Cobalt Crowdsourced Application PentestCobalt Crowdsourced Application PentestCobalt Crowdsourced Application Pentest

SecTalks:Leading with GRIT in SecurityVirtual Conference

February 18, 2021 08:00 AM - 02:30 PM PST

Days
Hours
Minutes
Seconds

About

Leading with grit means you don't quit when the going gets tough. You are in the trenches. You take responsibility to secure results and create your own success. As 2021 brings new questions and challenges, what better way to prepare for the coming year than to draw inspiration from fellow members of the security community through a virtual experience?
Picture of an event
We want to provide value beyond the half day of sessions, so we will offer an exclusive Slack channel for attendees and speakers to network before and after as well as use visual storytelling to highlight key concepts discussed during panel sessions in real time.
Picture of an event

Speakers

Agenda

07:30 AM - 09:40 AM
Founders Panel & Product Roadmap Exploration (private session)

Penny Yao


Cobalt team members share the inside perspective on the strategy behind our product.

During this session, current customers will hear directly from Cobalt founders and product leaders as they share the inside perspective on the strategy behind our product, and what to expect over the course of the coming year. *Reach out to your Customer Success Manager for details on how to attend.

Penny Yao

Director of Product Management

Cobalt.io

08:15 AM - 09:00 AM
Keynote

Allan McDonald


Allan McDonald, author of "Truth, Lies, and O-Rings", will touch on learnings about leadership, perseverance and resilience in the wake of the NASA Challenger tragedy.

Allan McDonald, author of "Truth, Lies, and O-Rings", worked at engineering contractor Morton Thiokol, manufacturers of the NASA Challenger’s solid rocket boosters. Despite retribution from individuals at NASA and his employer in the wake of the Challenger tragedy, Allan put ethics and truth above all else and fought to reveal the real reasons behind the incident. He later devoted his work to re-designing the solid rocket motors as VP of Engineering, ensuring the safety of future space missions. In his keynote, Allan will touch on the hard lessons he’s learned about leadership, perseverance and resilience in the face of disaster and unprecedented scrutiny.

Allan McDonald

Aerospace Consultant and Author

"Truth, Lies, and O-rings"

09:00 AM - 09:45 AM
Pentester Panel: Lessons from the Frontlines

Jay Paz, Jon Helmus, Stefan Nicula, Dan Beavin, Aditya Agrawal


Go inside the mind of a pentester with top members of the Cobalt Core.

This panel takes you inside the mind of a pentester. We’ve gathered some of the top members of the Cobalt Core (our closed community of skilled pentester talent from around the world) in order to pick their brains and surface key learnings gleaned from years of testing. Attendees will learn what makes a pentester tick, insider strategies for getting the most out of your pentest engagement, and insight on go-to vulnerabilities.

Jay Paz

Director of Pentest Operations and Research

Cobalt.io

Jon Helmus

Manager of Pentest Community

Cobalt.io

Stefan Nicula

Pentester

Cobalt Core

Dan Beavin

Pentester

Cobalt Core

Aditya Agrawal

Pentester

Cobalt Core

09:45 AM - 10:00 AM
Top Infosec Practices for Continuous Compliance

Patrick Murray


How can you stay compliant all year long without the stress? Find out in this session.

In this lightning talk, Patrick Murray, Chief Product Officer at Tugboat Logic, shares expert tips that will help you off-load your team, avoid audit delays and ensure you are always compliant.

Patrick Murray

Chief Product Officer

Tugboat Logic

09:45 AM - 10:15 AM
Pentester AMA (private session)

Jay Paz, Stefan Nicula, Dan Beavin, Aditya Agrawal


A VIP, invite-only group discussion.

A VIP, invite-only group discussion featuring pentesters interacting with a select group of audience members in a more intimate setting. *Reach out to your Customer Success Manager for details on how to attend.*

Jay Paz

Director of Pentest Operations and Research

Cobalt.io

Stefan Nicula

Pentester

Cobalt Core

Dan Beavin

Pentester

Cobalt Core

Aditya Agrawal

Pentester

Cobalt Core

10:15 AM - 10:45 AM
Not All Risks are Equal - Why Context Matters in Cloud Security

Patrick Pushor


In this session we will discuss our best strategies in the fight against alert fatigue and how to rebuild trust in security intelligence.

