Executive

Session Overview

An Audit Once, Report Many methodology is designed to streamline the entire experience by consolidating the overlapping requirements across frameworks and conducting a single, comprehensive audit that supports all the needed reports. We gather evidence once, validate controls once, and then map the results into each relevant framework for delivery.  The result? A more efficient, predictable, and less disruptive audit experience.

3:15-3:50 EST (35min)

Ransomware-Proof by Design: Building Resilient, Recoverable, and Trustworthy Data Backups: How Modern Enterprises Ensure Recovery When Prevention Fails

Presenter: Nutanix (Speaker TBD – Field CTO / Distinguished Technologist / Security Architect)

Session Overview

Ransomware is no longer just an encryption event—it is a data integrity and recovery crisis. Attackers increasingly target backups first, corrupt recovery points, and exploit operational complexity to delay restoration.

This session explores how organizations can design robust, ransomware-resilient backup and recovery architectures that assume compromise, preserve trust in data, and enable rapid, confident recovery—without adding operational overhead.

3:50-4:30PM EST (40min)

CISO Executive Panel: “AI Exposure: The Next-Generation Challenge for Cyber Leaders”

Panelists: Oscar Jones, Mike Schimenti & Tom Guadagno, Cybersecurity CISOs, Chirag Arora, Chair, Global CISO Leadership Foundation & Additional New York–based CISO (TBD)

A practical and strategic discussion on how AI-driven exposures—LLM integration, agentic automation, API misuse, data governance gaps, and digital supply chain risks—are reshaping the CISO agenda for 2025–2026. This panel will highlight real-world scenarios, defense strategies, and what cyber leaders need to prioritize now.

4:30-5PM EST

Raffle + Closing Remarks

Featured Speakers: Gina Fidely/HOST & Vinny LaRocca/CEO

5 -6PM EST Sponsored by Island.io

Happy Hour + Open Networking