This program is part of the MassTLC Tech Series 2023: Leading Technology Organizations Into the Future, comprised of four in-person conferences that bring the latest tech trends and innovations to the forefront for local industry leaders. Each of the four conferences will dive into specific topics that reflect what tech leaders need to know to stay ahead.

AGENDA

8:30AM-8:55AM Registration & Networking

8:55AM-9:00AM Welcome

9:00AM -9:20 AM Keynote

9:30AM-10:20AM Session 1

Accelerating innovation with security

When companies consider how to innovate, security needs to be included as a core element. Any team that develops new products and applications should automatically bring the organization’s security team into the planning process. The right level of oversight and quality assurance should not stifle creativity – rather it should ensure that any system brought into the organization or new product developed is not the cause of a major breach. Recent surveys have indicated that the top priority for CISOs for the next two years is to focus on innovation and product development via DevSecOps.

During this session, you will hear use cases on how product teams have integrated security into their development or procurement process through technology and collaboration. Panelists will share examples of processes they’ve used to embed security into the software development lifecycle or within the third-party application vetting process.

You will walk away with:

• An understanding of the role that security plays in accelerating opportunities for innovation within product development and technology acquisition
• New methodologies (including DevSecOps) to ensure that security is an embedded part of enterprise-wide processes
• Examples of how to implement and scale these methodologies within your organization

10:20AM -10:40AM Break

10:40AM-11:30AM Session 2

Cross-functional collaboration to secure the enterprise

Only 20% of those polled say their organizations’ accounting and finance teams work closely and consistently with their peers in cybersecurity – despite the expected increase in cyber events targeting their organizations’ accounting and financial data. Organizations are looking to rectify this discrepancy by establishing cross-functional security teams. In addition, the increasing influence of the CISO role means frequent interactions at the board level, making these initiatives more visible to senior leadership.

During this session, business leaders will discuss how they are sharing information and expertise among departments in order to identify and prevent cyberattacks. Panelists will give examples of joint projects that have been successful as well as lessons learned from them.

You will walk away with:

• Examples of how to leverage common systems, methods of program and project management and shared playbooks
• How to factor in the unique role that AI brings to security with such as examples as the concept of an AI-assisted security operations center (SOC)
• Insights into how the CISO plays a key role in communicating security risks and strategies to stakeholders- including visibility in front of the board of directors, the media, and educating employees about the importance of security

11:30AM-12:20PM Session 3

How to adapt to the evolving nature of security teams

In addition to keeping pace with the latest cyber threats and maintaining and protecting infrastructure and business assets, the security team is constantly evolving to reflect the wider role it now has within companies. From managing remote and hybrid teams, to doing more with less as cybersecurity budgets are impacted by the global economic downturn, to filling the talent gap – leaders from all disciplines need to adapt. The 3 million open job gap is hitting risk assessment, oversight, and strategic planning across the board – and it is increasingly leading to burnout. What are some of the ways companies can keep up?

During this session, you’ll hear stories from security leaders who are dealing with managing dispersed teams as well as a shortage of needed talent that is current with the latest technologies and threats. Topics to be discussed include policies related to remote and hybrid work, how to reduce the barrier to entry into security roles, and finding new, people-centered ways to recruit and retain talent.

You will walk away with:

• Innovative ideas to keep remote and hybrid security teams engaged and continuously learning
• Tips on how to recruit talent from non-traditional industries and roles and examples of where this approach has been successful
• Resources on upskilling and training security candidates at all levels from diverse backgrounds

12:20PM-1:00PM Networking and Lunch