The promise of adding new security tools and capabilities to your security operations efforts is more intelligence to make better, more well informed decisions with, but do they deliver on that promise? If your SOC team receives hundreds of "high priority" alerts every day should they even trust in that risk score? An overwhelming number of alerts desensitizes the very people tasked with responding to them, leading to missed or ignored alerts or delayed responses. In this session we will discuss our best strategies in the fight against alert fatigue and how to rebuild trust in security intelligence.

Patrick Pushor

Technical Evangelist

Orca Security

11:00 AM - 11:45 AM
CISOs Assemble: Shaping a Security Strategy

Ray Espinoza, Henning Christiansen


Axel Springer and Cobalt CISOs draw upon years of experience managing infosec programs.

“So how will security level up this year?” This is a question every security leader faces, regardless if they work at a growing startup or a long established organization. Having a clear answer amid unprecedented uncertainty, cost pressures and customer expectations can truly be a heroic feat. In this session, Cobalt’s own CISO will draw upon his years of experience managing infosec programs at eBay, Workday, Amazon, and Cisco, among others. He’ll be joined by Henning Christiansen, CISO at Axel Springer, to provide additional perspective from security professionals “in the trenches.”

Ray Espinoza

CISO

Cobalt.io

Henning Christiansen

CISO

Axel Springer

11:00 AM - 11:45 AM
Customer Workshop (private session)

Penny Yao


Cobalt product team members share the inside perspective on the strategy behind our product.

Cobalt founders and company execs will facilitate a dialogue on strategic technology issues, program strategy, and business priorities. *Reach out to your Customer Success Manager for details on how to attend. *

Penny Yao

Director of Product Management

Cobalt.io

11:45 AM - 12:30 PM
Day in the Life of a CISO: Cybersecurity in the Age of COVID

Chris Gervais, Vanessa Pegueros


The CISOs of OneLogin and Kyruus discuss the demands and challenges of their roles, in a profession where the only constant is change.

Hear from current CISOs as they discuss the demands and challenges of their roles, in a profession where the only constant is change. The global pandemic has complicated things even more, resulting in a highly remote workforce, shifts in business models (including the rapid rollout of digital services), multiple new cyber threats, and an overall climate of uncertainty.

Chris Gervais

CISO

Kyruus

Vanessa Pegueros

Chief Trust and Security Officer

OneLogin

12:45 PM - 01:00 PM
Democratization of Security Compliance

Jonathan Cordeau


You know your technology teams are using more Open Source tools but how should that be affecting your security & compliance posture?

You know your technology teams are using more Open Source tools but how should that be affecting your security & compliance posture? Are you thinking critically about Security Composition Analysis? Do you have a clear view of your application dependencies and their inherent risks? More open source tooling means more security options but vendor and tool sprawl is a real issue for CISOs and security teams that already have too many alerts. How should open source be impacting your business security & compliance.

Jonathan Cordeau

Control Head of Product

Very Good Security

01:00 PM - 01:45 PM
CISO Series/Vendor Security Relationship Podcast Live Recording

David Spark, Mike Johnson


Join us for a special live recording of a new podcast episode!

David Spark will be joined by Health Partners CISO Mike Eggleston for a new, live episode of the CISO Series/Vendor Security Relationship Podcast. Think of it like as couples therapy for security practitioners. In this episode, David will challenge Mark and listeners to critique, share true stories, and reveal in hypothetical scenarios, “what would you do?”

David Spark

Producer, Managing Editor, Co-Host

CISO Series

Mike Johnson

CISO at Fastly and Co-Host

CISO Series Podcast

01:45 PM - 02:30 PM
Building Resilience in Infosec: Lessons Learned From Military Experience

Andy Ellis, Britney Hommertzheim, Nicole Darden Ford, David Cross


Oracle. Akamai. Cardinal Health. Carrier. What better group to turn to for advice on leadership in crisis situations than these security pros who are former military?

The military offers a sterling example of leadership in crisis situations. When a breach happens, pressure escalates and split decisions determine survival or disaster. No one can be fully prepared for the unknown, but there are methods to build up resilience in both ourselves and our teams. What better group to turn to for advice than security leaders who have worked on the front lines of risk and uncertainty?

Andy Ellis

Chief Security Officer

Akamai Technologies

Britney Hommertzheim

Director, Cyber Threat Operations

Cardinal Health

Nicole Darden Ford

VP and CISO

Carrier

David Cross

Senior VP, CISO

Oracle

Register now!

Sponsored by

Orca Security
Tugboat Logic
Vanta
Very Good Security

Please email julia@cobalt.io with any event questions.